I'm borrowing a friend's computer and she said it was moving very slow and acting erratically. I haven't seen that per se but I HAVE seen the slowing down. Attached are the results from the scans
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version: v2013.10.25.05
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16721
Barbara :: BARBARA-PC [administrator]
10/25/2013 1:11:24 PM
mbam-log-2013-10-25 (13-11-24).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 197441
Time elapsed: 29 minute(s), 9 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 1
C:\Program Files\SaveValet\ie\SaveValetIE_32.dll (PUP.Optional.SafeValet.A) -> Delete on reboot.
Registry Keys Detected: 16
HKCR\CLSID\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{B0F8BFBD-05D3-4ECB-B753-010DFB738018} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCR\Interface\{9F7412D3-8CC2-45E6-84CB-62BB22747E01} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{44ed99e2-16a6-4b89-80d6-5b21cf42e78b} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{781CA792-9B6E-400B-B36F-15C097D2CA54} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\Interface\{2830488C-079B-45C2-88B6-AFE4EAA2DF85} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\DynConIE.DynConIEObject.1 (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\DynConIE.DynConIEObject (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCU\Software\SocialBit\IE\SaveValet (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveValet_IE (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Program Files\SaveValet\ie (PUP.Optional.SaveValet.A) -> Delete on reboot.
Files Detected: 7
C:\Program Files\SaveValet\ie\SaveValetIE_32.dll (PUP.Optional.SafeValet.A) -> Delete on reboot.
C:\Program Files\SearchDonkey\IE\common.dll (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
C:\Users\Barbara\Local Settings\Temporary Internet Files\Content.IE5\PSXX7349\InboxAce.exe (PUP.Optional.MyWebSearch) -> Quarantined and deleted successfully.
C:\Users\Barbara\Local Settings\Temporary Internet Files\Content.IE5\W2O394QE\mplayer_freely_d157223.exe (PUP.Optional.InstallIQ) -> Quarantined and deleted successfully.
C:\Program Files\SaveValet\ie\SaveValetIE_64.dll (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
C:\Program Files\SaveValet\ie\sci_options.xml (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
C:\Program Files\SaveValet\ie\uninstaller.exe (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
(end)
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16720
Run by Barbara at 15:16:44 on 2013-10-25
Microsoft Windows 7 Starter 6.1.7601.1.1252.1.1033.18.1013.163 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Microsoft\BingBar\7.2.241.0\BBSvc.exe
C:\Program Files\Launch Manager\dsiwmis.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files\Acer\Registration\GREGsvc.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Launch Manager\LMworker.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\msiexec.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\CarMD\CarMD.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\UI0Detect.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
c:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = Preserve
BHO: AutorunsDisabled - <orphaned>
BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Bing Bar Helper: {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - c:\program files\microsoft\bingbar\7.2.241.0\BingExt.dll
BHO: Qwiklinx: {3E7C8B5A-96AB-438F-BF9B-782400655440} - c:\users\barbara\appdata\roaming\qwiklinx\Qwiklinx.dll
BHO: ShopAtHome.com Toolbar: {66516A07-F617-488A-90CF-4E690CFB3C5F} - c:\program files\shopathome\tbcore3U.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Cartwheel: {B50DF051-E1D4-439C-B94E-F4DE82B56542} - c:\users\barbara\appdata\roaming\cartwheel\Cartwheel.dll
TB: CyberDefender Link Patrol: {DD662A0C-12FE-4B38-BA53-247F7EC82F46} - c:\users\barbara\appdata\locallow\cyberdefender\cdmyidd.dll
TB: ShopAtHome.com Toolbar: {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - c:\program files\shopathome\tbcore3U.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: ShopAtHome.com Toolbar: {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - c:\program files\shopathome\tbcore3U.dll
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
TB: Bing Bar: {eec0f710-38b5-4aba-99bf-ec87564a4e13} - c:\program files\microsoft\bingbar\7.2.241.0\BingExt.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [CarMD] c:\program files\carmd\CarMD.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
mRun: [LManager] c:\program files\launch manager\LManager.exe
mRun: [IAStorIcon] c:\program files\intel\intel(r) rapid storage technology\IAStorIcon.exe
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [Acer ePower Management] c:\program files\acer\acer epower management\ePowerTray.exe
mRun: [SpeetItUpFree] "c:\program files\speeditup free\speeditupfree.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\autoru~1\acervc~1.lnk - c:\program files\acer\acer vcm\AcerVCM.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
TCP: NameServer = 72.215.157.116 72.215.157.117
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271} : DHCPNameServer = 72.215.157.116 72.215.157.117
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271}\86160707972343D27657563747 : DHCPNameServer = 172.28.40.200
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271}\E434746596277696E696162456163686 : DHCPNameServer = 192.168.2.1 208.67.222.222 208.67.220.220
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271}\E444E4B453 : DHCPNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\30.0.1599.101\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-6-18 211560]
R1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\drivers\mwlPSDFilter.sys [2009-6-2 18992]
R1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\drivers\mwlPSDNserv.sys [2009-6-2 16432]
R1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\drivers\mwlPSDVDisk.sys [2009-6-2 60976]
R2 BBSvc;BingBar Service;c:\program files\microsoft\bingbar\7.2.241.0\BBSvc.EXE [2013-7-23 193696]
R2 CDAVFS;CDAVFS;c:\windows\system32\drivers\CDAVFS.sys [2011-2-12 96200]
R2 cvhsvc;Client Virtualization Handler;c:\program files\common files\microsoft shared\virtualization handler\CVHSVC.EXE [2013-4-22 822504]
R2 DsiWMIService;Dritek WMI Service;c:\program files\launch manager\dsiwmis.exe [2010-9-3 321104]
R2 ePowerSvc;Acer ePower Service;c:\program files\acer\acer epower management\ePowerSvc.exe [2010-11-24 735776]
R2 GREGService;GREGService;c:\program files\acer\registration\GREGsvc.exe [2010-1-8 23584]
R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2013-6-18 107392]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-10-18 68208]
R3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETw5s32.sys [2010-9-3 6766080]
R3 Sftfs;Sftfs;c:\windows\system32\drivers\Sftfslh.sys [2013-6-26 583848]
R3 Sftplay;Sftplay;c:\windows\system32\drivers\Sftplaylh.sys [2013-6-26 197800]
R3 Sftredir;Sftredir;c:\windows\system32\drivers\Sftredirlh.sys [2013-6-26 24232]
R3 Sftvol;Sftvol;c:\windows\system32\drivers\Sftvollh.sys [2013-6-26 20136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\7.2.241.0\SeaPort.EXE [2013-7-23 240288]
S3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.sys [2010-9-3 82768]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-24 52224]
S4 CDLauncher;CyberDefender Launcher;c:\users\barbara\appdata\local\cyberdefender internet security\antispyware\CDLauncherWS.exe [2011-2-12 190792]
.
=============== Created Last 30 ================
.
2013-10-25 19:17:0240392----a-w-c:\programdata\microsoft\microsoft antimalware\definition updates\{34f222c2-337b-42ab-afa1-49ac2c025716}\MpKsla7eecd64.sys
2013-10-25 15:13:50719224----a-w-c:\programdata\microsoft\microsoft antimalware\definition updates\{77035bfe-7464-4ee5-8565-d958af114a0e}\gapaengine.dll
2013-10-25 15:13:157796464----a-w-c:\programdata\microsoft\microsoft antimalware\definition updates\{34f222c2-337b-42ab-afa1-49ac2c025716}\mpengine.dll
2013-10-25 15:09:14--------d-----w-c:\program files\Microsoft Security Client
2013-10-25 15:07:3922856----a-w-c:\windows\system32\drivers\mbam.sys
2013-10-25 15:07:39--------d-----w-c:\program files\Malwarebytes' Anti-Malware
2013-10-25 15:07:30--------d-----w-c:\users\barbara\appdata\local\Programs
2013-10-25 14:36:317796464----a-w-c:\programdata\microsoft\windows defender\definition updates\{eaeb1edb-7a9c-47c3-931a-f46bc72a3e76}\mpengine.dll
2013-10-18 03:04:59163504----a-w-c:\programdata\microsoft\windows\sqm\manifest\Sqm10145.bin
2013-10-10 01:45:012706432----a-w-c:\windows\system32\mshtml.tlb
2013-10-09 23:31:35530432----a-w-c:\windows\system32\comctl32.dll
2013-10-09 23:30:58205824----a-w-c:\windows\system32\WebClnt.dll
2013-10-09 23:30:5781920----a-w-c:\windows\system32\davclnt.dll
2013-10-09 23:30:57115712----a-w-c:\windows\system32\drivers\mrxdav.sys
2013-10-09 23:30:5486016----a-w-c:\windows\system32\drivers\usbcir.sys
2013-10-09 23:30:54146816----a-w-c:\windows\system32\drivers\usbvideo.sys
2013-10-09 23:30:51527064----a-w-c:\windows\system32\drivers\Wdf01000.sys
.
==================== Find3M ====================
.
2013-10-09 23:21:4371048----a-w-c:\windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 23:21:43692616----a-w-c:\windows\system32\FlashPlayerApp.exe
2013-09-22 23:28:061767936----a-w-c:\windows\system32\wininet.dll
2013-09-22 23:27:492876928----a-w-c:\windows\system32\jscript9.dll
2013-09-22 23:27:4861440----a-w-c:\windows\system32\iesetup.dll
2013-09-22 23:27:48109056----a-w-c:\windows\system32\iesysprep.dll
2013-09-21 02:39:4771680----a-w-c:\windows\system32\RegisterIEPKEYs.exe
2013-09-14 00:48:58338944----a-w-c:\windows\system32\drivers\afd.sys
2013-09-13 17:16:590----a-w-c:\windows\system32\sho6816.tmp
2013-09-08 02:07:121294272----a-w-c:\windows\system32\drivers\tcpip.sys
2013-09-08 02:03:58231424----a-w-c:\windows\system32\mswsock.dll
2013-08-29 01:51:453969472----a-w-c:\windows\system32\ntkrnlpa.exe
2013-08-29 01:51:453914176----a-w-c:\windows\system32\ntoskrnl.exe
2013-08-29 01:50:301289096----a-w-c:\windows\system32\ntdll.dll
2013-08-29 01:50:16619520----a-w-c:\windows\system32\tdh.dll
2013-08-29 01:48:17640512----a-w-c:\windows\system32\advapi32.dll
2013-08-28 01:04:302348544----a-w-c:\windows\system32\win32k.sys
2013-08-28 00:57:20434688----a-w-c:\windows\system32\scavengeui.dll
2013-08-05 01:56:47133056----a-w-c:\windows\system32\drivers\ataport.sys
2013-08-03 18:14:020----a-w-c:\windows\system32\sho26A4.tmp
2013-08-02 01:50:36169984----a-w-c:\windows\system32\winsrv.dll
2013-08-02 01:49:19293376----a-w-c:\windows\system32\KernelBase.dll
2013-08-02 00:52:57271360----a-w-c:\windows\system32\conhost.exe
2013-08-02 00:43:056144---ha-w-c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:054608---ha-w-c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:053584---ha-w-c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:053072---ha-w-c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-01 11:03:36729024----a-w-c:\windows\system32\drivers\dxgkrnl.sys
.
============= FINISH: 15:18:05.07 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Starter
Boot Device: \Device\HarddiskVolume2
Install Date: 1/9/2011 10:55:49 PM
System Uptime: 10/25/2013 3:05:30 PM (0 hours ago)
.
Motherboard: Acer | | JE02_PT
Processor: Intel(R) Atom(TM) CPU N450 @ 1.66GHz | CPU | 1666/667mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 136 GiB total, 100.896 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP226: 9/3/2013 12:34:44 PM - Windows Update
RP227: 9/4/2013 3:29:17 PM - Windows Update
RP228: 9/9/2013 3:22:05 PM - Windows Update
RP229: 9/13/2013 12:14:13 PM - Windows Update
RP230: 9/13/2013 1:09:19 PM - Windows Update
RP231: 9/21/2013 5:13:25 PM - Windows Update
RP232: 9/25/2013 8:13:20 AM - Windows Update
RP233: 10/1/2013 10:49:49 PM - Windows Update
RP234: 10/5/2013 3:04:16 PM - Windows Update
RP235: 10/6/2013 9:01:23 AM - Windows Update
RP236: 10/9/2013 7:25:01 PM - Windows Update
RP237: 10/9/2013 9:34:24 PM - Windows Update
RP238: 10/17/2013 10:33:21 PM - Windows Update
RP239: 10/25/2013 10:34:38 AM - Windows Update
.
==== Installed Programs ======================
.
Acer Crystal Eye webcam Ver:1.1.192.810
Acer ePower Management
Acer eRecovery Management
Acer Game Console
Acer Games
Acer Registration
Acer ScreenSaver
Acer Updater
Acer VCM
Acrobat.com
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1 MUI
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
AVSDK5
Barnes & Noble Desktop Reader
Bejeweled 2 Deluxe
Bing Bar
Bing Rewards Client Installer
Blackhawk Striker 2
CarMD
Cartwheel Shopping
Chuzzle Deluxe
Crystal Reports Viewer 2011 SP2
crystalreports.designers.java.documentation.viewer-4.0-en-32
crystalreports.designers.java.javaviewer-4.0-core-32
crystalreports.designers.java.javaviewer-4.0-en-32
crystalreports.designers.java.launcher-4.0-core-32
CyberDefender Early Detection Center
CyberDefender Link Patrol
CyberDefender Registry Cleaner
Diner Dash 2 Restaurant Rescue
Dora's Carnival Adventure
Driver Detective
eBay Worldwide
ENE USB Card Reader Driver
eSobi v2
Farm Frenzy
FATE
Final Drive Nitro
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
GoToMeeting 5.1.0.880
Identity Card
Insaniquarium Deluxe
Intel(R) Graphics Media Accelerator Driver
Intel(R) Rapid Storage Technology
Jewel Quest
Jewel Quest - Heritage
Jewel Quest Solitaire 2
Junk Mail filter update
Launch Manager
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Starter 2010 - English
Microsoft PowerPoint Viewer
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
mPlayer version 1.0
MSVCRT
MyWinLocker
MyWinLocker Suite
Norton Online Backup
Norton PC Checkup
Penguins!
Plants vs. Zombies
Polar Bowler
product.crystalreportsviewer.arp-4.0-core-32
product.crystalreportsviewer.installiverse.reg-4.0-core-nu
product.crystalreportsviewer.langpackproperty-4.0-en-nu
Qwiklinx
Realtek High Definition Audio Driver
SearchDonkey
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
ShopAtHome.com Toolbar
Shredder
Skype Click to Call
Skype™ 6.6
SpeedItup Free 7.85
Synaptics Pointing Device Driver
Times Reader
tp.azalea.fonts-5.5-core-nu
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Virtual Villagers 4 - The Tree of Life
Welcome Center
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Yahoo! Software Update
Yahoo! Toolbar
Zuma's Revenge
Zuma Deluxe
.
==== End Of File ===========================
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version: v2013.10.25.05
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16721
Barbara :: BARBARA-PC [administrator]
10/25/2013 1:11:24 PM
mbam-log-2013-10-25 (13-11-24).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 197441
Time elapsed: 29 minute(s), 9 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 1
C:\Program Files\SaveValet\ie\SaveValetIE_32.dll (PUP.Optional.SafeValet.A) -> Delete on reboot.
Registry Keys Detected: 16
HKCR\CLSID\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{B0F8BFBD-05D3-4ECB-B753-010DFB738018} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCR\Interface\{9F7412D3-8CC2-45E6-84CB-62BB22747E01} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0F12903-DE76-4DF7-BCDC-0A0689151189} (PUP.Optional.SafeValet.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{44ed99e2-16a6-4b89-80d6-5b21cf42e78b} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{781CA792-9B6E-400B-B36F-15C097D2CA54} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\Interface\{2830488C-079B-45C2-88B6-AFE4EAA2DF85} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\DynConIE.DynConIEObject.1 (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCR\DynConIE.DynConIEObject (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCU\Software\SocialBit\IE\SaveValet (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveValet_IE (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Program Files\SaveValet\ie (PUP.Optional.SaveValet.A) -> Delete on reboot.
Files Detected: 7
C:\Program Files\SaveValet\ie\SaveValetIE_32.dll (PUP.Optional.SafeValet.A) -> Delete on reboot.
C:\Program Files\SearchDonkey\IE\common.dll (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
C:\Users\Barbara\Local Settings\Temporary Internet Files\Content.IE5\PSXX7349\InboxAce.exe (PUP.Optional.MyWebSearch) -> Quarantined and deleted successfully.
C:\Users\Barbara\Local Settings\Temporary Internet Files\Content.IE5\W2O394QE\mplayer_freely_d157223.exe (PUP.Optional.InstallIQ) -> Quarantined and deleted successfully.
C:\Program Files\SaveValet\ie\SaveValetIE_64.dll (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
C:\Program Files\SaveValet\ie\sci_options.xml (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
C:\Program Files\SaveValet\ie\uninstaller.exe (PUP.Optional.SaveValet.A) -> Quarantined and deleted successfully.
(end)
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16720
Run by Barbara at 15:16:44 on 2013-10-25
Microsoft Windows 7 Starter 6.1.7601.1.1252.1.1033.18.1013.163 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Microsoft\BingBar\7.2.241.0\BBSvc.exe
C:\Program Files\Launch Manager\dsiwmis.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files\Acer\Registration\GREGsvc.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Launch Manager\LMworker.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\msiexec.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\CarMD\CarMD.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\UI0Detect.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
c:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = Preserve
BHO: AutorunsDisabled - <orphaned>
BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Bing Bar Helper: {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - c:\program files\microsoft\bingbar\7.2.241.0\BingExt.dll
BHO: Qwiklinx: {3E7C8B5A-96AB-438F-BF9B-782400655440} - c:\users\barbara\appdata\roaming\qwiklinx\Qwiklinx.dll
BHO: ShopAtHome.com Toolbar: {66516A07-F617-488A-90CF-4E690CFB3C5F} - c:\program files\shopathome\tbcore3U.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Cartwheel: {B50DF051-E1D4-439C-B94E-F4DE82B56542} - c:\users\barbara\appdata\roaming\cartwheel\Cartwheel.dll
TB: CyberDefender Link Patrol: {DD662A0C-12FE-4B38-BA53-247F7EC82F46} - c:\users\barbara\appdata\locallow\cyberdefender\cdmyidd.dll
TB: ShopAtHome.com Toolbar: {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - c:\program files\shopathome\tbcore3U.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: ShopAtHome.com Toolbar: {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - c:\program files\shopathome\tbcore3U.dll
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
TB: Bing Bar: {eec0f710-38b5-4aba-99bf-ec87564a4e13} - c:\program files\microsoft\bingbar\7.2.241.0\BingExt.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [CarMD] c:\program files\carmd\CarMD.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
mRun: [LManager] c:\program files\launch manager\LManager.exe
mRun: [IAStorIcon] c:\program files\intel\intel(r) rapid storage technology\IAStorIcon.exe
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [Acer ePower Management] c:\program files\acer\acer epower management\ePowerTray.exe
mRun: [SpeetItUpFree] "c:\program files\speeditup free\speeditupfree.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\autoru~1\acervc~1.lnk - c:\program files\acer\acer vcm\AcerVCM.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
TCP: NameServer = 72.215.157.116 72.215.157.117
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271} : DHCPNameServer = 72.215.157.116 72.215.157.117
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271}\86160707972343D27657563747 : DHCPNameServer = 172.28.40.200
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271}\E434746596277696E696162456163686 : DHCPNameServer = 192.168.2.1 208.67.222.222 208.67.220.220
TCP: Interfaces\{308047E2-6E62-4694-8093-4A0D69622271}\E444E4B453 : DHCPNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\30.0.1599.101\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-6-18 211560]
R1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\drivers\mwlPSDFilter.sys [2009-6-2 18992]
R1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\drivers\mwlPSDNserv.sys [2009-6-2 16432]
R1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\drivers\mwlPSDVDisk.sys [2009-6-2 60976]
R2 BBSvc;BingBar Service;c:\program files\microsoft\bingbar\7.2.241.0\BBSvc.EXE [2013-7-23 193696]
R2 CDAVFS;CDAVFS;c:\windows\system32\drivers\CDAVFS.sys [2011-2-12 96200]
R2 cvhsvc;Client Virtualization Handler;c:\program files\common files\microsoft shared\virtualization handler\CVHSVC.EXE [2013-4-22 822504]
R2 DsiWMIService;Dritek WMI Service;c:\program files\launch manager\dsiwmis.exe [2010-9-3 321104]
R2 ePowerSvc;Acer ePower Service;c:\program files\acer\acer epower management\ePowerSvc.exe [2010-11-24 735776]
R2 GREGService;GREGService;c:\program files\acer\registration\GREGsvc.exe [2010-1-8 23584]
R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2013-6-18 107392]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-10-18 68208]
R3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETw5s32.sys [2010-9-3 6766080]
R3 Sftfs;Sftfs;c:\windows\system32\drivers\Sftfslh.sys [2013-6-26 583848]
R3 Sftplay;Sftplay;c:\windows\system32\drivers\Sftplaylh.sys [2013-6-26 197800]
R3 Sftredir;Sftredir;c:\windows\system32\drivers\Sftredirlh.sys [2013-6-26 24232]
R3 Sftvol;Sftvol;c:\windows\system32\drivers\Sftvollh.sys [2013-6-26 20136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\7.2.241.0\SeaPort.EXE [2013-7-23 240288]
S3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.sys [2010-9-3 82768]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-24 52224]
S4 CDLauncher;CyberDefender Launcher;c:\users\barbara\appdata\local\cyberdefender internet security\antispyware\CDLauncherWS.exe [2011-2-12 190792]
.
=============== Created Last 30 ================
.
2013-10-25 19:17:0240392----a-w-c:\programdata\microsoft\microsoft antimalware\definition updates\{34f222c2-337b-42ab-afa1-49ac2c025716}\MpKsla7eecd64.sys
2013-10-25 15:13:50719224----a-w-c:\programdata\microsoft\microsoft antimalware\definition updates\{77035bfe-7464-4ee5-8565-d958af114a0e}\gapaengine.dll
2013-10-25 15:13:157796464----a-w-c:\programdata\microsoft\microsoft antimalware\definition updates\{34f222c2-337b-42ab-afa1-49ac2c025716}\mpengine.dll
2013-10-25 15:09:14--------d-----w-c:\program files\Microsoft Security Client
2013-10-25 15:07:3922856----a-w-c:\windows\system32\drivers\mbam.sys
2013-10-25 15:07:39--------d-----w-c:\program files\Malwarebytes' Anti-Malware
2013-10-25 15:07:30--------d-----w-c:\users\barbara\appdata\local\Programs
2013-10-25 14:36:317796464----a-w-c:\programdata\microsoft\windows defender\definition updates\{eaeb1edb-7a9c-47c3-931a-f46bc72a3e76}\mpengine.dll
2013-10-18 03:04:59163504----a-w-c:\programdata\microsoft\windows\sqm\manifest\Sqm10145.bin
2013-10-10 01:45:012706432----a-w-c:\windows\system32\mshtml.tlb
2013-10-09 23:31:35530432----a-w-c:\windows\system32\comctl32.dll
2013-10-09 23:30:58205824----a-w-c:\windows\system32\WebClnt.dll
2013-10-09 23:30:5781920----a-w-c:\windows\system32\davclnt.dll
2013-10-09 23:30:57115712----a-w-c:\windows\system32\drivers\mrxdav.sys
2013-10-09 23:30:5486016----a-w-c:\windows\system32\drivers\usbcir.sys
2013-10-09 23:30:54146816----a-w-c:\windows\system32\drivers\usbvideo.sys
2013-10-09 23:30:51527064----a-w-c:\windows\system32\drivers\Wdf01000.sys
.
==================== Find3M ====================
.
2013-10-09 23:21:4371048----a-w-c:\windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 23:21:43692616----a-w-c:\windows\system32\FlashPlayerApp.exe
2013-09-22 23:28:061767936----a-w-c:\windows\system32\wininet.dll
2013-09-22 23:27:492876928----a-w-c:\windows\system32\jscript9.dll
2013-09-22 23:27:4861440----a-w-c:\windows\system32\iesetup.dll
2013-09-22 23:27:48109056----a-w-c:\windows\system32\iesysprep.dll
2013-09-21 02:39:4771680----a-w-c:\windows\system32\RegisterIEPKEYs.exe
2013-09-14 00:48:58338944----a-w-c:\windows\system32\drivers\afd.sys
2013-09-13 17:16:590----a-w-c:\windows\system32\sho6816.tmp
2013-09-08 02:07:121294272----a-w-c:\windows\system32\drivers\tcpip.sys
2013-09-08 02:03:58231424----a-w-c:\windows\system32\mswsock.dll
2013-08-29 01:51:453969472----a-w-c:\windows\system32\ntkrnlpa.exe
2013-08-29 01:51:453914176----a-w-c:\windows\system32\ntoskrnl.exe
2013-08-29 01:50:301289096----a-w-c:\windows\system32\ntdll.dll
2013-08-29 01:50:16619520----a-w-c:\windows\system32\tdh.dll
2013-08-29 01:48:17640512----a-w-c:\windows\system32\advapi32.dll
2013-08-28 01:04:302348544----a-w-c:\windows\system32\win32k.sys
2013-08-28 00:57:20434688----a-w-c:\windows\system32\scavengeui.dll
2013-08-05 01:56:47133056----a-w-c:\windows\system32\drivers\ataport.sys
2013-08-03 18:14:020----a-w-c:\windows\system32\sho26A4.tmp
2013-08-02 01:50:36169984----a-w-c:\windows\system32\winsrv.dll
2013-08-02 01:49:19293376----a-w-c:\windows\system32\KernelBase.dll
2013-08-02 00:52:57271360----a-w-c:\windows\system32\conhost.exe
2013-08-02 00:43:056144---ha-w-c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:054608---ha-w-c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:053584---ha-w-c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:053072---ha-w-c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-01 11:03:36729024----a-w-c:\windows\system32\drivers\dxgkrnl.sys
.
============= FINISH: 15:18:05.07 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Starter
Boot Device: \Device\HarddiskVolume2
Install Date: 1/9/2011 10:55:49 PM
System Uptime: 10/25/2013 3:05:30 PM (0 hours ago)
.
Motherboard: Acer | | JE02_PT
Processor: Intel(R) Atom(TM) CPU N450 @ 1.66GHz | CPU | 1666/667mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 136 GiB total, 100.896 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP226: 9/3/2013 12:34:44 PM - Windows Update
RP227: 9/4/2013 3:29:17 PM - Windows Update
RP228: 9/9/2013 3:22:05 PM - Windows Update
RP229: 9/13/2013 12:14:13 PM - Windows Update
RP230: 9/13/2013 1:09:19 PM - Windows Update
RP231: 9/21/2013 5:13:25 PM - Windows Update
RP232: 9/25/2013 8:13:20 AM - Windows Update
RP233: 10/1/2013 10:49:49 PM - Windows Update
RP234: 10/5/2013 3:04:16 PM - Windows Update
RP235: 10/6/2013 9:01:23 AM - Windows Update
RP236: 10/9/2013 7:25:01 PM - Windows Update
RP237: 10/9/2013 9:34:24 PM - Windows Update
RP238: 10/17/2013 10:33:21 PM - Windows Update
RP239: 10/25/2013 10:34:38 AM - Windows Update
.
==== Installed Programs ======================
.
Acer Crystal Eye webcam Ver:1.1.192.810
Acer ePower Management
Acer eRecovery Management
Acer Game Console
Acer Games
Acer Registration
Acer ScreenSaver
Acer Updater
Acer VCM
Acrobat.com
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1 MUI
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
AVSDK5
Barnes & Noble Desktop Reader
Bejeweled 2 Deluxe
Bing Bar
Bing Rewards Client Installer
Blackhawk Striker 2
CarMD
Cartwheel Shopping
Chuzzle Deluxe
Crystal Reports Viewer 2011 SP2
crystalreports.designers.java.documentation.viewer-4.0-en-32
crystalreports.designers.java.javaviewer-4.0-core-32
crystalreports.designers.java.javaviewer-4.0-en-32
crystalreports.designers.java.launcher-4.0-core-32
CyberDefender Early Detection Center
CyberDefender Link Patrol
CyberDefender Registry Cleaner
Diner Dash 2 Restaurant Rescue
Dora's Carnival Adventure
Driver Detective
eBay Worldwide
ENE USB Card Reader Driver
eSobi v2
Farm Frenzy
FATE
Final Drive Nitro
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
GoToMeeting 5.1.0.880
Identity Card
Insaniquarium Deluxe
Intel(R) Graphics Media Accelerator Driver
Intel(R) Rapid Storage Technology
Jewel Quest
Jewel Quest - Heritage
Jewel Quest Solitaire 2
Junk Mail filter update
Launch Manager
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Starter 2010 - English
Microsoft PowerPoint Viewer
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
mPlayer version 1.0
MSVCRT
MyWinLocker
MyWinLocker Suite
Norton Online Backup
Norton PC Checkup
Penguins!
Plants vs. Zombies
Polar Bowler
product.crystalreportsviewer.arp-4.0-core-32
product.crystalreportsviewer.installiverse.reg-4.0-core-nu
product.crystalreportsviewer.langpackproperty-4.0-en-nu
Qwiklinx
Realtek High Definition Audio Driver
SearchDonkey
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
ShopAtHome.com Toolbar
Shredder
Skype Click to Call
Skype™ 6.6
SpeedItup Free 7.85
Synaptics Pointing Device Driver
Times Reader
tp.azalea.fonts-5.5-core-nu
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Virtual Villagers 4 - The Tree of Life
Welcome Center
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Yahoo! Software Update
Yahoo! Toolbar
Zuma's Revenge
Zuma Deluxe
.
==== End Of File ===========================