Page 1 of 3 123 LastLast
Results 1 to 10 of 21

Thread: Slow laptop

  1. #1
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default Slow laptop

    Hello

    Hope you are all ok. I was just wondering if anyone can help with my slow laptop its a samsung RV515 500GB HDD 4GB running windows 7AMD E-450 APU with radeon (tm) HD graphics 1650 Mhz 2 Core(s) 2 Logical

    It was bought from new in may this year but appears to be very slow. I have attached antispyware log, Malware log and hijack this log. It is taking over 2 minutes to start from switch on and web browsers are very slow as well I have IE, Firefox and Chrome, particularly IE is very slow.

    SUPERAntiSpyware Scan Log
    SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

    Generated 09/30/2012 at 07:19 PM

    Application Version : 5.5.1022

    Core Rules Database Version : 9198
    Trace Rules Database Version: 7010

    Scan type : Complete Scan
    Total Scan Time : 01:43:17

    Operating System Information
    Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
    UAC On - Limited User

    Memory items scanned : 667
    Memory threats detected : 0
    Registry items scanned : 66109
    Registry threats detected : 0
    File items scanned : 58126
    File threats detected : 5

    Adware.Tracking Cookie
    C:\USERS\ESSEXPHOTOGRAPHER\AppData\Roaming\Microsoft\Windows\Cookies\Low\28U5JDVA.txt [ Cookie:essexphotographer@samsung.uk.msn.com/ ]
    C:\USERS\ESSEXPHOTOGRAPHER\AppData\Roaming\Microsoft\Windows\Cookies\Low\CTBRDCJI.txt [ Cookie:essexphotographer@live.com/ ]
    C:\USERS\ESSEXPHOTOGRAPHER\AppData\Roaming\Microsoft\Windows\Cookies\Low\HCQD7AM0.txt [ Cookie:essexphotographer@ebay.com/ ]
    C:\USERS\ESSEXPHOTOGRAPHER\AppData\Roaming\Microsoft\Windows\Cookies\Low\J8H21S2W.txt [ Cookie:essexphotographer@login.live.com/ ]
    C:\USERS\ESSEXPHOTOGRAPHER\AppData\Roaming\Microsoft\Windows\Cookies\Low\N43XPD0S.txt [ Cookie:essexphotographer@msn.com/ ]

    Malwarebytes Anti-Malware 1.65.0.1400
    Malwarebytes : Free anti-malware download

    Database version: v2012.09.07.13

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    essexphotographer :: ESSEXPHOTO [administrator]

    30/09/2012 10:58:24
    mbam-log-2012-09-30 (10-58-24).txt

    Scan type: Full scan (C:\|D:\|Q:\|)
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 380187
    Time elapsed: 1 hour(s), 4 minute(s), 50 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)


    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 19:56:30, on 30/09/2012
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16450)
    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
    C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe
    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
    Q:\140066.enu\Office14\WINWORDC.EXE
    C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
    Q:\140066.enu\Office14\OffSpon.EXE
    C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FOXIT READER.EXE
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
    C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_278_ActiveX.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Users\essexphotographer\Downloads\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Samsung BHO Helper - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe"
    O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
    O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_B229AF3507B9C8AC9FF6D47DDBB1891A] "C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
    O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
    O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Samsung AnyWeb Print - {328ECD19-C167-40eb-A0C7-16FE7634105E} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
    O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
    O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer Free\Dfsdks.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
    O23 - Service: FBDiskOptimizer - FixBee., (FixBee - A Stabler & Faster PC. For Free.) - C:\Program Files (x86)\FixBee\FBDefragSrv64.exe
    O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: Samsung UPD Service - Unknown owner - C:\windows\System32\SUPDSvc.exe (file missing)
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
    O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

    --
    End of file - 13006 bytes

    Thnk you and Kind Regards
    Tony

  2. #2
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,175
    Points
    1308

    Default

    We need to see some information about what is happening in your machine. Please perform the following scan:
    • Download DDS by sUBs from one of the following links. Save it to your desktop.
    • Double click on the DDS icon, allow it to run.
    • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
    • Notepad will open with the results.
    • Follow the instructions that pop up for posting the results.
    • Close the program window, and delete the program from your desktop.
    Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

    Information on A/V control HERE

  3. #3
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    Hello zep516

    Many thanks for your advice I have folowed the instructions and below you will find the logfile for DDS.


    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.7.2
    Run by essexphotographer at 9:26:31 on 2012-10-01
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.4076.2804 [GMT 1:00]
    .
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\windows\system32\wininit.exe
    C:\windows\system32\lsm.exe
    C:\windows\system32\svchost.exe -k DcomLaunch
    C:\windows\system32\svchost.exe -k RPCSS
    C:\windows\system32\atiesrxx.exe
    C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\windows\system32\svchost.exe -k netsvcs
    C:\windows\system32\svchost.exe -k LocalService
    C:\windows\system32\atieclxx.exe
    C:\windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\windows\system32\WLANExt.exe
    C:\windows\system32\conhost.exe
    C:\windows\System32\spoolsv.exe
    C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    C:\Program Files (x86)\FixBee\FBDefragSrv64.exe
    c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
    C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
    C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
    C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
    C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
    C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
    C:\windows\system32\svchost.exe -k bthsvcs
    C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\windows\system32\SearchIndexer.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\windows\system32\taskhost.exe
    C:\windows\system32\Dwm.exe
    C:\windows\Explorer.EXE
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files\Elantech\ETDCtrl.exe
    C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\System32\StikyNot.exe
    C:\windows\system32\taskeng.exe
    C:\windows\system32\taskeng.exe
    C:\Program Files\Elantech\ETDCtrlHelper.exe
    C:\Program Files (x86)\Samsung\Easy Display Manager\WifiManager.exe
    C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
    C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
    C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
    C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
    C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
    C:\Program Files\Samsung\SamsungFastStart\SmartRestarter.exe
    C:\Program Files (x86)\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
    C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
    C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
    C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_278_ActiveX.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\ProgramData\HP Photo Creations\Communicator.exe
    C:\windows\system32\taskeng.exe
    C:\windows\SysWOW64\ctfmon.exe
    C:\windows\system32\wbem\wmiprvse.exe
    C:\windows\system32\DllHost.exe
    C:\windows\system32\DllHost.exe
    C:\windows\SysWOW64\cmd.exe
    C:\windows\system32\conhost.exe
    C:\windows\SysWOW64\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uSearch Bar = Preserve
    uStart Page = hxxp://samsung.msn.com
    uDefault_Page_URL = hxxp://samsung.msn.com
    mStart Page = hxxp://samsung.msn.com
    mWinlogon: Userinit=userinit.exe
    BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    BHO: Samsung BHO Class: {aa609d72-8482-4076-8991-8cdae5b93bcb} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
    uRun: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    uRun: [GoogleChromeAutoLaunch_B229AF3507B9C8AC9FF6D47DDBB1891A] "C:\Users\essexphotographer\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
    uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
    mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe"
    mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
    mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    mRun: [<NO NAME>]
    mRun: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
    mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {328ECD19-C167-40eb-A0C7-16FE7634105E} - {94BB0C4C-B957-479A-85E4-42F53B89F681} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
    TCP: DhcpNameServer = 194.168.4.100 194.168.8.100
    TCP: Interfaces\{6C458754-AF1D-4B35-9BC0-3844FBB83DD6} : DhcpNameServer = 192.168.0.1
    TCP: Interfaces\{B1AC7715-0A1A-43AB-A048-15C3DA296515} : DhcpNameServer = 194.168.4.100 194.168.8.100
    TCP: Interfaces\{B1AC7715-0A1A-43AB-A048-15C3DA296515}\35B4950383935443 : DhcpNameServer = 192.168.0.1
    TCP: Interfaces\{B1AC7715-0A1A-43AB-A048-15C3DA296515}\4586563547574696F6 : DhcpNameServer = 192.168.1.254
    TCP: Interfaces\{B1AC7715-0A1A-43AB-A048-15C3DA296515}\4716C6B64716C6B613 : DhcpNameServer = 192.168.1.1
    TCP: Interfaces\{B1AC7715-0A1A-43AB-A048-15C3DA296515}\6796277696E6D65646961673830323731383 : DhcpNameServer = 194.168.4.100 194.168.8.100
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    BHO-X64: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    BHO-X64: 0x1 - No File
    BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO-X64: AcroIEHelperStub - No File
    BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    BHO-X64: Samsung BHO Class: {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
    BHO-X64: Samsung BHO Helper - No File
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    TB-X64: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRun-x64: [RemoteControl10] "C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe"
    mRun-x64: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
    mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun-x64: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    mRun-x64: [(Default)]
    mRun-x64: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
    mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\essexphotographer\AppData\Roaming\Mozilla\Firefox\Profiles\9np6pxo6.default\
    FF - prefs.js: browser.startup.homepage - hxxp://uk.msn.com/
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
    FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
    FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Users\essexphotographer\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
    FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll
    FF - plugin: C:\windows\SysWOW64\npDeployJava1.dll
    FF - plugin: C:\windows\SysWOW64\npmproxy.dll
    .
    ---- FIREFOX POLICIES ----
    FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
    ============= SERVICES / DRIVERS ===============
    .
    R0 amd_sata;amd_sata;C:\windows\system32\DRIVERS\amd_sata.sys --> C:\windows\system32\DRIVERS\amd_sata.sys [?]
    R0 amd_xata;amd_xata;C:\windows\system32\DRIVERS\amd_xata.sys --> C:\windows\system32\DRIVERS\amd_xata.sys [?]
    R1 aswSnx;aswSnx;C:\windows\system32\drivers\aswSnx.sys --> C:\windows\system32\drivers\aswSnx.sys [?]
    R1 aswSP;aswSP;C:\windows\system32\drivers\aswSP.sys --> C:\windows\system32\drivers\aswSP.sys [?]
    R1 SABI;SAMSUNG Kernel Driver For Windows 7;\??\C:\windows\system32\Drivers\SABI.sys --> C:\windows\system32\Drivers\SABI.sys [?]
    R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
    R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\windows\system32\DRIVERS\vwififlt.sys --> C:\windows\system32\DRIVERS\vwififlt.sys [?]
    R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-11 140672]
    R2 AMD External Events Utility;AMD External Events Utility;C:\windows\system32\atiesrxx.exe --> C:\windows\system32\atiesrxx.exe [?]
    R2 aswFsBlk;aswFsBlk;C:\windows\system32\drivers\aswFsBlk.sys --> C:\windows\system32\drivers\aswFsBlk.sys [?]
    R2 aswMonFlt;aswMonFlt;\??\C:\windows\system32\drivers\aswMonFlt.sys --> C:\windows\system32\drivers\aswMonFlt.sys [?]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-8-28 44808]
    R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
    R2 FBDiskOptimizer;FBDiskOptimizer;C:\Program Files (x86)\FixBee\FBDefragSrv64.exe [2012-9-1 630584]
    R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-9-30 399432]
    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-30 676936]
    R2 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-6-1 2804568]
    R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
    R2 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-9-10 2735528]
    R3 amdkmdag;amdkmdag;C:\windows\system32\DRIVERS\atikmdag.sys --> C:\windows\system32\DRIVERS\atikmdag.sys [?]
    R3 amdkmdap;amdkmdap;C:\windows\system32\DRIVERS\atikmpag.sys --> C:\windows\system32\DRIVERS\atikmpag.sys [?]
    R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\windows\system32\drivers\AtihdW76.sys --> C:\windows\system32\drivers\AtihdW76.sys [?]
    R3 BTWAMPFL;BTWAMPFL;C:\windows\system32\DRIVERS\btwampfl.sys --> C:\windows\system32\DRIVERS\btwampfl.sys [?]
    R3 btwl2cap;Bluetooth L2CAP Service;C:\windows\system32\DRIVERS\btwl2cap.sys --> C:\windows\system32\DRIVERS\btwl2cap.sys [?]
    R3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\system32\DRIVERS\clwvd.sys --> C:\windows\system32\DRIVERS\clwvd.sys [?]
    R3 ETD;ELAN PS/2 Port Input Device;C:\windows\system32\DRIVERS\ETD.sys --> C:\windows\system32\DRIVERS\ETD.sys [?]
    R3 MBAMProtector;MBAMProtector;\??\C:\windows\system32\drivers\mbam.sys --> C:\windows\system32\drivers\mbam.sys [?]
    R3 RTL8167;Realtek 8167 NT Driver;C:\windows\system32\DRIVERS\Rt64win7.sys --> C:\windows\system32\DRIVERS\Rt64win7.sys [?]
    R3 Sftfs;Sftfs;C:\windows\system32\DRIVERS\Sftfslh.sys --> C:\windows\system32\DRIVERS\Sftfslh.sys [?]
    R3 Sftplay;Sftplay;C:\windows\system32\DRIVERS\Sftplaylh.sys --> C:\windows\system32\DRIVERS\Sftplaylh.sys [?]
    R3 Sftredir;Sftredir;C:\windows\system32\DRIVERS\Sftredirlh.sys --> C:\windows\system32\DRIVERS\Sftredirlh.sys [?]
    R3 Sftvol;Sftvol;C:\windows\system32\DRIVERS\Sftvollh.sys --> C:\windows\system32\DRIVERS\Sftvollh.sys [?]
    R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
    R3 usbfilter;AMD USB Filter Driver;C:\windows\system32\DRIVERS\usbfilter.sys --> C:\windows\system32\DRIVERS\usbfilter.sys [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-9-30 116648]
    S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
    S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-8-29 250288]
    S3 DfSdkS;Defragmentation-Service;C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer Free\DfSdkS.exe [2012-9-30 544768]
    S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-9-30 116648]
    S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-8-29 114144]
    S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
    S3 Samsung UPD Service;Samsung UPD Service;"C:\windows\System32\SUPDSvc.exe" --> C:\windows\System32\SUPDSvc.exe [?]
    S3 TsUsbFlt;TsUsbFlt;C:\windows\system32\drivers\tsusbflt.sys --> C:\windows\system32\drivers\tsusbflt.sys [?]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\system32\drivers\TsUsbGD.sys --> C:\windows\system32\drivers\TsUsbGD.sys [?]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\system32\Wat\WatAdminSvc.exe --> C:\windows\system32\Wat\WatAdminSvc.exe [?]
    S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
    .
    =============== Created Last 30 ================
    .
    2012-09-30 17:14:26 -------- d-----w- C:\Program Files (x86)\GUMB90A.tmp
    2012-09-30 09:54:51 25928 ----a-w- C:\windows\System32\drivers\mbam.sys
    2012-09-30 09:54:51 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2012-09-30 09:50:47 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{F2ED075A-A266-438C-8D1C-5B97201B2FB6}
    2012-09-30 09:37:03 34304 ----a-w- C:\windows\System32\DfSdkBt.exe
    2012-09-30 09:37:03 28160 ----a-w- C:\windows\SysWow64\DfSdkBt32.exe
    2012-09-30 09:36:58 -------- d-----w- C:\Program Files (x86)\Ashampoo
    2012-09-30 09:01:43 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{4220C231-A735-422C-9E3A-4BA14D642766}
    2012-09-29 10:51:16 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{A7C23D65-8B0C-4D58-A3D7-12CEDD9EA956}
    2012-09-28 23:18:55 -------- d-----w- C:\windows\pss
    2012-09-28 12:26:33 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{061F223E-A9EB-4F35-AA04-29633E78B678}
    2012-09-27 07:04:33 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\Auslogics
    2012-09-27 07:04:18 -------- d-----w- C:\Program Files (x86)\Auslogics
    2012-09-26 08:40:31 245760 ----a-w- C:\windows\System32\OxpsConverter.exe
    2012-09-26 08:34:23 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{A6B02242-CD99-4EA3-BDC8-2BBD3B23103B}
    2012-09-25 07:57:59 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{C5413DCB-0599-485F-BD60-8438D1CB7EC0}
    2012-09-23 20:51:55 821736 ----a-w- C:\windows\SysWow64\npDeployJava1.dll
    2012-09-23 20:51:55 746984 ----a-w- C:\windows\SysWow64\deployJava1.dll
    2012-09-23 20:51:45 95208 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
    2012-09-23 19:10:26 -------- d-----w- C:\Users\essexphotographer\AppData\Local\Apple
    2012-09-23 18:53:16 -------- d-----w- C:\ProgramData\Photojunction
    2012-09-23 18:53:15 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\Photojunction
    2012-09-23 18:48:54 -------- d-----w- C:\Program Files (x86)\Photojunction
    2012-09-23 12:48:17 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{35AF50B9-6836-4533-A0A6-4BECEE24D70A}
    2012-09-23 11:22:46 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{CCF91D64-F008-4197-A8BF-22006CACAFAA}
    2012-09-23 06:37:57 387584 ----a-w- C:\Program Files (x86)\Internet Explorer\jsdbgui.dll
    2012-09-23 06:37:56 678912 ----a-w- C:\Program Files (x86)\Internet Explorer\iedvtool.dll
    2012-09-23 06:37:56 499200 ----a-w- C:\Program Files\Internet Explorer\jsdbgui.dll
    2012-09-23 06:37:55 887296 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll
    2012-09-21 16:13:35 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{0FE30D2E-EE86-4334-8B05-8C3D2DAA945C}
    2012-09-20 20:15:06 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{BFC66A6D-D368-4A86-8787-36BA1277F112}
    2012-09-20 20:14:42 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\NCH Software
    2012-09-20 20:14:12 -------- d-----w- C:\Program Files (x86)\NCH Software
    2012-09-20 07:38:55 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{773FD24F-09A0-4931-A2C3-F6BAACEB048F}
    2012-09-19 16:15:15 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{B0170131-DBC9-430A-B022-F276E5BD4F91}
    2012-09-19 10:11:45 -------- d-----w- C:\Users\essexphotographer\AppData\Local\Babylon
    2012-09-19 10:11:42 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\Babylon
    2012-09-19 10:11:42 -------- d-----w- C:\ProgramData\Babylon
    2012-09-19 10:11:18 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\SpringPublisher
    2012-09-19 10:11:18 -------- d-----w- C:\Program Files (x86)\SpringPublisher
    2012-09-18 20:29:43 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{B184082F-8D2B-4155-91A6-94DF7281D95C}
    2012-09-18 08:29:16 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{7214A627-0AAF-4142-99B9-565F30E56255}
    2012-09-17 18:35:09 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{FCA37CBD-1653-4DF5-852C-A2DFD6297C1E}
    2012-09-17 14:06:41 -------- d-----w- C:\Users\essexphotographer\AppData\Local\CrashDumps
    2012-09-15 18:18:25 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{52707279-5DF3-4A93-B4F3-BD1691D41813}
    2012-09-13 20:40:59 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{CE889B2E-46AA-47CF-992E-DC37677A2F73}
    2012-09-13 19:46:10 -------- d-----w- C:\Program Files (x86)\MSECache
    2012-09-13 11:31:34 -------- d--h--w- C:\Program Files (x86)\Zero G Registry
    2012-09-13 11:29:39 -------- d--h--w- C:\Users\essexphotographer\InstallAnywhere
    2012-09-13 08:40:21 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{744770DF-E73F-4160-9156-6A86F21F4B14}
    2012-09-12 23:22:02 -------- d-----w- C:\ProgramData\Protexis
    2012-09-12 23:21:30 -------- d-----w- C:\Users\essexphotographer\AppData\Local\Corel PaintShop Pro
    2012-09-12 23:15:01 411656 ----a-w- C:\windows\System32\xactengine2_10.dll
    2012-09-12 23:15:01 267272 ----a-w- C:\windows\SysWow64\xactengine2_10.dll
    2012-09-12 23:01:36 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\CorelHomeOffice
    2012-09-12 23:01:35 1056 --sha-w- C:\ProgramData\KGyGaAvL.sys
    2012-09-12 23:00:37 -------- d-----w- C:\ProgramData\Corel
    2012-09-12 23:00:37 -------- d-----w- C:\Program Files (x86)\Common Files\Protexis
    2012-09-12 23:00:16 3839376 ----a-w- C:\windows\SysWow64\cdintf300.dll
    2012-09-12 22:58:58 -------- d-----w- C:\Program Files (x86)\Corel
    2012-09-12 16:40:30 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{5FA92FF5-96DA-493B-A419-E893DE699802}
    2012-09-12 07:33:10 950128 ----a-w- C:\windows\System32\drivers\ndis.sys
    2012-09-12 07:33:10 41472 ----a-w- C:\windows\System32\drivers\RNDISMP.sys
    2012-09-12 07:33:08 574464 ----a-w- C:\windows\System32\d3d10level9.dll
    2012-09-12 07:33:08 490496 ----a-w- C:\windows\SysWow64\d3d10level9.dll
    2012-09-12 07:33:05 376688 ----a-w- C:\windows\System32\drivers\netio.sys
    2012-09-12 07:33:05 288624 ----a-w- C:\windows\System32\drivers\FWPKCLNT.SYS
    2012-09-12 07:33:05 1913200 ----a-w- C:\windows\System32\drivers\tcpip.sys
    2012-09-11 20:58:54 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{F57D4CDD-0148-4E79-A606-35C099CF755D}
    2012-09-11 08:58:18 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{E434691C-7FCE-410F-8B90-B8B7C1312EE3}
    2012-09-10 20:57:41 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{9FD68138-2DE6-4E7D-8B67-8C3A3755D545}
    2012-09-10 13:29:37 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\DVD Flick
    2012-09-10 13:23:41 40960 ----a-w- C:\windows\SysWow64\ssubtmr6.dll
    2012-09-10 13:23:41 36864 ----a-w- C:\windows\SysWow64\trayicon_handler.ocx
    2012-09-10 13:23:41 28672 ----a-w- C:\windows\SysWow64\mousewheel.ocx
    2012-09-10 13:23:41 164144 ----a-w- C:\windows\SysWow64\comct232.ocx
    2012-09-10 13:23:40 662288 ----a-w- C:\windows\SysWow64\mscomct2.ocx
    2012-09-10 13:23:40 609824 ----a-w- C:\windows\SysWow64\comctl32.ocx
    2012-09-10 13:23:40 212240 ----a-w- C:\windows\SysWow64\richtx32.ocx
    2012-09-10 13:23:40 1081616 ----a-w- C:\windows\SysWow64\mscomctl.ocx
    2012-09-10 13:23:40 -------- d-----w- C:\Program Files (x86)\DVD Flick
    2012-09-10 13:09:50 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\TeamViewer
    2012-09-10 13:06:11 -------- d-----w- C:\Program Files (x86)\TeamViewer
    2012-09-10 08:17:51 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{ACF71E10-CB8D-4090-B324-24E703A2303E}
    2012-09-09 20:17:11 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{41B6A720-A4C4-4CCA-B070-D1C144E73856}
    2012-09-09 18:15:00 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{429ABB92-F52B-4B65-8D5A-32F527F74FF9}
    2012-09-09 07:30:21 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\Malwarebytes
    2012-09-09 07:30:08 -------- d-----w- C:\ProgramData\Malwarebytes
    2012-09-09 07:27:21 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\SUPERAntiSpyware.com
    2012-09-09 07:27:12 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com
    2012-09-09 07:27:12 -------- d-----w- C:\Program Files\SUPERAntiSpyware
    2012-09-09 06:14:34 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{30AFEF8F-3D26-46A2-B9A2-53F9CF551F15}
    2012-09-08 18:14:08 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{784ABCF6-7055-41B5-823A-345703C0136C}
    2012-09-07 19:50:46 -------- d-----w- C:\Program Files (x86)\Yahoo!
    2012-09-07 16:57:41 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{556FD64E-D846-4084-BE57-423C65658A76}
    2012-09-06 09:09:12 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{5E85BE89-B8AE-4E23-9A35-274A10A00F2D}
    2012-09-06 09:09:12 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{12C0D347-1ABA-45FF-9846-27B901C7695C}
    2012-09-05 20:59:46 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{ACE10E3E-9654-49FE-B3E2-5D526103C925}
    2012-09-05 20:51:45 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{D7A7CB4A-A98F-4F10-9887-EB403FD8DD87}
    2012-09-05 20:44:00 -------- d-----w- C:\Users\essexphotographer\AppData\Local\CyberLink
    2012-09-05 20:32:56 -------- d-----w- C:\Program Files (x86)\VS Revo Group
    2012-09-05 17:27:03 -------- d-----w- C:\Users\essexphotographer\.swt
    2012-09-05 17:26:53 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\Azureus
    2012-09-05 17:24:46 -------- d-----w- C:\Users\essexphotographer\AppData\Local\CRE
    2012-09-05 17:24:29 -------- d-----w- C:\Program Files (x86)\Conduit
    2012-09-05 08:51:03 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{59EDAA87-10E6-42E6-8B34-D44EE09EEBF7}
    2012-09-04 08:50:47 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{99485FD3-505F-469B-84AC-B98C82738778}
    2012-09-03 09:22:10 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
    2012-09-03 09:21:34 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{CF053AB5-802C-4C08-8F40-7B7E784F4F09}
    2012-09-02 18:32:24 -------- d-----w- C:\Users\essexphotographer\AppData\Local\Nikon
    2012-09-02 18:31:32 61440 ----a-r- C:\Users\essexphotographer\AppData\Roaming\Microsoft\Installer\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}\ARPPRODUCTICON.exe
    2012-09-02 18:31:12 -------- d-----w- C:\windows\Downloaded Installations
    2012-09-02 18:30:49 -------- d-----w- C:\Program Files (x86)\Common Files\Nikon
    2012-09-02 18:30:07 -------- d-----w- C:\Program Files\Common Files\Nikon
    2012-09-02 18:30:03 -------- d-----w- C:\Program Files (x86)\Nikon
    2012-09-02 18:30:01 -------- d-----w- C:\Program Files\Nikon
    2012-09-02 18:29:59 106496 ----a-w- C:\windows\SysWow64\ATL71.DLL
    2012-09-02 18:29:24 -------- d-----w- C:\Users\essexphotographer\AppData\Local\Downloaded Installations
    2012-09-02 17:20:51 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{E445E3C8-0089-412C-A8D9-13EDE3B3EACE}
    2012-09-01 19:46:36 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\Serif
    2012-09-01 19:35:12 -------- d-----w- C:\Program Files (x86)\Common Files\MSSoap
    2012-09-01 19:31:51 -------- d-----w- C:\Program Files (x86)\Serif
    2012-09-01 11:29:42 -------- d-----w- C:\Users\essexphotographer\AppData\Local\{A122E812-DBE7-4BCF-B662-91A808D73900}
    2012-09-01 09:49:22 -------- d-----w- C:\Users\essexphotographer\AppData\Roaming\FixBee
    2012-09-01 09:49:22 -------- d-----w- C:\ProgramData\FixBee
    2012-09-01 09:22:14 -------- d-----w- C:\Program Files (x86)\FixBee
    .
    ==================== Find3M ====================
    .
    2012-09-21 22:45:21 73136 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-09-21 22:45:21 696240 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
    2012-08-24 14:58:36 405152 ----a-w- C:\windows\SysWow64\Newtonsoft.Json.Net20.dll
    2012-08-24 10:31:32 2312704 ----a-w- C:\windows\System32\jscript9.dll
    2012-08-24 10:21:18 1392128 ----a-w- C:\windows\System32\wininet.dll
    2012-08-24 10:20:11 1494528 ----a-w- C:\windows\System32\inetcpl.cpl
    2012-08-24 10:14:45 173056 ----a-w- C:\windows\System32\ieUnatt.exe
    2012-08-24 10:13:29 599040 ----a-w- C:\windows\System32\vbscript.dll
    2012-08-24 10:09:42 2382848 ----a-w- C:\windows\System32\mshtml.tlb
    2012-08-24 06:59:17 1800704 ----a-w- C:\windows\SysWow64\jscript9.dll
    2012-08-24 06:51:27 1129472 ----a-w- C:\windows\SysWow64\wininet.dll
    2012-08-24 06:51:02 1427968 ----a-w- C:\windows\SysWow64\inetcpl.cpl
    2012-08-24 06:47:26 142848 ----a-w- C:\windows\SysWow64\ieUnatt.exe
    2012-08-24 06:47:12 420864 ----a-w- C:\windows\SysWow64\vbscript.dll
    2012-08-24 06:43:58 2382848 ----a-w- C:\windows\SysWow64\mshtml.tlb
    2012-08-21 09:13:13 969200 ----a-w- C:\windows\System32\drivers\aswSnx.sys
    2012-08-21 09:13:12 71600 ----a-w- C:\windows\System32\drivers\aswMonFlt.sys
    2012-08-21 09:13:12 54072 ----a-w- C:\windows\System32\drivers\aswRdr2.sys
    2012-08-21 09:12:33 41224 ----a-w- C:\windows\avastSS.scr
    2012-07-18 18:15:06 3148800 ----a-w- C:\windows\System32\win32k.sys
    2012-07-06 20:07:42 552960 ----a-w- C:\windows\System32\drivers\bthport.sys
    2012-07-04 22:13:27 59392 ----a-w- C:\windows\System32\browcli.dll
    2012-07-04 22:13:27 136704 ----a-w- C:\windows\System32\browser.dll
    2012-07-04 21:14:34 41984 ----a-w- C:\windows\SysWow64\browcli.dll
    .
    ============= FINISH: 9:28:41.71 ===============

  4. #4
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,175
    Points
    1308

    Default

    Hi knight,

    That scan creates 2 logs, the other log is called attach.txt. Do you have it? might be down in the taskbar.. You don't need to attach just copy and paste it in..

    Joe

  5. #5
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    Hi Joe

    Thank yopu for replying I didnt post that as it said only send if requested so here is the info from that log...

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows 7 Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 28/08/2012 19:01:23
    System Uptime: 01/10/2012 06:00:41 (3 hours ago)
    .
    Motherboard: SAMSUNG ELECTRONICS CO., LTD. | | RV415/RV415
    Processor: AMD E-450 APU with Radeon(tm) HD Graphics | CPU 1 | 825/100mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 178 GiB total, 111.637 GiB free.
    D: is FIXED (NTFS) - 266 GiB total, 236.594 GiB free.
    E: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP68: 23/09/2012 07:37:09 - Windows Update
    RP69: 23/09/2012 19:48:11 - Installed PJ Remix
    RP70: 23/09/2012 20:10:59 - Installed QuickTime
    RP71: 23/09/2012 21:51:10 - Installed Java 7 Update 7
    RP72: 27/09/2012 07:53:08 - Windows Update
    RP73: 28/09/2012 16:02:54 - Installed Serif PagePlus X4
    RP74: 30/09/2012 10:57:15 - Installed HiJackThis
    RP75: 30/09/2012 19:45:03 - Revo Uninstaller's restore point - HiJackThis
    RP76: 30/09/2012 19:46:07 - Removed HiJackThis
    .
    ==== Installed Programs ======================
    .
    ???? ??? Windows Live
    ???? Windows Live
    ????? Windows Live
    ?????? ??????? ?? Windows Live
    ???????? ?????????? Windows Live
    ?????????? Windows Live
    ??????????? ?? Windows Live
    Adobe AIR
    Adobe Flash Player 11 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Reader 9.1
    Agatha Christie - Death on the Nile
    Any Video Converter 3.4.2
    Apple Application Support
    Apple Software Update
    Ashampoo WinOptimizer Free v.1.0.0
    Atheros Client Installation Program
    Auslogics Disk Defrag
    avast! Free Antivirus
    „Windows Live Essentials“
    „Windows Live Mail“
    „Windows Live Messenger“
    „Windows Live“ fotogalerija
    BatteryLifeExtender
    Bejeweled 2 Deluxe
    Build-a-lot
    Catalyst Control Center - Branding
    Catalyst Control Center InstallProxy
    Catalyst Control Center Localization All
    ccc-core-static
    CCC Help Chinese Standard
    CCC Help Chinese Traditional
    CCC Help Czech
    CCC Help Danish
    CCC Help Dutch
    CCC Help English
    CCC Help Finnish
    CCC Help French
    CCC Help German
    CCC Help Greek
    CCC Help Hungarian
    CCC Help Italian
    CCC Help Japanese
    CCC Help Korean
    CCC Help Norwegian
    CCC Help Polish
    CCC Help Portuguese
    CCC Help Russian
    CCC Help Spanish
    CCC Help Swedish
    CCC Help Thai
    CCC Help Turkish
    Chuzzle Deluxe
    Compatibility Pack for the 2007 Office system
    Corel Office
    Corel Office - IPM
    Corel Office - Launcher
    Corel Office - Templates
    Corel PaintShop Pro X4
    Coupon Printer for Windows
    CyberLink Media Suite
    CyberLink Media+ Player10
    CyberLink MediaShow
    CyberLink Power2Go
    CyberLink PowerDirector
    CyberLink YouCam
    D3DX10
    Diner Dash 2 Restaurant Rescue
    DVD Flick 1.3.0.7
    Easy Content Share
    Easy Display Manager
    Easy Migration
    Easy Network Manager
    Easy SpeedUp Manager
    EasyBatteryManager
    EasyFileShare
    Express Burn
    Farm Frenzy
    Fast Start
    FixBee Disk Optimizer
    Fotogalerija Windows Live
    Foxit Reader
    Free Studio version 5.7.3.916
    Galeria de Fotografias do Windows Live
    Galeria fotografii uslugi Windows Live
    Galerie de photos Windows Live
    Galerie foto Windows Live
    Galería fotográfica de Windows Live
    Google Chrome
    Google Toolbar for Internet Explorer
    Google Update Helper
    HP Deskjet 1050 J410 series Help
    HP Photo Creations
    HP Update
    ICA
    Insaniquarium Deluxe
    IPM_PSP_COM
    Java 7 Update 7
    Java Auto Updater
    John Deere Drive Green
    Junk Mail filter update
    Malwarebytes Anti-Malware version 1.65.0.1400
    Mesh Runtime
    Microsoft Office 2010
    Microsoft Office Click-to-Run 2010
    Microsoft Office Starter 2010 - English
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Movie Color Enhancer
    Mozilla Firefox 15.0 (x86 en-US)
    Mozilla Firefox 15.0.1 (x86 en-US)
    Mozilla Maintenance Service
    MSVCRT
    MSVCRT_amd64
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    Multimedia POP
    Nikon Message Center 2
    Nikon Movie Editor
    Norton Online Backup
    Peggle
    Penguins!
    PhoneShare
    PJ Remix
    Plants vs. Zombies
    Poczta uslugi Windows Live
    Podstawowe programy Windows Live
    Polar Golfer
    Pošta Windows Live
    PSPPContent
    PSPPHelp
    QuickTime
    Raccolta foto di Windows Live
    Realtek Ethernet Controller Driver
    Realtek High Definition Audio Driver
    Revo Uninstaller 1.94
    S?????? f?t???af??? t?? Windows Live
    Samsung AnyWeb Print
    Samsung Printer Live Update
    Samsung Recovery Solution 5
    Samsung Support Center 1.0
    Samsung Universal Print Driver
    Samsung Universal Scan Driver
    Samsung Update Plus
    SamsungMovie
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
    Serif AlbumPlus SE PRO
    Serif PagePlus X4
    Serif PhotoPlus X3
    Setup
    SISShortcut
    Skype™ 5.10
    SpringPublisher
    TeamViewer 7
    Ultimate Reference Suite
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
    User Guide
    WavePad Sound Editor
    WildTangent Games
    WildTangent ORB Game Console
    Windows Live
    Windows Live ??
    Windows Live ?? ???
    Windows Live ???
    Windows Live ????
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Fotótár
    Windows Live Foto-galerija
    Windows Live fotoattelu galerija
    Windows Live Fotogalerie
    Windows Live Fotogalleri
    Windows Live Fotogaléria
    Windows Live Fotograf Galerisi
    Windows Live Galeria de Fotos
    Windows Live Galerija fotografija
    Windows Live Installer
    Windows Live Mail
    Windows Live Mesh
    Windows Live Messenger
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live Pošta
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live Temel Parçalar
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    Windows Liven asennustyökalu
    Windows Liven sähköposti
    Windows Liven valokuvavalikoima
    WordCaptureX Pro
    Yahoo! Messenger
    Yahoo! Software Update
    Yahoo! Toolbar
    Zuma Deluxe
    .
    ==== Event Viewer Messages From Past Week ========
    .
    28/09/2012 20:49:30, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
    26/09/2012 15:18:42, Error: Disk [11] - The driver detected a controller error on \...\DR1.
    26/09/2012 13:56:38, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
    25/09/2012 08:47:14, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.
    24/09/2012 17:19:26, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
    .
    ==== End Of File ===========================

  6. #6
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,175
    Points
    1308

    Default

    Download AdwCleaner http://general-changelog-team.fr/fr/...e/2-adwcleaner

    Double click on AdwCleaner.exe to run the tool.
    ***Note: Windows Vista and Windows 7 users:

    Right click in the adwCleaner.exe and select "run as adminstrator"

    1 Click the Search button only

    2 A logfile will automatically open after the scan has finished.

    3 Please post the content of that logfile in your next reply.

    4 Or you can find the logfile at C:\AdwCleaner[R1].txt.

  7. #7
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    Hi Joe

    Thanks again for your help here is the requested logfile...

    # AdwCleaner v2.003 - Logfile created 10/02/2012 at 14:54:25
    # Updated 23/09/2012 by Xplode
    # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
    # User : essexphotographer - ESSEXPHOTO
    # Boot Mode : Normal
    # Running from : C:\Users\essexphotographer\Desktop\adwcleaner.exe
    # Option [Search]


    ***** [Services] *****


    ***** [Files / Folders] *****

    Folder Found : C:\Program Files (x86)\Conduit
    Folder Found : C:\ProgramData\Babylon
    Folder Found : C:\Users\essexphotographer\AppData\Local\Babylon
    Folder Found : C:\Users\essexphotographer\AppData\LocalLow\Conduit
    Folder Found : C:\Users\essexphotographer\AppData\LocalLow\Vuze_Remote
    Folder Found : C:\Users\essexphotographer\AppData\Roaming\Babylon
    Folder Found : C:\Users\essexphotographer\AppData\Roaming\Mozilla\Firefox\Profiles\9np6pxo6.default\Smartbar

    ***** [Registry] *****

    Key Found : HKCU\Software\Conduit
    Key Found : HKLM\Software\Babylon
    Key Found : HKLM\Software\Conduit

    ***** [Internet Browsers] *****

    -\\ Internet Explorer v9.0.8112.16421

    [OK] Registry is clean.

    -\\ Mozilla Firefox v15.0 (en-US)

    Profile name : default
    File : C:\Users\essexphotographer\AppData\Roaming\Mozilla\Firefox\Profiles\9np6pxo6.default\prefs.js

    [OK] File is clean.

    -\\ Google Chrome v22.0.1229.79

    File : C:\Users\essexphotographer\AppData\Local\Google\Chrome\User Data\Default\Preferences

    [OK] File is clean.

    *************************

    AdwCleaner[R1].txt - [1456 octets] - [02/10/2012 14:54:25]

    ########## EOF - C:\AdwCleaner[R1].txt - [1516 octets] ##########

  8. #8
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,175
    Points
    1308

    Default

    Hi Knight1,

    Please rescan with AdwCleaner.
    Double-click AdwCleaner.exe to run the tool.
    Click Delete.
    Everything that was found will be deleted.
    Save and open files and approve the reboot. A text file will open after the restart.
    Please post the contents of that logfile with your next reply.


    Next

    Please download Listparts
    Please download Listparts64
    Run the tool, click Scan and post the log (Result.txt) it makes.

    Joe
    Last edited by zep516; 10-02-2012 at 05:16 PM.

  9. #9
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    Hello Joe

    Here is logfile for listparts

    ListParts by Farbar Version: 02-10-2012
    Ran by essexphotographer (administrator) on 03-10-2012 at 10:15:43
    Windows 7 (X64)
    Running From: C:\Users\essexphotographer\Desktop
    Language: 0409
    ************************************************************

    ========================= Memory info ======================

    Percentage of memory in use: 41%
    Total physical RAM: 4076.05 MB
    Available physical RAM: 2378.12 MB
    Total Pagefile: 8150.3 MB
    Available Pagefile: 5638.16 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.9 MB

    ======================= Partitions =========================

    1 Drive c: () (Fixed) (Total:178 GB) (Free:110.26 GB) NTFS
    2 Drive d: () (Fixed) (Total:265.69 GB) (Free:236.59 GB) NTFS

    Disk ### Status Size Free Dyn Gpt
    -------- ------------- ------- ------- --- ---
    Disk 0 Online 465 GB 1024 KB

    Partitions of Disk 0:
    ===============

    Partition ### Type Size Offset
    ------------- ---------------- ------- -------
    Partition 1 Primary 100 MB 1024 KB
    Partition 2 Primary 178 GB 101 MB
    Partition 0 Extended 265 GB 178 GB
    Partition 4 Logical 265 GB 178 GB
    Partition 3 Recovery 21 GB 443 GB

    ======================================================================================================

    Disk: 0
    Partition 1
    Type : 07
    Hidden: No
    Active: Yes

    Volume ### Ltr Label Fs Type Size Status Info
    ---------- --- ----------- ----- ---------- ------- --------- --------
    * Volume 1 SYSTEM NTFS Partition 100 MB Healthy System (partition with boot components)

    ======================================================================================================

    Disk: 0
    Partition 2
    Type : 07
    Hidden: No
    Active: No

    Volume ### Ltr Label Fs Type Size Status Info
    ---------- --- ----------- ----- ---------- ------- --------- --------
    * Volume 2 C NTFS Partition 178 GB Healthy Boot

    ======================================================================================================

    Disk: 0
    Partition 4
    Type : 07
    Hidden: No
    Active: No

    Volume ### Ltr Label Fs Type Size Status Info
    ---------- --- ----------- ----- ---------- ------- --------- --------
    * Volume 3 D NTFS Partition 265 GB Healthy

    ======================================================================================================

    Disk: 0
    Partition 3
    Type : 27
    Hidden: Yes
    Active: No

    Volume ### Ltr Label Fs Type Size Status Info
    ---------- --- ----------- ----- ---------- ------- --------- --------
    * Volume 4 SAMSUNG_REC NTFS Partition 21 GB Healthy Hidden

    ======================================================================================================

    ****** End Of Log ******

  10. #10
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,175
    Points
    1308

    Default

    Thanks for the log, do you have the other log from AdwCleaner.exe when I asked you to rescan with it and choose delete?, post # 8.

    Next

    Please download the latest version of TDSSKiller from here and save it to your Desktop.
    • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    • Put a checkmark beside loaded modules.
    • A reboot will be needed to apply the changes. Do it.
    • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
    • Then click on Change parameters in TDSSKiller.
    • Check all boxes then click OK.
    • Click the Start Scan button.
    • The scan should take no longer than 2 minutes.
    • If a suspicious object is detected, the default action will be Skip, click on Continue.
    • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
      Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

      Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
    • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
    Last edited by zep516; 10-03-2012 at 05:22 PM.

Page 1 of 3 123 LastLast