DejaVoodoo
Posts: 12 +0
My laptop is slow and sluggish no matter what I am doing. Startup takes a good 5 minutes on some restarts, and there is always high memory/resource usage, and my AV/AM programs are always turned off. I can't open anything or use my browser (Firefox or Chrome) without it locking up/not responding, or getting hundreds of non-responsive script or plugin errors. These will often take 10 minutes to resolve, and I usually just have to kill my browser and any open software/programs to get it to do anything. I've run scans, and they will pick up small things, but the problems are still there, and very frustrating.
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11/21/2014
Scan Time: 4:31:07 PM
Logfile: 1log.txt
Administrator: Yes
Version: 0.00.0.0000
Malware Database: v2014.11.21.12
Rootkit Database: v2014.11.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Bambie
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 389812
Time Elapsed: 1 hr, 19 min, 19 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17420 BrowserJavaVersion: 10.60.2
Run by Bambie at 18:36:40 on 2014-11-21
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
C:\Program Files\HitmanPro\hmpsched.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\HitmanPro\HitmanPro.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files (x86)\Launch Manager\LMutilps32.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
C:\Program Files (x86)\BlueStacks\HD-Service.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
C:\Program Files (x86)\BlueStacks\HD-Network.exe
C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Users\Bambie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Users\Bambie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Users\Bambie\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Bambie\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Users\Bambie\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\apdproxy.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\splwow64.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Windows\system32\RunDll32.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\consent.exe
C:\Windows\System32\cscript.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_9&idate=2014-10-25&gen=cnet&ent=hp&u=E902C19C1197640E5812C0544B76D35D
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://acer.msn.com
uDefault_Search_URL = hxxp://www.google.com/ie
uProxyOverride = <-loopback>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mWinlogon: Userinit = userinit.exe,
BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx.dll
EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
uRun: [Google Update] "C:\Users\Bambie\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [BYR_AGENT] C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe
uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
uRun: [uTorrent] "C:\Users\Bambie\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [GoogleChromeAutoLaunch_7440BE7880E5542CC7140D2B7B83F4EE] "C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
mRun: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [BackupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [BYR_AGENT] C:\ProgramData\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe
mRun: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
mRun: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
mRun: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\apdproxy.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
mRun: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{7E00A1E0-4337-4239-BE3C-4DDCF5FD6E13} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{7E00A1E0-4337-4239-BE3C-4DDCF5FD6E13}\C696E6B6379737 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{B3917305-A200-44C0-9D84-D55943D066B9} : DHCPNameServer = 192.168.1.254
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
x64-TB: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
x64-Run: [AdAwareTray] "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe"
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Bambie\AppData\Roaming\Mozilla\Firefox\Profiles\tclzxch4.default-1412229431187\
FF - prefs.js: browser.startup.homepage - hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_9&idate=2014-10-25&gen=cnet&ent=hp&u=E902C19C1197640E5812C0544B76D35D
FF - prefs.js: keyword.URL - hxxp://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_9&idate=__installtime__&hsimp=yhs-lavasoft&ent=bs&q=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101772.dll
FF - plugin: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Bambie\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll
FF - plugin: C:\Users\Bambie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Bambie\AppData\Roaming\Mozilla\plugins\npo1d.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll
.
============= SERVICES / DRIVERS ===============
.
R? AmUStor;AM USB Stroage Driver
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? EgisTec Ticket Service;EgisTec Ticket Service
R? esgiguard;esgiguard
R? GamesAppService;GamesAppService
R? IEEtwCollectorService;Internet Explorer ETW Collector Service
R? McAfee SiteAdvisor Service;McAfee SiteAdvisor Service
R? SkypeUpdate;Skype Updater
R? TsUsbFlt;TsUsbFlt
R? TsUsbGD;Remote Desktop Generic USB Device
R? USBAAPL64;Apple Mobile USB Driver
R? WatAdminSvc;Windows Activation Technologies Service
R? wlcrasvc;Windows Live Mesh remote connections service
R? WSDScan;WSD Scan Support via UMB
S? a2acc;a2acc
S? a2AntiMalware;Emsisoft Anti-Malware 7.0 - Service
S? A2DDA;A2 Direct Disk Access Support Driver
S? aswHwid;avast! HardwareID
S? aswKbd;aswKbd
S? aswMonFlt;aswMonFlt
S? aswRvrt;avast! Revert
S? aswSnx;aswSnx
S? aswSP;aswSP
S? aswStm;aswStm
S? aswVmm;avast! VM Monitor
S? avast! Antivirus;avast! Antivirus
S? BstHdAndroidSvc;BlueStacks Android Service
S? BstHdDrv;BlueStacks Hypervisor
S? BstHdLogRotatorSvc;BlueStacks Log Rotator Service
S? BstHdUpdaterSvc;BlueStacks Updater Service
S? cleanhlp;cleanhlp
S? DsiWMIService;Dritek WMI Service
S? ePowerSvc;Acer ePower Service
S? GREGService;GREGService
S? HitmanProScheduler;HitmanPro Scheduler
S? IAStorDataMgrSvc;Intel(R) Rapid Storage Technology
S? IntcDAud;Intel(R) Display Audio
S? L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller
S? LavasoftAdAwareService11;Ad-Aware Service 11
S? Live Updater Service;Live Updater Service
S? MBAMProtector;MBAMProtector
S? MBAMScheduler;MBAMScheduler
S? MBAMService;MBAMService
S? MBAMSwissArmy;MBAMSwissArmy
S? MBAMWebAccessControl;MBAMWebAccessControl
S? mwlPSDFilter;mwlPSDFilter
S? mwlPSDNServ;mwlPSDNServ
S? mwlPSDVDisk;mwlPSDVDisk
S? NTI IScheduleSvc;NTI IScheduleSvc
S? UNS;Intel(R) Management and Security Application User Notification Service
.
=============== Created Last 30 ================
.
2014-11-22 00:34:43 43664 ----a-w- C:\Windows\System32\drivers\hitmanpro37.sys
2014-11-21 14:21:49 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F04D5B9C-1BCF-40B1-A444-C96952BEC546}\offreg.dll
2014-11-21 06:31:29 11632448 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F04D5B9C-1BCF-40B1-A444-C96952BEC546}\mpengine.dll
2014-11-20 05:44:20 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-11-20 05:41:38 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-11-20 05:41:38 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-11-20 05:41:37 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-11-20 05:41:36 -------- d-----w- C:\ProgramData\Malwarebytes
2014-11-20 05:41:36 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-19 16:05:30 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-11-19 16:05:30 241152 ----a-w- C:\Windows\System32\pku2u.dll
2014-11-19 16:05:29 186880 ----a-w- C:\Windows\SysWow64\pku2u.dll
2014-11-19 16:05:25 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-11-12 15:01:32 17926832 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2014-11-11 23:58:01 683520 ----a-w- C:\Windows\System32\termsrv.dll
2014-11-11 23:58:01 155064 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-11-11 23:58:00 681984 ----a-w- C:\Windows\SysWow64\adtschema.dll
2014-11-11 23:58:00 681984 ----a-w- C:\Windows\System32\adtschema.dll
2014-11-11 23:57:59 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-11-11 23:57:58 146432 ----a-w- C:\Windows\SysWow64\msaudite.dll
2014-11-11 23:57:58 146432 ----a-w- C:\Windows\System32\msaudite.dll
2014-11-11 23:57:57 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-11-11 23:57:57 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-11-11 23:51:13 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2014-11-11 23:51:10 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-11-11 23:50:50 304640 ----a-w- C:\Windows\System32\generaltel.dll
2014-11-11 23:50:48 228864 ----a-w- C:\Windows\System32\aepdu.dll
2014-11-11 23:50:36 424448 ----a-w- C:\Windows\System32\aeinv.dll
2014-11-11 23:37:10 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2014-11-11 23:37:10 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2014-11-11 23:37:05 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2014-11-11 23:37:04 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2014-11-11 23:36:54 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL
2014-11-11 23:36:52 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL
2014-11-11 23:36:14 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2014-11-11 23:36:13 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2014-11-11 23:36:11 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2014-11-11 23:36:09 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2014-11-11 23:36:08 284672 ----a-w- C:\Windows\System32\EncDump.dll
2014-11-11 23:36:07 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2014-11-11 23:36:04 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2014-11-11 23:35:55 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2014-11-11 23:27:18 77824 ----a-w- C:\Windows\System32\packager.dll
2014-11-11 23:27:17 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-11-11 23:27:06 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-10-30 06:13:21 -------- d-----w- C:\Users\Bambie\AppData\Local\Windows Live
2014-10-30 06:12:32 -------- d-----w- C:\Users\Bambie\AppData\Local\{8B1ACB56-69D1-446B-8C78-CD0365E0DB5A}
2014-10-28 05:17:40 -------- d-----w- C:\ProgramData\YTD Video Downloader
2014-10-25 16:45:21 -------- d-----w- C:\Program Files\HitmanPro
2014-10-25 15:12:36 -------- d-----w- C:\ProgramData\HitmanPro
2014-10-25 10:58:36 -------- d-----w- C:\Users\Bambie\AppData\Roaming\LavasoftStatistics
2014-10-25 10:22:26 -------- d-----w- C:\Program Files\Lavasoft
2014-10-25 10:10:36 -------- d-----w- C:\Users\Bambie\AppData\Local\adawarebp
2014-10-25 10:10:33 -------- d-----w- C:\ProgramData\Ad-Aware Browsing Protection
2014-10-25 10:09:10 -------- d-----w- C:\Program Files (x86)\Lavasoft
2014-10-25 10:04:15 -------- d-----w- C:\Program Files\Common Files\Lavasoft
.
==================== Find3M ====================
.
2014-11-12 15:03:16 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-11-12 15:03:16 701104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-11-06 04:04:03 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-11-06 04:03:50 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-11-06 03:47:03 66560 ----a-w- C:\Windows\System32\iesetup.dll
2014-11-06 03:46:12 580096 ----a-w- C:\Windows\System32\vbscript.dll
2014-11-06 03:46:12 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-11-06 03:44:28 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
2014-11-06 03:30:22 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-11-06 03:30:08 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-11-06 03:29:18 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-11-06 03:28:20 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-11-06 03:23:57 6040064 ----a-w- C:\Windows\System32\jscript9.dll
2014-11-06 03:20:18 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-11-06 03:13:43 501248 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-11-06 03:13:36 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-11-06 03:12:44 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-11-06 03:10:58 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2014-11-06 03:07:29 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-11-06 02:59:36 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-11-06 02:58:38 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-11-06 02:42:36 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-11-06 02:39:39 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-11-06 02:38:25 2124288 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-11-06 02:21:49 4298240 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-11-06 02:21:25 2051072 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-11-06 02:20:37 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-11-06 02:17:24 2365440 ----a-w- C:\Windows\System32\wininet.dll
2014-11-06 01:52:35 1892864 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-11-04 20:30:58 275080 ------w- C:\Windows\System32\MpSigStub.exe
2014-10-14 02:13:00 3241984 ----a-w- C:\Windows\System32\msi.dll
2014-10-14 01:50:41 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2014-09-25 02:08:38 371712 ----a-w- C:\Windows\System32\qdvd.dll
2014-09-25 01:40:50 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2014-09-19 09:42:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
2014-09-19 09:42:51 86528 ----a-w- C:\Windows\System32\TSpkg.dll
2014-09-19 09:42:49 342016 ----a-w- C:\Windows\System32\schannel.dll
2014-09-19 09:42:47 314880 ----a-w- C:\Windows\System32\msv1_0.dll
2014-09-19 09:42:47 309760 ----a-w- C:\Windows\System32\ncrypt.dll
2014-09-19 09:42:41 22016 ----a-w- C:\Windows\System32\credssp.dll
2014-09-19 09:23:55 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
2014-09-19 09:23:52 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2014-09-19 09:23:49 248832 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-09-19 09:23:46 221184 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2014-09-19 09:23:45 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2014-09-19 09:23:36 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
2014-09-09 22:11:04 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-09-09 21:47:10 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-09-04 05:23:20 424448 ----a-w- C:\Windows\System32\rastls.dll
2014-09-04 05:04:15 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2012-03-12 22:08:32 741240 ----a-w- C:\Program Files\uTorrent.exe
.
============= FINISH: 18:47:56.96 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 3/11/2012 7:41:03 PM
System Uptime: 11/21/2014 6:22:13 PM (0 hours ago)
.
Motherboard: Acer | | HMA51_HR
Processor: Intel(R) Celeron(R) CPU B800 @ 1.50GHz | CPU1 | 1500/1067mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 271.441 GiB free.
D: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e96f-e325-11ce-bfc1-08002be10318}
Description: Synaptics PS/2 Port TouchPad
Device ID: ACPI\SYN1B39\4&1CB72851&0
Manufacturer: Synaptics
Name: Synaptics PS/2 Port TouchPad
PNP Device ID: ACPI\SYN1B39\4&1CB72851&0
Service: i8042prt
.
==== System Restore Points ===================
.
RP341: 11/11/2014 5:11:50 PM - Windows Update
RP342: 11/12/2014 9:02:13 AM - Windows Update
RP343: 11/18/2014 12:09:54 PM - Windows Update
RP344: 11/20/2014 9:00:58 AM - Windows Update
.
==== Installed Programs ======================
.
µTorrent
Acer Backup Manager
Acer Crystal Eye Webcam
Acer ePower Management
Acer eRecovery Management
Acer Games
Acer Registration
Acer Updater
Ad-Aware Antivirus
Ad-Aware Security Toolbar
AdAwareInstaller
AdAwareUpdater
Adobe AIR
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 15 ActiveX
Adobe Flash Player 15 Plugin
Adobe Help Center 2.1
Adobe Photoshop CS2
Adobe Photoshop Elements 5.0
Adobe Reader X (10.1.11) MUI
Adobe Shockwave Player 12.0
Adobe Stock Photos 1.0
Agatha Christie - Death on the Nile
Alcor Micro USB Card Reader
Amazon Kindle
Amazon MP3 Downloader 1.0.17
AntimalwareEngine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
AudibleManager
avast! Free Antivirus
Backup Manager V3
Bejeweled 2 Deluxe
BlueStacks App Player
BlueStacks Notification Center
Bonjour
Build-a-lot 4 - Power Source
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Canon MG5200 series MP Drivers
Canon MG5200 series User Registration
Canon MP Navigator EX 4.0
Canon MP250 series MP Drivers
Canon My Printer
Canon Solution Menu EX
CCleaner
CEP (Color Enable Package) v.9.2 (beta)
Chronicles of Albian
Chuzzle Deluxe
City of Fools
clear.fi
clear.fi Client
Cradle of Rome 2
D3DX10
Dora's World Adventure
Dropbox
Emsisoft Anti-Malware
FATE: The Cursed King
Final Drive: Nitro
Galerie de photos Windows Live
Google Chrome
Google Drive
Google Talk Plugin
Google Update Helper
Google+ Auto Backup
Governor of Poker 2 Premium Edition
Hanes T-ShirtMaker Lite 4.0.1.0
HitmanPro 3.7
Identity Card
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
iTunes
Java 7 Update 60
Java Auto Updater
Java(TM) 6 Update 33
Java(TM) 7 Update 5 (64-bit)
JavaFX 2.1.1
Jewel Match 3
Junk Mail filter update
La Tale
Launch Manager
LG VZW United Drivers
Malwarebytes Anti-Malware version 2.0.3.1025
Mesh Runtime
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Reader
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mozilla Firefox 33.1 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Mystery of Mortlake Mansion
MyWinLocker
MyWinLocker 4
MyWinLocker Suite
NTI Media Maker 9
OpenOffice.org 3.4.1
Origin
Penguins!
PhotoScape
Picasa 3
Plants vs. Zombies - Game of the Year
Polar Bowler
Polar Golfer
Reader for PC
Realtek High Definition Audio Driver
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Shredder
Silhouette Studio
Sims2Pack Clean Installer
Skype™ 6.11
SpyHunter
Steam
swMSM
Synaptics Pointing Device Driver
The Sims 2: Ultimate Collection
The Sims™ 3
The Sims™ 3 High-End Loft Stuff
The Sims™ 3 Late Night
Torchlight
Trillian
TweetDeck
Update Installer for WildTangent Games App
Virtual Villagers 5 - New Believers
Welcome Center
WildTangent Games
WildTangent Games App (Acer Games)
Windows Live
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR 5.01 (32-bit)
Youda Farmer 3 - Seasons
YTD Toolbar v9.6
YTD Video Downloader 4.8.7
Zuma's Revenge
.
==== Event Viewer Messages From Past Week ========
.
11/21/2014 6:45:26 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
11/21/2014 6:44:26 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
11/21/2014 6:39:28 PM, Error: Service Control Manager [7022] - The Intel(R) Management and Security Application User Notification Service service hung on starting.
11/21/2014 6:38:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
11/21/2014 6:37:20 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
11/21/2014 6:36:51 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service.
11/21/2014 6:35:13 PM, Error: Service Control Manager [7022] - The Security Center service hung on starting.
11/21/2014 6:33:05 PM, Error: Service Control Manager [7022] - The Windows Defender service hung on starting.
11/21/2014 6:29:58 PM, Error: Service Control Manager [7001] - The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error: After starting, the service hung in a start-pending state.
11/21/2014 6:29:56 PM, Error: Service Control Manager [7022] - The Function Discovery Provider Host service hung on starting.
11/21/2014 6:28:14 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.
11/21/2014 6:28:14 PM, Error: Service Control Manager [7000] - The Google Update Service (gupdate) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2014 6:25:35 PM, Error: Service Control Manager [7022] - The BlueStacks Android Service service hung on starting.
11/21/2014 6:23:31 PM, Error: Service Control Manager [7000] - The McAfee SiteAdvisor Service service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11/21/2014
Scan Time: 4:31:07 PM
Logfile: 1log.txt
Administrator: Yes
Version: 0.00.0.0000
Malware Database: v2014.11.21.12
Rootkit Database: v2014.11.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Bambie
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 389812
Time Elapsed: 1 hr, 19 min, 19 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17420 BrowserJavaVersion: 10.60.2
Run by Bambie at 18:36:40 on 2014-11-21
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
C:\Program Files\HitmanPro\hmpsched.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\HitmanPro\HitmanPro.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files (x86)\Launch Manager\LMutilps32.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
C:\Program Files (x86)\BlueStacks\HD-Service.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
C:\Program Files (x86)\BlueStacks\HD-Network.exe
C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Users\Bambie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Users\Bambie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Users\Bambie\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Bambie\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Users\Bambie\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\apdproxy.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\splwow64.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Windows\system32\RunDll32.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\consent.exe
C:\Windows\System32\cscript.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_9&idate=2014-10-25&gen=cnet&ent=hp&u=E902C19C1197640E5812C0544B76D35D
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://acer.msn.com
uDefault_Search_URL = hxxp://www.google.com/ie
uProxyOverride = <-loopback>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mWinlogon: Userinit = userinit.exe,
BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx.dll
EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
uRun: [Google Update] "C:\Users\Bambie\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [BYR_AGENT] C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe
uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
uRun: [uTorrent] "C:\Users\Bambie\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [GoogleChromeAutoLaunch_7440BE7880E5542CC7140D2B7B83F4EE] "C:\Users\Bambie\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
mRun: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [BackupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [BYR_AGENT] C:\ProgramData\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe
mRun: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
mRun: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
mRun: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\apdproxy.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
mRun: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{7E00A1E0-4337-4239-BE3C-4DDCF5FD6E13} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{7E00A1E0-4337-4239-BE3C-4DDCF5FD6E13}\C696E6B6379737 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{B3917305-A200-44C0-9D84-D55943D066B9} : DHCPNameServer = 192.168.1.254
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
x64-TB: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
x64-Run: [AdAwareTray] "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe"
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Bambie\AppData\Roaming\Mozilla\Firefox\Profiles\tclzxch4.default-1412229431187\
FF - prefs.js: browser.startup.homepage - hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_9&idate=2014-10-25&gen=cnet&ent=hp&u=E902C19C1197640E5812C0544B76D35D
FF - prefs.js: keyword.URL - hxxp://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_9&idate=__installtime__&hsimp=yhs-lavasoft&ent=bs&q=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101772.dll
FF - plugin: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Bambie\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll
FF - plugin: C:\Users\Bambie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Bambie\AppData\Roaming\Mozilla\plugins\npo1d.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll
.
============= SERVICES / DRIVERS ===============
.
R? AmUStor;AM USB Stroage Driver
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? EgisTec Ticket Service;EgisTec Ticket Service
R? esgiguard;esgiguard
R? GamesAppService;GamesAppService
R? IEEtwCollectorService;Internet Explorer ETW Collector Service
R? McAfee SiteAdvisor Service;McAfee SiteAdvisor Service
R? SkypeUpdate;Skype Updater
R? TsUsbFlt;TsUsbFlt
R? TsUsbGD;Remote Desktop Generic USB Device
R? USBAAPL64;Apple Mobile USB Driver
R? WatAdminSvc;Windows Activation Technologies Service
R? wlcrasvc;Windows Live Mesh remote connections service
R? WSDScan;WSD Scan Support via UMB
S? a2acc;a2acc
S? a2AntiMalware;Emsisoft Anti-Malware 7.0 - Service
S? A2DDA;A2 Direct Disk Access Support Driver
S? aswHwid;avast! HardwareID
S? aswKbd;aswKbd
S? aswMonFlt;aswMonFlt
S? aswRvrt;avast! Revert
S? aswSnx;aswSnx
S? aswSP;aswSP
S? aswStm;aswStm
S? aswVmm;avast! VM Monitor
S? avast! Antivirus;avast! Antivirus
S? BstHdAndroidSvc;BlueStacks Android Service
S? BstHdDrv;BlueStacks Hypervisor
S? BstHdLogRotatorSvc;BlueStacks Log Rotator Service
S? BstHdUpdaterSvc;BlueStacks Updater Service
S? cleanhlp;cleanhlp
S? DsiWMIService;Dritek WMI Service
S? ePowerSvc;Acer ePower Service
S? GREGService;GREGService
S? HitmanProScheduler;HitmanPro Scheduler
S? IAStorDataMgrSvc;Intel(R) Rapid Storage Technology
S? IntcDAud;Intel(R) Display Audio
S? L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller
S? LavasoftAdAwareService11;Ad-Aware Service 11
S? Live Updater Service;Live Updater Service
S? MBAMProtector;MBAMProtector
S? MBAMScheduler;MBAMScheduler
S? MBAMService;MBAMService
S? MBAMSwissArmy;MBAMSwissArmy
S? MBAMWebAccessControl;MBAMWebAccessControl
S? mwlPSDFilter;mwlPSDFilter
S? mwlPSDNServ;mwlPSDNServ
S? mwlPSDVDisk;mwlPSDVDisk
S? NTI IScheduleSvc;NTI IScheduleSvc
S? UNS;Intel(R) Management and Security Application User Notification Service
.
=============== Created Last 30 ================
.
2014-11-22 00:34:43 43664 ----a-w- C:\Windows\System32\drivers\hitmanpro37.sys
2014-11-21 14:21:49 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F04D5B9C-1BCF-40B1-A444-C96952BEC546}\offreg.dll
2014-11-21 06:31:29 11632448 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F04D5B9C-1BCF-40B1-A444-C96952BEC546}\mpengine.dll
2014-11-20 05:44:20 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-11-20 05:41:38 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-11-20 05:41:38 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-11-20 05:41:37 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-11-20 05:41:36 -------- d-----w- C:\ProgramData\Malwarebytes
2014-11-20 05:41:36 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-19 16:05:30 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-11-19 16:05:30 241152 ----a-w- C:\Windows\System32\pku2u.dll
2014-11-19 16:05:29 186880 ----a-w- C:\Windows\SysWow64\pku2u.dll
2014-11-19 16:05:25 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-11-12 15:01:32 17926832 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2014-11-11 23:58:01 683520 ----a-w- C:\Windows\System32\termsrv.dll
2014-11-11 23:58:01 155064 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-11-11 23:58:00 681984 ----a-w- C:\Windows\SysWow64\adtschema.dll
2014-11-11 23:58:00 681984 ----a-w- C:\Windows\System32\adtschema.dll
2014-11-11 23:57:59 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-11-11 23:57:58 146432 ----a-w- C:\Windows\SysWow64\msaudite.dll
2014-11-11 23:57:58 146432 ----a-w- C:\Windows\System32\msaudite.dll
2014-11-11 23:57:57 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-11-11 23:57:57 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-11-11 23:51:13 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2014-11-11 23:51:10 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-11-11 23:50:50 304640 ----a-w- C:\Windows\System32\generaltel.dll
2014-11-11 23:50:48 228864 ----a-w- C:\Windows\System32\aepdu.dll
2014-11-11 23:50:36 424448 ----a-w- C:\Windows\System32\aeinv.dll
2014-11-11 23:37:10 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2014-11-11 23:37:10 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2014-11-11 23:37:05 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2014-11-11 23:37:04 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2014-11-11 23:36:54 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL
2014-11-11 23:36:52 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL
2014-11-11 23:36:14 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2014-11-11 23:36:13 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2014-11-11 23:36:11 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2014-11-11 23:36:09 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2014-11-11 23:36:08 284672 ----a-w- C:\Windows\System32\EncDump.dll
2014-11-11 23:36:07 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2014-11-11 23:36:04 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2014-11-11 23:35:55 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2014-11-11 23:27:18 77824 ----a-w- C:\Windows\System32\packager.dll
2014-11-11 23:27:17 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-11-11 23:27:06 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-10-30 06:13:21 -------- d-----w- C:\Users\Bambie\AppData\Local\Windows Live
2014-10-30 06:12:32 -------- d-----w- C:\Users\Bambie\AppData\Local\{8B1ACB56-69D1-446B-8C78-CD0365E0DB5A}
2014-10-28 05:17:40 -------- d-----w- C:\ProgramData\YTD Video Downloader
2014-10-25 16:45:21 -------- d-----w- C:\Program Files\HitmanPro
2014-10-25 15:12:36 -------- d-----w- C:\ProgramData\HitmanPro
2014-10-25 10:58:36 -------- d-----w- C:\Users\Bambie\AppData\Roaming\LavasoftStatistics
2014-10-25 10:22:26 -------- d-----w- C:\Program Files\Lavasoft
2014-10-25 10:10:36 -------- d-----w- C:\Users\Bambie\AppData\Local\adawarebp
2014-10-25 10:10:33 -------- d-----w- C:\ProgramData\Ad-Aware Browsing Protection
2014-10-25 10:09:10 -------- d-----w- C:\Program Files (x86)\Lavasoft
2014-10-25 10:04:15 -------- d-----w- C:\Program Files\Common Files\Lavasoft
.
==================== Find3M ====================
.
2014-11-12 15:03:16 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-11-12 15:03:16 701104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-11-06 04:04:03 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-11-06 04:03:50 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-11-06 03:47:03 66560 ----a-w- C:\Windows\System32\iesetup.dll
2014-11-06 03:46:12 580096 ----a-w- C:\Windows\System32\vbscript.dll
2014-11-06 03:46:12 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-11-06 03:44:28 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
2014-11-06 03:30:22 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-11-06 03:30:08 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-11-06 03:29:18 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-11-06 03:28:20 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-11-06 03:23:57 6040064 ----a-w- C:\Windows\System32\jscript9.dll
2014-11-06 03:20:18 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-11-06 03:13:43 501248 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-11-06 03:13:36 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-11-06 03:12:44 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-11-06 03:10:58 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2014-11-06 03:07:29 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-11-06 02:59:36 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-11-06 02:58:38 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-11-06 02:42:36 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-11-06 02:39:39 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-11-06 02:38:25 2124288 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-11-06 02:21:49 4298240 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-11-06 02:21:25 2051072 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-11-06 02:20:37 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-11-06 02:17:24 2365440 ----a-w- C:\Windows\System32\wininet.dll
2014-11-06 01:52:35 1892864 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-11-04 20:30:58 275080 ------w- C:\Windows\System32\MpSigStub.exe
2014-10-14 02:13:00 3241984 ----a-w- C:\Windows\System32\msi.dll
2014-10-14 01:50:41 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2014-09-25 02:08:38 371712 ----a-w- C:\Windows\System32\qdvd.dll
2014-09-25 01:40:50 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2014-09-19 09:42:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
2014-09-19 09:42:51 86528 ----a-w- C:\Windows\System32\TSpkg.dll
2014-09-19 09:42:49 342016 ----a-w- C:\Windows\System32\schannel.dll
2014-09-19 09:42:47 314880 ----a-w- C:\Windows\System32\msv1_0.dll
2014-09-19 09:42:47 309760 ----a-w- C:\Windows\System32\ncrypt.dll
2014-09-19 09:42:41 22016 ----a-w- C:\Windows\System32\credssp.dll
2014-09-19 09:23:55 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
2014-09-19 09:23:52 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2014-09-19 09:23:49 248832 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-09-19 09:23:46 221184 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2014-09-19 09:23:45 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2014-09-19 09:23:36 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
2014-09-09 22:11:04 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-09-09 21:47:10 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-09-04 05:23:20 424448 ----a-w- C:\Windows\System32\rastls.dll
2014-09-04 05:04:15 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2012-03-12 22:08:32 741240 ----a-w- C:\Program Files\uTorrent.exe
.
============= FINISH: 18:47:56.96 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 3/11/2012 7:41:03 PM
System Uptime: 11/21/2014 6:22:13 PM (0 hours ago)
.
Motherboard: Acer | | HMA51_HR
Processor: Intel(R) Celeron(R) CPU B800 @ 1.50GHz | CPU1 | 1500/1067mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 271.441 GiB free.
D: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e96f-e325-11ce-bfc1-08002be10318}
Description: Synaptics PS/2 Port TouchPad
Device ID: ACPI\SYN1B39\4&1CB72851&0
Manufacturer: Synaptics
Name: Synaptics PS/2 Port TouchPad
PNP Device ID: ACPI\SYN1B39\4&1CB72851&0
Service: i8042prt
.
==== System Restore Points ===================
.
RP341: 11/11/2014 5:11:50 PM - Windows Update
RP342: 11/12/2014 9:02:13 AM - Windows Update
RP343: 11/18/2014 12:09:54 PM - Windows Update
RP344: 11/20/2014 9:00:58 AM - Windows Update
.
==== Installed Programs ======================
.
µTorrent
Acer Backup Manager
Acer Crystal Eye Webcam
Acer ePower Management
Acer eRecovery Management
Acer Games
Acer Registration
Acer Updater
Ad-Aware Antivirus
Ad-Aware Security Toolbar
AdAwareInstaller
AdAwareUpdater
Adobe AIR
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 15 ActiveX
Adobe Flash Player 15 Plugin
Adobe Help Center 2.1
Adobe Photoshop CS2
Adobe Photoshop Elements 5.0
Adobe Reader X (10.1.11) MUI
Adobe Shockwave Player 12.0
Adobe Stock Photos 1.0
Agatha Christie - Death on the Nile
Alcor Micro USB Card Reader
Amazon Kindle
Amazon MP3 Downloader 1.0.17
AntimalwareEngine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
AudibleManager
avast! Free Antivirus
Backup Manager V3
Bejeweled 2 Deluxe
BlueStacks App Player
BlueStacks Notification Center
Bonjour
Build-a-lot 4 - Power Source
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Canon MG5200 series MP Drivers
Canon MG5200 series User Registration
Canon MP Navigator EX 4.0
Canon MP250 series MP Drivers
Canon My Printer
Canon Solution Menu EX
CCleaner
CEP (Color Enable Package) v.9.2 (beta)
Chronicles of Albian
Chuzzle Deluxe
City of Fools
clear.fi
clear.fi Client
Cradle of Rome 2
D3DX10
Dora's World Adventure
Dropbox
Emsisoft Anti-Malware
FATE: The Cursed King
Final Drive: Nitro
Galerie de photos Windows Live
Google Chrome
Google Drive
Google Talk Plugin
Google Update Helper
Google+ Auto Backup
Governor of Poker 2 Premium Edition
Hanes T-ShirtMaker Lite 4.0.1.0
HitmanPro 3.7
Identity Card
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
iTunes
Java 7 Update 60
Java Auto Updater
Java(TM) 6 Update 33
Java(TM) 7 Update 5 (64-bit)
JavaFX 2.1.1
Jewel Match 3
Junk Mail filter update
La Tale
Launch Manager
LG VZW United Drivers
Malwarebytes Anti-Malware version 2.0.3.1025
Mesh Runtime
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Reader
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mozilla Firefox 33.1 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Mystery of Mortlake Mansion
MyWinLocker
MyWinLocker 4
MyWinLocker Suite
NTI Media Maker 9
OpenOffice.org 3.4.1
Origin
Penguins!
PhotoScape
Picasa 3
Plants vs. Zombies - Game of the Year
Polar Bowler
Polar Golfer
Reader for PC
Realtek High Definition Audio Driver
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Shredder
Silhouette Studio
Sims2Pack Clean Installer
Skype™ 6.11
SpyHunter
Steam
swMSM
Synaptics Pointing Device Driver
The Sims 2: Ultimate Collection
The Sims™ 3
The Sims™ 3 High-End Loft Stuff
The Sims™ 3 Late Night
Torchlight
Trillian
TweetDeck
Update Installer for WildTangent Games App
Virtual Villagers 5 - New Believers
Welcome Center
WildTangent Games
WildTangent Games App (Acer Games)
Windows Live
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR 5.01 (32-bit)
Youda Farmer 3 - Seasons
YTD Toolbar v9.6
YTD Video Downloader 4.8.7
Zuma's Revenge
.
==== Event Viewer Messages From Past Week ========
.
11/21/2014 6:45:26 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
11/21/2014 6:44:26 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
11/21/2014 6:39:28 PM, Error: Service Control Manager [7022] - The Intel(R) Management and Security Application User Notification Service service hung on starting.
11/21/2014 6:38:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
11/21/2014 6:37:20 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
11/21/2014 6:36:51 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service.
11/21/2014 6:35:13 PM, Error: Service Control Manager [7022] - The Security Center service hung on starting.
11/21/2014 6:33:05 PM, Error: Service Control Manager [7022] - The Windows Defender service hung on starting.
11/21/2014 6:29:58 PM, Error: Service Control Manager [7001] - The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error: After starting, the service hung in a start-pending state.
11/21/2014 6:29:56 PM, Error: Service Control Manager [7022] - The Function Discovery Provider Host service hung on starting.
11/21/2014 6:28:14 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.
11/21/2014 6:28:14 PM, Error: Service Control Manager [7000] - The Google Update Service (gupdate) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2014 6:25:35 PM, Error: Service Control Manager [7022] - The BlueStacks Android Service service hung on starting.
11/21/2014 6:23:31 PM, Error: Service Control Manager [7000] - The McAfee SiteAdvisor Service service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================