Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

pop up ad malware

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

pop up ad malware

Unread postby vanny » December 28th, 2013, 9:41 pm

Hi,

My father in laws computer seems to have a pop up malware virus.
Have run malware removal software as well as norton and avg. Cant seem to get rid of it.
A pop up in the bottom right corner for an adult website will pop up and re-appear every 20 seconds or so. very annoying.


DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16750
Run by kimoto at 10:27:14 on 2013-12-29
Microsoft Windows 7 Home Premium 6.1.7601.1.932.81.1041.18.4021.1881 [GMT 9:00]
.
AV: AVG Internet Security 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Internet Security 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: AVG Internet Security 2014 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Program Files (x86)\Common Files\CypherTec\cgrdsrv32.exe
C:\Program Files\Common Files\CypherTec\cgrdsrv64.exe
C:\Program Files\Common Files\CypherTec\cthwsrv64.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\TOSHIBA\TECO\TecoService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\taskhost.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Intel\Intel Pair & Share\PairAndShare.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\TECO\Teco.exe
C:\Program Files\TOSHIBA\PeakShift\TPSCMain.exe
C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Users\kimoto\AppData\Local\Yahoo!J\PC Service Manager\ypcsm.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\windows\system32\mshta.exe
C:\Program Files\TOSHIBA\TECO\TecoHook.exe
C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\Toshiba Places Gadget\ToshibaPlacesGadget.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhrcusr.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Toshiba\Toshiba Places Digestword\PBExtractService.exe
C:\windows\system32\sppsvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
C:\windows\system32\wuauclt.exe
C:\windows\system32\SearchFilterHost.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uSearch Bar = Preserve
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Yahoo!ツールバーフィッシング警告: {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\ypho.dll
BHO: CgooStickEnabler Object: {4A00D3B7-319E-49D9-A7B0-C138480DEBB8} - C:\Program Files (x86)\goo\stick6\gooStick.dll
BHO: 東芝プレイス ダイジェストワード用ライブラリ: {4C149F6B-ED35-42CC-979F-77006AFA4453} - C:\Program Files (x86)\TOSHIBA\Toshiba Places Digestword\TPBIEAddon.dll
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\ips\ipsbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID サインイン ヘルパー: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: i-フィルター 6.0 ブラウザーヘルパー: {BE920B15-1DCA-450e-87D0-C1EEA491F3DD} - C:\Program Files (x86)\Digital Arts\IFP6\app\bin\ifp6toolbar32.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: Yahoo!ツールバーヘルパー: {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
TB: Yahoo!ツールバー: {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
TB: Yahoo!ツールバー: {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
TB: gooスティック: {2095FB03-93B3-4613-82EC-6BFCD77C043B} - C:\Program Files (x86)\goo\stick6\gooStick.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coieplg.dll
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [ypcsm] C:\Users\kimoto\AppData\Local\Yahoo!J\PC Service Manager\ypcsm.exe
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [TSUScheduler] C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [LLHDUSER] "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
mRun: [TKRTL] C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe -h
mRun: [ToshibaPlacesGadget] "C:\Program Files (x86)\Toshiba Places Gadget\ToshibaPlacesGadget.exe" -atboottime
mRun: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {97F922BD-8563-4184-87EE-8C4ACA438823} - {5D29E593-73A5-400A-B3BD-6B7A1AF05A31} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{39C65B71-A233-4D35-8088-58D9BD45383F} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Yahoo!ツールバーフィッシング警告: {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar64\7_3_0_17\Modules\ypho.dll
x64-BHO: 東芝プレイス ダイジェストワード用ライブラリ: {4C149F6B-ED35-42CC-979F-77006AFA4453} - C:\Program Files (x86)\TOSHIBA\Toshiba Places Digestword\TPBIEAddon64.dll
x64-BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coieplg.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: i-フィルター 6.0 ブラウザーヘルパー: {BE920B15-1DCA-450e-87D0-C1EEA491F3DD} - C:\Program Files (x86)\Digital Arts\IFP6\app\bin\ifp6toolbar64.dll
x64-BHO: Yahoo!ツールバーヘルパー: {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar64\7_3_0_17\Modules\YahooToolBar.dll
x64-TB: Yahoo!ツールバー: {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar64\7_3_0_17\Modules\YahooToolBar.dll
x64-TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coieplg.dll
x64-Run: [TPwrMain] C:\Program Files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
x64-Run: [TCrdMain] C:\Program Files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Teco] "C:\Program Files (x86)\TOSHIBA\TECO\Teco.exe" /r
x64-Run: [TPSCMain] C:\Program Files (x86)\TOSHIBA\PeakShift\TPSCMain.exe
x64-Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
x64-Run: [TosWaitSrv] C:\Program Files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
x64-Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
x64-Run: [TosNC] C:\Program Files (x86)\Toshiba\BulletinBoard\TosNcCore.exe
x64-Run: [TosReelTimeMonitor] C:\Program Files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
x64-Run: [Unattend0000000001{4C792883-B188-46B9-97AE-50E36A51A158}] C:\tosutils\palakidou\palakidou.exe
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-IE: {97F922BD-8563-4184-87EE-8C4ACA438823} - {5D29E593-73A5-400A-B3BD-6B7A1AF05A31} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom64.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\kimoto\AppData\Roaming\Mozilla\Firefox\Profiles\i4tfijiz.default\
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\windows\System32\drivers\avgidsha.sys [2013-10-24 194872]
R0 Avgloga;AVG Logging Driver;C:\windows\System32\drivers\avgloga.sys [2013-10-31 294712]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\windows\System32\drivers\avgmfx64.sys [2013-10-1 123704]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\windows\System32\drivers\avgrkx64.sys [2013-9-10 31544]
R0 iusb3hcs;インテル(R) USB 3.0 ホスト・コントローラー・スイッチ・ドライバー;C:\windows\System32\drivers\iusb3hcs.sys [2012-1-5 16152]
R0 SymDS;Symantec Data Store;C:\windows\System32\drivers\NISx64\1501000.012\symds64.sys [2013-12-28 493656]
R0 SymEFA;Symantec Extended File Attributes;C:\windows\System32\drivers\NISx64\1501000.012\symefa64.sys [2013-12-28 1147480]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\drivers\tos_sps64.sys [2012-6-26 482384]
R1 Avgdiska;AVG Disk Driver;C:\windows\System32\drivers\avgdiska.sys [2013-11-5 150808]
R1 Avgfwfd;AVG network filter service;C:\windows\System32\drivers\avgfwd6a.sys [2013-9-26 57144]
R1 AVGIDSDriver;AVGIDSDriver;C:\windows\System32\drivers\avgidsdrivera.sys [2013-11-4 240920]
R1 Avgldx64;AVG AVI Loader Driver;C:\windows\System32\drivers\avgldx64.sys [2013-10-31 212280]
R1 Avgtdia;AVG TDI Driver;C:\windows\System32\drivers\avgtdia.sys [2013-8-1 251192]
R1 BHDrvx64;BHDrvx64;C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\BASHDefs\20131203.001\BHDrvx64.sys [2013-12-4 1526488]
R1 ccSet_NIS;NIS Settings Manager;C:\windows\System32\drivers\NISx64\1501000.012\ccsetx64.sys [2013-12-28 162392]
R1 IDSVia64;IDSVia64;C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\IPSDefs\20131227.001\IDSviA64.sys [2013-12-27 521944]
R1 SymIRON;Symantec Iron Driver;C:\windows\System32\drivers\NISx64\1501000.012\ironx64.sys [2013-12-28 264280]
R1 SymNetS;Symantec Network Security WFP Driver;C:\windows\System32\drivers\NISx64\1501000.012\symnets.sys [2013-12-28 590936]
R2 avgfws;AVG Firewall;C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [2013-9-24 1358944]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-11-11 3478544]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-9-24 348008]
R2 cfWiMAXService;ConfigFree WiMAX Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2011-6-7 250296]
R2 ConfigFree Service;ConfigFree プロファイルサービス;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2011-6-7 47032]
R2 Cymon;Cymon;C:\windows\System32\drivers\cymon.sys [2011-3-14 120928]
R2 CypherGuard cguard Service 32bit Edition;CypherGuard cguard Service 32bit Edition;C:\Program Files (x86)\Common Files\CypherTec\cgrdsrv32.exe [2011-8-18 113056]
R2 CypherGuard cguard Service 64bit Edition;CypherGuard cguard Service 64bit Edition;C:\Program Files\Common Files\CypherTec\cgrdsrv64.exe [2011-8-18 127416]
R2 CypherGuard Info Service;CypherGuard Info Service;C:\Program Files\Common Files\CypherTec\cthwsrv64.exe [2011-8-18 131512]
R2 ImeDictUpdateService;Microsoft IME Dictionary Update;C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE [2010-10-20 83312]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]
R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-6-26 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-6-26 161560]
R2 LLHDCloader;LLHDCloader;C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe [2012-3-29 8704]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-12-28 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-12-28 701512]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\nis.exe [2013-12-28 275696]
R2 PBExtractService;Toshiba Places Digestword;C:\Program Files (x86)\TOSHIBA\Toshiba Places Digestword\PBExtractService.exe [2011-7-7 20480]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-9 3275136]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2012-2-9 295360]
R2 TosRzTfSvc;TOSHIBA TosRzTf Control Service;C:\Program Files (x86)\TOSHIBA\RegzaLinkDubbing\TosRzTfSvc.exe [2012-6-26 79808]
R2 TPCHKarteSVC;TPCHKarteSVC;C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe [2011-6-1 223184]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\drivers\TVALZFL.sys [2009-6-19 14472]
R2 UDSS;UDSS;C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe [2012-1-18 30064]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-6-26 363800]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-12-28 137648]
R3 FwLnk;FwLnk Driver;C:\windows\System32\drivers\FwLnk.sys [2012-3-29 9216]
R3 IntcDAud;インテル(R) ディスプレイ用オーディオ;C:\windows\System32\drivers\IntcDAud.sys [2011-12-6 331264]
R3 iusb3hub;インテル(R) USB 3.0 ハブドライバー;C:\windows\System32\drivers\iusb3hub.sys [2012-1-5 355096]
R3 iusb3xhc;インテル(R) USB 3.0 eXtensible ホスト・コントローラー・ドライバー;C:\windows\System32\drivers\iusb3xhc.sys [2012-1-5 786200]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2012-1-16 103536]
R3 llhrcmi6;llhrcmi6;C:\windows\System32\drivers\llhrcmi6.sys [2012-3-29 11296]
R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2013-12-28 25928]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUVStor.sys [2012-6-26 314472]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\drivers\rtl8192ce.sys [2012-6-26 1145448]
R3 SmbDrv;SmbDrv;C:\windows\System32\drivers\Smb_driver.sys [2011-12-22 21264]
R3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-6-26 57216]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2012-2-24 138152]
R3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2011-12-14 833976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]
S3 LLHDClient;LLHDClient;C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDClient.exe [2012-3-29 308368]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 TosRzTf;TOSHIBA TosRzTf Driver;C:\windows\System32\drivers\TosRzTf.sys [2012-6-26 15536]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
.
=============== Created Last 30 ================
.
2013-12-28 10:39:31 -------- d-----w- C:\Users\kimoto\AppData\Roaming\AVG2014
2013-12-28 10:38:39 -------- d-----w- C:\Users\kimoto\AppData\Roaming\TuneUp Software
2013-12-28 10:37:03 -------- d--h--w- C:\$AVG
2013-12-28 10:37:03 -------- d-----w- C:\ProgramData\AVG2014
2013-12-28 10:36:20 -------- d-----w- C:\Program Files (x86)\AVG
2013-12-28 10:33:00 -------- d--h--w- C:\ProgramData\Common Files
2013-12-28 10:33:00 -------- d-----w- C:\Users\kimoto\AppData\Local\MFAData
2013-12-28 10:33:00 -------- d-----w- C:\Users\kimoto\AppData\Local\Avg2014
2013-12-28 10:33:00 -------- d-----w- C:\ProgramData\MFAData
2013-12-28 06:52:02 -------- d-----w- C:\Users\kimoto\AppData\Roaming\Malwarebytes
2013-12-28 06:51:50 -------- d-----w- C:\ProgramData\Malwarebytes
2013-12-28 06:51:49 25928 ----a-w- C:\windows\System32\drivers\mbam.sys
2013-12-28 06:51:49 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-28 06:51:28 -------- d-----w- C:\Users\kimoto\AppData\Local\Programs
2013-12-28 06:39:25 -------- d-----w- C:\windows\ERUNT
2013-12-28 06:30:50 -------- d-----w- C:\AdwCleaner
2013-12-28 05:36:08 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2013-12-28 05:24:56 177752 ----a-w- C:\windows\System32\drivers\SYMEVENT64x86.SYS
2013-12-28 05:24:56 -------- d-----w- C:\Program Files\Common Files\Symantec Shared
2013-12-28 05:24:34 858200 ----a-w- C:\windows\System32\drivers\NISx64\1501000.012\srtsp64.sys
2013-12-28 05:24:34 590936 ----a-w- C:\windows\System32\drivers\NISx64\1501000.012\symnets.sys
2013-12-28 05:24:34 493656 ----a-r- C:\windows\System32\drivers\NISx64\1501000.012\symds64.sys
2013-12-28 05:24:34 36952 ----a-r- C:\windows\System32\drivers\NISx64\1501000.012\srtspx64.sys
2013-12-28 05:24:34 264280 ----a-r- C:\windows\System32\drivers\NISx64\1501000.012\ironx64.sys
2013-12-28 05:24:34 23568 ----a-r- C:\windows\System32\drivers\NISx64\1501000.012\symelam.sys
2013-12-28 05:24:34 162392 ----a-w- C:\windows\System32\drivers\NISx64\1501000.012\ccsetx64.sys
2013-12-28 05:24:34 1147480 ----a-w- C:\windows\System32\drivers\NISx64\1501000.012\symefa64.sys
2013-12-28 05:23:49 -------- d-----w- C:\windows\System32\drivers\NISx64\1501000.012
2013-12-28 05:22:09 -------- d-----w- C:\windows\System32\drivers\NISx64
2013-12-28 05:21:51 -------- d-----w- C:\Program Files (x86)\Norton Internet Security
2013-12-28 05:14:02 -------- d-----w- C:\ProgramData\Norton
2013-12-28 05:12:14 -------- d-----w- C:\ProgramData\NortonInstaller
2013-12-28 05:12:14 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2013-12-27 23:43:37 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A664A234-1662-4F70-9640-CE2EB9FCE1A7}\mpengine.dll
2013-12-22 10:17:14 48648 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2013-12-22 10:17:06 630608 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-12-17 05:10:11 -------- d-----w- C:\Users\kimoto\AppData\Local\Line
2013-12-17 05:09:51 -------- d-----w- C:\Program Files (x86)\Naver
2013-12-15 07:09:51 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2013-12-15 07:09:51 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2013-12-15 07:09:50 12625920 ----a-w- C:\windows\System32\wmploc.DLL
2013-12-15 07:09:50 12625408 ----a-w- C:\windows\SysWow64\wmploc.DLL
2013-12-15 04:22:26 335360 ----a-w- C:\windows\System32\msieftp.dll
2013-12-15 04:22:26 301568 ----a-w- C:\windows\SysWow64\msieftp.dll
2013-12-15 04:22:25 3155968 ----a-w- C:\windows\System32\win32k.sys
2013-12-15 04:18:24 465920 ----a-w- C:\windows\System32\WMPhoto.dll
2013-12-15 04:18:24 417792 ----a-w- C:\windows\SysWow64\WMPhoto.dll
2013-12-15 04:18:23 81408 ----a-w- C:\windows\System32\imagehlp.dll
2013-12-15 04:18:23 159232 ----a-w- C:\windows\SysWow64\imagehlp.dll
2013-12-15 04:18:16 2048 ----a-w- C:\windows\SysWow64\tzres.dll
2013-12-15 04:18:16 2048 ----a-w- C:\windows\System32\tzres.dll
2013-12-15 04:17:19 230400 ----a-w- C:\windows\System32\drivers\portcls.sys
2013-12-15 04:17:18 116736 ----a-w- C:\windows\System32\drivers\drmk.sys
2013-12-15 04:17:16 150016 ----a-w- C:\windows\System32\wshom.ocx
2013-12-15 04:17:16 121856 ----a-w- C:\windows\SysWow64\wshom.ocx
2013-12-15 04:17:15 202752 ----a-w- C:\windows\System32\scrrun.dll
2013-12-15 04:17:15 168960 ----a-w- C:\windows\System32\wscript.exe
2013-12-15 04:17:15 163840 ----a-w- C:\windows\SysWow64\scrrun.dll
2013-12-15 04:17:15 156160 ----a-w- C:\windows\System32\cscript.exe
2013-12-15 04:17:15 141824 ----a-w- C:\windows\SysWow64\wscript.exe
2013-12-15 04:17:15 126976 ----a-w- C:\windows\SysWow64\cscript.exe
.
==================== Find3M ====================
.
2013-12-15 04:26:12 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-15 04:26:12 692616 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-11-18 18:33:38 267936 ------w- C:\windows\System32\MpSigStub.exe
2013-11-05 12:55:48 150808 ----a-w- C:\windows\System32\drivers\avgdiska.sys
2013-11-04 12:52:42 240920 ----a-w- C:\windows\System32\drivers\avgidsdrivera.sys
2013-10-31 14:00:18 212280 ----a-w- C:\windows\System32\drivers\avgldx64.sys
2013-10-31 13:49:46 294712 ----a-w- C:\windows\System32\drivers\avgloga.sys
2013-10-25 06:19:22 2241536 ----a-w- C:\windows\System32\wininet.dll
2013-10-25 06:17:57 3959808 ----a-w- C:\windows\System32\jscript9.dll
2013-10-25 06:17:52 67072 ----a-w- C:\windows\System32\iesetup.dll
2013-10-25 06:17:52 136704 ----a-w- C:\windows\System32\iesysprep.dll
2013-10-25 04:45:11 1767936 ----a-w- C:\windows\SysWow64\wininet.dll
2013-10-25 04:43:42 2877952 ----a-w- C:\windows\SysWow64\jscript9.dll
2013-10-25 04:43:38 61440 ----a-w- C:\windows\SysWow64\iesetup.dll
2013-10-25 04:43:38 109056 ----a-w- C:\windows\SysWow64\iesysprep.dll
2013-10-25 04:07:48 2706432 ----a-w- C:\windows\System32\mshtml.tlb
2013-10-25 03:41:01 2706432 ----a-w- C:\windows\SysWow64\mshtml.tlb
2013-10-25 03:17:49 89600 ----a-w- C:\windows\System32\RegisterIEPKEYs.exe
2013-10-25 02:49:34 71680 ----a-w- C:\windows\SysWow64\RegisterIEPKEYs.exe
2013-10-24 13:25:58 194872 ----a-w- C:\windows\System32\drivers\avgidsha.sys
2013-10-12 02:30:42 830464 ----a-w- C:\windows\System32\nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:\windows\System32\IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:\windows\System32\FWPUCLNT.DLL
2013-10-12 02:03:08 656896 ----a-w- C:\windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:\windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25:35 1474048 ----a-w- C:\windows\System32\crypt32.dll
2013-10-05 19:57:25 1168384 ----a-w- C:\windows\SysWow64\crypt32.dll
2013-10-04 02:28:31 190464 ----a-w- C:\windows\System32\SmartcardCredentialProvider.dll
2013-10-04 02:25:17 197120 ----a-w- C:\windows\System32\credui.dll
2013-10-04 02:24:49 1930752 ----a-w- C:\windows\System32\authui.dll
2013-10-04 01:58:50 152576 ----a-w- C:\windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56:25 168960 ----a-w- C:\windows\SysWow64\credui.dll
2013-10-04 01:56:00 1796096 ----a-w- C:\windows\SysWow64\authui.dll
2013-10-03 02:23:48 404480 ----a-w- C:\windows\System32\gdi32.dll
2013-10-03 02:00:44 311808 ----a-w- C:\windows\SysWow64\gdi32.dll
2013-09-30 15:52:08 123704 ----a-w- C:\windows\System32\drivers\avgmfx64.sys
.
============= FINISH: 10:28:39.69 ===============


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 2012/07/22 20:25:13
System Uptime: 2013/12/29 10:22:31 (0 hours ago)
.
Motherboard: TOSHIBA | | Portable PC
Processor: Intel(R) Celeron(R) CPU B820 @ 1.70GHz | U3E1 | 1700/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 391 GiB total, 328.373 GiB free.
D: is FIXED (NTFS) - 50 GiB total, 49.908 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP77: 2013/11/23 14:25:59 - Windows Update
RP78: 2013/12/01 9:44:40 - Windows Update
RP79: 2013/12/08 15:45:19 - Windows Update
RP80: 2013/12/14 16:02:15 - Windows Update
RP81: 2013/12/15 13:18:03 - Windows Update
RP82: 2013/12/15 15:04:34 - Windows Update
RP83: 2013/12/21 15:01:19 - Windows Update
RP84: 2013/12/24 15:45:32 - Windows Update
RP85: 2013/12/28 8:43:05 - Windows Update
RP86: 2013/12/28 8:58:08 - てぶらナビ を削除しました。
RP87: 2013/12/28 19:35:59 - Installed AVG 2014
RP88: 2013/12/28 19:36:32 - Installed AVG 2014
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader X (10.1.0) - Japanese
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
AVG 2014
BookPlaceReader
Canon Easy-PhotoPrint EX
Canon MP Navigator EX 2.0
Canon MP540 series MP Drivers
ContentHD
Contents
Corel DDR Move
Corel DDR Move for Toshiba
Corel Digital Studio SE
Corel Direct DiscRecorder
Corel Direct DiscRecorder 3.7
D3DX10
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
DeviceIO
DFPro
DigiBookBrowser Version 1.5.1.4
dynabookランチャー用バナー
ebi.BookReader3J
ebi.SampleContents
goo スティック 6.0
i-フィルター 6.0
ICA
Intel TelePort Extender
Intel(R) Manageability Engine Firmware Recovery Agent
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
Intel(R) USB 3.0 eXtensible Host Controller Driver
IntelR Trusted Connect Service Client
IPM_OEM
ISCOM
Java Auto Updater
Java(TM) 6 Update 30
Junk Mail filter update
Label@Once 1.0
LaLaVoice V9.60
LAPLINK ヘルプデスク クライアント
LINE
LoiLoScope 2
Malwarebytes Anti-Malware バージョン 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office Excel MUI (Japanese) 2010
Microsoft Office IME (Japanese) 2010
Microsoft Office Office 32-bit Components 2010
Microsoft Office Outlook MUI (Japanese) 2010
Microsoft Office Personal 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (Japanese) 2010
Microsoft Office Proofing (Japanese) 2010
Microsoft Office Shared 32-bit MUI (Japanese) 2010
Microsoft Office Shared MUI (Japanese) 2010
Microsoft Office Word MUI (Japanese) 2010
Microsoft Office ナビ 2010
Microsoft Primary Interoperability Assemblies 2005
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
MLE
Mozilla Firefox 26.0 (x86 ja)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
Norton Internet Security
PCあんしん点検ユーティリティ
PC引越ナビ
PlayReady PC Runtime amd64
PureHD
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
Realtek WLAN Driver
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2687413) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2760781) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826023) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826035) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
Security Update for Microsoft Outlook 2010 (KB2837597) 64-Bit Edition
Sempre
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
Setup
Share
Share64
Skype Click to Call
Skype(TM) 6.11
Synaptics Pointing Device Driver
TOSHIBA Audio Enhancer
TOSHIBA Bulletin Board
TOSHIBA ConfigFree
TOSHIBA Disc Creator
TOSHIBA ecoユーティリティ
TOSHIBA Hardware Setup
TOSHIBA Manual
TOSHIBA PalaDouga
TOSHIBA PC Health Monitor
TOSHIBA Peak Shift Control
TOSHIBA Quad Core HD Processor Video Convert Library
TOSHIBA Recovery Media Creator
TOSHIBA ReelTime
TOSHIBA Resolution+ Plug-in for Windows Media Player
TOSHIBA SD-Video PLAYER
TOSHIBA Service Station
TOSHIBA Speech Engines Version V9.50
TOSHIBA Speech Synthesis
TOSHIBA Speech System MT Engine Version 9.0
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password
TOSHIBA Sync Utility
TOSHIBA Value Added Package
TOSHIBA VIDEO PLAYER
TOSHIBA Wireless LAN Indicator
TOSHIBA 無線LANらくらく設定
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition
VIO
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Live フォト ギャラリー
Windows Live メール
Yahoo!かんたんパソコン設定
Yahoo!ツールバー
Yahoo!ツールバー(64bit)
アプリらくらくナビ
いつもNAVI PC
インテル Pair and Share
おたすけナビ
おまかせフォトムービー
はがきデザインキット
ハッピー年賀2013
ぱらちゃんV2.3
レグザリンク・ダビング
東芝HDD/SSDアラータ
東芝プレイス ダイジェストワード
東芝プレイスガジェット
東芝プレイスガジェット用ライブラリ
動画で解決!操作ガイド
動画で解決!操作ガイド-コンテンツ-
筆ぐるめ Ver.19
.
==== End Of File ===========================
vanny
Active Member
 
Posts: 2
Joined: December 28th, 2013, 9:32 pm
Advertisement
Register to Remove

Re: pop up ad malware

Unread postby pgmigg » December 31st, 2013, 10:39 am

Hello vanny,

Welcome to the forum! :)

I am pgmigg and I'll be helping you with any malware problems.

Before we begin, please read and follow these important guidelines, so things will proceed smoothly.
  1. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  2. You must have Administrator rights, permissions for this computer.
  3. DO NOT run any other fix or removal tools unless instructed to do so!
  4. DO NOT install any other software (or hardware) during the cleaning process until we are done as well as
    DO NOT Remove, or Scan with anything on your system unless I ask. This adds more items to be researched.
    Extra Additions and Removals of files make the analysis more difficult.
  5. Only post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  6. Print each set of instructions if possible - your Internet connection will not be available during some fix processes.
  7. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
  8. Only reply to this thread, do not start another one. Please, continue responding, until I give you the "All Clean!" :cheers:
    Absence of symptoms does not mean that everything is clear.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions. In the meantime...

Note: If you haven't done so already, please read this topic ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.

Please read all instructions carefully before executing and perform the steps, in the order given.
lf you have any questions or problems executing these instructions, <<STOP>> do not proceed, post back with the question or problem.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start


Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: pop up ad malware

Unread postby pgmigg » December 31st, 2013, 3:48 pm

Hello vanny,

Step 1.
Multiple Anti Virus programs detected
  1. It looks like you are operating your computer with multiple Anti Virus programs installed at once:
    Norton Internet Security
    AVG Internet Security 2014
  2. Much - does not mean good! Running - more than one - antivirus program is not recommended because:
    1. They can conflict with each other.
    2. Report the other antivirus software as malicious.
    3. Antivirus programs use an enormous amount of computer's resources... actively scanning your computer.
    4. Can cause your computer to run slowly, become unstable and crash.
  3. I strongly suggest you uninstall one of them. Which one, is your decision, but if you asked me, I would recommend you to uninstall Norton Internet Security

Step 2.
For safety reason (to have a good registry to restore if needed), I will ask you to create a System Restore Point (SRP) before most of my instructions sets...
Create a System Restore Point
  1. Right-click on Computer and select Properties.
  2. In the left pane under Tasks please click System protection.
    If UAC prompts for an administrator password or approval, type the password or give your "permission to continue".
  3. Select System Protection, then choose Create.
  4. In the System Restore dialog box, type a description for the restore point and then click Create again.
    A window will pop up with "The Restore Point was created successfully" confirmation message.
  5. Click OK, then close the System Restore dialog.

If you have successfully created a System Restore Point... we can proceed.
If you have NOT successfully created a System Restore Point... do not go any further!
Please post back so we can determine why it was unsuccessful.


Step 3.
Remove Program(s)
  1. Click on Start, then click the Start Search box on the Start Menu.
  2. Copy and paste the value below without into the open text entry box:
    (Do not include the words Code: Select all - instead of it please click the Select all button next to Code: to select the entire script.)
    Code: Select all
     appwiz.cpl 
    and press Enter - the Unistall or change a program list will be opened.
  3. Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:
    dynabookLauncher for banner
    goo Stick 6.0
    Java Auto Updater
    Java(TM) 6 Update 30
    Help Desk client
    PC Security check utility
    Yahoo! Easy PC Setup
    Yahoo! Toolbar
    Yahoo! toolbar (64bit)
  4. Take extra care in answering questions posed by any Uninstaller.
  5. When the program(s) have been uninstalled, please close Control Panel.

Step 4.
OTL - Download
Please download OTL.exe by Old Timer and save it to your Desktop.

OTL - Scan
Important! Close all applications and windows so that you have nothing open and are at your Desktop.
  1. Right click on OTL.exe, select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
  2. Under Output, ensure that Standard Output is selected.
  3. Check the boxes labeled:
    • Include 64 bit scans
    • Scan All Users
    • LOP check
    • Purity check
    • Extra Registry > Use SafeList
  4. Click on Run Scan at the top left hand corner.
  5. When done, two Notepad files will open.
    • OTL.txt <-- Will be opened, maximized
    • Extras.txt <-- Will be minimized on task bar.
  6. Please post the contents of both OTL.txt and Extras.txt files in your next reply.

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of a OTL.txt log file
  3. Contents of a Extras.txt log file
  4. Do you see any changes in computer behavior?

Please do not hesitate to divide the post into multiple if it is too long...

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: pop up ad malware

Unread postby vanny » January 1st, 2014, 2:34 am

pgmigg,

Thanks for the help - my brother in law has been able to successfully remove the malware and clear the problem.

Thanks again for the offer - this forum is a great resource.
vanny
Active Member
 
Posts: 2
Joined: December 28th, 2013, 9:32 pm

Re: pop up ad malware

Unread postby Cypher » January 1st, 2014, 11:21 am

As your problems appear to have been resolved, this topic is now closed.

If you would like to make a comment or leave a compliment regarding the help you have received,
please see Feedback for Our Helpers - Say "Thanks" Here
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 15148
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 128 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware