Jump to content

oxford

Members
  • Posts

    9
  • Joined

  • Last visited

Reputation

0 Neutral
  1. All done. So was there malware from the trojan? Thank you so much, Borislav. I really, really appreciate your help.
  2. Processes are running smoothly. Ready for the final steps. Thanks.
  3. Kaspersky Scan completed-- no threats detected.
  4. ESET Scan Result: No threats found. Export button not found. Only option available upon scan completion was Finish.
  5. Please find the log files below. Thanks. Junkware Removal Tool log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by ThisisuVersion: 6.0.9 (01.01.2014:1)OS: Windows 7 Starter x86Ran by owner on Sun 01/05/2014 at 22:29:19.99~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduitSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitsearchscopesSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbarSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\toolbarSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduitSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3220468Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3225826Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{1ACEEE33-0E80-40BF-B513-1DF612F88458}Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473B6BD-4691-4744-A82B-7854EB3D70B6}Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473b6bd-4691-4744-a82b-7854eb3d70b6}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6}Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip" ~~~ Files Successfully deleted: [File] "C:\Users\owner\appdata\local\google\chrome\user data\default\local storage\http_facebook.conduitapps.com_0.localstorage-journal" ~~~ Folders Successfully deleted: [Folder] "C:\Users\owner\appdata\local\conduit"Successfully deleted: [Folder] "C:\Users\owner\appdata\local\cre"Successfully deleted: [Folder] "C:\Users\owner\appdata\local\utorrentcontrol_v2"Successfully deleted: [Folder] "C:\Users\owner\appdata\locallow\conduit"Successfully deleted: [Folder] "C:\Users\owner\appdata\locallow\utorrentcontrol_v2"Successfully deleted: [Folder] "C:\Program Files\conduit"Successfully deleted: [Folder] "C:\Program Files\utorrentcontrol_v2" ~~~ Chrome Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlfSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlfSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmddaSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on Sun 01/05/2014 at 22:34:19.08End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ AdwCleaner log# AdwCleaner v3.016 - Report created 05/01/2014 at 22:44:22 # Updated 23/12/2013 by Xplode# Operating System : Windows 7 Starter Service Pack 1 (32 bits)# Username : owner - OWNER-PC# Running from : C:\Users\owner\Downloads\AdwCleaner.exe# Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8D7646AA-8630-4EB1-B72F-00D395859315}[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8D7646AA-8630-4EB1-B72F-00D395859315}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{537F4F0B-3542-4C7D-A3E5-CF121482696C}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7473B6BD-4691-4744-A82B-7854EB3D70B6}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{537F4F0B-3542-4C7D-A3E5-CF121482696C}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7473B6BD-4691-4744-A82B-7854EB3D70B6}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{537F4F0B-3542-4C7D-A3E5-CF121482696C}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A137E236-162B-4BC5-BF30-E80CB88E12BC}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A736A49-6A42-4E15-93E5-118799875529}Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]Key Deleted : HKCU\Software\uTorrentControl_v2Key Deleted : HKCU\Software\AppDataLow\Software\BackgroundContainerKey Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl_v2Key Deleted : HKLM\Software\PIPKey Deleted : HKLM\Software\uTorrentControl_v2 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.16428 -\\ Google Chrome v31.0.1650.63 [ File : C:\Users\owner\AppData\Local\Google\Chrome\User Data\Default\preferences ] [ File : C:\Users\Other.owner-PC\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [3374 octets] - [05/01/2014 22:42:22]AdwCleaner[s0].txt - [2548 octets] - [05/01/2014 22:44:22] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2608 octets] ########## Malwarebytes' Anti-Malware logMalwarebytes Anti-Malware (Trial) 1.75.0.1300 www.malwarebytes.org Database version: v2014.01.05.02 Windows 7 Service Pack 1 x86 NTFSInternet Explorer 11.0.9600.16476owner :: OWNER-PC [administrator] Protection: Enabled 1/5/2014 10:51:22 PMmbam-log-2014-01-05 (22-51-22).txt Scan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 281020Time elapsed: 12 minute(s), 14 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected) (end)
  6. Sorry for that. I thought I disabled those. I have now uninstalled both programs. Please find the new log files below. Thanks. DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.45.2Run by owner at 22:01:30 on 2014-01-05Microsoft Windows 7 Starter 6.1.7601.1.1252.1.1033.18.1894.1065 [GMT 8:00].AV: avast! Internet Security *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: avast! Internet Security *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}FW: avast! Internet Security *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}.============== Running Processes ================.C:\Windows\system32\wininit.exeC:\Windows\system32\lsm.exeC:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\Program Files\AVAST Software\Avast\afwServ.exeC:\Windows\System32\spoolsv.exeC:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files\Realtek\Audio\HDA\AERTSrv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\Bluetooth Suite\Ath_CoexAgent.exeC:\Program Files\Bluetooth Suite\adminservice.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exeC:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files\SMART BRO\AssistantServices.exeC:\Windows\system32\taskhost.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\system32\taskeng.exeC:\Windows\system32\taskeng.exeC:\Windows\System32\rundll32.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\Realtek\Audio\HDA\RtkNGUI.exeC:\Program Files\Bluetooth Suite\BtvStack.exeC:\Program Files\Bluetooth Suite\AthBtTray.exeC:\Program Files\Microsoft Office\Office12\GrooveMonitor.exeC:\Windows\System32\hkcmd.exeC:\Windows\System32\igfxpers.exeC:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\SMART BRO\UIExec.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXEC:\Windows\system32\SearchIndexer.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\CyberLink\YouCam\YCMMirage.exeC:\Windows\system32\ctfmon.exeC:\Windows\system32\conhost.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\system32\svchost.exe -k bthsvcsC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation.============== Pseudo HJT Report ===============.uURLSearchHooks: {b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14} - <orphaned>uURLSearchHooks: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllmURLSearchHooks: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllBHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllBHO: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dllBHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dllBHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dllBHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\HPNetworkCheckPlugin.dllTB: uTorrentControl_v2 Toolbar: {7473B6BD-4691-4744-A82B-7854EB3D70B6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllTB: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllTB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - c:\program files\avast software\avast\aswWebRepIE.dlluRun: [skype] "c:\users\owner\desktop\phone\Skype.exe" /minimized /regrunuRun: [Facebook Update] "c:\users\owner\appdata\local\facebook\update\FacebookUpdate.exe" /c /nocrashservermRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exemRun: [RTHDVCPL] c:\program files\realtek\audio\hda\RtkNGUI.exe -smRun: [AtherosBtStack] "c:\program files\bluetooth suite\BtvStack.exe"mRun: [AthBtTray] "c:\program files\bluetooth suite\AthBtTray.exe"mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /noguimRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"mRun: [igfxTray] c:\windows\system32\igfxtray.exemRun: [HotKeysCmds] c:\windows\system32\hkcmd.exemRun: [Persistence] c:\windows\system32\igfxpers.exemRun: [iAStorIcon] c:\program files\intel\intel® rapid storage technology\IAStorIcon.exemRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"mRun: [uIExec] "c:\program files\smart bro\UIExec.exe"mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /noguimRunOnce: [NCPluginUpdater] "c:\program files\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" UpdateStartupFolder: c:\users\owner\appdata\roaming\micros~1\windows\startm~1\programs\startup\seagat~1.lnk - c:\users\owner\appdata\roaming\leadertech\powerregister\Seagate NA454BSQ Product Registration.exemPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\NCLauncherFromIE.exeIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dllIE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dllIE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}TCP: Interfaces\{17CB344A-D537-4623-A1D3-8EF1A2EF4673} : DHCPNameServer = 192.168.15.1TCP: Interfaces\{F614D9A7-B85D-42C5-8769-634AA8ABB9C0} : DHCPNameServer = 192.168.15.1Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dllNotify: igfxcui - igfxdev.dllSSODL: WebCheck - <orphaned>SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllmASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\31.0.1650.63\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome.============= SERVICES / DRIVERS ===============.R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-1-4 49944]R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-1-4 180248]R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2014-1-5 26136]R1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\drivers\aswNdisFlt.sys [2014-1-5 264560]R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-1-4 775952]R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-1-4 410528]R2 AERTFilters;Andrea RT Filters Service;c:\program files\realtek\audio\hda\AERTSrv.exe [2012-8-11 87968]R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-1-4 67824]R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files\bluetooth suite\Ath_CoexAgent.exe [2011-7-15 146592]R2 AtherosSvc;AtherosSvc;c:\program files\bluetooth suite\AdminService.exe [2011-7-15 76960]R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-1-4 50344]R2 avast! Firewall;avast! Firewall;c:\program files\avast software\avast\afwServ.exe [2014-1-5 113704]R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\hewlett-packard\shared\HPDrvMntSvc.exe [2012-8-10 197536]R2 IconMan_R;IconMan_R;c:\program files\realtek\realtek pcie card reader\RIconMan.exe [2012-8-11 1817088]R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2014-1-1 418376]R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2014-1-1 701512]R2 UI Assistant Service;UI Assistant Service;c:\program files\smart bro\AssistantServices.exe [2013-11-7 269648]R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\drivers\btath_flt.sys [2011-7-15 35488]R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-7-15 226976]R3 btath_avdt;Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys [2011-7-15 97440]R3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\drivers\btath_bus.sys [2011-7-15 24736]R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\drivers\btath_hcrp.sys [2011-7-15 147104]R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\drivers\btath_lwflt.sys [2011-7-15 52384]R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\drivers\btath_rcp.sys [2011-7-15 266272]R3 BtFilter;BtFilter;c:\windows\system32\drivers\btfilter.sys [2011-7-15 250528]R3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\drivers\clwvd.sys [2010-7-28 27632]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-1-1 22856]R3 MEI;Intel® Management Engine Interface;c:\windows\system32\drivers\HECI.sys [2011-1-1 41088]R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\drivers\RtsPStor.sys [2012-8-11 251496]R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2012-8-11 348776]S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\hewlett-packard\hp support framework\HPSA_Service.exe [2012-9-27 86528]S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\intel\intel® rapid storage technology\IAStorDataMgrSvc.exe [2013-9-8 13592]S2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2010-5-4 503080]S2 SkypeUpdate;Skype Updater;c:\users\owner\desktop\updater\updater.exe --> c:\users\owner\desktop\updater\Updater.exe [?]S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2012-8-11 2656280]S3 aswStm;aswStm;c:\windows\system32\drivers\aswstm.sys [2014-1-4 64168]S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2013-12-11 108032]S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2013-11-7 9216]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-12-27 14848]S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-12-27 49664]S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-12-27 27136]S3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\drivers\ZTEusbvoice.sys [2013-11-7 107776].=============== Created Last 30 ================.2014-01-05 00:51:44 26136 ----a-w- c:\windows\system32\drivers\aswKbd.sys2014-01-05 00:50:22 264560 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys2014-01-04 15:40:52 7760024 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{d5dab07a-a60a-4562-9afc-5eb5bad02844}\mpengine.dll2014-01-04 14:53:38 -------- d-----w- c:\users\owner\appdata\roaming\AVAST Software2014-01-04 14:44:26 64168 ----a-w- c:\windows\system32\drivers\aswstm.sys2014-01-04 14:44:25 775952 ----a-w- c:\windows\system32\drivers\aswSnx.sys2014-01-04 14:44:25 180248 ----a-w- c:\windows\system32\drivers\aswVmm.sys2014-01-04 14:44:23 79720 ----a-w- c:\windows\system32\drivers\aswRdr2.sys2014-01-04 14:44:23 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys2014-01-04 14:44:23 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys2014-01-04 14:44:09 43152 ----a-w- c:\windows\avastSS.scr2014-01-04 14:40:21 -------- d-----w- c:\program files\AVAST Software2014-01-04 14:34:40 -------- d-----w- c:\programdata\AVAST Software2014-01-01 08:47:08 -------- d-----w- c:\users\owner\appdata\roaming\Malwarebytes2014-01-01 08:46:39 -------- d-----w- c:\programdata\Malwarebytes2014-01-01 08:46:35 22856 ----a-w- c:\windows\system32\drivers\mbam.sys2014-01-01 08:46:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware2014-01-01 08:45:58 -------- d-----w- c:\users\owner\appdata\local\Programs2013-12-25 13:58:01 -------- d-----w- c:\users\owner\appdata\local\SoulseekQt2013-12-25 13:20:00 -------- d-----w- C:\soulseek-downloads2013-12-11 01:29:02 159232 ----a-w- c:\windows\system32\imagehlp.dll2013-12-11 01:29:01 163840 ----a-w- c:\windows\system32\scrrun.dll2013-12-11 01:29:01 141824 ----a-w- c:\windows\system32\wscript.exe2013-12-11 01:29:01 126976 ----a-w- c:\windows\system32\cscript.exe2013-12-11 01:29:01 121856 ----a-w- c:\windows\system32\wshom.ocx2013-12-11 01:28:57 2048 ----a-w- c:\windows\system32\tzres.dll2013-12-11 01:28:52 2349056 ----a-w- c:\windows\system32\win32k.sys2013-12-11 01:28:51 81408 ----a-w- c:\windows\system32\drivers\drmk.sys2013-12-11 01:28:51 177152 ----a-w- c:\windows\system32\drivers\portcls.sys2013-12-07 03:56:56 -------- d-----w- c:\program files\iPod2013-12-07 03:56:31 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E12013-12-07 03:56:31 -------- d-----w- c:\program files\iTunes.==================== Find3M ====================.2014-01-05 00:15:27 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl2014-01-05 00:15:27 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe2013-11-26 17:59:49 338944 ----a-w- c:\windows\system32\drivers\afd.sys2013-11-26 17:59:49 231424 ----a-w- c:\windows\system32\mswsock.dll2013-11-26 17:59:49 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys2013-11-26 17:59:40 1505280 ----a-w- c:\windows\system32\d3d11.dll2013-11-26 09:23:02 2724864 ----a-w- c:\windows\system32\mshtml.tlb2013-11-26 09:22:11 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll2013-11-26 08:53:56 61952 ----a-w- c:\windows\system32\iesetup.dll2013-11-26 08:52:26 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll2013-11-26 08:29:55 112128 ----a-w- c:\windows\system32\ieUnatt.exe2013-11-26 08:29:52 108032 ----a-w- c:\windows\system32\ieetwcollector.exe2013-11-26 08:28:16 553472 ----a-w- c:\windows\system32\jscript9diag.dll2013-11-26 08:16:12 4243968 ----a-w- c:\windows\system32\jscript9.dll2013-11-26 07:32:06 1928192 ----a-w- c:\windows\system32\inetcpl.cpl2013-11-26 06:33:33 1820160 ----a-w- c:\windows\system32\wininet.dll2013-11-26 04:25:54 230048 ------w- c:\windows\system32\MpSigStub.exe2013-10-12 02:03:08 656896 ----a-w- c:\windows\system32\nshwfp.dll2013-10-12 02:01:41 679424 ----a-w- c:\windows\system32\IKEEXT.DLL2013-10-12 02:01:25 216576 ----a-w- c:\windows\system32\FWPUCLNT.DLL2013-10-07 23:50:41 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll.============= FINISH: 22:02:58.11 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Starter Boot Device: \Device\HarddiskVolume1Install Date: 8/11/2012 6:12:16 AMSystem Uptime: 1/5/2014 9:59:38 PM (1 hours ago).Motherboard: Hewlett-Packard | | 3672Processor: Intel® Pentium® CPU B950 @ 2.10GHz | CPU1 | 798/1333mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 244 GiB total, 117.099 GiB free.D: is FIXED (NTFS) - 222 GiB total, 220.74 GiB free.E: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP455: 1/1/2014 9:14:12 AM - Windows UpdateRP456: 1/1/2014 11:50:53 AM - Removed QuickTimeRP458: 1/1/2014 12:30:01 PM - Microsoft Antimalware CheckpointRP459: 1/2/2014 8:59:35 AM - Windows UpdateRP460: 1/2/2014 3:05:39 PM - Windows UpdateRP461: 1/3/2014 8:30:48 PM - Windows UpdateRP462: 1/3/2014 10:21:02 PM - Windows UpdateRP463: 1/4/2014 8:54:19 AM - Windows UpdateRP464: 1/4/2014 2:48:06 PM - Windows UpdateRP466: 1/4/2014 10:38:23 PM - avast! antivirus system restore pointRP467: 1/5/2014 12:05:35 AM - Windows UpdateRP469: 1/5/2014 8:06:48 AM - avast! antivirus system restore pointRP470: 1/5/2014 8:52:49 AM - Device Driver Package Install: Avast Network Service.==== Installed Programs ======================.Adobe Flash Player 11 PluginAdobe Reader X (10.1.8)Amazon KindleApple Application SupportApple Mobile Device SupportApple Software UpdateAtheros Driver Installation Programavast! Internet SecurityBluetooth Win7 SuiteBonjourCCleanerCisco EAP-FAST ModuleCisco LEAP ModuleCisco PEAP ModuleCyberLink YouCamFacebook Video Calling 1.2.0.287Free CUDA Video Converter 6Google ChromeGoogle Update HelperHewlett-Packard ACLM.NET v1.2.1.1HP Customer Experience EnhancementsHP Power ManagerHP Support AssistantiCloudIntel® Control CenterIntel® Management Engine ComponentsIntel® Processor GraphicsIntel® Rapid Storage TechnologyiTunesJava 7 Update 45Java Auto UpdaterMalwarebytes Anti-Malware version 1.75.0.1300Microsoft Office 2007 Service Pack 3 (SP3)Microsoft Office Access MUI (English) 2007Microsoft Office Access Setup Metadata MUI (English) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (English) 2007Microsoft Office File Validation Add-InMicrosoft Office Groove MUI (English) 2007Microsoft Office Groove Setup Metadata MUI (English) 2007Microsoft Office InfoPath MUI (English) 2007Microsoft Office OneNote MUI (English) 2007Microsoft Office Outlook MUI (English) 2007Microsoft Office PowerPoint MUI (English) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (French) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (English) 2007Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)Microsoft Office Publisher MUI (English) 2007Microsoft Office Shared MUI (English) 2007Microsoft Office Shared Setup Metadata MUI (English) 2007Microsoft Office Word MUI (English) 2007Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Nero Burning ROM 10Nero BurningROM 10 Help (CHM)Nero BurnRights 10Nero BurnRights 10 Help (CHM)Nero Control Center 10Nero ControlCenter 10 Help (CHM)Nero Core Components 10Nero UpdatePicasa 3Realtek Ethernet Controller DriverRealtek High Definition Audio DriverRealtek PCIE Card ReaderSecurity Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597969) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit EditionSecurity Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition Skype™ 6.6SMART BROSynaptics TouchPad DriverUpdate for 2007 Microsoft Office System (KB967642)Update for Microsoft Office 2007 Help for Common Features (KB963673)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767849) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767916) 32-Bit EditionUpdate for Microsoft Office Excel 2007 Help (KB963678)Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit EditionUpdate for Microsoft Office Powerpoint 2007 Help (KB963669)Update for Microsoft Office Publisher 2007 Help (KB963667)Update for Microsoft Office Word 2007 Help (KB963665)VLC media player 2.1.2WinRAR 4.20 (32-bit).==== Event Viewer Messages From Past Week ========.12/31/2013 2:54:42 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}12/31/2013 2:54:40 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Installer service to connect.12/31/2013 2:54:40 PM, Error: Service Control Manager [7000] - The Windows Installer service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.12/31/2013 1:02:05 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Sun Broadband Wireless. OUC service to connect.12/31/2013 1:02:05 PM, Error: Service Control Manager [7000] - The Sun Broadband Wireless. OUC service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.12/29/2013 3:25:18 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.12/29/2013 3:25:18 PM, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.12/29/2013 3:25:01 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}12/29/2013 3:24:55 PM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.12/29/2013 3:24:55 PM, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.1/5/2014 6:39:28 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer ADMIN-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{F614D9A7-B85D-42C5-8769-634AA8ABB. The master browser is stopping or an election is being forced.1/5/2014 12:06:15 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Skype 5.10 for Windows (KB2727727).1/4/2014 11:06:35 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.1/3/2014 8:39:13 PM, Error: Microsoft Antimalware [2001] - 1/2/2014 12:01:00 AM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.1/1/2014 9:22:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}1/1/2014 9:22:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}1/1/2014 9:22:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}1/1/2014 9:22:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}1/1/2014 9:22:32 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}1/1/2014 9:22:23 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}1/1/2014 9:22:11 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache MpFilter NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Microsoft Network Inspection System service depends on the Microsoft Malware Protection Driver service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 10:34:35 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start..==== End Of File ===========================
  7. Hi Borislav, Thanks for taking the time to help me out on this. Please find the scan results below. MBAM Quick Scan Objects scanned: 284182 Objects detected: 0 Scan type: Quick Scan Time elapsed: 14 minute(s), 3 second(s) Currently scanning: The scan completed successfully. No malicious items were detected. DDS Log Files DDS DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.45.2Run by owner at 20:42:13 on 2014-01-03Microsoft Windows 7 Starter 6.1.7601.1.1252.1.1033.18.1894.553 [GMT 8:00].AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}.============== Running Processes ================.C:\Windows\system32\wininit.exeC:\Windows\system32\lsm.exec:\Program Files\Microsoft Security Client\MsMpEng.exeC:\Windows\System32\spoolsv.exeC:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files\Realtek\Audio\HDA\AERTSrv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\Bluetooth Suite\Ath_CoexAgent.exeC:\Program Files\Bluetooth Suite\adminservice.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exeC:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files\SMART BRO\AssistantServices.exeC:\Windows\system32\taskhost.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\Realtek\Audio\HDA\RtkNGUI.exeC:\Program Files\Bluetooth Suite\BtvStack.exeC:\Program Files\Bluetooth Suite\AthBtTray.exeC:\Program Files\Microsoft Security Client\msseces.exeC:\Windows\system32\taskeng.exeC:\Program Files\Microsoft Office\Office12\GrooveMonitor.exeC:\Windows\System32\hkcmd.exeC:\Windows\System32\igfxpers.exeC:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\SMART BRO\UIExec.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Users\owner\AppData\Local\Facebook\Update\FacebookUpdate.exeC:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXEC:\Windows\system32\SearchIndexer.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\Windows Media Player\wmpnetwk.exec:\Program Files\Microsoft Security Client\NisSrv.exeC:\Program Files\CyberLink\YouCam\YCMMirage.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exeC:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exeC:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files\Nero\Update\NASvc.exeC:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\servicing\TrustedInstaller.exeC:\Program Files\Malwarebytes' Anti-Malware\mbam.exeC:\Windows\system32\wuauclt.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\conhost.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Windows\System32\svchost.exe -k NetworkServiceC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\system32\svchost.exe -k bthsvcsC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation.============== Pseudo HJT Report ===============.uURLSearchHooks: {b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14} - <orphaned>uURLSearchHooks: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllmURLSearchHooks: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllBHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllBHO: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dllBHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dllBHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\HPNetworkCheckPlugin.dllTB: uTorrentControl_v2 Toolbar: {7473B6BD-4691-4744-A82B-7854EB3D70B6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dllTB: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTor.dlluRun: [skype] "c:\users\owner\desktop\phone\Skype.exe" /minimized /regrunuRun: [Facebook Update] "c:\users\owner\appdata\local\facebook\update\FacebookUpdate.exe" /c /nocrashservermRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exemRun: [RTHDVCPL] c:\program files\realtek\audio\hda\RtkNGUI.exe -smRun: [AtherosBtStack] "c:\program files\bluetooth suite\BtvStack.exe"mRun: [AthBtTray] "c:\program files\bluetooth suite\AthBtTray.exe"mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkeymRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /noguimRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"mRun: [igfxTray] c:\windows\system32\igfxtray.exemRun: [HotKeysCmds] c:\windows\system32\hkcmd.exemRun: [Persistence] c:\windows\system32\igfxpers.exemRun: [iAStorIcon] c:\program files\intel\intel® rapid storage technology\IAStorIcon.exemRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"mRun: [uIExec] "c:\program files\smart bro\UIExec.exe"mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"mRunOnce: [NCPluginUpdater] "c:\program files\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" UpdateStartupFolder: c:\users\owner\appdata\roaming\micros~1\windows\startm~1\programs\startup\seagat~1.lnk - c:\users\owner\appdata\roaming\leadertech\powerregister\Seagate NA454BSQ Product Registration.exemPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\NCLauncherFromIE.exeIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dllIE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dllIE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}TCP: NameServer = 121.1.3.88 121.1.3.20 121.1.3.250TCP: Interfaces\{17CB344A-D537-4623-A1D3-8EF1A2EF4673} : DHCPNameServer = 121.1.3.88 121.1.3.20 121.1.3.250TCP: Interfaces\{F614D9A7-B85D-42C5-8769-634AA8ABB9C0} : DHCPNameServer = 121.1.3.88 121.1.3.20 121.1.3.250Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dllNotify: igfxcui - igfxdev.dllSSODL: WebCheck - <orphaned>SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllmASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\31.0.1650.63\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome.============= SERVICES / DRIVERS ===============.R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-9-27 214696]R2 AERTFilters;Andrea RT Filters Service;c:\program files\realtek\audio\hda\AERTSrv.exe [2012-8-11 87968]R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files\bluetooth suite\Ath_CoexAgent.exe [2011-7-15 146592]R2 AtherosSvc;AtherosSvc;c:\program files\bluetooth suite\AdminService.exe [2011-7-15 76960]R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\hewlett-packard\hp support framework\HPSA_Service.exe [2012-9-27 86528]R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\hewlett-packard\shared\HPDrvMntSvc.exe [2012-8-10 197536]R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\intel\intel® rapid storage technology\IAStorDataMgrSvc.exe [2013-9-8 13592]R2 IconMan_R;IconMan_R;c:\program files\realtek\realtek pcie card reader\RIconMan.exe [2012-8-11 1817088]R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2014-1-1 418376]R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2014-1-1 701512]R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2010-5-4 503080]R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2012-3-20 104768]R2 UI Assistant Service;UI Assistant Service;c:\program files\smart bro\AssistantServices.exe [2013-11-7 269648]R2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2012-8-11 2656280]R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\drivers\btath_flt.sys [2011-7-15 35488]R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-7-15 226976]R3 btath_avdt;Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys [2011-7-15 97440]R3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\drivers\btath_bus.sys [2011-7-15 24736]R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\drivers\btath_hcrp.sys [2011-7-15 147104]R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\drivers\btath_lwflt.sys [2011-7-15 52384]R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\drivers\btath_rcp.sys [2011-7-15 266272]R3 BtFilter;BtFilter;c:\windows\system32\drivers\btfilter.sys [2011-7-15 250528]R3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\drivers\clwvd.sys [2010-7-28 27632]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-1-1 22856]R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2014-1-3 40776]R3 MEI;Intel® Management Engine Interface;c:\windows\system32\drivers\HECI.sys [2011-1-1 41088]R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2013-10-23 280288]R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\drivers\RtsPStor.sys [2012-8-11 251496]R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2012-8-11 348776]S2 SkypeUpdate;Skype Updater;c:\users\owner\desktop\updater\updater.exe --> c:\users\owner\desktop\updater\Updater.exe [?]S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2013-12-11 108032]S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2013-11-7 9216]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-12-27 14848]S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-12-27 49664]S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-12-27 27136]S3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\drivers\ZTEusbvoice.sys [2013-11-7 107776].=============== Created Last 30 ================.2014-01-03 12:33:25 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys2014-01-01 16:11:21 7760024 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{8f2c8c8e-e35e-402e-8e5d-c244304a8b8c}\mpengine.dll2014-01-01 08:47:08 -------- d-----w- c:\users\owner\appdata\roaming\Malwarebytes2014-01-01 08:46:39 -------- d-----w- c:\programdata\Malwarebytes2014-01-01 08:46:35 22856 ----a-w- c:\windows\system32\drivers\mbam.sys2014-01-01 08:46:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware2014-01-01 08:45:58 -------- d-----w- c:\users\owner\appdata\local\Programs2013-12-31 14:18:30 7760024 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll2013-12-25 13:58:01 -------- d-----w- c:\users\owner\appdata\local\SoulseekQt2013-12-25 13:20:00 -------- d-----w- C:\soulseek-downloads2013-12-25 13:10:31 -------- d-----w- c:\program files\SoulseekQt2013-12-11 01:29:02 159232 ----a-w- c:\windows\system32\imagehlp.dll2013-12-11 01:29:01 163840 ----a-w- c:\windows\system32\scrrun.dll2013-12-11 01:29:01 141824 ----a-w- c:\windows\system32\wscript.exe2013-12-11 01:29:01 126976 ----a-w- c:\windows\system32\cscript.exe2013-12-11 01:29:01 121856 ----a-w- c:\windows\system32\wshom.ocx2013-12-11 01:28:57 2048 ----a-w- c:\windows\system32\tzres.dll2013-12-11 01:28:52 2349056 ----a-w- c:\windows\system32\win32k.sys2013-12-11 01:28:51 81408 ----a-w- c:\windows\system32\drivers\drmk.sys2013-12-11 01:28:51 177152 ----a-w- c:\windows\system32\drivers\portcls.sys2013-12-07 03:56:56 -------- d-----w- c:\program files\iPod2013-12-07 03:56:31 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E12013-12-07 03:56:31 -------- d-----w- c:\program files\iTunes2013-12-06 18:51:08 719224 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{7d86eb4f-6960-4476-9c43-67eb00a5f4b6}\gapaengine.dll.==================== Find3M ====================.2013-11-26 17:59:49 338944 ----a-w- c:\windows\system32\drivers\afd.sys2013-11-26 17:59:49 231424 ----a-w- c:\windows\system32\mswsock.dll2013-11-26 17:59:49 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys2013-11-26 17:59:40 1505280 ----a-w- c:\windows\system32\d3d11.dll2013-11-26 09:23:02 2724864 ----a-w- c:\windows\system32\mshtml.tlb2013-11-26 09:22:11 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll2013-11-26 08:53:56 61952 ----a-w- c:\windows\system32\iesetup.dll2013-11-26 08:52:26 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll2013-11-26 08:29:55 112128 ----a-w- c:\windows\system32\ieUnatt.exe2013-11-26 08:29:52 108032 ----a-w- c:\windows\system32\ieetwcollector.exe2013-11-26 08:28:16 553472 ----a-w- c:\windows\system32\jscript9diag.dll2013-11-26 08:16:12 4243968 ----a-w- c:\windows\system32\jscript9.dll2013-11-26 07:32:06 1928192 ----a-w- c:\windows\system32\inetcpl.cpl2013-11-26 06:33:33 1820160 ----a-w- c:\windows\system32\wininet.dll2013-11-19 10:21:30 230048 ------w- c:\windows\system32\MpSigStub.exe2013-10-12 02:03:08 656896 ----a-w- c:\windows\system32\nshwfp.dll2013-10-12 02:01:41 679424 ----a-w- c:\windows\system32\IKEEXT.DLL2013-10-12 02:01:25 216576 ----a-w- c:\windows\system32\FWPUCLNT.DLL2013-10-07 23:50:41 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll2013-10-05 19:57:25 1168384 ----a-w- c:\windows\system32\crypt32.dll.============= FINISH: 20:43:53.42 =============== Attach DDS (Ver_2012-11-20.01).Microsoft Windows 7 Starter Boot Device: \Device\HarddiskVolume1Install Date: 8/11/2012 6:12:16 AMSystem Uptime: 1/3/2014 8:26:48 PM (0 hours ago).Motherboard: Hewlett-Packard | | 3672Processor: Intel® Pentium® CPU B950 @ 2.10GHz | CPU1 | 798/1333mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 244 GiB total, 57.864 GiB free.D: is FIXED (NTFS) - 222 GiB total, 220.74 GiB free.E: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP452: 12/28/2013 11:16:08 PM - Windows UpdateRP453: 12/30/2013 10:11:42 AM - Windows UpdateRP454: 12/31/2013 2:04:57 AM - Windows UpdateRP455: 1/1/2014 9:14:12 AM - Windows UpdateRP456: 1/1/2014 11:50:53 AM - Removed QuickTimeRP458: 1/1/2014 12:30:01 PM - Microsoft Antimalware CheckpointRP459: 1/2/2014 8:59:35 AM - Windows UpdateRP460: 1/2/2014 3:05:39 PM - Windows UpdateRP461: 1/3/2014 8:30:48 PM - Windows Update.==== Installed Programs ======================.µTorrentAdobe Flash Player 11 PluginAdobe Reader X (10.1.8)Amazon KindleApple Application SupportApple Mobile Device SupportApple Software UpdateAtheros Driver Installation ProgramBluetooth Win7 SuiteBonjourCCleanerCisco EAP-FAST ModuleCisco LEAP ModuleCisco PEAP ModuleCyberLink YouCamFacebook Video Calling 1.2.0.287Free CUDA Video Converter 6Google ChromeGoogle Update HelperHewlett-Packard ACLM.NET v1.2.1.1HP Customer Experience EnhancementsHP Power ManagerHP Support AssistantiCloudIntel® Control CenterIntel® Management Engine ComponentsIntel® Processor GraphicsIntel® Rapid Storage TechnologyiTunesJava 7 Update 45Java Auto UpdaterMalwarebytes Anti-Malware version 1.75.0.1300Microsoft Office 2007 Service Pack 3 (SP3)Microsoft Office Access MUI (English) 2007Microsoft Office Access Setup Metadata MUI (English) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (English) 2007Microsoft Office File Validation Add-InMicrosoft Office Groove MUI (English) 2007Microsoft Office Groove Setup Metadata MUI (English) 2007Microsoft Office InfoPath MUI (English) 2007Microsoft Office OneNote MUI (English) 2007Microsoft Office Outlook MUI (English) 2007Microsoft Office PowerPoint MUI (English) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (French) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (English) 2007Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)Microsoft Office Publisher MUI (English) 2007Microsoft Office Shared MUI (English) 2007Microsoft Office Shared Setup Metadata MUI (English) 2007Microsoft Office Word MUI (English) 2007Microsoft Security ClientMicrosoft Security EssentialsMicrosoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Nero Burning ROM 10Nero BurningROM 10 Help (CHM)Nero BurnRights 10Nero BurnRights 10 Help (CHM)Nero Control Center 10Nero ControlCenter 10 Help (CHM)Nero Core Components 10Nero UpdatePicasa 3Realtek Ethernet Controller DriverRealtek High Definition Audio DriverRealtek PCIE Card ReaderSecurity Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597969) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit EditionSecurity Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition Skype™ 6.6SMART BROSoulseekQtSynaptics TouchPad DriverUpdate for 2007 Microsoft Office System (KB967642)Update for Microsoft Office 2007 Help for Common Features (KB963673)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767849) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767916) 32-Bit EditionUpdate for Microsoft Office Excel 2007 Help (KB963678)Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit EditionUpdate for Microsoft Office Powerpoint 2007 Help (KB963669)Update for Microsoft Office Publisher 2007 Help (KB963667)Update for Microsoft Office Word 2007 Help (KB963665)uTorrentControl_v2 ToolbarVLC media player 2.0.3WinRAR 4.20 (32-bit).==== Event Viewer Messages From Past Week ========.12/31/2013 2:54:42 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}12/31/2013 2:54:40 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Installer service to connect.12/31/2013 2:54:40 PM, Error: Service Control Manager [7000] - The Windows Installer service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.12/31/2013 1:02:05 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Sun Broadband Wireless. OUC service to connect.12/31/2013 1:02:05 PM, Error: Service Control Manager [7000] - The Sun Broadband Wireless. OUC service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.12/29/2013 3:25:18 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.12/29/2013 3:25:18 PM, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.12/29/2013 3:25:01 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}12/29/2013 3:24:55 PM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.12/29/2013 3:24:55 PM, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.1/3/2014 8:39:13 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.165.979.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.10201.0 Error code: 0x80240022 Error description: The program can't check for definition updates. 1/3/2014 8:39:13 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.165.979.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.10201.0 Error code: 0x80240022 Error description: The program can't check for definition updates. 1/3/2014 8:35:28 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Skype 5.10 for Windows (KB2727727).1/2/2014 12:01:00 AM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.1/1/2014 9:22:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}1/1/2014 9:22:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}1/1/2014 9:22:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}1/1/2014 9:22:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}1/1/2014 9:22:32 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}1/1/2014 9:22:23 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}1/1/2014 9:22:11 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache MpFilter NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The Microsoft Network Inspection System service depends on the Microsoft Malware Protection Driver service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 9:22:11 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.1/1/2014 10:34:35 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start..==== End Of File ===========================
  8. Hi, I'm using Windows 7 starter. I plugged a flash drive yesterday into my notebook and was alerted by Microsoft Security Essentials that the drive posed a threat to my system. I scanned the flash drive and detected Trojan Gamarue. I immediately removed the drive and ran a full system scan on MSE that quarantined and permanently deleted the trojan. I also downloaded MalwareBytes, which quarantined and deleted 8 files (please see attachedMalCheck010114.txt). I simultaneously ran another MSE full scan and found no other problem. I then put my system on safe mode then ran another full scan on MSE, still no problems. I found BackgroundContainer.dll in regedit that I deleted. I'm not running a third party anti-virus currently. I used to but it resulted in BSODs. I want to know the trojan threat is now clear of trojan threats. *I'm not tech savvy at all so I'm not quite sure how I can check. Thanks.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.