Runtime error program c/windows/system32/nvvsvc.exe

runtime error program c/windows/system32/nvvsvc.exe

This is the exact text of the error: MS Visual C++ Runtime Library Runtime Error! Program: C\:windows\system32\nvvsvc.exe. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe. If Microsoft Visual C++ runtime error prevents you from using apps atibtmon.exe, csrss.exe, nvvsvc.exe – Sometimes this error might give.

Sorry, that: Runtime error program c/windows/system32/nvvsvc.exe

Runtime error program c/windows/system32/nvvsvc.exe
Sap sql error 1017
Runtime error program c/windows/system32/nvvsvc.exe

Runtime error program c/windows/system32/nvvsvc.exe - above

PUP.Gen1][File] C:\Users\Asce\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Secure Search -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Secure Search\Logger\logger.properties -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Secure Search\Logger -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp -> Removed at reboot [91]
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.14 -> ERROR [5]
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.18\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.18\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.18 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.51\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.51\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.51 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.52\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.52\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.52 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.3.0.11\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.3.0.11\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.3.0.11 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.4.0.1\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.4.0.1\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.4.0.1 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.5.0.0\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.5.0.0\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.5.0.0 -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt -> Removed at reboot [91]
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\CrashReport\crash.avgdx -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\CrashReport -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp -> Removed at reboot [91]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.14 -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.18\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.18\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.18 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.51\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.51\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.51 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.52\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.52\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.52 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.3.0.11\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.3.0.11\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.3.0.11 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.4.0.1\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.4.0.1\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.4.0.1 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.5.0.0\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.5.0.0\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.5.0.0 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\about.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\AvgComponents.manifest -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\avgMozXPCOM.js -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\BundleInstall -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\BundleInstall.exe -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\BundleInstaller.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\ChConfirmHelperRes -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\Chrome -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\ChromeGuardRes -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\ChromeRes -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\configuration.xml -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\crash.avgdx -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\current.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\data.zip -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\DSPDlg_IE -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\EnableHelperRes -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\EULA.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\Eula.txt -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\favicon.ico -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\feedback.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\FireFoxSearchXml.tmp -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\help.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\icon18.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\labs.gif -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\Licenses -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\lip.exe -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\privacy.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\remote_configuration.xml -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\search.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\setup.bmp -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\TBAPI.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\Uninstall.exe -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\uninstall.gif -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\UninstallRes -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\vprot.exe -> ERROR [5]

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 2 ¤¤¤
[PUP.Gen0][Chrome:Addon] Default : imgur Extension by Metronomik [ehoopddfhgaehhmphfcooacjdpmbjlao] -> Deleted
[PUP.Gen0][Chrome:Addon] Default : Hover Zoom [nonjdcjchghhkdoolnlbekcfllmednbl] -> ERROR [2]

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST1000DM003-1CH162 ATA Device +++++
--- User ---
[MBR] d6e5c82e2d7828297061f4c856568d1e
[BSP] 18f9625dfb54a60bda0bb2dfbf755baf : Windows Vista/7/8 Size: 100 MB [Windows Vista/7/8 Bootstrap DhcpNameServer : 85.25.83.11 8.8.8.8 ([Germany][-]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{DA2D582E-7FDF-4CC8-A295-2DB4EC3588B7} DhcpNameServer : 85.25.83.11 8.8.8.8 ([Germany][-]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{D38BF8D7-4BA9-4FB1-B438-564050461773}

Black Screen

Rick said:

I shutdown my computer and the next day at start-up all I got was a
black screen with a moveable cursor, however I did manage to run the
program in safe mode and after doing a restore to a previous version it
now won't even run in safemode, all I get is the same black screen and a
popup with the message..

"Runtime Error! Program: C\:windows\system32\nvvsvc.exe This application
has requested the runtime to terminate it in an unusual way. Please
contact the application's support team for more information".. I removed
the hard drive and scanned it for problems in another computer using
Spybot and Avast anti virus, Spybot did find several problems which were
removed, however after almost 2 hours Avast found absolutely nothing and
on reinstalling the drive back into the original computer I still have
the same problem, can anyone please explain what's happened and how I
can get my computer working again TIA.

Click to expand...

The indication here is, the file has a legitimate name. We
can't know at this point, whether it's the original file or not. Now, if
you didn't have an NVidia GPU or video card, we'd be suspicious it was
malware.

http://www.bleepingcomputer.com/startups/nvvsvc.exe-25794.html

Drivers run in Ring 0 and are part of the kernel space. And
if there is a problem with them, then the computer can "fall over".
Yours doesn't seem to have entirely done that, because you managed to
get a movable cursor and black screen. Perhaps the video portion is
using the default VESA driver, and is currently stuck at the point
it tries to load the Nvidia driver or something. (For that matter,
it could even be some other driver, but we do have the evidence of
the error message to consider, which names and shames nvvsvc.)

What you need to do, is remove the Nvidia driver. What I can't tell
you, is exactly how you're going to do that, since neither Safe
Mode nor the regular mode of operation are working. If I were to boot
an alternate OS in this situation, I wouldn't be able to tell you
where to start, to remove stuff. Enough of the driver would need to
be removed, such that the OS would not attempt to load the driver.
So it's not necessarily all the driver files, there could even be
an INF somewhere tempting the system to load that driver.

You would think Safe Mode would work - at least, as long as the
NVidia driver is not being loaded when in that mode. Try to make
sure if you're entering Safe Mode, that no video driver is loaded
if you can manage it.

There is a picture of the Safe Mode options here.

http://www.w7forums.com/attachments/527d1251990999-safe-mode-windows-7-safe-mode.png

I see an option "Enable low-resolution video" - perhaps that uses
VESA mode for the video card ? And then, that NVidia driver wouldn't
be used.

Maybe someone else knows whether that's a "Safe Mode" or not. Maybe
it just stops the proprietary video driver from loading ? I doubt
the purpose of the "640x480" part, is because there is something
magical about it. I think the "640x480" is trying to tell us,
the video will be using the (dumber) VESA driver. Which doesn't
need things like "nvvsvc".

If you can get to the desktop, then you can try removing the
NVidia driver.

One tricky aspect of drivers now, is some are "built-in" to the OS.
Later, you can install a manufacturer version, a later one. If you
had installed a manufacturer one, that would be for the best, because
there might be less of a problem removing it. If the driver was
something which shipped with the OS, it's not going to be in
"Add/Remove" (Programs and Features or whatever). It might be
harder to stop a built-in driver from trying to load.

You haven't told us, what kind of computer this is. For example, if
the computer had two video options (a built-in chipset video and
a separate video card), maybe you can make progress by removing
the video card or disabling it, and connecting the display to the
built-in video. Using a hardware trick is a long shot, but
perhaps if there are no other options, it'll be something to
try.

Paul

 

Size: 953767 MB [Windows Vista/7/8 Bootstrap runtime error program c/windows/system32/nvvsvc.exe

Runtime error program c/windows/system32/nvvsvc.exe - share

PUP.Gen1][File] C:\Users\Asce\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Secure Search -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Secure Search\Logger\logger.properties -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Secure Search\Logger -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp -> Removed at reboot [91]
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.14 -> ERROR [5]
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.18\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.18\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.18 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.51\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.51\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.51 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.52\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.52\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.2.0.52 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.3.0.11\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.3.0.11\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.3.0.11 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.4.0.1\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.4.0.1\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.4.0.1 -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.5.0.0\avg.crx -> Deleted
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.5.0.0\ExtensionTemplate.txt -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt\3.5.0.0 -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\ChromeExt -> Removed at reboot [91]
[PUP.Gen1][File] C:\ProgramData\AVG Web TuneUp\CrashReport\crash.avgdx -> Deleted
[PUP.Gen1][Folder] C:\ProgramData\AVG Web TuneUp\CrashReport -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp -> Removed at reboot [91]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.14 -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.18\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.18\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.18 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.51\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.51\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.51 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.52\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.52\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.2.0.52 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.3.0.11\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.3.0.11\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.3.0.11 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.4.0.1\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.4.0.1\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.4.0.1 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.5.0.0\AVG Web TuneUp_toolbar.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\3.5.0.0\install.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\3.5.0.0 -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\about.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\AvgComponents.manifest -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\avgMozXPCOM.js -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\BundleInstall -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\BundleInstall.exe -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\BundleInstaller.ini -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\ChConfirmHelperRes -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\Chrome -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\ChromeGuardRes -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\ChromeRes -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\configuration.xml -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\crash.avgdx -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\current.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\data.zip -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\DSPDlg_IE -> ERROR [5]
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\EnableHelperRes -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\EULA.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\Eula.txt -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\favicon.ico -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\feedback.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\FireFoxSearchXml.tmp -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\help.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\icon18.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\labs.gif -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\Licenses -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\lip.exe -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\privacy.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\remote_configuration.xml -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\search.gif -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\setup.bmp -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\TBAPI.dll -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\Uninstall.exe -> Deleted
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\uninstall.gif -> Deleted
[PUP.Gen1][Folder] C:\Program Files (x86)\AVG Web TuneUp\UninstallRes -> ERROR [5]
[PUP.Gen1][File] C:\Program Files (x86)\AVG Web TuneUp\vprot.exe -> ERROR [5]

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 2 ¤¤¤
[PUP.Gen0][Chrome:Addon] Default : imgur Extension by Metronomik [ehoopddfhgaehhmphfcooacjdpmbjlao] -> Deleted
[PUP.Gen0][Chrome:Addon] Default : Hover Zoom [nonjdcjchghhkdoolnlbekcfllmednbl] -> ERROR [2]

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST1000DM003-1CH162 ATA Device +++++
--- User ---
[MBR] d6e5c82e2d7828297061f4c856568d1e
[BSP] 18f9625dfb54a60bda0bb2dfbf755baf : Windows Vista/7/8 DhcpNameServer : 139.179.30.24 139.179.10.13 ([Turkey][-]) -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{002F3112-3E11-4216-8254-E6C7BFD34FE5} Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 3/25/17
Scan Time: 5:30 AM
Logfile: rapor.txt
Administrator: Yes

-Software Information-
Version: 3.0.6.1469
Components Version: 1.0.75
Update Package Version: 1.0.1590
License: Trial

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Fire_Fist\Asce

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 359361
Time Elapsed: 8 min, 11 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
PUP.Optional.MalwareProtection, C:\PROGRAMDATA\ROGUEKILLER\QUARANTINE\9953981C859EC2BF.VIR, Quarantined, [1190], [82505],1.0.1590

Physical Sector: 0
(No malicious items detected)


(end)

# AdwCleaner v6.044 - Logfile created 25/03/2017 at 06:02:19
# Updated on 28/02/2017 by Malwarebytes
# Database : 2017-03-23.2 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Asce - FIRE_FIST
# Running from : C:\Users\Asce\Desktop\AdwCleaner.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

[-] Service deleted: vToolbarUpdater3.5.0


***** [ Folders ] *****

[-] Folder deleted: C:\Users\Asce\AppData\LocalLow\avg web tuneup
[-] Folder deleted: C:\ProgramData\AVG Secure Search
[-] Folder deleted: C:\ProgramData\avg web tuneup
[#] Folder deleted on reboot: C:\ProgramData\Application Data\AVG Secure Search
[#] Folder deleted on reboot: C:\ProgramData\Application Data\avg web tuneup
[-] Folder deleted: C:\Program Files (x86)\avg web tuneup
[-] Folder deleted: C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\avg web tuneup
[-] Folder deleted: C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehoopddfhgaehhmphfcooacjdpmbjlao
[-] Folder deleted: C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl


***** [ Files ] *****

[-] File deleted: C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ehoopddfhgaehhmphfcooacjdpmbjlao_0.localstorage
[-] File deleted: C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ehoopddfhgaehhmphfcooacjdpmbjlao_0.localstorage-journal
[-] File deleted: C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nonjdcjchghhkdoolnlbekcfllmednbl_0.localstorage
[-] File deleted: C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nonjdcjchghhkdoolnlbekcfllmednbl_0.localstorage-journal


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
[-] Key deleted: HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\sweet-page.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.sweet-page.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\sweet-page.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.sweet-page.com
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
[-] Key deleted: HKLM\SOFTWARE\Classes\PROTOCOLS\handler\viprotocol
[-] Key deleted: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key deleted: HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[#] Key deleted on reboot: HKLM\SOFTWARE\Classes\protocols\handler\viprotocol


***** [ Web browsers ] *****

[-] [C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: ask.com
[-] [C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: hamachi.en.softonic.com
[-] [C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: sweet-page
[-] [C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default] [favicon_url] Deleted: hxxp://www.sweet-page.com/webfavicon.ico
[-] [C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: ehoopddfhgaehhmphfcooacjdpmbjlao
[-] [C:\Users\Asce\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: nonjdcjchghhkdoolnlbekcfllmednbl


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [6173 Bytes] - [25/03/2017 06:02:19]
C:\AdwCleaner\AdwCleaner[S0].txt - [6058 Bytes] - [25/03/2017 05:57:42]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6319 Bytes] ##########


  • March 25th, 2017, 06:49 AM#6

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Malwarebytes
    Version: 8.1.2 (03.10.2017)
    Operating System: Windows 7 Home Premium x64
    Ran by Asce (Administrator) on Sat 03/25/2017 at 6:17:15.84
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    File System: 41

    Successfully deleted: C:\Users\Asce\AppData\Roaming\speedrunnerslog.txt (File)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LRXM1HH (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4T8VGUSD (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\96WSY0GP (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BREWAR6T (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CKD2JHO4 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IPYCNJL1 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JYJL3YF4 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L2P7PLFM (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M96HJ377 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXX7B4E4 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VDY709OZ (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X1H2826I (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y18H9XRB (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YJLUED8Y (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZON7WYJ5 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Asce\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZU5K3PI9 (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)