Window Live Mail and redirect virus

[jenguerin]

Hello, and thank you in advance for any assistance. I have the full version of Malware bytes but I am certain there are at least two viruses the scan isn't picking up

 

1. Window Live Mail

 

Windows live is stalled at the "starting" screen although I can hear it working in the background and the new message icon appears in the task bar. The only way to close it is to end in in task manager. Also running in task manager is

 

 

WDC.exe

winlogon.exe

WINWORDC.EXE *32

wlmail.exe *32

 

2. redirect IE

 

Whenever I open a new page in Internet explorer it redirect to a spam site

 

I am running windows 7 home premium 64bit

windows live mail 2012

 

Thanks again

 

 

[Maniac]

Hello jenguerin and ! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

• If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
• I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
• Make sure you read all of the instructions and fixes thoroughly before continuing with them.
• Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
• Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
• Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.

Please follow the instructions here and then post the log files in your next reply.

http://forums.malwarebytes.org/index.php?showtopic=9573

[jenguerin]

DDS (Ver_2012-11-20.01) - NTFS_AMD64

 

Internet Explorer: 10.0.9200.16720

 

Run by Jen at 11:07:38 on 2013-11-14

 

Microsoft Windows 7 Home Premium   6.1.7601.1.1252.61.1033.18.7968.3267 [GMT 11:00]

 

.

 

AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}

 

SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}

 

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

 

FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}

 

.

 

============== Running Processes ===============

 

.

 

C:\Windows\system32\lsm.exe

 

C:\Windows\system32\svchost.exe -k DcomLaunch

 

C:\Windows\system32\nvvsvc.exe

 

C:\Windows\system32\svchost.exe -k RPCSS

 

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

 

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

 

C:\Windows\system32\svchost.exe -k LocalService

 

C:\Windows\system32\svchost.exe -k netsvcs

 

C:\Windows\system32\svchost.exe -k NetworkService

 

C:\Windows\system32\FBAgent.exe

 

C:\Windows\system32\WLANExt.exe

 

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe

 

C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe

 

C:\Windows\System32\spoolsv.exe

 

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

 

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

 

C:\Windows\system32\nvvsvc.exe

 

C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

 

C:\Windows\system32\taskhost.exe

 

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe

 

C:\Windows\system32\taskeng.exe

 

C:\Windows\system32\Dwm.exe

 

C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe

 

C:\Program Files\ASUS\P4G\BatteryLife.exe

 

C:\Windows\system32\taskeng.exe

 

C:\Windows\Explorer.EXE

 

C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

 

C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe

 

C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe

 

C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe

 

C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

 

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

 

C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe

 

C:\Program Files\Bonjour\mDNSResponder.exe

 

C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

 

C:\Program Files\Intel\WiFi\bin\EvtEng.exe

 

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

 

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

 

C:\Program Files\McAfee\MSC\McAPExe.exe

 

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

 

C:\Windows\system32\mfevtps.exe

 

C:\Windows\system32\rundll32.exe

 

C:\Windows\system32\rundll32.exe

 

C:\Windows\SysWOW64\rundll32.exe

 

C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

 

C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE

 

C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

 

C:\Windows\system32\svchost.exe -k imgsvc

 

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

 

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

 

C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe

 

C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

 

C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

 

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

 

C:\Windows\AsScrPro.exe

 

C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe

 

C:\Windows\system32\wbem\wmiprvse.exe

 

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

 

C:\Windows\system32\wbem\unsecapp.exe

 

C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe

 

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe

 

C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

 

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe

 

C:\Windows\System32\igfxtray.exe

 

C:\Windows\System32\hkcmd.exe

 

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe

 

C:\Program Files\Elantech\ETDCtrl.exe

 

C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe

 

C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

 

C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe

 

C:\Windows\System32\igfxpers.exe

 

C:\Program Files\Windows Sidebar\sidebar.exe

 

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

 

C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

 

C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

 

C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

 

C:\Windows\system32\SearchIndexer.exe

 

C:\Program Files\20-20 Technologies\2020Design\mswin\60\scbar.exe

 

C:\Users\Jen\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe

 

C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe

 

C:\Program Files\Elantech\ETDCtrlHelper.exe

 

C:\Windows\system32\wbem\unsecapp.exe

 

C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe

 

C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe

 

C:\Program Files (x86)\CyberLink\Shared files\brs.exe

 

C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

 

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

 

C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

 

C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe

 

C:\Program Files (x86)\QuickTime\QTTask.exe

 

C:\Program Files (x86)\iTunes\iTunesHelper.exe

 

C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe

 

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

 

C:\Program Files\Intel\TurboBoost\TurboBoost.exe

 

C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe

 

C:\Windows\system32\svchost.exe -k SDRSVC

 

C:\Program Files\Windows Media Player\wmpnetwk.exe

 

C:\Program Files\iPod\bin\iPodService.exe

 

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

 

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

 

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

 

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

 

C:\PROGRA~1\McAfee\MSM\McSmtFwk.exe

 

C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

 

C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe

 

C:\Program Files\Internet Explorer\iexplore.exe

 

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

 

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

 

C:\Program Files\Internet Explorer\iexplore.exe

 

C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe

 

C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

 

C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

 

C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe

 

C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE

 

C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe

 

C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

 

C:\Program Files\20-20 Technologies\2020Design\Mswin\60\Design.exe

 

C:\Windows\system32\taskeng.exe

 

C:\Users\Jen\AppData\Local\Facebook\Update\FacebookUpdate.exe

 

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

 

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

 

C:\PROGRAM FILES\20-20 TECHNOLOGIES\2020DESIGN\MSWIN\60\TTSecurityManager.EXE

 

C:\Windows\splwow64.exe

 

C:\Windows\system32\calc.exe

 

C:\Windows\servicing\TrustedInstaller.exe

 

C:\Windows\system32\taskhost.exe

 

C:\Windows\System32\svchost.exe -k WerSvcGroup

 

C:\Windows\system32\wuauclt.exe

 

C:\Windows\system32\SearchProtocolHost.exe

 

C:\Windows\system32\SearchFilterHost.exe

 

C:\Windows\system32\wbem\wmiprvse.exe

 

C:\Windows\System32\cscript.exe

 

.

 

============== Pseudo HJT Report ===============

 

.

 

 

 

uURLSearchHooks: {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - <orphaned>

 

uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll

 

uURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll

 

mURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll

 

mWinlogon: Userinit = userinit.exe,

 

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

 

BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

 

BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll

 

BHO: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll

 

BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -

 

TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

 

TB: Vuze Remote Toolbar: {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll

 

TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -

 

TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll

 

TB: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll

 

TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

 

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

 

uRun: [Facebook Update] "C:\Users\Jen\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

 

uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

 

uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

 

uRun: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

 

uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

 

uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

 

mRun: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"

 

mRun: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"

 

mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S

 

mRun: [sonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe

 

mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

 

mRun: [bDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe

 

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

 

mRun: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s

 

mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

 

mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

 

mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

 

mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

 

mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

 

mRun: [AgentMonitor] C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe

 

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

 

mRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

 

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

 

StartupFolder: C:\Users\Jen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\FACEBO~1.LNK - C:\Users\Jen\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe

 

StartupFolder: C:\Users\Jen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\INTEL(~1.LNK - C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe

 

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\20-20S~1.LNK - C:\Program Files\20-20 Technologies\2020Design\mswin\60\scbar.exe

 

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ASUSVI~1.LNK - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe

 

uPolicies-Explorer: NoDriveAutoRun = dword:0

 

mPolicies-Explorer: NoActiveDesktop = dword:1

 

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

 

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

 

mPolicies-System: ConsentPromptBehaviorUser = dword:3

 

mPolicies-System: EnableUIADesktopToggle = dword:0

 

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

 

 

TCP: NameServer = 10.0.0.138

 

TCP: Interfaces\{885DF75A-6BF0-4BA5-AC5D-CBF8947F0E18} : DHCPNameServer = 10.0.0.138

 

TCP: Interfaces\{885DF75A-6BF0-4BA5-AC5D-CBF8947F0E18}\7657562796E6370226967607F6E646 : DHCPNameServer = 192.168.1.1

 

TCP: Interfaces\{885DF75A-6BF0-4BA5-AC5D-CBF8947F0E18}\7657562796E6370236F6E6E656364796F6E602 : DHCPNameServer = 192.168.1.1

 

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll

 

Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll

 

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll

 

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

 

AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll

 

SSODL: WebCheck - <orphaned>

 

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

 

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

 

x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

 

x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll

 

x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll

 

x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

 

x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe

 

x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

 

x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe

 

x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe

 

x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3

 

x64-Run: [intelPAN] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray

 

x64-Run: [intelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"

 

x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

 

x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

 

x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll

 

x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll

 

x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll

 

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

 

x64-Notify: igfxcui - igfxdev.dll

 

x64-SSODL: WebCheck - <orphaned>

 

.

 

============= SERVICES / DRIVERS ===============

 

.

 

R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2012-2-22 781312]

 

R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2012-5-15 343568]

 

R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2012-2-18 28992]

 

R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2012-5-11 55856]

 

R0 SCMNdisP;General NDIS Protocol Driver;C:\Windows\System32\drivers\SCMNdisP.sys [2012-10-23 25312]

 

R1 ATKWMIACPIIO_;ATKWMIACPI Driver_;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]

 

R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-23 14928]

 

R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-13 12368]

 

R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-10-11 144152]

 

R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-9-30 169408]

 

R2 AFBAgent;AFBAgent;C:\Windows\System32\FBAgent.exe [2012-2-18 379520]

 

R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-9-1 1166848]

 

R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]

 

R2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [2012-2-3 277120]

 

R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-6-4 134928]

 

R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2013-4-22 822504]

 

R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-10-16 328928]

 

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-6-26 418376]

 

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-6-26 701512]

 

R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-9-28 201304]

 

R2 McAPExe;McAfee AP Service;C:\Program Files\McAfee\MSC\McAPExe.exe [2013-10-16 178048]

 

R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-10-16 328928]

 

R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-10-16 328928]

 

R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-10-16 328928]

 

R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-10-16 328928]

 

R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2013-10-16 1017016]

 

R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2012-5-15 219272]

 

R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-5-15 182752]

 

R2 Sentinel64;Sentinel64;C:\Windows\System32\drivers\sentinel64.sys [2012-5-11 142120]

 

R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-6-26 523944]

 

R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys [2010-11-30 16120]

 

R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-2-18 2656280]

 

R2 WSWNA3100;WSWNA3100;C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe [2012-10-23 285152]

 

R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;C:\Windows\System32\drivers\AmpPal.sys [2011-8-9 299008]

 

R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-11-22 130024]

 

R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-11-22 395752]

 

R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2012-5-15 70112]

 

R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2011-12-6 143144]

 

R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-12-6 317440]

 

R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2011-12-6 108656]

 

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-6-26 25928]

 

R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2012-5-15 310224]

 

R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2012-5-15 519192]

 

R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\drivers\mfencbdc.sys [2013-9-20 390552]

 

R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2013-6-26 767144]

 

R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2013-6-26 273576]

 

R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2013-6-26 28840]

 

R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2013-6-26 23208]

 

R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-6-26 207528]

 

R3 SNTUSB64;SafeNet USB SuperPro/UltraPro/HardwareKey;C:\Windows\System32\drivers\SNTUSB64.SYS [2007-4-27 56872]

 

R3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-30 149504]

 

S2 0145741383823074mcinstcleanup;McAfee Application Installer Cleanup (0145741383823074);C:\Windows\TEMP\014574~1.EXE -cleanup -nolog --> C:\Windows\TEMP\014574~1.EXE -cleanup -nolog [?]

 

S2 CLKMSVC10_38F51D56;CyberLink Product - 2012/02/18 03:15:37;C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [2011-4-21 241648]

 

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-19 130384]

 

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-19 138576]

 

S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;C:\Windows\System32\drivers\AmpPal.sys [2011-8-9 299008]

 

S3 AmUStor;AM USB Stroage Driver;C:\Windows\System32\drivers\AmUStor.sys [2011-3-18 74840]

 

S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-3-2 183560]

 

S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2013-10-7 57840]

 

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2013-2-5 1512448]

 

S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\drivers\HipShieldK.sys [2013-10-16 197704]

 

S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\drivers\mfencrk.sys [2013-9-20 95984]

 

S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-7-28 340240]

 

S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\System32\drivers\SiSG664.sys [2009-6-11 56832]

 

S3 SWDUMon;SWDUMon;C:\Windows\System32\drivers\SWDUMon.sys [2013-8-30 16152]

 

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-2-19 59392]

 

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2011-2-19 31232]

 

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-4-25 52736]

 

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-5-18 1255736]

 

S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464]

 

.

 

=============== Created Last 30 ================

 

.

 

2013-11-12 09:55:50 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)

 

2013-11-12 09:53:52 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys

 

2013-11-12 09:27:38 -------- d-----w- C:\Users\Jen\AppData\Roaming\FixIt

 

2013-10-21 08:58:07 -------- d-----w- C:\Program Files\iPod

 

2013-10-21 08:58:03 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

 

2013-10-21 08:58:03 -------- d-----w- C:\Program Files\iTunes

 

2013-10-21 08:58:03 -------- d-----w- C:\Program Files (x86)\iTunes

 

2013-10-16 02:08:55 197704 ----a-w- C:\Windows\System32\drivers\HipShieldK.sys

 

.

 

==================== Find3M  ====================

 

.

 

2013-11-06 02:12:06 16152 ----a-w- C:\Windows\System32\drivers\SWDUMon.sys

 

2013-11-04 09:46:21 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

 

2013-11-04 09:46:21 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

 

2013-10-09 09:59:17 17154952 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe

 

2013-09-24 09:29:46 70112 ----a-w- C:\Windows\System32\drivers\cfwids.sys

 

2013-09-24 09:25:40 343568 ----a-w- C:\Windows\System32\drivers\mfewfpk.sys

 

2013-09-24 09:25:24 182752 ----a-w- C:\Windows\System32\mfevtps.exe

 

2013-09-24 09:22:48 781312 ----a-w- C:\Windows\System32\drivers\mfehidk.sys

 

2013-09-24 09:21:32 519192 ----a-w- C:\Windows\System32\drivers\mfefirek.sys

 

2013-09-24 09:20:28 310224 ----a-w- C:\Windows\System32\drivers\mfeavfk.sys

 

2013-09-24 09:19:56 179664 ----a-w- C:\Windows\System32\drivers\mfeapfk.sys

 

2013-09-22 23:28:06 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll

 

2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll

 

2013-09-22 23:27:48 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll

 

2013-09-22 23:27:48 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll

 

2013-09-22 22:55:10 2241024 ----a-w- C:\Windows\System32\wininet.dll

 

2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll

 

2013-09-22 22:54:50 67072 ----a-w- C:\Windows\System32\iesetup.dll

 

2013-09-22 22:54:50 136704 ----a-w- C:\Windows\System32\iesysprep.dll

 

2013-09-21 03:38:39 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

 

2013-09-21 03:30:24 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb

 

2013-09-21 02:48:36 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

 

2013-09-21 02:39:47 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe

 

2013-09-19 22:38:30 10856 ----a-w- C:\Windows\System32\drivers\mfeclnrk.sys

 

2013-09-19 22:38:14 95984 ----a-w- C:\Windows\System32\drivers\mfencrk.sys

 

2013-09-19 22:37:56 390552 ----a-w- C:\Windows\System32\drivers\mfencbdc.sys

 

2013-09-14 01:10:19 497152 ----a-w- C:\Windows\System32\drivers\afd.sys

 

2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys

 

2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll

 

2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll

 

2013-09-04 12:12:11 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys

 

2013-09-04 12:11:51 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys

 

2013-09-04 12:11:49 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

 

2013-09-04 12:11:43 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys

 

2013-09-04 12:11:43 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

 

2013-09-04 12:11:42 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys

 

2013-09-04 12:11:40 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys

 

2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe

 

2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll

 

2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll

 

2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll

 

2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll

 

2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

 

2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

 

2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll

 

2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll

 

2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll

 

2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll

 

2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll

 

2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe

 

2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe

 

2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll

 

2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe

 

2013-08-28 01:21:06 3155968 ----a-w- C:\Windows\System32\win32k.sys

 

2013-08-28 01:12:33 461312 ----a-w- C:\Windows\System32\scavengeui.dll

 

.

 

============= FINISH: 11:08:51.82 ===============

[jenguerin]

.

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

 

IF REQUESTED, ZIP IT UP & ATTACH IT

 

.

 

DDS (Ver_2012-11-20.01)

 

.

 

Microsoft Windows 7 Home Premium

 

Boot Device: \Device\HarddiskVolume2

 

Install Date: 11/05/2012 1:11:44 PM

 

System Uptime: 13/11/2013 12:09:30 AM (35 hours ago)

 

.

 

Motherboard: ASUSTeK Computer Inc. |  | K53SD

 

Processor: Intel® Core i7-2670QM CPU @ 2.20GHz | CPU 1 | 792/100mhz

 

.

 

==== Disk Partitions =========================

 

.

 

C: is FIXED (NTFS) - 279 GiB total, 189.707 GiB free.

 

D: is FIXED (NTFS) - 394 GiB total, 394.077 GiB free.

 

E: is CDROM (CDFS)

 

.

 

==== Disabled Device Manager Items =============

 

.

 

==== System Restore Points ===================

 

.

 

RP119: 10/10/2013 9:46:34 PM - Windows Update

 

RP120: 13/10/2013 8:15:57 PM - RegClean Pro Sun, Oct 13, 13  20:15

 

RP121: 22/10/2013 2:37:34 PM - Scheduled Checkpoint

 

RP122: 29/10/2013 10:40:12 PM - Scheduled Checkpoint

 

RP123: 6/11/2013 2:01:08 PM - Scheduled Checkpoint

 

RP124: 12/11/2013 8:26:44 PM - Installed Microsoft Fix it 50604

 

.

 

==== Installed Programs ======================

 

.

 

20-20 Version 8.1

 

7-Zip 9.22beta

 

Adobe AIR

 

Adobe Community Help

 

Adobe Digital Editions

 

Adobe Flash Player 10 Plugin

 

Adobe Flash Player 11 ActiveX

 

Adobe Photoshop Elements 9

 

Adobe Premiere Elements 9

 

Alcor Micro USB Card Reader

 

Amazon Kindle

 

Apple Application Support

 

Apple Mobile Device Support

 

Apple Software Update

 

Asmedia ASM104x USB 3.0 Host Controller Driver

 

ASUS FaceLogon

 

ASUS LifeFrame3

 

ASUS Live Update

 

ASUS Power4Gear Hybrid

 

ASUS Sonic Focus

 

ASUS Virtual Camera

 

ASUS WebStorage

 

ASUSDVD

 

AsusScr_K3 Series_ENG

 

AsusVibe2.0

 

Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver

 

ATK Package

 

BigPond Broadband ADSL

 

Bing Bar

 

Bonjour

 

calibre

 

Canon MP500

 

Client Activator 2.0 - English

 

Construction Destruction

 

CyberLink LabelPrint

 

CyberLink Media Suite

 

CyberLink Power2Go

 

D3DX10

 

Direct Show Ogg Vorbis Filter (remove only)

 

DriverUpdate

 

Elements 9 Organizer

 

Elements STI Installer

 

ETDWare PS/2-X64 8.0.5.5_WHQL

 

Facebook Messenger 2.1.4814.0

 

Fast Boot

 

Google Chrome

 

Google Toolbar for Internet Explorer

 

Google Update Helper

 

iCloud

 

InstantOn for NB

 

Intel PROSet Wireless

 

Intel® Control Center

 

Intel® Management Engine Components

 

Intel® Processor Graphics

 

Intel® PROSet/Wireless WiFi Software

 

Intel® Turbo Boost Technology Monitor 2.0

 

iTunes

 

Junk Mail filter update

 

KompoZer 0.8b3

 

Learning Lodge Navigator

 

Malwarebytes Anti-Malware version 1.75.0.1300

 

McAfee SecurityCenter

 

Microsoft .NET Framework 1.1

 

Microsoft .NET Framework 4 Client Profile

 

Microsoft .NET Framework 4 Extended

 

Microsoft Application Error Reporting

 

Microsoft Camera Codec Pack

 

Microsoft Office 2010

 

Microsoft Office Click-to-Run 2010

 

Microsoft Office Starter 2010 - English

 

Microsoft Silverlight

 

Microsoft SkyDrive

 

Microsoft SQL Server 2005 Compact Edition [ENU]

 

Microsoft Visual C++ 2005 Redistributable

 

Microsoft Visual C++ 2005 Redistributable (x64)

 

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

 

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

 

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

 

Microsoft_VC80_CRT_x86

 

Microsoft_VC80_MFC_x86

 

Microsoft_VC80_MFCLOC_x86

 

Microsoft_VC90_CRT_x86

 

Movie Maker

 

MSVCRT

 

MSVCRT_amd64

 

MSVCRT110

 

MSVCRT110_amd64

 

MSXML 4.0 SP2 (KB954430)

 

MSXML 4.0 SP2 (KB973688)

 

NETGEAR WNA3100 wireless USB 2.0 adapter

 

Nikon Message Center 2

 

NTI Shadow for ReadyNAS

 

Nuance PDF Reader

 

NVIDIA Control Panel 285.64

 

NVIDIA Graphics Driver 285.64

 

NVIDIA Install Application

 

NVIDIA Optimus 1.5.20

 

NVIDIA Update Components

 

onOne Photo Essentials 4.0.0

 

Photo Common

 

Photo Gallery

 

Picture Control Utility

 

QuickTime

 

RAIDar 4.01c1-p1

 

Realtek High Definition Audio Driver

 

Rhapsody

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)

 

Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)

 

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

 

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

 

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

 

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

 

Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)

 

Sentinel Protection Installer 7.4.0

 

Shared C Run-time for x64

 

SmartSound Quicktracks for Premiere Elements 9.0

 

Sonos Desktop Controller

 

SUPERAntiSpyware

 

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

 

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

 

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

 

Update for Microsoft .NET Framework 4 Client Profile (KB2836939)

 

Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)

 

Update for Microsoft .NET Framework 4 Extended (KB2468871)

 

Update for Microsoft .NET Framework 4 Extended (KB2533523)

 

Update for Microsoft .NET Framework 4 Extended (KB2600217)

 

Update for Microsoft .NET Framework 4 Extended (KB2836939)

 

Update for Microsoft .NET Framework 4 Extended (KB2836939v3)

 

ViewNX 2

 

VTech Download Agent Library

 

Vuze

 

Vuze Remote Toolbar

 

Windows Driver Package - Atheros Communications Inc. (arusb_lhx) Net  (09/25/2008 3.1.0.101)

 

Windows Driver Package - NETGEAR Inc. (RTL8187) Net  (12/01/2006 6.1258.1201.2006)

 

Windows Driver Package - Thomson (USB_RNDIS) Net  (02/15/2007 2.0.0.0)

 

Windows Live Communications Platform

 

Windows Live Essentials

 

Windows Live Family Safety

 

Windows Live ID Sign-in Assistant

 

Windows Live Installer

 

Windows Live Mail

 

Windows Live Messenger

 

Windows Live MIME IFilter

 

Windows Live Photo Common

 

Windows Live PIMT Platform

 

Windows Live SOXE

 

Windows Live SOXE Definitions

 

Windows Live UX Platform

 

Windows Live UX Platform Language Pack

 

Windows Live Writer

 

Windows Live Writer Resources

 

WinFlash

 

WinZip 17.0

 

Wireless Console 3

 

.

 

==== Event Viewer Messages From Past Week ========

 

.

 

7/11/2013 8:49:19 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AudioEndpointBuilder service.

 

7/11/2013 10:17:47 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the McAfee Anti-Spam Service service to connect.

 

7/11/2013 10:17:47 PM, Error: Service Control Manager [7000]  - The McAfee Anti-Spam Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

 

7/11/2013 10:17:46 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the McAfee Proxy Service service to connect.

 

7/11/2013 10:17:46 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the McAfee Personal Firewall Service service to connect.

 

7/11/2013 10:17:46 PM, Error: Service Control Manager [7000]  - The McAfee Proxy Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

 

7/11/2013 10:17:46 PM, Error: Service Control Manager [7000]  - The McAfee Personal Firewall Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

 

7/11/2013 10:17:45 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the McAfee Home Network service to connect.

 

7/11/2013 10:17:45 PM, Error: Service Control Manager [7000]  - The McAfee Home Network service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

 

12/11/2013 10:57:14 PM, Error: mbamchameleon [61440]  -

 

11/11/2013 1:23:28 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AeLookupSvc service.

 

11/11/2013 1:23:28 PM, Error: Service Control Manager [7000]  - The Application Experience service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

 

11/11/2013 1:23:01 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SysMain service.

 

11/11/2013 1:23:00 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

11/11/2013 1:22:58 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service.

 

.

 

==== End Of File ===========================

[Maniac]

Step 1

Please uninstall the following applications:

Vuze

Vuze Remote Toolbar

Step 2

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

Step 3

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on AdwCleaner.exe to run the tool.
• Click on Clean.
• Confirm each time with Ok.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the content of that logfile with your next answer.
• You can find the logfile at C:\AdwCleaner[s1].txt as well.
• Step 4
  • Launch Malwarebytes' Anti-Malware
  • Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
  Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

  In your next reply, post the following log files:

  • Junkware Removal Tool log
  • AdwCleaner log
  • Malwarebytes' Anti-Malware log

[jenguerin]

Junkware removal and Awdcleaner logs attached

 

Thank you

 

 

 

AdwCleanerS0.txt

JRT.txt

[Maniac]

Please post your Malwarebytes' Anti-Malware log.

[jenguerin]

Anti-Malware Log attached...I hope this is the one you require. I just selected the most recent from the log list. Please let me know if I have posted incorrectly

 

protection-log-2013-11-17.txt

[Maniac]

This is protection log file, I would like scan log file. You have missed step 4, I would like to see the results from step 4.

[jenguerin]

You are right. Sorry, I did miss step 4. Scan revealed no threats! See log below

 

 

Malwarebytes Anti-Malware (PRO) 1.75.0.1300

 

www.malwarebytes.org

 

 

Database version: v2013.11.18.02

 

 

Windows 7 Service Pack 1 x64 NTFS

 

Internet Explorer 10.0.9200.16736

 

Jen :: JEN-PC [administrator]

 

 

Protection: Enabled

 

 

18/11/2013 9:19:18 PM

 

mbam-log-2013-11-18 (21-19-18).txt

 

 

Scan type: Quick scan

 

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

 

Scan options disabled: P2P

 

Objects scanned: 241379

 

Time elapsed: 16 minute(s), 18 second(s)

 

 

Memory Processes Detected: 0

 

(No malicious items detected)

 

 

Memory Modules Detected: 0

 

(No malicious items detected)

 

 

Registry Keys Detected: 0

 

(No malicious items detected)

 

 

Registry Values Detected: 0

 

(No malicious items detected)

 

 

Registry Data Items Detected: 0

 

(No malicious items detected)

 

 

Folders Detected: 0

 

(No malicious items detected)

 

 

Files Detected: 0

 

(No malicious items detected)

 

 

(end)

[Maniac]

How are things now?

[jenguerin]

Things are still exactly the same! Redirect in IExplorer and cannot get past the startup screen in Live mail

[Maniac]

About your Live Mail:

http://www.tech-recipes.com/rx/5256/

Also:

Download OTL to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Please tick the Scan All users. Next, click the Quick Scan button. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.

[AdvancedSetup]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!