Jump to content

Recommended Posts

yes hi in the last week i have used my mother in law's laptop, noticing that it has been getting slow and noticing weird very weird activity, such as, volume controls being controlled on their own, websites that i would normally be able to trust randomly acting weird such as text changing buttons popping up i felt helpless and i really did not know what to trust or what was going on. i did a lot of research and found out some simple information that i did try such as getting free antivirus softwares from kaspersky and norton but neather of them did much norton did absolutely nothing and kaspersky came up with some malwares win32 files, and at this time of getting rid of them i thought everything was fine... days later i seen weird files such as duplicate programfiles (x86) and something talking about my owner administration being taken over along with plenty more files, so then as of 1/22/2014 at 6pm i started more research and found malwarebytes.org downloaded and installed, "all in safe mode with network" because of what one site has told me to do and to my surprise after running the

malwarebytes anti-malware pro free trial it came up with i believe to be "70 pup infections" 

witch honestly i do not know what they are or weather i should get rid of them or not and i honestly am not sure if it would fix the problem entirely so please when you can please i am in need of dire help it is now 1/23/2014 6am and i am still awake trying to fix the problem so thank you for taking the time to help and read the information i have put in this post i am attaching the attach.txt files and dds.txt file i was not how ever able to save them as attach and dds files because it said for some reason there were already files with these names. i have no clue why? so i named them attach1.txt and dds1.txt and let me know if i should attach the mbam log as well thank you.

Attach1.txt

DDS1.txt

Link to post
Share on other sites

hello I am a new user and am having a lot of trouble with my mother in-laws laptop, I first noticed it when the volume mixer began malfunctioning, I noticed missing files and duplicated files such as a duplicate program files(x86) and registry files that are missing or mixed up, so far I went into safe mode with networking and installed kaspersky, kaspersky had found 4 malwares that I deleted then I installed microsoft security essentials and ran that which came up with a couple more files that I terminated and just installed and ran with quick scan malwarebytes and antivirus pro free trial and it had came up with like 72 PUP files and i currently do not know where to go from there, if you can please help me I would greatly appreciate it before i do end up getting rid of something that I do need thank you. 

 

here are the dds.txt and the attach.txt files as well thank you. 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK
Internet Explorer: 11.0.9600.16428  BrowserJavaVersion: 10.21.2
Run by Owner at 13:09:07 on 2014-01-23
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.2986.1140 [GMT -6:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\Explorer.EXE
C:\windows\system32\ctfmon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Malwarebytes' Anti-Malware\mbam.exe
C:\windows\System32\osk.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\SysWOW64\NOTEPAD.EXE
C:\windows\SysWOW64\NOTEPAD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\SysWOW64\DllHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
uURLSearchHooks: {7b9f8c21-46ec-4c0b-8683-e755ef84577a} - <orphaned>
uURLSearchHooks: <No Name>:  - LocalServer32 - <no file>
uURLSearchHooks: {2d922b81-34c7-4aab-9c5d-433e79fc9445} - <orphaned>
uURLSearchHooks: {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - <orphaned>
mWinlogon: Userinit = userinit.exe
BHO: MRI_DISABLED - <orphaned>
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
BHO: Plus-HD-6.0: {11111111-1111-1111-1111-110411901188} - C:\Program Files (x86)\Plus-HD-6.0\Plus-HD-6.0-bho.dll
BHO: <No Name>: {11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} - C:\Program Files (x86)\SiteRanker\SiteRank.dll
BHO: {3a421c8f-e238-4aeb-8874-b8b5f2cc4772} - <orphaned>
BHO: {60e91567-ef8a-4520-bce2-83aba5256799} - <orphaned>
BHO: RightSurf: {88be1aa9-6740-461c-9e3e-f35eb8fa741c} - C:\Program Files (x86)\RightSurf\RightSurfbho.dll
BHO: Fantapper: {8A86D350-37AB-410A-8531-7D1363F317B3} - C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Player\\IEInstaller.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Wajam: {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll
BHO: TidyNetwork: {BEF23FD1-DDAC-385F-E661-59A214525F69} - C:\Program Files (x86)\TidyNetwork\petn.dll
BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO: mysearchdial Helper Object: {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files (x86)\Mysearchdial\1.8.21.0\bh\mysearchdial.dll
TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB: mysearchdial Toolbar: {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\Program Files (x86)\Mysearchdial\1.8.21.0\mysearchdialTlbr.dll
uRun: [Facebook Update] "C:\Users\Owner\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
uRun: [Exetender] "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
uRun: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
uRunOnce: [Del21155186] cmd.exe /Q /D /c del "C:\Users\Owner\AppData\Local\Temp\0.del"
uRunOnce: [Del21162300] cmd.exe /Q /D /c del "C:\Users\Owner\AppData\Local\Temp\0.del"
uRunOnce: [Del21422759] cmd.exe /Q /D /c del "C:\Users\Owner\AppData\Local\Temp\0.del"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [CouponAlert_2p Browser Plugin Loader] C:\PROGRA~2\COUPON~2\bar\1.bin\2pbrmon.exe
mRun: [NACAgentUI] C:\Program Files (x86)\Cisco\Cisco NAC Agent\NACAgentUI.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [instaLAN] "C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinRouterMonitor.exe" startup
mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRun: [siteRanker] "C:\Program Files (x86)\SiteRanker\SiteRankTray.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [sMessaging] "C:\Users\Owner\AppData\Local\Strongvault Online Backup\SMessaging.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
mRunOnce: [Malwarebytes Anti-Malware] C:\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mRunOnce: [1] C:\Malwarebytes' Anti-Malware\Chameleon\mbam-chameleon.exe /r /p
mRunOnce: [Del21155186] cmd.exe /Q /D /c del "C:\Users\Owner\AppData\Local\Temp\0.del"
mRunOnce: [Del21162300] cmd.exe /Q /D /c del "C:\Users\Owner\AppData\Local\Temp\0.del"
mRunOnce: [Del21422759] cmd.exe /Q /D /c del "C:\Users\Owner\AppData\Local\Temp\0.del"
dRun: [Exetender] "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
StartupFolder: C:\Users\Owner\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MYPCBA~1.LNK - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
StartupFolder: C:\Users\Owner\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\_UNINS~1.LNK - C:\Users\Owner\AppData\Local\Temp\_uninst_13015865.bat
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} - 
TCP: NameServer = 75.75.75.75 75.75.76.76 192.168.1.1
TCP: Interfaces\{3BB0EAFF-DA3D-46F3-9E20-A2095B1FE41B} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{68D02F59-6CEF-42ED-9AF7-E52CD3B37E7B} : DHCPNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
TCP: Interfaces\{68D02F59-6CEF-42ED-9AF7-E52CD3B37E7B}\14355535 : DHCPNameServer = 192.168.1.1 74.128.19.102
TCP: Interfaces\{68D02F59-6CEF-42ED-9AF7-E52CD3B37E7B}\2656C6B696E6E2237383E2765756374737 : DHCPNameServer = 192.168.169.1
TCP: Interfaces\{68D02F59-6CEF-42ED-9AF7-E52CD3B37E7B}\2656C6B696E6E2633643 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{68D02F59-6CEF-42ED-9AF7-E52CD3B37E7B}\5436F694E4E4 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{68D02F59-6CEF-42ED-9AF7-E52CD3B37E7B}\7596C646669627560235 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{68D02F59-6CEF-42ED-9AF7-E52CD3B37E7B}\96E63796768647F577966696F553330353 : DHCPNameServer = 192.168.2.1 74.128.19.102 74.128.17.114
TCP: Interfaces\{B7B9A543-E57E-4330-94FF-48373E7FC6C2} : DHCPNameServer = 192.168.42.129
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll
SSODL: WebCheck - <orphaned>
LSA: Notification Packages =  scecli EgisPwdFilter EgisDSPwdFilter
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Plus-HD-6.0: {11111111-1111-1111-1111-110411901188} - C:\Program Files (x86)\Plus-HD-6.0\Plus-HD-6.0-bho64.dll
x64-BHO: EgisPBIE Class: {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} - C:\Program Files (x86)\EgisTec BioExcess\x64\EgisPBIE.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: TidyNetwork: {BEF23FD1-DDAC-385F-E661-59A214525F69} - C:\Program Files (x86)\TidyNetwork\petn64.dll
x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [igfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ihz3uwlq.default\
FF - prefs.js: browser.search.selectedEngine - Mysearchdial
FF - prefs.js: keyword.URL - 
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Free Ride Games\npExentCtl.dll
FF - plugin: C:\Program Files (x86)\Free Ride Games\npGameTreatWidget.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll
FF - plugin: C:\Users\Owner\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Users\Owner\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Users\Owner\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.mysearchdial.hmpg - true
FF - user.js: extensions.mysearchdial.dfltSrch - true
FF - user.js: extensions.mysearchdial.srchPrvdr - Mysearchdial
FF - user.js: extensions.mysearchdial.dnsErr - true
FF - user.js: extensions.mysearchdial_i.newTab - false
FF - user.js: extensions.mysearchdial.id - F0DEF17F58EA8BD1
FF - user.js: extensions.mysearchdial.instlDay - 16093
FF - user.js: extensions.mysearchdial.vrsn - 1.8.21.0
FF - user.js: extensions.mysearchdial.vrsni - 1.8.21.0
FF - user.js: extensions.mysearchdial_i.vrsnTs - 1.8.21.04:38:59
FF - user.js: extensions.mysearchdial.prtnrId - mysearchdial
FF - user.js: extensions.mysearchdial.prdct - mysearchdial
FF - user.js: extensions.mysearchdial.aflt - dsites0101
FF - user.js: extensions.mysearchdial_i.smplGrp - none
FF - user.js: extensions.mysearchdial.tlbrId - base
FF - user.js: extensions.mysearchdial.instlRef - 
FF - user.js: extensions.mysearchdial.dfltLng - 
FF - user.js: extensions.mysearchdial.appId - {CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
FF - user.js: extensions.mysearchdial.excTlbr - false
FF - user.js: extensions.mysearchdial_i.hmpg - true
FF - user.js: extensions.mysearchdial.cr - 663212915
FF - user.js: extensions.mysearchdial.cd - 2XzuyEtN2Y1L1Qzu0FtD0D0E0FtCyB0FyDzz0E0Azz0B0DtCtN0D0Tzu0SyByDtAtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R
FF - user.js: extensions.mysearchdial.AL - 2
FF - user.js: extensions.irmysearch.aflt - dsites0101
FF - user.js: extensions.irmysearch.instlRef - 
FF - user.js: extensions.irmysearch.cr - 663212915
FF - user.js: extensions.irmysearch.cd - 2XzuyEtN2Y1L1Qzu0FtD0D0E0FtCyB0FyDzz0E0Azz0B0DtCtN0D0Tzu0SyByDtAtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R
.
============= SERVICES / DRIVERS ===============
.
R0 fbfmon;fbfmon;C:\windows\System32\drivers\fbfmon.sys [2011-8-18 57952]
R0 LHDmgr;LHDmgr;C:\windows\System32\drivers\LhdX64.sys [2011-8-18 39008]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\windows\System32\drivers\AcpiVpc.sys [2010-10-25 29792]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\rtsuvstor.sys [2011-8-18 307304]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]
S0 MpFilter;Microsoft Malware Protection Driver;C:\windows\System32\drivers\MpFilter.sys [2013-9-27 248240]
S1 BPntDrv;BPntDrv;C:\windows\System32\drivers\BPntDrv.sys [2011-8-18 13408]
S1 mwlPSDFilter;mwlPSDFilter;C:\windows\System32\drivers\mwlPSDFilter.sys [2011-8-18 22912]
S1 mwlPSDNServ;mwlPSDNServ;C:\windows\System32\drivers\mwlPSDNserv.sys [2011-8-18 20328]
S1 mwlPSDVDisk;mwlPSDVDisk;C:\windows\System32\drivers\mwlPSDVDisk.sys [2011-8-18 62584]
S2 BackupStack;Computer Backup (MyPC Backup);C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-9-19 38440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2013-4-22 822504]
S2 EgisTec Service;EgisTec Service;C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe [2010-12-13 703856]
S2 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-12-13 650096]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);C:\windows\System32\drivers\FPSensor.sys [2010-10-31 35952]
S2 FTSvc;Fantapper Player Update Service;C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Player\FantapperUpdateService.exe [2011-12-12 11776]
S2 KSS;Kaspersky Security Scan Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [2012-12-7 202328]
S2 MBAMScheduler;MBAMScheduler;C:\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-23 418376]
S2 MBAMService;MBAMService;C:\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-23 701512]
S2 MgAssistService;MgAssist Service;C:\Program Files (x86)\Mobogenie\MgAssist.exe [2014-1-18 63168]
S2 NACAgent;Cisco NAC Agent;C:\Program Files (x86)\Cisco\Cisco NAC Agent\NACAgent.exe [2012-12-3 1233848]
S2 NisDrv;Microsoft Network Inspection System;C:\windows\System32\drivers\NisDrvWFP.sys [2013-9-27 134944]
S2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-6-26 523944]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]
S2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-8-18 2656280]
S2 Update RightSurf;Update RightSurf;C:\Program Files (x86)\RightSurf\updateRightSurf.exe [2014-1-10 97056]
S2 WajamUpdaterV3;WajamUpdaterV3;C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe [2013-10-25 114176]
S2 X5XSEx_Pr143;X5XSEx_Pr143;C:\Program Files (x86)\Free Ride Games\X5XSEx_Pr143.sys [2012-11-23 56136]
S3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\System32\drivers\clwvd.sys [2010-12-24 31088]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\windows\System32\drivers\ssudbus.sys [2013-6-4 103448]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2013-12-13 111616]
S3 IntcDAud;Intel® Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2011-4-14 317440]
S3 massfilter_hs;ZTE HandSet Mass Storage Filter Driver;C:\windows\System32\drivers\massfilter_hs.sys [2012-8-8 18456]
S3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2014-1-23 25928]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
S3 S6000KNT;S6000KNT_WebCam Driver;C:\windows\System32\drivers\S6000KNT.sys [2011-8-18 3293272]
S3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2013-6-26 767144]
S3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2013-6-26 273576]
S3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2013-6-26 28840]
S3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2013-6-26 23208]
S3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-6-26 207528]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2011-10-19 1255736]
S3 wsvd;wsvd;C:\windows\System32\drivers\wsvd.sys [2009-7-21 121840]
S3 zghsdiag;ZTE General Handset Diagnostic Port;C:\windows\System32\drivers\zghsdiag.sys [2012-8-8 129304]
S3 zghsmdm;ZTE General Handset USB Modem Proprietary;C:\windows\System32\drivers\zghsmdm.sys [2012-8-8 129304]
S3 zghsnmea;ZTE General Handset NMEA Port;C:\windows\System32\drivers\zghsnmea.sys [2012-8-8 129304]
S4 CltMngSvc;Search Protect by Conduit Service;C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe [2014-1-1 2301216]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== File Associations ===============
.
FileExt: .reg: regfile=regedit.exe "%1" [userChoice]
.
=============== Created Last 30 ================
.
2014-01-23 14:44:47 -------- d-----w- C:\Users\Owner\AppData\Local\{99EC8285-5CAB-440F-85A1-056CAE12300F}
2014-01-23 10:39:22 -------- d-----w- C:\Program Files (x86)\RightSurf
2014-01-23 10:39:03 -------- d-----w- C:\Users\Owner\AppData\Roaming\mysearchdial
2014-01-23 10:39:02 -------- d-----w- C:\Users\Owner\AppData\Roaming\DigitalSites
2014-01-23 10:39:00 -------- d-----w- C:\Users\Owner\AppData\Roaming\0D0S1L2Z1P1B0T1P1B2Z
2014-01-23 10:38:59 -------- d-----w- C:\Program Files (x86)\Mysearchdial
2014-01-23 10:38:57 -------- d-----w- C:\Program Files (x86)\OpenIt
2014-01-23 07:59:27 25928 ----a-w- C:\windows\System32\drivers\mbam.sys
2014-01-23 07:59:27 -------- d-----w- C:\Malwarebytes' Anti-Malware
2014-01-23 04:07:01 75888 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FDB2B2E3-AD88-4C7E-B963-ECC403F0506B}\offreg.dll
2014-01-23 00:23:18 10315576 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FDB2B2E3-AD88-4C7E-B963-ECC403F0506B}\mpengine.dll
2014-01-21 23:26:30 10315576 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-01-21 06:48:06 0 ----a-w- C:\windows\SysWow64\RENBB04.tmp
2014-01-21 06:48:06 0 ----a-w- C:\windows\SysWow64\RENBAF4.tmp
2014-01-21 06:48:06 0 ----a-w- C:\windows\SysWow64\RENBAF3.tmp
2014-01-21 06:48:06 -------- d-----w- C:\Program Files\extensions
2014-01-21 06:23:31 -------- d-----w- C:\Users\Owner\AppData\Local\Macromedia
2014-01-20 19:28:13 -------- d-----w- C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
2014-01-20 19:03:52 965000 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C5C5BD12-B15C-4B7B-9655-6D920E8A4A82}\gapaengine.dll
2014-01-20 19:02:28 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2014-01-20 19:02:26 -------- d-----w- C:\Program Files\Microsoft Security Client
2014-01-20 18:48:42 95648 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-20 16:41:00 -------- d-----w- C:\Users\Owner\AppData\Local\NPE
2014-01-20 15:18:02 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2014-01-20 15:09:33 -------- d-----w- C:\ProgramData\Kaspersky Lab
2014-01-20 07:09:46 -------- d-----w- C:\Users\Owner\AppData\Local\SMS Enabler
2014-01-20 07:07:14 -------- d-----w- C:\Program Files (x86)\SMSENABLER.com
2014-01-19 22:59:55 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2A5FB034-9F75-4901-BDFA-2932516EB9A3}\mpengine.dll
2014-01-19 03:53:36 -------- d-----w- C:\Users\Owner\AppData\Roaming\Malwarebytes
2014-01-19 03:53:12 -------- d-----w- C:\ProgramData\Malwarebytes
2014-01-19 03:53:10 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-19 03:51:29 -------- d-----w- C:\Users\Owner\AppData\Roaming\SparkTrust
2014-01-19 03:51:29 -------- d-----w- C:\Users\Owner\AppData\Roaming\DriverCure
2014-01-19 03:48:02 -------- d-----w- C:\Program Files (x86)\Common Files\SparkTrust
2014-01-19 03:47:58 -------- d-----w- C:\ProgramData\SparkTrust
2014-01-19 03:47:58 -------- d-----w- C:\Program Files (x86)\SparkTrust
2014-01-19 03:20:30 -------- d-----w- C:\Users\Owner\AppData\Roaming\USTechSupport
2014-01-19 03:20:00 -------- d-----w- C:\Program Files (x86)\USTechSupport
2014-01-19 03:19:37 -------- d-----w- C:\ProgramData\USTechSupport
2014-01-19 00:33:26 -------- d-----w- C:\Users\Owner\AppData\Local\SearchProtect
2014-01-19 00:33:26 -------- d-----w- C:\Program Files (x86)\SearchProtect
2014-01-19 00:33:17 -------- d-----w- C:\Program Files (x86)\Plus-HD-6.0
2014-01-19 00:33:04 -------- d-----w- C:\Users\Owner\AppData\Local\Wajam
2014-01-19 00:33:00 -------- d-----w- C:\Program Files (x86)\Wajam
2014-01-19 00:14:46 -------- d-----w- C:\Users\Owner\AppData\Local\RegistryDR
2014-01-19 00:14:24 -------- d-----w- C:\Program Files (x86)\Registry Dr
2014-01-19 00:07:13 -------- d-----w- C:\Users\Owner\AppData\Local\TidyNetwork
2014-01-19 00:07:13 -------- d-----w- C:\Program Files (x86)\TidyNetwork
2014-01-19 00:06:29 -------- d-----w- C:\Users\Owner\AppData\Local\cache
2014-01-19 00:06:28 -------- d-----w- C:\Users\Owner\AppData\Roaming\newnext.me
2014-01-19 00:06:28 -------- d-----w- C:\Users\Owner\AppData\Local\genienext
2014-01-19 00:06:27 -------- d-----w- C:\Users\Owner\AppData\Local\Mobogenie
2014-01-19 00:05:42 -------- d-----w- C:\Program Files (x86)\Mobogenie
2014-01-19 00:05:19 -------- d-----w- C:\Users\Owner\AppData\Local\SwvUpdater
2014-01-15 00:30:02 99840 ----a-w- C:\windows\System32\drivers\usbccgp.sys
2014-01-15 00:30:02 7808 ----a-w- C:\windows\System32\drivers\usbd.sys
2014-01-15 00:30:02 53248 ----a-w- C:\windows\System32\drivers\usbehci.sys
2014-01-15 00:30:02 343040 ----a-w- C:\windows\System32\drivers\usbhub.sys
2014-01-15 00:30:02 325120 ----a-w- C:\windows\System32\drivers\usbport.sys
2014-01-15 00:30:02 30720 ----a-w- C:\windows\System32\drivers\usbuhci.sys
2014-01-15 00:30:02 25600 ----a-w- C:\windows\System32\drivers\usbohci.sys
2014-01-15 00:30:01 3156480 ----a-w- C:\windows\System32\win32k.sys
2014-01-15 00:30:00 376768 ----a-w- C:\windows\System32\drivers\netio.sys
2014-01-11 02:50:44 -------- d-----w- C:\Users\Owner\AppData\Local\{DF4F3619-1EAB-4DE7-818A-4B5C02C9D3A5}
.
==================== Find3M  ====================
.
2014-01-19 07:33:29 270496 ------w- C:\windows\System32\MpSigStub.exe
2013-12-10 21:20:17 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-10 21:20:17 692616 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-12-05 19:41:46 22370928 ----a-w- C:\Program Files\xul.dll
2013-12-05 19:37:44 108144 ----a-w- C:\Program Files\webapprt-stub.exe
2013-12-05 19:37:41 170960 ----a-w- C:\Program Files\webapp-uninstaller.exe
2013-12-05 19:37:37 276592 ----a-w- C:\Program Files\updater.exe
2013-12-05 19:37:32 153712 ----a-w- C:\Program Files\softokn3.dll
2013-12-05 19:37:28 28272 ----a-w- C:\Program Files\plugin-hang-ui.exe
2013-12-05 19:37:25 18544 ----a-w- C:\Program Files\plugin-container.exe
2013-12-05 19:37:22 92272 ----a-w- C:\Program Files\nssdbm3.dll
2013-12-05 19:37:20 393840 ----a-w- C:\Program Files\nssckbi.dll
2013-12-05 19:37:15 1776240 ----a-w- C:\Program Files\nss3.dll
2013-12-05 19:36:56 3559024 ----a-w- C:\Program Files\mozjs.dll
2013-12-05 19:36:41 130672 ----a-w- C:\Program Files\mozglue.dll
2013-12-05 19:36:39 17008 ----a-w- C:\Program Files\mozalloc.dll
2013-12-05 19:36:37 194552 ----a-w- C:\Program Files\maintenanceservice_installer.exe
2013-12-05 19:36:33 119408 ----a-w- C:\Program Files\maintenanceservice.exe
2013-12-05 19:36:29 647280 ----a-w- C:\Program Files\libGLESv2.dll
2013-12-05 19:36:19 53360 ----a-w- C:\Program Files\libEGL.dll
2013-12-05 19:36:15 3449456 ----a-w- C:\Program Files\gkmedias.dll
2013-12-05 19:34:55 302192 ----a-w- C:\Program Files\freebl3.dll
2013-12-05 19:34:42 275568 ----a-w- C:\Program Files\firefox.exe
2013-12-05 19:34:28 117360 ----a-w- C:\Program Files\crashreporter.exe
2013-12-05 19:34:17 75376 ----a-w- C:\Program Files\breakpadinjector.dll
2013-12-05 19:34:07 20080 ----a-w- C:\Program Files\AccessibleMarshal.dll
2013-11-26 10:19:07 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2013-11-26 10:18:23 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2013-11-26 09:48:07 66048 ----a-w- C:\windows\System32\iesetup.dll
2013-11-26 09:46:25 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2013-11-26 09:23:02 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2013-11-26 09:18:39 139264 ----a-w- C:\windows\System32\ieUnatt.exe
2013-11-26 09:18:09 111616 ----a-w- C:\windows\System32\ieetwcollector.exe
2013-11-26 09:16:57 708608 ----a-w- C:\windows\System32\jscript9diag.dll
2013-11-26 08:35:02 5769216 ----a-w- C:\windows\System32\jscript9.dll
2013-11-26 08:28:16 553472 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2013-11-26 08:16:12 4243968 ----a-w- C:\windows\SysWow64\jscript9.dll
2013-11-26 08:02:16 1995264 ----a-w- C:\windows\System32\inetcpl.cpl
2013-11-26 07:32:06 1928192 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2013-11-26 07:07:57 2334208 ----a-w- C:\windows\System32\wininet.dll
2013-11-26 06:33:33 1820160 ----a-w- C:\windows\SysWow64\wininet.dll
2013-11-23 18:26:20 417792 ----a-w- C:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47:34 465920 ----a-w- C:\windows\System32\WMPhoto.dll
2013-11-12 02:23:09 2048 ----a-w- C:\windows\System32\tzres.dll
2013-11-12 02:07:29 2048 ----a-w- C:\windows\SysWow64\tzres.dll
2013-10-30 02:32:01 335360 ----a-w- C:\windows\System32\msieftp.dll
2013-10-30 02:19:52 301568 ----a-w- C:\windows\SysWow64\msieftp.dll
2012-03-17 22:41:25 161712 ----a-w- C:\Program Files (x86)\1tres.dll
2010-05-26 19:41:02 2106216 ----a-w- C:\Program Files\D3DCompiler_43.dll
2010-03-18 16:15:26 770384 ----a-w- C:\Program Files\msvcr100.dll
2010-03-18 16:15:26 421200 ----a-w- C:\Program Files\msvcp100.dll
.
============= FINISH: 13:09:25.75 ===============
 
 
 
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium 
Boot Device: \Device\HarddiskVolume1
Install Date: 10/18/2011 6:07:10 PM
System Uptime: 1/23/2014 7:10:59 AM (6 hours ago)
.
Motherboard: LENOVO |  | Emerald Lake
Processor: Intel® Pentium® CPU B950 @ 2.10GHz | CPU | 2095/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 254 GiB total, 186.974 GiB free.
D: is FIXED (NTFS) - 29 GiB total, 26.8 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Security Processor Loader Driver
Device ID: ROOT\LEGACY_SPLDR\0000
Manufacturer: 
Name: Security Processor Loader Driver
PNP Device ID: ROOT\LEGACY_SPLDR\0000
Service: spldr
.
==== System Restore Points ===================
.
RP139: 1/18/2014 9:14:55 PM - Before Registry Dr fix
RP140: 1/19/2014 3:00:12 AM - Windows Update
RP141: 1/20/2014 12:47:43 PM - Installed Java 7 Update 51
RP142: 1/20/2014 1:28:01 PM - Installed Windows 7 Upgrade Advisor
RP143: 1/21/2014 12:36:12 AM - Removed Java 7 Update 51
RP144: 1/21/2014 12:39:51 AM - Removed Java 7 Update 51
RP145: 1/21/2014 12:47:09 AM - Removed Java 6 Update 31
RP146: 1/22/2014 6:22:24 PM - Windows Update
.
==== Installed Programs ======================
.
7 Wonders II
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.06)
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Ask Toolbar
Atheros Client Installation Program
Belkin Setup and Router Monitor
Best Buy pc app
BioExcess
Bonjour
Build-a-lot 2: Town of the Year
Canon MP495 series MP Drivers
CCleaner
ChromecastApp
Cisco NAC Agent 
CyberLink YouCam
D3DX10
EgisTec ES603 WDM Driver
Energy Management
ES603 WDM Driver
Facebook Video Calling 2.0.0.447
Fantapper Player
Fishdom
Flash Movie Player 1.5
Free Ride Games Player
Google Chrome
Google Earth
Google Update Helper
Intel® Control Center
Intel® Management Engine Components
Intel® Processor Graphics
Intel® Rapid Storage Technology
iTunes
Java Auto Updater
Junk Mail filter update
Kaspersky Security Scan
Lenovo EasyCamera
Lenovo EE Boot Optimizer
Lenovo OneKey Recovery
Lenovo Security Suite
Malwarebytes Anti-Malware version 1.75.0.1300
McAfee Security Scan Plus
Mesh Runtime
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Starter 2010 - English
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Mobogenie
Mozilla Firefox 26.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MyPC Backup 
Mysearchdial
Open It!
Plus-HD-6.0
Power2Go
QuickTime
Realtek Ethernet Controller Driver For Windows 7
Realtek High Definition Audio Driver
Realtek USB 2.0 Reader Driver
RightSurf
Search Protect
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
SiteRanker
Skype™ 6.3
SMS Enabler v2.5.5
Software Version Updater
Strongvault Online Backup
Synaptics Pointing Device Driver
TidyNetwork
Unity Web Player
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
Update for Zip Opener
VeriFace
VitalSource Bookshelf
Wajam
Windows 7 Upgrade Advisor
Windows Driver Package - Lenovo (ACPIVPC) System  (12/02/2010 6.1.0.1)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Wizard101
Zip Opener Packages
ZTE Handset USB Driver 5.2066.1.8
.
==== Event Viewer Messages From Past Week ========
.
1/23/2014 7:20:25 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service stisvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
1/23/2014 7:12:02 AM, Error: Service Control Manager [7001]  - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:  The dependency service or group failed to start.
1/23/2014 7:12:01 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
1/23/2014 7:12:01 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
1/23/2014 7:11:55 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
1/23/2014 7:11:48 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
1/23/2014 7:11:43 AM, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  BPntDrv discache MpFilter mwlPSDFilter mwlPSDNServ mwlPSDVDisk spldr Wanarpv6
1/23/2014 7:11:41 AM, Error: Service Control Manager [7001]  - The Microsoft Network Inspection System service depends on the Microsoft Malware Protection Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
1/23/2014 7:11:41 AM, Error: Service Control Manager [7001]  - The Client Virtualization Handler service depends on the Application Virtualization Client service which failed to start because of the following error:  The dependency service or group failed to start.
1/23/2014 12:59:07 PM, Error: Service Control Manager [7001]  - The Computer Browser service depends on the Server service which failed to start because of the following error:  The dependency service or group failed to start.
1/23/2014 12:48:38 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {D3DCB472-7261-43CE-924B-0704BD730D5F}
1/23/2014 12:48:38 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {145B4335-FE2A-4927-A040-7C35AD3180EF}
1/22/2014 9:57:44 PM, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.
1/22/2014 9:54:53 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
1/22/2014 9:54:52 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
1/22/2014 9:54:12 PM, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFD BPntDrv DfsC discache MpFilter mwlPSDFilter mwlPSDNServ mwlPSDVDisk NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:  A device attached to the system is not functioning.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:  A device attached to the system is not functioning.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:  The dependency service or group failed to start.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:  The dependency service or group failed to start.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error:  A device attached to the system is not functioning.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
1/22/2014 9:54:12 PM, Error: Service Control Manager [7001]  - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:  A device attached to the system is not functioning.
1/22/2014 10:10:27 PM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:   Previous Signature Version: 1.165.2406.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: Default URL   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:   Previous Engine Version: 1.1.10201.0   Error code: 0x8007043c   Error description: This service cannot be started in Safe Mode 
1/22/2014 10:10:27 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
1/20/2014 5:37:58 AM, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  BHDrvx64 BPntDrv ccSet_NAV discache eeCtrl IDSVia64 mwlPSDFilter mwlPSDNServ mwlPSDVDisk spldr SRTSPX SymIRON SymNetS Wanarpv6
1/20/2014 12:29:30 PM, Error: Service Control Manager [7000]  - The X5XSEx service failed to start due to the following error:  The system cannot find the file specified.
1/20/2014 12:29:07 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Computer Backup (MyPC Backup) service to connect.
1/20/2014 12:29:07 PM, Error: Service Control Manager [7000]  - The Computer Backup (MyPC Backup) service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
1/19/2014 2:05:31 AM, Error: Service Control Manager [7000]  - The Coupon AlertService service failed to start due to the following error:  The system cannot find the path specified.
1/18/2014 7:35:13 PM, Error: Microsoft-Windows-WMPNSS-Service [14332]  - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
1/18/2014 6:06:28 PM, Error: Service Control Manager [7030]  - The MgAssist Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
1/18/2014 10:59:51 PM, Error: Service Control Manager [7000]  - The McAfee SiteAdvisor Service service failed to start due to the following error:  The system cannot find the file specified.
1/18/2014 10:59:45 PM, Error: Service Control Manager [7000]  - The Coupon AlertService service failed to start due to the following error:  The system cannot find the file specified.
1/17/2014 9:59:48 PM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
1/17/2014 9:59:48 PM, Error: Service Control Manager [7024]  - The Windows Search service terminated with service-specific error %%-1073473535.
1/17/2014 10:00:04 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
1/17/2014 10:00:04 PM, Error: Service Control Manager [7000]  - The Windows Search service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
1/17/2014 10:00:03 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
.
==== End Of File ===========================
 

 

Link to post
Share on other sites

Hello and post-32477-1261866970.gif

P2P/Piracy Warning:

    
If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

 

Next,

 

Download AdwCleaner by Xplode from here: http://www.bleepingcomputer.com/download/adwcleaner/ and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.
  • Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • When it's done you'll see: Pending: Uncheck any elements you don't want removed.
  • Now click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • Look over the log especially under Files/Folders for any program you want to save.
  • If there's a program you want to save, just uncheck it from AdwCleaner.
  • If you're not sure, post the log for review.
  • If you're ready to clean it all up.....click the Clean button.
  • After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • Items that are deleted are moved to the Quarantine Folder: C:\AdwCleaner\Quarantine
  • To restore an item that has been deleted (if necessary):
  • Go to Tools > Quarantine Manager > check what you want restored > now click on Restore.

 
Next,
 
thisisujrt.gif Please download Junkware Removal Tool to your desktop.

Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.

 

Next,

 

Download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.


 

Post those logs to next reply..

 

Kevin

Link to post
Share on other sites

  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.