Jump to content

tomcat810

Members
  • Posts

    4
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Thank you for your quick reply. I completed both scans and have attached the files you requested, hope you can resolve the issue with me! Thanks again, James mbar-log-2014-01-23 (16-46-32).txt Addition.txt FRST_23-01-2014_18-38-41.txt
  2. Hello everyone, Newbie here.. So I installed originally installed the free version of Malwarebytes because I've been having an issue obviously with some form of malware installed on my computer, duh. I came to the exact same conclusion where I could not login to my profile unless it was under safe mode so I restored the computer to a previous point where Malwarebytes was not installed and everything was back to normal. The definition of normal being that everything worked correctly including my sneaky ninja @$$hole malware buddy still lurking in the shadows and popping up random ads whenever it so pleased. So then I read somewhere on this forum that it is much easier to get support if I just went PRO. Long story short, here I am. I'm back with the exact same problem except this time I have proof of ownership and hopefully someone here can help me actually get back into my computer! As I read on the "I'm infected - What do I do now?" page, I downloaded both of the DDS files and here there are.. DDS.TXT: DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORKInternet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.45.2Run by James at 14:03:52 on 2014-01-23Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6058.5119 [GMT -5:00].AV: Ad-Aware Antivirus *Enabled/Updated* {D87B6541-12A1-DAEA-0033-9B8057AAB996}SP: Ad-Aware Antivirus *Enabled/Updated* {631A84A5-349B-D564-3A83-A0F22C2DF32B}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}FW: Ad-Aware Firewall *Disabled* {E040E464-58CE-DBB2-2B6C-32B5A979FEED}.============== Running Processes ===============.C:\windows\system32\lsm.exeC:\windows\system32\svchost.exe -k DcomLaunchC:\windows\system32\svchost.exe -k RPCSSC:\windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\windows\system32\svchost.exe -k netsvcsC:\windows\system32\svchost.exe -k LocalServiceC:\windows\system32\svchost.exe -k NetworkServiceC:\windows\system32\svchost.exe -k LocalSystemNetworkRestrictedC:\windows\system32\svchost.exe -k LocalServiceNoNetworkC:\windows\system32\mfevtps.exeC:\windows\System32\svchost.exe -k secsvcsC:\windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\windows\Explorer.EXEC:\windows\system32\ctfmon.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\system32\wbem\wmiprvse.exeC:\windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = about:blankmStart Page = about:blankuURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>uURLSearchHooks: YTNavAssistPlugin Class: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dllmURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>mWinlogon: Userinit = userinit.exe,BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dllBHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: EgisPBIE Class: {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} - C:\Program Files (x86)\EgisTec BioExcess\EgisPBIE.dllBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllTB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dllTB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dllTB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dlluRun: [Facebook Update] "C:\Users\James\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserveruRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunuRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostartuRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exeuRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exemRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -dmRun: [VitaKeyTSR] C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe /runmRun: [PLTSR] "C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe"mRun: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exemRun: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"mRun: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /smRun: [updateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"mRun: [updatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"mRun: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exemRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exemRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"mRun: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXEmRun: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServicesmRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottimemRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silentmRunOnce: [Malwarebytes Anti-Malware (cleanup)] rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScriptStartupFolder: C:\Users\James\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MYPCBA~1.LNK - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MICROS~1.LNK - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXEuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllTCP: NameServer = 192.168.1.254TCP: Interfaces\{76A95530-0510-45C3-844B-CA851C02AB25} : DHCPNameServer = 192.168.1.254TCP: Interfaces\{76A95530-0510-45C3-844B-CA851C02AB25}\2375942554039343 : DHCPNameServer = 192.168.1.254TCP: Interfaces\{76A95530-0510-45C3-844B-CA851C02AB25}\5455D23547574656E647 : DHCPNameServer = 172.18.64.5TCP: Interfaces\{76A95530-0510-45C3-844B-CA851C02AB25}\661657 : DHCPNameServer = 131.91.129.32 131.91.129.61TCP: Interfaces\{76A95530-0510-45C3-844B-CA851C02AB25}\6616577657563747 : DHCPNameServer = 131.91.131.16 131.91.128.238 131.91.130.201TCP: Interfaces\{76A95530-0510-45C3-844B-CA851C02AB25}\74275656E644F676 : DHCPNameServer = 68.87.74.166 68.87.68.166 192.168.1.1Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLHandler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLLHandler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>LSA: Notification Packages = scecli EgisPwdFilter EgisDSPwdFilter EgisPLPwdFiltermASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-mStart Page = about:blankx64-BHO: EgisPBIE Class: {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} - C:\Program Files (x86)\EgisTec BioExcess\x64\EgisPBIE.dllx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dllx64-Run: [igfxTray] C:\windows\System32\igfxtray.exex64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exex64-Run: [Persistence] C:\windows\System32\igfxpers.exex64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -sx64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exex64-Run: [intelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Trayx64-Run: [intelWirelessWiMAX] "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplashx64-Run: [TpShocks] C:\windows\System32\TpShocks.exex64-Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exex64-Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exex64-Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exex64-Run: [AdAwareTray] "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareTray.exe"x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - <orphaned>x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-Notify: igfxcui - igfxdev.dllx64-SSODL: WebCheck - <orphaned>.============= SERVICES / DRIVERS ===============.R0 fbfmon;fbfmon;C:\windows\System32\drivers\fbfmon.sys [2011-6-14 57952]R0 LHDmgr;LHDmgr;C:\windows\System32\drivers\LhdX64.sys [2011-6-14 39008]R0 TPDIGIMN;TPDIGIMN;C:\windows\System32\drivers\ApsHM64.sys [2011-6-14 23648]R1 avgtp;avgtp;C:\windows\System32\drivers\avgtpx64.sys [2013-10-19 46368]R2 mfehidk;McAfee Inc. mfehidk;C:\windows\System32\drivers\mfehidk.sys [2013-9-24 782360]R2 mfevtp;McAfee Validation Trust Protection Service;C:\windows\System32\mfevtps.exe [2014-1-10 182752]R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\windows\System32\drivers\AcpiVpc.sys [2010-10-25 29792]R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\rtsuvstor.sys [2011-6-14 307304]R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2011-6-14 333928]S1 BPntDrv;BPntDrv;C:\windows\System32\drivers\BPntDrv.sys [2011-6-14 13408]S1 EgisTecFF;EgisTecFF;C:\windows\System32\drivers\EgisTecFF.sys [2011-6-14 55880]S1 mwlPSDFilter;mwlPSDFilter;C:\windows\System32\drivers\mwlPSDFilter.sys [2011-6-14 22912]S1 mwlPSDNServ;mwlPSDNServ;C:\windows\System32\drivers\mwlPSDNserv.sys [2011-6-14 20328]S1 mwlPSDVDisk;mwlPSDVDisk;C:\windows\System32\drivers\mwlPSDVDisk.sys [2011-6-14 62584]S2 BackupStack;Computer Backup (MyPC Backup);C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-9-19 38440]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2013-4-22 822504]S2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [2011-2-27 499200]S2 EgisTec Service Help;EgisTec Service Help;C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe [2010-10-22 327024]S2 EgisTec Service;EgisTec Service;C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe [2010-12-13 703856]S2 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-12-13 650096]S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);C:\windows\System32\drivers\FPSensor.sys [2010-10-31 35952]S2 LavasoftAdAwareService11;Ad-Aware Service 11;C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareService.exe [2013-12-11 513736]S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-21 418376]S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-21 701512]S2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-6-26 523944]S2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-6-14 2656280]S2 Update Whilokii;Update Whilokii;C:\Program Files (x86)\Whilokii\updateWhilokii.exe [2013-10-4 97048]S2 Util Whilokii;Util Whilokii;C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe [2013-10-20 97048]S2 vToolbarUpdater17.0.12;vToolbarUpdater17.0.12;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe [2013-10-19 1734680]S2 WiMAXAppSrv;Intel® PROSet/Wireless WiMAX Service;C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [2011-2-27 885248]S3 bpenum;Intel® Centrino® WiMAX Enumerator;C:\windows\System32\drivers\bpenum.sys [2011-2-17 75264]S3 bpmp;Intel® Centrino® WiMAX 6050 Series;C:\windows\System32\drivers\bpmp.sys [2011-2-17 174080]S3 bpusb;Intel® Centrino® WiMAX 6050 Series Function Driver;C:\windows\System32\drivers\bpusb.sys [2011-2-17 81920]S3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\System32\drivers\clwvd.sys [2010-12-24 31088]S3 gzflt;gzflt;C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys [2013-7-17 138232]S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2013-12-15 111616]S3 IntcDAud;Intel® Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2011-4-15 317440]S3 LSCWinService;LSCWinService;C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2013-9-25 1674720]S3 mbamchameleon;mbamchameleon;C:\windows\System32\drivers\mbamchameleon.sys [2014-1-21 36680]S3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2014-1-21 25928]S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-2 340240]S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2013-12-21 245280]S3 rtsuvc;Lenovo EasyCamera;C:\windows\System32\drivers\rtsuvc.sys [2011-6-14 8200552]S3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2013-6-26 767144]S3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2013-6-26 273576]S3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2013-6-26 28840]S3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2013-6-26 23208]S3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-6-26 207528]S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2011-8-23 1255736]S3 wdkmd;Intel WiDi KMD;C:\windows\System32\drivers\WDKMD.sys [2010-12-1 42392]S3 wsvd;wsvd;C:\windows\System32\drivers\wsvd.sys [2009-7-21 121840]S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184].=============== Created Last 30 ================.2014-01-21 14:27:20 36680 ----a-w- C:\windows\System32\drivers\mbamchameleon.sys2014-01-21 07:41:51 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{644A489C-6B00-4F63-A817-27B229E879F1}\mpengine.dll2014-01-21 05:27:54 99840 ----a-w- C:\windows\System32\drivers\usbccgp.sys2014-01-21 05:27:54 7808 ----a-w- C:\windows\System32\drivers\usbd.sys2014-01-21 05:27:54 53248 ----a-w- C:\windows\System32\drivers\usbehci.sys2014-01-21 05:27:54 343040 ----a-w- C:\windows\System32\drivers\usbhub.sys2014-01-21 05:27:54 325120 ----a-w- C:\windows\System32\drivers\usbport.sys2014-01-21 05:27:54 30720 ----a-w- C:\windows\System32\drivers\usbuhci.sys2014-01-21 05:27:54 25600 ----a-w- C:\windows\System32\drivers\usbohci.sys2014-01-21 05:27:47 3156480 ----a-w- C:\windows\System32\win32k.sys2014-01-21 05:27:44 376768 ----a-w- C:\windows\System32\drivers\netio.sys2014-01-21 05:21:55 25928 ----a-w- C:\windows\System32\drivers\mbam.sys2014-01-11 18:02:24 -------- d-----w- C:\Users\James\AppData\Roaming\LavasoftStatistics2014-01-11 17:44:22 -------- d-----w- C:\Program Files\Lavasoft2014-01-11 17:43:13 -------- d-----w- C:\Program Files\Common Files\Lavasoft2014-01-11 17:22:17 244416 ----a-w- C:\windows\SysWow64\Msflxgrd.ocx2014-01-11 17:22:17 209192 ----a-w- C:\windows\SysWow64\TABCTL32.OCX2014-01-11 17:22:17 203976 ----a-w- C:\windows\SysWow64\RICHTX32.OCX2014-01-11 17:22:17 140288 ----a-w- C:\windows\SysWow64\comdlg32.ocx2014-01-11 17:22:13 -------- d-----w- C:\Users\James\AppData\Roaming\TechCheck2014-01-10 22:25:20 182752 ----a-w- C:\windows\System32\mfevtps.exe2014-01-10 22:25:19 -------- d-----w- C:\Program Files\Common Files\McAfee2014-01-10 22:04:52 -------- d-----w- C:\Program Files (x86)\Citrix2014-01-10 22:04:33 -------- d-----w- C:\Users\James\AppData\Local\Citrix.==================== Find3M ====================.2013-12-18 11:13:56 270496 ------w- C:\windows\System32\MpSigStub.exe2013-11-26 10:19:07 2724864 ----a-w- C:\windows\System32\mshtml.tlb2013-11-26 10:18:23 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll2013-11-26 09:48:07 66048 ----a-w- C:\windows\System32\iesetup.dll2013-11-26 09:46:25 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll2013-11-26 09:23:02 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb2013-11-26 09:18:39 139264 ----a-w- C:\windows\System32\ieUnatt.exe2013-11-26 09:18:09 111616 ----a-w- C:\windows\System32\ieetwcollector.exe2013-11-26 09:16:57 708608 ----a-w- C:\windows\System32\jscript9diag.dll2013-11-26 08:35:02 5769216 ----a-w- C:\windows\System32\jscript9.dll2013-11-26 08:28:16 553472 ----a-w- C:\windows\SysWow64\jscript9diag.dll2013-11-26 08:16:12 4243968 ----a-w- C:\windows\SysWow64\jscript9.dll2013-11-26 08:02:16 1995264 ----a-w- C:\windows\System32\inetcpl.cpl2013-11-26 07:32:06 1928192 ----a-w- C:\windows\SysWow64\inetcpl.cpl2013-11-26 07:07:57 2334208 ----a-w- C:\windows\System32\wininet.dll2013-11-26 06:33:33 1820160 ----a-w- C:\windows\SysWow64\wininet.dll2013-11-23 18:26:20 417792 ----a-w- C:\windows\SysWow64\WMPhoto.dll2013-11-23 17:47:34 465920 ----a-w- C:\windows\System32\WMPhoto.dll2013-11-12 02:23:09 2048 ----a-w- C:\windows\System32\tzres.dll2013-11-12 02:07:29 2048 ----a-w- C:\windows\SysWow64\tzres.dll2013-11-04 21:43:04 782360 ----a-w- C:\windows\System32\drivers\mfehidk.sys2013-11-04 21:39:20 179792 ----a-w- C:\windows\System32\drivers\mfeapfk.sys2013-10-30 02:32:01 335360 ----a-w- C:\windows\System32\msieftp.dll2013-10-30 02:19:52 301568 ----a-w- C:\windows\SysWow64\msieftp.dll2013-02-19 22:31:10 4126720 ----a-w- C:\Program Files (x86)\GUT30FA.tmp.============= FINISH: 14:08:20.68 =============== ATTACH.TXT: .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1Install Date: 8/20/2011 9:29:54 AMSystem Uptime: 1/23/2014 1:01:58 PM (1 hours ago).Motherboard: LENOVO | | Emerald LakeProcessor: Intel® Core i5-2410M CPU @ 2.30GHz | CPU | 2294/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 552 GiB total, 349.718 GiB free.D: is FIXED (NTFS) - 29 GiB total, 22.541 GiB free.F: is CDROM (CDFS).==== Disabled Device Manager Items =============.Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}Description: Security Processor Loader DriverDevice ID: ROOT\LEGACY_SPLDR\0000Manufacturer: Name: Security Processor Loader DriverPNP Device ID: ROOT\LEGACY_SPLDR\0000Service: spldr.Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318}Description: Photosmart D110 seriesDevice ID: ROOT\MULTIFUNCTION\0000Manufacturer: HPName: Photosmart D110 seriesPNP Device ID: ROOT\MULTIFUNCTION\0000Service: .==== System Restore Points ===================.RP140: 1/11/2014 12:42:44 PM - AA11RP141: 1/11/2014 1:11:57 PM - Revo Uninstaller's restore point - McAfee Internet SecurityRP142: 1/15/2014 1:33:16 AM - Windows UpdateRP144: 1/15/2014 7:53:52 PM - Windows Modules InstallerRP145: 1/21/2014 12:27:06 AM - Windows UpdateRP146: 1/21/2014 3:00:11 AM - Windows Update.==== Installed Programs ======================.64 Bit HP CIO Components InstallerActive Protection SystemAd-Aware AntivirusAdAwareInstallerAdAwareUpdaterAdobe AIRAdobe Flash Player 11 ActiveXAdobe Reader 9.5.5Advanced System ProtectorAntimalwareEngineApple Application SupportApple Mobile Device SupportApple Software UpdateBest Buy pc appBioExcessBlackBerry Desktop Software 6.1BonjourBulk Rename Utility 2.7.1.2CyberLink YouCamD3DX10Definition Update for Microsoft Office 2010 (KB982726) 32-Bit EditionDownload Updater (AOL LLC)DriverTuner 3.1.0.1EA SPORTS Game Face Browser Plugin 1.5.3.0EgisTec ES603 WDM DriverEnergy ManagementES603 WDM DriverFacebook Video Calling 2.0.0.447FFmpeg v0.6.2 for AudacityGoogle ChromeGoogle DriveGoogle Toolbar for Internet ExplorerGoogle Update HelperHP Photosmart D110 All-In-One Driver 14.0 Rel. 7iCare Data Recovery Free 5.0iCloudiLividIntel® Control CenterIntel® Management Engine ComponentsIntel® Processor GraphicsIntel® PROSet/Wireless WiFi SoftwareIntel® Rapid Storage TechnologyIntel® Wireless DisplayIntel® PROSet/Wireless WiMAX SoftwareiTunesJava 7 Update 45Java Auto UpdaterJunk Mail filter updateLAME v3.99.3 (for Windows)Lenovo EasyCameraLenovo EE Boot OptimizerLenovo OneKey RecoveryLenovo Security SuiteLenovo Solution CenterMalwarebytes Anti-Malware version 1.75.0.1300Mesh RuntimeMicrosoft .NET Framework 4 Client ProfileMicrosoft Application Error ReportingMicrosoft Office 2010Microsoft Office Click-to-Run 2010Microsoft Office Office 64-bit Components 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Shared 64-bit MUI (English) 2010Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Starter 2010 - EnglishMicrosoft Office Word 2010Microsoft Office Word MUI (English) 2010Microsoft Office XP Professional with FrontPageMicrosoft SilverlightMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Word 2010MobileMe Control PanelMplayerforWindows v2011-03-27MSVCRTMSVCRT_amd64MSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)MyPC Backup Network64Open It!Port LockerPower2GoPowerISOPS_AIO_07_D110_SW_MinQuickTimeRealtek Ethernet Controller Driver For Windows 7Realtek High Definition Audio DriverRealtek USB 2.0 Card ReaderRealtek USB 2.0 Reader DriverRevo Uninstaller 1.95ScanSearch ProtectionSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2478663)Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)Security Update for Microsoft Excel 2010 (KB2826033) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553284) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687423) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826023) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826035) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2850016) 32-Bit EditionService Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit EditionSynaptics Pointing Device DriverToolboxUpdate for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)Update for Microsoft .NET Framework 4 Client Profile (KB2836939)Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2494150)Update for Microsoft Office 2010 (KB2589298) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2589352) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2589375) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2597087) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760598) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2794737) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2826026) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2850079) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2810072) 32-Bit EditionUpdate for Microsoft Word 2010 (KB2837593) 32-Bit EditionUpdate for Zip ExtractoruTorrentControl2 ToolbarVeriFaceVLCVLC media player 1.1.5Windows Driver Package - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1)Windows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MailWindows Live MeshWindows Live Mesh ActiveX Control for Remote ConnectionsWindows Live MessengerWindows Live MIME IFilterWindows Live Movie MakerWindows Live Photo CommonWindows Live Photo GalleryWindows Live PIMT PlatformWindows Live Remote ClientWindows Live Remote Client ResourcesWindows Live Remote ServiceWindows Live Remote Service ResourcesWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWindows Live WriterWindows Live Writer ResourcesXvid Video CodecYahoo! Software UpdateYahoo! ToolbarZip Extractor Packages.==== Event Viewer Messages From Past Week ========.1/23/2014 2:07:04 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.1/23/2014 1:03:06 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.1/23/2014 1:03:05 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}1/23/2014 1:03:05 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}1/23/2014 1:02:59 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}1/23/2014 1:02:52 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}1/23/2014 1:02:43 PM, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:\windows\System32\IWMSSvc.dll Error Code: 211/23/2014 1:02:26 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BPntDrv discache EgisTecFF mwlPSDFilter mwlPSDNServ mwlPSDVDisk SCDEmu spldr Wanarpv61/23/2014 1:02:25 PM, Error: Service Control Manager [7001] - The Client Virtualization Handler service depends on the Application Virtualization Client service which failed to start because of the following error: The dependency service or group failed to start.1/22/2014 5:26:55 PM, Error: Service Control Manager [7000] - The McAfee Inc. mfeapfk service failed to start due to the following error: The specified service does not exist.1/22/2014 5:26:20 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the EgisTec Service Help service to connect.1/22/2014 5:26:20 PM, Error: Service Control Manager [7000] - The EgisTec Service Help service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.1/22/2014 12:50:06 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Update Whilokii service to connect.1/22/2014 12:50:06 PM, Error: Service Control Manager [7000] - The Update Whilokii service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.1/21/2014 12:21:28 AM, Error: Service Control Manager [7022] - The Google Update Service (gupdate) service hung on starting..==== End Of File =========================== Alright, I think that covers everything up. Thank you in advance for your help. James
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.