Jump to content

Classie83

Honorary Members
 View Profile  See their activity

  • Posts

    27

  • Joined

  • Last visited

 Content Type 

Everything posted by Classie83

  1. Classie83
    Hi. I ran a scan because my computer has been acting up (task bar freezing up etc.) I'm accessing it in safe mode w/networking and Malwarebytes picked up the following: PUM.UserWload and Trojan.0Access. I've run the requested dds scan and here are the logs. Any help will be greatly appreciated! . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . . ==== Disk Partitions ========================= . . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . Registry Patch to arrange icons in Device and Printers folder of Windows 7 Update for Microsoft Office 2007 (KB2508958) Access Help Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 9.1 AMD USB Filter Driver ATI Catalyst Install Manager ATI Uninstaller Bing Bar Bing Rewards Client Installer Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish Cisco EAP-FAST Module Cisco LEAP Module Cisco PEAP Module Conexant CX20582 SmartAudio HD Coupon Printer for Windows HP Photo Creations HP Photosmart 6510 series Basic Device Software HP Photosmart 6510 series Help HP Photosmart 6510 series Product Improvement Study HP Update HUAWEI DataCard Driver 3.05 Integrated Camera Java Auto Updater Java 6 Update 29 Lenovo System Interface Driver Lenovo Warranty Information Lenovo Welcome LiveUpdate 3.3 (Symantec Corporation) Malwarebytes Anti-Malware version 1.60.0.1800 Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office File Validation Add-In Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 MimioStudio MSXML 4.0 SP2 (KB973688) OGA Notifier 2.0.0048.0 On Screen Display Realtek Ethernet Controller Driver Realtek USB 2.0 Card Reader Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition Symantec Endpoint Protection System Update ThinkPad Bluetooth with Enhanced Data Rate Software ThinkPad FullScreen Magnifier ThinkPad Power Management Driver ThinkPad Power Manager ThinkPad UltraNav Driver ThinkPad UltraNav Utility ThinkPad Wireless LAN Adapter Software ThinkVantage Access Connections ThinkVantage Active Protection System Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760586) 32-Bit Edition Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Verizon Wireless Mobile Broadband Self Activation Windows Driver Package - Broadcom (BTHUSB) Bluetooth (04/08/2010 6.3.5.430) Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9407) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) Windows Driver Package - Lenovo 1.60.0.4 (11/18/2009 1.60.0.4) WinZip . ==== End Of File =========================== DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK Internet Explorer: 9.0.8112.16457 Run by Teacher at 14:23:55 on 2013-01-10 . ============== Running Processes ================ . C:\windows\system32\wininit.exe C:\windows\system32\lsm.exe C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe C:\windows\Explorer.EXE C:\windows\system32\ctfmon.exe C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\windows\Explorer.EXE C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\windows\system32\ctfmon.exe C:\windows\system32\NOTEPAD.EXE C:\windows\system32\NOTEPAD.EXE C:\windows\Explorer.EXE C:\windows\system32\ctfmon.exe C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\windows\system32\conhost.exe C:\windows\system32\svchost.exe -k DcomLaunch C:\windows\system32\svchost.exe -k RPCSS C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\windows\system32\svchost.exe -k netsvcs C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted C:\windows\system32\svchost.exe -k LocalService C:\windows\system32\svchost.exe -k NetworkService C:\windows\system32\svchost.exe -k LocalServiceNoNetwork C:\windows\System32\svchost.exe -k secsvcs . ============== Pseudo HJT Report =============== . uStart Page = hxxps://www.google.com/ uDefault_Page_URL = hxxp://lenovo.msn.com uWindows: Load = c:\users\teacher\locals~1\temp\msauafifp.pif BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\microsoft\bingbar\7.1.391.0\BingExt.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil10o_ActiveX.exe -update activex mRun: [TPHOTKEY] c:\program files\lenovo\hotkey\TPOSDSVC.exe mRun: [TpShocks] TpShocks.exe mRun: [PWMTRV] rundll32 c:\progra~1\thinkpad\utilit~1\PWMTR32V.DLL,PwrMgrBkGndMonitor mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe" mRun: [AcWin7Hlpr] c:\program files\lenovo\access connections\AcTBenabler.exe mRun: [smartAudio] c:\program files\conexant\saii\SAIICpl.exe /t mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRunOnce: [!DPLauncher] "c:\program files\microsoft\defaultpack\DPLauncher.EXE" partner=p001 comb=9 StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\thinkpad\bluetooth software\BTTray.exe StartupFolder: c:\programdata\microsoft\windows\start menu\programs\startup\MapKdrive.cmd StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mimios~1.lnk - c:\program files\mimio\mimiostudio\mimiosys.exe mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000 IE: Send image to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm IE: Send page to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie.htm IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\thinkpad\bluetooth software\btsendto_ie.htm DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab TCP: NameServer = 192.168.0.1 TCP: Interfaces\{0D127773-EB4A-4DE2-81E8-90085945647E} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{354E1893-2EA3-4DF4-9194-66FF7C2ACD44} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{424518D1-6031-4FB4-B7C1-06C0000235C4} : DHCPNameServer = 10.222.254.87 10.222.254.88 TCP: Interfaces\{4C8F4FC0-1DB8-4167-8112-D124C63BE098} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{553CF1C0-7748-423B-9BAA-6A76EACDCE70} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{583602CE-97BC-4531-91E8-C7BE00BE4C31} : DHCPNameServer = 192.168.0.1 TCP: Interfaces\{583602CE-97BC-4531-91E8-C7BE00BE4C31}\14454503139313 : DHCPNameServer = 192.168.1.254 TCP: Interfaces\{87FBA891-857F-446C-BCBF-5F0C741B0BE1} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{A617F7A6-59D8-4445-B59D-791D636F2CA3} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{AA04B850-BDA7-444F-A55D-F042687B9E6F} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{B0E6EED1-C591-468E-8D83-C1D654B248CF} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{B8795064-F4C4-4F75-95F0-35358E65FA61} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{E8E0C924-BEC6-4252-AEDE-D974081D2C2A} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{FC658BEE-FA0A-4129-A382-7818BA35444D} : DHCPNameServer = 10.1.1.10 10.1.1.1 SSODL: WebCheck - <orphaned> LSA: Notification Packages = scecli ACGina . ============= SERVICES / DRIVERS =============== . . =============== Created Last 30 ================ . 2013-01-09 18:28:59 626688 ----a-w- c:\windows\system32\usp10.dll 2013-01-09 18:28:57 2345984 ----a-w- c:\windows\system32\win32k.sys 2013-01-09 18:28:55 492032 ----a-w- c:\windows\system32\win32spl.dll 2013-01-09 18:28:02 1389568 ----a-w- c:\windows\system32\msxml6.dll 2013-01-09 18:24:46 46592 ----a-w- c:\windows\system32\fpb.rs 2013-01-08 15:27:41 6812136 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{de5e0150-e825-4655-85f5-47d8ce7fc6ed}\mpengine.dll 2012-12-30 02:27:23 -------- d-----w- c:\users\teacher\appdata\roaming\Malwarebytes 2012-12-21 19:46:39 34304 ----a-w- c:\windows\system32\atmlib.dll 2012-12-21 19:46:39 295424 ----a-w- c:\windows\system32\atmfd.dll 2012-12-12 13:31:09 376832 ----a-w- c:\windows\system32\dpnet.dll 2012-12-12 13:30:47 2048 ----a-w- c:\windows\system32\tzres.dll . ==================== Find3M ==================== . 2012-12-07 12:26:17 308736 ----a-w- c:\windows\system32\Wpc.dll 2012-12-07 12:20:43 2576384 ----a-w- c:\windows\system32\gameux.dll 2012-11-30 04:53:34 169984 ----a-w- c:\windows\system32\winsrv.dll 2012-11-30 04:47:45 293376 ----a-w- c:\windows\system32\KernelBase.dll 2012-11-30 02:55:25 271360 ----a-w- c:\windows\system32\conhost.exe 2012-11-30 02:38:59 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll 2012-11-30 02:38:59 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2012-11-30 02:38:59 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2012-11-30 02:38:59 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll 2012-11-23 02:48:41 49152 ----a-w- c:\windows\system32\taskhost.exe 2012-11-20 04:51:09 220160 ----a-w- c:\windows\system32\ncrypt.dll 2012-11-14 02:09:22 1800704 ----a-w- c:\windows\system32\jscript9.dll 2012-11-14 01:58:15 1427968 ----a-w- c:\windows\system32\inetcpl.cpl 2012-11-14 01:57:37 1129472 ----a-w- c:\windows\system32\wininet.dll 2012-11-14 01:49:25 142848 ----a-w- c:\windows\system32\ieUnatt.exe 2012-11-14 01:48:27 420864 ----a-w- c:\windows\system32\vbscript.dll 2012-11-14 01:44:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2012-10-16 07:39:52 561664 ----a-w- c:\windows\apppatch\AcLayers.dll . ============= FINISH: 14:24:14.80 =============== Malwarebytes Anti-Malware (PRO) 1.70.0.1100 www.malwarebytes.org Database version: v2013.01.10.10 Windows 7 Service Pack 1 x86 NTFS (Safe Mode/Networking) Internet Explorer 9.0.8112.16421 Teacher :: 1282-SPROUTS1 [administrator] Protection: Disabled 1/10/2013 2:28:27 PM mbam-log-2013-01-10 (14-28-27).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 244903 Time elapsed: 2 minute(s), 31 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 1 HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|Load (PUM.UserWLoad) -> Data: C:\Users\Teacher\LOCALS~1\Temp\msauafifp.pif -> Delete on reboot. Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 1 C:\$Recycle.Bin\S-1-5-21-3698045114-3507409308-3228407656-1004\$4341bd91f259578dbf8874db5a5cba77\n (Trojan.0Access) -> Quarantined and deleted successfully. (end)
  2. Classie83
    Hi. I'm not sure why this was posted in the general forum. I'll re-post in the correct forum. Thanks.
  3. Classie83
    Hi. My computer has been taking forever to start up. The task bar is apparently frozen (the blue circle just keeps going around and around), so I can't do anything in normal mode. I am accessing the internet using safe mode w/networking. I ran a Malwarebytes scan and apparently PUM.WUserload is coming up. I've deleted it, but it keeps reappearing on restart. Any help will be greatly appreciated. Here are the dds logs. DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK Internet Explorer: 9.0.8112.16457 Run by Director at 14:02:35 on 2013-01-10 . ============== Running Processes ================ . C:\windows\system32\wininit.exe C:\windows\system32\lsm.exe C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe C:\windows\Explorer.EXE C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe C:\windows\system32\ctfmon.exe C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\windows\Explorer.EXE C:\windows\system32\ctfmon.exe C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\windows\Explorer.EXE C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\windows\system32\ctfmon.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\windows\system32\conhost.exe C:\windows\system32\svchost.exe -k DcomLaunch C:\windows\system32\svchost.exe -k RPCSS C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\windows\system32\svchost.exe -k netsvcs C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted C:\windows\system32\svchost.exe -k LocalService C:\windows\system32\svchost.exe -k NetworkService C:\windows\system32\svchost.exe -k LocalServiceNoNetwork C:\windows\System32\svchost.exe -k secsvcs . ============== Pseudo HJT Report =============== . uStart Page = hxxps://mybrightweb.brighthorizons.com/ uDefault_Page_URL = hxxp://lenovo.msn.com BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\microsoft\bingbar\7.1.391.0\BingExt.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil10o_ActiveX.exe -update activex mRun: [TPHOTKEY] c:\program files\lenovo\hotkey\TPOSDSVC.exe mRun: [TpShocks] TpShocks.exe mRun: [PWMTRV] rundll32 c:\progra~1\thinkpad\utilit~1\PWMTR32V.DLL,PwrMgrBkGndMonitor mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe" mRun: [AcWin7Hlpr] c:\program files\lenovo\access connections\AcTBenabler.exe mRun: [smartAudio] c:\program files\conexant\saii\SAIICpl.exe /t mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRunOnce: [!DPLauncher] "c:\program files\microsoft\defaultpack\DPLauncher.EXE" partner=p001 comb=9 StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\thinkpad\bluetooth software\BTTray.exe StartupFolder: c:\programdata\microsoft\windows\start menu\programs\startup\MapKdrive.cmd StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mimios~1.lnk - c:\program files\mimio\mimiostudio\mimiosys.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000 IE: Send image to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm IE: Send page to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie.htm IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\thinkpad\bluetooth software\btsendto_ie.htm DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab TCP: NameServer = 192.168.0.1 TCP: Interfaces\{0D127773-EB4A-4DE2-81E8-90085945647E} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{354E1893-2EA3-4DF4-9194-66FF7C2ACD44} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{424518D1-6031-4FB4-B7C1-06C0000235C4} : DHCPNameServer = 10.222.254.87 10.222.254.88 TCP: Interfaces\{4C8F4FC0-1DB8-4167-8112-D124C63BE098} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{553CF1C0-7748-423B-9BAA-6A76EACDCE70} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{583602CE-97BC-4531-91E8-C7BE00BE4C31} : DHCPNameServer = 192.168.0.1 TCP: Interfaces\{583602CE-97BC-4531-91E8-C7BE00BE4C31}\14454503139313 : DHCPNameServer = 192.168.1.254 TCP: Interfaces\{87FBA891-857F-446C-BCBF-5F0C741B0BE1} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{A617F7A6-59D8-4445-B59D-791D636F2CA3} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{AA04B850-BDA7-444F-A55D-F042687B9E6F} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{B0E6EED1-C591-468E-8D83-C1D654B248CF} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{B8795064-F4C4-4F75-95F0-35358E65FA61} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{E8E0C924-BEC6-4252-AEDE-D974081D2C2A} : DHCPNameServer = 10.1.1.10 10.1.1.1 TCP: Interfaces\{FC658BEE-FA0A-4129-A382-7818BA35444D} : DHCPNameServer = 10.1.1.10 10.1.1.1 SSODL: WebCheck - <orphaned> LSA: Notification Packages = scecli ACGina . ============= SERVICES / DRIVERS =============== . . =============== Created Last 30 ================ . 2013-01-09 18:28:59 626688 ----a-w- c:\windows\system32\usp10.dll 2013-01-09 18:28:57 2345984 ----a-w- c:\windows\system32\win32k.sys 2013-01-09 18:28:55 492032 ----a-w- c:\windows\system32\win32spl.dll 2013-01-09 18:28:02 1389568 ----a-w- c:\windows\system32\msxml6.dll 2013-01-09 18:24:46 46592 ----a-w- c:\windows\system32\fpb.rs 2013-01-08 15:27:41 6812136 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{de5e0150-e825-4655-85f5-47d8ce7fc6ed}\mpengine.dll 2012-12-21 19:46:39 34304 ----a-w- c:\windows\system32\atmlib.dll 2012-12-21 19:46:39 295424 ----a-w- c:\windows\system32\atmfd.dll 2012-12-12 13:31:09 376832 ----a-w- c:\windows\system32\dpnet.dll 2012-12-12 13:30:47 2048 ----a-w- c:\windows\system32\tzres.dll . ==================== Find3M ==================== . 2012-12-07 12:26:17 308736 ----a-w- c:\windows\system32\Wpc.dll 2012-12-07 12:20:43 2576384 ----a-w- c:\windows\system32\gameux.dll 2012-11-30 04:53:34 169984 ----a-w- c:\windows\system32\winsrv.dll 2012-11-30 04:47:45 293376 ----a-w- c:\windows\system32\KernelBase.dll 2012-11-30 02:55:25 271360 ----a-w- c:\windows\system32\conhost.exe 2012-11-30 02:38:59 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll 2012-11-30 02:38:59 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2012-11-30 02:38:59 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2012-11-30 02:38:59 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll 2012-11-23 02:48:41 49152 ----a-w- c:\windows\system32\taskhost.exe 2012-11-20 04:51:09 220160 ----a-w- c:\windows\system32\ncrypt.dll 2012-11-14 02:09:22 1800704 ----a-w- c:\windows\system32\jscript9.dll 2012-11-14 01:58:15 1427968 ----a-w- c:\windows\system32\inetcpl.cpl 2012-11-14 01:57:37 1129472 ----a-w- c:\windows\system32\wininet.dll 2012-11-14 01:49:25 142848 ----a-w- c:\windows\system32\ieUnatt.exe 2012-11-14 01:48:27 420864 ----a-w- c:\windows\system32\vbscript.dll 2012-11-14 01:44:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2012-10-16 07:39:52 561664 ----a-w- c:\windows\apppatch\AcLayers.dll . ============= FINISH: 14:03:01.86 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . . ==== Disk Partitions ========================= . . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . Registry Patch to arrange icons in Device and Printers folder of Windows 7 Update for Microsoft Office 2007 (KB2508958) Access Help Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 9.1 AMD USB Filter Driver ATI Catalyst Install Manager ATI Uninstaller Bing Bar Bing Rewards Client Installer Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish Cisco EAP-FAST Module Cisco LEAP Module Cisco PEAP Module Conexant CX20582 SmartAudio HD Coupon Printer for Windows HP Photo Creations HP Photosmart 6510 series Basic Device Software HP Photosmart 6510 series Help HP Photosmart 6510 series Product Improvement Study HP Update HUAWEI DataCard Driver 3.05 Integrated Camera Java Auto Updater Java 6 Update 29 Lenovo System Interface Driver Lenovo Warranty Information Lenovo Welcome LiveUpdate 3.3 (Symantec Corporation) Malwarebytes Anti-Malware version 1.60.0.1800 Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office File Validation Add-In Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 MimioStudio MSXML 4.0 SP2 (KB973688) OGA Notifier 2.0.0048.0 On Screen Display Realtek Ethernet Controller Driver Realtek USB 2.0 Card Reader Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition Symantec Endpoint Protection System Update ThinkPad Bluetooth with Enhanced Data Rate Software ThinkPad FullScreen Magnifier ThinkPad Power Management Driver ThinkPad Power Manager ThinkPad UltraNav Driver ThinkPad UltraNav Utility ThinkPad Wireless LAN Adapter Software ThinkVantage Access Connections ThinkVantage Active Protection System Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760586) 32-Bit Edition Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Verizon Wireless Mobile Broadband Self Activation Windows Driver Package - Broadcom (BTHUSB) Bluetooth (04/08/2010 6.3.5.430) Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9407) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) Windows Driver Package - Lenovo 1.60.0.4 (11/18/2009 1.60.0.4) WinZip . ==== End Of File ===========================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.