Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Infected By New Unknown Malware. Please HELP!

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Infected By New Unknown Malware. Please HELP!

Unread postby zortika » February 25th, 2014, 4:33 pm

Recently, my PC is infected by new unknown malware. All my browsers Firefox, Chrome and IE displays other unwanted pages whenever I click a link or open a new tab. And all pages have text ads with double underlines.

I have several malware attacks in the past, but I could identify the culprit by checking browser's add-ons, extensions and plugins section and can remove them.

Or I can restore my PC to earlier date.

But this one resists all my efforts.
I ran MalwareBytes, Kaspersky TDSSKiller, MacCafee Malware Killer, Adwaware, IOBit Malware Fighter and other programs but unsuccessful.

I think I need espert help this time.

So, I joined this forum to seek advice from experts.

Thanks.

.
DDS (Ver_11-03-05.01) - NTFS_AMD64 NETWORK
Run by Soe Win at 13:37:59.08 on Tue 02/25/2014
Internet Explorer: 9.11.9600.16518 BrowserJavaVersion: 10.51.2
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8151.5118 [GMT -8:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\DllHost.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\Asc.exe
C:\Downloads\Windows-KB890830-x64-V5.9.exe
c:\1d2d991fec6296d693fce06be943\mrtstub.exe
C:\Windows\system32\MRT.exe
C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
C:\Windows\explorer.exe
C:\Windows\helppane.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\system32\prevhost.exe
C:\Windows\system32\DllHost.exe
C:\Downloads\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.my.yahoo.com/
uInternet Settings,ProxyOverride = *.local;192.168.*.*
mURLSearchHooks: YTNavAssistPlugin Class: {81017ea9-9aa8-4a6a-9734-7af40e7d593f} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll
BHO: MSS+ Identifier: {0e8a89ad-95d7-40eb-8d9d-083ef7066a01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Ads Removal: {9d974c8c-6d92-44fb-beaf-b45a1c0cf17f} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Advanced SystemCare Browser Protection: {ba0c978d-d909-49b6-afe2-8bde245dc7e6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Network Check Helper: {e76fd755-c1ba-4dcb-9f13-99bd91223ade} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
EB: Developer Tools: {1a6fe369-f28c-4ad9-a3e6-2bcb50807cf1} - C:\Program Files (x86)\Internet Explorer\iedvtool.dll
uRun: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe
uRun: [MediaFire Tray] "C:\Users\Soe Win\AppData\Local\MediaFire Express\mf_systray.exe" --boot-start
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
uRun: [DW7] "C:\Program Files (x86)\The Weather Channel\The Weather Channel App\TWCApp.exe"
uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [Desktop iCalendar Lite.exe] "C:\Program Files\desksware\Desktop iCalendar Lite\Desktop iCalendar Lite.exe"
uRun: [GoogleChromeAutoLaunch_E7FBFC5767D127F785BA96D00ABD039E] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
uRun: [cdloader] "C:\Users\Soe Win\AppData\Roaming\mjusbsp\cdloader2.exe" MAGICJACK
uRun: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
mRun: [LTCM Client] C:\Program Files (x86)\LTCM Client\ltcmClient.exe /startup
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
mRun: [FUFAXSTM] "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
mRun: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [<NO NAME>]
mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
dRun: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
StartupFolder: C:\Users\SOEWIN~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SNAPFI~1.LNK - C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ZOOMWI~1.LNK - C:\Program Files (x86)\Zoom Wireless-N USB\Common\RaUI.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
Trusted Zone: magicjack.com\my
Trusted Zone: talk4free.com\reg
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/produ ... wsdc32.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20614.www2.hp.com/ediags/gmd/In ... ect118.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: {7C9A62D6-1B02-4E7D-A578-A951B9A7A5CF} = 208.67.220.220,208.67.222.222,192.168.11.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
BHO-X64: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
BHO-X64: ExplorerWnd Helper - No File
BHO-X64: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
BHO-X64: HP Network Check Helper - No File
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
TB-X64: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
TB-X64: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
EB-X64: {1A6FE369-F28C-4AD9-A3E6-2BCB50807CF1} - No File
mRun-x64: [hpsysdrv REG_SZ c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe ]
mRun-x64: [SmartMenu REG_SZ C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background ]
mRun-x64: [itype REG_SZ "c:\Program Files\Microsoft IntelliType Pro\itype.exe" ]
mRun-x64: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
mRun-x64: [Kernel and Hardware Abstraction Layer REG_SZ KHALMNPR.EXE ]
mRun-x64: [LifeChat REG_SZ "C:\Program Files\Microsoft LifeChat\LifeChat.exe" ]
mRun-x64: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
mRunOnce-x64: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
IE-X64: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\SOEWIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\cv2yrroi.default-1373120217126\
FF - prefs.js: browser.search.selectedEngine - Google
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMSS.dll
FF - plugin: C:\Program Files\Microsoft\Web Platform Installer\NPWPIDetector.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
FF - plugin: C:\Users\Default\AppData\Local\HuluDesktop\instances\0.9.13.1\nphdplg.dll
FF - plugin: C:\Users\Soe Win\AppData\Local\Citrix\Plugins\104\npappdetector.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2013-7-20 71480]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2013-7-20 311608]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2013-7-1 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2013-10-23 45880]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2010-12-12 55856]
R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2014-1-26 21184]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-3-21 240952]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2013-7-8 46368]
R1 netfilter64;netfilter64;C:\Windows\System32\drivers\netfilter64.sys [2013-12-17 61592]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-12-1 56344]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-1 77824]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2014-2-25 181760]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-2-25 888536]
S0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-1-20 230320]
S1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2013-11-25 246072]
S1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2013-7-20 206648]
S1 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\System32\drivers\NISx64\1306010.008\ccsetx64.sys [2012-3-8 167048]
S2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [2013-11-21 881440]
S2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-7-4 4939312]
S2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-6-12 136176]
S2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-11-4 92160]
S2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-5-9 342336]
S2 IntuitUpdateServiceV4;Intuit Update Service v4;C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [2012-8-23 13672]
S2 LiveUpdateSvc;LiveUpdate;C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2013-11-21 2151200]
S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-2-25 418376]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-2-25 701512]
S2 NIS;Norton Internet Security;"C:\Program Files (x86)\Norton Internet Security\Engine\19.6.1.8\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\19.6.1.8\diMaster.dll" /prefetch:1 --> C:\Program Files (x86)\Norton Internet Security\Engine\19.6.1.8\ccSvcHst.exe [?]
S2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2011-4-27 130008]
S2 RalinkRegistryWriter;Ralink Registry Writer;C:\Program Files (x86)\Zoom Wireless-N USB\Common\RaRegistry.exe [2011-8-19 185632]
S2 RalinkRegistryWriter64;Ralink Registry Writer 64;C:\Program Files (x86)\Zoom Wireless-N USB\Common\RaRegistry64.exe [2011-8-19 212256]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-8-14 39056]
S2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-2-25 289496]
S2 SavingsbullFilterService64;SavingsbullFilterService64;C:\Program Files\SavingsbullFilter\SavingsbullFilterService64.exe [2014-2-12 210432]
S2 SecureUpdateSvc;SecureUpdate;C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe --> C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [?]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-8-27 93072]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2012-8-23 2148216]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-8-15 284016]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-5 257928]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-12-12 1038088]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2010-12-12 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-22 1493352]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-6-12 136176]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-2-18 111616]
S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-2-25 25928]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [2014-1-15 289256]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-4-25 118896]
S3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver;C:\Windows\System32\drivers\netr28ux.sys [2011-8-19 1061888]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-1-27 379360]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\System32\drivers\nvhda64v.sys [2014-2-25 197408]
S3 prwntdrv;prwntdrv;C:\Windows\System32\prwntdrv.sys [2011-3-13 16776]
S3 pwdrvio;pwdrvio;C:\Windows\System32\pwdrvio.sys [2011-3-19 19936]
S3 pwdspio;pwdspio;C:\Windows\System32\pwdspio.sys [2011-3-19 13280]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-2-6 19456]
S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2014-2-25 34848]
S3 ScreamBAudioSvc;ScreamBee Audio;C:\Windows\System32\drivers\ScreamingBAudio64.sys [2012-7-31 38992]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-2-6 57856]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2012-7-4 11880]
S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2014-2-25 23016]
S3 vvftav302;vvftav302;C:\Windows\System32\drivers\vvftav302.sys [2007-3-18 301824]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-12-12 1255736]
S4 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-5-14 759048]
S4 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-2-28 183560]
S4 CinemaNow Service;CinemaNow Service;C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe [2010-6-12 400368]
S4 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2014-2-25 23048]
S4 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-12-1 13336]
S4 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-5-14 3289208]
S4 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-1 2320920]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2014-02-25 21:29:54 -------- d-sh--w- C:\$RECYCLE.BIN
2014-02-25 21:12:22 98816 ----a-w- C:\Windows\sed.exe
2014-02-25 21:12:22 518144 ----a-w- C:\Windows\SWREG.exe
2014-02-25 21:12:22 256000 ----a-w- C:\Windows\PEV.exe
2014-02-25 21:12:22 208896 ----a-w- C:\Windows\MBR.exe
2014-02-25 20:02:45 -------- d-----w- C:\1d2d991fec6296d693fce06be943
2014-02-25 19:17:35 1031560 ----a-w- C:\PROGRA~3\Microsoft\Microsoft Antimalware\Definition Updates\{4D5B448A-0D36-4B40-B788-69D81A897B63}\gapaengine.dll
2014-02-25 19:17:31 10536864 ----a-w- C:\PROGRA~3\Microsoft\Microsoft Antimalware\Definition Updates\{7E16333A-B2E9-4DB6-92E9-EE3915424023}\mpengine.dll
2014-02-25 19:00:41 -------- d-----w- C:\AdwCleaner
2014-02-25 17:31:50 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-02-25 17:31:50 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-25 15:23:47 181760 ----a-w- C:\Windows\System32\drivers\nusb3xhc.sys
2014-02-25 15:22:54 31520 ----a-w- C:\Windows\System32\nvhdap64.dll
2014-02-25 15:22:54 1515296 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll
2014-02-25 15:22:53 197408 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys
2014-02-25 15:21:42 -------- d-----w- C:\Windows\TempF177D49A-01E0-DDCD-10E6-31A93DC659B4-Signatures
2014-02-25 15:19:32 888536 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-02-25 15:19:32 73800 ----a-w- C:\Windows\System32\RtNicProp64.dll
2014-02-25 15:17:24 2810072 ----a-w- C:\Windows\System32\RtPgEx64.dll
2014-02-25 15:17:24 1958616 ----a-w- C:\Windows\System32\RTSnMg64.cpl
2014-02-25 15:17:23 618200 ----a-w- C:\Windows\System32\RtDataProc64.dll
2014-02-25 15:17:23 3771352 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys
2014-02-25 15:17:23 2588888 ----a-w- C:\Windows\System32\RtkAPO64.dll
2014-02-25 15:17:23 1286872 ----a-w- C:\Windows\System32\RTCOM64.dll
2014-02-25 15:17:21 43342848 ----a-w- C:\Windows\System32\RCoRes64.dat
2014-02-25 15:17:21 153304 ----a-w- C:\Windows\System32\RCoInstII64.dll
2014-02-25 15:16:47 -------- d-----w- C:\DrvInstall
2014-02-25 00:43:47 -------- d-----w- C:\Windows\TempB2B63C26-53E0-502E-9B26-6C9A6C17D2E3-Signatures
2014-02-24 23:01:18 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{B0B66F04-541F-4296-9DCE-A91CB5F4545B}
2014-02-24 11:00:31 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{86B387DB-928D-4EA5-A0B1-F82DF899B274}
2014-02-23 18:48:44 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{50229BB6-828C-442D-8708-9EBAAD7B70FB}
2014-02-23 15:41:48 -------- d-----w- C:\be9d43505902a3529fef5d3185c702
2014-02-23 11:00:59 -------- d-----w- C:\Windows\TempB63F4725-E108-BE67-A89B-ECBDE532BB0B-Signatures
2014-02-23 11:00:45 -------- d-----w- C:\465cd50c8f483282c30a3ce7603c5a
2014-02-23 04:34:52 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{2C050D80-A3FC-4956-BFA9-E7912BF9466B}
2014-02-22 23:09:42 -------- d-----w- C:\Program Files\SavingsbullFilter
2014-02-22 23:08:59 -------- d-----w- C:\Program Files (x86)\SavingsBull
2014-02-22 15:54:00 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{B3A544F2-C1E1-41FE-9EF5-B3A60A2F1D42}
2014-02-22 11:00:19 -------- d-----w- C:\Windows\TempA8B98D7F-F410-10B0-92CE-CA2B530FDE16-Signatures
2014-02-22 11:00:17 -------- d-----w- C:\74ec9f97a7079087fc9b3d4c9b
2014-02-22 07:11:39 -------- d-----w- C:\Windows\Temp07684A96-22A9-7EFA-91ED-8DF290EAC2C6-Signatures
2014-02-22 07:11:00 -------- d-----w- C:\cf30b19438e23e7dfcfd47f31cb6a85a
2014-02-21 20:55:00 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{1EFF60EF-8DE6-460C-827E-90B005A68E1E}
2014-02-21 04:02:34 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{3E340969-A048-4D65-A46A-C8F412CA17AD}
2014-02-20 20:55:09 17858952 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2014-02-20 16:02:22 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{3BA95078-DC3B-452A-8B7F-AA18EEC2D71F}
2014-02-20 04:02:10 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{ED0A56D3-DA51-492D-A5B5-59BF2FB9223A}
2014-02-19 16:01:46 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{DA641E7E-29A3-4BE1-AFC0-C73EB348909C}
2014-02-19 04:01:34 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{E5CC8050-9D2A-46C5-9A29-21560CCA36DF}
2014-02-18 16:01:23 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{4886DF54-DE55-4470-A59D-B954E376C3FD}
2014-02-18 11:08:04 -------- d-----w- C:\Windows\Temp06181F9E-0404-E848-3D3C-A9B48D52887D-Signatures
2014-02-18 11:02:37 548864 ----a-w- C:\Windows\System32\vbscript.dll
2014-02-18 11:02:37 454656 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-02-18 04:00:58 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{874167D6-A111-42E5-B697-45AA488D9B6F}
2014-02-17 16:20:59 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2014-02-17 16:20:59 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2014-02-17 16:00:46 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{BDB0FEF5-82CB-4113-9D10-D492F62C27DB}
2014-02-17 03:21:33 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{3FE94984-212E-4A54-B104-C944FEADF1CA}
2014-02-16 15:21:22 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{016A497F-02DE-43BB-A89F-B2F9B32E1E8B}
2014-02-16 03:21:07 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{272313EF-6D69-4E60-A7FD-3BDF71AE5FD8}
2014-02-15 14:24:19 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{3602F3B3-DFC3-47F1-A6EF-8906F9299F59}
2014-02-15 02:24:05 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{DF6927FB-7E95-4D31-9A62-CB851BD216EF}
2014-02-14 14:04:36 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{598C1506-3E8C-4485-9145-34847D661099}
2014-02-13 19:46:11 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{3A143B4C-704D-4401-AE7B-C1098345F7DA}
2014-02-13 05:33:13 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{1D1221C6-CBF7-48F1-A02B-02BFDE733BE3}
2014-02-13 03:34:05 -------- d-----w- C:\Program Files\iTunes
2014-02-13 03:34:05 -------- d-----w- C:\Program Files\iPod
2014-02-13 03:34:05 -------- d-----w- C:\Program Files (x86)\iTunes
2014-02-13 03:34:05 -------- d-----w- C:\PROGRA~3\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-12 17:32:50 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{46188725-8F95-4854-9961-5B842974D0F8}
2014-02-12 04:22:03 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{1776BEFE-D586-4CD3-9FD5-90F20BA5BAC1}
2014-02-11 16:16:02 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{BD18A8BD-D7F6-4723-8AFC-9D896FC3FE01}
2014-02-11 04:15:47 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{85337244-B3C8-492B-981D-97F68B65DE85}
2014-02-10 16:15:35 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{B0046212-A340-4005-9E3D-BFEE8D479D5C}
2014-02-10 04:15:23 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{DB59AD52-D134-40FF-A6CA-F3CD90710391}
2014-02-09 15:55:01 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{255D784C-BBD0-456E-A670-5A80FA322D8B}
2014-02-08 17:14:31 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{7513CAF9-F31A-4FDF-AE3C-865949BEED92}
2014-02-08 05:14:19 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{A61153F5-ECE1-41AC-A05F-277C7FFED190}
2014-02-07 17:13:56 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{BA8D75D4-8928-41D8-BAC6-31D8A97D5A5E}
2014-02-07 05:13:32 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{668A89E0-5105-448E-8CA0-43546C94C10F}
2014-02-06 22:11:34 -------- d-----w- C:\Windows\Temp939C3CAB-44A4-6EFC-727F-3249670DE6EA-Signatures
2014-02-06 17:13:02 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{1D5252FF-2352-4BC2-9406-060CC1328CBD}
2014-02-06 11:02:21 -------- d-----w- C:\Windows\TempC113F270-4721-3EB4-FCAD-A8DF7E1C6CF7-Signatures
2014-02-06 05:12:43 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{72C0E495-84C4-49F9-8490-4560DF00BF47}
2014-02-05 17:12:25 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{F5F3E55E-9480-4913-AC2F-2463D11EA0C5}
2014-02-05 11:02:02 -------- d-----w- C:\Windows\Temp41FE9786-46A1-92DD-8B0A-0E89E7D1E301-Signatures
2014-02-05 05:12:07 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{9697A265-244B-4CC0-86CB-C44262AEDD37}
2014-02-04 17:11:48 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{BE6776E6-A034-4C66-A239-F64BBFE88AC4}
2014-02-04 11:02:39 -------- d-----w- C:\Windows\Temp0CE0FB39-82F4-BD2B-53B5-CD4AB3027710-Signatures
2014-02-04 05:11:29 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{AA5FE152-6DD2-4B10-AF7D-F6D7F5F57029}
2014-02-03 16:38:08 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{73300990-9232-4907-AB87-A639A9C6780C}
2014-02-03 11:02:03 -------- d-----w- C:\Windows\TempF10788C6-13E7-5339-78EF-59CE62EE587D-Signatures
2014-02-03 04:37:49 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{C214E048-6498-4683-9A5F-ED6A57205FF9}
2014-02-02 16:05:22 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{BEAC89BC-4A02-4C73-A639-B9D39C664659}
2014-02-02 11:01:07 -------- d-----w- C:\Windows\Temp99E2EBC2-BC97-5E84-E7F5-7DD1C523C4E0-Signatures
2014-02-02 02:54:53 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{E03E6520-93AA-4F4B-992C-98823B74252F}
2014-02-01 14:54:41 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{9E385219-D424-40C9-A4C2-2885B0941FAA}
2014-02-01 11:01:04 -------- d-----w- C:\Windows\Temp67D4422B-BD08-A0D7-D246-B14897443BE0-Signatures
2014-02-01 02:23:58 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{3B143F81-F988-4260-A1BB-253CBAE7F9DA}
2014-01-31 14:23:34 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{E5DC1320-1E7B-4C82-B6A7-4E543EF1DD93}
2014-01-30 18:21:21 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{72A9CA2E-AFA2-4209-9E54-53C426B14D78}
2014-01-30 06:21:10 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{BC6548AC-01E3-43FB-B62C-CFCB9CEF26DF}
2014-01-29 18:20:45 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{A2BE44FA-DE48-4335-BA7F-423B2C511E18}
2014-01-29 15:59:08 -------- d-----w- C:\Windows\TempDDE116FF-2FD0-8390-1332-2B8B43A78C43-Signatures
2014-01-29 15:47:36 -------- d-----w- C:\Windows\TempB6C8D7A5-05D0-E743-B7D1-A0DAE08366B8-Signatures
2014-01-29 06:04:30 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{33B28CCD-13E5-4DBF-847F-48C14137AD66}
2014-01-28 18:04:18 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{462A7DEA-8B72-43D3-8621-240037303549}
2014-01-28 03:39:41 -------- d-----w- C:\PROGRA~3\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-28 02:23:49 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{1F8945D7-8943-4A0C-89A8-5A5E7C44A02E}
2014-01-27 14:23:37 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{1F929152-5AC3-4E3D-AFBC-349B7BCB2129}
2014-01-27 00:47:28 -------- d-----w- C:\Users\SOEWIN~1\AppData\Local\{9D462423-11BF-49E0-8911-44B3D0D5A134}
2014-01-26 23:33:24 34080 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe
2014-01-26 23:22:29 121856 ----a-w- C:\Windows\System32\IObitSmartDefragExtension.dll
2014-01-26 23:22:27 21184 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys
.
==================== Find3M ====================
.
2014-02-25 15:19:32 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll
2014-02-20 20:55:19 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-20 20:55:19 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-02-06 11:30:46 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-02-06 11:30:12 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-02-06 11:07:39 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-02-06 11:06:47 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-02-06 10:49:03 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-02-06 10:48:45 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-02-06 10:48:11 708608 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-02-06 10:20:26 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-02-06 10:11:37 5768704 ----a-w- C:\Windows\System32\jscript9.dll
2014-02-06 10:01:36 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-02-06 10:00:46 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-02-06 09:50:32 2041856 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-02-06 09:47:22 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-02-06 09:46:27 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-02-06 09:25:36 4244480 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-02-06 09:24:52 2334208 ----a-w- C:\Windows\System32\wininet.dll
2014-02-06 09:09:30 1964032 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-02-06 08:41:35 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-01-20 13:57:35 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-20 13:57:18 0 ----a-w- C:\Windows\SysWow64\REN1CBE.tmp
2014-01-20 13:57:18 0 ----a-w- C:\Windows\SysWow64\REN1CBD.tmp
2014-01-19 07:33:29 270496 ------w- C:\Windows\System32\MpSigStub.exe
2013-12-24 23:09:41 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2013-12-24 22:48:32 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll
2013-12-24 15:20:22 1884448 ----a-w- C:\Windows\System32\nvdispco6433182.dll
2013-12-24 15:20:22 1511712 ----a-w- C:\Windows\System32\nvdispgenco6433182.dll
2013-12-24 15:19:09 1510176 ----a-w- C:\Windows\System32\nvhdagenco64.dll
2013-12-24 15:17:34 1021656 ----a-w- C:\Windows\System32\RtkApi64.dll
2013-12-24 15:17:31 2743328 ----a-w- C:\Windows\System32\FMAPO64.dll
2013-12-24 15:17:30 209096 ----a-w- C:\Windows\System32\AERTAC64.dll
2013-12-24 15:17:30 113576 ----a-w- C:\Windows\System32\CONEQMSAPOGUILibrary.dll
2013-12-19 18:53:46 6671648 ----a-w- C:\Windows\System32\nvcpl.dll
2013-12-19 18:53:46 3490080 ----a-w- C:\Windows\System32\nvsvc64.dll
2013-12-19 18:53:44 922912 ----a-w- C:\Windows\System32\nvvsvc.exe
2013-12-19 18:53:44 63776 ----a-w- C:\Windows\System32\nvshext.dll
2013-12-19 18:53:44 386336 ----a-w- C:\Windows\System32\nvmctray.dll
2013-12-18 18:42:50 27208 ----a-w- C:\Windows\System32\AdobePDFUI.dll
2013-12-18 18:42:46 55872 ----a-w- C:\Windows\System32\AdobePDF.dll
2013-12-18 00:09:02 61592 ----a-w- C:\Windows\System32\drivers\netfilter64.sys
2013-12-06 02:30:08 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2013-12-06 02:30:08 1882112 ----a-w- C:\Windows\System32\msxml3.dll
2013-12-06 02:02:08 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2013-12-06 02:02:08 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2013-12-04 02:27:33 485888 ----a-w- C:\Windows\System32\secproc_isv.dll
2013-12-04 02:27:33 123392 ----a-w- C:\Windows\System32\secproc_ssp_isv.dll
2013-12-04 02:27:33 123392 ----a-w- C:\Windows\System32\secproc_ssp.dll
2013-12-04 02:27:16 488448 ----a-w- C:\Windows\System32\secproc.dll
2013-12-04 02:26:32 528384 ----a-w- C:\Windows\System32\msdrm.dll
2013-12-04 02:16:51 658432 ----a-w- C:\Windows\System32\RMActivate_isv.exe
2013-12-04 02:16:51 626176 ----a-w- C:\Windows\System32\RMActivate.exe
2013-12-04 02:16:50 552960 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe
2013-12-04 02:16:48 553984 ----a-w- C:\Windows\System32\RMActivate_ssp.exe
2013-12-04 02:03:20 87040 ----a-w- C:\Windows\SysWow64\secproc_ssp_isv.dll
2013-12-04 02:03:20 87040 ----a-w- C:\Windows\SysWow64\secproc_ssp.dll
2013-12-04 02:03:20 423936 ----a-w- C:\Windows\SysWow64\secproc_isv.dll
2013-12-04 02:03:08 428032 ----a-w- C:\Windows\SysWow64\secproc.dll
2013-12-04 02:02:06 390144 ----a-w- C:\Windows\SysWow64\msdrm.dll
2013-12-04 01:54:14 510976 ----a-w- C:\Windows\SysWow64\RMActivate_ssp.exe
2013-12-04 01:54:10 594944 ----a-w- C:\Windows\SysWow64\RMActivate_isv.exe
2013-12-04 01:54:09 572416 ----a-w- C:\Windows\SysWow64\RMActivate.exe
2013-12-04 01:54:06 508928 ----a-w- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
2013-07-13 17:13:09 712264 ----a-w- C:\Program Files (x86)\39Uninstall MapsGalaxy.dll
2013-07-13 17:13:09 194944 ----a-w- C:\Program Files (x86)\39res.dll
.
============= FINISH: 13:38:14.22 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 12/6/2010 1:11:33 PM
System Uptime: 2/25/2014 11:55:15 AM (2 hours ago)
.
Motherboard: MSI | | 2A9C
Processor: Intel(R) Core(TM) i7 CPU 870 @ 2.93GHz | CPU 1 | 2926/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 919 GiB total, 76.409 GiB free.
D: is FIXED (NTFS) - 13 GiB total, 1.504 GiB free.
E: is CDROM ()
F: is Removable
I: is Removable
J: is Removable
K: is Removable
L: is Removable
Z: is NetworkDisk (FAT) - 0 GiB total, 0 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Security Processor Loader Driver
Device ID: ROOT\LEGACY_SPLDR\0000
Manufacturer:
Name: Security Processor Loader Driver
PNP Device ID: ROOT\LEGACY_SPLDR\0000
Service: spldr
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft Teredo Tunneling Adapter
Device ID: ROOT\*TEREDO\0000
Manufacturer: Microsoft
Name: Microsoft Teredo Tunneling Adapter
PNP Device ID: ROOT\*TEREDO\0000
Service: tunnel
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
.
Update for Microsoft Office 2007 (KB2508958)
µTorrent
7-Zip 9.20
7-Zip 9.21
ABBYY FineReader 5.0 Sprint Plus
ABBYY FineReader 9.0 Sprint
AccelerateTab
Adobe Acrobat X Pro - English, Français, Deutsch
Adobe After Effects CS4
Adobe After Effects CS4 Presets
Adobe After Effects CS4 Third Party Content
Adobe AIR
Adobe Anchor Service CS4
Adobe Asset Services CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Recommended Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Extra Settings CS4
Adobe Community Help
Adobe Contribute CS4
Adobe Creative Suite 4 Master Collection
Adobe CS4 American English Speech Analysis Models
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Dreamweaver CS4
Adobe Drive CS4
Adobe Dynamiclink Support
Adobe Encore CS4
Adobe Encore CS4 Codecs
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Fireworks CS4
Adobe Flash CS4
Adobe Flash CS4 Extension - Flash Lite STI en
Adobe Flash CS4 STI-en
Adobe Flash Player 12 ActiveX
Adobe Flash Player 12 Plugin
Adobe Fonts All
Adobe Illustrator CS4
Adobe InDesign CS4
Adobe InDesign CS4 Application Feature Set Files (Roman)
Adobe InDesign CS4 Common Base Files
Adobe InDesign CS4 Icon Handler
Adobe Linguistics CS4
Adobe Media Encoder CS4
Adobe Media Encoder CS4 Additional Exporter
Adobe Media Encoder CS4 Dolby
Adobe Media Encoder CS4 Exporter
Adobe Media Encoder CS4 Importer
Adobe Media Player
Adobe OnLocation CS4
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Premiere Pro CS4
Adobe Premiere Pro CS4 Functional Content
Adobe Premiere Pro CS4 Third Party Content
Adobe Reader XI (11.0.06)
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe SGM CS4
Adobe Shockwave Player 11.5
Adobe SING CS4
Adobe Soundbooth CS4
Adobe Soundbooth CS4 Codecs
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe Version Cue CS4 Server
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
Advanced SystemCare 7
Alien Skin Eye Candy 5 Impact
Alien Skin Eye Candy 5 Nature
Alien Skin Eye Candy 5 Textures
Alpha Zawgyi Myanmar Unicode 2008
Alpha Zawgyi Unicode System
Amaya
Amazon Kindle
Apple Application Support
Apple Software Update
Atmosphere Lite v6.0
Auction Sentry
Audacity 2.0.3
AVG PC TuneUp
AVG PC TuneUp Language Pack (en-US)
BayGenie eBay Auction Sniper Free Edition 3.3.5.4
Bing Bar
CamStudio OSS Desktop Recorder
Camtasia Studio 7
Camtasia Studio 8
CaptureWizPro 4.40
CinemaNow Media Manager
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Citrix Online Launcher
Clip Art Collection
Combined Community Codec Pack 2010-10-10
Connect
Corel Applications
CSS3 Menu
CyberLink DVD Suite Deluxe
D3DX10
Data Lifeguard Diagnostic for Windows 1.24
DHTML Editing Component
Direct Audio Converter & CD Ripper 3.0
Direct MIDI to MP3 Converter version 6.2.2.46
DIY DataRecovery MBRtool 2
Driver Booster
DVD Menu Pack for HP MediaSmart Video
EASEUS Partition Recovery 5.0.1
Epson Event Manager
Epson FAX Utility
Epson PC-FAX Driver
EPSON Scan
EpsonNet Setup 3.3
erLT
Ezvid
FileZilla Client 3.6.0.2
Flash Image Rotator Pro
Free YouTube Downloader 3.5.157
Google Chrome
Google Earth Plug-in
Google Toolbar for Internet Explorer
Google Update Helper
GoToMeeting 5.9.0.1207
Heroes of Hellas 2 - Olympia
Hewlett-Packard ACLM.NET v1.2.2.3
HP Advisor
HP Customer Experience Enhancements
HP Game Console
HP Games
HP MediaSmart CinemaNow 2.0
HP MediaSmart DVD
HP MediaSmart Music
HP MediaSmart Photo
HP MediaSmart Video
HP MediaSmart/TouchSmart Netflix
HP Odometer
HP Product Detection
HP Setup
HP Support Assistant
HP Support Information
HP Update
Hulu Desktop
iDailyDiary 3.81
Intel(R) Management Engine Components
Intel(R) Rapid Storage Technology
IObit Malware Fighter
IObit Uninstaller
IrfanView (remove only)
Java 7 Update 51
Java Auto Updater
Java(TM) 6 Update 26
JavaFX 2.1.0
Jing
join.me
JPEG Recovery Pro 5.0
Junk Mail filter update
kuler
LabelPrint
LG USB Modem driver
LightScribe System Software
LightScribe Template Designs - 9 to 5 Pack 1
LightScribe Template Designs - Architecture Pack 1
LightScribe Template Designs - Business Pack 1
LightScribe Template Designs - Floral Pack 1
LightScribe Template Designs - Kids Korner Pack 1
LightScribe Template Designs - Life Events Pack 1
LightScribe Template Designs - Music Pack 1
LightScribe Template Labeler
Logitech SetPoint
LTCM Client
magicJack
Malwarebytes Anti-Malware version 1.75.0.1300
Management-Ware Craigslist Emails Extractor
Market Samurai
MediaFire Express
Mesh Runtime
Messenger Companion
Microsoft Money 2004
Microsoft Money 2004 System Pack
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Web Embedding Fonts Tool (III)
Microsoft WSE 3.0 Runtime
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
MiniTool Partition Wizard Home Edition 5.2
MiniTool Power Data Recovery
MorphVOX Junior
MotoHelper MergeModules
Movie Theme Pack for HP MediaSmart Video
Mozilla Firefox 27.0.1 (x86 en-US)
Mozilla Maintenance Service
Mplayer 0.6.9
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Neobux Referrals Handy Manager Version 2.2
NinjaTrader 7
PandoraRecovery (Remove Only)
PDF Settings CS4
PhotoNow!
PhotoRescue Advanced PC Demo 2.1.708
Photoshop Camera Raw
PictureMover
Pixel Bender Toolkit
PixRecovery 2.1.14710.1 Demo License
Power2Go
PowerDirector
PressReader
Presto! BizCard 4.1 Eng
PxMergeModule
QR Code Fantastiko 1.5
QuickTime
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Recovery Manager
Roxio CinemaNow 2.0
Safari
SavingsBull
ScanToWeb
SchoolSite Locator
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2898855v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2901110v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2901110v2)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition
Seesmic Ping
Skype Click to Call
Skype™ 6.11
Smart Defrag 3
SMPlayer 0.6.9
Spybot - Search & Destroy
Suite Shared Configuration CS4
Surfing Protection
System Requirements Lab CYRI
TC2000
TextPad 5
The Weather Channel App
TomTom HOME
TomTom HOME Visual Studio Merge Modules
Trader Workstation 4.0
TurboTax 2009
TurboTax 2009 WinPerFedFormset
TurboTax 2009 WinPerReleaseEngine
TurboTax 2009 WinPerTaxSupport
TurboTax 2009 wmdiper
TurboTax 2009 wrapper
TurboTax 2010
TurboTax 2010 WinPerFedFormset
TurboTax 2010 WinPerReleaseEngine
TurboTax 2010 WinPerTaxSupport
TurboTax 2010 wmdiper
TurboTax 2010 wrapper
TurboTax 2011
TurboTax 2011 wcaiper
TurboTax 2011 WinPerFedFormset
TurboTax 2011 WinPerReleaseEngine
TurboTax 2011 WinPerTaxSupport
TurboTax 2011 wmdiper
TurboTax 2011 wrapper
TurboTax 2012
TurboTax 2012 wcaiper
TurboTax 2012 WinPerFedFormset
TurboTax 2012 WinPerReleaseEngine
TurboTax 2012 WinPerTaxSupport
TurboTax 2012 wrapper
TWC Customer Controls
UnLock Root Pro 4.12
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VG JPEG-Repair Online
Video Squeeze Page Generator 1.1
Virtual Villagers - The Secret City
VLC media player 2.0.3
Voice Changer version 1.5
Web Designers Toolkit
Winamp
Winamp Detector Plug-in
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinMerge 2.14.0
Yahoo! Toolbar
Zero Assumption Recovery Version 9
Zoom Wireless-N USB Zoom Wireless-N USB
.
==== Event Viewer Messages From Past Week ========
.
2/25/2014 9:04:41 AM, Error: Service Control Manager [7000] - The UrlFilter service failed to start due to the following error: Cannot create a file when that file already exists.
2/25/2014 8:50:10 AM, Error: Service Control Manager [7023] - The WinDefend service terminated with the following error: Access is denied.
2/25/2014 8:48:51 AM, Error: Service Control Manager [7000] - The UrlFilter service failed to start due to the following error: There are no more endpoints available from the endpoint mapper.
2/25/2014 8:48:30 AM, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: %%-2147024891
2/25/2014 8:48:30 AM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: %%-2147024891
2/25/2014 8:48:11 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
2/25/2014 8:48:11 AM, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
2/25/2014 8:48:07 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
2/25/2014 8:47:54 AM, Error: Service Control Manager [7034] - The SecureUpdate service terminated unexpectedly. It has done this 1 time(s).
2/25/2014 8:47:46 AM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
2/25/2014 8:47:46 AM, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.
2/25/2014 8:47:01 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: ccSet_NIS hlnfd
2/25/2014 8:46:46 AM, Error: Service Control Manager [7000] - The Search Protect by Conduit Service service failed to start due to the following error: The system cannot find the file specified.
2/25/2014 8:46:38 AM, Error: Service Control Manager [7003] - The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.
2/25/2014 8:46:37 AM, Error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service.
2/25/2014 8:46:36 AM, Error: Service Control Manager [7003] - The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.
2/25/2014 8:46:31 AM, Error: Service Control Manager [7000] - The Microsoft Antimalware Service service failed to start due to the following error: Access is denied.
2/25/2014 8:46:21 AM, Error: Microsoft-Windows-Kernel-General [6] - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file): ''.
2/25/2014 8:45:59 AM, Error: volmgr [46] - Crash dump initialization failed!
2/25/2014 8:45:31 AM, Error: NetBT [4313] - Unable to open the Registry Linkage to read configuration information.
2/25/2014 8:45:31 AM, Error: NetBT [4300] - The driver could not be created.
2/25/2014 7:25:20 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Security Essentials - 4.4.304.0 (KB2902885).
2/25/2014 12:02:30 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {D3DCB472-7261-43CE-924B-0704BD730D5F}
2/25/2014 12:02:30 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {145B4335-FE2A-4927-A040-7C35AD3180EF}
2/25/2014 11:56:18 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
2/25/2014 11:56:17 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
2/25/2014 11:56:16 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2/25/2014 11:56:07 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
2/25/2014 11:55:44 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AVGIDSDriver Avgldx64 ccSet_NIS discache MpFilter spldr Wanarpv6
2/25/2014 11:55:42 AM, Error: Service Control Manager [7001] - The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error: A device attached to the system is not functioning.
2/25/2014 11:49:11 AM, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.
2/25/2014 11:49:05 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: ccSet_NIS
2/25/2014 11:48:55 AM, Error: Service Control Manager [7000] - The SecureUpdate service failed to start due to the following error: The system cannot find the file specified.
2/25/2014 11:48:55 AM, Error: Service Control Manager [7000] - The Norton Internet Security service failed to start due to the following error: The system cannot find the file specified.
2/25/2014 11:45:28 AM, Error: Service Control Manager [7034] - The LiveUpdate service terminated unexpectedly. It has done this 1 time(s).
2/25/2014 11:13:13 AM, Error: Microsoft Antimalware [2004] - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Backup Error Code: 0x80070002 Error description: The system cannot find the file specified. Signature version: 0.0.0.0;0.0.0.0 Engine version: 0.0.0.0
2/25/2014 11:13:12 AM, Error: Microsoft Antimalware [2004] - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x80070002 Error description: The system cannot find the file specified. Signature version: 0.0.0.0;0.0.0.0 Engine version: 0.0.0.0
2/25/2014 1:30:01 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
2/25/2014 1:28:19 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
2/25/2014 1:26:46 PM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
2/25/2014 1:25:56 PM, Error: Application Popup [1060] - \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
2/25/2014 1:12:24 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service VSS with arguments "" in order to run the server: {E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
2/24/2014 9:04:04 AM, Error: Schannel [36888] - The following fatal alert was generated: 40. The internal error state is 107.
2/24/2014 9:04:04 AM, Error: Schannel [36874] - An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
2/24/2014 7:29:58 PM, Error: Service Control Manager [7034] - The Search Protect by Conduit Service service terminated unexpectedly. It has done this 1 time(s).
2/24/2014 5:59:03 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
2/24/2014 5:58:02 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AVGIDSDriver Avgldx64 ccSet_NIS discache hlnfd MpFilter spldr Wanarpv6
2/24/2014 5:01:20 AM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: The service has not been started.
2/22/2014 3:11:40 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Installer service, but this action failed with the following error: An instance of the service is already running.
2/22/2014 3:09:40 PM, Error: Service Control Manager [7031] - The Windows Installer service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
2/22/2014 3:08:59 PM, Error: Service Control Manager [7034] - The vToolbarUpdater17.3.0 service terminated unexpectedly. It has done this 1 time(s).
2/18/2014 3:42:28 AM, Error: Service Control Manager [7022] - The Windows Search service hung on starting.
.
==== End Of File ===========================
zortika
Active Member
 
Posts: 2
Joined: February 25th, 2014, 4:06 pm
Advertisement
Register to Remove

Re: Infected By New Unknown Malware. Please HELP!

Unread postby zortika » February 25th, 2014, 9:00 pm

I fixed the problem after I posted in this forum.
I restated my Windows 7 PC in safe mode with network and ran MalwareByte and Microsoft Malware Remover.
MalwareByte found 135 threats and MS found 9 issues. I removed all and restarted in normal mode.
So far so good.
Thanks. :P
zortika
Active Member
 
Posts: 2
Joined: February 25th, 2014, 4:06 pm

Re: Infected By New Unknown Malware. Please HELP!

Unread postby Cypher » February 26th, 2014, 7:08 am

As your problems appear to have been resolved, this topic is now closed.

We are pleased we could help you resolve your computer's issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 64 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware