Searchqu will not go away and its toolbar and search engine have infected my computer for who knows what reason. It must go away..
I uninstalled ilivid (no problem there) and also uninstalled Searchqu, but Searchqu will not go away. I see there is a similar post on this forum page, but I figured the situation might be different than mine. I appreciate any help; here are my DDS and ATTACH logs:
.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by Tom at 0:54:08.94 on Sun 04/03/2011
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_24
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.3837.2452 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\system32\Dwm.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Users\Tom\Desktop\malwareremoval\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.searchqu.com/406
mWinlogon: Userinit=userinit.exe
BHO: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WIC55D~1\ToolBar\searchqudtx.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WIC55D~1\ToolBar\searchqudtx.dll
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
mRun: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
AppInit_DLLs:
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun-x64: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
mRun-x64: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
mRun-x64: [(Default)]
mRun-x64: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
AppInit_DLLs-X64: C:\PROGRA~2\WIC55D~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\WIC55D~1\Datamngr\x64\IEBHO.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\f6cggkyz.default\
FF - prefs.js: browser.search.selectedEngine - Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.searchqu.com/406
FF - prefs.js: keyword.URL - hxxp://www.searchqu.com/web?src=ffb&systemid=406&q=
FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Skype extension: {AB2CE124-6272-4b12-94A9-7303C7397BD1} - C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
.
============= SERVICES / DRIVERS ===============
.
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2010-10-24 188928]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2009-7-2 203264]
R3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver;C:\Windows\System32\drivers\ATSwpWDF.sys [2009-12-3 716872]
R3 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2011-3-6 228408]
R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\System32\drivers\MpNWMon.sys [2010-10-24 40832]
R3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2010-10-24 72064]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2011-3-6 220672]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-3-2 187392]
R3 WacomHidFilter;Wacom HID Filter;C:\Windows\System32\drivers\wacomhidfilter.sys [2009-6-17 13224]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-13 136176]
S3 btusbflt;Bluetooth USB Filter;C:\Windows\System32\drivers\btusbflt.sys [2010-4-14 54824]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
.
=============== Created Last 30 ================
.
2011-04-02 23:59:54 -------- d-----w- C:\Users\Tom\AppData\Roaming\StreamTorrent
2011-04-02 23:52:17 -------- d-----w- C:\Users\Tom\AppData\Local\Ilivid Player
2011-04-02 23:50:25 -------- d-----w- C:\Users\Tom\AppData\Local\PackageAware
2011-04-02 21:48:15 8424784 ----a-w- C:\PROGRA~3\Microsoft\Microsoft Antimalware\Definition Updates\{F54904AC-AF1B-4CF1-88A4-7539B7F62C26}\mpengine.dll
2011-03-27 06:17:32 601424 ------w- C:\PROGRA~3\Microsoft\Microsoft Antimalware\Definition Updates\{E75E0C8A-0DA9-46C2-97A8-90F7979CF2F0}\gapaengine.dll
2011-03-13 07:54:29 -------- d-----w- C:\Users\Tom\AppData\Local\Google
2011-03-13 07:54:06 -------- d-----r- C:\Program Files (x86)\Skype
2011-03-09 22:22:44 1135104 ----a-w- C:\Windows\System32\FntCache.dll
2011-03-09 22:22:43 1074176 ----a-w- C:\Windows\SysWow64\DWrite.dll
2011-03-09 22:22:42 902656 ----a-w- C:\Windows\System32\d2d1.dll
2011-03-09 22:22:42 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-03-09 22:22:42 1540608 ----a-w- C:\Windows\System32\DWrite.dll
2011-03-09 22:12:14 -------- d-----w- C:\Users\Tom\AppData\Roaming\Foxit Software
2011-03-08 23:32:19 961024 ----a-w- C:\Windows\System32\CPFilters.dll
2011-03-08 23:32:19 723968 ----a-w- C:\Windows\System32\EncDec.dll
2011-03-08 23:32:19 642048 ----a-w- C:\Windows\SysWow64\CPFilters.dll
2011-03-08 23:32:18 850432 ----a-w- C:\Windows\SysWow64\sbe.dll
2011-03-08 23:32:18 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2011-03-08 23:32:18 259072 ----a-w- C:\Windows\System32\mpg2splt.ax
2011-03-08 23:32:18 1118720 ----a-w- C:\Windows\System32\sbe.dll
2011-03-08 23:32:17 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
2011-03-08 23:32:07 3138048 ----a-w- C:\Windows\System32\mstscax.dll
2011-03-08 23:32:07 2690560 ----a-w- C:\Windows\SysWow64\mstscax.dll
2011-03-08 23:32:06 1097216 ----a-w- C:\Windows\System32\mstsc.exe
2011-03-08 23:32:06 1034240 ----a-w- C:\Windows\SysWow64\mstsc.exe
2011-03-08 19:44:11 601424 ------w- C:\PROGRA~3\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2011-03-08 19:44:06 8424784 ----a-w- C:\PROGRA~3\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-03-07 05:57:08 367104 ----a-w- C:\Windows\System32\wcncsvc.dll
2011-03-07 05:57:07 276992 ----a-w- C:\Windows\SysWow64\wcncsvc.dll
2011-03-07 05:42:30 -------- d-----w- C:\Program Files\Motorola
2011-03-07 05:39:54 311808 ----a-w- C:\Windows\System32\msv1_0.dll
2011-03-07 05:39:54 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2011-03-07 05:36:19 0 ----a-w- C:\Windows\ativpsrm.bin
2011-03-07 05:32:49 -------- d-----w- C:\Windows\Panther
2011-03-07 05:32:34 -------- d-sh--w- C:\Boot
2011-03-07 05:24:34 14336 ----a-w- C:\Windows\System32\drivers\sffp_sd.sys
2011-03-07 05:22:07 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
2011-03-07 05:22:06 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
2011-03-07 05:22:06 48960 ----a-w- C:\Windows\System32\netfxperf.dll
2011-03-07 05:22:06 444752 ----a-w- C:\Windows\System32\mscoree.dll
2011-03-07 05:22:06 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
2011-03-07 05:22:06 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
2011-03-07 05:22:06 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
2011-03-07 05:22:06 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2011-03-07 05:22:06 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
2011-03-07 05:22:05 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2011-03-07 05:16:10 -------- d-----w- C:\PROGRA~3\TrueSuite
2011-03-07 05:16:08 -------- d-----w- C:\Windows\System32\wocaffe
2011-03-07 05:16:08 -------- d-----w- C:\Program Files\TrueSuite
2011-03-07 05:16:03 -------- d-----w- C:\PROGRA~3\Downloaded Installations
2011-03-07 05:07:49 4582912 ----a-w- C:\Program Files\Windows NT\Accessories\wordpad.exe
2011-03-07 05:06:58 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2011-03-07 04:58:01 463360 ----a-w- C:\Windows\System32\drivers\srv.sys
2011-03-07 04:58:01 402944 ----a-w- C:\Windows\System32\drivers\srv2.sys
2011-03-07 04:58:01 236032 ----a-w- C:\Windows\System32\srvsvc.dll
2011-03-07 04:58:01 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2011-03-07 04:58:00 9728 ----a-w- C:\Windows\SysWow64\sscore.dll
2011-03-07 04:43:03 -------- d-----w- C:\Program Files (x86)\Microsoft Synchronization Services
2011-03-07 04:42:45 -------- d-----w- C:\Windows\PCHEALTH
2011-03-07 04:42:45 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2011-03-07 04:40:23 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2011-03-07 04:39:53 -------- d-----w- C:\Users\Tom\AppData\Local\Microsoft Help
2011-03-07 04:37:43 -------- d-----w- C:\Program Files (x86)\VideoLAN
2011-03-07 04:35:32 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-03-07 04:35:32 472808 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
2011-03-07 04:34:02 -------- d-----w- C:\Users\Tom\AppData\Local\Mozilla
2011-03-07 04:32:50 -------- d-----w- C:\Program Files (x86)\Foxit Software
2011-03-07 04:25:49 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-03-07 04:24:26 220672 ----a-w- C:\Windows\System32\wintrust.dll
2011-03-07 04:24:26 172032 ----a-w- C:\Windows\SysWow64\wintrust.dll
2011-03-07 04:24:25 139264 ----a-w- C:\Windows\System32\cabview.dll
2011-03-07 04:24:25 132608 ----a-w- C:\Windows\SysWow64\cabview.dll
2011-03-07 04:18:43 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2011-03-07 04:18:28 -------- d-----w- C:\Program Files\Microsoft Security Client
2011-03-07 04:18:14 374664 ----a-w- C:\Windows\System32\drivers\netio.sys
2011-03-07 04:10:16 -------- d-----w- C:\Users\Tom\AppData\Roaming\hpqLog
2011-03-07 04:09:54 1919968 ----a-w- C:\Windows\System32\drivers\wdfcoinstaller01005.dll
2011-03-07 04:09:54 18432 ----a-w- C:\Windows\System32\drivers\HpqKbFiltr.sys
2011-03-07 04:09:52 1885488 ----a-w- C:\Windows\SysWow64\BttnCmns.dll
2011-03-07 04:09:52 1885488 ----a-r- C:\Windows\SysWow64\BttnCmn.dll
2011-03-07 04:08:24 6656 ----a-w- C:\Windows\System32\bcmwlrc.dll
2011-03-07 04:08:23 95472 ----a-w- C:\Windows\System32\bcmwlcoi.dll
2011-03-07 04:08:23 3890688 ----a-w- C:\Windows\System32\bcmihvsrv64.dll
2011-03-07 04:08:23 3555328 ----a-w- C:\Windows\System32\bcmihvui64.dll
2011-03-07 04:08:23 2978296 ----a-w- C:\Windows\System32\drivers\BCMWL664.SYS
2011-03-07 04:08:23 -------- d-----w- C:\Program Files\Broadcom
2011-03-07 04:03:07 -------- d-----w- C:\Users\Tom\AppData\Local\ATI
2011-03-07 03:58:02 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2011-03-07 03:58:01 -------- d-sh--w- C:\Windows\Installer
2011-03-07 03:57:51 -------- d-----w- C:\Program Files\ATI Technologies
2011-03-07 03:57:45 -------- d-----w- C:\Program Files\ATI
2011-03-07 03:56:04 -------- d-----w- C:\Program Files\Synaptics
2011-03-07 03:54:10 67584 ----a-w- C:\Windows\System32\RtNicProp64.dll
2011-03-07 03:52:57 7347200 ----a-w- C:\Windows\System32\RTSUSTORicon.dll
2011-03-07 03:52:57 351744 ----a-w- C:\Windows\System32\RtsUStor.dll
2011-03-07 03:52:57 220672 ----a-w- C:\Windows\System32\drivers\RtsUStor.sys
2011-03-07 03:52:57 -------- d-----w- C:\Program Files (x86)\Realtek
2011-03-07 03:48:50 -------- d-----w- C:\SwSetup
2011-03-07 03:45:10 -------- d-----w- C:\Users\Tom\AppData\Local\VirtualStore
2011-03-07 03:40:58 -------- d-sh--w- C:\Recovery
.
==================== Find3M ====================
.
2011-01-26 06:53:10 982912 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2011-01-26 06:53:10 265088 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2011-01-26 06:31:20 144384 ----a-w- C:\Windows\System32\cdd.dll
2011-01-17 06:17:00 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2011-01-17 05:38:38 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2011-01-07 08:07:24 662528 ----a-w- C:\Windows\System32\XpsPrint.dll
2011-01-07 08:07:24 475648 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-01-07 08:06:50 46080 ----a-w- C:\Windows\System32\atmlib.dll
2011-01-07 07:31:10 442880 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2011-01-07 07:31:10 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-01-07 07:27:11 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2011-01-07 05:49:20 366080 ----a-w- C:\Windows\System32\atmfd.dll
2011-01-07 05:33:11 294400 ----a-w- C:\Windows\SysWow64\atmfd.dll
2011-01-05 06:20:30 612352 ----a-w- C:\Windows\System32\vbscript.dll
2011-01-05 05:37:33 428032 ----a-w- C:\Windows\SysWow64\vbscript.dll
2011-01-05 04:00:16 3127808 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 0:54:52.53 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 3/6/2011 11:37:47 PM
System Uptime: 4/2/2011 10:54:54 PM (2 hours ago)
.
Motherboard: Quanta | | 30F1
Processor: AMD Turion(tm) X2 Ultra Dual-Core Mobile ZM-82 | Socket M2/S1G1 | 2200/1800mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 233 GiB total, 199.738 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description:
Device ID: ACPI\ENE0100\4&23FC94D0&0
Manufacturer:
Name:
PNP Device ID: ACPI\ENE0100\4&23FC94D0&0
Service:
.
==== System Restore Points ===================
.
RP12: 3/8/2011 3:00:10 AM - Windows Update
RP13: 3/8/2011 1:43:28 PM - Windows Update
RP15: 3/9/2011 12:10:58 PM - Windows Modules Installer
RP16: 3/9/2011 12:14:55 PM - Windows Modules Installer
RP17: 3/9/2011 3:11:09 PM - Windows Update
RP19: 3/10/2011 1:19:45 PM - Windows Modules Installer
RP20: 3/10/2011 4:50:29 PM - Windows Update
RP22: 3/11/2011 7:08:55 PM - Windows Update
RP23: 3/12/2011 7:32:00 AM - Windows Update
RP24: 3/12/2011 9:43:11 PM - Windows Update
RP25: 3/13/2011 5:29:03 AM - Windows Update
RP26: 3/14/2011 8:20:50 AM - Windows Update
RP27: 3/19/2011 5:48:39 PM - Windows Update
RP28: 3/22/2011 10:02:08 PM - Windows Update
RP29: 3/23/2011 11:45:16 PM - Windows Update
RP30: 3/24/2011 3:00:11 AM - Windows Update
RP31: 3/27/2011 1:16:52 AM - Windows Update
RP32: 3/28/2011 8:55:41 PM - Windows Update
RP33: 4/2/2011 4:47:55 PM - Windows Update
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CyberLink YouCam
Definition update for Microsoft Office 2010 (KB982726)
Foxit Reader
Google Chrome
Google Update Helper
HP Quick Launch Buttons
HP Wireless Assistant
Java Auto Updater
Java(TM) 6 Update 24
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Mozilla Firefox (3.6.16)
QLBCASL
Realtek 8136 8168 8169 Ethernet Driver
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Skype Toolbars
Skype™ 5.1
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Office 2010 (KB2494150)
VLC media player 1.1.7
.
==== Event Viewer Messages From Past Week ========
.
4/2/2011 9:52:10 AM, Error: bowser [8003] - The master browser has received a server announcement from the computer JENNIFOFO-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{AF205589-68D3-4BA3-A04D-1B8E5BC3767D}. The master browser is stopping or an election is being forced.
4/2/2011 11:35:51 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer USER-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{AF205589-68D3-4BA3-A04D-1B8E5BC3767D}. The master browser is stopping or an election is being forced.
4/1/2011 3:21:10 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.101.319.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6702.0 Error code: 0x80240022 Error description: The program can't check for definition updates.
4/1/2011 3:21:10 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.101.319.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6702.0 Error code: 0x80240022 Error description: The program can't check for definition updates.
3/31/2011 12:56:11 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.101.319.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6702.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
3/31/2011 10:06:30 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer DAVID-VAIO that believes that it is the master browser for the domain on transport NetBT_Tcpip_{AF205589-68D3-4BA3-A04D-1B8E5BC3767D}. The master browser is stopping or an election is being forced.
3/29/2011 11:02:14 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer ARCHIMEDES that believes that it is the master browser for the domain on transport NetBT_Tcpip_{AF205589-68D3-4BA3-A04D-1B8E5BC3767D}. The master browser is stopping or an election is being forced.
3/29/2011 10:25:14 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.101.319.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6702.0 Error code: 0x80240022 Error description: The program can't check for definition updates.
3/29/2011 10:25:14 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.101.319.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6702.0 Error code: 0x80240022 Error description: The program can't check for definition updates.
3/28/2011 8:55:42 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer OWNER-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{AF205589-68D3-4BA3-A04D-1B8E5BC3767D}. The master browser is stopping or an election is being forced.
3/27/2011 5:54:13 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.101.235.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6702.0 Error code: 0x80240022 Error description: The program can't check for definition updates.
3/27/2011 5:54:13 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.101.235.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6702.0 Error code: 0x80240022 Error description: The program can't check for definition updates.
.
==== End Of File ===========================