Jump to content

savida

Honorary Members
 View Profile  See their activity

  • Posts

    22

  • Joined

  • Last visited

Reputation

0 Neutral
  1. savida
    Hello Firefox, Thank you for choosing to help me out, but I have since fixed the problem-I'm not entirely sure how. I am no longer in need of help. Thank you again!
  2. savida
    My laptop has been having problems ever since I last ran the Windows Update a few days ago. The problems I have been having: Loss of wireless internet connection, cannot be found or fixed. (I am currently using an ethernet cable to log on) Laptop freezes and crashes more frequently. Takes more than a few minutes to load laptop and occassionally my laptop just stays on a black screen without ever completely loading. It does not shut down or anything, just a black screen until force shutdown. I have tried a something to hopefully fix these problems. I have had the loss of wireless internet a few times before after installing the Windows Updates, but this time I have had no luck getting the program for the wireless internet to work again. I tried a Restore point to before the Windows Update was installed, but this just made my laptop run slow, freeze and crash, and no wireless internet connection. I have also tried reinstalling the wireless program with software from the Realtek website, but nothing is working. I am at a loss. Any help would be greatly appreciated.
  3. savida
    Hello, I am having problems with my laptop's cd/dvd drive.When rebooting the cd drive appears in the computer folder, when I attempt to run a cd the window stops responding and I have to force quit. When I re-open the computer window for a second attempt, the cd drive is no longer there. So the problem - other than not being able to run it - is that upon rebooting the cd drive is visible, even if I do not touch the cd drive, when I put my laptop on sleep and turn it back on, the cd drive is no longer there. Also, the cd isn't being read even if I place a cd in the drive and reboot, hoping it would be able to run afterwards. I should mention that I had attempted to fix this problem myself (which might be why this is still happening) with instructions found on the internet. I read that it was because of the Nero (cd/dvd) burning program. Here is the link to the instructions I followed (exactly as it says in each step). en.kioskea.net/forum/affich-61628-my-cd-drive-wont-work After using this "solution" the cd drive did reappear and was working, but only upon rebooting. After some time, the drive wouldn't be visible, the cd drive was working fine-then back to not working and appearing and disappearing again.
  4. savida
    Will do, thank you again for your time. I greatly appreciate everything you've done!
  5. savida
    Hello, Yes; when rebooting the cd drive appears in the computer folder, when I attempt to run a cd the window stops responding and I have to force quit. When I re-open the computer window for a second attempt, the cd drive is no longer there. So the problem - other than not being able to run it - is that upon rebooting the cd drive is visible, even if I do not touch the cd drive, when I put my laptop on sleep and turn it back on, the cd drive is no longer there. Also, the cd isn't being read even if I place a cd in the drive and reboot. I should mention that I had attempted to fix this problem myself (which might be why this is still happening) with instructions found on the internet. I read that it was because of the Nero (cd/dvd) burning program. Here is the link to the instructions I followed (exactly as it says in each step). After using this "solution" the cd drive did reappear and was working, but only upon rebooting. After some time, it just wouldn't work. So, after finishing the session with you, my laptop was working like new, the cd drive was working fine-then back to not working and appearing and disappearing again. Thank you again for your time.
  6. savida
    COMBOFIX.TXT: ComboFix 12-09-27.03 - Stef 09/28/2012 15:40:32.2.1 - x86 Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2939.1413 [GMT -7:00] Running from: c:\users\Stef\Desktop\ComboFix.exe Command switches used :: c:\users\Stef\Desktop\CFScript.txt AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Stef\AppData\Roaming\WTouch c:\users\Stef\AppData\Roaming\WTouch\WTouch.xml c:\users\TestAdmin\AppData\Roaming\WTouch c:\users\TestAdmin\AppData\Roaming\WTouch\WTouch.xml . . ((((((((((((((((((((((((( Files Created from 2012-08-28 to 2012-09-28 ))))))))))))))))))))))))))))))) . . 2012-09-28 22:59 . 2012-09-28 23:00 -------- d-----w- c:\users\Stef\AppData\Roaming\WTouch 2012-09-28 22:54 . 2012-09-28 23:00 -------- d-----w- c:\users\Stef\AppData\Local\temp 2012-09-28 22:54 . 2012-09-28 22:54 -------- d-----w- c:\users\TestAdmin\AppData\Local\temp 2012-09-28 22:54 . 2012-09-28 22:54 -------- d-----w- c:\users\Public\AppData\Local\temp 2012-09-28 22:54 . 2012-09-28 22:54 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-09-28 22:35 . 2012-09-28 22:35 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{306CB6B7-B93F-4983-9B07-95914EDA3AA0}\MpKslb358be9e.sys 2012-09-26 17:40 . 2012-08-30 08:17 6980552 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{306CB6B7-B93F-4983-9B07-95914EDA3AA0}\mpengine.dll 2012-09-25 08:04 . 2012-08-30 08:17 6980552 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2012-09-22 12:30 . 2012-08-24 15:53 834048 ----a-w- c:\windows\system32\wininet.dll 2012-09-22 12:30 . 2012-08-24 14:07 389632 ----a-w- c:\windows\system32\html.iec 2012-09-22 12:29 . 2012-08-24 15:53 129024 ----a-w- c:\program files\Internet Explorer\sqmapi.dll 2012-09-22 12:29 . 2012-08-24 13:41 1383424 ----a-w- c:\windows\system32\mshtml.tlb 2012-09-08 01:31 . 2012-09-08 01:31 -------- d-----w- c:\program files\Defraggler 2012-09-05 05:38 . 2012-09-05 05:38 -------- d-----w- c:\program files\Common Files\Java 2012-09-05 05:38 . 2012-09-05 05:37 821736 ----a-w- c:\windows\system32\npDeployJava1.dll 2012-09-05 05:38 . 2012-09-05 05:37 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2012-09-05 05:34 . 2012-09-05 05:34 73416 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-09-05 05:34 . 2012-09-05 05:34 696520 ----a-w- c:\windows\system32\FlashPlayerApp.exe . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-09-05 05:37 . 2010-05-11 15:15 746984 ----a-w- c:\windows\system32\deployJava1.dll 2012-08-04 02:23 . 2011-03-29 01:36 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2012-07-04 14:02 . 2012-08-17 04:58 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-07-04 05:56 . 2003-08-27 20:43 499712 ----a-w- c:\windows\system32\msvcp71.dll 2012-07-04 05:56 . 2003-02-22 01:42 348160 ----a-w- c:\windows\system32\msvcr71.dll 2012-09-10 21:22 . 2012-09-10 21:20 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MobileDocuments"="c:\program files\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-25 150040] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-25 170520] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-06-25 145944] "RtHDVCpl"="RtHDVCpl.exe" [2008-04-08 6037504] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-04-16 178712] "TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-02-06 431456] "HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2007-11-01 54608] "SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-06-02 505720] "00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2008-05-09 716800] "NDSTray.exe"="NDSTray.exe" [bU] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2008-09-30 29744] "Skytel"="Skytel.exe" [2007-11-21 1826816] "ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-28 207424] "AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2012-02-23 59240] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 49152] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-31 59280] "BrMfcWnd"="c:\program files\Brother\Brmfcmon\BrMfcWnd.exe" [2009-02-10 745472] "ControlCenter3"="c:\program files\Brother\ControlCenter3\brctrcen.exe" [2007-10-30 77824] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-27 931200] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-06-08 421776] "TkBellExe"="c:\program files\Real\RealPlayer\Update\realsched.exe" [2012-07-04 296096] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-19 421888] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] . c:\users\TestAdmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Contents of the 'Scheduled Tasks' folder . 2012-09-28 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-05 05:34] . 2012-09-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3272625273-3966993124-275648158-1000Core.job - c:\users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe [2009-09-30 00:23] . 2012-09-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3272625273-3966993124-275648158-1000UA.job - c:\users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe [2009-09-30 00:23] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB uInternet Settings,ProxyOverride = *.local IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Stef\AppData\Roaming\Mozilla\Firefox\Profiles\ou3woiw0.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2012-09-28 16:01 Windows 6.0.6002 Service Pack 2 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . ------------------------ Other Running Processes ------------------------ . c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe c:\program files\Microsoft Security Client\MsMpEng.exe c:\program files\WTouch\WTouchService.exe c:\windows\SYSTEM32\WISPTIS.EXE c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe c:\program files\Super_DVD_Creator_9.8\NMSAccessU.exe c:\windows\system32\PSIService.exe c:\program files\Common Files\Protexis\License Service\PsiService_2.exe c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe c:\windows\system32\Pen_Tablet.exe c:\program files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe c:\program files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe c:\windows\system32\TODDSrv.exe c:\program files\Toshiba\Power Saver\TosCoSrv.exe c:\program files\TOSHIBA\SMARTLogService\TosIPCSrv.exe c:\programdata\TVersity\Media Server\MediaServer.exe c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\windows\SYSTEM32\WISPTIS.EXE c:\program files\WTouch\WTouchUser.exe c:\windows\system32\WTablet\Pen_TabletUser.exe c:\windows\system32\Pen_Tablet.exe c:\windows\RtHDVCpl.exe c:\program files\Toshiba\ConfigFree\NDSTray.exe c:\windows\system32\igfxsrvc.exe c:\windows\system32\wbem\unsecapp.exe c:\program files\iPod\bin\iPodService.exe c:\windows\system32\igfxext.exe c:\program files\Common Files\Apple\Apple Application Support\distnoted.exe c:\program files\Toshiba\ConfigFree\CFSwMgr.exe c:\windows\servicing\TrustedInstaller.exe . ************************************************************************** . Completion time: 2012-09-28 16:08:15 - machine was rebooted ComboFix-quarantined-files.txt 2012-09-28 23:08 ComboFix2.txt 2012-08-27 00:13 . Pre-Run: 65,418,792,960 bytes free Post-Run: 65,395,376,128 bytes free . - - End Of File - - 38A323E937C8CE27CF6B57F1FD28D340 DDS LOG: . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 7.0.6002.18005 BrowserJavaVersion: 10.7.2 Run by Stef at 16:11:24 on 2012-09-28 Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2939.1642 [GMT -7:00] . AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\svchost.exe -k rpcss c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\WTouch\WTouchService.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Program Files\Super_DVD_Creator_9.8\NMSAccessU.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\PSIService.exe c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\Pen_Tablet.exe C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe C:\Windows\system32\TODDSrv.exe C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe C:\ProgramData\TVersity\Media Server\MediaServer.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\taskeng.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Windows\system32\Dwm.exe C:\Program Files\WTouch\WTouchUser.exe C:\Windows\system32\WTablet\Pen_TabletUser.exe C:\Windows\system32\Pen_Tablet.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Toshiba\Power Saver\TPwrMain.exe C:\Program Files\Toshiba\SmoothView\SmoothView.exe C:\Program Files\Toshiba\FlashCards\TCrdMain.exe C:\Program Files\Toshiba\ConfigFree\NDSTray.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Real\RealPlayer\Update\realsched.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\Apple\Internet Services\ubd.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\igfxext.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe C:\Windows\system32\wuauclt.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\Explorer.exe C:\Windows\system32\notepad.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\SearchProtocolHost.exe c:\Program Files\Microsoft Security Client\MpCmdRun.exe c:\Program Files\Microsoft Security Client\MpCmdRun.exe C:\Windows\system32\NOTEPAD.EXE C:\Windows\system32\wuauclt.exe C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.137.519.0.exe C:\Windows\system32\MpSigStub.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB uInternet Settings,ProxyOverride = *.local BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre7\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre7\bin\jp2ssv.dll uRun: [MobileDocuments] c:\program files\common files\apple\internet services\ubd.exe mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [RtHDVCpl] RtHDVCpl.exe mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe mRun: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE mRun: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe mRun: [smoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe mRun: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe mRun: [NDSTray.exe] NDSTray.exe mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup mRun: [skytel] Skytel.exe mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [brMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN mRun: [ControlCenter3] c:\program files\brother\controlcenter3\brctrcen.exe /autorun mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://www.pcpitstop.com/betapit/PCPitStop.CAB DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{0913D5A8-EAAD-4D04-821E-DF2C6404AAB0} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{1A540B62-FC8A-4095-909A-4D42FC2125CB} : DhcpNameServer = 192.168.1.1 Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: igfxcui - igfxdev.dll AppInit_DLLs: c:\progra~1\google\google~1\GoogleDesktopNetwork3.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\stef\appdata\roaming\mozilla\firefox\profiles\ou3woiw0.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\nprpplugin.dll FF - plugin: c:\program files\picasa2\npPicasa3.dll FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll FF - plugin: c:\program files\tabletplugins\npwacom.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll FF - plugin: c:\users\stef\appdata\local\google\update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: c:\users\stef\appdata\roaming\mozilla\plugins\npgoogletalk.dll FF - plugin: c:\users\stef\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll FF - plugin: c:\windows\system32\adobe\director\np32dsw_1166636.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_265.dll FF - plugin: c:\windows\system32\npDeployJava1.dll FF - plugin: c:\windows\system32\npmproxy.dll . ============= SERVICES / DRIVERS =============== . R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 171064] R1 MpKslb358be9e;MpKslb358be9e;c:\programdata\microsoft\microsoft antimalware\definition updates\{306cb6b7-b93f-4983-9b07-95914eda3aa0}\MpKslb358be9e.sys [2012-9-28 29904] R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\system32\drivers\RtlProt.sys [2009-6-28 25896] R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-7-27 63960] R2 ConfigFree Service;ConfigFree Service;c:\program files\toshiba\configfree\CFSvcs.exe [2008-4-17 40960] R2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2012-8-13 3064000] R2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2010-4-5 4497704] R2 TMachInfo;TMachInfo;c:\program files\toshiba\toshiba service station\TMachInfo.exe [2008-9-30 46392] R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\toshiba\smartlogservice\TosIPCSrv.exe [2007-12-3 126976] R2 WTouchService;WTouch Service;c:\program files\wtouch\WTouchService.exe [2010-4-5 113448] R3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504] R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2008-9-30 7168] R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\rtl8187B.sys [2009-6-28 290304] R3 WacomVTHid;Virtual Touch Driver;c:\windows\system32\drivers\WacomVTHid.sys [2010-4-5 13480] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-9-4 250568] S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438;c:\program files\google\google desktop search\GoogleDesktop.exe [2008-9-30 29744] S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-5-21 114144] S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2011-4-27 74112] S3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2012-3-26 214952] S3 SVRPEDRV;SVRPEDRV;c:\windows\system32\sysprep\PEDRV.SYS [2008-9-30 9216] S3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [2010-4-5 16168] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2012-09-28 23:11:16 6980552 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{6f6070d2-8c42-427b-9c6c-0f01a926e3fc}\mpengine.dll 2012-09-28 23:08:18 -------- d-----w- c:\users\stef\appdata\local\temp 2012-09-28 23:00:02 -------- d-sh--w- C:\$RECYCLE.BIN 2012-09-28 22:59:36 -------- d-----w- c:\users\stef\appdata\roaming\WTouch 2012-09-28 22:36:31 98816 ----a-w- c:\windows\sed.exe 2012-09-28 22:36:31 518144 ----a-w- c:\windows\SWREG.exe 2012-09-28 22:36:31 256000 ----a-w- c:\windows\PEV.exe 2012-09-28 22:36:31 208896 ----a-w- c:\windows\MBR.exe 2012-09-28 22:35:13 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{306cb6b7-b93f-4983-9b07-95914eda3aa0}\MpKslb358be9e.sys 2012-09-26 17:40:06 6980552 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{306cb6b7-b93f-4983-9b07-95914eda3aa0}\mpengine.dll 2012-09-25 08:04:43 6980552 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll 2012-09-22 12:30:05 834048 ----a-w- c:\windows\system32\wininet.dll 2012-09-22 12:30:04 389632 ----a-w- c:\windows\system32\html.iec 2012-09-22 12:29:57 129024 ----a-w- c:\program files\internet explorer\sqmapi.dll 2012-09-22 12:29:55 1383424 ----a-w- c:\windows\system32\mshtml.tlb 2012-09-10 21:20:12 114144 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe 2012-09-08 01:31:38 -------- d-----w- c:\program files\Defraggler 2012-09-05 05:38:34 821736 ----a-w- c:\windows\system32\npDeployJava1.dll 2012-09-05 05:38:01 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2012-09-05 05:34:57 73416 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-09-05 05:34:57 696520 ----a-w- c:\windows\system32\FlashPlayerApp.exe . ==================== Find3M ==================== . 2012-09-05 05:37:31 746984 ----a-w- c:\windows\system32\deployJava1.dll 2012-07-23 19:27:42 952 --sha-w- c:\windows\system32\KGyGaAvL.sys 2012-07-22 06:33:57 8 --sh--r- c:\windows\system32\7C08B6A493.sys 2012-07-04 14:02:46 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-07-04 05:56:37 499712 ----a-w- c:\windows\system32\msvcp71.dll 2012-07-04 05:56:37 348160 ----a-w- c:\windows\system32\msvcr71.dll . ============= FINISH: 16:12:06.34 ===============
  7. savida
    Thank you for your response. I also attempted to fix this problem myself with some information and instructions online. Did you need that information as well? Please, let me know if you do. ------------------------------------------- Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E965-E325-11CE-BFC1-08002BE10318}] "Class"="CDROM" "ClassDesc"="@%SystemRoot%\\System32\\StorProp.dll,-17001" @="DVD/CD-ROM drives" "IconPath"=hex(7):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\ 74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,69,\ 00,6d,00,61,00,67,00,65,00,72,00,65,00,73,00,2e,00,64,00,6c,00,6c,00,2c,00,\ 2d,00,33,00,30,00,00,00,00,00 "Installer32"="storprop.dll,DvdClassInstaller" "EnumPropPages32"="storprop.dll,DvdPropPageProvider" "SilentInstall"="1" "NoInstallClass"="1" "UpperFilters"=hex(7):47,00,45,00,41,00,52,00,41,00,73,00,70,00,69,00,57,00,44,\ 00,4d,00,00,00,00,00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E965-E325-11CE-BFC1-08002BE10318}\0000] "InfPath"="cdrom.inf" "InfSection"="cdrom_install" "ProviderName"="Microsoft" "DriverDateData"=hex:00,80,8c,a3,c5,94,c6,01 "DriverDate"="6-21-2006" "DriverVersion"="6.0.6002.18005" "MatchingDeviceId"="gencdrom" "DriverDesc"="CD-ROM Drive" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E965-E325-11CE-BFC1-08002BE10318}\0001] "InfPath"="cdrom.inf" "InfSection"="cdrom_install" "ProviderName"="Microsoft" "DriverDateData"=hex:00,80,8c,a3,c5,94,c6,01 "DriverDate"="6-21-2006" "DriverVersion"="6.0.6002.18005" "MatchingDeviceId"="gencdrom" "DriverDesc"="CD-ROM Drive"
  8. savida
    Thank you! Actually, yes. So it's been a few days since the last steps you advised me to do were done and my laptop was running great. I haven't been doing anythin different, but then I think it was a day after my cd/dvd drive-which I have been missing on and off for the last few months- stopped appearing as a drive. All I see in the Computer folder is just "C:". Usually after I shutdown or restart the dvd drive will show, after putting the laptop on Sleep mode and "waking" from it, the dvd drive won't be there. Is there anything you can help me do with this problem? Other than that, just a few desktop freezes and one unexpected resart, my laptop is doing good.
  9. savida
    Thank you for your help so far. During the disk check, I didn't catch any messages given. My laptop is generally running much better. It hasn't restarted on it's own, nor has the desktop frozen. Restarting doesn't take as long as it did before and also the response time for loading programs is better. Also, my dvd/cd drive is now showing up and functioning! Thank you so much for all your help, is there anything else I need to do?
  10. savida
    ADWCLEANER.EXE: # AdwCleaner v2.000 - Logfile created 09/04/2012 at 21:55:53 # Updated 30/08/2012 by Xplode # Operating system : Windows Vista Home Basic Service Pack 2 (32 bits) # User : Stef - STEF-PC # Boot Mode : Normal # Running from : C:\Users\Stef\Desktop\adwcleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml File Deleted : C:\Users\Stef\AppData\Roaming\Mozilla\Firefox\Profiles\ou3woiw0.default\searchplugins\Conduit.xml Folder Deleted : C:\Program Files\Conduit Folder Deleted : C:\Users\Stef\AppData\Local\Conduit Folder Deleted : C:\Users\Stef\AppData\Local\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc Folder Deleted : C:\Users\Stef\AppData\LocalLow\Conduit ***** [Registry] ***** Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Softonic Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072253 Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\Freeze.com Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Deleted : HKLM\SOFTWARE\Software Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com] ***** [internet Browsers] ***** -\\ Internet Explorer v7.0.6002.18005 Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope] Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope] Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope] Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope] Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope] -\\ Mozilla Firefox v15.0 (en-US) Profile name : default File : C:\Users\Stef\AppData\Roaming\Mozilla\Firefox\Profiles\ou3woiw0.default\prefs.js Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search"); Deleted : user_pref("browser.search.defaultthis.engineName", "uTorrentControl2 Customized Web Search"); Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&Sea[...] Profile name : default File : C:\Users\TestAdmin\AppData\Roaming\Mozilla\Firefox\Profiles\0acl9vz3.default\prefs.js [OK] File is clean. -\\ Google Chrome v21.0.1180.89 File : C:\Users\Stef\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [3827 octets] - [30/08/2012 22:47:07] AdwCleaner[s1].txt - [3935 octets] - [04/09/2012 21:55:53] ########## EOF - C:\AdwCleaner[s1].txt - [3995 octets] ########## PCPITSTOP.COM: http://www.pcpitstop.com/betapit/sec.asp?conid=25049311 CHKDSK: The type of the file system is NTFS. Volume label is SQ004981V02. WARNING! F parameter not specified. Running CHKDSK in read-only mode. CHKDSK is verifying files (stage 1 of 3)... 0 percent complete. (0 of 226176 file records processed) 1 percent complete. (22618 of 226176 file records processed) 2 percent complete. (45236 of 226176 file records processed) 2 percent complete. (54621 of 226176 file records processed) 2 percent complete. (58794 of 226176 file records processed) 3 percent complete. (67853 of 226176 file records processed) 3 percent complete. (87770 of 226176 file records processed) 4 percent complete. (90471 of 226176 file records processed) 5 percent complete. (113088 of 226176 file records processed) 5 percent complete. (133340 of 226176 file records processed) 6 percent complete. (135706 of 226176 file records processed) 7 percent complete. (158324 of 226176 file records processed) 8 percent complete. (180941 of 226176 file records processed) 9 percent complete. (203559 of 226176 file records processed) 226176 file records processed. File verification completed. 739 large file records processed. 0 bad file records processed. 0 EA records processed. 74 reparse records processed. CHKDSK is verifying indexes (stage 2 of 3)... 11 percent complete. (7322 of 292948 index entries processed) 12 percent complete. (14914 of 292948 index entries processed) 13 percent complete. (22506 of 292948 index entries processed) 14 percent complete. (30099 of 292948 index entries processed) 15 percent complete. (37691 of 292948 index entries processed) 16 percent complete. (45283 of 292948 index entries processed) 17 percent complete. (52876 of 292948 index entries processed) 17 percent complete. (56512 of 292948 index entries processed) 18 percent complete. (60468 of 292948 index entries processed) 19 percent complete. (68060 of 292948 index entries processed) 20 percent complete. (75652 of 292948 index entries processed) 21 percent complete. (83245 of 292948 index entries processed) 22 percent complete. (90837 of 292948 index entries processed) 23 percent complete. (98429 of 292948 index entries processed) 24 percent complete. (106022 of 292948 index entries processed) 25 percent complete. (113614 of 292948 index entries processed) 26 percent complete. (121206 of 292948 index entries processed) 27 percent complete. (128798 of 292948 index entries processed) 28 percent complete. (136391 of 292948 index entries processed) 29 percent complete. (143983 of 292948 index entries processed) 30 percent complete. (151575 of 292948 index entries processed) 31 percent complete. (159168 of 292948 index entries processed) 32 percent complete. (166760 of 292948 index entries processed) 33 percent complete. (174352 of 292948 index entries processed) 34 percent complete. (181944 of 292948 index entries processed) 35 percent complete. (189537 of 292948 index entries processed) 36 percent complete. (197129 of 292948 index entries processed) 37 percent complete. (204721 of 292948 index entries processed) 38 percent complete. (212314 of 292948 index entries processed) 39 percent complete. (219906 of 292948 index entries processed) 39 percent complete. (226179 of 292948 index entries processed) 39 percent complete. (226187 of 292948 index entries processed) 39 percent complete. (226259 of 292948 index entries processed) 39 percent complete. (226412 of 292948 index entries processed) 39 percent complete. (226545 of 292948 index entries processed) 39 percent complete. (226621 of 292948 index entries processed) 39 percent complete. (226879 of 292948 index entries processed) 39 percent complete. (226955 of 292948 index entries processed) 39 percent complete. (227005 of 292948 index entries processed) 39 percent complete. (227090 of 292948 index entries processed) 39 percent complete. (227174 of 292948 index entries processed) 39 percent complete. (227274 of 292948 index entries processed) 39 percent complete. (227381 of 292948 index entries processed) 39 percent complete. (227495 of 292948 index entries processed) 40 percent complete. (227498 of 292948 index entries processed) 40 percent complete. (227590 of 292948 index entries processed) 40 percent complete. (227669 of 292948 index entries processed) 40 percent complete. (227748 of 292948 index entries processed) 40 percent complete. (227993 of 292948 index entries processed) 40 percent complete. (228109 of 292948 index entries processed) 40 percent complete. (228263 of 292948 index entries processed) 40 percent complete. (228341 of 292948 index entries processed) 40 percent complete. (228456 of 292948 index entries processed) 40 percent complete. (228563 of 292948 index entries processed) 40 percent complete. (228745 of 292948 index entries processed) 40 percent complete. (229521 of 292948 index entries processed) 40 percent complete. (229578 of 292948 index entries processed) 40 percent complete. (229936 of 292948 index entries processed) 40 percent complete. (230163 of 292948 index entries processed) 40 percent complete. (230325 of 292948 index entries processed) 40 percent complete. (230425 of 292948 index entries processed) 40 percent complete. (230479 of 292948 index entries processed) 40 percent complete. (230568 of 292948 index entries processed) 40 percent complete. (230850 of 292948 index entries processed) 40 percent complete. (230900 of 292948 index entries processed) 40 percent complete. (230958 of 292948 index entries processed) 40 percent complete. (231182 of 292948 index entries processed) 40 percent complete. (231401 of 292948 index entries processed) 40 percent complete. (231442 of 292948 index entries processed) 40 percent complete. (231448 of 292948 index entries processed) 40 percent complete. (231728 of 292948 index entries processed) 40 percent complete. (231872 of 292948 index entries processed) 40 percent complete. (232247 of 292948 index entries processed) 40 percent complete. (232949 of 292948 index entries processed) 40 percent complete. (233235 of 292948 index entries processed) 40 percent complete. (233910 of 292948 index entries processed) 40 percent complete. (234284 of 292948 index entries processed) 40 percent complete. (234787 of 292948 index entries processed) 40 percent complete. (234821 of 292948 index entries processed) 40 percent complete. (234909 of 292948 index entries processed) 41 percent complete. (235090 of 292948 index entries processed) 41 percent complete. (235493 of 292948 index entries processed) 41 percent complete. (235928 of 292948 index entries processed) 41 percent complete. (236298 of 292948 index entries processed) 41 percent complete. (236764 of 292948 index entries processed) 41 percent complete. (236858 of 292948 index entries processed) 41 percent complete. (237179 of 292948 index entries processed) 41 percent complete. (237441 of 292948 index entries processed) 41 percent complete. (237660 of 292948 index entries processed) 41 percent complete. (237809 of 292948 index entries processed) 41 percent complete. (238004 of 292948 index entries processed) 41 percent complete. (238156 of 292948 index entries processed) 41 percent complete. (238372 of 292948 index entries processed) 41 percent complete. (238507 of 292948 index entries processed) 41 percent complete. (238625 of 292948 index entries processed) 41 percent complete. (238766 of 292948 index entries processed) 41 percent complete. (238913 of 292948 index entries processed) 41 percent complete. (239011 of 292948 index entries processed) 41 percent complete. (239172 of 292948 index entries processed) 41 percent complete. (239371 of 292948 index entries processed) 41 percent complete. (239483 of 292948 index entries processed) 41 percent complete. (239748 of 292948 index entries processed) 41 percent complete. (239877 of 292948 index entries processed) 41 percent complete. (239922 of 292948 index entries processed) 41 percent complete. (239962 of 292948 index entries processed) 41 percent complete. (240035 of 292948 index entries processed) 41 percent complete. (240154 of 292948 index entries processed) 41 percent complete. (240231 of 292948 index entries processed) 41 percent complete. (240324 of 292948 index entries processed) 41 percent complete. (240418 of 292948 index entries processed) 41 percent complete. (240569 of 292948 index entries processed) 41 percent complete. (240679 of 292948 index entries processed) 41 percent complete. (240778 of 292948 index entries processed) 41 percent complete. (240944 of 292948 index entries processed) 41 percent complete. (241115 of 292948 index entries processed) 41 percent complete. (241190 of 292948 index entries processed) 41 percent complete. (241449 of 292948 index entries processed) 41 percent complete. (241679 of 292948 index entries processed) 41 percent complete. (241917 of 292948 index entries processed) 41 percent complete. (242302 of 292948 index entries processed) 41 percent complete. (242547 of 292948 index entries processed) 42 percent complete. (242683 of 292948 index entries processed) 42 percent complete. (242979 of 292948 index entries processed) 42 percent complete. (243256 of 292948 index entries processed) 42 percent complete. (243452 of 292948 index entries processed) 42 percent complete. (243786 of 292948 index entries processed) 42 percent complete. (244013 of 292948 index entries processed) 42 percent complete. (244739 of 292948 index entries processed) 42 percent complete. (245282 of 292948 index entries processed) 42 percent complete. (245670 of 292948 index entries processed) 42 percent complete. (245956 of 292948 index entries processed) 42 percent complete. (246125 of 292948 index entries processed) 42 percent complete. (246390 of 292948 index entries processed) 42 percent complete. (246585 of 292948 index entries processed) 42 percent complete. (246738 of 292948 index entries processed) 42 percent complete. (246868 of 292948 index entries processed) 42 percent complete. (247224 of 292948 index entries processed) 42 percent complete. (247302 of 292948 index entries processed) 42 percent complete. (247414 of 292948 index entries processed) 42 percent complete. (247518 of 292948 index entries processed) 42 percent complete. (247644 of 292948 index entries processed) 42 percent complete. (247888 of 292948 index entries processed) 42 percent complete. (248140 of 292948 index entries processed) 42 percent complete. (248443 of 292948 index entries processed) 42 percent complete. (249078 of 292948 index entries processed) 42 percent complete. (249518 of 292948 index entries processed) 42 percent complete. (249896 of 292948 index entries processed) 42 percent complete. (250122 of 292948 index entries processed) 43 percent complete. (250275 of 292948 index entries processed) 43 percent complete. (250593 of 292948 index entries processed) 43 percent complete. (250821 of 292948 index entries processed) 43 percent complete. (250941 of 292948 index entries processed) 43 percent complete. (251166 of 292948 index entries processed) 43 percent complete. (251328 of 292948 index entries processed) 43 percent complete. (251464 of 292948 index entries processed) 43 percent complete. (251817 of 292948 index entries processed) 43 percent complete. (252158 of 292948 index entries processed) 43 percent complete. (252375 of 292948 index entries processed) 43 percent complete. (252590 of 292948 index entries processed) 43 percent complete. (252833 of 292948 index entries processed) 43 percent complete. (253125 of 292948 index entries processed) 43 percent complete. (253368 of 292948 index entries processed) 43 percent complete. (253534 of 292948 index entries processed) 43 percent complete. (253889 of 292948 index entries processed) 43 percent complete. (254276 of 292948 index entries processed) 43 percent complete. (254519 of 292948 index entries processed) 43 percent complete. (254677 of 292948 index entries processed) 43 percent complete. (254878 of 292948 index entries processed) 43 percent complete. (255053 of 292948 index entries processed) 43 percent complete. (255168 of 292948 index entries processed) 43 percent complete. (255378 of 292948 index entries processed) 43 percent complete. (255764 of 292948 index entries processed) 43 percent complete. (256399 of 292948 index entries processed) 43 percent complete. (257701 of 292948 index entries processed) 44 percent complete. (257867 of 292948 index entries processed) 44 percent complete. (258143 of 292948 index entries processed) 44 percent complete. (258525 of 292948 index entries processed) 44 percent complete. (258846 of 292948 index entries processed) 44 percent complete. (259023 of 292948 index entries processed) 44 percent complete. (259450 of 292948 index entries processed) 292948 index entries processed. Index verification completed. 48 percent complete. (1 of 0 unindexed files processed) 0 unindexed files processed. CHKDSK is verifying security descriptors (stage 3 of 3)... 48 percent complete. (0 of 226176 descriptors processed) 49 percent complete. (8641 of 226176 descriptors processed) 50 percent complete. (31418 of 226176 descriptors processed) 51 percent complete. (54195 of 226176 descriptors processed) 51 percent complete. (74206 of 226176 descriptors processed) 52 percent complete. (76972 of 226176 descriptors processed) 53 percent complete. (99749 of 226176 descriptors processed) 54 percent complete. (122526 of 226176 descriptors processed) 54 percent complete. (144315 of 226176 descriptors processed) 55 percent complete. (145302 of 226176 descriptors processed) 55 percent complete. (166693 of 226176 descriptors processed) 56 percent complete. (168079 of 226176 descriptors processed) 57 percent complete. (190856 of 226176 descriptors processed) 58 percent complete. (213633 of 226176 descriptors processed) 226176 security descriptors processed. Security descriptor verification completed. 33387 data files processed. CHKDSK is verifying Usn Journal... 99 percent complete. (0 of 34430944 USN bytes processed) 99 percent complete. (9191424 of 34430944 USN bytes processed) 99 percent complete. (18255872 of 34430944 USN bytes processed) 99 percent complete. (27734016 of 34430944 USN bytes processed) 100 percent complete. (34422784 of 34430944 USN bytes processed) 34430944 USN bytes processed. Usn Journal verification completed. The Volume Bitmap is incorrect. Windows found problems with the file system. Run CHKDSK with the /F (fix) option to correct these. 147186687 KB total disk space. 91807776 KB in 183893 files. 109496 KB in 33388 indexes. 0 KB in bad sectors. 400103 KB in use by the system. 65536 KB occupied by the log file. 54869312 KB available on disk. 4096 bytes in each allocation unit. 36796671 total allocation units on disk. 13717328 allocation units available on disk.
  11. savida
    Security Check Log: Results of screen317's Security Check version 0.99.49 Windows Vista Service Pack 2 x86 (UAC is enabled) Internet Explorer 7 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Microsoft Security Essentials (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.62.0.1300 CCleaner Java 6 Update 22 Java version out of Date! Adobe Flash Player 11.3.300.271 Adobe Reader X (10.1.4) Mozilla Firefox (15.0) Google Chrome 21.0.1180.79 Google Chrome 21.0.1180.83 ````````Process Check: objlist.exe by Laurent```````` Microsoft Security Essentials MSMpEng.exe Microsoft Security Essentials msseces.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 2 % Defragment your hard drive soon! (Do NOT defrag if SSD!) ````````````````````End of Log`````````````````````` During the ESET Online Scanner scan, my computer suddenly showed a blue screen which said something about shutting down to prevent corrupted files and then proceeded to restart itself. This happens occasionally even after rebooting my computer and having done nothing on it yet. The computer is still facing the same issues as stated in my first post; General slowness, occasional freezing, unexpected shut downs and a message after rebooting saying "Windows has detected unexpected shutdown" and the solution is to download and install a RAID controller. I am not sure what the message means. Thank you for the help so far, I will be awaiting your response.
  12. savida
    The log for the AdwCleaner: # AdwCleaner v2.000 - Logfile created 08/30/2012 at 22:47:07 # Updated 30/08/2012 by Xplode # Operating system : Windows Vista Home Basic Service Pack 2 (32 bits) # User : Stef - STEF-PC # Boot Mode : Normal # Running from : C:\Users\Stef\Desktop\adwcleaner.exe # Option [search] ***** [services] ***** ***** [Files / Folders] ***** File Found : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml File Found : C:\Users\Stef\AppData\Roaming\Mozilla\Firefox\Profiles\ou3woiw0.default\searchplugins\Conduit.xml Folder Found : C:\Program Files\Conduit Folder Found : C:\Users\Stef\AppData\Local\Conduit Folder Found : C:\Users\Stef\AppData\Local\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc Folder Found : C:\Users\Stef\AppData\LocalLow\Conduit ***** [Registry] ***** Key Found : HKCU\Software\AppDataLow\Software\Conduit Key Found : HKCU\Software\AppDataLow\Software\Crossrider Key Found : HKCU\Software\AppDataLow\Software\SmartBar Key Found : HKCU\Software\Conduit Key Found : HKCU\Software\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKCU\Software\Softonic Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3072253 Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Found : HKLM\Software\Conduit Key Found : HKLM\Software\Freeze.com Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Found : HKLM\SOFTWARE\Software Key Found : HKU\S-1-5-21-3272625273-3966993124-275648158-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKU\S-1-5-21-3272625273-3966993124-275648158-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com] ***** [internet Browsers] ***** -\\ Internet Explorer v7.0.6002.18005 [OK] Registry is clean. -\\ Mozilla Firefox v15.0 (en-US) Profile name : default File : C:\Users\Stef\AppData\Roaming\Mozilla\Firefox\Profiles\ou3woiw0.default\prefs.js Found : user_pref("browser.search.defaultenginename", "AVG Secure Search"); Found : user_pref("browser.search.defaultthis.engineName", "uTorrentControl2 Customized Web Search"); Found : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&Sea[...] Profile name : default File : C:\Users\TestAdmin\AppData\Roaming\Mozilla\Firefox\Profiles\0acl9vz3.default\prefs.js [OK] File is clean. -\\ Google Chrome v21.0.1180.83 File : C:\Users\Stef\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [3698 octets] - [30/08/2012 22:47:07] ########## EOF - C:\AdwCleaner[R1].txt - [3758 octets] ##########
  13. savida
    Hi and thank you for the reply. I was able to download TFC, ran it, and rebooted my computer. I came to a roadblock in the second instruction. I downloaded the tdsskiller.zip and saved it to a folder on my desktop. I then double clicked it and ran it. It ran the scan, but there was no "disinfection" process that I see and also it doesn't prompt me to restart my computer. I am not sure what to do now, and I also don't know where to find the log that you are talking about. Here is a link to the screencap of what the tdskiller shows me after a scan, nothing else: http://imgur.com/KIzur If you can reply ASAP with how to continue, it would be greatly appriceiated. Thanks.
  14. savida
    Bumping thread
  15. savida
    . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 7.0.6002.18005 BrowserJavaVersion: 1.6.0_22 Run by Stef at 17:23:21 on 2012-08-26 Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2939.1545 [GMT -7:00] . AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\svchost.exe -k rpcss c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\WTouch\WTouchService.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Program Files\Super_DVD_Creator_9.8\NMSAccessU.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\PSIService.exe c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\Pen_Tablet.exe C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe C:\Windows\system32\TODDSrv.exe C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\taskeng.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\WTablet\Pen_TabletUser.exe C:\Program Files\WTouch\WTouchUser.exe C:\Windows\system32\Pen_Tablet.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Toshiba\Power Saver\TPwrMain.exe C:\Program Files\Toshiba\SmoothView\SmoothView.exe C:\Program Files\Toshiba\FlashCards\TCrdMain.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Real\RealPlayer\Update\realsched.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Common Files\Apple\Internet Services\ubd.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\system32\igfxext.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\ProgramData\TVersity\Media Server\MediaServer.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Windows\system32\notepad.exe C:\Windows\explorer.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB uInternet Settings,ProxyOverride = *.local BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_22\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre1.6.0_22\bin\jp2ssv.dll uRun: [MobileDocuments] c:\program files\common files\apple\internet services\ubd.exe mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [RtHDVCpl] RtHDVCpl.exe mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe mRun: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE mRun: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe mRun: [smoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe mRun: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe mRun: [NDSTray.exe] NDSTray.exe mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup mRun: [skytel] Skytel.exe mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [brMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN mRun: [ControlCenter3] c:\program files\brother\controlcenter3\brctrcen.exe /autorun mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [PWRISOVM.EXE] c:\program files\poweriso\PWRISOVM.EXE mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{0913D5A8-EAAD-4D04-821E-DF2C6404AAB0} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{1A540B62-FC8A-4095-909A-4D42FC2125CB} : DhcpNameServer = 192.168.1.1 Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: igfxcui - igfxdev.dll AppInit_DLLs: c:\progra~1\google\google~1\GoogleDesktopNetwork3.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\stef\appdata\roaming\mozilla\firefox\profiles\ou3woiw0.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\java\jre1.6.0_22\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\java\jre1.6.0_22\bin\new_plugin\npjp2.dll FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\nprpplugin.dll FF - plugin: c:\program files\picasa2\npPicasa3.dll FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll FF - plugin: c:\program files\tabletplugins\npwacom.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll FF - plugin: c:\users\stef\appdata\local\google\update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\users\stef\appdata\roaming\mozilla\plugins\npgoogletalk.dll FF - plugin: c:\users\stef\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_271.dll . ============= SERVICES / DRIVERS =============== . R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 171064] R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\system32\drivers\RtlProt.sys [2009-6-28 25896] R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-7-27 63960] R2 ConfigFree Service;ConfigFree Service;c:\program files\toshiba\configfree\CFSvcs.exe [2008-4-17 40960] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-8-22 655944] R2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2010-4-5 4497704] R2 TMachInfo;TMachInfo;c:\program files\toshiba\toshiba service station\TMachInfo.exe [2008-9-30 46392] R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\toshiba\smartlogservice\TosIPCSrv.exe [2007-12-3 126976] R2 WTouchService;WTouch Service;c:\program files\wtouch\WTouchService.exe [2010-4-5 113448] R3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504] R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2008-9-30 7168] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-8-22 22344] R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\rtl8187B.sys [2009-6-28 290304] R3 WacomVTHid;Virtual Touch Driver;c:\windows\system32\drivers\WacomVTHid.sys [2010-4-5 13480] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-5-3 158856] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-5-26 250056] S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438;c:\program files\google\google desktop search\GoogleDesktop.exe [2008-9-30 29744] S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-5-21 113120] S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2011-4-27 74112] S3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2012-3-26 214952] S3 SVRPEDRV;SVRPEDRV;c:\windows\system32\sysprep\PEDRV.SYS [2008-9-30 9216] S3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [2010-4-5 16168] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2012-08-27 00:13:55 -------- d-sh--w- C:\$RECYCLE.BIN 2012-08-27 00:13:37 -------- d-----w- c:\users\stef\appdata\local\temp 2012-08-26 23:46:32 98816 ----a-w- c:\windows\sed.exe 2012-08-26 23:46:32 518144 ----a-w- c:\windows\SWREG.exe 2012-08-26 23:46:32 256000 ----a-w- c:\windows\PEV.exe 2012-08-26 23:46:32 208896 ----a-w- c:\windows\MBR.exe 2012-08-26 23:42:37 56200 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{e2089d7e-2e05-45b0-8421-fd4edca22e9d}\offreg.dll 2012-08-26 20:26:48 7023536 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{e2089d7e-2e05-45b0-8421-fd4edca22e9d}\mpengine.dll 2012-08-25 19:58:25 7023536 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll 2012-08-23 01:37:02 -------- d-----w- c:\users\stef\appdata\roaming\Malwarebytes 2012-08-23 01:36:20 -------- d-----w- c:\programdata\Malwarebytes 2012-08-23 01:36:16 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-08-23 01:36:16 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-08-17 04:58:39 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-08-04 02:36:39 -------- d-----w- c:\users\stef\appdata\local\{D2F3F19C-50C3-4423-8147-AEBD97212C47} 2012-08-04 02:36:26 -------- d-----w- c:\users\stef\appdata\local\{0E46BC5C-6822-4BC6-B4E2-8E3A3C1D8A6D} 2012-08-04 02:18:06 -------- d-----w- c:\users\stef\appdata\local\Windows Live 2012-08-02 00:06:49 160768 ----a-w- c:\windows\system32\d3d10_1.dll 2012-08-02 00:06:48 683008 ----a-w- c:\windows\system32\d2d1.dll 2012-08-02 00:06:48 219648 ----a-w- c:\windows\system32\d3d10_1core.dll 2012-08-02 00:06:48 1069056 ----a-w- c:\windows\system32\DWrite.dll 2012-08-02 00:06:47 1172480 ----a-w- c:\windows\system32\d3d10warp.dll 2012-08-01 05:14:02 -------- d-----w- c:\program files\Windows Portable Devices 2012-08-01 05:11:13 92672 ----a-w- c:\windows\system32\UIAnimation.dll 2012-08-01 05:11:11 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll 2012-08-01 05:11:10 3023360 ----a-w- c:\windows\system32\UIRibbon.dll 2012-08-01 05:09:38 81920 ----a-w- c:\windows\system32\wpdbusenum.dll . ==================== Find3M ==================== . 2012-08-15 18:59:21 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-08-15 18:59:21 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-07-23 19:27:42 952 --sha-w- c:\windows\system32\KGyGaAvL.sys 2012-07-22 06:33:57 8 --sh--r- c:\windows\system32\7C08B6A493.sys 2012-07-04 05:56:37 499712 ----a-w- c:\windows\system32\msvcp71.dll 2012-07-04 05:56:37 348160 ----a-w- c:\windows\system32\msvcr71.dll 2012-06-27 15:59:13 834048 ----a-w- c:\windows\system32\wininet.dll 2012-06-27 14:15:21 389632 ----a-w- c:\windows\system32\html.iec 2012-06-27 13:49:42 1383424 ----a-w- c:\windows\system32\mshtml.tlb 2012-06-07 03:59:42 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX 2012-06-05 16:47:28 1401856 ----a-w- c:\windows\system32\msxml6.dll 2012-06-05 16:47:27 1248768 ----a-w- c:\windows\system32\msxml3.dll 2012-06-04 15:26:04 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-06-02 22:19:42 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-02 22:12:32 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-02 22:12:20 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-02 22:12:13 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-02 00:04:25 278528 ----a-w- c:\windows\system32\schannel.dll 2012-06-02 00:03:42 204288 ----a-w- c:\windows\system32\ncrypt.dll . ============= FINISH: 17:24:02.94 ===============
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.