I checked the logs from the malware thread you have. I have some questions for you, then some scans:
1.
Install Date: 7/18/2012 4:30:05 PM> Is this the original install date?
If so, has the system every run correctly?
2. RP62: 8/12/2012 4:15:42 PM - Restore Operation> Is this a
System Restore? Did you run the scans in the malware thread before or after the restore?
3. You have
2 antivirus programs running:
2012-08-12 20:32:57 > C:\Program Files (x86)\Norton Security Suite
2012-08-12 18:36:54 > C:\Program Files\AVAST Software
Norton Internet Security (also listed in installed programs.
4. There are errors from the Event Viewer indicating that an
attempt is being made to access a secure channel on your system from a remote location. You have some processes running that might be causing this: Example:
8/7/2012 8:13:27 AM, Error: Schannel [36874] - An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
Note: SChannel means secure channel.
sChannel uses TLS for security encryption
Please see the following:
Microsoft Security Bulletin MS09-007 - Important
Vulnerability in SChannel Could Allow Spoofing (960225)
http://technet.microsoft.com/en-us/security/bulletin/MS09-007
5. You are running
file sharing programs:
2012-08-09 23:44:09> C:\Program Files (x86)\
uTorrent
2012-08-09 23:43:43> C:\Users\Slurpee\AppData\Roaming\uTorrent
----------
2012-07-23 22:31:02> C:\Program Files (x86)\
SafeConnect
Please review this:
Safeconnect, Universities,
P2P, Network Security and Risk: The Tangled World of "Policy Enforcement" on Other People's Computers:
https://www.eff.org/deeplinks/2011/10/safeconnect-universities-peer-peer-file-sharing.
6. There is an
infected file in the Recycle Bin.
Need for Speed - Hot Pursuit offline activator.exe (RiskWare.Tool.CK)
This appears to have been used to pirate a software program.
Please empty the Recycle Bin now.
6. There is a very
suspicious file on the system that I'd like to remove:
2012-07-12 22:01:216----a-w-C:\windows\
silentOnce.tmp
========================================
Please address as much of the above that you can- just answers if you have them, then run the following scans:
Download
CKScanner and save to your desktop.
- Doubleclick CKScanner.exe and click Search For Files.
- When the cursor hourglass disappears, click Save List To File.
- A message box will verify that the file is saved.
- Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.
=================================
=
To run the Eset Online Virus Scan:
If you use Internet Explorer:
- Open the ESETOnlineScan
- Skip to #4 to "Continue with the directions"
If you are using a browser other than Internet Explorer
- Open Eset Smart Installer
[o] Click on the esetsmartinstaller_enu.exelink and save to the desktop.
[o] Double click on the desktop icon to run.
[o] After successful installation of the ESET Smart Installer, the ESET Online Scanner will be launched in a new Window
- Continue with the directions.
- Check 'Yes I accept terms of use.'
- Click Start button
- Accept any security warnings from your browser.
- Uncheck 'Remove found threats'
- Check 'Scan archives/
- Leave remaining settings as is.
- Press the Start button.
- ESET will then download updates for itself, install itself, and begin scanning your computer. Please wait for the scan to finish.
- When the scan completes, press List of found threats
- Push Export of text file and save the file to your desktop using a unique name, such as ESETScan. Paste this log in your next reply.
- Push the Back button, then Finish
NOTE: If no malware is found then no log will be produced. Let me know if this is the case.
=====================================
Please
paste the logs from the above in your next reply.
Am I correct that you have not programed keyboard shortcuts?
Do you still have the program you ran on the malware thread on your system?