When playing Youtube videos firefox freezes when it wants to

May 20, 2014 at 11:17:40
Specs: Windows 7
when I open youtube vidoes sometimes getting the stop the plugin or continue then crashes like there are to many tabs open and sometimes I only have like 3 tabs. I have tried resetting the advanced settings in firefox and even reinstalling no go? laptop 8gigs of ram corei7 cpu

See More: When playing Youtube videos firefox freezes when it wants to

Report •

#1
May 20, 2014 at 17:24:05
Isolate the problem & see if it freezes using a non Mozilla browser.

Report •

#2
May 20, 2014 at 17:47:39
oh I have tried that and I have 3 browsers, (ff,IE,GC) but very hard to tell because it happens randomly.

Report •

#3
May 20, 2014 at 18:05:37
"very hard to tell because it happens randomly"
That is probably the way to go, only use IE or GC for YouTube for a period of time.

Your specs are great, so unless you have an hardware problem, that should not be the problem.

In the meantime, I can see if there is anything lurking.

Run Zoek
http://hijackthis.nl/smeenk/

Double click zip file and extract the .exe to your Desktop: If your default download location is not the Desktop, drag it ( .exe ) out of it's location onto the Desktop.

Disable your antivirus prior to running this scan.
http://www.bleepingcomputer.com/for...
http://www.techsupportforum.com/for...

Close any open windows and all browsers.
Right click on Zoek.exe, click Run as Administrator and OK any UAC prompts to run the program.
NOTE: Please wait while the tool starts. It will appear to be doing nothing and may take a few minutes to come up.
You will see the Zoek console:

When finished the logfile will be opened in notepad.
If a reboot is needed the logfile will be opened after reboot.
The zoek-results.log can also be found on your system drive (Usually C:\)

Upload the log to a site of your choosing, or use Image Uploader. I upload to Imgur.com for images & load.to for files ( neither need an account ) Give us the link please.
Image Uploader
http://www.softpedia.com/get/Intern...
http://www.softpedia.com/progScreen...
http://zenden.ws/imageuploader_ru

How to use for files.
http://i.imgur.com/FhtnM6c.gif
http://i.imgur.com/yBtjlpb.gif
http://i.imgur.com/txFkgpT.gif

Free file sharing sites come & go, if Imgur.com & load.to are too busy ( or not working ) here are others to try.
free file upload no account needed
http://is.gd/ije9W6
http://www.zippyshare.com/
http://www.speedyshare.com/
http://www.filedropper.com/index.php
http://www.wikisend.com/
https://www.sendspace.com/
http://www.megafileupload.com/

message edited by Johnw


Report •

Related Solutions

#4
May 20, 2014 at 20:44:40
Download the newest version of Flash Player and install it. This often fixes this and similar problems.
It is not a bad idea to also run Malwarebytes to make sure it is not malware infecting your system.
Also try disabling all browser add ons except Flash and Reader and see if that helps.

You have to be a little bit crazy to keep you from going insane.


Report •

#5
May 21, 2014 at 11:12:54

Zoek.exe v5.0.0.0 Updated 21-05-2014
Tool run by Dell on Wed 05/21/2014 at 12:57:32.95.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dell\Desktop\New folder\zoek.exe [Scan all users] [Deep Scan]

==== System Restore Info ======================

5/21/2014 1:03:46 PM Zoek.exe System Restore Point Created Succesfully.

==== Running Processes ======================

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TotalMedia Server\TM Server.exe
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Users\Dell\Desktop\New folder\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8087 MB
CPU Info: Intel(R) Core(TM) i7-2620M CPU @ 2.70GHz
CPU Speed: 2685.7 MHz
Sound Card: Speakers (Realtek High Definiti |
Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | NVIDIA GeForce GT 540M | NVIDIA GeForce GT 540M | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Bluetooth Device (Personal Area Network) | Microsoft Virtual WiFi Miniport Adapter #2 | Microsoft Virtual WiFi Miniport Adapter | Intel(R) Centrino(R) Wireless-N 1030 | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (D: | ) D: PLDS DVDRWBD DS-6E2SH
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 931.4GB
Hard Disks - Free: C: 614.8GB
Manufacturer *: Dell Inc.
BIOS Info: AT/AT COMPATIBLE | 05/29/12 | DELL - 2
Time Zone: Central Standard Time
Motherboard *: Dell Inc. 0NJT03
Country: United States
Language: ENU

==== System Specs (Software) ======================

Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: avast! Antivirus disabled (Outdated)
Internet Explorer Version: 11.0.9600.17107
Mozilla Firefox version: 29.0.1 (x86 en-US)
Google Chrome version: 35.0.1916.114
Sun Java version: 1.7.0_55 (32-bit)
Sun Java version: 1.7.0_55 (64-bit)
Flash Player version: 13.0.0.214

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Dell\AppData\Local\Temp ====
2014-05-20 18:13:43 19309E1CC33F5C4337F9EF96B8DA820B 62712 ----a-w- C:\Users\Dell\AppData\Local\Temp\som_fs.exe
2014-05-20 18:13:39 2FAFB224F30F7F9C718767EDD6018240 1955840 ----a-w- C:\Users\Dell\AppData\Local\Temp\som_mp4_encoder.exe
2014-05-20 18:12:32 23A56C5D0986B3BCDED2591F2693A7C0 90624 ----a-w- C:\Users\Dell\AppData\Local\Temp\Screenr\SOMNative-2.3.6.dll
2014-05-16 20:46:40 E12A1B5088A8A465F2E48E61CD8D2C87 9580608 ----a-w- C:\Users\Dell\AppData\Local\Temp\Foxit Reader Updater.exe
2014-05-15 03:15:23 F51A05350A7900B0B255F3DA4F146E3E 34304 ----a-w- C:\Users\Dell\AppData\Local\Temp\ShellHook.dll
====== Java Cache =====
2014-05-20 18:12:19 63C2C8E2392135017EA7724F6B56A930 95 ----a-w- C:\Users\Dell\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\6ac16b19-4467bd876236950868ce9e66048cceabd0de6c9d5e84bdeebc21f3abfe5207da-6.0.lap
2014-04-28 23:07:50 5D1F7680F31C28360E65A187926E6517 463 ----a-w- C:\Users\Dell\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\625126aa-4f7b97a4e5d72ae793c77a86b81cb3ae8c6cdfaa1ee6a2a36fa29b889055d2f2-6.0.lap
====== C:\Windows\SysWOW64 =====
2014-05-15 17:06:14 FBCF3F01177953EBF1E735643621CCF5 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2014-05-15 17:06:11 EB5347F6149D3FF25F4D609A21A3BD67 17382912 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-05-15 17:06:10 10D531ADC7B8FB36C7361D44AF6E8AB6 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-05-15 13:08:10 E9D88493FBDB36D4B65C6F2F7F122C95 12874240 ----a-w- C:\Windows\SysWOW64\shell32.dll
2014-05-15 13:07:33 9DE19EA21DF99AF15BA5A947E5317F9E 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2014-05-15 13:07:33 4D59F470985D08139E42D15842816C47 3969984 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 13:07:32 31FA2485DFC773F1E718A4D19F443FA9 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 13:07:31 ED195AC76E10F17F6DD60C49666F2A83 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2014-05-15 13:07:29 995B39A08421C7725D1DF8DACEBBFC89 538112 ----a-w- C:\Windows\SysWOW64\objsel.dll
2014-05-15 13:07:28 461B713DE7F353C6447B744F1A049930 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
2014-05-15 13:07:28 3A1ABE045A3E30799576E83A2D012B43 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2014-05-15 13:07:27 541BB9B4C899ADCC5D3DB89208C1F409 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2014-05-15 13:07:26 FBC78B5D12A4F5A62D9C91E0E0E46D46 49664 ----a-w- C:\Windows\SysWOW64\adprovider.dll
2014-05-15 13:07:26 834A859BB331B0B2CCAE25BB1986F80D 47616 ----a-w- C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-15 13:07:26 828185688FDAAE6C7959B884ABED1766 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll
2014-05-15 13:07:26 62C0798CC68EBF42F29C92E6CD6DC3D6 36864 ----a-w- C:\Windows\SysWOW64\dimsroam.dll
2014-05-15 13:07:26 38A30B8E4216BE24D30F766EF3BAC2C7 48128 ----a-w- C:\Windows\SysWOW64\capiprovider.dll
2014-05-15 13:07:26 335FA669FC952BC4888CEDBDB42607E2 51200 ----a-w- C:\Windows\SysWOW64\cngprovider.dll
2014-05-15 13:07:24 5E11C55CC4D9330E55CCB22B1F20BB33 35328 ----a-w- C:\Windows\SysWOW64\wincredprovider.dll
2014-05-15 13:07:24 2A86C18CE6869C77FCEB62F3B47D4D5B 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2014-05-15 13:07:23 C94CE65AE7701E9FDBA889045543E27C 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2014-05-15 13:07:23 75878492F2B33405EEF900F8C16C6D08 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-05-15 17:06:14 A920E1336F9FEA95477763E2CC15891B 84992 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2014-05-15 17:06:14 797E2E5C309AFF76990D5B7AF457EACA 23544320 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-05-15 17:06:10 A45BFDCFD5864F658289A165E6E0227F 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-05-15 13:08:13 427015D56DF17241F634611557146C57 14175744 ----a-w- C:\Windows\Sysnative\shell32.dll
2014-05-15 13:08:09 4A795989DF0043973711B666D36D2678 477184 ----a-w- C:\Windows\Sysnative\aepdu.dll
2014-05-15 13:08:07 485FB1F3792FF7B5D5EBB99AB870E588 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll
2014-05-15 13:07:36 9358149234A4F3FE00CF5C2096DC1652 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2014-05-15 13:07:34 B19C8390A1D641B9AC4490D4828A7B5E 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll
2014-05-15 13:07:32 E2A483E796D5FC7E447725FD01D98FA0 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2014-05-15 13:07:31 89EF1CE0CE43AB8F55247D746739A321 722944 ----a-w- C:\Windows\Sysnative\objsel.dll
2014-05-15 13:07:30 6B47CF5C27865DDF6680E4D834FBE34F 5550016 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2014-05-15 13:07:28 B6D8C1202DACA028AD94BDA2795CBBE9 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2014-05-15 13:07:28 851BB346CD59D9B3BC8854384C7DD5C3 424960 ----a-w- C:\Windows\Sysnative\KernelBase.dll
2014-05-15 13:07:28 26AF184300C0868D854D5A3092234E24 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll
2014-05-15 13:07:26 CF13522172342AD8196B329C15D68E23 44544 ----a-w- C:\Windows\Sysnative\dimsroam.dll
2014-05-15 13:07:26 BDA8B14AFE99A0C52BFEA64C5AC62171 52736 ----a-w- C:\Windows\Sysnative\dpapiprovider.dll
2014-05-15 13:07:26 9D942180B5B6CE1C882B9CC54EA1F275 57344 ----a-w- C:\Windows\Sysnative\cngprovider.dll
2014-05-15 13:07:26 692E9886B2A475684F7E3294BF66E97D 56832 ----a-w- C:\Windows\Sysnative\adprovider.dll
2014-05-15 13:07:26 4959DE74643CBC4B83E5BC99486A4FC9 53760 ----a-w- C:\Windows\Sysnative\capiprovider.dll
2014-05-15 13:07:26 481F70241D4EA038BB02590A30F15A23 340992 ----a-w- C:\Windows\Sysnative\schannel.dll
2014-05-15 13:07:25 C072064F95579C0D6D86AF5B3DC53192 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll
2014-05-15 13:07:24 9A3C6D8593F29A9F66744A3D4E6309B2 39936 ----a-w- C:\Windows\Sysnative\wincredprovider.dll
2014-05-15 13:07:24 82A72E99AA1CF0B04D3B9843CBA3AEC1 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2014-05-15 13:07:24 8098627D0AA1706D69C5AF3F74332ABB 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2014-05-15 13:07:24 39312B37C5FE5138F99680A49ACD3AEA 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2014-05-15 13:07:24 204F3F58212B3E422C90BD9691A2DF28 31232 ----a-w- C:\Windows\Sysnative\lsass.exe
2014-05-07 18:42:21 5614386D4CFDF9E56F355C45BEEBC976 12872 ----a-w- C:\Windows\Sysnative\bootdelete.exe
====== C:\Windows\Sysnative\drivers =====
2014-05-15 13:07:27 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-05-15 13:07:25 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
====== C:\Windows\Tasks ======
2014-05-01 13:33:47 -------- d-----w- C:\Windows\Sysnative\Tasks\Apple
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-07 16:51:30 -------- d-----w- C:\Program Files\HitmanPro
2014-05-05 01:59:32 -------- d-----w- C:\Program Files\CamStudio 2.7
2014-05-01 01:56:44 -------- d-----w- C:\Program Files\Java
2014-04-28 05:02:33 -------- d-----w- C:\Program Files\Microsoft Visual Studio 9.0
2014-04-28 02:27:46 -------- d-----w- C:\Program Files\WinHTTrack
======= C:\PROGRA~2 =====
2014-05-07 21:20:50 -------- d-----w- C:\PROGRA~2\JetBrains
2014-05-05 19:24:31 -------- d-----w- C:\PROGRA~2\TechSmith
2014-05-01 01:52:56 -------- d-----w- C:\PROGRA~2\Apple Software Update
2014-04-30 00:06:41 -------- d-----w- C:\PROGRA~2\Yahoo!
2014-04-29 21:44:12 -------- d-----w- C:\PROGRA~2\Cain
2014-04-28 05:19:00 -------- d-----w- C:\PROGRA~2\Nmap
2014-04-28 05:06:50 -------- d-----w- C:\PROGRA~2\Microsoft WSE
2014-04-28 05:02:34 -------- d-----w- C:\PROGRA~2\Microsoft Visual Studio 9.0
2014-04-28 04:34:03 -------- d-----w- C:\PROGRA~2\SQLPowerInjector
======= C: =====
2014-04-30 20:52:03 2AABCBF1CE1B11952C1AB9FFCB672D40 1024 ----a-w- C:\.rnd
====== C:\Users\Dell\AppData\Roaming ======
2014-05-07 21:28:50 -------- d-----w- C:\Users\Dell\AppData\Roaming\JetBrains
2014-05-07 21:28:12 -------- d-----w- C:\Users\Dell\AppData\Local\.distlib
2014-05-07 02:17:13 -------- d-----w- C:\Users\Public\AppData\Local\temp
2014-05-07 02:17:13 -------- d-----w- C:\Users\Default\AppData\Local\temp
2014-05-07 02:17:13 -------- d-----w- C:\Users\Default User\AppData\Local\temp
2014-05-06 20:02:04 -------- d-----w- C:\Users\Dell\AppData\Local\CrashDumps
2014-05-05 19:24:31 -------- d-----w- C:\Users\Dell\AppData\Local\TechSmith
2014-05-05 02:06:15 C2C7848C95BB6DFBD0158F64EE749C66 408 ----a-w- C:\Users\Dell\AppData\Roaming\CamShapes.ini
2014-05-05 02:06:15 5B0473147A01263286A5ED902217DDCB 408 ----a-w- C:\Users\Dell\AppData\Roaming\CamLayout.ini
2014-05-05 02:06:15 11B3CADB5D9A161053ECE7EE89E5BBDF 74 ----a-w- C:\Users\Dell\AppData\Roaming\Camdata.ini
2014-05-05 02:06:15 01C24A6D76D71281ED24C9242CEBC554 4535 ----a-w- C:\Users\Dell\AppData\Roaming\CamStudio.cfg
2014-05-05 02:00:01 9E3D46FEA2CB93CF7CBA1E216DC5E68A 96 ----a-w- C:\Users\Dell\AppData\Roaming\version2.xml
2014-05-05 01:52:19 -------- d-----w- C:\Users\Dell\AppData\Local\ezvid,_inc
2014-05-05 01:52:18 5B35EB87B37F92D9F2CCA2E35A92B7EF 4608 ----a-w- C:\Users\Dell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-01 01:53:42 -------- d-----w- C:\Users\Dell\AppData\Local\Apple Computer
2014-05-01 01:53:41 -------- d-----w- C:\Users\Dell\AppData\Roaming\Apple Computer
2014-05-01 01:52:58 -------- d-----w- C:\Users\Dell\AppData\Local\Apple
2014-04-30 02:32:39 -------- d-----w- C:\Users\Guest\AppData\Local\Google
2014-04-30 02:32:39 -------- d-----w- C:\Users\Guest\AppData\Local\Comodo
2014-04-30 02:32:39 -------- d-----w- C:\Users\Dell\AppData\Local\Comodo
2014-04-30 02:32:39 -------- d-----w- C:\Users\Administrator\AppData\Local\Comodo
2014-04-30 02:32:38 -------- d-----w- C:\Users\Administrator\AppData\Local\Google
2014-04-30 00:08:10 -------- d-----w- C:\Users\Dell\AppData\Roaming\Yahoo!
2014-04-28 05:19:24 -------- d-----w- C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nmap
2014-04-28 05:15:43 -------- d-----w- C:\Users\Dell\AppData\Roaming\Hewlett-Packard
2014-04-28 05:11:51 -------- d-----w- C:\Users\Dell\AppData\Roaming\Subversion
====== C:\Users\Dell ======
2014-05-19 22:18:23 -------- d-----w- C:\Users\Dell\Tera Patrick collection
2014-05-15 01:55:08 -------- d-----w- C:\Users\Dell\.idlerc
2014-05-14 17:50:07 36FE080530E6D855B2A825BB8B3C663D 2387520 ----a-w- C:\Users\Dell\ooVooSetup.exe
2014-05-09 20:21:08 -------- d-----r- C:\Windows\SysNative\config\systemprofile\Searches
2014-05-07 22:27:42 -------- d-----w- C:\Users\Dell\PycharmProjects
2014-05-07 21:28:22 -------- d-----w- C:\Users\Dell\.PyCharm30
2014-05-07 21:28:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.4
2014-05-07 21:20:50 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2014-05-07 16:49:28 -------- d-----w- C:\ProgramData\HitmanPro
2014-05-07 01:16:26 4E189550ADD71CA6FC1BB09023CC35B1 47616 ----a-w- C:\Users\Dell\Resume Cisco 12 2014.doc
2014-05-05 19:24:43 DB460CA0C123EB2B606F5F216A304AE0 1176 ----a-w- C:\Users\Dell\Snagit 11 Editor.lnk
2014-05-05 19:24:43 93EC457D410C43A1FC311E2B5AE41D3D 1132 ----a-w- C:\Users\Dell\Snagit 11.lnk
2014-05-05 19:24:42 -------- d-----w- C:\ProgramData\regid.1995-08.com.techsmith
2014-05-05 19:24:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2014-05-05 19:24:39 -------- d-----w- C:\ProgramData\TechSmith
2014-05-05 01:59:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
2014-05-03 05:06:17 4EDA903B8E00B1445D091F3CFE25AB7A 2935 ----a-w- C:\Users\Dell\Microsoft Project 2010.lnk
2014-05-03 05:04:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-05-01 01:53:30 080FE9B4069C4932E9D120A4BF16DC68 2491 ----a-w- C:\Users\Dell\Safari.lnk
2014-05-01 01:52:56 -------- d-----w- C:\ProgramData\Apple
2014-04-30 02:32:39 -------- d-----w- C:\Users\Guest\AppData
2014-04-30 02:32:39 -------- d-----w- C:\ProgramData\f0c88638c94a2f0f
2014-04-30 02:32:11 -------- d-----w- C:\ProgramData\MiniApp
2014-04-30 02:31:17 -------- d-----w- C:\ProgramData\InstallMate
2014-04-30 00:07:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
2014-04-30 00:07:40 -------- d-----w- C:\ProgramData\Yahoo!
2014-04-29 21:44:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain
2014-04-28 05:19:49 -------- d-----w- C:\Users\Dell\.zenmap
2014-04-28 05:08:18 99607C68FE8BC446B0B4CC4B1D42AE2C 248 ----a-w- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-04-28 05:07:16 -------- d-----w- C:\ProgramData\HP
2014-04-28 05:01:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2014-04-28 04:59:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 R2
2014-04-28 04:34:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQL Power Injector
2014-04-28 02:27:48 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinHTTrack
2014-04-25 14:28:57 -------- d-----w- C:\Users\Dell\Movies
2014-04-24 00:38:01 -------- d-----w- C:\Users\Dell\.android

====== C: exe-files ==
2014-05-21 01:11:46 61BEFE9A05B7280FE069BDE43F92A684 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$I63C50K.exe
2014-05-21 01:08:24 2ED2319F3DE13495AAA49B70A1467055 1285120 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$R63C50K.exe
2014-05-20 23:58:11 81EA7A841F5AB0B9B92BAA98D4CFC2ED 3554320 ----a-w- C:\Users\Dell\AppData\Local\NVIDIA\NvBackend\Packages\00005af9\DAO.18491361.exe
2014-05-20 23:41:47 29198D93029027C9BB4DA8E9C70AF13E 26832976 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.114\35.0.1916.114_34.0.1847.137_chrome_updater.exe
2014-05-20 18:13:43 19309E1CC33F5C4337F9EF96B8DA820B 62712 ----a-w- C:\Users\Dell\AppData\Local\Temp\som_fs.exe
2014-05-20 18:13:39 2FAFB224F30F7F9C718767EDD6018240 1955840 ----a-w- C:\Users\Dell\AppData\Local\Temp\som_mp4_encoder.exe
2014-05-16 20:46:40 E12A1B5088A8A465F2E48E61CD8D2C87 9580608 ----a-w- C:\Users\Dell\AppData\Local\Temp\Foxit Reader Updater.exe
2014-05-16 02:31:56 13DE611F0A410DEFEDE0C29CA6B32F94 3548304 ----a-w- C:\Users\Dell\AppData\Local\NVIDIA\NvBackend\Packages\00005adb\DAO.18473838.exe
2014-05-15 13:08:09 94566D109585C5867B01B761276C2D1F 155136 ----a-w- C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-05-15 13:08:08 6FF6FF2DD6B7CDD07049DCA1F7A18319 31232 ----a-w- C:\Windows\System32\CompatTel\wicainventory.exe
2014-05-15 13:07:33 4D59F470985D08139E42D15842816C47 3969984 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 13:07:32 31FA2485DFC773F1E718A4D19F443FA9 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 13:07:30 6B47CF5C27865DDF6680E4D834FBE34F 5550016 ----a-w- C:\Windows\System32\ntoskrnl.exe
2014-05-15 13:07:24 204F3F58212B3E422C90BD9691A2DF28 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-05-15 02:22:37 8955680B82B9A00EDFD637B7443B3F9C 4549192 ----a-w- C:\Users\Dell\AppData\Local\NVIDIA\NvBackend\Packages\00005acd\vops-injustice_gods_among_us.18463864.exe
=== C: other files ==
2014-05-21 01:11:57 EC12A6ACF30F50ED981F9926E9972464 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$IBG0FC8.zip
2014-05-21 01:11:46 7ED796D390035664AC838C9C15436AE0 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$IXAXBE9.com
2014-05-21 01:08:27 A1877459518CF4C795087C90230BE218 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$I67XV8Z.zip
2014-05-21 01:08:24 DCF741DF9F654F5A2C1BEC789F53AEB3 1414742 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$RXAXBE9.com
2014-05-21 01:07:42 CAF42F8091300B332B58C047B5D85C6D 4095370 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$RBG0FC8.zip
2014-05-19 02:30:29 A30BB7D0982FBDCD2A5818F0FA04F944 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$IBZ6JJU.zip
2014-05-19 01:43:52 F81CA50E4A251CF6203B08CEE6E00615 31603188 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2167233836-581004202-130012192-1000\$RBZ6JJU.zip
2014-05-15 13:07:27 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-05-15 13:07:25 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

==== Startup Registry Enabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\Windows\\SysWOW64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll,TrayApp"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\System32\\nvinitx.dll"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ManyCam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ManyCam"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\ManyCam\\ManyCam.exe\" --silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Messenger (Yahoo!)]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Messenger (Yahoo!)"
"hkey"="HKCU"
"command"="\"C:\\PROGRA~2\\Yahoo!\\Messenger\\YahooMessenger.exe\" -quiet"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PWRISOVM.EXE]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="PWRISOVM.EXE"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\PowerISO\\PWRISOVM.EXE -startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\tinySpell]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="tinySpell"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\tinySpell\\tinyspell.exe"


==== Startup Folders ======================

2014-04-19 00:23:58 2386 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [05/14/2014 12:05 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03/18/2014 07:23 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03/18/2014 07:23 PM]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS\AutoKMS.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [04/19/2014 11:30 AM]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\oe0rnzdp.default-1394505331169
- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\jfwwe60l.default
- Undetermined - %ProfilePath%\extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\oe0rnzdp.default-1394505331169
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash
8AD9933DE84627B4BF9CCD1191121240 - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.550.13
CBFE3156904AB2D1A097F5E74A6C62F3 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[04/19/2014 11:30 AM]
ojcjijchanodelhjhnjoljphihkklpec - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha441\ch\MediaViewV1alpha441.crx[]

YoutubeAdblocker - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\alidandocgnejehdckcabghhofedmbib
Panel View for Keep - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
sAave net - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjgebckmdcpdgnpdpfkbolijeicceocn
Panel View for Keep - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
YoutubeAdblocker - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\alidandocgnejehdckcabghhofedmbib
Panel View for Keep - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
sAave net - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\kjgebckmdcpdgnpdpfkbolijeicceocn
YoutubeAdblocker - Dell\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\alidandocgnejehdckcabghhofedmbib
Panel View for Keep - Dell\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
sAave net - Dell\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjgebckmdcpdgnpdpfkbolijeicceocn
Google Docs - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
avast Online Security - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Panel View for Keep - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
Google Wallet - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
YoutubeAdblocker - Dell\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\alidandocgnejehdckcabghhofedmbib
Panel View for Keep - Dell\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
sAave net - Dell\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\kjgebckmdcpdgnpdpfkbolijeicceocn
YoutubeAdblocker - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\alidandocgnejehdckcabghhofedmbib
Panel View for Keep - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
sAave net - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjgebckmdcpdgnpdpfkbolijeicceocn
Panel View for Keep - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
YoutubeAdblocker - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\alidandocgnejehdckcabghhofedmbib
Panel View for Keep - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb
sAave net - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\kjgebckmdcpdgnpdpfkbolijeicceocn

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"

==== HijackThis Entries ======================

O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - Global Startup: TotalMedia Server.lnk = C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TotalMedia Server\TM Server.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\Windows\SysWOW64\nvinit.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Exchange Service (ADExchange) - ArcSoft, Inc. - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch TotalMedia Theatre 6 Driver - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TMTLaunchDriverServer.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Wed 05/21/2014 at 13:10:28.39 ======================


Report •

#6
May 21, 2014 at 16:41:56
Download Security Check by screen317 from one of the following links and save it onto your Desktop. If your default download location is not the Desktop, drag it out of it's location onto the Desktop.
http://screen317.spywareinfoforum.o...
http://screen317.changelog.fr/Secur...
Please restart the computer before running this security check..
* Double click SecurityCheck.exe. If you run Windows Vista or 7/8, right click and choose 'Run as Administrator'.
o If you are asked by Windows to run this program or not, please click 'Yes' or 'Run'.
o When you see a console window, press any key to continue scanning.
o Wait while it scans.
o If your firewall alerts you of Security Check, please press 'Allow' or similar.
* A Notepad document should open automatically after scan is completed. It will be called checkup.txt; Please Copy and Paste the contents into your reply.
Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.

Report •

#7
May 21, 2014 at 17:15:49
This the out put: Results of screen317's Security Check version 0.99.83
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
[b][u]``````````````Antivirus/Firewall Check:``````````````[/b][/u]
Windows Firewall Enabled!
avast! Antivirus
[color=red][b]Antivirus out of date![/b][/color]
[b][u]`````````Anti-malware/Other Utilities Check:`````````[/b][/u]
Malwarebytes Anti-Malware version 1.75.0.1300
Java 7 Update 10
Java 7 Update 55
Adobe Flash Player 13.0.0.214
Mozilla Firefox (29.0.1)
Google Chrome 34.0.1847.137
Google Chrome 35.0.1916.114
Google Chrome plugins...
[b][u]````````Process Check: objlist.exe by Laurent````````[/b][/u]
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
[b][u]`````````````````System Health check`````````````````[/b][/u]
Total Fragmentation on Drive C: 1%
[b][u]````````````````````End of Log``````````````````````[/b][/u]

Report •

#8
May 21, 2014 at 17:24:34
"Results of screen317's Security Check version 0.99.83"
Looks good, no major security clashes there.

"Malwarebytes Anti-Malware version 1.75.0.1300"
Get the new version 2 please & run.

Run Malwarebytes' Anti-Malware ( MBAM ) Free Version. Use Quick scan. Copy and Paste the contents of the log, in your reply please.

http://i.imgur.com/U9IqcVj.gif
http://i.imgur.com/zHMG6J9.gif
Or,
http://i.imgur.com/eLcvyZD.gif
Malwarebytes' Anti-Malware
http://www.softpedia.com/get/Antivi...
http://www.softpedia.com/progScreen...
http://www.malwarebytes.org/free/
Make sure you uncheck > Enable free trial < at the END of the install.
http://i.imgur.com/tUFCbYz.gif
If your MBAM log indicates "No action taken". That's usually a result of NOT clicking the Apply Actions button after the scan. In most cases, a restart will be required.
Quick Scan versus Full Scan
http://forums.malwarebytes.org/inde...


Report •

#9
May 21, 2014 at 20:37:31
I have ran all of this stuff even SUPERAntiSpyware...

Report •

#10
May 21, 2014 at 20:38:51
even combo fix did not fix, it does not seem to be a virus issue not even sure if its a Nvidia Gforce issue but gonna contact them as well...

message edited by EIGRPv3IPV6


Report •

#11
May 21, 2014 at 21:14:51
Java 7 Update 10
Java 7 Update 55
If you don't need Java ( most people don't ) I would remove it. Worth doing anyways, just to test your video's. You can always reinstal, if really needed.
I use this uninstaller.
Use IObit Uninstaller
http://www.softpedia.com/get/Tweak/...
http://www.freewarefiles.com/IObit-...
http://www.majorgeeks.com/files/det...
http://www.iobit.com/advanceduninst...
Do a Standard Uninstall & then the Powerfull Scan to remove all the lurking bits.
http://i.imgur.com/olyCkcJ.gif
http://i.imgur.com/cKc5Chi.gif

Google Chrome 34.0.1847.137
Google Chrome 35.0.1916.114
Just in case they are clashing with each other, uninstall the old version, don't use the Powerfull option with IObit Uninstaller, as you want to retain your profile.

After doing the above, RunTFC
http://www.geekstogo.com/forum/file...
http://www.bleepingcomputer.com/dow...
http://oldtimer.geekstogo.com/TFC.exe
http://www.itxassociates.com/OT-Too...
Please double-click TFC.exe to run it. Note: If you are running on Vista/Windows 7/8, right-click on the file and choose Run As Administrator).
It will close all programs when run, so make sure you have saved all your work before you begin.
Click the Start button to begin the process. Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two. Let it run uninterrupted to completion.
Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.


Report •

Ask Question