Jump to content

israyfan

Honorary Members
  • Posts

    50
  • Joined

  • Last visited

Reputation

0 Neutral

Contact Methods

  • MSN
    israyfan@hotmail.com

Profile Information

  • Location
    Chicago
  1. Hi Ron, My Toshiba laptop doesn't have a "print screen" key. I've never been able to figure out to how make a screenshot on it since there's no key for that. Is it absolutely necessary to deal with restore points now? Tempted to just skip it. I'm losing patience with the computer. It's worked fine the last few days and then this morning I got the "Wimax has limited or no connectivity" message again. I turned the computer off, unplugged it for five minutes and restarted. I got online right away with no issues. So the mystery about that continues. I don't have a friend nearby who has broadband that I can just go over to their house and randomly check to see if I have problems connecting that way. The only thing I know to do is to go someplace like McDonald's or the library that has free Wifi and try to connect that way when I get the Wimax connectivity message. Finally, I had forgotten to ask you about the results of the Eset scanner pasted here: C:\Program Files (x86)\FreeApps\FreeApps.exe probably a variant of Win32/FreeNew applicationC:\Users\Owner\Downloads\asc-setup.exe multiple threatsC:\Users\Owner\Downloads\cbsidlm-tr1_9-HitmanPro_3_32bit-SEO-10895604.exe multiple threatsC:\Users\Owner\Downloads\cnet2_DivXInstaller_exe.exe a variant of Win32/InstallCore.D applicationC:\Users\Owner\Downloads\imf-setup.exe a variant of Win32/Toolbar.Widgi applicationC:\Users\Owner\Downloads\sd2-setup220.exe a variant of Win32/Toolbar.Widgi application Should I have allowed it to delete these toolbars and such? I didn't at the time. Thank you,Dawn
  2. I need help figuring out the system restore protection functions but will have to come back to this later -- I'm out of time. I find the directions/panel confusing.I have system protection turned on for the C drive but then there's a second option for "System Protection" and it's turned off. I don't see a way to turn that on and I'm not sure I need to. Thank you, Ron.
  3. Results of Security Check: Results of screen317's Security Check version 0.99.73 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Kaspersky Anti-Virus Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.75.0.1300 Adobe Flash Player 11.8.800.94 Adobe Reader XI Mozilla Firefox 6.0 Firefox out of Date! Google Chrome 28.0.1500.95 Google Chrome 29.0.1547.57 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Kaspersky Lab Kaspersky Anti-Virus 2013 avp.exe Kaspersky Lab Kaspersky Anti-Virus 2013 x64 wmi64.exe Malwarebytes' Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 0% ````````````````````End of Log`````````````````````` I don't have a router or modem to plug or unplug -- I have Wimax, which is a built-in modem. I don't have broadband, DSL, etc. Wimax operates over cell phone towers. I have called Clear two or three times regarding the connectivity issues and they're no help. I will try unplugging the computer and letting it sit for a couple minutes. Thank you,Dawn
  4. Wow, I think I've done every scanner I'm aware of except Security Check and OTL. For all I know, those are next Do these reports show anything that would cause me to lose Wimax connectivity intermittently and repeatedly? One day it might be fine and then the next two days I might be able to connect. At one point it was suggested to me that my Wimax drivers and card might be going bad. I'm not sure whether that's a valid possibility or whether some malware/virus is wreaking all this havoc. What good is having a so-called robust AV program (Kaspersky 2013) if it's not catching the invaders? Thanks for your help with my issues. Where do I go from here? Dawn
  5. Farbar recovery reports show next. I have no idea whether any of this stuff listed is good or bad. A bunch of garble to me: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-08-2013 01Ran by Owner (administrator) on 26-08-2013 23:10:48Running from C:\Users\Owner\DesktopWindows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)Internet Explorer Version 10Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Microsoft Corporation) C:\windows\system32\WLANExt.exe(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe(TOSHIBA Corporation) C:\windows\system32\ThpSrv.exe(TOSHIBA Corporation) C:\Windows\system32\TODDSrv.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe(Intel® Corporation) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE(Red Bend Ltd.) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe(Intel® Corporation) C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe(Intel Corporation) C:\Windows\System32\igfxtray.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe(SanDisk Corporation) C:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe(Hewlett-Packard Company) C:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exe(Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exe(Farbar) C:\Users\Owner\Desktop\FRST64 (1).exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [intelWireless] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1928976 2010-03-05] (Intel® Corporation)HKLM\...\Run: [intelWirelessWiMAX] - C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe [1445888 2010-01-27] (Intel® Corporation)HKLM\...\Run: [TosNC] - C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [595816 2010-03-19] (TOSHIBA Corporation)HKCU\...\Run: [Google Update] - C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-09-14] (Google Inc.)HKCU\...\Run: [sansaDispatch] - C:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe [613888 2013-03-17] (SanDisk Corporation)HKLM-x32\...\Run: [TWebCamera] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356376 2013-01-06] (Kaspersky Lab ZAO)HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Walgreens PictureMover.lnkShortcutTarget: Walgreens PictureMover.lnk -> C:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exe (Hewlett-Packard Company)Startup: C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnkShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSNDSearchScopes: HKLM - DefaultScope value is missing.SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {4275B9FE-AA76-4FC2-BDA8-35FC78501E6B} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=800236&p={searchTerms}SearchScopes: HKCU - {9EADA9D4-043A-4C9B-94F3-0E9D80EDF99D} URL = BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)BHO-x32: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)DPF: HKLM-x32 {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cabDPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.3.1.0.cabHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No FileHandler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)Tcpip\Parameters: [DhcpNameServer] 96.24.14.12 FireFox:========FF ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\h64r8vk5.defaultFF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()FF Plugin: @bestbuy.com/npBestBuyPcAppDetector,version=1.0 - C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll No FileFF Plugin: @microsoft.com/GENUINE - disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF Plugin: @Musicnotes.com/Musicnotes Viewer - C:\Program Files\Musicnotes\npmusicn64.dll (Musicnotes, Inc.)FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()FF Plugin-x32: @bestbuy.com/npBestBuyPcAppDetector,version=1.0 - C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll No FileFF Plugin-x32: @java.com/DTPlugin,version=10.10.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)FF Plugin-x32: @microsoft.com/GENUINE - disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @Musicnotes.com/Musicnotes Viewer - C:\Program Files (x86)\Musicnotes\npmusicn.dll (Musicnotes, Inc.)FF Plugin-x32: @Sibelius.com/Scorch Plugin - C:\Program Files (x86)\Musicnotes\npsibelius.dll ()FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Owner\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Owner\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dll (Amazon.com, Inc.)FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ruFF HKLM-x32\...\Firefox\Extensions: [url_advisor@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\url_advisor@kaspersky.comFF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\url_advisor@kaspersky.comFF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\virtual_keyboard@kaspersky.comFF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\virtual_keyboard@kaspersky.comFF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\content_blocker@kaspersky.comFF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\content_blocker@kaspersky.com Chrome: =======CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}CHR Plugin: (Shockwave Flash) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.202\pepflashplayer.dll No FileCHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewerCHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll ()CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll ()CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)CHR Plugin: (Google Talk Plugin) - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dll (Amazon.com, Inc.)CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll No FileCHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll No FileCHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No FileCHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll No FileCHR Plugin: (Java Deployment Toolkit 7.0.100.18) - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No FileCHR Extension: (Google Docs) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0CHR Extension: (Google Drive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0CHR Extension: (YouTube) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0CHR Extension: (Google Search) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0CHR Extension: (Kaspersky URL Advisor) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0CHR Extension: (AdBlock) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0CHR Extension: (Content Blocker) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0CHR Extension: (Virtual Keyboard) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0CHR Extension: (Chrome In-App Payments service) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0CHR Extension: (Evernote Web Clipper) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\5.9.20_0CHR Extension: (Gmail) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\urladvisor.crxCHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\content_blocker_chrome.crxCHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\virtkbd.crxCHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ChromeExt\ab.crx ==================== Services (Whitelisted) ================= R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356376 2013-01-06] (Kaspersky Lab ZAO)R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-03-05] () ==================== Drivers (Whitelisted) ==================== R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [458584 2012-06-19] (Kaspersky Lab ZAO)R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [620128 2013-04-24] (Kaspersky Lab ZAO)R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [28504 2012-08-02] (Kaspersky Lab ZAO)R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29016 2012-10-25] (Kaspersky Lab)R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29528 2012-10-25] (Kaspersky Lab)R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-06-19] (Kaspersky Lab ZAO)R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-04-24] (Kaspersky Lab ZAO)R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-12-03] (Lavasoft AB)R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [36792 2011-03-16] (IObit Information Technology)R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [36792 2011-03-16] (IObit Information Technology) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-08-26 23:09 - 2013-08-26 23:09 - 01578852 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe2013-08-26 23:09 - 2013-08-26 23:09 - 01578852 _____ (Farbar) C:\Users\Owner\Desktop\FRST64 (1).exe2013-08-26 23:07 - 2013-08-26 23:07 - 01578852 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe2013-08-26 23:02 - 2013-08-26 23:02 - 00000515 _____ C:\Users\Owner\Desktop\Eset scanner report.txt2013-08-26 21:46 - 2013-08-26 21:46 - 00000000 ____D C:\Program Files (x86)\ESET2013-08-26 21:46 - 2013-08-26 21:45 - 02347384 _____ (ESET) C:\Users\Owner\Desktop\esetsmartinstaller_enu.exe2013-08-26 21:44 - 2013-08-26 21:45 - 02347384 _____ (ESET) C:\Users\Owner\Downloads\esetsmartinstaller_enu.exe2013-08-26 19:36 - 2013-08-26 19:36 - 00000292 _____ C:\windows\PFRO.log2013-08-26 06:56 - 2013-08-26 19:35 - 00000000 ____D C:\AdwCleaner2013-08-26 06:54 - 2013-08-26 06:53 - 00994642 _____ C:\Users\Owner\Desktop\AdwCleaner (7).exe2013-08-26 06:53 - 2013-08-26 06:53 - 00994642 _____ C:\Users\Owner\Downloads\AdwCleaner (7).exe2013-08-26 06:02 - 2013-08-26 06:02 - 00001084 _____ C:\Users\Owner\Desktop\JRT.txt2013-08-26 05:46 - 2013-08-26 05:46 - 01021434 _____ (Thisisu) C:\Users\Owner\Downloads\JRT.exe2013-08-26 05:46 - 2013-08-26 05:46 - 01021434 _____ (Thisisu) C:\Users\Owner\Desktop\JRT.exe2013-08-26 05:30 - 2013-08-26 05:40 - 00000000 ____D C:\Users\Owner\Desktop\mbar2013-08-26 05:28 - 2013-08-26 05:30 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Owner\Downloads\mbar-1.07.0.1005.exe2013-08-25 18:05 - 2013-08-25 18:05 - 00002805 _____ C:\Users\Owner\Desktop\RKreport[0]_S_08252013_180523.txt2013-08-25 18:03 - 2013-08-25 18:06 - 00000000 ____D C:\Users\Owner\Desktop\RK_Quarantine2013-08-25 18:01 - 2013-08-25 18:01 - 03814400 _____ C:\Users\Owner\Desktop\RogueKillerX64 (2).exe2013-08-25 18:00 - 2013-08-25 18:01 - 03814400 _____ C:\Users\Owner\Downloads\RogueKillerX64 (2).exe2013-08-25 17:54 - 2013-08-25 17:55 - 00000000 ____D C:\Program Files (x86)\ERUNT2013-08-25 17:54 - 2013-08-25 17:54 - 00000935 _____ C:\Users\Owner\Desktop\NTREGOPT.lnk2013-08-25 17:54 - 2013-08-25 17:54 - 00000916 _____ C:\Users\Owner\Desktop\ERUNT.lnk2013-08-25 17:52 - 2013-08-25 17:53 - 00791393 _____ (Lars Hederer ) C:\Users\Owner\Downloads\erunt-setup.exe2013-08-25 17:50 - 2013-08-25 17:51 - 00002686 _____ C:\Users\Owner\Desktop\Rkill.txt2013-08-25 17:50 - 2013-08-25 17:50 - 00000000 ____D C:\Users\Owner\Desktop\rkill2013-08-25 17:49 - 2013-08-25 17:49 - 01898112 _____ (Bleeping Computer, LLC) C:\Users\Owner\Desktop\rkill.exe2013-08-25 17:48 - 2013-08-25 17:49 - 01898112 _____ (Bleeping Computer, LLC) C:\Users\Owner\Downloads\rkill.exe2013-08-22 18:46 - 2013-08-22 18:46 - 00688992 ____R (Swearware) C:\Users\Owner\Desktop\dds (3).com2013-08-22 18:45 - 2013-08-22 18:46 - 00688992 _____ (Swearware) C:\Users\Owner\Downloads\dds (3).com2013-08-22 17:26 - 2013-08-22 17:26 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2013-08-22 17:26 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys2013-08-22 17:19 - 2013-08-22 17:21 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Owner\Downloads\mbam-setup-1.75.0.1300.exe2013-08-19 05:38 - 2013-08-19 05:41 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Owner\Downloads\mbam-setup.exe2013-08-18 10:11 - 2013-08-26 19:36 - 00000168 _____ C:\windows\setupact.log2013-08-18 10:11 - 2013-08-18 10:11 - 00000000 _____ C:\windows\setuperr.log2013-08-14 17:46 - 2013-07-26 00:13 - 02241024 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll2013-08-14 17:46 - 2013-07-26 00:13 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll2013-08-14 17:46 - 2013-07-26 00:13 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe2013-08-14 17:46 - 2013-07-26 00:12 - 19239424 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll2013-08-14 17:46 - 2013-07-26 00:12 - 15405056 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll2013-08-14 17:46 - 2013-07-26 00:12 - 03958784 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll2013-08-14 17:46 - 2013-07-26 00:12 - 02647040 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll2013-08-14 17:46 - 2013-07-26 00:12 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll2013-08-14 17:46 - 2013-07-26 00:12 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll2013-08-14 17:46 - 2013-07-26 00:12 - 00526336 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll2013-08-14 17:46 - 2013-07-26 00:12 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll2013-08-14 17:46 - 2013-07-26 00:12 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll2013-08-14 17:46 - 2013-07-26 00:12 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll2013-08-14 17:46 - 2013-07-26 00:12 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll2013-08-14 17:46 - 2013-07-25 22:35 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb2013-08-14 17:46 - 2013-07-25 22:13 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll2013-08-14 17:46 - 2013-07-25 22:13 - 01141248 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll2013-08-14 17:46 - 2013-07-25 22:12 - 14329344 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll2013-08-14 17:46 - 2013-07-25 22:12 - 02877440 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll2013-08-14 17:46 - 2013-07-25 22:12 - 02048512 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll2013-08-14 17:46 - 2013-07-25 22:12 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll2013-08-14 17:46 - 2013-07-25 22:12 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll2013-08-14 17:46 - 2013-07-25 22:12 - 00391168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll2013-08-14 17:46 - 2013-07-25 22:12 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll2013-08-14 17:46 - 2013-07-25 22:12 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll2013-08-14 17:46 - 2013-07-25 22:12 - 00039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll2013-08-14 17:46 - 2013-07-25 22:11 - 13761024 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll2013-08-14 17:46 - 2013-07-25 22:11 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll2013-08-14 17:46 - 2013-07-25 21:49 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb2013-08-14 17:46 - 2013-07-25 21:39 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe2013-08-14 17:46 - 2013-07-25 20:59 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe2013-08-14 17:27 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL2013-08-14 17:27 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL2013-08-14 17:27 - 2013-07-18 20:58 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll2013-08-14 17:27 - 2013-07-18 20:41 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll2013-08-14 17:27 - 2013-07-09 01:03 - 05550528 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe2013-08-14 17:27 - 2013-07-09 00:54 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll2013-08-14 17:27 - 2013-07-09 00:53 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll2013-08-14 17:27 - 2013-07-09 00:52 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll2013-08-14 17:27 - 2013-07-09 00:51 - 01217024 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll2013-08-14 17:27 - 2013-07-09 00:46 - 01472512 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll2013-08-14 17:27 - 2013-07-09 00:46 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll2013-08-14 17:27 - 2013-07-09 00:46 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll2013-08-14 17:27 - 2013-07-09 00:03 - 03968960 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe2013-08-14 17:27 - 2013-07-09 00:03 - 03913664 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe2013-08-14 17:27 - 2013-07-08 23:53 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll2013-08-14 17:27 - 2013-07-08 23:52 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll2013-08-14 17:27 - 2013-07-08 23:52 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll2013-08-14 17:27 - 2013-07-08 23:52 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll2013-08-14 17:27 - 2013-07-08 23:46 - 01166848 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll2013-08-14 17:27 - 2013-07-08 23:46 - 00140288 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll2013-08-14 17:27 - 2013-07-08 23:46 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll2013-08-14 17:27 - 2013-07-08 21:49 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe2013-08-14 17:27 - 2013-07-08 21:49 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll2013-08-14 17:27 - 2013-07-08 21:49 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe2013-08-14 17:27 - 2013-07-08 21:49 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe2013-08-14 17:27 - 2013-07-06 01:03 - 01910208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys2013-08-14 17:26 - 2013-06-14 23:32 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys2013-08-04 15:30 - 2013-08-04 15:30 - 00666633 _____ C:\Users\Owner\Downloads\AdwCleaner (6).exe2013-07-31 06:47 - 2013-08-14 05:42 - 00000000 ____D C:\windows\system32\MRT2013-07-31 05:21 - 2013-08-26 05:40 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)2013-07-31 05:18 - 2013-07-31 05:18 - 00000000 ____D C:\Users\Owner\Downloads\mbar-1.06.0.10042013-07-31 05:14 - 2013-07-31 05:16 - 13399154 _____ C:\Users\Owner\Downloads\mbar-1.06.0.1004.zip ==================== One Month Modified Files and Folders ======= 2013-08-26 23:10 - 2013-08-26 23:10 - 00000000 ____D C:\FRST2013-08-26 23:09 - 2013-08-26 23:09 - 01578852 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe2013-08-26 23:09 - 2013-08-26 23:09 - 01578852 _____ (Farbar) C:\Users\Owner\Desktop\FRST64 (1).exe2013-08-26 23:07 - 2013-08-26 23:07 - 01578852 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe2013-08-26 23:02 - 2013-08-26 23:02 - 00000515 _____ C:\Users\Owner\Desktop\Eset scanner report.txt2013-08-26 22:58 - 2013-01-09 22:42 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job2013-08-26 22:56 - 2010-08-19 07:08 - 01989051 _____ C:\windows\WindowsUpdate.log2013-08-26 22:52 - 2011-09-19 16:54 - 00000908 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000UA.job2013-08-26 22:17 - 2010-08-19 07:29 - 00412474 _____ C:\windows\system32\SupplicantTest.log2013-08-26 22:13 - 2010-07-29 04:49 - 00000912 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job2013-08-26 21:46 - 2013-08-26 21:46 - 00000000 ____D C:\Program Files (x86)\ESET2013-08-26 21:45 - 2013-08-26 21:46 - 02347384 _____ (ESET) C:\Users\Owner\Desktop\esetsmartinstaller_enu.exe2013-08-26 21:45 - 2013-08-26 21:44 - 02347384 _____ (ESET) C:\Users\Owner\Downloads\esetsmartinstaller_enu.exe2013-08-26 21:34 - 2012-01-24 21:22 - 00000000 ____D C:\ProgramData\Kaspersky Lab2013-08-26 20:57 - 2009-07-13 22:20 - 00000000 ____D C:\windows\rescache2013-08-26 20:51 - 2009-07-13 23:45 - 00016304 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02013-08-26 20:51 - 2009-07-13 23:45 - 00016304 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02013-08-26 19:37 - 2010-07-29 04:49 - 00000908 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job2013-08-26 19:37 - 2009-07-14 00:08 - 00000006 ____H C:\windows\Tasks\SA.DAT2013-08-26 19:36 - 2013-08-26 19:36 - 00000292 _____ C:\windows\PFRO.log2013-08-26 19:36 - 2013-08-18 10:11 - 00000168 _____ C:\windows\setupact.log2013-08-26 19:36 - 2012-02-24 21:40 - 00000000 ____D C:\Program Files\DivX2013-08-26 19:36 - 2012-02-24 21:31 - 00000000 ____D C:\Program Files (x86)\DivX2013-08-26 19:35 - 2013-08-26 06:56 - 00000000 ____D C:\AdwCleaner2013-08-26 19:19 - 2011-09-19 16:54 - 00000856 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000Core.job2013-08-26 06:53 - 2013-08-26 06:54 - 00994642 _____ C:\Users\Owner\Desktop\AdwCleaner (7).exe2013-08-26 06:53 - 2013-08-26 06:53 - 00994642 _____ C:\Users\Owner\Downloads\AdwCleaner (7).exe2013-08-26 06:02 - 2013-08-26 06:02 - 00001084 _____ C:\Users\Owner\Desktop\JRT.txt2013-08-26 05:51 - 2012-05-14 05:48 - 00000000 ____D C:\ProgramData\Uniblue2013-08-26 05:46 - 2013-08-26 05:46 - 01021434 _____ (Thisisu) C:\Users\Owner\Downloads\JRT.exe2013-08-26 05:46 - 2013-08-26 05:46 - 01021434 _____ (Thisisu) C:\Users\Owner\Desktop\JRT.exe2013-08-26 05:40 - 2013-08-26 05:30 - 00000000 ____D C:\Users\Owner\Desktop\mbar2013-08-26 05:40 - 2013-07-31 05:21 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)2013-08-26 05:30 - 2013-08-26 05:28 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Owner\Downloads\mbar-1.07.0.1005.exe2013-08-25 19:59 - 2013-05-28 14:09 - 00870128 _____ C:\Users\Owner\AppData\Roaming\mcs.rma2013-08-25 19:59 - 2013-05-28 12:52 - 00000004 _____ C:\Users\Owner\AppData\Roaming\D9E1472013-08-25 18:06 - 2013-08-25 18:03 - 00000000 ____D C:\Users\Owner\Desktop\RK_Quarantine2013-08-25 18:05 - 2013-08-25 18:05 - 00002805 _____ C:\Users\Owner\Desktop\RKreport[0]_S_08252013_180523.txt2013-08-25 18:01 - 2013-08-25 18:01 - 03814400 _____ C:\Users\Owner\Desktop\RogueKillerX64 (2).exe2013-08-25 18:01 - 2013-08-25 18:00 - 03814400 _____ C:\Users\Owner\Downloads\RogueKillerX64 (2).exe2013-08-25 17:55 - 2013-08-25 17:54 - 00000000 ____D C:\Program Files (x86)\ERUNT2013-08-25 17:54 - 2013-08-25 17:54 - 00000935 _____ C:\Users\Owner\Desktop\NTREGOPT.lnk2013-08-25 17:54 - 2013-08-25 17:54 - 00000916 _____ C:\Users\Owner\Desktop\ERUNT.lnk2013-08-25 17:53 - 2013-08-25 17:52 - 00791393 _____ (Lars Hederer ) C:\Users\Owner\Downloads\erunt-setup.exe2013-08-25 17:51 - 2013-08-25 17:50 - 00002686 _____ C:\Users\Owner\Desktop\Rkill.txt2013-08-25 17:50 - 2013-08-25 17:50 - 00000000 ____D C:\Users\Owner\Desktop\rkill2013-08-25 17:49 - 2013-08-25 17:49 - 01898112 _____ (Bleeping Computer, LLC) C:\Users\Owner\Desktop\rkill.exe2013-08-25 17:49 - 2013-08-25 17:48 - 01898112 _____ (Bleeping Computer, LLC) C:\Users\Owner\Downloads\rkill.exe2013-08-22 18:59 - 2013-01-09 22:42 - 00692104 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe2013-08-22 18:59 - 2013-01-09 22:42 - 00003768 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater2013-08-22 18:59 - 2011-05-15 15:11 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl2013-08-22 18:46 - 2013-08-22 18:46 - 00688992 ____R (Swearware) C:\Users\Owner\Desktop\dds (3).com2013-08-22 18:46 - 2013-08-22 18:45 - 00688992 _____ (Swearware) C:\Users\Owner\Downloads\dds (3).com2013-08-22 17:26 - 2013-08-22 17:26 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2013-08-22 17:26 - 2011-06-22 09:07 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware2013-08-22 17:21 - 2013-08-22 17:19 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Owner\Downloads\mbam-setup-1.75.0.1300.exe2013-08-22 17:19 - 2013-01-13 20:36 - 00002194 _____ C:\Users\Public\Desktop\Google Chrome.lnk2013-08-19 20:38 - 2010-11-14 09:22 - 00000000 ___RD C:\Program Files (x86)\Skype2013-08-19 20:38 - 2010-11-14 09:22 - 00000000 ____D C:\Users\Owner\AppData\Roaming\Skype2013-08-19 20:38 - 2010-11-14 09:22 - 00000000 ____D C:\ProgramData\Skype2013-08-19 20:36 - 2012-02-24 21:27 - 00000000 ____D C:\ProgramData\DivX2013-08-19 05:41 - 2013-08-19 05:38 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Owner\Downloads\mbam-setup.exe2013-08-18 10:11 - 2013-08-18 10:11 - 00000000 _____ C:\windows\setuperr.log2013-08-17 21:05 - 2010-07-29 20:55 - 00000000 ____D C:\windows\Panther2013-08-14 17:44 - 2009-07-14 00:13 - 00740814 _____ C:\windows\system32\PerfStringBackup.INI2013-08-14 05:42 - 2013-07-31 06:47 - 00000000 ____D C:\windows\system32\MRT2013-08-14 05:40 - 2010-10-24 02:55 - 78161360 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe2013-08-14 05:16 - 2013-05-27 13:32 - 00002222 ____H C:\Users\Owner\Documents\Default.rdp2013-08-06 20:53 - 2011-08-19 22:14 - 00000000 ____D C:\Users\Owner\AppData\Roaming\Mozilla2013-08-06 18:50 - 2009-07-13 22:20 - 00000000 ____D C:\windows\system32\NDF2013-08-04 15:30 - 2013-08-04 15:30 - 00666633 _____ C:\Users\Owner\Downloads\AdwCleaner (6).exe2013-08-01 06:49 - 2013-01-08 20:52 - 00000000 ____D C:\JRT2013-07-31 05:18 - 2013-07-31 05:18 - 00000000 ____D C:\Users\Owner\Downloads\mbar-1.06.0.10042013-07-31 05:16 - 2013-07-31 05:14 - 13399154 _____ C:\Users\Owner\Downloads\mbar-1.06.0.1004.zip Files to move or delete:====================C:\Users\Owner\AppData\Local\Temp\Quarantine.exeC:\Users\Owner\AppData\Local\Temp\SansaUpdater\english.dllC:\Users\Owner\AppData\Local\Temp\jrt\erunt\ERUNT.EXE ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legitC:\Windows\System32\wininit.exe => MD5 is legitC:\Windows\SysWOW64\wininit.exe => MD5 is legitC:\Windows\explorer.exe => MD5 is legitC:\Windows\SysWOW64\explorer.exe => MD5 is legitC:\Windows\System32\svchost.exe => MD5 is legitC:\Windows\SysWOW64\svchost.exe => MD5 is legitC:\Windows\System32\services.exe => MD5 is legitC:\Windows\System32\User32.dll => MD5 is legitC:\Windows\SysWOW64\User32.dll => MD5 is legitC:\Windows\System32\userinit.exe => MD5 is legitC:\Windows\SysWOW64\userinit.exe => MD5 is legitC:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-08-26 20:43 ==================== End Of Log ============================ Second Farbar report: Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-08-2013 01Ran by Owner at 2013-08-26 23:11:47Running from C:\Users\Owner\DesktopBoot Mode: Normal========================================================== ==================== Installed Programs ======================= Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94)Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)Adobe Reader XI (11.0.03) (x32 Version: 11.0.03)Amazon MP3 Downloader 1.0.17 (x32 Version: 1.0.17)Best Buy pc app (Version: 3.2.2.1)Best Buy pc app (x32 Version: 3.2.2.1)Content Transfer (x32 Version: 1.2.0.07300)D3DX10 (x32 Version: 15.4.2368.0902)Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)ERUNT 1.1j (x32)ESET Online Scanner v3 (x32)Evernote v. 4.6 (x32 Version: 4.6.0.7670)Feedback Tool (x32 Version: 1.2.0)Google Chrome (x32 Version: 29.0.1547.57)Google Talk Plugin (x32 Version: 4.4.2.14502)Google Update Helper (x32 Version: 1.3.21.153)Intel PROSet WirelessIntel WiMAX Tutorial (Version: 1.5.4.0)Intel® Graphics Media Accelerator Driver (x32 Version: 8.15.10.2202)Intel® Management Engine Components (x32 Version: 6.0.0.1179)Intel® PROSet/Wireless WiFi Software (Version: 13.02.1000)Intel® Rapid Storage Technology (x32 Version: 9.5.7.1002)Intel® PROSet/Wireless WiMAX Software (Version: 2.01.0014)Intel® Wireless Display (Version: 1.2.20.0)JMicron Flash Media Controller Driver (x32 Version: 1.0.44.1)Junk Mail filter update (x32 Version: 15.4.3502.0922)Kaspersky Anti-Virus 2013 (x32 Version: 13.0.1.4190)Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)Mesh Runtime (x32 Version: 15.4.5722.2)Messenger Companion (x32 Version: 15.4.3502.0922)Microsoft Application Error Reporting (Version: 12.0.6015.5000)Microsoft Office 2010 (x32 Version: 14.0.4763.1000)Microsoft Office 2010 Service Pack 1 (SP1) (x32)Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Home and Business 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000)Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000)Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.6029.1000)Microsoft Silverlight (Version: 5.1.20513.0)Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)Mozilla Firefox 6.0 (x86 en-US) (x32 Version: 6.0)MSVCRT (x32 Version: 15.4.2862.0708)MSVCRT_amd64 (x32 Version: 15.4.2862.0708)Musicnotes Software Suite 1.7.2 (x32 Version: 1.7.2)PlayReady PC Runtime amd64 (Version: 1.3.0)Protected Folder (x32)Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.20.503.2010)Realtek High Definition Audio Driver (x32 Version: 6.0.1.6069)Rhapsody (x32)rosoft .NET Framework 4 Client Profile (Version: 4.0.30319)Sansa Updater (HKCU Version: 1.313)Synaptics Pointing Device Driver (Version: 15.0.8.1)System Requirements Lab for Intel (64-bit) (Version: 4.4.16.0)System Requirements Lab for Intel (x32 Version: 4.4.16.0)TOSHIBA Application Installer (x32 Version: 9.0.1.1)Toshiba Book Place (x32 Version: 2.0.3977.0)TOSHIBA Bulletin Board (Version: 1.6.07.64)TOSHIBA Bulletin Board (x32 Version: 1.6.07.64)TOSHIBA Disc Creator (Version: 2.1.0.2 for x64)TOSHIBA DVD PLAYER (x32 Version: 3.01.2.12-A)TOSHIBA eco Utility (Version: 1.2.11.64)TOSHIBA eco Utility (x32 Version: 1.2.11.64)TOSHIBA Face Recognition (Version: 3.1.3.64)TOSHIBA Face Recognition (x32 Version: 3.1.3.64)TOSHIBA Flash Cards Support Utility (x32 Version: 1.63.0.6C)TOSHIBA Hardware Setup (x32 Version: 1.63.0.26C)TOSHIBA HDD Protection (Version: 2.2.0.4)TOSHIBA HDD/SSD Alert (Version: 3.1.64.6)TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.6)TOSHIBA Media Controller (x32 Version: 1.0.80.3.64)TOSHIBA Media Controller Plug-in (x32 Version: 1.0.5.10)TOSHIBA PC Health Monitor (Version: 1.6.0.64)TOSHIBA Quality Application (x32 Version: 1.0.3)TOSHIBA Recovery Media Creator (Version: 2.1.0.4 for x64)TOSHIBA ReelTime (Version: 1.6.06.64)TOSHIBA ReelTime (x32 Version: 1.6.06.64)TOSHIBA Service Station (x32 Version: 2.1.51)TOSHIBA Sleep Utility (x32 Version: 1.4.1.1)TOSHIBA Supervisor Password (x32 Version: 1.63.0.9C)TOSHIBA Value Added Package (Version: 1.3.4.64)TOSHIBA Value Added Package (x32 Version: 1.3.4.64)TOSHIBA Web Camera Application (x32 Version: 1.1.1.15)ToshibaRegistration (x32 Version: 1.0.4)TurboTax 2012 (x32 Version: 2012.0)TurboTax 2012 wiliper (x32 Version: 012.000.1360)TurboTax 2012 WinPerFedFormset (x32 Version: 012.000.2013)TurboTax 2012 WinPerReleaseEngine (x32 Version: 012.000.0451)TurboTax 2012 WinPerTaxSupport (x32 Version: 012.000.0179)TurboTax 2012 wrapper (x32 Version: 012.000.0127)Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)Update for Microsoft Office 2010 (KB2494150) (x32)Update for Microsoft Office 2010 (KB2553065) (x32)Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2566458) (x32)Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32)Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32)Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32)Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32)Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32)Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32)Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32)Utility Common Driver (x32 Version: 1.0.52.1C)VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729)Visual C++ 2008 x86 Runtime - v9.0.30729.01 (x32 Version: 9.0.30729.01)Walgreens PictureMover (x32 Version: 3.5.0.27)Windows Live Communications Platform (x32 Version: 15.4.3502.0922)Windows Live Essentials (x32 Version: 15.4.3502.0922)Windows Live Family Safety (Version: 15.4.3502.0922)Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)Windows Live Installer (x32 Version: 15.4.3502.0922)Windows Live Language Selector (Version: 15.4.3502.0922)Windows Live Mail (x32 Version: 15.4.3502.0922)Windows Live Mesh (x32 Version: 15.4.3502.0922)Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)Windows Live Messenger (x32 Version: 15.4.3502.0922)Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)Windows Live MIME IFilter (Version: 15.4.3502.0922)Windows Live Movie Maker (x32 Version: 15.4.3502.0922)Windows Live Photo Common (x32 Version: 15.4.3502.0922)Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)Windows Live PIMT Platform (x32 Version: 15.4.3502.0922)Windows Live Remote Client (Version: 15.4.5722.2)Windows Live Remote Client Resources (Version: 15.4.5722.2)Windows Live Remote Service (Version: 15.4.5722.2)Windows Live Remote Service Resources (Version: 15.4.5722.2)Windows Live SOXE (x32 Version: 15.4.3502.0922)Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)Windows Live Sync (x32 Version: 14.0.8117.416)Windows Live UX Platform (x32 Version: 15.4.3502.0922)Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922)Windows Live Writer (x32 Version: 15.4.3502.0922)Windows Live Writer Resources (x32 Version: 15.4.3502.0922) ==================== Restore Points ========================= 21-07-2013 23:44:40 Windows Update26-07-2013 11:18:37 Windows Update30-07-2013 11:04:47 Windows Update31-07-2013 11:46:41 Windows Update07-08-2013 10:54:17 Windows Update13-08-2013 10:17:42 Windows Update14-08-2013 10:40:15 Windows Update14-08-2013 22:41:36 Windows Update20-08-2013 01:37:40 Removed Skype™ 6.322-08-2013 22:23:19 Windows Update ==================== Hosts content: ========================== 2009-07-13 21:34 - 2013-05-26 16:58 - 00000098 ____A C:\windows\system32\Drivers\etc\hosts127.0.0.1 localhost::1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {33706F83-00DA-4AF6-AC09-0FDAC7A473B2} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe No FileTask: {4C2F1C29-63B3-49A4-B626-855B85AA93A6} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-13] (Microsoft Corporation)Task: {4E11C113-6449-44AB-BD0D-9EB2F2BE8266} - System32\Tasks\{648B60A3-679C-4058-A37F-F2AE70393644} => C:\Program Files (x86)\Skype\\Phone\Skype.exe No FileTask: {5610B7A2-92E4-480A-8873-B981F41AB6E1} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe No FileTask: {596C28D2-6CD8-4FF3-A70F-1963117209E5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000UA => C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-14] (Google Inc.)Task: {64EFF2EB-D95C-403F-B1E2-8C43AF13102B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000Core => C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-14] (Google Inc.)Task: {6FCAFDAC-E450-400F-B38E-BF1123BC4CAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-13] (Google Inc.)Task: {96F0E63C-961E-44EE-98D3-12D8A8D04441} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-13] (Google Inc.)Task: {C99C9F6A-D424-4AFD-84B8-79395534ED47} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-22] (Adobe Systems Incorporated)Task: {DAA48AD0-EB68-47B7-9C9F-AC541445DBF3} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update TaskTask: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeTask: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000Core.job => C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exeTask: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000UA.job => C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Alternate Data Streams (whitelisted) ========== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors:==================Error: (08/26/2013 09:46:13 PM) (Source: SideBySide) (User: )Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.A component version required by the application conflicts with another component version already active.Conflicting components are:.Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (08/26/2013 09:46:09 PM) (Source: SideBySide) (User: )Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.A component version required by the application conflicts with another component version already active.Conflicting components are:.Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (08/26/2013 09:46:09 PM) (Source: SideBySide) (User: )Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.A component version required by the application conflicts with another component version already active.Conflicting components are:.Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (08/26/2013 09:46:07 PM) (Source: SideBySide) (User: )Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.A component version required by the application conflicts with another component version already active.Conflicting components are:.Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. System errors:=============Error: (08/26/2013 07:38:07 PM) (Source: Service Control Manager) (User: )Description: The Superfetch service terminated with the following error: %%2 Error: (08/26/2013 07:37:20 PM) (Source: Service Control Manager) (User: )Description: The MCSTRM service failed to start due to the following error: %%2 Error: (08/26/2013 06:23:05 AM) (Source: DCOM) (User: )Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Microsoft Office Sessions:=========================Error: (08/26/2013 09:46:13 PM) (Source: SideBySide)(User: )Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Owner\Desktop\esetsmartinstaller_enu.exe Error: (08/26/2013 09:46:09 PM) (Source: SideBySide)(User: )Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Owner\Desktop\esetsmartinstaller_enu.exe Error: (08/26/2013 09:46:09 PM) (Source: SideBySide)(User: )Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Owner\Desktop\esetsmartinstaller_enu.exe Error: (08/26/2013 09:46:07 PM) (Source: SideBySide)(User: )Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Owner\Desktop\esetsmartinstaller_enu.exe CodeIntegrity Errors:=================================== Date: 2013-08-26 20:47:07.067 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:07.065 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:07.063 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:07.019 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:07.015 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:07.010 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:06.973 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:06.970 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-26 20:47:06.967 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-22 17:59:08.769 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Percentage of memory in use: 54%Total physical RAM: 3890.67 MBAvailable physical RAM: 1760.33 MBTotal Pagefile: 7779.53 MBAvailable Pagefile: 5287.32 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.83 MB ==================== Drives ================================ Drive c: (TI105957W0C) (Fixed) (Total:453.15 GB) (Free:394.99 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ========================================================Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: 7B4807D4)Partition 1: (Active) - (Size=1 GB) - (Type=27)Partition 2: (Not Active) - (Size=453 GB) - (Type=07 NTFS)Partition 3: (Not Active) - (Size=11 GB) - (Type=17) ==================== End Of Log ============================
  6. # AdwCleaner v3.001 - Report created 26/08/2013 at 19:35:10 # Updated 24/08/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Owner - OWNER-PC # Running from : C:\Users\Owner\Desktop\AdwCleaner (7).exe # Option : Clean ***** [ Services ] ***** Looks like the Eset scanner found some nasty beasties. Ironically, earlier tonight when I was running these various scans, I got a call from "Microsoft Technical Support" regarding viruses and infections on my computer. Fortunately, I saw through the scam and got rid of them. The scam was exactly what is reported here: http://www.informationweek.com/security/management/microsoft-windows-support-call-scams-7-f/240005023 C:\Program Files (x86)\FreeApps\FreeApps.exe probably a variant of Win32/FreeNew application C:\Users\Owner\Downloads\asc-setup.exe multiple threats C:\Users\Owner\Downloads\cbsidlm-tr1_9-HitmanPro_3_32bit-SEO-10895604.exe multiple threats C:\Users\Owner\Downloads\cnet2_DivXInstaller_exe.exe a variant of Win32/InstallCore.D application C:\Users\Owner\Downloads\imf-setup.exe a variant of Win32/Toolbar.Widgi application C:\Users\Owner\Downloads\sd2-setup220.exe a variant of Win32/Toolbar.Widgi application ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16660 -\\ Mozilla Firefox v6.0 (en-US) [ File : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\h64r8vk5.default\prefs.js ] -\\ Google Chrome v29.0.1547.57 [ File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\preferences ]
  7. I have to leave for work now. I'll proceed with the remaining steps later. Thank you for your help so far! Dawn
  8. JRT did find something in my registry. Here's the log: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by ThisisuVersion: 5.5.4 (08.22.2013:1)OS: Windows 7 Home Premium x64Ran by Owner on Mon 08/26/2013 at 5:48:13.38~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\uniblueSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\driverscannerSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\driverscanner_rasapi32Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\driverscanner_rasmancs ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\uniblue\driverscanner" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on Mon 08/26/2013 at 6:02:09.80End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  9. mbar rootkit found no malware. Here's the log: Malwarebytes Anti-Rootkit BETA 1.07.0.1005www.malwarebytes.org Database version: v2013.08.26.01 Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16660Owner :: OWNER-PC [administrator] 8/26/2013 5:31:34 AMmbar-log-2013-08-26 (05-31-34).txt Scan type: Quick scanScan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/ShurikenScan options disabled: Objects scanned: 241426Time elapsed: 8 minute(s), 53 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected) Physical Sectors Detected: 0(No malicious items detected) (end) Sys log:---------------------------------------Malwarebytes Anti-Rootkit BETA 1.07.0.1005 © Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x64 Account is Administrative Internet Explorer version: 10.0.9200.16660 File system is: NTFSDisk drives: C:\ DRIVE_FIXEDCPU speed: 2.394000 GHzMemory total: 4079665152, free: 1794318336 Downloaded database version: v2013.08.26.01Downloaded database version: v2013.08.06.01=======================================Initializing...------------ Kernel report ------------ 08/26/2013 05:31:30------------ Loaded modules -----------\SystemRoot\system32\ntoskrnl.exe\SystemRoot\system32\hal.dll\SystemRoot\system32\kdcom.dll\SystemRoot\system32\mcupdate_GenuineIntel.dll\SystemRoot\system32\PSHED.dll\SystemRoot\system32\CLFS.SYS\SystemRoot\system32\CI.dll\SystemRoot\system32\drivers\Wdf01000.sys\SystemRoot\system32\drivers\WDFLDR.SYS\SystemRoot\system32\drivers\ACPI.sys\SystemRoot\system32\drivers\WMILIB.SYS\SystemRoot\system32\drivers\msisadrv.sys\SystemRoot\system32\drivers\pci.sys\SystemRoot\system32\drivers\vdrvroot.sys\SystemRoot\system32\DRIVERS\LPCFilter.sys\SystemRoot\system32\DRIVERS\kl1.sys\SystemRoot\System32\drivers\partmgr.sys\SystemRoot\system32\DRIVERS\compbatt.sys\SystemRoot\system32\DRIVERS\BATTC.SYS\SystemRoot\system32\drivers\volmgr.sys\SystemRoot\System32\drivers\volmgrx.sys\SystemRoot\System32\drivers\mountmgr.sys\SystemRoot\system32\drivers\pciide.sys\SystemRoot\system32\drivers\PCIIDEX.SYS\SystemRoot\system32\DRIVERS\iaStor.sys\SystemRoot\system32\drivers\atapi.sys\SystemRoot\system32\drivers\ataport.SYS\SystemRoot\system32\drivers\msahci.sys\SystemRoot\system32\drivers\amdxata.sys\SystemRoot\system32\drivers\fltmgr.sys\SystemRoot\system32\drivers\fileinfo.sys\SystemRoot\system32\DRIVERS\Lbd.sys\SystemRoot\System32\Drivers\Ntfs.sys\SystemRoot\System32\Drivers\msrpc.sys\SystemRoot\System32\Drivers\ksecdd.sys\SystemRoot\System32\Drivers\cng.sys\SystemRoot\System32\drivers\pcw.sys\SystemRoot\System32\Drivers\Fs_Rec.sys\SystemRoot\system32\drivers\ndis.sys\SystemRoot\system32\drivers\NETIO.SYS\SystemRoot\System32\Drivers\ksecpkg.sys\SystemRoot\System32\drivers\tcpip.sys\SystemRoot\System32\drivers\fwpkclnt.sys\SystemRoot\system32\drivers\volsnap.sys\SystemRoot\system32\DRIVERS\TVALZ_O.SYS\SystemRoot\system32\DRIVERS\tos_sps64.sys\SystemRoot\system32\DRIVERS\Thpevm.SYS\SystemRoot\system32\DRIVERS\thpdrv.sys\SystemRoot\System32\Drivers\spldr.sys\SystemRoot\System32\drivers\rdyboost.sys\SystemRoot\System32\Drivers\mup.sys\SystemRoot\System32\drivers\hwpolicy.sys\SystemRoot\System32\DRIVERS\fvevol.sys\SystemRoot\system32\DRIVERS\disk.sys\SystemRoot\system32\DRIVERS\CLASSPNP.SYS\SystemRoot\system32\drivers\cdrom.sys\SystemRoot\system32\DRIVERS\klif.sys\SystemRoot\system32\DRIVERS\klflt.sys\SystemRoot\System32\Drivers\Null.SYS\SystemRoot\System32\Drivers\Beep.SYS\SystemRoot\System32\drivers\vga.sys\SystemRoot\System32\drivers\VIDEOPRT.SYS\SystemRoot\System32\drivers\watchdog.sys\SystemRoot\System32\DRIVERS\RDPCDD.sys\SystemRoot\system32\drivers\rdpencdd.sys\SystemRoot\system32\drivers\rdprefmp.sys\SystemRoot\System32\Drivers\Msfs.SYS\SystemRoot\System32\Drivers\Npfs.SYS\SystemRoot\system32\DRIVERS\tdx.sys\SystemRoot\system32\DRIVERS\TDI.SYS\SystemRoot\system32\DRIVERS\kltdi.sys\SystemRoot\system32\drivers\afd.sys\SystemRoot\System32\DRIVERS\netbt.sys\SystemRoot\system32\DRIVERS\wfplwf.sys\SystemRoot\system32\DRIVERS\pacer.sys\SystemRoot\system32\DRIVERS\vwififlt.sys\SystemRoot\system32\DRIVERS\klim6.sys\SystemRoot\system32\DRIVERS\netbios.sys\SystemRoot\system32\DRIVERS\wanarp.sys\SystemRoot\system32\drivers\termdd.sys\SystemRoot\system32\DRIVERS\rdbss.sys\SystemRoot\system32\drivers\nsiproxy.sys\SystemRoot\system32\drivers\mssmbios.sys\SystemRoot\system32\DRIVERS\kneps.sys\SystemRoot\System32\drivers\discache.sys\SystemRoot\System32\Drivers\dfsc.sys\SystemRoot\system32\DRIVERS\blbdrive.sys\SystemRoot\system32\DRIVERS\tunnel.sys\SystemRoot\system32\DRIVERS\igdkmd64.sys\SystemRoot\System32\drivers\dxgkrnl.sys\SystemRoot\System32\drivers\dxgmms1.sys\SystemRoot\system32\DRIVERS\HECIx64.sys\SystemRoot\system32\drivers\usbehci.sys\SystemRoot\system32\drivers\USBPORT.SYS\SystemRoot\system32\drivers\HDAudBus.sys\SystemRoot\system32\DRIVERS\Rt64win7.sys\SystemRoot\system32\DRIVERS\NETw5s64.sys\SystemRoot\system32\DRIVERS\vwifibus.sys\SystemRoot\system32\DRIVERS\SCSIPORT.SYS\SystemRoot\system32\DRIVERS\CmBatt.sys\SystemRoot\system32\drivers\i8042prt.sys\SystemRoot\system32\DRIVERS\klkbdflt.sys\SystemRoot\system32\drivers\kbdclass.sys\SystemRoot\system32\DRIVERS\SynTP.sys\SystemRoot\system32\DRIVERS\USBD.SYS\SystemRoot\system32\DRIVERS\klmouflt.sys\SystemRoot\system32\DRIVERS\mouclass.sys\SystemRoot\system32\DRIVERS\tdcmdpst.sys\SystemRoot\system32\DRIVERS\Impcd.sys\SystemRoot\system32\DRIVERS\TVALZFL.sys\SystemRoot\system32\DRIVERS\intelppm.sys\SystemRoot\system32\drivers\CompositeBus.sys\SystemRoot\system32\DRIVERS\AgileVpn.sys\SystemRoot\system32\DRIVERS\rasl2tp.sys\SystemRoot\system32\DRIVERS\ndistapi.sys\SystemRoot\system32\DRIVERS\ndiswan.sys\SystemRoot\system32\DRIVERS\raspppoe.sys\SystemRoot\system32\DRIVERS\raspptp.sys\SystemRoot\system32\DRIVERS\rassstp.sys\SystemRoot\system32\drivers\swenum.sys\SystemRoot\system32\drivers\ks.sys\SystemRoot\system32\DRIVERS\umbus.sys\SystemRoot\system32\DRIVERS\WDKMD.sys\SystemRoot\system32\DRIVERS\bpenum.sys\SystemRoot\system32\DRIVERS\usbhub.sys\SystemRoot\System32\Drivers\NDProxy.SYS\SystemRoot\system32\drivers\RTKVHD64.sys\SystemRoot\system32\drivers\portcls.sys\SystemRoot\system32\drivers\drmk.sys\SystemRoot\system32\drivers\ksthunk.sys\SystemRoot\system32\DRIVERS\IntcDAud.sys\SystemRoot\System32\Drivers\crashdmp.sys\SystemRoot\System32\Drivers\dump_iaStor.sys\SystemRoot\System32\Drivers\dump_dumpfve.sys\SystemRoot\System32\win32k.sys\SystemRoot\System32\drivers\Dxapi.sys\SystemRoot\system32\DRIVERS\usbccgp.sys\SystemRoot\System32\Drivers\usbvideo.sys\SystemRoot\system32\DRIVERS\pgeffect.sys\SystemRoot\System32\Drivers\bpusb.sys\SystemRoot\system32\DRIVERS\bpmp.sys\SystemRoot\system32\DRIVERS\monitor.sys\SystemRoot\system32\DRIVERS\hidusb.sys\SystemRoot\system32\DRIVERS\HIDCLASS.SYS\SystemRoot\system32\DRIVERS\HIDPARSE.SYS\SystemRoot\system32\DRIVERS\mouhid.sys\SystemRoot\System32\TSDDD.dll\SystemRoot\System32\cdd.dll\SystemRoot\System32\ATMFD.DLL\SystemRoot\system32\drivers\luafv.sys\??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys\SystemRoot\system32\DRIVERS\lltdio.sys\SystemRoot\system32\DRIVERS\nwifi.sys\SystemRoot\system32\DRIVERS\ndisuio.sys\SystemRoot\system32\DRIVERS\rspndr.sys\SystemRoot\system32\drivers\HTTP.sys\SystemRoot\system32\DRIVERS\bowser.sys\SystemRoot\System32\drivers\mpsdrv.sys\SystemRoot\system32\DRIVERS\mrxsmb.sys\SystemRoot\system32\DRIVERS\mrxsmb10.sys\SystemRoot\system32\DRIVERS\mrxsmb20.sys\SystemRoot\system32\DRIVERS\vwifimp.sys\SystemRoot\system32\drivers\peauth.sys\SystemRoot\System32\Drivers\secdrv.SYS\SystemRoot\System32\DRIVERS\srvnet.sys\SystemRoot\System32\drivers\tcpipreg.sys\SystemRoot\System32\DRIVERS\srv2.sys\SystemRoot\System32\DRIVERS\srv.sys\??\C:\windows\system32\drivers\mbam.sys\SystemRoot\system32\DRIVERS\jmcr.sys\??\C:\windows\system32\drivers\mbamchameleon.sys\??\C:\windows\system32\drivers\MBAMSwissArmy.sys\Windows\System32\ntdll.dll\Windows\System32\smss.exe\Windows\System32\apisetschema.dll\Windows\System32\autochk.exe\Windows\System32\shell32.dll\Windows\System32\nsi.dll\Windows\System32\iertutil.dll\Windows\System32\oleaut32.dll\Windows\System32\user32.dll\Windows\System32\imm32.dll\Windows\System32\difxapi.dll\Windows\System32\lpk.dll\Windows\System32\sechost.dll\Windows\System32\gdi32.dll\Windows\System32\kernel32.dll\Windows\System32\psapi.dll\Windows\System32\wininet.dll\Windows\System32\usp10.dll\Windows\System32\shlwapi.dll\Windows\System32\rpcrt4.dll\Windows\System32\normaliz.dll\Windows\System32\comdlg32.dll\Windows\System32\clbcatq.dll\Windows\System32\urlmon.dll\Windows\System32\ole32.dll\Windows\System32\Wldap32.dll\Windows\System32\msvcrt.dll\Windows\System32\advapi32.dll\Windows\System32\imagehlp.dll\Windows\System32\msctf.dll\Windows\System32\setupapi.dll\Windows\System32\ws2_32.dll\Windows\System32\wintrust.dll\Windows\System32\KernelBase.dll\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll\Windows\System32\comctl32.dll\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll\Windows\System32\devobj.dll\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll\Windows\System32\crypt32.dll\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll\Windows\System32\cfgmgr32.dll\Windows\System32\msasn1.dll\Windows\SysWOW64\normaliz.dll----------- End -----------Done!<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xfffffa8004c64060Upper Device Driver Name: \Driver\Disk\Lower Device Name: \Device\Ide\IAAStorageDevice-1\Lower Device Object: 0xfffffa80049e3050Lower Device Driver Name: \Driver\iaStor\<<<2>>>Physical Sector Size: 512Drive: 0, DevicePointer: 0xfffffa8004c64060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\--------- Disk Stack ------DevicePointer: 0xfffffa8004c64b90, DeviceName: Unknown, DriverName: \Driver\partmgr\DevicePointer: 0xfffffa8004c64060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\DevicePointer: 0xfffffa8004c63060, DeviceName: \Device\THPDRV1\, DriverName: \Driver\Thpdrv\DevicePointer: 0xfffffa80049e3050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\------------ End ----------Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\Upper DeviceData: 0x0, 0x0, 0x0Lower DeviceData: 0x0, 0x0, 0x0<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>><<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesScanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...<<<2>>><<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesDone!Drive 0Scanning MBR on drive 0...Inspecting partition table:MBR Signature: 55AADisk Signature: 7B4807D4 Partition information: Partition 0 type is Other (0x27) Partition is ACTIVE. Partition starts at LBA: 2048 Numsec = 3072000 Partition file system is NTFS Partition is bootable Partition 1 type is Primary (0x7) Partition is NOT ACTIVE. Partition starts at LBA: 3074048 Numsec = 950319104 Partition 2 type is HIDDEN (0x17) Partition is NOT ACTIVE. Partition starts at LBA: 953393152 Numsec = 23379968 Partition is not bootableHidden partition VBR is not infected. Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 500107862016 bytesSector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...Done!Scan finished======================================= Removal queue found; removal startedRemoving C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR_0_i.mbam...Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\Bootstrap_0_0_2048_i.mbam...Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\Bootstrap_0_2_953393152_i.mbam...Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR_0_r.mbam...Removal finished
  10. RogueKiller V8.6.6 _x64_ [Aug 19 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.adlice.com/forum/ Website : http://www.adlice.com/softwares/roguekiller/ Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : Owner [Admin rights] Mode : Scan -- Date : 08/25/2013 18:05:23 | ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 7 ¤¤¤ [RUN][sUSP PATH] HKCU\[...]\Run : Google Update ("C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /c [7]) -> FOUND [RUN][sUSP PATH] HKUS\S-1-5-21-581623108-381344596-3336794620-1000\[...]\Run : Google Update ("C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /c [7]) -> FOUND [HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> FOUND [HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> FOUND [HJ SMENU] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Scheduled tasks : 4 ¤¤¤ [V1][sUSP PATH] GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000UA.job : C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe - /ua /installsource scheduler [7][x] -> FOUND [V1][sUSP PATH] GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000Core.job : C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe - /c [7] -> FOUND [V2][sUSP PATH] GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000Core : C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe - /c [7] -> FOUND [V2][sUSP PATH] GoogleUpdateTaskUserS-1-5-21-581623108-381344596-3336794620-1000UA : C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe - /ua /installsource scheduler [7][x] -> FOUND ¤¤¤ Startup Entries : 0 ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤ ¤¤¤ External Hives: ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> %SystemRoot%\System32\drivers\etc\hosts ÿþ1 ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: Hitachi HTS725050A9A360 +++++ --- User --- [MBR] 4539bd1bc235af49594e0bb67a4649b7 [bSP] 9027902206de9a46c7ad8360d6e3d50a : Windows Vista MBR Code Partition table: 0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 464023 Mo 2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 953393152 | Size: 11416 Mo User = LL1 ... OK! User = LL2 ... OK! RKreport0_S_08252013_180523.txt
  11. Hi David, I'm not sure I understand your message. I'm using Wimax now, not any sort of outside connection or other person's Wifi. I'm just lucky that I've got a window of connectivity right now. Based on the last couple of weeks' experience, that won't last. As I mentioned, I haven't had any connectivity the last two days. How would I know if it's a faulty Wimax interface and what would I do about it short of buying a new computer? I'm guessing I just have to go through a process of elimination and try to figure out if it's malware/virus and if that comes up empty (when someone checks the DDS logs in the malware forum), then assume it's Wimax? Thank you for your help and patience. Dawn
  12. I'm not using a friend's broadband. I'm still at home and taking advantage of being able to connect -- for now.
  13. Thanks, David. I was able to post a new topic and the DDS logs over in the malware help forum just now.
  14. For several weeks, my Wimax has been giving me intermittent connectivity issues. More often than not, it will show I'm connected but won't load Web pages. Sometimes I get limited or no connectivity issues. I'm wondering if the Wimax drivers and/or card are going bad or if it's malware/virus. Repeated mbam scans have found nothing. Kaspersky AV has found nothing. Here are the DDS logs. Thanks for the help. =Dawn DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16660Run by Owner at 18:47:24 on 2013-08-22Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3891.1730 [GMT -5:00].AV: Kaspersky Anti-Virus *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}SP: Kaspersky Anti-Virus *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\windows\system32\lsm.exeC:\windows\system32\svchost.exe -k DcomLaunchC:\windows\system32\svchost.exe -k RPCSSC:\windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\windows\system32\svchost.exe -k LocalServiceC:\windows\system32\svchost.exe -k netsvcsC:\windows\system32\svchost.exe -k GPSvcGroupC:\windows\system32\svchost.exe -k NetworkServiceC:\windows\system32\WLANExt.exeC:\windows\System32\spoolsv.exeC:\windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\windows\system32\taskhost.exeC:\windows\system32\Dwm.exeC:\windows\Explorer.EXEC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exeC:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeC:\windows\system32\svchost.exe -k imgsvcC:\windows\system32\ThpSrv.exeC:\Windows\system32\TODDSrv.exeC:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exeC:\Program Files\TOSHIBA\TECO\TecoService.exeC:\Program Files\Intel\WiMAX\Bin\AppSrv.exeC:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exeC:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exeC:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exeC:\Windows\System32\igfxtray.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Windows\System32\hkcmd.exeC:\windows\system32\SearchIndexer.exeC:\Windows\System32\igfxpers.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exeC:\Program Files\Intel\WiMAX\Bin\DMAgent.exeC:\Program Files\Intel\WiFi\bin\EvtEng.exeC:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeC:\windows\system32\wbem\wmiprvse.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exeC:\windows\system32\wbem\unsecapp.exeC:\windows\system32\wbem\unsecapp.exeC:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\windows\System32\svchost.exe -k secsvcsC:\windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Rhapsody\rhaphlpr.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exeC:\windows\system32\wbem\wmiprvse.exeC:\windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uProxyOverride = <local>mWinlogon: Userinit = userinit.exe,BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dllBHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLBHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dllBHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dlluRun: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /cuRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunuRun: [sansaDispatch] C:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exemRun: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorunmRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe"mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silentdRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStartStartupFolder: C:\Users\Owner\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WALGRE~1.LNK - C:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exemPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-Explorer: NoDriveTypeAutoRun = dword:28mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.htmlIE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dllIE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllIE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllIE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dllTCP: NameServer = 96.24.14.12TCP: Interfaces\{043D9E56-6FC6-4B60-ADA1-963405372B2B} : DHCPNameServer = 192.168.1.1 97.64.209.36 97.64.168.13TCP: Interfaces\{14099DD3-1584-4842-BC0F-5BE44A0668E4}\145434F4D4055545542535C44544 : DHCPNameServer = 75.75.75.75 75.75.76.76 192.168.100.1TCP: Interfaces\{784D649E-1DE5-4C56-803E-9250D3F0ED5A} : DHCPNameServer = 96.24.14.12Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dllx64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dllx64-Run: [intelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Trayx64-Run: [intelWirelessWiMAX] "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplashx64-Run: [TosNC] C:\Program Files (x86)\Toshiba\BulletinBoard\TosNcCore.exex64-Run: [igfxTray] C:\windows\System32\igfxtray.exex64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exex64-Run: [Persistence] C:\windows\System32\igfxpers.exex64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllx64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dllx64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dllx64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-Notify: igfxcui - igfxdev.dllx64-SSODL: WebCheck - <orphaned>.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\h64r8vk5.default\FF - prefs.js: browser.search.selectedEngine - FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLLFF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLLFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dllFF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dllFF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\Musicnotes\npmusicn.dllFF - plugin: C:\Program Files (x86)\Musicnotes\NPSibelius.dllFF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dllFF - plugin: C:\Users\Owner\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dllFF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dllFF - plugin: C:\windows\SysWOW64\npdeployJava1.dllFF - plugin: C:\windows\SysWOW64\npmproxy.dll.============= SERVICES / DRIVERS ===============.R0 Lbd;Lbd;C:\windows\System32\drivers\Lbd.sys [2011-1-30 69152]R0 Thpdrv;TOSHIBA HDD Protection Driver;C:\windows\System32\drivers\thpdrv.sys [2009-6-29 34880]R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;C:\windows\System32\drivers\Thpevm.sys [2009-6-29 14784]R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\drivers\tos_sps64.sys [2010-8-19 482384]R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\windows\System32\drivers\klim6.sys [2012-8-2 28504]R1 kltdi;kltdi;C:\windows\System32\drivers\kltdi.sys [2012-6-8 54368]R1 kneps;kneps;C:\windows\System32\drivers\kneps.sys [2012-8-13 178448]R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -r --> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -r [?]R2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [2009-12-29 404992]R2 IntuitUpdateServiceV4;Intuit Update Service v4;C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [2012-8-23 13672]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-8-22 701512]R2 PfFilter;PfFilter;C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2011-7-2 36792]R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2010-4-6 258928]R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\drivers\TVALZFL.sys [2009-6-19 14472]R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-8-19 2320920]R2 WiMAXAppSrv;Intel® PROSet/Wireless WiMAX Service;C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [2009-12-29 911360]R3 bpenum;bpenum;C:\windows\System32\drivers\bpenum.sys [2009-12-22 71168]R3 bpmp;bpmp;C:\windows\System32\drivers\bpmp.sys [2009-12-22 174592]R3 bpusb;bpusb;C:\windows\System32\drivers\bpusb.sys [2009-12-22 81920]R3 HECIx64;Intel® Management Engine Interface;C:\windows\System32\drivers\HECIx64.sys [2010-8-19 56344]R3 Impcd;Impcd;C:\windows\System32\drivers\Impcd.sys [2010-2-26 158976]R3 IntcDAud;Intel® Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2010-8-30 289280]R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\windows\System32\drivers\klkbdflt.sys [2012-10-25 29016]R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\windows\System32\drivers\klmouflt.sys [2012-10-25 29528]R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2013-8-22 25928]R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\windows\System32\drivers\NETw5s64.sys [2010-5-31 7689216]R3 PGEffect;Pangu effect driver;C:\windows\System32\drivers\PGEffect.sys [2010-8-19 35008]R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2010-8-19 331880]R3 wdkmd;Intel WiDi KMD;C:\windows\System32\drivers\WDKMD.sys [2010-6-18 39832]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S3 acpials;ALS Sensor Filter;C:\windows\System32\drivers\acpials.sys [2009-7-14 9728]S3 fssfltr;fssfltr;C:\windows\System32\drivers\fssfltr.sys [2010-10-24 48488]S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-23 1493352]S3 JMCR;JMCR;C:\windows\System32\drivers\jmcr.sys [2011-5-26 164464]S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-3-5 340240]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2012-11-9 19456]S3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2010-8-19 54136]S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-2-5 137560]S3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2010-2-23 835952]S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2012-11-9 57856]S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2010-10-24 1255736]S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184].=============== Created Last 30 ================.2013-08-22 23:05:38 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9D1C7685-79E0-4809-AF3F-437BC7FE0981}\offreg.dll2013-08-22 22:26:14 25928 ----a-w- C:\windows\System32\drivers\mbam.sys2013-08-22 22:23:52 9460976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9D1C7685-79E0-4809-AF3F-437BC7FE0981}\mpengine.dll2013-08-22 22:23:29 -------- d-----w- C:\1fefe094cb4892356d0d13eeb7625f1b2013-08-14 22:27:28 224256 ----a-w- C:\windows\System32\wintrust.dll2013-08-14 22:26:59 39936 ----a-w- C:\windows\System32\drivers\tssecsrv.sys2013-07-31 11:47:22 -------- d-----w- C:\windows\System32\MRT2013-07-31 10:21:09 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable).==================== Find3M ====================.2013-08-22 23:02:30 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-08-22 23:02:30 692104 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe2013-07-26 05:13:37 2241024 ----a-w- C:\windows\System32\wininet.dll2013-07-26 05:12:08 3958784 ----a-w- C:\windows\System32\jscript9.dll2013-07-26 05:12:04 136704 ----a-w- C:\windows\System32\iesysprep.dll2013-07-26 05:12:03 67072 ----a-w- C:\windows\System32\iesetup.dll2013-07-26 03:35:08 2706432 ----a-w- C:\windows\System32\mshtml.tlb2013-07-26 03:13:24 1767936 ----a-w- C:\windows\SysWow64\wininet.dll2013-07-26 03:12:04 2877440 ----a-w- C:\windows\SysWow64\jscript9.dll2013-07-26 03:12:00 61440 ----a-w- C:\windows\SysWow64\iesetup.dll2013-07-26 03:12:00 109056 ----a-w- C:\windows\SysWow64\iesysprep.dll2013-07-26 02:49:14 2706432 ----a-w- C:\windows\SysWow64\mshtml.tlb2013-07-26 02:39:38 89600 ----a-w- C:\windows\System32\RegisterIEPKEYs.exe2013-07-26 01:59:38 71680 ----a-w- C:\windows\SysWow64\RegisterIEPKEYs.exe2013-07-25 09:25:54 1888768 ----a-w- C:\windows\System32\WMVDECOD.DLL2013-07-25 08:57:27 1620992 ----a-w- C:\windows\SysWow64\WMVDECOD.DLL2013-07-19 01:58:42 2048 ----a-w- C:\windows\System32\tzres.dll2013-07-19 01:41:01 2048 ----a-w- C:\windows\SysWow64\tzres.dll2013-07-09 06:03:30 5550528 ----a-w- C:\windows\System32\ntoskrnl.exe2013-07-09 05:54:22 1732032 ----a-w- C:\windows\System32\ntdll.dll2013-07-09 05:53:12 243712 ----a-w- C:\windows\System32\wow64.dll2013-07-09 05:51:16 1217024 ----a-w- C:\windows\System32\rpcrt4.dll2013-07-09 05:46:20 184320 ----a-w- C:\windows\System32\cryptsvc.dll2013-07-09 05:46:20 1472512 ----a-w- C:\windows\System32\crypt32.dll2013-07-09 05:46:20 139776 ----a-w- C:\windows\System32\cryptnet.dll2013-07-09 05:03:34 3968960 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe2013-07-09 05:03:34 3913664 ----a-w- C:\windows\SysWow64\ntoskrnl.exe2013-07-09 04:53:47 1292192 ----a-w- C:\windows\SysWow64\ntdll.dll2013-07-09 04:52:33 663552 ----a-w- C:\windows\SysWow64\rpcrt4.dll2013-07-09 04:52:33 5120 ----a-w- C:\windows\SysWow64\wow32.dll2013-07-09 04:52:10 175104 ----a-w- C:\windows\SysWow64\wintrust.dll2013-07-09 04:46:31 140288 ----a-w- C:\windows\SysWow64\cryptsvc.dll2013-07-09 04:46:31 1166848 ----a-w- C:\windows\SysWow64\crypt32.dll2013-07-09 04:46:31 103936 ----a-w- C:\windows\SysWow64\cryptnet.dll2013-07-09 04:45:07 44032 ----a-w- C:\windows\apppatch\acwow64.dll2013-07-09 02:49:42 25600 ----a-w- C:\windows\SysWow64\setup16.exe2013-07-09 02:49:41 7680 ----a-w- C:\windows\SysWow64\instnm.exe2013-07-09 02:49:39 14336 ----a-w- C:\windows\SysWow64\ntvdm64.dll2013-07-09 02:49:38 2048 ----a-w- C:\windows\SysWow64\user.exe2013-07-06 06:03:53 1910208 ----a-w- C:\windows\System32\drivers\tcpip.sys2013-06-19 10:41:58 54368 ----a-w- C:\windows\System32\drivers\kltdi.sys2013-06-05 03:34:27 3153920 ----a-w- C:\windows\System32\win32k.sys2013-06-04 06:00:13 624128 ----a-w- C:\windows\System32\qedit.dll2013-06-04 04:53:07 509440 ----a-w- C:\windows\SysWow64\qedit.dll.============= FINISH: 18:48:05.37 ===============.UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1Install Date: 10/24/2010 2:02:00 AMSystem Uptime: 8/22/2013 2:57:48 PM (4 hours ago).Motherboard: TOSHIBA | | NWQAAProcessor: Intel® Core i3 CPU M 370 @ 2.40GHz | CPU | 911/133mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 453 GiB total, 398.107 GiB free.D: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP333: 7/21/2013 6:44:40 PM - Windows UpdateRP334: 7/26/2013 6:18:37 AM - Windows UpdateRP335: 7/30/2013 6:04:47 AM - Windows UpdateRP336: 7/31/2013 6:46:41 AM - Windows UpdateRP337: 8/7/2013 5:54:17 AM - Windows UpdateRP338: 8/13/2013 5:17:42 AM - Windows UpdateRP339: 8/14/2013 5:40:15 AM - Windows UpdateRP340: 8/14/2013 5:41:36 PM - Windows UpdateRP341: 8/19/2013 8:37:40 PM - Removed Skype™ 6.3RP342: 8/22/2013 5:23:19 PM - Windows Update.==== Installed Programs ======================.Adobe Flash Player 11 ActiveXAdobe Flash Player 11 PluginAdobe Reader XI (11.0.03)Amazon MP3 Downloader 1.0.17Best Buy pc appContent TransferD3DX10Definition Update for Microsoft Office 2010 (KB982726) 32-Bit EditionEvernote v. 4.6Feedback ToolGoogle ChromeGoogle Talk PluginGoogle Update HelperIntel PROSet WirelessIntel WiMAX TutorialIntel® Graphics Media Accelerator DriverIntel® Management Engine ComponentsIntel® PROSet/Wireless WiFi SoftwareIntel® Rapid Storage TechnologyIntel® PROSet/Wireless WiMAX SoftwareIntel® Wireless DisplayJMicron Flash Media Controller DriverJunk Mail filter updateKaspersky Anti-Virus 2013Malwarebytes Anti-Malware version 1.75.0.1300Mesh RuntimeMessenger CompanionMicrosoft .NET Framework 4 Client ProfileMicrosoft Application Error ReportingMicrosoft Office 2010Microsoft Office 2010 Service Pack 1 (SP1)Microsoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Home and Business 2010Microsoft Office Office 64-bit Components 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook ConnectorMicrosoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared 64-bit MUI (English) 2010Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Single Image 2010Microsoft Office Word MUI (English) 2010Microsoft SilverlightMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Mozilla Firefox 6.0 (x86 en-US)MSVCRTMSVCRT_amd64Musicnotes Software Suite 1.7.2PlayReady PC Runtime amd64Protected FolderRealtek Ethernet Controller Driver For Windows 7Realtek High Definition Audio DriverRhapsodySansa UpdaterSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2160841)Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit EditionSecurity Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit EditionSecurity Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553091)Security Update for Microsoft Office 2010 (KB2553096)Security Update for Microsoft Office 2010 (KB2553371) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553447) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2589320) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2598243) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687276) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687501) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687510) 32-Bit EditionSecurity Update for Microsoft OneNote 2010 (KB2760600) 32-Bit EditionSecurity Update for Microsoft Publisher 2010 (KB2553147) 32-Bit EditionSecurity Update for Microsoft Visio 2010 (KB2810068) 32-Bit EditionSecurity Update for Microsoft Visio Viewer 2010 (KB2687505) 32-Bit EditionSecurity Update for Microsoft Word 2010 (KB2760410) 32-Bit EditionSynaptics Pointing Device DriverSystem Requirements Lab for IntelSystem Requirements Lab for Intel (64-bit)TOSHIBA Application InstallerToshiba Book PlaceTOSHIBA Bulletin BoardTOSHIBA Disc CreatorTOSHIBA DVD PLAYERTOSHIBA eco UtilityTOSHIBA Face RecognitionTOSHIBA Flash Cards Support UtilityTOSHIBA Hardware SetupTOSHIBA HDD ProtectionTOSHIBA HDD/SSD AlertTOSHIBA Media ControllerTOSHIBA Media Controller Plug-inTOSHIBA PC Health MonitorTOSHIBA Quality ApplicationTOSHIBA Recovery Media CreatorTOSHIBA ReelTimeTOSHIBA Service StationTOSHIBA Sleep UtilityTOSHIBA Supervisor PasswordTOSHIBA Value Added PackageTOSHIBA Web Camera ApplicationToshibaRegistrationTurboTax 2012TurboTax 2012 wiliperTurboTax 2012 WinPerFedFormsetTurboTax 2012 WinPerReleaseEngineTurboTax 2012 WinPerTaxSupportTurboTax 2012 wrapperUpdate for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)Update for Microsoft .NET Framework 4 Client Profile (KB2836939)Update for Microsoft Office 2010 (KB2494150)Update for Microsoft Office 2010 (KB2553065)Update for Microsoft Office 2010 (KB2553181) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553267) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553310) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553378) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2566458)Update for Microsoft Office 2010 (KB2596964) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2598242) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687503) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687509) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2767886) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2553290) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2597090) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2687623) 32-Bit EditionUpdate for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2598240) 32-Bit EditionUpdate for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit EditionUtility Common DriverVC80CRTRedist - 8.0.50727.6195Visual C++ 2008 x86 Runtime - (v9.0.30729)Visual C++ 2008 x86 Runtime - v9.0.30729.01Walgreens PictureMoverWindows Live Communications PlatformWindows Live EssentialsWindows Live Family SafetyWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MailWindows Live MeshWindows Live Mesh ActiveX Control for Remote ConnectionsWindows Live MessengerWindows Live Messenger Companion CoreWindows Live MIME IFilterWindows Live Movie MakerWindows Live Photo CommonWindows Live Photo GalleryWindows Live PIMT PlatformWindows Live Remote ClientWindows Live Remote Client ResourcesWindows Live Remote ServiceWindows Live Remote Service ResourcesWindows Live SOXEWindows Live SOXE DefinitionsWindows Live SyncWindows Live UX PlatformWindows Live UX Platform Language PackWindows Live WriterWindows Live Writer Resources.==== Event Viewer Messages From Past Week ========.8/19/2013 6:38:58 AM, Error: Service Control Manager [7023] - The Superfetch service terminated with the following error: The system cannot find the file specified.8/19/2013 6:38:08 AM, Error: Service Control Manager [7000] - The MCSTRM service failed to start due to the following error: The system cannot find the file specified.8/19/2013 6:36:56 AM, Error: Microsoft-Windows-WLAN-AutoConfig [10003] - WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\windows\System32\IWMSSvc.dll.==== End Of File ===========================
  15. I posted on the general computer help forum that I've been having intermittent and repeated Internet connectivity issues with Wimax. This has been going on for a couple weeks. David Lipman suggested I run mbam and DDS scans and post a new topic here. I've run multiple mbam scans over the weeks and have found nothing. Kaspersky AV has found nothing. Here are the logs: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16660Run by Owner at 18:47:24 on 2013-08-22Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3891.1730 [GMT -5:00].AV: Kaspersky Anti-Virus *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}SP: Kaspersky Anti-Virus *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\windows\system32\lsm.exeC:\windows\system32\svchost.exe -k DcomLaunchC:\windows\system32\svchost.exe -k RPCSSC:\windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\windows\system32\svchost.exe -k LocalServiceC:\windows\system32\svchost.exe -k netsvcsC:\windows\system32\svchost.exe -k GPSvcGroupC:\windows\system32\svchost.exe -k NetworkServiceC:\windows\system32\WLANExt.exeC:\windows\System32\spoolsv.exeC:\windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\windows\system32\taskhost.exeC:\windows\system32\Dwm.exeC:\windows\Explorer.EXEC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exeC:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeC:\windows\system32\svchost.exe -k imgsvcC:\windows\system32\ThpSrv.exeC:\Windows\system32\TODDSrv.exeC:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exeC:\Program Files\TOSHIBA\TECO\TecoService.exeC:\Program Files\Intel\WiMAX\Bin\AppSrv.exeC:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exeC:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exeC:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exeC:\Windows\System32\igfxtray.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Windows\System32\hkcmd.exeC:\windows\system32\SearchIndexer.exeC:\Windows\System32\igfxpers.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exeC:\Program Files\Intel\WiMAX\Bin\DMAgent.exeC:\Program Files\Intel\WiFi\bin\EvtEng.exeC:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeC:\windows\system32\wbem\wmiprvse.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exeC:\windows\system32\wbem\unsecapp.exeC:\windows\system32\wbem\unsecapp.exeC:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\windows\System32\svchost.exe -k secsvcsC:\windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Rhapsody\rhaphlpr.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exeC:\windows\system32\wbem\wmiprvse.exeC:\windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uProxyOverride = <local>mWinlogon: Userinit = userinit.exe,BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dllBHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLBHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dllBHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dlluRun: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /cuRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunuRun: [sansaDispatch] C:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exemRun: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorunmRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe"mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silentdRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStartStartupFolder: C:\Users\Owner\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WALGRE~1.LNK - C:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exemPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-Explorer: NoDriveTypeAutoRun = dword:28mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.htmlIE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dllIE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllIE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllIE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dllTCP: NameServer = 96.24.14.12TCP: Interfaces\{043D9E56-6FC6-4B60-ADA1-963405372B2B} : DHCPNameServer = 192.168.1.1 97.64.209.36 97.64.168.13TCP: Interfaces\{14099DD3-1584-4842-BC0F-5BE44A0668E4}\145434F4D4055545542535C44544 : DHCPNameServer = 75.75.75.75 75.75.76.76 192.168.100.1TCP: Interfaces\{784D649E-1DE5-4C56-803E-9250D3F0ED5A} : DHCPNameServer = 96.24.14.12Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dllx64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dllx64-Run: [intelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Trayx64-Run: [intelWirelessWiMAX] "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplashx64-Run: [TosNC] C:\Program Files (x86)\Toshiba\BulletinBoard\TosNcCore.exex64-Run: [igfxTray] C:\windows\System32\igfxtray.exex64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exex64-Run: [Persistence] C:\windows\System32\igfxpers.exex64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllx64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dllx64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dllx64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-Notify: igfxcui - igfxdev.dllx64-SSODL: WebCheck - <orphaned>.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\h64r8vk5.default\FF - prefs.js: browser.search.selectedEngine - FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLLFF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLLFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dllFF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dllFF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\Musicnotes\npmusicn.dllFF - plugin: C:\Program Files (x86)\Musicnotes\NPSibelius.dllFF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dllFF - plugin: C:\Users\Owner\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dllFF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dllFF - plugin: C:\windows\SysWOW64\npdeployJava1.dllFF - plugin: C:\windows\SysWOW64\npmproxy.dll.============= SERVICES / DRIVERS ===============.R0 Lbd;Lbd;C:\windows\System32\drivers\Lbd.sys [2011-1-30 69152]R0 Thpdrv;TOSHIBA HDD Protection Driver;C:\windows\System32\drivers\thpdrv.sys [2009-6-29 34880]R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;C:\windows\System32\drivers\Thpevm.sys [2009-6-29 14784]R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\drivers\tos_sps64.sys [2010-8-19 482384]R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\windows\System32\drivers\klim6.sys [2012-8-2 28504]R1 kltdi;kltdi;C:\windows\System32\drivers\kltdi.sys [2012-6-8 54368]R1 kneps;kneps;C:\windows\System32\drivers\kneps.sys [2012-8-13 178448]R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -r --> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -r [?]R2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [2009-12-29 404992]R2 IntuitUpdateServiceV4;Intuit Update Service v4;C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [2012-8-23 13672]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-8-22 701512]R2 PfFilter;PfFilter;C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2011-7-2 36792]R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2010-4-6 258928]R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\drivers\TVALZFL.sys [2009-6-19 14472]R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-8-19 2320920]R2 WiMAXAppSrv;Intel® PROSet/Wireless WiMAX Service;C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [2009-12-29 911360]R3 bpenum;bpenum;C:\windows\System32\drivers\bpenum.sys [2009-12-22 71168]R3 bpmp;bpmp;C:\windows\System32\drivers\bpmp.sys [2009-12-22 174592]R3 bpusb;bpusb;C:\windows\System32\drivers\bpusb.sys [2009-12-22 81920]R3 HECIx64;Intel® Management Engine Interface;C:\windows\System32\drivers\HECIx64.sys [2010-8-19 56344]R3 Impcd;Impcd;C:\windows\System32\drivers\Impcd.sys [2010-2-26 158976]R3 IntcDAud;Intel® Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2010-8-30 289280]R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\windows\System32\drivers\klkbdflt.sys [2012-10-25 29016]R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\windows\System32\drivers\klmouflt.sys [2012-10-25 29528]R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2013-8-22 25928]R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\windows\System32\drivers\NETw5s64.sys [2010-5-31 7689216]R3 PGEffect;Pangu effect driver;C:\windows\System32\drivers\PGEffect.sys [2010-8-19 35008]R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2010-8-19 331880]R3 wdkmd;Intel WiDi KMD;C:\windows\System32\drivers\WDKMD.sys [2010-6-18 39832]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S3 acpials;ALS Sensor Filter;C:\windows\System32\drivers\acpials.sys [2009-7-14 9728]S3 fssfltr;fssfltr;C:\windows\System32\drivers\fssfltr.sys [2010-10-24 48488]S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-23 1493352]S3 JMCR;JMCR;C:\windows\System32\drivers\jmcr.sys [2011-5-26 164464]S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-3-5 340240]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2012-11-9 19456]S3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2010-8-19 54136]S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-2-5 137560]S3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2010-2-23 835952]S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2012-11-9 57856]S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2010-10-24 1255736]S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184].=============== Created Last 30 ================.2013-08-22 23:05:38 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9D1C7685-79E0-4809-AF3F-437BC7FE0981}\offreg.dll2013-08-22 22:26:14 25928 ----a-w- C:\windows\System32\drivers\mbam.sys2013-08-22 22:23:52 9460976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9D1C7685-79E0-4809-AF3F-437BC7FE0981}\mpengine.dll2013-08-22 22:23:29 -------- d-----w- C:\1fefe094cb4892356d0d13eeb7625f1b2013-08-14 22:27:28 224256 ----a-w- C:\windows\System32\wintrust.dll2013-08-14 22:26:59 39936 ----a-w- C:\windows\System32\drivers\tssecsrv.sys2013-07-31 11:47:22 -------- d-----w- C:\windows\System32\MRT2013-07-31 10:21:09 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable).==================== Find3M ====================.2013-08-22 23:02:30 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-08-22 23:02:30 692104 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe2013-07-26 05:13:37 2241024 ----a-w- C:\windows\System32\wininet.dll2013-07-26 05:12:08 3958784 ----a-w- C:\windows\System32\jscript9.dll2013-07-26 05:12:04 136704 ----a-w- C:\windows\System32\iesysprep.dll2013-07-26 05:12:03 67072 ----a-w- C:\windows\System32\iesetup.dll2013-07-26 03:35:08 2706432 ----a-w- C:\windows\System32\mshtml.tlb2013-07-26 03:13:24 1767936 ----a-w- C:\windows\SysWow64\wininet.dll2013-07-26 03:12:04 2877440 ----a-w- C:\windows\SysWow64\jscript9.dll2013-07-26 03:12:00 61440 ----a-w- C:\windows\SysWow64\iesetup.dll2013-07-26 03:12:00 109056 ----a-w- C:\windows\SysWow64\iesysprep.dll2013-07-26 02:49:14 2706432 ----a-w- C:\windows\SysWow64\mshtml.tlb2013-07-26 02:39:38 89600 ----a-w- C:\windows\System32\RegisterIEPKEYs.exe2013-07-26 01:59:38 71680 ----a-w- C:\windows\SysWow64\RegisterIEPKEYs.exe2013-07-25 09:25:54 1888768 ----a-w- C:\windows\System32\WMVDECOD.DLL2013-07-25 08:57:27 1620992 ----a-w- C:\windows\SysWow64\WMVDECOD.DLL2013-07-19 01:58:42 2048 ----a-w- C:\windows\System32\tzres.dll2013-07-19 01:41:01 2048 ----a-w- C:\windows\SysWow64\tzres.dll2013-07-09 06:03:30 5550528 ----a-w- C:\windows\System32\ntoskrnl.exe2013-07-09 05:54:22 1732032 ----a-w- C:\windows\System32\ntdll.dll2013-07-09 05:53:12 243712 ----a-w- C:\windows\System32\wow64.dll2013-07-09 05:51:16 1217024 ----a-w- C:\windows\System32\rpcrt4.dll2013-07-09 05:46:20 184320 ----a-w- C:\windows\System32\cryptsvc.dll2013-07-09 05:46:20 1472512 ----a-w- C:\windows\System32\crypt32.dll2013-07-09 05:46:20 139776 ----a-w- C:\windows\System32\cryptnet.dll2013-07-09 05:03:34 3968960 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe2013-07-09 05:03:34 3913664 ----a-w- C:\windows\SysWow64\ntoskrnl.exe2013-07-09 04:53:47 1292192 ----a-w- C:\windows\SysWow64\ntdll.dll2013-07-09 04:52:33 663552 ----a-w- C:\windows\SysWow64\rpcrt4.dll2013-07-09 04:52:33 5120 ----a-w- C:\windows\SysWow64\wow32.dll2013-07-09 04:52:10 175104 ----a-w- C:\windows\SysWow64\wintrust.dll2013-07-09 04:46:31 140288 ----a-w- C:\windows\SysWow64\cryptsvc.dll2013-07-09 04:46:31 1166848 ----a-w- C:\windows\SysWow64\crypt32.dll2013-07-09 04:46:31 103936 ----a-w- C:\windows\SysWow64\cryptnet.dll2013-07-09 04:45:07 44032 ----a-w- C:\windows\apppatch\acwow64.dll2013-07-09 02:49:42 25600 ----a-w- C:\windows\SysWow64\setup16.exe2013-07-09 02:49:41 7680 ----a-w- C:\windows\SysWow64\instnm.exe2013-07-09 02:49:39 14336 ----a-w- C:\windows\SysWow64\ntvdm64.dll2013-07-09 02:49:38 2048 ----a-w- C:\windows\SysWow64\user.exe2013-07-06 06:03:53 1910208 ----a-w- C:\windows\System32\drivers\tcpip.sys2013-06-19 10:41:58 54368 ----a-w- C:\windows\System32\drivers\kltdi.sys2013-06-05 03:34:27 3153920 ----a-w- C:\windows\System32\win32k.sys2013-06-04 06:00:13 624128 ----a-w- C:\windows\System32\qedit.dll2013-06-04 04:53:07 509440 ----a-w- C:\windows\SysWow64\qedit.dll.============= FINISH: 18:48:05.37 ===============DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16660Run by Owner at 18:47:24 on 2013-08-22Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3891.1730 [GMT -5:00].AV: Kaspersky Anti-Virus *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}SP: Kaspersky Anti-Virus *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\windows\system32\lsm.exeC:\windows\system32\svchost.exe -k DcomLaunchC:\windows\system32\svchost.exe -k RPCSSC:\windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\windows\system32\svchost.exe -k LocalServiceC:\windows\system32\svchost.exe -k netsvcsC:\windows\system32\svchost.exe -k GPSvcGroupC:\windows\system32\svchost.exe -k NetworkServiceC:\windows\system32\WLANExt.exeC:\windows\System32\spoolsv.exeC:\windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\windows\system32\taskhost.exeC:\windows\system32\Dwm.exeC:\windows\Explorer.EXEC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exeC:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeC:\windows\system32\svchost.exe -k imgsvcC:\windows\system32\ThpSrv.exeC:\Windows\system32\TODDSrv.exeC:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exeC:\Program Files\TOSHIBA\TECO\TecoService.exeC:\Program Files\Intel\WiMAX\Bin\AppSrv.exeC:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exeC:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exeC:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exeC:\Windows\System32\igfxtray.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Windows\System32\hkcmd.exeC:\windows\system32\SearchIndexer.exeC:\Windows\System32\igfxpers.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exeC:\Program Files\Intel\WiMAX\Bin\DMAgent.exeC:\Program Files\Intel\WiFi\bin\EvtEng.exeC:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeC:\windows\system32\wbem\wmiprvse.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exeC:\windows\system32\wbem\unsecapp.exeC:\windows\system32\wbem\unsecapp.exeC:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\windows\System32\svchost.exe -k secsvcsC:\windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Rhapsody\rhaphlpr.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exeC:\windows\system32\wbem\wmiprvse.exeC:\windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uProxyOverride = <local>mWinlogon: Userinit = userinit.exe,BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dllBHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLBHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dllBHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dlluRun: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /cuRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunuRun: [sansaDispatch] C:\Users\Owner\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exemRun: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorunmRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe"mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silentdRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStartStartupFolder: C:\Users\Owner\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WALGRE~1.LNK - C:\Program Files (x86)\Walgreens PictureMover\Bin\PictureMover.exemPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-Explorer: NoDriveTypeAutoRun = dword:28mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.htmlIE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dllIE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllIE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllIE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dllTCP: NameServer = 96.24.14.12TCP: Interfaces\{043D9E56-6FC6-4B60-ADA1-963405372B2B} : DHCPNameServer = 192.168.1.1 97.64.209.36 97.64.168.13TCP: Interfaces\{14099DD3-1584-4842-BC0F-5BE44A0668E4}\145434F4D4055545542535C44544 : DHCPNameServer = 75.75.75.75 75.75.76.76 192.168.100.1TCP: Interfaces\{784D649E-1DE5-4C56-803E-9250D3F0ED5A} : DHCPNameServer = 96.24.14.12Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dllx64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dllx64-Run: [intelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Trayx64-Run: [intelWirelessWiMAX] "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplashx64-Run: [TosNC] C:\Program Files (x86)\Toshiba\BulletinBoard\TosNcCore.exex64-Run: [igfxTray] C:\windows\System32\igfxtray.exex64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exex64-Run: [Persistence] C:\windows\System32\igfxpers.exex64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dllx64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dllx64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dllx64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-Notify: igfxcui - igfxdev.dllx64-SSODL: WebCheck - <orphaned>.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\h64r8vk5.default\FF - prefs.js: browser.search.selectedEngine - FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLLFF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLLFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dllFF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dllFF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\Musicnotes\npmusicn.dllFF - plugin: C:\Program Files (x86)\Musicnotes\NPSibelius.dllFF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dllFF - plugin: C:\Users\Owner\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dllFF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dllFF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dllFF - plugin: C:\windows\SysWOW64\npdeployJava1.dllFF - plugin: C:\windows\SysWOW64\npmproxy.dll.============= SERVICES / DRIVERS ===============.R0 Lbd;Lbd;C:\windows\System32\drivers\Lbd.sys [2011-1-30 69152]R0 Thpdrv;TOSHIBA HDD Protection Driver;C:\windows\System32\drivers\thpdrv.sys [2009-6-29 34880]R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;C:\windows\System32\drivers\Thpevm.sys [2009-6-29 14784]R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\drivers\tos_sps64.sys [2010-8-19 482384]R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\windows\System32\drivers\klim6.sys [2012-8-2 28504]R1 kltdi;kltdi;C:\windows\System32\drivers\kltdi.sys [2012-6-8 54368]R1 kneps;kneps;C:\windows\System32\drivers\kneps.sys [2012-8-13 178448]R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -r --> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -r [?]R2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [2009-12-29 404992]R2 IntuitUpdateServiceV4;Intuit Update Service v4;C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [2012-8-23 13672]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-8-22 701512]R2 PfFilter;PfFilter;C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2011-7-2 36792]R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2010-4-6 258928]R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\drivers\TVALZFL.sys [2009-6-19 14472]R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-8-19 2320920]R2 WiMAXAppSrv;Intel® PROSet/Wireless WiMAX Service;C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [2009-12-29 911360]R3 bpenum;bpenum;C:\windows\System32\drivers\bpenum.sys [2009-12-22 71168]R3 bpmp;bpmp;C:\windows\System32\drivers\bpmp.sys [2009-12-22 174592]R3 bpusb;bpusb;C:\windows\System32\drivers\bpusb.sys [2009-12-22 81920]R3 HECIx64;Intel® Management Engine Interface;C:\windows\System32\drivers\HECIx64.sys [2010-8-19 56344]R3 Impcd;Impcd;C:\windows\System32\drivers\Impcd.sys [2010-2-26 158976]R3 IntcDAud;Intel® Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2010-8-30 289280]R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\windows\System32\drivers\klkbdflt.sys [2012-10-25 29016]R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\windows\System32\drivers\klmouflt.sys [2012-10-25 29528]R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2013-8-22 25928]R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\windows\System32\drivers\NETw5s64.sys [2010-5-31 7689216]R3 PGEffect;Pangu effect driver;C:\windows\System32\drivers\PGEffect.sys [2010-8-19 35008]R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2010-8-19 331880]R3 wdkmd;Intel WiDi KMD;C:\windows\System32\drivers\WDKMD.sys [2010-6-18 39832]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S3 acpials;ALS Sensor Filter;C:\windows\System32\drivers\acpials.sys [2009-7-14 9728]S3 fssfltr;fssfltr;C:\windows\System32\drivers\fssfltr.sys [2010-10-24 48488]S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-23 1493352]S3 JMCR;JMCR;C:\windows\System32\drivers\jmcr.sys [2011-5-26 164464]S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-3-5 340240]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2012-11-9 19456]S3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2010-8-19 54136]S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-2-5 137560]S3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2010-2-23 835952]S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2012-11-9 57856]S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2010-10-24 1255736]S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184].=============== Created Last 30 ================.2013-08-22 23:05:38 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9D1C7685-79E0-4809-AF3F-437BC7FE0981}\offreg.dll2013-08-22 22:26:14 25928 ----a-w- C:\windows\System32\drivers\mbam.sys2013-08-22 22:23:52 9460976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9D1C7685-79E0-4809-AF3F-437BC7FE0981}\mpengine.dll2013-08-22 22:23:29 -------- d-----w- C:\1fefe094cb4892356d0d13eeb7625f1b2013-08-14 22:27:28 224256 ----a-w- C:\windows\System32\wintrust.dll2013-08-14 22:26:59 39936 ----a-w- C:\windows\System32\drivers\tssecsrv.sys2013-07-31 11:47:22 -------- d-----w- C:\windows\System32\MRT2013-07-31 10:21:09 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable).==================== Find3M ====================.2013-08-22 23:02:30 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-08-22 23:02:30 692104 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe2013-07-26 05:13:37 2241024 ----a-w- C:\windows\System32\wininet.dll2013-07-26 05:12:08 3958784 ----a-w- C:\windows\System32\jscript9.dll2013-07-26 05:12:04 136704 ----a-w- C:\windows\System32\iesysprep.dll2013-07-26 05:12:03 67072 ----a-w- C:\windows\System32\iesetup.dll2013-07-26 03:35:08 2706432 ----a-w- C:\windows\System32\mshtml.tlb2013-07-26 03:13:24 1767936 ----a-w- C:\windows\SysWow64\wininet.dll2013-07-26 03:12:04 2877440 ----a-w- C:\windows\SysWow64\jscript9.dll2013-07-26 03:12:00 61440 ----a-w- C:\windows\SysWow64\iesetup.dll2013-07-26 03:12:00 109056 ----a-w- C:\windows\SysWow64\iesysprep.dll2013-07-26 02:49:14 2706432 ----a-w- C:\windows\SysWow64\mshtml.tlb2013-07-26 02:39:38 89600 ----a-w- C:\windows\System32\RegisterIEPKEYs.exe2013-07-26 01:59:38 71680 ----a-w- C:\windows\SysWow64\RegisterIEPKEYs.exe2013-07-25 09:25:54 1888768 ----a-w- C:\windows\System32\WMVDECOD.DLL2013-07-25 08:57:27 1620992 ----a-w- C:\windows\SysWow64\WMVDECOD.DLL2013-07-19 01:58:42 2048 ----a-w- C:\windows\System32\tzres.dll2013-07-19 01:41:01 2048 ----a-w- C:\windows\SysWow64\tzres.dll2013-07-09 06:03:30 5550528 ----a-w- C:\windows\System32\ntoskrnl.exe2013-07-09 05:54:22 1732032 ----a-w- C:\windows\System32\ntdll.dll2013-07-09 05:53:12 243712 ----a-w- C:\windows\System32\wow64.dll2013-07-09 05:51:16 1217024 ----a-w- C:\windows\System32\rpcrt4.dll2013-07-09 05:46:20 184320 ----a-w- C:\windows\System32\cryptsvc.dll2013-07-09 05:46:20 1472512 ----a-w- C:\windows\System32\crypt32.dll2013-07-09 05:46:20 139776 ----a-w- C:\windows\System32\cryptnet.dll2013-07-09 05:03:34 3968960 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe2013-07-09 05:03:34 3913664 ----a-w- C:\windows\SysWow64\ntoskrnl.exe2013-07-09 04:53:47 1292192 ----a-w- C:\windows\SysWow64\ntdll.dll2013-07-09 04:52:33 663552 ----a-w- C:\windows\SysWow64\rpcrt4.dll2013-07-09 04:52:33 5120 ----a-w- C:\windows\SysWow64\wow32.dll2013-07-09 04:52:10 175104 ----a-w- C:\windows\SysWow64\wintrust.dll2013-07-09 04:46:31 140288 ----a-w- C:\windows\SysWow64\cryptsvc.dll2013-07-09 04:46:31 1166848 ----a-w- C:\windows\SysWow64\crypt32.dll2013-07-09 04:46:31 103936 ----a-w- C:\windows\SysWow64\cryptnet.dll2013-07-09 04:45:07 44032 ----a-w- C:\windows\apppatch\acwow64.dll2013-07-09 02:49:42 25600 ----a-w- C:\windows\SysWow64\setup16.exe2013-07-09 02:49:41 7680 ----a-w- C:\windows\SysWow64\instnm.exe2013-07-09 02:49:39 14336 ----a-w- C:\windows\SysWow64\ntvdm64.dll2013-07-09 02:49:38 2048 ----a-w- C:\windows\SysWow64\user.exe2013-07-06 06:03:53 1910208 ----a-w- C:\windows\System32\drivers\tcpip.sys2013-06-19 10:41:58 54368 ----a-w- C:\windows\System32\drivers\kltdi.sys2013-06-05 03:34:27 3153920 ----a-w- C:\windows\System32\win32k.sys2013-06-04 06:00:13 624128 ----a-w- C:\windows\System32\qedit.dll2013-06-04 04:53:07 509440 ----a-w- C:\windows\SysWow64\qedit.dll.============= FINISH: 18:48:05.37 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1Install Date: 10/24/2010 2:02:00 AMSystem Uptime: 8/22/2013 2:57:48 PM (4 hours ago).Motherboard: TOSHIBA | | NWQAAProcessor: Intel® Core i3 CPU M 370 @ 2.40GHz | CPU | 911/133mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 453 GiB total, 398.107 GiB free.D: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP333: 7/21/2013 6:44:40 PM - Windows UpdateRP334: 7/26/2013 6:18:37 AM - Windows UpdateRP335: 7/30/2013 6:04:47 AM - Windows UpdateRP336: 7/31/2013 6:46:41 AM - Windows UpdateRP337: 8/7/2013 5:54:17 AM - Windows UpdateRP338: 8/13/2013 5:17:42 AM - Windows UpdateRP339: 8/14/2013 5:40:15 AM - Windows UpdateRP340: 8/14/2013 5:41:36 PM - Windows UpdateRP341: 8/19/2013 8:37:40 PM - Removed Skype™ 6.3RP342: 8/22/2013 5:23:19 PM - Windows Update.==== Installed Programs ======================.Adobe Flash Player 11 ActiveXAdobe Flash Player 11 PluginAdobe Reader XI (11.0.03)Amazon MP3 Downloader 1.0.17Best Buy pc appContent TransferD3DX10Definition Update for Microsoft Office 2010 (KB982726) 32-Bit EditionEvernote v. 4.6Feedback ToolGoogle ChromeGoogle Talk PluginGoogle Update HelperIntel PROSet WirelessIntel WiMAX TutorialIntel® Graphics Media Accelerator DriverIntel® Management Engine ComponentsIntel® PROSet/Wireless WiFi SoftwareIntel® Rapid Storage TechnologyIntel® PROSet/Wireless WiMAX SoftwareIntel® Wireless DisplayJMicron Flash Media Controller DriverJunk Mail filter updateKaspersky Anti-Virus 2013Malwarebytes Anti-Malware version 1.75.0.1300Mesh RuntimeMessenger CompanionMicrosoft .NET Framework 4 Client ProfileMicrosoft Application Error ReportingMicrosoft Office 2010Microsoft Office 2010 Service Pack 1 (SP1)Microsoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Home and Business 2010Microsoft Office Office 64-bit Components 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook ConnectorMicrosoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared 64-bit MUI (English) 2010Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Single Image 2010Microsoft Office Word MUI (English) 2010Microsoft SilverlightMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Mozilla Firefox 6.0 (x86 en-US)MSVCRTMSVCRT_amd64Musicnotes Software Suite 1.7.2PlayReady PC Runtime amd64Protected FolderRealtek Ethernet Controller Driver For Windows 7Realtek High Definition Audio DriverRhapsodySansa UpdaterSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2160841)Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit EditionSecurity Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit EditionSecurity Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553091)Security Update for Microsoft Office 2010 (KB2553096)Security Update for Microsoft Office 2010 (KB2553371) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553447) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2589320) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2598243) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687276) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687501) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687510) 32-Bit EditionSecurity Update for Microsoft OneNote 2010 (KB2760600) 32-Bit EditionSecurity Update for Microsoft Publisher 2010 (KB2553147) 32-Bit EditionSecurity Update for Microsoft Visio 2010 (KB2810068) 32-Bit EditionSecurity Update for Microsoft Visio Viewer 2010 (KB2687505) 32-Bit EditionSecurity Update for Microsoft Word 2010 (KB2760410) 32-Bit EditionSynaptics Pointing Device DriverSystem Requirements Lab for IntelSystem Requirements Lab for Intel (64-bit)TOSHIBA Application InstallerToshiba Book PlaceTOSHIBA Bulletin BoardTOSHIBA Disc CreatorTOSHIBA DVD PLAYERTOSHIBA eco UtilityTOSHIBA Face RecognitionTOSHIBA Flash Cards Support UtilityTOSHIBA Hardware SetupTOSHIBA HDD ProtectionTOSHIBA HDD/SSD AlertTOSHIBA Media ControllerTOSHIBA Media Controller Plug-inTOSHIBA PC Health MonitorTOSHIBA Quality ApplicationTOSHIBA Recovery Media CreatorTOSHIBA ReelTimeTOSHIBA Service StationTOSHIBA Sleep UtilityTOSHIBA Supervisor PasswordTOSHIBA Value Added PackageTOSHIBA Web Camera ApplicationToshibaRegistrationTurboTax 2012TurboTax 2012 wiliperTurboTax 2012 WinPerFedFormsetTurboTax 2012 WinPerReleaseEngineTurboTax 2012 WinPerTaxSupportTurboTax 2012 wrapperUpdate for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)Update for Microsoft .NET Framework 4 Client Profile (KB2836939)Update for Microsoft Office 2010 (KB2494150)Update for Microsoft Office 2010 (KB2553065)Update for Microsoft Office 2010 (KB2553181) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553267) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553310) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553378) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2566458)Update for Microsoft Office 2010 (KB2596964) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2598242) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687503) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687509) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2767886) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2553290) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2597090) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2687623) 32-Bit EditionUpdate for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2598240) 32-Bit EditionUpdate for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit EditionUtility Common DriverVC80CRTRedist - 8.0.50727.6195Visual C++ 2008 x86 Runtime - (v9.0.30729)Visual C++ 2008 x86 Runtime - v9.0.30729.01Walgreens PictureMoverWindows Live Communications PlatformWindows Live EssentialsWindows Live Family SafetyWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MailWindows Live MeshWindows Live Mesh ActiveX Control for Remote ConnectionsWindows Live MessengerWindows Live Messenger Companion CoreWindows Live MIME IFilterWindows Live Movie MakerWindows Live Photo CommonWindows Live Photo GalleryWindows Live PIMT PlatformWindows Live Remote ClientWindows Live Remote Client ResourcesWindows Live Remote ServiceWindows Live Remote Service ResourcesWindows Live SOXEWindows Live SOXE DefinitionsWindows Live SyncWindows Live UX PlatformWindows Live UX Platform Language PackWindows Live WriterWindows Live Writer Resources.==== Event Viewer Messages From Past Week ========.8/19/2013 6:38:58 AM, Error: Service Control Manager [7023] - The Superfetch service terminated with the following error: The system cannot find the file specified.8/19/2013 6:38:08 AM, Error: Service Control Manager [7000] - The MCSTRM service failed to start due to the following error: The system cannot find the file specified.8/19/2013 6:36:56 AM, Error: Microsoft-Windows-WLAN-AutoConfig [10003] - WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\windows\System32\IWMSSvc.dll.==== End Of File ===========================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.