Jump to content

Recommended Posts

Day before yesterday when i was uninstalling my unnecessary program then i saw "MagniPic" in the installed programs list and i uninstalled it but i was not aware of that program but after some time my computer starts slowing down and today my computer is so likely to unresponsive my antivirus (ESET Smart Security 4) is even not helping me out. Please help me out my computer is dying "SLOWLY - SLOWLY"

Link to post
Share on other sites

Hello bluebronze and :welcome:! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.

Please follow the instructions here:

http://forums.malwarebytes.org/index.php?showtopic=9573

Post your log files in the next reply.

Link to post
Share on other sites

First of all thanks for your reply and here are the logs of two scans that i did with "MalwareBytes Anti-Malware"

Log of "Quick Scan"

Database version: v2013.03.22.04

Windows 7 x86 NTFS

Internet Explorer 8.0.7600.16385

Vicky :: VICKY-PC [administrator]

Protection: Enabled

3/22/2013 1:53:11 PM

mbam-log-2013-03-22 (13-53-11).txt

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 221841

Time elapsed: 10 minute(s), 21 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 3

C:\Program Files\TSearch (Adware.TSearch) -> Quarantined and deleted successfully.

C:\directory\CyberGate (Trojan.PWS) -> Quarantined and deleted successfully.

C:\directory\CyberGate\Hosts32 (Trojan.PWS) -> Quarantined and deleted successfully.

Files Detected: 1

C:\Program Files\TSearch\results (Adware.TSearch) -> Quarantined and deleted successfully.

(end)

Log of "Full Scan"

Database version: v2013.03.22.04

Windows 7 x86 NTFS

Internet Explorer 8.0.7600.16385

Vicky :: VICKY-PC [administrator]

Protection: Enabled

3/22/2013 2:52:42 PM

mbam-log-2013-03-22 (14-52-42).txt

Scan type: Full scan (C:\|D:\|)

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 385327

Time elapsed: 1 hour(s), 37 minute(s), 14 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 0

(No malicious items detected)

(end)

Link to post
Share on other sites

Okay but what about my problem and yes i wanna tell you one thing that after that Anti-Malware scan my computer performance is somewhat better but it is still freezing sometimes. Plz help me out i got a lot of stuff that can't lose.

Link to post
Share on other sites

Sorry for my late reply but as you know i can't use my computer frequently coz of this magnipic and here are my contents of DDS.txt and Attach.txt ----

DDS.txt -----

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 10.17.2

Run by Vicky at 20:34:05 on 2013-03-24

Microsoft Windows 7 Enterprise 6.1.7600.0.1252.1.1033.18.1973.1038 [GMT 5.5:30]

.

AV: ESET Smart Security 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}

SP: ESET Smart Security 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: ESET Personal firewall *Enabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\nvvsvc.exe

C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Program Files\ESET\ESET Smart Security\ekrn.exe

C:\Windows\system32\IProsetMonitor.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Program Files\ESET\ESET Smart Security\egui.exe

C:\Program Files\Real\RealPlayer\Update\realsched.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

D:\Internet Download Manager\IDMan.exe

C:\Users\Vicky\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe

D:\Internet Download Manager\IEMonitor.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\explorer.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\system32\vssvc.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k swprv

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxps://www.google.co.in/

mStart Page = hxxp://searchou.com/?affil=7&uid=449b84e2-8c90-11e2-90fd-e3a1ca34df50

BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - d:\internet download manager\IDMIECC.dll

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

uRun: [Google Update] "c:\users\vicky\appdata\local\google\update\GoogleUpdate.exe" /c

uRun: [LightShot] c:\users\vicky\appdata\local\skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue

uRun: [iDMan] d:\internet download manager\IDMan.exe /onboot

uRun: [uTorrent] "d:\utorrent\uTorrent.exe" /MINIMIZED

mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice

mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin

mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot

mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: Download all links with IDM - d:\internet download manager\IEGetAll.htm

IE: Download with IDM - d:\internet download manager\IEExt.htm

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{E830CFC9-E48B-4548-A7A9-72C2DB3CEC97} : DHCPNameServer = 192.168.1.1

AppInit_DLLs= c:\progra~1\magnipic\sprote~1.dll

SSODL: WebCheck - <orphaned>

STS: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - c:\windows\system32\DreamScene.dll

.

============= SERVICES / DRIVERS ===============

.

R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2009-11-16 735960]

R2 epfwwfp;epfwwfp;c:\windows\system32\drivers\epfwwfp.sys [2009-11-16 38240]

R2 IDMWFP;IDMWFP;c:\windows\system32\drivers\idmwfp.sys [2012-9-25 99192]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [2013-1-3 121240]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-3-22 682344]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2011-3-23 378472]

R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\drivers\e1k6232.sys [2013-3-11 388264]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-3-22 21104]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-3-22 398184]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]

S3 bbcap;bbcap;c:\windows\system32\drivers\bbcap.sys [2012-8-24 4096]

S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]

S3 ztemtusbser;ZTEMT Legacy Serial Communication;c:\windows\system32\drivers\CT_ZTEMT_U_USBSER.sys [2012-5-21 105472]

S4 UDisk Monitor;UDisk Monitor;c:\program files\reliance netconnect+\bin\monserviceudisk.exe --> c:\program files\reliance netconnect+\bin\MonServiceUDisk.exe [?]

.

=============== File Associations ===============

.

FileExt: .chm: Applications\notepad.exe=c:\windows\system32\NOTEPAD.EXE %1 [userChoice]

FileExt: .inf: inffile=c:\windows\system32\NOTEPAD.EXE %1 [userChoice]

FileExt: .js: Applications\Notepad.exe=c:\windows\system32\NOTEPAD.EXE %1 [userChoice]

.

=============== Created Last 30 ================

.

2013-03-22 10:28:59 123904 ----a-w- c:\windows\system32\poqexec.exe

2013-03-22 06:48:33 -------- d-----w- c:\users\vicky\appdata\roaming\Malwarebytes

2013-03-22 06:45:02 -------- d-----w- c:\programdata\Malwarebytes

2013-03-22 06:42:26 21104 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-03-22 06:42:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2013-03-21 13:52:01 302392 ----a-w- c:\windows\system32\PROUnstl.exe

2013-03-21 13:50:58 28792 ----a-w- c:\windows\system32\NicCo36.dll

2013-03-14 10:56:02 -------- d-----w- c:\windows\system32\Adobe

2013-03-14 10:20:45 -------- d-----w- c:\programdata\CLSoft LTD

2013-03-14 10:17:37 -------- d-----w- c:\programdata\InstallMate

2013-03-11 16:21:20 82624 ----a-w- c:\windows\system32\NicInstK.dll

2013-03-11 16:21:19 68264 ----a-w- c:\windows\system32\e1kmsg.dll

2013-03-11 16:21:19 388264 ----a-w- c:\windows\system32\drivers\e1k6232.sys

2013-03-08 04:27:57 -------- d-----w- c:\users\vicky\appdata\roaming\HTML Executable

2013-03-05 15:06:28 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2013-03-02 06:49:09 -------- d-----w- c:\program files\common files\Autodesk Shared

2013-03-02 06:09:13 -------- d-----w- c:\users\vicky\appdata\local\backburner

2013-02-28 16:19:01 -------- d-----w- c:\program files\Autodesk

2013-02-27 13:45:13 -------- d-----w- C:\MinGW

2013-02-26 15:52:24 -------- d-----w- c:\users\vicky\appdata\roaming\CodeBlocks

2013-02-26 10:06:22 645336 ----a-w- c:\windows\system32\ncs2dmix.dll

2013-02-26 10:06:22 551128 ----a-w- c:\windows\system32\accesor.dll

2013-02-26 09:59:58 164568 ----a-w- c:\windows\system32\ncs2instutility.dll

2013-02-26 09:58:04 2876120 ----a-w- c:\windows\system32\ncscolib.dll

2013-02-24 07:04:29 -------- d-----w- c:\users\vicky\appdata\local\Activision

2013-02-24 06:53:14 -------- d-----w- c:\program files\Activision

.

==================== Find3M ====================

.

2013-03-05 15:06:22 861088 ----a-w- c:\windows\system32\npDeployJava1.dll

2013-03-05 15:06:22 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-02-20 22:10:52 31048 ----a-w- c:\windows\system32\drivers\iqvw32.sys

2013-01-27 05:38:54 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-01-27 05:38:54 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-01-12 21:20:08 187904 ----a-w- c:\windows\system32\Ncs2Setp.dll

2013-01-03 09:08:52 121240 ----a-w- c:\windows\system32\IPROSetMonitor.exe

.

============= FINISH: 20:38:14.34 ===============

ATTACH.txt ----

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Enterprise

Boot Device: \Device\HarddiskVolume1

Install Date: 5/14/2012 6:34:09 PM

System Uptime: 3/24/2013 8:19:04 PM (0 hours ago)

.

Motherboard: Intel Corporation | | DH55TC

Processor: Intel® Core i3 CPU 550 @ 3.20GHz | XU1 | 3192/533mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 391 GiB total, 291.07 GiB free.

D: is FIXED (NTFS) - 75 GiB total, 63.728 GiB free.

E: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f}

Description: Lexmark X422

Device ID: ROOT\IMAGE\0000

Manufacturer: Lexmark

Name: Lexmark X422

PNP Device ID: ROOT\IMAGE\0000

Service: usbscan

.

Class GUID:

Description: PCI Serial Port

Device ID: PCI\VEN_8086&DEV_3B67&SUBSYS_00368086&REV_06\3&11583659&0&B3

Manufacturer:

Name: PCI Serial Port

PNP Device ID: PCI\VEN_8086&DEV_3B67&SUBSYS_00368086&REV_06\3&11583659&0&B3

Service:

.

Class GUID:

Description: PCI Simple Communications Controller

Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_00368086&REV_06\3&11583659&0&B0

Manufacturer:

Name: PCI Simple Communications Controller

PNP Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_00368086&REV_06\3&11583659&0&B0

Service:

.

==== System Restore Points ===================

.

RP121: 3/20/2013 8:36:16 PM - Removed Oracle VM VirtualBox 4.1.10

RP123: 3/21/2013 7:18:01 PM - Intel Express Installer

RP125: 3/21/2013 7:20:01 PM - Intel ® Express Installer CD Installation - Before

RP127: 3/21/2013 7:24:07 PM - Intel Express Installer

RP129: 3/21/2013 7:25:10 PM - Intel ® Express Installer CD Installation - After

RP130: 3/21/2013 7:44:06 PM - Windows Backup

RP131: 3/21/2013 7:51:42 PM - Windows Backup

RP132: 3/21/2013 8:05:58 PM - Windows Backup

RP133: 3/21/2013 11:06:24 PM - Removed Bonjour

RP134: 3/22/2013 4:55:30 PM - Windows Update

RP135: 3/22/2013 6:05:48 PM - Installed Intel® Network Connections.

RP136: 3/22/2013 8:31:14 PM - Windows Update

RP137: 3/24/2013 8:32:26 PM - Windows Update

.

==== Installed Programs ======================

.

Adobe Anchor Service CS4

Adobe Bridge CS4

Adobe CMaps CS4

Adobe Color - Photoshop Specific CS4

Adobe Color EU Extra Settings CS4

Adobe Color JA Extra Settings CS4

Adobe Color NA Recommended Settings CS4

Adobe Color Video Profiles CS CS4

Adobe CSI CS4

Adobe Default Language CS4

Adobe Device Central CS4

Adobe Drive CS4

Adobe ExtendScript Toolkit CS4

Adobe Extension Manager CS4

Adobe Flash Player 11 ActiveX

Adobe Fonts All

Adobe Linguistics CS4

Adobe Output Module

Adobe PDF Library Files CS4

Adobe Photoshop CS4

Adobe Photoshop CS4 Support

Adobe Search for Help

Adobe Service Manager Extension

Adobe Setup

Adobe Shockwave Player 12.0

Adobe Type Support CS4

Adobe Update Manager CS4

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS4

AdobeColorCommonSetCMYK

AdobeColorCommonSetRGB

Apple Application Support

Apple Software Update

ASUS nVidia Driver

Autodesk Maya 2012 32-bit

BB FlashBack Express

Call of Duty: Black Ops

CodeBlocks

Connect

ESET Smart Security

Google Chrome

Intel® Network Connections 18.1.59.0

Internet Download Manager

Java 7 Update 17

Java Auto Updater

JavaFX 2.1.1

kuler

Malwarebytes Anti-Malware version 1.70.0.1100

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106

Microsoft WSE 3.0 Runtime

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFCLOC_x86

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

NVIDIA 3D Vision Controller Driver

NVIDIA 3D Vision Controller Driver 267.85

NVIDIA 3D Vision Driver 267.85

NVIDIA Control Panel 267.85

NVIDIA Graphics Driver 267.85

NVIDIA HD Audio Driver 1.2.22.1

NVIDIA Install Application

NVIDIA Photoshop Plug-ins

NVIDIA PhysX

NVIDIA PhysX Plug-in for Autodesk Maya 2012 32 bit

NVIDIA PhysX System Software 9.10.0514

NVIDIA Stereoscopic 3D Driver

PDF Settings CS4

Photoshop Camera Raw

QuickTime

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealPlayer

RealUpgrade 1.1

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

Suite Shared Configuration CS4

swMSM

Unity

Unity Web Player

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2600217)

VC_CRT_x86

WampServer 2.2

WinRAR 4.20 beta 3 (32-bit)

.

==== Event Viewer Messages From Past Week ========

.

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update Rollup for ActiveX Killbits for Windows 7 (KB2736233).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2779562).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2679255).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2541014).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2502285).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2387530).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2790113).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2756920).

3/22/2013 8:57:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2604114).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB979538).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB971033).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2773072).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2748349).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2741355).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2732500).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2709630).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2703157).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2699779).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2640148).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2522422).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2515325).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2488113).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2484033).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2467023).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2454826).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2345886).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for User-Mode Driver Framework version 1.11 for Windows 7 (KB2685813).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Rights Management Services Client for Windows 7 (KB979099).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Kernel-Mode Driver Framework version 1.11 for Windows 7 (KB2685811).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB979688).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB979309).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB977165).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB975560).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB972270).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2785220).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2743555).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2727528).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2712808).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2705219).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2691442).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2690533).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2667402).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2658846).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2654428).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2653956).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2631813).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2621440).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2620712).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2585542).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2570947).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2560656).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2511455).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2506212).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2483614).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2479943).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2442962).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2393802).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2281679).

3/22/2013 8:57:44 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2742598).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB980846).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB980408).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2761217).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2739159).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2729094).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2547666).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB982799).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB979482).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB978542).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB974571).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2799494).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2790655).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2757638).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2719985).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2676562).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2660649).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2659262).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2655992).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2564958).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2544893).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2536276).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2535512).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2491683).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2419640).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2387149).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2378111).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2296011).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2736418).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2656410).

3/22/2013 8:57:43 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2656355).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB977074).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB975496).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2786400).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2762895).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2749655).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2718704).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2661254).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2660075).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2647753).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2563227).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2552343).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2545698).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2506928).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 (KB2505438).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Internet Explorer 8 Compatibility View List for Windows 7 (KB2598845).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB982665).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB982132).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB979687).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB975467).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2778344).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2770660).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2769369).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2758857).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2753842).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2685939).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2644615).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2620704).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2579686).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2536275).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2532531).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2510531).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2509553).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2503665).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2423089).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2347290).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 (KB2305420).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2729451).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Microsoft .NET Framework 3.5 SP1 Update for Windows 7 x86 (KB982526).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Cumulative Update for Media Center for Windows 7 (KB2284742).

3/22/2013 8:57:42 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Cumulative Security Update for ActiveX Killbits for Windows 7 (KB2618451).

3/22/2013 8:53:23 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.

3/22/2013 8:53:21 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache ehdrv spldr Wanarpv6

3/22/2013 8:36:27 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Windows Internet Explorer 9 for Windows 7.

3/22/2013 7:38:25 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service NVSvc with arguments "" in order to run the server: {DCAB0989-1301-4319-BE5F-ADE89F88581C}

3/22/2013 7:38:23 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.

3/22/2013 7:37:47 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

3/22/2013 7:37:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

3/22/2013 7:37:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}

3/22/2013 7:37:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}

3/22/2013 7:37:45 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

3/22/2013 7:37:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

3/22/2013 7:35:32 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD CSC DfsC discache ehdrv NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

3/22/2013 7:35:31 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

3/22/2013 7:11:36 PM, Error: Service Control Manager [7022] - The ESET Service service hung on starting.

3/22/2013 5:38:50 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2502285).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update Rollup for ActiveX Killbits for Windows 7 (KB2736233).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB979538).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB971033).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2779562).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2748349).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2709630).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2679255).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2640148).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2541014).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2467023).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2454826).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2387530).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2345886).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Rights Management Services Client for Windows 7 (KB979099).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB979688).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB979309).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2790113).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2727528).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2712808).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2691442).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2690533).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2658846).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2511455).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2506212).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2442962).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2393802).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2281679).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2756920).

3/22/2013 5:38:33 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2604114).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB980846).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB980408).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB975496).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2718704).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2699779).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2660075).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2563227).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2552343).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2547666).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2545698).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2515325).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Windows 7 (KB2506928).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Update for Internet Explorer 8 Compatibility View List for Windows 7 (KB2598845).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB982665).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB978542).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB977165).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB974571).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2659262).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2570947).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2564958).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2532531).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2503665).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2483614).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Security Update for Windows 7 (KB2347290).

3/22/2013 5:38:32 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b4: Cumulative Update for Media Center for Windows 7 (KB2284742).

3/22/2013 5:35:29 PM, Error: Service Control Manager [7023] -

3/21/2013 9:03:25 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the gpsvc service.

3/21/2013 9:02:55 AM, Error: Service Control Manager [7043] - The Windows Update service did not shut down properly after receiving a preshutdown control.

3/20/2013 8:47:47 PM, Error: BROWSER [8007] - The browser was unable to update the service status bits. The data is the error.

3/20/2013 8:28:21 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MMCSS service.

3/20/2013 8:28:21 PM, Error: Service Control Manager [7000] - The Multimedia Class Scheduler service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

3/18/2013 8:43:07 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD CSC DfsC discache ehdrv NetBIOS NetBT nsiproxy Psched rdbss spldr tdx VBoxDrv VBoxUSBMon Wanarpv6 WfpLwf

.

==== End Of File ===========================

Link to post
Share on other sites

Step 1

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Step 2

Download aswMBR.exe to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan

aswMBR2-1.gif

On completion of the scan click save log, save it to your desktop and post in your next reply

aswMBR2.png

In your next reply, post the following log files:

  • Junkware Removal Tool log
  • aswMBR log
  • a new fresh DDS log

Link to post
Share on other sites

Here are my logs ---

--------------------------------- JRT.txt ---------------------------------------

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 4.7.3 (03.23.2013:1)

OS: Windows 7 Enterprise x86

Ran by Vicky on Mon 03/25/2013 at 13:49:53.60

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\windows nt\currentversion\windows\\AppInit_DLLs

~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\1clickdownload

Successfully deleted: [Registry Key] hkey_current_user\software\igearsettings

Successfully deleted: [Registry Key] hkey_local_machine\software\iminent

Successfully deleted: [Registry Key] hkey_current_user\software\softonic

Successfully deleted: [Registry Key] hkey_current_user\software\startsearch

Successfully deleted: [Registry Key] hkey_current_user\software\sweetim

Successfully deleted: [Registry Key] hkey_local_machine\software\sweetim

Successfully deleted: [Registry Key] hkey_current_user\software\appdatalow\sprotector

Successfully deleted: [Registry Key] hkey_local_machine\software\classes\1clicktorrentfile

Successfully deleted: [Registry Key] hkey_local_machine\software\classes\1clicktorrentfile1

Successfully deleted: [Registry Key] hkey_local_machine\software\classes\oneclick

Successfully deleted: [Registry Key] hkey_local_machine\software\classes\oneclickmg

Successfully deleted: [Registry Key] hkey_classes_root\clsid\{0055c089-8582-441b-a0bf-17b458c2a3a8}

Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{0055c089-8582-441b-a0bf-17b458c2a3a8}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"

Successfully deleted: [Folder] "C:\ProgramData\clsoft ltd"

Successfully deleted: [Folder] "C:\ProgramData\installmate"

~~~ Chrome

Successfully deleted: [Registry Key] hkey_local_machine\software\google\chrome\extensions\jplinpmadfkdgipabgcdchbdikologlh

Successfully deleted: [Registry Key] hkey_local_machine\software\google\chrome\extensions\pmlghpafmmnmmkjdhacccolfgnkiboco

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Mon 03/25/2013 at 13:54:27.86

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

----------------------------- aswMBR.txt --------------------------------

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software

Run date: 2013-03-25 13:54:49

-----------------------------

13:54:49.501 OS Version: Windows 6.1.7600

13:54:49.501 Number of processors: 4 586 0x2505

13:54:49.501 ComputerName: VICKY-PC UserName: Vicky

13:54:53.619 Initialize success

13:55:10.836 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2

13:55:10.836 Disk 0 Vendor: WDC_WD5000AAKX-001CA0 15.01H15 Size: 476940MB BusType: 3

13:55:11.023 Disk 0 MBR read successfully

13:55:11.023 Disk 0 MBR scan

13:55:11.023 Disk 0 Windows 7 default MBR code

13:55:11.038 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048

13:55:11.054 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 399900 MB offset 206848

13:55:11.085 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 76938 MB offset 819202048

13:55:11.116 Disk 0 scanning sectors +976771072

13:55:11.335 Disk 0 scanning C:\Windows\system32\drivers

13:55:27.528 Service scanning

13:56:04.843 Modules scanning

13:56:22.362 Disk 0 trace - called modules:

13:56:22.393 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS pciide.sys

13:56:22.892 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85e74568]

13:56:22.892 3 CLASSPNP.SYS[88fa959e] -> nt!IofCallDriver -> [0x85945918]

13:56:22.908 5 ACPI.sys[88cb43b2] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0x85951030]

13:56:22.923 Scan finished successfully

13:56:42.236 Disk 0 MBR has been saved successfully to "C:\Users\Vicky\Desktop\MBR.dat"

13:56:42.252 The log file has been saved successfully to "C:\Users\Vicky\Desktop\aswMBR.txt"

--------------------------------- DDS.txt ----------------------------------

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 9.0.8112.16470 BrowserJavaVersion: 10.17.2

Run by Vicky at 13:57:07 on 2013-03-25

Microsoft Windows 7 Enterprise 6.1.7600.0.1252.1.1033.18.1973.1300 [GMT 5.5:30]

.

AV: ESET Smart Security 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}

SP: ESET Smart Security 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: ESET Personal firewall *Enabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe

C:\Windows\system32\nvvsvc.exe

C:\Program Files\ESET\ESET Smart Security\ekrn.exe

C:\Windows\system32\IProsetMonitor.exe

C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Program Files\ESET\ESET Smart Security\egui.exe

C:\Program Files\Real\RealPlayer\Update\realsched.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Users\Vicky\AppData\Local\Google\Update\GoogleUpdate.exe

C:\Users\Vicky\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\explorer.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\System32\svchost.exe -k secsvcs

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxps://www.google.co.in/

mStart Page = hxxp://searchou.com/?affil=7&uid=449b84e2-8c90-11e2-90fd-e3a1ca34df50

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

uRun: [Google Update] "c:\users\vicky\appdata\local\google\update\GoogleUpdate.exe" /c

uRun: [LightShot] c:\users\vicky\appdata\local\skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue

uRun: [iDMan] d:\internet download manager\IDMan.exe /onboot

uRun: [uTorrent] "d:\utorrent\uTorrent.exe" /MINIMIZED

mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice

mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin

mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot

mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: Download all links with IDM - d:\internet download manager\IEGetAll.htm

IE: Download with IDM - d:\internet download manager\IEExt.htm

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{E830CFC9-E48B-4548-A7A9-72C2DB3CEC97} : DHCPNameServer = 192.168.1.1

SSODL: WebCheck - <orphaned>

STS: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - c:\windows\system32\DreamScene.dll

.

============= SERVICES / DRIVERS ===============

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2009-11-16 735960]

R2 epfwwfp;epfwwfp;c:\windows\system32\drivers\epfwwfp.sys [2009-11-16 38240]

R2 IDMWFP;IDMWFP;c:\windows\system32\drivers\idmwfp.sys [2012-9-25 99192]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [2013-1-3 121240]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2011-3-23 378472]

R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\drivers\e1k6232.sys [2013-3-11 388264]

S2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-3-22 398184]

S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-3-22 682344]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]

S3 bbcap;bbcap;c:\windows\system32\drivers\bbcap.sys [2012-8-24 4096]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-3-22 21104]

S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-3-25 40776]

S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]

S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2013-3-25 1343400]

S3 ztemtusbser;ZTEMT Legacy Serial Communication;c:\windows\system32\drivers\CT_ZTEMT_U_USBSER.sys [2012-5-21 105472]

S4 UDisk Monitor;UDisk Monitor;c:\program files\reliance netconnect+\bin\monserviceudisk.exe --> c:\program files\reliance netconnect+\bin\MonServiceUDisk.exe [?]

.

=============== File Associations ===============

.

FileExt: .chm: Applications\notepad.exe=c:\windows\system32\NOTEPAD.EXE %1 [userChoice]

FileExt: .inf: inffile=c:\windows\system32\NOTEPAD.EXE %1 [userChoice]

FileExt: .js: Applications\Notepad.exe=c:\windows\system32\NOTEPAD.EXE %1 [userChoice]

.

=============== Created Last 30 ================

.

2013-03-25 08:19:43 -------- d-----w- c:\windows\ERUNT

2013-03-25 08:19:37 -------- d-----w- C:\JRT

2013-03-25 07:41:43 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2013-03-25 07:12:06 12800 ----a-w- c:\windows\system32\drivers\sffp_sd.sys

2013-03-25 07:04:46 6734704 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll

2013-03-25 07:04:38 7108640 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{c6583efc-988b-4a7d-b4df-6d8fbcc8c283}\mpengine.dll

2013-03-25 06:59:01 -------- d-----w- c:\windows\system32\Wat

2013-03-22 15:07:51 9728 ----a-w- c:\windows\system32\Wdfres.dll

2013-03-22 15:07:51 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

2013-03-22 15:07:51 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

2013-03-22 15:07:12 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

2013-03-22 15:07:12 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2013-03-22 15:07:12 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2013-03-22 15:07:11 613888 ----a-w- c:\windows\system32\WUDFx.dll

2013-03-22 15:07:11 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2013-03-22 15:07:11 196608 ----a-w- c:\windows\system32\WUDFHost.exe

2013-03-22 15:07:11 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

2013-03-22 15:06:36 5120 ----a-w- c:\windows\system32\wmi.dll

2013-03-22 15:06:36 19312 ----a-w- c:\windows\system32\drivers\fs_rec.sys

2013-03-22 15:06:36 172544 ----a-w- c:\windows\system32\wintrust.dll

2013-03-22 15:06:36 158720 ----a-w- c:\windows\system32\imagehlp.dll

2013-03-22 15:03:08 190976 ----a-w- c:\windows\system32\drivers\ks.sys

2013-03-22 15:03:08 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2013-03-22 15:02:01 276992 ----a-w- c:\windows\system32\wcncsvc.dll

2013-03-22 11:31:37 690688 ----a-w- c:\windows\system32\msvcrt.dll

2013-03-22 11:03:17 1137664 ----a-w- c:\windows\system32\mfc42.dll

2013-03-22 11:03:16 1164288 ----a-w- c:\windows\system32\mfc42u.dll

2013-03-22 11:03:10 363520 ----a-w- c:\windows\system32\StructuredQuery.dll

2013-03-22 10:28:59 123904 ----a-w- c:\windows\system32\poqexec.exe

2013-03-22 06:48:33 -------- d-----w- c:\users\vicky\appdata\roaming\Malwarebytes

2013-03-22 06:45:02 -------- d-----w- c:\programdata\Malwarebytes

2013-03-22 06:42:26 21104 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-03-22 06:42:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2013-03-21 13:52:01 302392 ----a-w- c:\windows\system32\PROUnstl.exe

2013-03-21 13:50:58 28792 ----a-w- c:\windows\system32\NicCo36.dll

2013-03-14 10:56:02 -------- d-----w- c:\windows\system32\Adobe

2013-03-11 16:21:20 82624 ----a-w- c:\windows\system32\NicInstK.dll

2013-03-11 16:21:19 68264 ----a-w- c:\windows\system32\e1kmsg.dll

2013-03-11 16:21:19 388264 ----a-w- c:\windows\system32\drivers\e1k6232.sys

2013-03-09 11:20:20 417792 ----a-w- c:\windows\system32\msdri.dll

2013-03-09 11:16:54 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2013-03-09 11:16:50 177152 ----a-w- c:\windows\system32\drivers\rdpwd.sys

2013-03-09 11:16:24 3957608 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-03-09 11:16:23 3902312 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-03-09 11:16:19 164864 ----a-w- c:\program files\windows media player\wmplayer.exe

2013-03-09 11:16:19 12625408 ----a-w- c:\windows\system32\wmploc.DLL

2013-03-09 11:15:40 285696 ----a-w- c:\windows\system32\winlogon.exe

2013-03-09 11:15:12 987136 ----a-w- c:\program files\common files\system\ado\msado15.dll

2013-03-09 11:15:12 573440 ----a-w- c:\windows\system32\odbc32.dll

2013-03-09 11:15:12 372736 ----a-w- c:\program files\common files\system\ado\msadox.dll

2013-03-09 11:15:12 352256 ----a-w- c:\program files\common files\system\ado\msadomd.dll

2013-03-09 11:15:12 208896 ----a-w- c:\program files\common files\system\msadc\msadco.dll

2013-03-09 11:13:57 80384 ----a-w- c:\windows\system32\davclnt.dll

2013-03-09 11:13:57 73728 ----a-w- c:\windows\system32\wscsvc.dll

2013-03-09 11:13:57 51200 ----a-w- c:\windows\system32\wscapi.dll

2013-03-09 11:13:57 350720 ----a-w- c:\windows\system32\winhttp.dll

2013-03-09 11:13:57 204800 ----a-w- c:\windows\system32\WebClnt.dll

2013-03-09 11:13:57 204288 ----a-w- c:\windows\system32\upnp.dll

2013-03-09 11:13:57 14336 ----a-w- c:\windows\system32\slwga.dll

2013-03-09 11:13:12 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe

2013-03-09 11:13:12 57856 ----a-w- c:\windows\system32\rdpwsx.dll

2013-03-09 11:13:12 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll

2013-03-09 11:11:42 139264 ----a-w- c:\windows\system32\cryptsvc.dll

2013-03-09 11:11:42 1157632 ----a-w- c:\windows\system32\crypt32.dll

2013-03-09 11:11:41 103936 ----a-w- c:\windows\system32\cryptnet.dll

2013-03-09 11:11:10 310784 ----a-w- c:\windows\system32\drivers\srv.sys

2013-03-09 11:11:10 308736 ----a-w- c:\windows\system32\drivers\srv2.sys

2013-03-09 11:11:10 168448 ----a-w- c:\windows\system32\srvsvc.dll

2013-03-09 11:11:10 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys

2013-03-09 11:11:03 400896 ----a-w- c:\windows\system32\srcore.dll

2013-03-09 11:09:54 34816 ----a-w- c:\windows\system32\msasn1.dll

2013-03-09 11:07:34 1289536 ----a-w- c:\windows\system32\ntdll.dll

2013-03-09 11:03:13 530432 ----a-w- c:\windows\system32\comctl32.dll

2013-03-09 11:00:29 768512 ----a-w- c:\windows\system32\localspl.dll

2013-03-08 04:27:57 -------- d-----w- c:\users\vicky\appdata\roaming\HTML Executable

2013-03-05 15:06:28 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2013-03-02 06:49:09 -------- d-----w- c:\program files\common files\Autodesk Shared

2013-03-02 06:09:13 -------- d-----w- c:\users\vicky\appdata\local\backburner

2013-02-28 16:19:01 -------- d-----w- c:\program files\Autodesk

2013-02-27 13:45:13 -------- d-----w- C:\MinGW

2013-02-26 15:52:24 -------- d-----w- c:\users\vicky\appdata\roaming\CodeBlocks

2013-02-26 10:06:22 645336 ----a-w- c:\windows\system32\ncs2dmix.dll

2013-02-26 10:06:22 551128 ----a-w- c:\windows\system32\accesor.dll

2013-02-26 09:59:58 164568 ----a-w- c:\windows\system32\ncs2instutility.dll

2013-02-26 09:58:04 2876120 ----a-w- c:\windows\system32\ncscolib.dll

2013-02-24 07:04:29 -------- d-----w- c:\users\vicky\appdata\local\Activision

2013-02-24 06:53:14 -------- d-----w- c:\program files\Activision

.

==================== Find3M ====================

.

2013-03-05 15:06:22 861088 ----a-w- c:\windows\system32\npDeployJava1.dll

2013-03-05 15:06:22 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-02-20 22:10:52 31048 ----a-w- c:\windows\system32\drivers\iqvw32.sys

2013-01-27 05:38:54 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-01-27 05:38:54 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-01-16 19:58:58 232336 ------w- c:\windows\system32\MpSigStub.exe

2013-01-12 21:20:08 187904 ----a-w- c:\windows\system32\Ncs2Setp.dll

2013-01-04 04:55:21 1287528 ----a-w- c:\windows\system32\drivers\tcpip.sys

2013-01-04 04:55:09 187240 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS

2013-01-04 04:50:40 169984 ----a-w- c:\windows\system32\winsrv.dll

2013-01-04 04:46:33 293376 ----a-w- c:\windows\system32\KernelBase.dll

2013-01-04 02:59:29 271360 ----a-w- c:\windows\system32\conhost.exe

2013-01-04 02:43:35 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-01-04 02:43:34 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-01-04 02:43:34 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-01-04 02:43:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-01-03 09:08:52 121240 ----a-w- c:\windows\system32\IPROSetMonitor.exe

.

============= FINISH: 13:57:50.09 ===============

------------------------------ Attach.txt ---------------------------------

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Enterprise

Boot Device: \Device\HarddiskVolume1

Install Date: 5/14/2012 6:34:09 PM

System Uptime: 3/25/2013 1:33:00 PM (0 hours ago)

.

Motherboard: Intel Corporation | | DH55TC

Processor: Intel® Core i3 CPU 550 @ 3.20GHz | XU1 | 3192/533mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 391 GiB total, 289.523 GiB free.

D: is FIXED (NTFS) - 75 GiB total, 63.728 GiB free.

E: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f}

Description: Lexmark X422

Device ID: ROOT\IMAGE\0000

Manufacturer: Lexmark

Name: Lexmark X422

PNP Device ID: ROOT\IMAGE\0000

Service: usbscan

.

Class GUID:

Description: PCI Serial Port

Device ID: PCI\VEN_8086&DEV_3B67&SUBSYS_00368086&REV_06\3&11583659&0&B3

Manufacturer:

Name: PCI Serial Port

PNP Device ID: PCI\VEN_8086&DEV_3B67&SUBSYS_00368086&REV_06\3&11583659&0&B3

Service:

.

Class GUID:

Description: PCI Simple Communications Controller

Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_00368086&REV_06\3&11583659&0&B0

Manufacturer:

Name: PCI Simple Communications Controller

PNP Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_00368086&REV_06\3&11583659&0&B0

Service:

.

==== System Restore Points ===================

.

RP121: 3/20/2013 8:36:16 PM - Removed Oracle VM VirtualBox 4.1.10

RP123: 3/21/2013 7:18:01 PM - Intel Express Installer

RP125: 3/21/2013 7:20:01 PM - Intel ® Express Installer CD Installation - Before

RP127: 3/21/2013 7:24:07 PM - Intel Express Installer

RP129: 3/21/2013 7:25:10 PM - Intel ® Express Installer CD Installation - After

RP130: 3/21/2013 7:44:06 PM - Windows Backup

RP131: 3/21/2013 7:51:42 PM - Windows Backup

RP132: 3/21/2013 8:05:58 PM - Windows Backup

RP133: 3/21/2013 11:06:24 PM - Removed Bonjour

RP134: 3/22/2013 4:55:30 PM - Windows Update

RP135: 3/22/2013 6:05:48 PM - Installed Intel® Network Connections.

RP136: 3/22/2013 8:31:14 PM - Windows Update

RP137: 3/24/2013 8:32:26 PM - Windows Update

RP138: 3/25/2013 12:41:51 PM - Windows Update

.

==== Installed Programs ======================

.

Adobe Anchor Service CS4

Adobe Bridge CS4

Adobe CMaps CS4

Adobe Color - Photoshop Specific CS4

Adobe Color EU Extra Settings CS4

Adobe Color JA Extra Settings CS4

Adobe Color NA Recommended Settings CS4

Adobe Color Video Profiles CS CS4

Adobe CSI CS4

Adobe Default Language CS4

Adobe Device Central CS4

Adobe Drive CS4

Adobe ExtendScript Toolkit CS4

Adobe Extension Manager CS4

Adobe Flash Player 11 ActiveX

Adobe Fonts All

Adobe Linguistics CS4

Adobe Output Module

Adobe PDF Library Files CS4

Adobe Photoshop CS4

Adobe Photoshop CS4 Support

Adobe Search for Help

Adobe Service Manager Extension

Adobe Setup

Adobe Shockwave Player 12.0

Adobe Type Support CS4

Adobe Update Manager CS4

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS4

AdobeColorCommonSetCMYK

AdobeColorCommonSetRGB

Apple Application Support

Apple Software Update

ASUS nVidia Driver

Autodesk Maya 2012 32-bit

BB FlashBack Express

Call of Duty: Black Ops

CodeBlocks

Connect

ESET Smart Security

Google Chrome

Intel® Network Connections 18.1.59.0

Internet Download Manager

Java 7 Update 17

Java Auto Updater

JavaFX 2.1.1

kuler

Malwarebytes Anti-Malware version 1.70.0.1100

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106

Microsoft WSE 3.0 Runtime

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFCLOC_x86

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

NVIDIA 3D Vision Controller Driver

NVIDIA 3D Vision Controller Driver 267.85

NVIDIA 3D Vision Driver 267.85

NVIDIA Control Panel 267.85

NVIDIA Graphics Driver 267.85

NVIDIA HD Audio Driver 1.2.22.1

NVIDIA Install Application

NVIDIA Photoshop Plug-ins

NVIDIA PhysX

NVIDIA PhysX Plug-in for Autodesk Maya 2012 32 bit

NVIDIA PhysX System Software 9.10.0514

NVIDIA Stereoscopic 3D Driver

PDF Settings CS4

Photoshop Camera Raw

QuickTime

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealPlayer

RealUpgrade 1.1

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

Suite Shared Configuration CS4

swMSM

Unity

Unity Web Player

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2600217)

VC_CRT_x86

WampServer 2.2

WinRAR 4.20 beta 3 (32-bit)

.

==== End Of File ===========================

Link to post
Share on other sites

Yes, you can, I don't need it.

Please download AdwCleaner from here and save it on your Desktop.

  1. Right-click on adwcleaner.exe and select Run As Administrator to launch the application.
  2. Now click on the Search tab.
  3. Please post the contents of the log-file created in your next post.

Note: The log can also be located at C:\ >> AdwCleaner[XX].txt >> XX <-- Denotes the number of times the application has been ran, so in this should be something like R1.

Link to post
Share on other sites

Here is my log ---

# AdwCleaner v2.115 - Logfile created 03/25/2013 at 19:51:32

# Updated 17/03/2013 by Xplode

# Operating system : Windows 7 Enterprise (32 bits)

# User : Vicky - VICKY-PC

# Boot Mode : Normal

# Running from : C:\Users\Vicky\Downloads\Programs\adwcleaner.exe

# Option [search]

***** [services] *****

***** [Files / Folders] *****

***** [Registry] *****

Key Found : HKLM\Software\AVG Secure Search

Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}

Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}

Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}

Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}

Key Found : HKLM\Software\SP Global

Key Found : HKLM\Software\SProtector

***** [internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [950 octets] - [25/03/2013 19:51:32]

########## EOF - C:\AdwCleaner[R1].txt - [1009 octets] ##########

But there was also a "Delete" button but i didn't used it was that right?

Link to post
Share on other sites

  1. Please re-run AdwCleaner
  2. Click on Delete button.
  3. Confirm each time with OK.
  4. Your computer will be rebooted automatically. A text file will open after the restart. Please post the content of that logfile in your reply.

Note: You can find the logfile at C:\AdwCleaner[sn].txt as well - n is the order number.

Link to post
Share on other sites

# AdwCleaner v2.115 - Logfile created 03/26/2013 at 14:58:03

# Updated 17/03/2013 by Xplode

# Operating system : Windows 7 Enterprise (32 bits)

# User : Vicky - VICKY-PC

# Boot Mode : Normal

# Running from : C:\Users\Vicky\Downloads\Programs\adwcleaner.exe

# Option [Delete]

***** [services] *****

***** [Files / Folders] *****

***** [Registry] *****

Key Deleted : HKLM\Software\AVG Secure Search

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}

Key Deleted : HKLM\Software\SP Global

Key Deleted : HKLM\Software\SProtector

***** [internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [1078 octets] - [25/03/2013 19:51:32]

AdwCleaner[s1].txt - [1024 octets] - [26/03/2013 14:58:03]

########## EOF - C:\AdwCleaner[s1].txt - [1084 octets] ##########

Link to post
Share on other sites

Hey may be i've got something...

I feel that now my computer only freezing when i turns on my modem ... and i also see something strange when i turns my modem on (may be it is nothing) i saw a process named "mobsync.exe" starts and stops after some seconds, what is this ?

Link to post
Share on other sites

"mobsync.exe" is a mobile synchronization component of the Internet Explorer web browser.

Note: Please do not run this tool without special supervision and instructions of someone authorized to do so. Otherwise, you could end up with serious problems. For more details, read this article: ComboFix usage, Questions, Help? - Look here

Please visit this webpage for download links, and instructions for running the tool:

http://www.bleepingc...to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Please post the C:\ComboFix.txt in your next reply for further review.

Note: If you encounter a message "illegal operation attempted on registry key that has been marked for deletion" and no programs will run - please just reboot and that will resolve that error.

Link to post
Share on other sites

ComboFix 13-03-28.01 - Vicky 03/29/2013 14:28:00.1.4 - x86

Microsoft Windows 7 Enterprise 6.1.7600.0.1252.1.1033.18.1973.1286 [GMT 5.5:30]

Running from: c:\users\Vicky\Downloads\Programs\ComboFix.exe

AV: ESET Smart Security 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}

FW: ESET Personal firewall *Disabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}

SP: ESET Smart Security 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\program files\intellidownload\gunzip.exe

c:\users\Vicky\AppData\Local\.#

c:\users\Vicky\AppData\Local\assembly\tmp

c:\users\Vicky\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue

c:\users\Vicky\AppData\Roaming\Vicky3SQLite3.dll

c:\users\Vicky\AppData\Roaming\Vickylog.dat

c:\windows\libmysql.dll

.

.

((((((((((((((((((((((((( Files Created from 2013-02-28 to 2013-03-29 )))))))))))))))))))))))))))))))

.

.

2013-03-29 09:03 . 2013-03-29 09:04 -------- d-----w- c:\users\Vicky\AppData\Local\temp

2013-03-26 10:33 . 2013-03-15 05:46 8952608 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys

2013-03-26 10:33 . 2013-03-15 05:46 892704 ----a-w- c:\windows\system32\nvdispgenco3231422.dll

2013-03-26 10:33 . 2013-03-15 05:46 7959000 ----a-w- c:\windows\system32\nvcuda.dll

2013-03-26 10:33 . 2013-03-15 05:46 6271872 ----a-w- c:\windows\system32\nvopencl.dll

2013-03-26 10:33 . 2013-03-15 05:46 2728736 ----a-w- c:\windows\system32\nvcuvid.dll

2013-03-26 10:33 . 2013-03-15 05:46 20542752 ----a-w- c:\windows\system32\nvoglv32.dll

2013-03-26 10:33 . 2013-03-15 05:46 1995552 ----a-w- c:\windows\system32\nvcuvenc.dll

2013-03-26 10:33 . 2013-03-15 05:46 17560352 ----a-w- c:\windows\system32\nvcompiler.dll

2013-03-26 10:33 . 2013-03-15 05:46 1012512 ----a-w- c:\windows\system32\nvdispco3231422.dll

2013-03-26 09:41 . 2013-03-19 00:20 7108640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{462FB83B-49B7-4DDD-A181-6502ED5495A7}\mpengine.dll

2013-03-26 09:30 . 2013-02-12 13:51 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys

2013-03-25 14:50 . 2013-03-25 14:50 -------- d-----w- c:\users\Vicky\AppData\Roaming\NVIDIA

2013-03-25 10:01 . 2013-01-08 22:01 768000 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll

2013-03-25 09:43 . 2013-03-25 09:43 -------- d-----w- c:\program files\AGEIA Technologies

2013-03-25 09:39 . 2012-12-19 05:41 28600 ----a-w- c:\windows\system32\nvhdap32.dll

2013-03-25 09:39 . 2012-12-19 05:41 154040 ----a-w- c:\windows\system32\drivers\nvhda32v.sys

2013-03-25 09:39 . 2013-03-15 05:46 15042928 ----a-w- c:\windows\system32\nvd3dum.dll

2013-03-25 09:39 . 2013-02-10 03:20 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll

2013-03-25 09:39 . 2013-02-10 03:20 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll

2013-03-25 09:38 . 2013-03-25 09:38 -------- d-----w- C:\NVIDIA

2013-03-25 09:31 . 2011-03-25 03:06 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys

2013-03-25 09:31 . 2011-03-25 03:06 284160 ----a-w- c:\windows\system32\drivers\usbport.sys

2013-03-25 09:31 . 2011-03-25 03:06 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys

2013-03-25 09:31 . 2011-03-25 03:06 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys

2013-03-25 09:31 . 2011-03-25 03:06 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys

2013-03-25 09:31 . 2011-03-25 03:06 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys

2013-03-25 09:31 . 2011-03-25 03:06 5888 ----a-w- c:\windows\system32\drivers\usbd.sys

2013-03-25 09:30 . 2011-03-11 05:44 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys

2013-03-25 09:30 . 2011-03-11 05:44 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys

2013-03-25 09:30 . 2011-03-11 05:43 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys

2013-03-25 09:30 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\system32\esent.dll

2013-03-25 09:30 . 2011-03-11 05:44 146304 ----a-w- c:\windows\system32\drivers\storport.sys

2013-03-25 09:30 . 2011-03-11 05:43 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys

2013-03-25 09:30 . 2011-03-11 05:43 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys

2013-03-25 09:30 . 2011-03-11 05:37 74240 ----a-w- c:\windows\system32\fsutil.exe

2013-03-25 08:54 . 2013-03-25 08:54 -------- d-----w- c:\users\UpdatusUser

2013-03-25 08:19 . 2013-03-25 08:19 -------- d-----w- c:\windows\ERUNT

2013-03-25 08:19 . 2013-03-25 08:19 -------- d-----w- C:\JRT

2013-03-25 07:41 . 2013-03-25 07:41 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2013-03-25 07:12 . 2009-10-10 02:57 12800 ----a-w- c:\windows\system32\drivers\sffp_sd.sys

2013-03-25 06:59 . 2013-03-25 06:59 -------- d-----w- c:\windows\system32\Wat

2013-03-24 16:33 . 2012-06-06 05:09 987136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll

2013-03-24 16:28 . 2009-09-03 07:04 1320960 ----a-w- c:\windows\system32\CertEnroll.dll

2013-03-24 16:28 . 2009-08-19 07:20 442920 ----a-w- c:\windows\system32\winresume.exe

2013-03-24 16:28 . 2009-08-19 07:20 507568 ----a-w- c:\windows\system32\winload.exe

2013-03-24 16:17 . 2011-02-24 05:32 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2013-03-24 16:04 . 2011-10-15 05:48 534528 ----a-w- c:\windows\system32\EncDec.dll

2013-03-24 16:02 . 2011-11-19 14:06 67072 ----a-w- c:\windows\system32\packager.dll

2013-03-22 15:21 . 2012-12-16 14:25 295424 ----a-w- c:\windows\system32\atmfd.dll

2013-03-22 15:21 . 2012-12-16 14:25 34304 ----a-w- c:\windows\system32\atmlib.dll

2013-03-22 15:20 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll

2013-03-22 15:07 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

2013-03-22 15:07 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

2013-03-22 15:07 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll

2013-03-22 15:07 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

2013-03-22 15:07 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2013-03-22 15:07 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2013-03-22 15:07 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe

2013-03-22 15:07 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll

2013-03-22 15:07 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2013-03-22 15:07 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

2013-03-22 15:06 . 2012-03-01 05:53 19312 ----a-w- c:\windows\system32\drivers\fs_rec.sys

2013-03-22 15:06 . 2012-03-01 05:45 158720 ----a-w- c:\windows\system32\imagehlp.dll

2013-03-22 15:06 . 2012-03-01 05:40 5120 ----a-w- c:\windows\system32\wmi.dll

2013-03-22 15:03 . 2010-03-04 04:04 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2013-03-22 15:03 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys

2013-03-22 15:02 . 2010-09-14 06:07 276992 ----a-w- c:\windows\system32\wcncsvc.dll

2013-03-22 11:31 . 2011-12-16 07:59 690688 ----a-w- c:\windows\system32\msvcrt.dll

2013-03-22 11:03 . 2011-03-11 05:40 1137664 ----a-w- c:\windows\system32\mfc42.dll

2013-03-22 11:03 . 2011-03-11 05:40 1164288 ----a-w- c:\windows\system32\mfc42u.dll

2013-03-22 11:03 . 2010-05-05 06:46 363520 ----a-w- c:\windows\system32\StructuredQuery.dll

2013-03-22 10:28 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe

2013-03-22 06:48 . 2013-03-22 06:48 -------- d-----w- c:\users\Vicky\AppData\Roaming\Malwarebytes

2013-03-22 06:45 . 2013-03-22 06:45 -------- d-----w- c:\programdata\Malwarebytes

2013-03-21 13:52 . 2013-02-07 00:17 302392 ----a-w- c:\windows\system32\PROUnstl.exe

2013-03-21 13:50 . 2009-05-26 02:05 28792 ----a-w- c:\windows\system32\NicCo36.dll

2013-03-14 16:37 . 2013-03-14 16:37 559904 ----a-w- c:\windows\system32\nvStreaming.exe

2013-03-14 10:56 . 2013-03-14 10:56 -------- d-----w- c:\windows\system32\Adobe

2013-03-11 16:21 . 2012-01-20 09:41 82624 ----a-w- c:\windows\system32\NicInstK.dll

2013-03-11 16:21 . 2012-02-02 09:41 388264 ----a-w- c:\windows\system32\drivers\e1k6232.sys

2013-03-11 16:21 . 2012-01-19 09:37 68264 ----a-w- c:\windows\system32\e1kmsg.dll

2013-03-09 11:20 . 2010-08-04 06:17 417792 ----a-w- c:\windows\system32\msdri.dll

2013-03-09 11:16 . 2012-04-28 03:19 177152 ----a-w- c:\windows\system32\drivers\rdpwd.sys

2013-03-09 11:16 . 2012-02-11 05:41 316928 ----a-w- c:\windows\system32\spoolsv.exe

2013-03-09 11:16 . 2013-01-05 05:02 3957608 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-03-09 11:16 . 2013-01-05 05:02 3902312 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-03-09 11:16 . 2010-09-01 04:26 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe

2013-03-09 11:16 . 2010-09-01 04:23 12625408 ----a-w- c:\windows\system32\wmploc.DLL

2013-03-09 11:15 . 2009-10-28 06:17 285696 ----a-w- c:\windows\system32\winlogon.exe

2013-03-09 11:15 . 2011-04-25 02:35 338944 ----a-w- c:\windows\system32\drivers\afd.sys

2013-03-09 11:15 . 2010-10-16 04:34 573440 ----a-w- c:\windows\system32\odbc32.dll

2013-03-09 11:15 . 2010-10-16 04:33 372736 ----a-w- c:\program files\Common Files\System\ado\msadox.dll

2013-03-09 11:15 . 2010-10-16 04:33 352256 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll

2013-03-09 11:15 . 2010-10-16 04:33 208896 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll

2013-03-09 11:13 . 2010-12-21 05:38 73728 ----a-w- c:\windows\system32\wscsvc.dll

2013-03-09 11:13 . 2010-12-21 05:38 51200 ----a-w- c:\windows\system32\wscapi.dll

2013-03-09 11:13 . 2010-12-21 05:38 350720 ----a-w- c:\windows\system32\winhttp.dll

2013-03-09 11:13 . 2010-12-21 05:38 204800 ----a-w- c:\windows\system32\WebClnt.dll

2013-03-09 11:13 . 2010-12-21 05:38 204288 ----a-w- c:\windows\system32\upnp.dll

2013-03-09 11:13 . 2010-12-21 05:38 14336 ----a-w- c:\windows\system32\slwga.dll

2013-03-09 11:13 . 2010-12-21 05:34 80384 ----a-w- c:\windows\system32\davclnt.dll

2013-03-09 11:13 . 2012-04-26 04:48 57856 ----a-w- c:\windows\system32\rdpwsx.dll

2013-03-09 11:13 . 2012-04-26 04:48 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll

2013-03-09 11:13 . 2012-04-26 04:43 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe

2013-03-09 11:11 . 2011-02-19 05:33 802304 ----a-w- c:\windows\system32\FntCache.dll

2013-03-09 11:11 . 2012-06-02 04:45 139264 ----a-w- c:\windows\system32\cryptsvc.dll

2013-03-09 11:11 . 2012-06-02 04:45 1157632 ----a-w- c:\windows\system32\crypt32.dll

2013-03-09 11:11 . 2012-06-02 04:45 103936 ----a-w- c:\windows\system32\cryptnet.dll

2013-03-09 11:11 . 2010-08-27 05:46 168448 ----a-w- c:\windows\system32\srvsvc.dll

2013-03-09 11:11 . 2012-05-05 07:44 400896 ----a-w- c:\windows\system32\srcore.dll

2013-03-09 11:11 . 2011-11-17 05:41 1288984 ----a-w- c:\windows\system32\ntdll.dll

2013-03-09 11:09 . 2009-08-29 06:57 34816 ----a-w- c:\windows\system32\msasn1.dll

2013-03-09 11:08 . 2011-04-29 02:57 311296 ----a-w- c:\windows\system32\drivers\srv.sys

2013-03-09 11:08 . 2011-04-29 02:57 309760 ----a-w- c:\windows\system32\drivers\srv2.sys

2013-03-09 11:08 . 2011-04-29 02:57 114176 ----a-w- c:\windows\system32\drivers\srvnet.sys

2013-03-09 11:03 . 2010-08-21 05:33 530432 ----a-w- c:\windows\system32\comctl32.dll

2013-03-09 11:00 . 2012-05-14 04:37 768512 ----a-w- c:\windows\system32\localspl.dll

2013-03-08 04:27 . 2013-03-08 04:27 -------- d-----w- c:\users\Vicky\AppData\Roaming\HTML Executable

2013-03-05 15:06 . 2013-03-05 15:06 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2013-03-02 06:49 . 2013-03-02 06:49 -------- d-----w- c:\program files\Common Files\Autodesk Shared

2013-03-02 06:09 . 2013-03-02 06:29 -------- d-----w- c:\users\Vicky\AppData\Local\backburner

2013-02-28 16:19 . 2013-03-02 06:45 -------- d-----w- c:\program files\Autodesk

2013-02-27 13:45 . 2013-02-27 13:45 -------- d-----w- C:\MinGW

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-03-25 09:57 . 2012-05-15 07:21 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-03-25 09:57 . 2012-05-15 07:21 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-03-15 05:46 . 2012-05-14 13:34 13088000 ----a-w- c:\windows\system32\nvwgf2um.dll

2013-03-15 05:46 . 2012-05-14 13:34 2539128 ----a-w- c:\windows\system32\nvapi.dll

2013-03-15 02:59 . 2011-03-23 18:59 4119328 ----a-w- c:\windows\system32\nvcpl.dll

2013-03-15 02:59 . 2011-03-23 18:59 3014432 ----a-w- c:\windows\system32\nvsvc.dll

2013-03-15 02:59 . 2011-03-23 18:58 634144 ----a-w- c:\windows\system32\nvvsvc.exe

2013-03-15 02:59 . 2011-03-23 18:58 62752 ----a-w- c:\windows\system32\nvshext.dll

2013-03-15 02:59 . 2011-03-23 18:58 223008 ----a-w- c:\windows\system32\nvmctray.dll

2013-03-05 15:06 . 2012-06-21 07:44 861088 ----a-w- c:\windows\system32\npDeployJava1.dll

2013-03-05 15:06 . 2012-06-21 07:44 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-02-26 10:06 . 2013-02-26 10:06 645336 ----a-w- c:\windows\system32\ncs2dmix.dll

2013-02-26 10:06 . 2013-02-26 10:06 551128 ----a-w- c:\windows\system32\accesor.dll

2013-02-26 09:59 . 2013-02-26 09:59 164568 ----a-w- c:\windows\system32\ncs2instutility.dll

2013-02-26 09:58 . 2013-02-26 09:58 2876120 ----a-w- c:\windows\system32\ncscolib.dll

2013-02-25 18:52 . 2013-02-25 18:52 1017120 ----a-w- c:\windows\system32\nvdispco32.dll

2013-02-25 18:52 . 2013-02-25 18:52 892704 ----a-w- c:\windows\system32\nvdispgenco32.dll

2013-02-20 22:10 . 2013-02-20 22:10 31048 ----a-w- c:\windows\system32\drivers\iqvw32.sys

2013-01-18 14:20 . 2011-03-23 18:58 2557728 ----a-w- c:\windows\system32\nvsvcr.dll

2013-01-16 19:58 . 2012-05-15 12:03 232336 ------w- c:\windows\system32\MpSigStub.exe

2013-01-12 21:20 . 2013-01-12 21:20 187904 ----a-w- c:\windows\system32\Ncs2Setp.dll

2013-01-04 04:55 . 2013-02-22 12:54 1287528 ----a-w- c:\windows\system32\drivers\tcpip.sys

2013-01-04 04:55 . 2013-02-22 12:54 187240 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS

2013-01-04 04:50 . 2013-02-22 12:31 169984 ----a-w- c:\windows\system32\winsrv.dll

2013-01-04 04:46 . 2013-02-22 12:31 293376 ----a-w- c:\windows\system32\KernelBase.dll

2013-01-04 04:43 . 2013-02-22 12:31 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-01-04 03:00 . 2013-02-22 12:40 2345984 ----a-w- c:\windows\system32\win32k.sys

2013-01-04 02:59 . 2013-02-22 12:31 271360 ----a-w- c:\windows\system32\conhost.exe

2013-01-04 02:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-01-04 02:43 . 2013-02-22 12:31 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-01-04 02:43 . 2013-02-22 12:31 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-01-04 02:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-01-03 09:08 . 2013-01-03 09:08 121240 ----a-w- c:\windows\system32\IPROSetMonitor.exe

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]

@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"

[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]

2012-02-08 00:49 22376 ----a-w- d:\internet download manager\IDMShellExt.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IDMan"="d:\internet download manager\IDMan.exe" [2013-02-21 3528128]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2054360]

"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]

"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2012-05-24 296056]

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

R3 bbcap;bbcap;c:\windows\system32\DRIVERS\bbcap.sys [x]

R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [x]

R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]

R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [x]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

R3 ztemtusbser;ZTEMT Legacy Serial Communication;c:\windows\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys [x]

R4 UDisk Monitor;UDisk Monitor;c:\program files\Reliance Netconnect+\bin\MonServiceUDisk.exe [x]

S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]

S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]

S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]

S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]

S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [x]

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]

S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k6232.sys [x]

.

.

--- Other Services/Drivers In Memory ---

.

*NewlyCreated* - WS2IFSL

.

Contents of the 'Scheduled Tasks' folder

.

2013-03-29 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-15 09:57]

.

.

------- Supplementary Scan -------

.

uStart Page = https://www.google.co.in/

mStart Page = hxxp://searchou.com/?affil=7&uid=449b84e2-8c90-11e2-90fd-e3a1ca34df50

IE: Download all links with IDM - d:\internet download manager\IEGetAll.htm

IE: Download with IDM - d:\internet download manager\IEExt.htm

TCP: DhcpNameServer = 192.168.1.1

.

- - - - ORPHANS REMOVED - - - -

.

HKCU-Run-LightShot - c:\users\Vicky\AppData\Local\Skillbrains\lightshot\LightShot.exe

HKCU-Run-uTorrent - d:\utorrent\uTorrent.exe

AddRemove-SP_d8283021 - c:\program files\MagniPic\uninstall.exe

.

.

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

--------------------- DLLs Loaded Under Running Processes ---------------------

.

- - - - - - - > 'lsass.exe'(540)

c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll

.

- - - - - - - > 'Explorer.exe'(3860)

d:\internet download manager\idmmkb.dll

.

------------------------ Other Running Processes ------------------------

.

c:\windows\system32\nvvsvc.exe

c:\program files\NVIDIA Corporation\Display\nvxdsync.exe

c:\windows\system32\nvvsvc.exe

c:\windows\system32\taskhost.exe

c:\windows\system32\conhost.exe

c:\program files\NVIDIA Corporation\Display\nvtray.exe

d:\internet download manager\IEMonitor.exe

c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

c:\windows\system32\sppsvc.exe

.

**************************************************************************

.

Completion time: 2013-03-29 14:36:53 - machine was rebooted

ComboFix-quarantined-files.txt 2013-03-29 09:06

.

Pre-Run: 311,586,848,768 bytes free

Post-Run: 312,021,532,672 bytes free

.

- - End Of File - - 2B77B83C4C0E2C12DC687342A6CBF5B6

Link to post
Share on other sites

hey bro i m unable to uninstall combofix ... in the combofix guide they said that "to uninstall combofix just type 'Combofix/uninstall' and hit enter" but when i m doing this i m getting "No Matches Found" ........... And there is ome more problem i m facing after using combofix, whenever i m opening a new webpage, Internet Explorer (9) giving me some security messages, what is this - how to get rid of these annoying messages.

Link to post
Share on other sites

Do not uninstall ComboFix. I don't want this from you.

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Open notepad and copy/paste the text in the quotebox below into it:

DDS::

mStart Page = hxxp://searchou.com/?affil=7&uid=449b84e2-8c90-11e2-90fd-e3a1ca34df50

JavaClearCache::

Save this as CFScript.txt, in the same location as ComboFix.exe

CFScriptB-4.gif

Refering to the picture above, drag CFScript into ComboFix.exe

When finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.

Link to post
Share on other sites

ComboFix 13-03-28.01 - Vicky 03/31/2013 17:00:28.2.4 - x86

Microsoft Windows 7 Enterprise 6.1.7600.0.1252.1.1033.18.1973.1167 [GMT 5.5:30]

Running from: c:\users\Vicky\Downloads\Programs\ComboFix.exe

Command switches used :: c:\users\Vicky\Downloads\Programs\CFScript.txt

AV: ESET Smart Security 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}

FW: ESET Personal firewall *Disabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}

SP: ESET Smart Security 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((( Files Created from 2013-02-28 to 2013-03-31 )))))))))))))))))))))))))))))))

.

.

2013-03-31 11:36 . 2013-03-31 11:36 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-03-29 09:25 . 2013-03-19 00:20 7108640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6E20F095-ED40-4301-82C4-F4297D4722EC}\mpengine.dll

2013-03-29 09:03 . 2013-03-31 11:36 -------- d-----w- c:\users\Vicky\AppData\Local\temp

2013-03-26 10:33 . 2013-03-15 05:46 8952608 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys

2013-03-26 10:33 . 2013-03-15 05:46 892704 ----a-w- c:\windows\system32\nvdispgenco3231422.dll

2013-03-26 10:33 . 2013-03-15 05:46 7959000 ----a-w- c:\windows\system32\nvcuda.dll

2013-03-26 10:33 . 2013-03-15 05:46 6271872 ----a-w- c:\windows\system32\nvopencl.dll

2013-03-26 10:33 . 2013-03-15 05:46 2728736 ----a-w- c:\windows\system32\nvcuvid.dll

2013-03-26 10:33 . 2013-03-15 05:46 20542752 ----a-w- c:\windows\system32\nvoglv32.dll

2013-03-26 10:33 . 2013-03-15 05:46 1995552 ----a-w- c:\windows\system32\nvcuvenc.dll

2013-03-26 10:33 . 2013-03-15 05:46 17560352 ----a-w- c:\windows\system32\nvcompiler.dll

2013-03-26 10:33 . 2013-03-15 05:46 1012512 ----a-w- c:\windows\system32\nvdispco3231422.dll

2013-03-26 09:30 . 2013-02-12 13:51 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys

2013-03-25 14:50 . 2013-03-25 14:50 -------- d-----w- c:\users\Vicky\AppData\Roaming\NVIDIA

2013-03-25 10:01 . 2013-01-08 22:01 768000 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll

2013-03-25 09:43 . 2013-03-25 09:43 -------- d-----w- c:\program files\AGEIA Technologies

2013-03-25 09:39 . 2012-12-19 05:41 28600 ----a-w- c:\windows\system32\nvhdap32.dll

2013-03-25 09:39 . 2012-12-19 05:41 154040 ----a-w- c:\windows\system32\drivers\nvhda32v.sys

2013-03-25 09:39 . 2013-03-15 05:46 15042928 ----a-w- c:\windows\system32\nvd3dum.dll

2013-03-25 09:39 . 2013-02-10 03:20 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll

2013-03-25 09:39 . 2013-02-10 03:20 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll

2013-03-25 09:38 . 2013-03-25 09:38 -------- d-----w- C:\NVIDIA

2013-03-25 09:31 . 2011-03-25 03:06 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys

2013-03-25 09:31 . 2011-03-25 03:06 284160 ----a-w- c:\windows\system32\drivers\usbport.sys

2013-03-25 09:31 . 2011-03-25 03:06 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys

2013-03-25 09:31 . 2011-03-25 03:06 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys

2013-03-25 09:31 . 2011-03-25 03:06 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys

2013-03-25 09:31 . 2011-03-25 03:06 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys

2013-03-25 09:31 . 2011-03-25 03:06 5888 ----a-w- c:\windows\system32\drivers\usbd.sys

2013-03-25 09:30 . 2011-03-11 05:44 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys

2013-03-25 09:30 . 2011-03-11 05:44 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys

2013-03-25 09:30 . 2011-03-11 05:43 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys

2013-03-25 09:30 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\system32\esent.dll

2013-03-25 09:30 . 2011-03-11 05:44 146304 ----a-w- c:\windows\system32\drivers\storport.sys

2013-03-25 09:30 . 2011-03-11 05:43 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys

2013-03-25 09:30 . 2011-03-11 05:43 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys

2013-03-25 09:30 . 2011-03-11 05:37 74240 ----a-w- c:\windows\system32\fsutil.exe

2013-03-25 08:54 . 2013-03-25 08:54 -------- d-----w- c:\users\UpdatusUser

2013-03-25 08:19 . 2013-03-25 08:19 -------- d-----w- c:\windows\ERUNT

2013-03-25 08:19 . 2013-03-25 08:19 -------- d-----w- C:\JRT

2013-03-25 07:41 . 2013-03-25 07:41 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2013-03-25 07:12 . 2009-10-10 02:57 12800 ----a-w- c:\windows\system32\drivers\sffp_sd.sys

2013-03-25 06:59 . 2013-03-25 06:59 -------- d-----w- c:\windows\system32\Wat

2013-03-24 16:33 . 2012-06-06 05:09 987136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll

2013-03-24 16:28 . 2009-09-03 07:04 1320960 ----a-w- c:\windows\system32\CertEnroll.dll

2013-03-24 16:28 . 2009-08-19 07:20 442920 ----a-w- c:\windows\system32\winresume.exe

2013-03-24 16:28 . 2009-08-19 07:20 507568 ----a-w- c:\windows\system32\winload.exe

2013-03-24 16:17 . 2011-02-24 05:32 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2013-03-24 16:04 . 2011-10-15 05:48 534528 ----a-w- c:\windows\system32\EncDec.dll

2013-03-24 16:02 . 2011-11-19 14:06 67072 ----a-w- c:\windows\system32\packager.dll

2013-03-22 15:21 . 2012-12-16 14:25 295424 ----a-w- c:\windows\system32\atmfd.dll

2013-03-22 15:21 . 2012-12-16 14:25 34304 ----a-w- c:\windows\system32\atmlib.dll

2013-03-22 15:20 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll

2013-03-22 15:07 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

2013-03-22 15:07 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

2013-03-22 15:07 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll

2013-03-22 15:07 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

2013-03-22 15:07 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2013-03-22 15:07 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2013-03-22 15:07 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe

2013-03-22 15:07 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll

2013-03-22 15:07 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2013-03-22 15:07 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

2013-03-22 15:06 . 2012-03-01 05:53 19312 ----a-w- c:\windows\system32\drivers\fs_rec.sys

2013-03-22 15:06 . 2012-03-01 05:45 158720 ----a-w- c:\windows\system32\imagehlp.dll

2013-03-22 15:06 . 2012-03-01 05:40 5120 ----a-w- c:\windows\system32\wmi.dll

2013-03-22 15:03 . 2010-03-04 04:04 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2013-03-22 15:03 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys

2013-03-22 15:02 . 2010-09-14 06:07 276992 ----a-w- c:\windows\system32\wcncsvc.dll

2013-03-22 11:31 . 2011-12-16 07:59 690688 ----a-w- c:\windows\system32\msvcrt.dll

2013-03-22 11:03 . 2011-03-11 05:40 1137664 ----a-w- c:\windows\system32\mfc42.dll

2013-03-22 11:03 . 2011-03-11 05:40 1164288 ----a-w- c:\windows\system32\mfc42u.dll

2013-03-22 11:03 . 2010-05-05 06:46 363520 ----a-w- c:\windows\system32\StructuredQuery.dll

2013-03-22 10:28 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe

2013-03-22 06:48 . 2013-03-22 06:48 -------- d-----w- c:\users\Vicky\AppData\Roaming\Malwarebytes

2013-03-22 06:45 . 2013-03-22 06:45 -------- d-----w- c:\programdata\Malwarebytes

2013-03-21 13:52 . 2013-02-07 00:17 302392 ----a-w- c:\windows\system32\PROUnstl.exe

2013-03-21 13:50 . 2009-05-26 02:05 28792 ----a-w- c:\windows\system32\NicCo36.dll

2013-03-14 16:37 . 2013-03-14 16:37 559904 ----a-w- c:\windows\system32\nvStreaming.exe

2013-03-14 10:56 . 2013-03-14 10:56 -------- d-----w- c:\windows\system32\Adobe

2013-03-11 16:21 . 2012-01-20 09:41 82624 ----a-w- c:\windows\system32\NicInstK.dll

2013-03-11 16:21 . 2012-02-02 09:41 388264 ----a-w- c:\windows\system32\drivers\e1k6232.sys

2013-03-11 16:21 . 2012-01-19 09:37 68264 ----a-w- c:\windows\system32\e1kmsg.dll

2013-03-09 11:20 . 2010-08-04 06:17 417792 ----a-w- c:\windows\system32\msdri.dll

2013-03-09 11:16 . 2012-04-28 03:19 177152 ----a-w- c:\windows\system32\drivers\rdpwd.sys

2013-03-09 11:16 . 2012-02-11 05:41 316928 ----a-w- c:\windows\system32\spoolsv.exe

2013-03-09 11:16 . 2013-01-05 05:02 3957608 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-03-09 11:16 . 2013-01-05 05:02 3902312 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-03-09 11:16 . 2010-09-01 04:26 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe

2013-03-09 11:16 . 2010-09-01 04:23 12625408 ----a-w- c:\windows\system32\wmploc.DLL

2013-03-09 11:15 . 2009-10-28 06:17 285696 ----a-w- c:\windows\system32\winlogon.exe

2013-03-09 11:15 . 2011-04-25 02:35 338944 ----a-w- c:\windows\system32\drivers\afd.sys

2013-03-09 11:15 . 2010-10-16 04:34 573440 ----a-w- c:\windows\system32\odbc32.dll

2013-03-09 11:15 . 2010-10-16 04:33 372736 ----a-w- c:\program files\Common Files\System\ado\msadox.dll

2013-03-09 11:15 . 2010-10-16 04:33 352256 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll

2013-03-09 11:15 . 2010-10-16 04:33 208896 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll

2013-03-09 11:13 . 2010-12-21 05:38 73728 ----a-w- c:\windows\system32\wscsvc.dll

2013-03-09 11:13 . 2010-12-21 05:38 51200 ----a-w- c:\windows\system32\wscapi.dll

2013-03-09 11:13 . 2010-12-21 05:38 350720 ----a-w- c:\windows\system32\winhttp.dll

2013-03-09 11:13 . 2010-12-21 05:38 204800 ----a-w- c:\windows\system32\WebClnt.dll

2013-03-09 11:13 . 2010-12-21 05:38 204288 ----a-w- c:\windows\system32\upnp.dll

2013-03-09 11:13 . 2010-12-21 05:38 14336 ----a-w- c:\windows\system32\slwga.dll

2013-03-09 11:13 . 2010-12-21 05:34 80384 ----a-w- c:\windows\system32\davclnt.dll

2013-03-09 11:13 . 2012-04-26 04:48 57856 ----a-w- c:\windows\system32\rdpwsx.dll

2013-03-09 11:13 . 2012-04-26 04:48 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll

2013-03-09 11:13 . 2012-04-26 04:43 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe

2013-03-09 11:11 . 2011-02-19 05:33 802304 ----a-w- c:\windows\system32\FntCache.dll

2013-03-09 11:11 . 2012-06-02 04:45 139264 ----a-w- c:\windows\system32\cryptsvc.dll

2013-03-09 11:11 . 2012-06-02 04:45 1157632 ----a-w- c:\windows\system32\crypt32.dll

2013-03-09 11:11 . 2012-06-02 04:45 103936 ----a-w- c:\windows\system32\cryptnet.dll

2013-03-09 11:11 . 2010-08-27 05:46 168448 ----a-w- c:\windows\system32\srvsvc.dll

2013-03-09 11:11 . 2012-05-05 07:44 400896 ----a-w- c:\windows\system32\srcore.dll

2013-03-09 11:11 . 2011-11-17 05:41 1288984 ----a-w- c:\windows\system32\ntdll.dll

2013-03-09 11:09 . 2009-08-29 06:57 34816 ----a-w- c:\windows\system32\msasn1.dll

2013-03-09 11:08 . 2011-04-29 02:57 311296 ----a-w- c:\windows\system32\drivers\srv.sys

2013-03-09 11:08 . 2011-04-29 02:57 309760 ----a-w- c:\windows\system32\drivers\srv2.sys

2013-03-09 11:08 . 2011-04-29 02:57 114176 ----a-w- c:\windows\system32\drivers\srvnet.sys

2013-03-09 11:03 . 2010-08-21 05:33 530432 ----a-w- c:\windows\system32\comctl32.dll

2013-03-09 11:00 . 2012-05-14 04:37 768512 ----a-w- c:\windows\system32\localspl.dll

2013-03-08 04:27 . 2013-03-08 04:27 -------- d-----w- c:\users\Vicky\AppData\Roaming\HTML Executable

2013-03-05 15:06 . 2013-03-05 15:06 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2013-03-02 06:49 . 2013-03-02 06:49 -------- d-----w- c:\program files\Common Files\Autodesk Shared

2013-03-02 06:09 . 2013-03-02 06:29 -------- d-----w- c:\users\Vicky\AppData\Local\backburner

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-03-25 09:57 . 2012-05-15 07:21 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-03-25 09:57 . 2012-05-15 07:21 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-03-15 05:46 . 2012-05-14 13:34 13088000 ----a-w- c:\windows\system32\nvwgf2um.dll

2013-03-15 05:46 . 2012-05-14 13:34 2539128 ----a-w- c:\windows\system32\nvapi.dll

2013-03-15 02:59 . 2011-03-23 18:59 4119328 ----a-w- c:\windows\system32\nvcpl.dll

2013-03-15 02:59 . 2011-03-23 18:59 3014432 ----a-w- c:\windows\system32\nvsvc.dll

2013-03-15 02:59 . 2011-03-23 18:58 634144 ----a-w- c:\windows\system32\nvvsvc.exe

2013-03-15 02:59 . 2011-03-23 18:58 62752 ----a-w- c:\windows\system32\nvshext.dll

2013-03-15 02:59 . 2011-03-23 18:58 223008 ----a-w- c:\windows\system32\nvmctray.dll

2013-03-05 15:06 . 2012-06-21 07:44 861088 ----a-w- c:\windows\system32\npDeployJava1.dll

2013-03-05 15:06 . 2012-06-21 07:44 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-02-26 10:06 . 2013-02-26 10:06 645336 ----a-w- c:\windows\system32\ncs2dmix.dll

2013-02-26 10:06 . 2013-02-26 10:06 551128 ----a-w- c:\windows\system32\accesor.dll

2013-02-26 09:59 . 2013-02-26 09:59 164568 ----a-w- c:\windows\system32\ncs2instutility.dll

2013-02-26 09:58 . 2013-02-26 09:58 2876120 ----a-w- c:\windows\system32\ncscolib.dll

2013-02-25 18:52 . 2013-02-25 18:52 1017120 ----a-w- c:\windows\system32\nvdispco32.dll

2013-02-25 18:52 . 2013-02-25 18:52 892704 ----a-w- c:\windows\system32\nvdispgenco32.dll

2013-02-20 22:10 . 2013-02-20 22:10 31048 ----a-w- c:\windows\system32\drivers\iqvw32.sys

2013-01-18 14:20 . 2011-03-23 18:58 2557728 ----a-w- c:\windows\system32\nvsvcr.dll

2013-01-16 19:58 . 2012-05-15 12:03 232336 ------w- c:\windows\system32\MpSigStub.exe

2013-01-12 21:20 . 2013-01-12 21:20 187904 ----a-w- c:\windows\system32\Ncs2Setp.dll

2013-01-04 04:55 . 2013-02-22 12:54 1287528 ----a-w- c:\windows\system32\drivers\tcpip.sys

2013-01-04 04:55 . 2013-02-22 12:54 187240 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS

2013-01-04 04:50 . 2013-02-22 12:31 169984 ----a-w- c:\windows\system32\winsrv.dll

2013-01-04 04:46 . 2013-02-22 12:31 293376 ----a-w- c:\windows\system32\KernelBase.dll

2013-01-04 04:43 . 2013-02-22 12:31 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-01-04 04:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-01-04 03:00 . 2013-02-22 12:40 2345984 ----a-w- c:\windows\system32\win32k.sys

2013-01-04 02:59 . 2013-02-22 12:31 271360 ----a-w- c:\windows\system32\conhost.exe

2013-01-04 02:43 . 2013-02-22 12:31 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-01-04 02:43 . 2013-02-22 12:31 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-01-04 02:43 . 2013-02-22 12:31 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-01-04 02:43 . 2013-02-22 12:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-01-03 09:08 . 2013-01-03 09:08 121240 ----a-w- c:\windows\system32\IPROSetMonitor.exe

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]

@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"

[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]

2012-02-08 00:49 22376 ----a-w- d:\internet download manager\IDMShellExt.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IDMan"="d:\internet download manager\IDMan.exe" [2013-02-21 3528128]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2054360]

"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]

"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2012-05-24 296056]

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

R3 bbcap;bbcap;c:\windows\system32\DRIVERS\bbcap.sys [x]

R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [x]

R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]

R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [x]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

R3 ztemtusbser;ZTEMT Legacy Serial Communication;c:\windows\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys [x]

R4 UDisk Monitor;UDisk Monitor;c:\program files\Reliance Netconnect+\bin\MonServiceUDisk.exe [x]

S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]

S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]

S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]

S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]

S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [x]

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]

S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k6232.sys [x]

.

.

Contents of the 'Scheduled Tasks' folder

.

2013-03-31 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-15 09:57]

.

.

------- Supplementary Scan -------

.

uStart Page = https://www.google.co.in/

IE: Download all links with IDM - d:\internet download manager\IEGetAll.htm

IE: Download with IDM - d:\internet download manager\IEExt.htm

TCP: DhcpNameServer = 192.168.1.1

.

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

--------------------- DLLs Loaded Under Running Processes ---------------------

.

- - - - - - - > 'lsass.exe'(536)

c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll

.

Completion time: 2013-03-31 17:07:43

ComboFix-quarantined-files.txt 2013-03-31 11:37

ComboFix2.txt 2013-03-29 09:06

.

Pre-Run: 327,437,619,200 bytes free

Post-Run: 327,152,713,728 bytes free

.

- - End Of File - - 61BFB80AF7D8A30ADD131395B09B8960

Link to post
Share on other sites

Please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan

  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  • Click Scan (This scan can take several hours, so please be patient)
  • Once the scan is completed, you may close the window
  • Use Notepad to open the logfile located at C:\Program Files\ESET\Eset Online Scanner\log.txt
  • Copy and paste that log as a reply to this topic

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.