Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Elusive bug in computer


  • Please log in to reply
1 reply to this topic

#1 ndie1750

ndie1750

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:10:07 AM

Posted 07 February 2013 - 07:27 PM

Typically about 15-20 minutes into the laptop booting up, the computer significantly slows down (though memory and cpu usage percentages don't ever peak like I'm used to when it has a bug).  Adaware, and MBAM detect many (100+) errors, fixes them all, and the laptop begins working for about 15 minutes again and then the problem starts up again.  It doesn't go completely unusable, but just much slower than it should be.

 

Any help would be most appreciative, Thanks!

 

Already ran a DDS scan; attached is the log. (edit, posted correct log now)

 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 9.0.8112.16457
Run by Home at 19:05:39 on 2013-02-07
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.3687.1925 [GMT -5:00]
.
AV: Lavasoft Ad-Aware *Enabled/Updated* {E0D97DD4-42BA-B3F2-A5A7-22E9ACE81FC7}
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Lavasoft Ad-Aware *Enabled/Updated* {5BB89C30-6480-BC7C-9F17-199BD76F557A}
SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Lavasoft Ad-Aware *Disabled* {D8E2FCF1-08D5-B2AA-8EF8-8BDC523B58BC}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\atieclxx.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\Dwm.exe
C:\windows\system32\taskhost.exe
C:\windows\Explorer.EXE
C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\System32\rundll32.exe
C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe
C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\PROGRA~2\AD-AWA~1\AdAware.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files\iPod\bin\iPodService.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.yahoo.com/
uDefault_Page_URL = hxxp://start.toshiba.com/?cid=C001B2Y
uProxyOverride = <local>;*.local
uURLSearchHooks: midicairus Toolbar: {efb1e45a-148d-40f9-a3f0-09d5577f9970} - C:\Program Files (x86)\midicairus\prxtbmidi.dll
mURLSearchHooks: midicairus Toolbar: {efb1e45a-148d-40f9-a3f0-09d5577f9970} - C:\Program Files (x86)\midicairus\prxtbmidi.dll
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ips\ipsbho.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: midicairus Toolbar: {efb1e45a-148d-40f9-a3f0-09d5577f9970} - C:\Program Files (x86)\midicairus\prxtbmidi.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coieplg.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: midicairus Toolbar: {EFB1E45A-148D-40F9-A3F0-09D5577F9970} - C:\Program Files (x86)\midicairus\prxtbmidi.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coieplg.dll
TB: midicairus Toolbar: {efb1e45a-148d-40f9-a3f0-09d5577f9970} - C:\Program Files (x86)\midicairus\prxtbmidi.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Apple] rundll32 "C:\Users\Home\AppData\Local\Diagnostics\Apple\znxmo.dll",NVDisplayCoInstallW
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
mRun: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Toshiba\Toshiba Online Backup\Activation\TOBuActivation.exe" UNATTENDED
mRun: [ToshibaAppPlace] "C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
mRun: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SearchProtection] C:\ProgramData\Search Protection\_run.bat
mRun: [Ad-Aware Antivirus] "C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher" --windows-run
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
TCP: NameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{4862C8F9-9455-46F6-B645-DA0B15FAFB79} : DHCPNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{4862C8F9-9455-46F6-B645-DA0B15FAFB79}\34963736F62443031333 : DHCPNameServer = 192.168.1.1 71.0.1.211 205.244.194.36
TCP: Interfaces\{4862C8F9-9455-46F6-B645-DA0B15FAFB79}\34F6D666F627470294E6E602231383 : DHCPNameServer = 10.0.0.1
TCP: Interfaces\{4862C8F9-9455-46F6-B645-DA0B15FAFB79}\34F6D666F627470294E6E602355796475637023547164756376796C6C656 : DHCPNameServer = 24.25.5.60 24.25.5.61
TCP: Interfaces\{4862C8F9-9455-46F6-B645-DA0B15FAFB79}\36F6D666F6274702375796475637 : DHCPNameServer = 8.8.8.8 8.8.4.4
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-Run: [TPwrMain] C:\Program Files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
x64-Run: [TCrdMain] C:\Program Files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
x64-Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe
x64-Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
x64-Run: [TosNC] C:\Program Files (x86)\Toshiba\BulletinBoard\TosNcCore.exe
x64-Run: [TosReelTimeMonitor] C:\Program Files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\windows\System32\drivers\amd_sata.sys [2012-3-19 75904]
R0 amd_xata;amd_xata;C:\windows\System32\drivers\amd_xata.sys [2012-3-19 38016]
R0 gfibto;gfibto;C:\windows\System32\drivers\gfibto.sys [2012-11-26 14456]
R0 MpFilter;Microsoft Malware Protection Driver;C:\windows\System32\drivers\MpFilter.sys [2012-8-30 228768]
R2 Ad-Aware Service;Ad-Aware Service;C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe [2012-11-21 1236368]
R2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2012-3-19 204288]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccsvchst.exe [2012-5-18 138232]
R2 NisDrv;Microsoft Network Inspection System;C:\windows\System32\drivers\NisDrvWFP.sys [2012-3-20 128456]
R2 PCCUJobMgr;Common Client Job Manager Service;C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe [2012-3-19 126392]
R2 SBAMSvc;Ad-Aware;C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [2012-9-20 3677000]
R2 sbapifs;sbapifs;C:\windows\System32\drivers\sbapifs.sys [2012-9-12 82872]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R3 ETD;ELAN PS/2 Port Input Device;C:\windows\System32\drivers\ETD.sys [2010-11-11 137512]
R3 FwLnk;FwLnk Driver;C:\windows\System32\drivers\FwLnk.sys [2012-3-19 9216]
R3 gfiark;gfiark;C:\windows\System32\drivers\gfiark.sys [2013-1-19 38096]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-9-12 368896]
R3 PGEffect;Pangu effect driver;C:\windows\System32\drivers\PGEffect.sys [2012-3-19 38096]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\drivers\rtl8192ce.sys [2012-3-19 1109096]
R3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]
R3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]
R3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]
R3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120507.001\BHDrvx64.sys [2012-5-7 1160824]
S3 ccSet_NIS;Norton Internet Security Settings Manager;C:\windows\System32\drivers\NISx64\1307010.005\ccsetx64.sys [2012-5-18 167048]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-5-11 138360]
S3 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120511.001\IDSviA64.sys [2012-5-12 488568]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2010-9-27 76912]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2012-3-19 243712]
S3 SymDS;Symantec Data Store;C:\windows\System32\drivers\NISx64\1307010.005\symds64.sys [2012-5-18 451192]
S3 SymEFA;Symantec Extended File Attributes;C:\windows\System32\drivers\NISx64\1307010.005\symefa64.sys [2012-5-18 1092728]
S3 SymIRON;Symantec Iron Driver;C:\windows\System32\drivers\NISx64\1307010.005\ironx64.sys [2012-5-18 190072]
S3 SymNetS;Symantec Network Security WFP Driver;C:\windows\System32\drivers\NISx64\1307010.005\symnets.sys [2012-5-18 405624]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2012-7-9 52736]
.
=============== Created Last 30 ================
.
2013-02-07 17:08:32    111616    ----a-w-    C:\Users\Home\6974627.exe
2013-02-07 17:08:31    114688    ----a-w-    C:\Users\Home\3106938.dll
2013-02-07 11:45:33    9161176    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FA2DC79B-39E0-4336-A5BC-21843CDED482}\mpengine.dll
2013-02-06 01:01:04    9161176    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-02-06 00:44:15    --------    d-----w-    C:\Users\Home\AppData\Local\adawarebp
2013-02-06 00:23:52    --------    d-----w-    C:\ProgramData\Search Protection
2013-01-19 22:21:14    38096    ----a-w-    C:\windows\System32\drivers\gfiark.sys
2013-01-09 17:40:57    424448    ----a-w-    C:\windows\System32\KernelBase.dll
.
==================== Find3M  ====================
.
2013-02-06 00:24:19    47496    ----a-w-    C:\windows\System32\sbbd.exe
2013-02-06 00:24:19    14456    ----a-w-    C:\windows\System32\drivers\gfibto.sys
2013-01-30 10:53:22    273840    ------w-    C:\windows\System32\MpSigStub.exe
2013-01-09 13:57:04    697864    ----a-w-    C:\windows\SysWow64\FlashPlayerApp.exe
2013-01-09 13:57:03    74248    ----a-w-    C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-16 17:11:22    46080    ----a-w-    C:\windows\System32\atmlib.dll
2012-12-16 14:45:03    367616    ----a-w-    C:\windows\System32\atmfd.dll
2012-12-16 14:13:28    295424    ----a-w-    C:\windows\SysWow64\atmfd.dll
2012-12-16 14:13:20    34304    ----a-w-    C:\windows\SysWow64\atmlib.dll
2012-12-14 21:49:28    24176    ----a-w-    C:\windows\System32\drivers\mbam.sys
2012-12-07 13:20:16    441856    ----a-w-    C:\windows\System32\Wpc.dll
2012-12-07 13:15:31    2746368    ----a-w-    C:\windows\System32\gameux.dll
2012-12-07 12:26:17    308736    ----a-w-    C:\windows\SysWow64\Wpc.dll
2012-12-07 12:20:43    2576384    ----a-w-    C:\windows\SysWow64\gameux.dll
2012-12-07 11:20:04    30720    ----a-w-    C:\windows\System32\usk.rs
2012-12-07 11:20:03    43520    ----a-w-    C:\windows\System32\csrr.rs
2012-12-07 11:20:03    23552    ----a-w-    C:\windows\System32\oflc.rs
2012-12-07 11:20:01    45568    ----a-w-    C:\windows\System32\oflc-nz.rs
2012-12-07 11:20:01    44544    ----a-w-    C:\windows\System32\pegibbfc.rs
2012-12-07 11:20:01    20480    ----a-w-    C:\windows\System32\pegi-fi.rs
2012-12-07 11:20:00    20480    ----a-w-    C:\windows\System32\pegi-pt.rs
2012-12-07 11:19:59    20480    ----a-w-    C:\windows\System32\pegi.rs
2012-12-07 11:19:58    46592    ----a-w-    C:\windows\System32\fpb.rs
2012-12-07 11:19:57    40960    ----a-w-    C:\windows\System32\cob-au.rs
2012-12-07 11:19:57    21504    ----a-w-    C:\windows\System32\grb.rs
2012-12-07 11:19:57    15360    ----a-w-    C:\windows\System32\djctq.rs
2012-12-07 11:19:56    55296    ----a-w-    C:\windows\System32\cero.rs
2012-12-07 11:19:55    51712    ----a-w-    C:\windows\System32\esrb.rs
2012-11-30 05:45:35    362496    ----a-w-    C:\windows\System32\wow64win.dll
2012-11-30 05:45:35    243200    ----a-w-    C:\windows\System32\wow64.dll
2012-11-30 05:45:35    13312    ----a-w-    C:\windows\System32\wow64cpu.dll
2012-11-30 05:45:14    215040    ----a-w-    C:\windows\System32\winsrv.dll
2012-11-30 05:43:12    16384    ----a-w-    C:\windows\System32\ntvdm64.dll
2012-11-30 04:54:00    5120    ----a-w-    C:\windows\SysWow64\wow32.dll
2012-11-30 04:53:59    274944    ----a-w-    C:\windows\SysWow64\KernelBase.dll
2012-11-30 03:23:48    338432    ----a-w-    C:\windows\System32\conhost.exe
2012-11-30 02:44:06    25600    ----a-w-    C:\windows\SysWow64\setup16.exe
2012-11-30 02:44:04    7680    ----a-w-    C:\windows\SysWow64\instnm.exe
2012-11-30 02:44:04    14336    ----a-w-    C:\windows\SysWow64\ntvdm64.dll
2012-11-30 02:44:03    2048    ----a-w-    C:\windows\SysWow64\user.exe
2012-11-30 02:38:59    6144    ---ha-w-    C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-11-30 02:38:59    4608    ---ha-w-    C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-30 02:38:59    3584    ---ha-w-    C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-11-30 02:38:59    3072    ---ha-w-    C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-11-23 03:26:31    3149824    ----a-w-    C:\windows\System32\win32k.sys
2012-11-23 03:13:57    68608    ----a-w-    C:\windows\System32\taskhost.exe
2012-11-22 05:44:23    800768    ----a-w-    C:\windows\System32\usp10.dll
2012-11-22 04:45:03    626688    ----a-w-    C:\windows\SysWow64\usp10.dll
2012-11-20 05:48:49    307200    ----a-w-    C:\windows\System32\ncrypt.dll
2012-11-20 04:51:09    220160    ----a-w-    C:\windows\SysWow64\ncrypt.dll
2012-11-14 06:11:44    2312704    ----a-w-    C:\windows\System32\jscript9.dll
2012-11-14 06:04:11    1392128    ----a-w-    C:\windows\System32\wininet.dll
2012-11-14 06:02:49    1494528    ----a-w-    C:\windows\System32\inetcpl.cpl
2012-11-14 05:57:46    599040    ----a-w-    C:\windows\System32\vbscript.dll
2012-11-14 05:57:35    173056    ----a-w-    C:\windows\System32\ieUnatt.exe
2012-11-14 05:52:40    2382848    ----a-w-    C:\windows\System32\mshtml.tlb
2012-11-14 02:09:22    1800704    ----a-w-    C:\windows\SysWow64\jscript9.dll
2012-11-14 01:58:15    1427968    ----a-w-    C:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57:37    1129472    ----a-w-    C:\windows\SysWow64\wininet.dll
2012-11-14 01:49:25    142848    ----a-w-    C:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48:27    420864    ----a-w-    C:\windows\SysWow64\vbscript.dll
2012-11-14 01:44:42    2382848    ----a-w-    C:\windows\SysWow64\mshtml.tlb
.
============= FINISH: 19:07:08.87 ===============

Edited by ndie1750, 07 February 2013 - 07:38 PM.
Moved from Win7 ~Budapest


BC AdBot (Login to Remove)

 


#2 AngryRaisin

AngryRaisin

  • Members
  • 235 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orange County, CA, US
  • Local time:07:07 AM

Posted 08 February 2013 - 05:33 AM

uninstall one of your antivirus systems... since you said norton was expired that would the one I'd uninstall... and if you installed ad-aware with antivirus.. uninistall that one as well ... from a quick look at your logs it look like that it what is in your system.

 

You will be left with Microsoft Security Essentials.


Edited by AngryRaisin, 08 February 2013 - 05:43 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users