Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

nvidia virus


  • Please log in to reply
23 replies to this topic

#1 bostrak

bostrak

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 01:33 PM

Had a request about updating nvidia drivers on my computer, clicked "yes".

The system went unstable almost instantly. 

Unable to run Chrome for ex....

 

 

Running AGV and Ad-Aware, bought winthrust... have tried to run all of them in safe mode and normal mode.

 

Have already chk a tutorial here on your site, and realise I need help to remove this.

 

 

 

 



BC AdBot (Login to Remove)

 


#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:14 PM

Posted 27 February 2015 - 01:41 PM

Hi bostrak :)

Are you sure that this pop-up was a virus and not just a drivers installation that failed? Do you have a NVIDIA graphic card on that computer? Let's give it a check first before assuming that this was an infection :)

3Al62Pm.pngMiniToolBox
  • Download MiniToolBox and move the executable file to your Desktop;
  • Execute MiniToolBox and check the following options:
    • List Installed Programs;
    • List Last 10 Event Viewer Errors;
  • Once this is done, click on Go and wait for the scan to complete;
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 bostrak

bostrak
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 02:03 PM

MiniToolBox by Farbar  Version: 30-11-2014
Ran by Eier (administrator) on 27-02-2015 at 20:00:45
Running from "C:\Users\Eier\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/27/2015 06:33:16 PM) (Source: Application Error) (User: )
Description: Windows har ikke tilgang til filen C:\Windows\SysWOW64\mshtml.dll, av en av følgende grunner:
Det er et problem med nettverksforbindelsen, disken filen er lagret på, eller lagringsdriverne
som er installert på denne datamaskinen. Det kan også hende at disken mangler.
Windows lukket programmet Internet Explorer på grunn av denne feilen.

 Program: Internet Explorer
 Fil: C:\Windows\SysWOW64\mshtml.dll

 Feilverdien finnes i delen for mer data.
 Brukerhandling
1. Åpne filen på nytt.
Denne situasjonen kan være et midlertidig problem som rettes av seg selv når programmet kjøres igjen.
2.
Hvis filen fremdeles ikke kan åpnes, og hvis
 - den finnes på nettverket,
bør systemansvarlig bekrefte at det ikke er problemer med nettverket og at serveren kan kontaktes.
  - den finnes på en flyttbar disk, for eksempel en diskett eller CD-ROM, bør det kontrolleres at disken er riktig plassert i datamaskinen.
3. Kontroller og reparer filsystemet ved å kjøre CHKDSK. Du kjører CHKDSK ved å velge Kjør på startmenyen, skrive CMD og deretter velge OK. Ved ledeteksten skriver du CHKDSK /F, og deretter trykker du ENTER.
4. Hvis problemet vedvarer, gjenoppretter du filen fra en sikkerhetskopi.
5. Kontroller om det er mulig å åpne andre filer på disken. Hvis ikke kan det hende at disken er skadet. Hvis det er en harddisk, kontakt systemansvarlig eller maskinvareleverandøren for
mer hjelp.

Mer data
 Feilverdi: C0000185
 Disktype: 3

Error: (02/27/2015 06:33:16 PM) (Source: Application Error) (User: )
Description: Windows har ikke tilgang til filen C:\Windows\SysWOW64\jscript9.dll, av en av følgende grunner:
Det er et problem med nettverksforbindelsen, disken filen er lagret på, eller lagringsdriverne
som er installert på denne datamaskinen. Det kan også hende at disken mangler.
Windows lukket programmet Internet Explorer på grunn av denne feilen.

 Program: Internet Explorer
 Fil: C:\Windows\SysWOW64\jscript9.dll

 Feilverdien finnes i delen for mer data.
 Brukerhandling
1. Åpne filen på nytt.
Denne situasjonen kan være et midlertidig problem som rettes av seg selv når programmet kjøres igjen.
2.
Hvis filen fremdeles ikke kan åpnes, og hvis
 - den finnes på nettverket,
bør systemansvarlig bekrefte at det ikke er problemer med nettverket og at serveren kan kontaktes.
  - den finnes på en flyttbar disk, for eksempel en diskett eller CD-ROM, bør det kontrolleres at disken er riktig plassert i datamaskinen.
3. Kontroller og reparer filsystemet ved å kjøre CHKDSK. Du kjører CHKDSK ved å velge Kjør på startmenyen, skrive CMD og deretter velge OK. Ved ledeteksten skriver du CHKDSK /F, og deretter trykker du ENTER.
4. Hvis problemet vedvarer, gjenoppretter du filen fra en sikkerhetskopi.
5. Kontroller om det er mulig å åpne andre filer på disken. Hvis ikke kan det hende at disken er skadet. Hvis det er en harddisk, kontakt systemansvarlig eller maskinvareleverandøren for
mer hjelp.

Mer data
 Feilverdi: C0000185
 Disktype: 3

Error: (02/27/2015 06:33:16 PM) (Source: Application Error) (User: )
Description: Windows har ikke tilgang til filen C:\Windows\SysWOW64\mshtml.dll, av en av følgende grunner:
Det er et problem med nettverksforbindelsen, disken filen er lagret på, eller lagringsdriverne
som er installert på denne datamaskinen. Det kan også hende at disken mangler.
Windows lukket programmet Internet Explorer på grunn av denne feilen.

 Program: Internet Explorer
 Fil: C:\Windows\SysWOW64\mshtml.dll

 Feilverdien finnes i delen for mer data.
 Brukerhandling
1. Åpne filen på nytt.
Denne situasjonen kan være et midlertidig problem som rettes av seg selv når programmet kjøres igjen.
2.
Hvis filen fremdeles ikke kan åpnes, og hvis
 - den finnes på nettverket,
bør systemansvarlig bekrefte at det ikke er problemer med nettverket og at serveren kan kontaktes.
  - den finnes på en flyttbar disk, for eksempel en diskett eller CD-ROM, bør det kontrolleres at disken er riktig plassert i datamaskinen.
3. Kontroller og reparer filsystemet ved å kjøre CHKDSK. Du kjører CHKDSK ved å velge Kjør på startmenyen, skrive CMD og deretter velge OK. Ved ledeteksten skriver du CHKDSK /F, og deretter trykker du ENTER.
4. Hvis problemet vedvarer, gjenoppretter du filen fra en sikkerhetskopi.
5. Kontroller om det er mulig å åpne andre filer på disken. Hvis ikke kan det hende at disken er skadet. Hvis det er en harddisk, kontakt systemansvarlig eller maskinvareleverandøren for
mer hjelp.

Mer data
 Feilverdi: C0000185
 Disktype: 3

Error: (02/27/2015 06:33:16 PM) (Source: Application Error) (User: )
Description: Programnavn med feil: IEXPLORE.EXE, versjon: 11.0.9600.17631, tidsangivelse: 0x54b31a70
Modulnavn med feil: MSHTML.dll, versjon: 11.0.9600.17631, tidsangivelse: 0x54b33039
Unntakskode: 0xc0000006
Feilforskyvning: 0x00426000
Feil prosess-ID: 0x176c
Feil starttid for program: 0xIEXPLORE.EXE0
Feil programbane: IEXPLORE.EXE1
Feil modulbane: IEXPLORE.EXE2
Rapport-ID: IEXPLORE.EXE3

Error: (02/27/2015 06:33:16 PM) (Source: Application Error) (User: )
Description: Programnavn med feil: IEXPLORE.EXE, versjon: 11.0.9600.17631, tidsangivelse: 0x54b31a70
Modulnavn med feil: ntdll.dll, versjon: 6.1.7601.18247, tidsangivelse: 0x521ea8e7
Unntakskode: 0xc0000006
Feilforskyvning: 0x0003f52e
Feil prosess-ID: 0x1ad0
Feil starttid for program: 0xIEXPLORE.EXE0
Feil programbane: IEXPLORE.EXE1
Feil modulbane: IEXPLORE.EXE2
Rapport-ID: IEXPLORE.EXE3

Error: (02/27/2015 06:33:16 PM) (Source: Application Error) (User: )
Description: Programnavn med feil: IEXPLORE.EXE, versjon: 11.0.9600.17631, tidsangivelse: 0x54b31a70
Modulnavn med feil: MSHTML.dll, versjon: 11.0.9600.17631, tidsangivelse: 0x54b33039
Unntakskode: 0xc0000006
Feilforskyvning: 0x00fd9df7
Feil prosess-ID: 0x1bfc
Feil starttid for program: 0xIEXPLORE.EXE0
Feil programbane: IEXPLORE.EXE1
Feil modulbane: IEXPLORE.EXE2
Rapport-ID: IEXPLORE.EXE3

Error: (02/27/2015 06:32:30 PM) (Source: Application Error) (User: )
Description: Windows har ikke tilgang til filen C:\Windows\System32\NaturalLanguage6.dll, av en av følgende grunner:
Det er et problem med nettverksforbindelsen, disken filen er lagret på, eller lagringsdriverne
som er installert på denne datamaskinen. Det kan også hende at disken mangler.
Windows lukket programmet Microsoft Windows Search-indeksering på grunn av denne feilen.

 Program: Microsoft Windows Search-indeksering
 Fil: C:\Windows\System32\NaturalLanguage6.dll

 Feilverdien finnes i delen for mer data.
 Brukerhandling
1. Åpne filen på nytt.
Denne situasjonen kan være et midlertidig problem som rettes av seg selv når programmet kjøres igjen.
2.
Hvis filen fremdeles ikke kan åpnes, og hvis
 - den finnes på nettverket,
bør systemansvarlig bekrefte at det ikke er problemer med nettverket og at serveren kan kontaktes.
  - den finnes på en flyttbar disk, for eksempel en diskett eller CD-ROM, bør det kontrolleres at disken er riktig plassert i datamaskinen.
3. Kontroller og reparer filsystemet ved å kjøre CHKDSK. Du kjører CHKDSK ved å velge Kjør på startmenyen, skrive CMD og deretter velge OK. Ved ledeteksten skriver du CHKDSK /F, og deretter trykker du ENTER.
4. Hvis problemet vedvarer, gjenoppretter du filen fra en sikkerhetskopi.
5. Kontroller om det er mulig å åpne andre filer på disken. Hvis ikke kan det hende at disken er skadet. Hvis det er en harddisk, kontakt systemansvarlig eller maskinvareleverandøren for
mer hjelp.

Mer data
 Feilverdi: C0000185
 Disktype: 3

Error: (02/27/2015 06:32:10 PM) (Source: Application Error) (User: )
Description: Programnavn med feil: SearchIndexer.exe, versjon: 7.0.7601.17610, tidsangivelse: 0x4dc0d019
Modulnavn med feil: ntdll.dll, versjon: 6.1.7601.18247, tidsangivelse: 0x521eaf24
Unntakskode: 0xc0000006
Feilforskyvning: 0x0000000000018f75
Feil prosess-ID: 0xe4c
Feil starttid for program: 0xSearchIndexer.exe0
Feil programbane: SearchIndexer.exe1
Feil modulbane: SearchIndexer.exe2
Rapport-ID: SearchIndexer.exe3

Error: (02/27/2015 06:22:57 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/27/2015 06:06:11 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (02/27/2015 06:35:21 PM) (Source: Service Control Manager) (User: )
Description: Tjenestekontrollbehandling forsøkte å utføre en korrigerende handling (Start tjenesten på nytt) etter det uventede avbruddet av tjenesten Windows Search, men handlingen mislyktes med følgende feil:
%%1056

Error: (02/27/2015 06:34:51 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten Windows Search ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 30000 millisekunder: Start tjenesten på nytt.

Error: (02/27/2015 06:34:28 PM) (Source: Microsoft Antimalware) (User: )
Description: %60 har oppdaget feil ved forsøk på å laste signaturer og vil forsøke å tilbakestille til et kjent bra sett med signatsurer.

 Forsøkte signaturer: %24

 Feilkode: 0x80508001

 Feilbeskrivelse: Et problem forhindrer programmet fra å starte. Installer tilgjengelige oppdateringer, og prøv deretter å starte programmet på nytt. Se Hjelp og støtte for informasjon om installasjon av oppdateringer.

 Signaturversjon: 1.193.1228.0;1.193.1228.0

 Motorversjon: %600

Error: (02/27/2015 06:30:52 PM) (Source: Service Control Manager) (User: )
Description: Det oppstod et tidsavbrudd (30000 millisekunder) under venting på et transaksjonssvar fra tjenesten WerSvc.

Error: (02/27/2015 06:30:50 PM) (Source: Service Control Manager) (User: )
Description: Kallet ScRegSetValueExW mislyktes for Security med følgende feil:
%%5

Error: (02/27/2015 06:30:47 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten Microsoft Antimalware Service ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 100 millisekunder: Start tjenesten på nytt.

Error: (02/27/2015 06:30:17 PM) (Source: Microsoft Antimalware) (User: )
Description: %%860 motoren er avsluttet på grunn av en uventet feil.

 Feiltype: %%830

 Unntakskode: 0xc0000006

 Ressurs:

Error: (02/27/2015 06:28:38 PM) (Source: Service Control Manager) (User: )
Description: Det oppstod et tidsavbrudd (30000 millisekunder) under venting på at tjenesten Windows Error Reporting Service skal koble til.

Error: (02/27/2015 06:27:46 PM) (Source: DCOM) (User: )
Description: {FE7E09CE-BBF4-4698-8BC1-37C9002DAA43}

Error: (02/27/2015 06:26:48 PM) (Source: atapi) (User: )
Description: Driveren oppdaget en feil på styreren på \Device\Ide\IdePort0.

Microsoft Office Sessions:
=========================
Error: (02/27/2015 06:33:16 PM) (Source: Application Error)(User: )
Description: C:\Windows\SysWOW64\mshtml.dllInternet ExplorerC00001853

Error: (02/27/2015 06:33:16 PM) (Source: Application Error)(User: )
Description: C:\Windows\SysWOW64\jscript9.dllInternet ExplorerC00001853

Error: (02/27/2015 06:33:16 PM) (Source: Application Error)(User: )
Description: C:\Windows\SysWOW64\mshtml.dllInternet ExplorerC00001853

Error: (02/27/2015 06:33:16 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.1763154b31a70MSHTML.dll11.0.9600.1763154b33039c000000600426000176c01d052b25ec838b4C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\MSHTML.dllb5ee3610-bea6-11e4-8fbc-e839dfa7006b

Error: (02/27/2015 06:33:16 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.1763154b31a70ntdll.dll6.1.7601.18247521ea8e7c00000060003f52e1ad001d052b27e832251C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SysWOW64\ntdll.dllb5ee0f00-bea6-11e4-8fbc-e839dfa7006b

Error: (02/27/2015 06:33:16 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.1763154b31a70MSHTML.dll11.0.9600.1763154b33039c000000600fd9df71bfc01d052b2d4003c64C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\MSHTML.dllb5ede7f0-bea6-11e4-8fbc-e839dfa7006b

Error: (02/27/2015 06:32:30 PM) (Source: Application Error)(User: )
Description: C:\Windows\System32\NaturalLanguage6.dllMicrosoft Windows Search-indekseringC00001853

Error: (02/27/2015 06:32:10 PM) (Source: Application Error)(User: )
Description: SearchIndexer.exe7.0.7601.176104dc0d019ntdll.dll6.1.7601.18247521eaf24c00000060000000000018f75e4c01d052b214c14a7cC:\Windows\system32\SearchIndexer.exeC:\Windows\SYSTEM32\ntdll.dll8ec2530c-bea6-11e4-8fbc-e839dfa7006b

Error: (02/27/2015 06:22:57 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/27/2015 06:06:11 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

=========================== Installed Programs ============================
Ad-Aware Antivirus (HKLM-x32\...\{F075020E-43B2-4F2C-9723-C81CE162E7B6}) (Version: 10.5.2.4379 - Lavasoft)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Norsk (HKLM-x32\...\{AC76BA86-7AD7-1044-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Refresh Manager (x32 Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Apple-programsupport (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5645 - AVG Technologies)
AVG 2015 (Version: 15.0.4299 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5645 - AVG Technologies) Hidden
Avinstaller skriver EPSON SX420W Series (HKLM\...\EPSON SX420W Series) (Version:  - SEIKO EPSON Corporation)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.3.0.95 - Atheros Communications)
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.60.48.55 - Broadcom Corporation)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Definition Update for Microsoft Office 2010 (KB2956079) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{03F28B72-0BEC-4998-95D9-4AA9418D0041}) (Version:  - Microsoft)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.31 - DivX, LLC)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
EpsonNet Setup 3.3 (HKLM-x32\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3b - SEIKO EPSON CORPORATION)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Marvell Miniport Driver (HKLM-x32\...\Marvell Miniport Driver) (Version: 11.43.1.3 - Marvell)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (NOR) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1, norsk språkpakke (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1044) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Access MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Klikk og bruk 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Klikk og bruk 2010 (Version: 14.0.6122.5000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Norwegian (Nynorsk)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Norwegian (Bokmål)) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Norwegian (Bokmål)) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.7.0205.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.7.205.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NOR (Version: 10.0.50903 - Microsoft Corporation) Hidden
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 7.0.0.7138 - MyHeritage.com)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 16.18.9 - NVIDIA Corporation) Hidden
NVIDIA Install Application (Version: 2.1002.172.1357 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 2.1 - NVIDIA Corporation) Hidden
NVIDIA oppdateringer 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX systemprogramvare 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 16.18.9 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.27 (Version: 1.2.27 - NVIDIA Corporation) Hidden
Opera Stable 27.0.1689.76 (HKLM-x32\...\Opera 27.0.1689.76) (Version: 27.0.1689.76 - Opera Software ASA)
Photo Story 3 for Windows (HKLM-x32\...\{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}) (Version: 3.0.1115.11 - Microsoft Corporation)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Screencast-O-Matic (HKCU\...\Screencast-O-Matic) (Version:  - Screencast-O-Matic)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Språkpakke for Microsoft Visual Studio 2010 Tools for Office Runtime (x64) – NOR (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NOR) (Version: 10.0.50903 - Microsoft Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0414-0000-0000000FF1CE}_Office14.SingleImage_{0D76C1AD-52F6-4A8D-9B0D-0B6BC9A0ECA7}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0414-0000-0000000FF1CE}_Office14.SingleImage_{0D76C1AD-52F6-4A8D-9B0D-0B6BC9A0ECA7}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0414-0000-0000000FF1CE}_Office14.SingleImage_{0D76C1AD-52F6-4A8D-9B0D-0B6BC9A0ECA7}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8BEEA2FC-D416-428A-B52A-A3ED45921151}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition (HKLM-x32\...\{90140000-006E-0414-0000-0000000FF1CE}_Office14.SingleImage_{8BEEA2FC-D416-428A-B52A-A3ED45921151}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{A4F91D60-654C-4892-BFD3-0D41ADA649B6}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597089) 32-Bit Edition (HKLM-x32\...\{90140000-006E-0414-0000-0000000FF1CE}_Office14.SingleImage_{BCE34653-DFE4-4B39-8C1C-3961D603AF15}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{0B7744D2-1FDD-4843-9987-7CE11B79F370}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{D1C4AD0B-CC79-41D2-8D6A-571E7B30658C}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{60C9499F-B532-4206-AB19-F88C3A7684D5}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2910896) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{E762A933-274B-4860-B066-A39FAB0838FD}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2956054) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{54F6ECE6-BAB4-4E7D-ADB0-072FC951A280}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{8FDB127C-B5F8-459C-B3BF-098C4270201F}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8FDB127C-B5F8-459C-B3BF-098C4270201F}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition (HKLM-x32\...\{90140000-00A1-0414-0000-0000000FF1CE}_Office14.SingleImage_{4D499015-A89A-4F25-BFB7-A5C248739E60}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2956128) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0414-0000-0000000FF1CE}_Office14.SingleImage_{F85B00F6-C544-434C-8E79-27907B338BC9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2956128) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{FC666DD5-8A58-401B-9B1E-2CBB451932E8}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2880517) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0414-0000-0000000FF1CE}_Office14.SingleImage_{B39B926F-9D05-4FF6-B0FE-8B2DCD7126A4}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2956129) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{433A91E3-5A83-41A6-828A-DCED3EE9EDA8}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinSweeper 2.1 (HKLM-x32\...\{96E8A815-3053-4616-AAC2-865E6B1792F5}_is1) (Version:  - Solvusoft Corporation)

**** End of log ****



#4 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:14 PM

Posted 27 February 2015 - 02:14 PM

You have three Antivirus installed on your system (Ad-Aware, AVG and Microsoft Security Essentials), which can cause system instability and crash your system without any warning. I'll ask you to uninstall two of them and to keep the other. If you paid for one product, keep it, otherwise, keep the one you prefer the most. On top of this, I suggest you to read quietman's post below on the dangers of using more than one Antivirus on a Windows system.

http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/#entry2316629

I see that you have two outdated versions of Java installed. Java (until 2 weeks ago) is the most exploited program by hackers and malware on Windows and having it installed on your system is a huge security risk. It's recommended to either uninstall it if you don't need it or to disable it when you don't need it to avoid being hit by an infection. I can help you install the latest version once we're done if you ever need Java.

Please uninstall the following programs:
  • Java 7 Update 25 (64-bits) - Outdated;
  • Java 7 Update 72 - Outdated;
  • WinSweeper 2.1 - Made by a suspicious company, I would use another trusted product instead like CCleaner or TFC (Temp File Cleaner, hosted here on BleepingComputer);
Once these programs will be uninstalled, please let me know.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#5 bostrak

bostrak
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 02:26 PM

Done

But couldn`t find Ad-Aware in the list...

#6 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:14 PM

Posted 27 February 2015 - 02:29 PM

According to MiniToolBox, it's not hidden at all and it should show at the top of the list:

Ad-Aware Antivirus (HKLM-x32\...\{F075020E-43B2-4F2C-9723-C81CE162E7B6}) (Version: 10.5.2.4379 - Lavasoft)


Look again and give Windows the time to load all the programs. Also, make sure that they are ordered by name (from A to Z). If you still can't find it, let me know and I'll give you instructions to uninstall it manually.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#7 bostrak

bostrak
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 02:32 PM

Found and removed

#8 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:14 PM

Posted 27 February 2015 - 02:34 PM

Alright that's good :) Now let's take a look to see if your graphic card is still well detected in the Device Manager.

3Al62Pm.pngMiniToolBox
  • Download MiniToolBox and move the executable file to your Desktop;
  • Execute MiniToolBox and check the following options:
    • List Devices - Only Problems;
  • Once this is done, click on Go and wait for the scan to complete;
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#9 bostrak

bostrak
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 02:37 PM

MiniToolBox by Farbar Version: 30-11-2014
Ran by Eier (administrator) on 27-02-2015 at 20:36:10
Running from "C:\Users\Eier\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CT886HEI"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Devices: ================================


**** End of log ****

#10 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:14 PM

Posted 27 February 2015 - 02:46 PM

That's good alright. Do you know your NVIDIA graphic card exact model or not?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#11 bostrak

bostrak
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 02:47 PM

Don`t have a Clue....

#12 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:14 PM

Posted 27 February 2015 - 02:50 PM

We'll take a look then :)

OlT01aD.pngDxDiag Log
Follow the instructions below to create a dxdiag log and post it in your next reply.
  • Press on the Win Key + R keys to bring up the Run menu;
  • Enter dxdiag in the box and press on Enter;
  • If a message comes up asking you if you want to check if your drivers are digitally signed or not, click on Yes;
  • Once the dxdiag report window open, wait for it to load completely. The progress bar is in the bottom left corner;
  • Click on the Save All Information... button, then save the file on your Desktop as dxdiag.txt;
  • Open the text file, then copy/paste all the content in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#13 bostrak

bostrak
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 02:50 PM

Nvidia Geforce experience 2.1.5
Nvidia Physx

?

according to list----

#14 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:14 PM

Posted 27 February 2015 - 02:52 PM

These are programs, not the model of your graphic card. Follow the instructions above you please, post #12 :)

http://www.bleepingcomputer.com/forums/t/568528/nvidia-virus/#entry3640839

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#15 bostrak

bostrak
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 27 February 2015 - 02:55 PM

------------------
System Information
------------------
Time of this report: 2/27/2015, 20:52:00
Machine name: EIER-PC
Operating System: Windows 7 Home Premium 64-bit (6.1, Build 7601) Service Pack 1 (7601.win7sp1_gdr.150113-1808)
Language: Norwegian (Bokmål) (Regional Setting: Norwegian (Bokmål))
System Manufacturer: SAMSUNG ELECTRONICS CO., LTD.
System Model: Q330
BIOS: Phoenix SecureCore™ NB Version 03UU.M002.20100708.WZW
Processor: Intel® Core™ i3 CPU M 350 @ 2.27GHz (4 CPUs), ~2.3GHz
Memory: 4096MB RAM
Available OS Memory: 3892MB RAM
Page File: 3130MB used, 4652MB available
Windows Dir: C:\Windows
DirectX Version: DirectX 11
DX Setup Parameters: Not found
User DPI Setting: 120 DPI (125 percent)
System DPI Setting: 96 DPI (100 percent)
DWM DPI Scaling: Disabled
DxDiag Version: 6.01.7601.17514 32bit Unicode

------------
DxDiag Notes
------------
Display Tab 1: No problems found.
Sound Tab 1: No problems found.
Input Tab: No problems found.

--------------------
DirectX Debug Levels
--------------------
Direct3D: 0/4 (retail)
DirectDraw: 0/4 (retail)
DirectInput: 0/5 (retail)
DirectMusic: 0/5 (retail)
DirectPlay: 0/9 (retail)
DirectSound: 0/5 (retail)
DirectShow: 0/6 (retail)

---------------
Display Devices
---------------
Card name: Intel® HD Graphics
Manufacturer: Intel Corporation
Chip type: Intel® HD Graphics (Core i3)
DAC type: Internal
Device Key: Enum\PCI\VEN_8086&DEV_0046&SUBSYS_C557144D&REV_02
Display Memory: 1696 MB
Dedicated Memory: 64 MB
Shared Memory: 1632 MB
Current Mode: 1366 x 768 (32 bit) (60Hz)
Monitor Name: Generisk PnP-skjerm
Monitor Model: unknown
Monitor Id: SEC3355
Native Mode: 1366 x 768(p) (60.000Hz)
Output Type: Internal
Driver Name: igdumd64.dll,igd10umd64.dll,igdumdx32,igd10umd32
Driver File Version: 8.15.0010.2622 (English)
Driver Version: 8.15.10.2622
DDI Version: 10
Driver Model: WDDM 1.1
Driver Attributes: Final Retail
Driver Date/Size: 1/10/2012 21:28:32, 8313856 bytes
WHQL Logo'd: Yes
WHQL Date Stamp:
Device Identifier: {D7B78E66-4306-11CF-C37D-5DE5A2C2C535}
Vendor ID: 0x8086
Device ID: 0x0046
SubSys ID: 0xC557144D
Revision ID: 0x0002
Driver Strong Name: oem5.inf:IntelGfx.NTamd64.6.0:iILKM0:8.15.10.2622:pci\ven_8086&dev_0046
Rank Of Driver: 00E62001
Video Accel: ModeMPEG2_A ModeMPEG2_C ModeWMV9_B ModeWMV9_C ModeVC1_B ModeVC1_C
Deinterlace Caps: {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
{BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
{BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
{BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
{BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
{BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
{BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
{BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
D3D9 Overlay: Supported
DXVA-HD: Supported
DDraw Status: Enabled
D3D Status: Enabled
AGP Status: Enabled

-------------
Sound Devices
-------------
Description: Høyttalere (Realtek High Definition Audio)
Default Sound Playback: Yes
Default Voice Playback: Yes
Hardware ID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0269&SUBSYS_144DC557&REV_1001
Manufacturer ID: 1
Product ID: 100
Type: WDM
Driver Name: RTKVHD64.sys
Driver Version: 6.00.0001.7083 (English)
Driver Attributes: Final Retail
WHQL Logo'd: Yes
Date and Size: 11/5/2013 19:47:54, 3707864 bytes
Other Files:
Driver Provider: Realtek Semiconductor Corp.
HW Accel Level: Basic
Cap Flags: 0xF1F
Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
Static/Strm HW 3D Bufs: 0, 0
HW Memory: 0
Voice Management: No
EAX™ 2.0 Listen/Src: No, No
I3DL2™ Listen/Src: No, No
Sensaura™ ZoomFX™: No

---------------------
Sound Capture Devices
---------------------
Description: Mikrofon (Realtek High Definition Audio)
Default Sound Capture: Yes
Default Voice Capture: Yes
Driver Name: RTKVHD64.sys
Driver Version: 6.00.0001.7083 (English)
Driver Attributes: Final Retail
Date and Size: 11/5/2013 19:47:54, 3707864 bytes
Cap Flags: 0x1
Format Flags: 0xFFFFF

-------------------
DirectInput Devices
-------------------
Device Name: Mus
Attached: 1
Controller ID: n/a
Vendor/Product ID: n/a
FF Driver: n/a

Device Name: Tastatur
Attached: 1
Controller ID: n/a
Vendor/Product ID: n/a
FF Driver: n/a

Device Name: HID-compliant consumer control device
Attached: 1
Controller ID: 0x0
Vendor/Product ID: 0xFEEB, 0xDEEF
FF Driver: n/a

Poll w/ Interrupt: No

-----------
USB Devices
-----------
+ USB Root Hub
| Vendor/Product ID: 0x8086, 0x3B3C
| Matching Device ID: usb\root_hub20
| Service: usbhub
|
+-+ Generic USB Hub
| | Vendor/Product ID: 0x8087, 0x0020
| | Location: Port_#0001.Hub_#0001
| | Matching Device ID: usb\class_09
| | Service: usbhub

----------------
Gameport Devices
----------------

------------
PS/2 Devices
------------
+ Standard PS/2-tastatur
| Matching Device ID: *pnp0303
| Service: i8042prt
|
+ Terminal Server Keyboard Driver
| Matching Device ID: root\rdp_kbd
| Upper Filters: kbdclass
| Service: TermDD
|
+ PS/2-kompatibel mus
| Matching Device ID: *pnp0f13
| Service: i8042prt
|
+ Terminal Server Mouse Driver
| Matching Device ID: root\rdp_mou
| Upper Filters: mouclass
| Service: TermDD

------------------------
Disk & DVD/CD-ROM Drives
------------------------
Drive: C:
Free Space: 45.0 GB
Total Space: 114.7 GB
File System: NTFS
Model: SAMSUNG HM321HI ATA Device

Drive: D:
Free Space: 166.6 GB
Total Space: 170.0 GB
File System: NTFS
Model: SAMSUNG HM321HI ATA Device

Drive: Q:
Model: n/a

Drive: E:
Model: TSSTcorp CDDVDW TS-U633J ATA Device
Driver: c:\windows\system32\drivers\cdrom.sys, 6.01.7601.17514 (Norwegian (Bokmål)), , 0 bytes

--------------
System Devices
--------------
Name: Intel® 82801 PCI Bridge - 2448
Device ID: PCI\VEN_8086&DEV_2448&SUBSYS_C557144D&REV_A5\3&11583659&0&F0
Driver: n/a

Name: High Definition Audio-kontroller
Device ID: PCI\VEN_8086&DEV_3B56&SUBSYS_C557144D&REV_05\3&11583659&0&D8
Driver: n/a

Name: Standard AHCI 1.0 Serial ATA-kontroller
Device ID: PCI\VEN_8086&DEV_3B29&SUBSYS_C557144D&REV_05\3&11583659&0&FA
Driver: n/a

Name: Intel® HD Graphics
Device ID: PCI\VEN_8086&DEV_0046&SUBSYS_C557144D&REV_02\3&11583659&0&10
Driver: n/a

Name: Intel® 5 Series/3400 Series Chipset Family PCI Express Root Port 4 - 3B48
Device ID: PCI\VEN_8086&DEV_3B48&SUBSYS_C557144D&REV_05\3&11583659&0&E3
Driver: n/a

Name: Intel® HM55 Express Chipset LPC Interface Controller - 3B09
Device ID: PCI\VEN_8086&DEV_3B09&SUBSYS_C557144D&REV_05\3&11583659&0&F8
Driver: n/a

Name: PCI standard PCI-to-PCI bridge
Device ID: PCI\VEN_8086&DEV_0045&SUBSYS_C557144D&REV_02\3&11583659&0&08
Driver: n/a

Name: PCI standard host CPU bridge
Device ID: PCI\VEN_8086&DEV_2D13&SUBSYS_80868086&REV_02\3&4F11E61&0&13
Driver: n/a

Name: Intel® 5 Series/3400 Series Chipset Family PCI Express Root Port 2 - 3B44
Device ID: PCI\VEN_8086&DEV_3B44&SUBSYS_C557144D&REV_05\3&11583659&0&E1
Driver: n/a

Name: PCI standard host CPU bridge
Device ID: PCI\VEN_8086&DEV_0044&SUBSYS_C557144D&REV_02\3&11583659&0&00
Driver: n/a

Name: PCI standard host CPU bridge
Device ID: PCI\VEN_8086&DEV_2D12&SUBSYS_80868086&REV_02\3&4F11E61&0&12
Driver: n/a

Name: Intel® 5 Series/3400 Series Chipset Family PCI Express Root Port 1 - 3B42
Device ID: PCI\VEN_8086&DEV_3B42&SUBSYS_C557144D&REV_05\3&11583659&0&E0
Driver: n/a

Name: Broadcom 802.11n nettverkskort
Device ID: PCI\VEN_14E4&DEV_4727&SUBSYS_7179144F&REV_01\4&1A4A14A8&0&00E0
Driver: n/a

Name: PCI standard host CPU bridge
Device ID: PCI\VEN_8086&DEV_2D11&SUBSYS_80868086&REV_02\3&4F11E61&0&11
Driver: n/a

Name: Standard Enhanced PCI to USB Host Controller
Device ID: PCI\VEN_8086&DEV_3B3C&SUBSYS_C557144D&REV_05\3&11583659&0&D0
Driver: n/a

Name: PCI standard host CPU bridge
Device ID: PCI\VEN_8086&DEV_2D10&SUBSYS_80868086&REV_02\3&4F11E61&0&10
Driver: n/a

Name: Marvell Yukon 88E8040 Family PCI-E Fast Ethernet Controller
Device ID: PCI\VEN_11AB&DEV_4354&SUBSYS_C557144D&REV_00\4&377B5DE4&0&00E3
Driver: n/a

Name: Standard Enhanced PCI to USB Host Controller
Device ID: PCI\VEN_8086&DEV_3B34&SUBSYS_C557144D&REV_05\3&11583659&0&E8
Driver: n/a

Name: PCI standard host CPU bridge
Device ID: PCI\VEN_8086&DEV_2D01&SUBSYS_80868086&REV_02\3&4F11E61&0&01
Driver: n/a

Name: Display
Device ID: PCI\VEN_10DE&DEV_0A70&SUBSYS_C557144D&REV_A2\4&24813DC5&0&0008
Driver: n/a

Name: Intel® 5 Series/3400 Series Chipset Family Thermal Subsystem - 3B32
Device ID: PCI\VEN_8086&DEV_3B32&SUBSYS_C557144D&REV_05\3&11583659&0&FE
Driver: n/a

Name: PCI standard host CPU bridge
Device ID: PCI\VEN_8086&DEV_2C62&SUBSYS_80868086&REV_02\3&4F11E61&0&00
Driver: n/a

Name: Intel® Management Engine Interface
Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_C557144D&REV_06\3&11583659&0&B0
Driver: n/a

Name: Intel® 5 Series/3400 Series Chipset Family SMBus Controller - 3B30
Device ID: PCI\VEN_8086&DEV_3B30&SUBSYS_C557144D&REV_05\3&11583659&0&FB
Driver: n/a

------------------
DirectShow Filters
------------------

DirectShow Filters:
WMAudio Decoder DMO,0x00800800,1,1,WMADMOD.DLL,6.01.7601.17514
WMAPro over S/PDIF DMO,0x00600800,1,1,WMADMOD.DLL,6.01.7601.17514
WMSpeech Decoder DMO,0x00600800,1,1,WMSPDMOD.DLL,6.01.7601.17514
MP3 Decoder DMO,0x00600800,1,1,mp3dmod.dll,6.01.7600.16385
Mpeg4s Decoder DMO,0x00800001,1,1,mp4sdecd.dll,6.01.7600.16385
WMV Screen decoder DMO,0x00600800,1,1,wmvsdecd.dll,6.01.7601.17514
WMVideo Decoder DMO,0x00800001,1,1,wmvdecod.dll,6.01.7601.18221
Mpeg43 Decoder DMO,0x00800001,1,1,mp43decd.dll,6.01.7600.16385
Mpeg4 Decoder DMO,0x00800001,1,1,mpg4decd.dll,6.01.7600.16385
DV Muxer,0x00400000,0,0,qdv.dll,6.06.7601.17514
MainConcept MPEG Demultiplexer,0x00800100,1,2,mc_demux_mp2_ds.ax,9.09.0012.5440
Color Space Converter,0x00400001,1,1,quartz.dll,6.06.7601.17713
WM ASF Reader,0x00400000,0,0,qasf.dll,12.00.7601.17514
Screen Capture filter,0x00200000,0,1,wmpsrcwp.dll,12.00.7601.17514
AVI Splitter,0x00600000,1,1,quartz.dll,6.06.7601.17713
VGA 16 Color Ditherer,0x00400000,1,1,quartz.dll,6.06.7601.17713
SBE2MediaTypeProfile,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft DTV-DVD Video Decoder,0x005fffff,2,4,msmpeg2vdec.dll,12.00.9200.17037
AC3 Parser Filter,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
StreamBufferSink,0x00200000,0,0,sbe.dll,6.06.7601.17528
MJPEG Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.17713
MPEG-I Stream Splitter,0x00600000,1,2,quartz.dll,6.06.7601.17713
SAMI (CC) Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514
MPEG-2 Splitter,0x005fffff,1,0,mpg2splt.ax,6.06.7601.17528
Closed Captions Analysis Filter,0x00200000,2,5,cca.dll,6.06.7601.17514
SBE2FileScan,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft MPEG-2 Video Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
Photo Story 3 Source Filter,0x00000000,0,0,,
Internal Script Command Renderer,0x00800001,1,0,quartz.dll,6.06.7601.17713
MPEG Audio Decoder,0x03680001,1,1,quartz.dll,6.06.7601.17713
DV Splitter,0x00600000,1,2,qdv.dll,6.06.7601.17514
Video Mixing Renderer 9,0x00200000,1,0,quartz.dll,6.06.7601.17713
Microsoft MPEG-2 Encoder,0x00200000,2,1,msmpeg2enc.dll,6.01.7601.17514
ACM Wrapper,0x00600000,1,1,quartz.dll,6.06.7601.17713
Video Renderer,0x00800001,1,0,quartz.dll,6.06.7601.17713
MPEG-2 Video Stream Analyzer,0x00200000,0,0,sbe.dll,6.06.7601.17528
Line 21 Decoder,0x00600000,1,1,qdvd.dll,6.06.7601.18611
Video Port Manager,0x00600000,2,1,quartz.dll,6.06.7601.17713
Video Renderer,0x00400000,1,0,quartz.dll,6.06.7601.17713
DivX Demux Filter,0x00800002,0,3,DirectShowDemuxFilter.dll,1.00.0003.0145
VPS Decoder,0x00200000,0,0,WSTPager.ax,6.06.7601.17514
WM ASF Writer,0x00400000,0,0,qasf.dll,12.00.7601.17514
DivX Demux Filter (Unrestricted Edition),0x00200000,0,3,DirectShowDemuxFilter.dll,1.00.0003.0145
VBI Surface Allocator,0x00600000,1,1,vbisurf.ax,6.01.7601.17514
File writer,0x00200000,1,0,qcap.dll,6.06.7601.17514
iTV Data Sink,0x00600000,1,0,itvdata.dll,6.06.7601.17514
iTV Data Capture filter,0x00600000,1,1,itvdata.dll,6.06.7601.17514
WAV Dest,0x00000000,0,0,,
DVD Navigator,0x00200000,0,3,qdvd.dll,6.06.7601.18611
Overlay Mixer2,0x00200000,1,1,qdvd.dll,6.06.7601.18611
AVI Draw,0x00600064,9,1,quartz.dll,6.06.7601.17713
RDP DShow Redirection Filter,0xffffffff,1,0,DShowRdpFilter.dll,
Microsoft MPEG-2 Audio Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
WST Pager,0x00200000,1,1,WSTPager.ax,6.06.7601.17514
MPEG-2 Demultiplexer,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
DV Video Decoder,0x00800000,1,1,qdv.dll,6.06.7601.17514
SampleGrabber,0x00200000,1,1,qedit.dll,6.06.7601.18501
Null Renderer,0x00200000,1,0,qedit.dll,6.06.7601.18501
MPEG-2 Sections and Tables,0x005fffff,1,0,Mpeg2Data.ax,6.06.7601.17514
Microsoft AC3 Encoder,0x00200000,1,1,msac3enc.dll,6.01.7601.17514
StreamBufferSource,0x00200000,0,0,sbe.dll,6.06.7601.17528
Smart Tee,0x00200000,1,2,qcap.dll,6.06.7601.17514
Overlay Mixer,0x00200000,0,0,qdvd.dll,6.06.7601.18611
AVI Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.17713
AVI/WAV File Source,0x00400000,0,2,quartz.dll,6.06.7601.17713
Wave Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
MIDI Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
Multi-file Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
File stream renderer,0x00400000,1,1,quartz.dll,6.06.7601.17713
MainConcept Stream Parser,0x00400000,1,2,mc_demux_mp2_ds.ax,9.09.0012.5440
Microsoft DTV-DVD Audio Decoder,0x005fffff,1,1,msmpeg2adec.dll,6.01.7140.0000
StreamBufferSink2,0x00200000,0,0,sbe.dll,6.06.7601.17528
AVI Mux,0x00200000,1,0,qcap.dll,6.06.7601.17514
Line 21 Decoder 2,0x00600002,1,1,quartz.dll,6.06.7601.17713
File Source (Async.),0x00400000,0,1,quartz.dll,6.06.7601.17713
File Source (URL),0x00400000,0,1,quartz.dll,6.06.7601.17713
WAV Dest,0x00000000,0,0,,
Infinite Pin Tee Filter,0x00200000,1,1,qcap.dll,6.06.7601.17514
Enhanced Video Renderer,0x00200000,1,0,evr.dll,6.01.7601.17514
BDA MPEG2 Transport Information Filter,0x00200000,2,0,psisrndr.ax,6.06.7601.17669
MPEG Video Decoder,0x40000001,1,1,quartz.dll,6.06.7601.17713

WDM Streaming Tee/Splitter Devices:
Tee/Sink-to-Sink-konverterer,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

Video Compressors:
WMVideo8 Encoder DMO,0x00600800,1,1,wmvxencd.dll,6.01.7600.16385
WMVideo9 Encoder DMO,0x00600800,1,1,wmvencod.dll,6.01.7600.16385
MSScreen 9 encoder DMO,0x00600800,1,1,wmvsencd.dll,6.01.7600.16385
DV Video Encoder,0x00200000,0,0,qdv.dll,6.06.7601.17514
MJPEG Compressor,0x00200000,0,0,quartz.dll,6.06.7601.17713
Cinepak-kodek fra Radius,0x00200000,1,1,qcap.dll,6.06.7601.17514
Intel IYUV codec,0x00200000,1,1,qcap.dll,6.06.7601.17514
Intel IYUV codec,0x00200000,1,1,qcap.dll,6.06.7601.17514
Microsoft RLE,0x00200000,1,1,qcap.dll,6.06.7601.17514
Microsoft Video 1,0x00200000,1,1,qcap.dll,6.06.7601.17514

Audio Compressors:
WM Speech Encoder DMO,0x00600800,1,1,WMSPDMOE.DLL,6.01.7600.16385
WMAudio Encoder DMO,0x00600800,1,1,WMADMOE.DLL,6.01.7600.16385
IMA ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.17713
PCM,0x00200000,1,1,quartz.dll,6.06.7601.17713
Microsoft ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.17713
GSM 6.10,0x00200000,1,1,quartz.dll,6.06.7601.17713
CCITT A-Law,0x00200000,1,1,quartz.dll,6.06.7601.17713
CCITT u-Law,0x00200000,1,1,quartz.dll,6.06.7601.17713
MPEG Layer-3,0x00200000,1,1,quartz.dll,6.06.7601.17713

Audio Capture Sources:
Mikrofon (Realtek High Definiti,0x00200000,0,0,qcap.dll,6.06.7601.17514

PBDA CP Filters:
PBDA DTFilter,0x00600000,1,1,CPFilters.dll,6.06.7601.17528
PBDA ETFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528
PBDA PTFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528

Midi Renderers:
Default MidiOut Device,0x00800000,1,0,quartz.dll,6.06.7601.17713
Microsoft GS Wavetable Synth,0x00200000,1,0,quartz.dll,6.06.7601.17713

WDM Streaming Capture Devices:
Realtek HD Audio Mic input,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
Realtek HD Audio Stereo input,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
WebCam SCB-0350M,0x00200000,1,2,ksproxy.ax,6.01.7601.17514

WDM Streaming Rendering Devices:
Realtek HD Audio output,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

BDA Network Providers:
Microsoft ATSC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBS Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBT Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft Network Provider,0x00200000,0,1,MSNP.ax,6.06.7601.17514

Video Capture Sources:
WebCam SCB-0350M,0x00200000,1,2,ksproxy.ax,6.01.7601.17514

Multi-Instance Capable VBI Codecs:
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514

BDA Transport Information Renderers:
BDA MPEG2 Transport Information Filter,0x00600000,2,0,psisrndr.ax,6.06.7601.17669
MPEG-2 Sections and Tables,0x00600000,1,0,Mpeg2Data.ax,6.06.7601.17514

BDA CP/CA Filters:
Decrypt/Tag,0x00600000,1,1,EncDec.dll,6.06.7601.17708
Encrypt/Tag,0x00200000,0,0,EncDec.dll,6.06.7601.17708
PTFilter,0x00200000,0,0,EncDec.dll,6.06.7601.17708
XDS Codec,0x00200000,0,0,EncDec.dll,6.06.7601.17708

WDM Streaming Communication Transforms:
Tee/Sink-to-Sink-konverterer,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

Audio Renderers:
Høyttalere (Realtek High Defini,0x00200000,1,0,quartz.dll,6.06.7601.17713
Default DirectSound Device,0x00800000,1,0,quartz.dll,6.06.7601.17713
Default WaveOut Device,0x00200000,1,0,quartz.dll,6.06.7601.17713
DirectSound: Høyttalere (Realtek High Definition Audio),0x00200000,1,0,quartz.dll,6.06.7601.17713

---------------
EVR Power Information
---------------
Current Setting: {5C67A112-A4C9-483F-B4A7-1D473BECAFDC} (Quality)
Quality Flags: 2576
Enabled:
Force throttling
Allow half deinterlace
Allow scaling
Decode Power Usage: 100
Balanced Flags: 1424
Enabled:
Force throttling
Allow batching
Force half deinterlace
Force scaling
Decode Power Usage: 50
PowerFlags: 1424
Enabled:
Force throttling
Allow batching
Force half deinterlace
Force scaling
Decode Power Usage: 0




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users