Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus Issues - Fresh start


  • This topic is locked This topic is locked
4 replies to this topic

#1 JosephTM

JosephTM

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 05 June 2013 - 04:58 PM

Hey there! I'd like to start my greeting you gringo_pr, as I've met you before in my first thread, and I return again to your service! 

 

So, I just broke laptop, and my relative is allowing me to use his for a while. The problem is, this laptop was basically used by him for games, and I want to clear it of any viruses, trojans, etc. I had to download adblocker because the ad issue was so bad (whenever I'd click to open a new window on a website an ad website would pop up). Keep in mind that the ad issue is not why I am asking for help, although it is part of the reason. I'd like to clear my computer of any intrusions (such as viruses) it might possibly have. Thank you!

 

DDS.txt file from DDS Tool:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16576  BrowserJavaVersion: 10.21.2
Run by Daniel at 17:53:21 on 2013-06-05
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4044.1454 [GMT -4:00]
.
AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Windows\system32\dmwu.exe
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\jmdp\stij.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LMCV1.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\Daniel\AppData\Local\Temp\W0km6.exe
C:\Users\Daniel\AppData\Local\Temp\oJWsb.exe
C:\Users\Daniel\AppData\Local\Temp\Ej8WS.exe
C:\Users\Daniel\AppData\Local\Temp\Ej8WS.exe
C:\Users\Daniel\AppData\Local\Temp\Ej8WS.exe
C:\Users\Daniel\AppData\Local\Temp\Ej8WS.exe
C:\Users\Daniel\AppData\Local\Temp\oJWsb.exe
C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftFJ0.exe
C:\Users\Daniel\AppData\Local\Temp\PloEr.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
C:\Windows\system32\taskhost.exe
C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\L8ZUE.exe
C:\Users\Daniel\AppData\Local\Temp\F6nr4.exe
C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yj0xs.exe
C:\Users\Daniel\AppData\Local\Temp\X8BHv.exe
C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EB8uh.exe
C:\Users\Daniel\AppData\Local\Temp\y7BCy.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SyKxw.exe
C:\Users\Daniel\AppData\Local\Temp\Mw74W.exe
C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe
C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingBar.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.287\SSScheduler.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\ARFC\wrtc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10042&barid={0F6F6739-CA3B-11E2-A1B9-78E3B5650E60}
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\IPS\IPSBHO.dll
BHO: Lyrics Plug: {7575A0EC-3946-4346-8524-24D6DE1FC479} - C:\Program Files (x86)\LyricsPlug\lrcsplug.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: TrueSuite Website Log On: {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2012\IEBHO.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Updater By SweetPacks: {C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD} - C:\Program Files\Updater By SweetPacks\Extension32.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: SweetPacks Browser Helper: {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dll
TB: SweetPacks Toolbar for Internet Explorer: {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 
TB: SweetPacks Toolbar for Internet Explorer: {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
uRun: [Steam] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
uRun: [1236893551.SimCity 5(2).exe] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
uRun: [dojtebhze.exe] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
uRun: [Javaa] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
uRun: [IJP] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
uRun: [Facebook Update] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
uRun: [Skype] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
uRun: [Windows Update] C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
mRun: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EB8uh.exe
StartupFolder: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftFJ0.exe
StartupFolder: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\L8ZUE.exe
StartupFolder: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LMCV1.exe
StartupFolder: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SyKxw.exe
StartupFolder: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yj0xs.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.287\SSScheduler.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
TCP: NameServer = 64.233.217.2 64.233.217.3
TCP: Interfaces\{750A0779-6D7A-462A-A5F5-7612BAE70AAB} : DHCPNameServer = 64.233.217.2 64.233.217.3
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
mASetup: {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} - msiexec /fu {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} /qn
x64-BHO: TrueSuite Website Log On: {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2012\x64\IEBHO.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Updater By SweetPacks: {C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD} - C:\Program Files\Updater By SweetPacks\Extension64.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [SetDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {6032497A-4479-462B-ADB8-A0A372BB9A23} - msiexec /fu {6032497A-4479-462B-ADB8-A0A372BB9A23} /qn
.
============= SERVICES / DRIVERS ===============
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 FPLService;TrueSuiteService;C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe [2011-8-26 260424]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2011-9-9 86072]
R2 HPAuto;HP Auto;C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-2-17 682040]
R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-9-12 227896]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2011-7-11 26680]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-1-17 13592]
R2 IBUpdaterService;IBUpdaterService;C:\Windows\System32\dmwu.exe [2013-5-31 1453872]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-1-17 2424424]
R2 jhi_service;Intel® Identity Protection Technology Host Interface Service;C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-2-24 212944]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe [2012-1-17 138760]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-5-14 3289208]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-1-17 2656280]
R2 Updater By SweetPacks;Updater By SweetPacks;C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe [2013-5-31 188760]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE [2012-6-11 240208]
R3 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20110819.004\BHDrvx64.sys [2012-1-17 1151096]
R3 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\System32\drivers\NISx64\1301000.01C\ccSetx64.sys [2012-1-17 167048]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2010-7-28 31088]
R3 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20110726.001\IDSviA64.sys [2012-1-17 488568]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2010-10-15 317440]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-1-17 539240]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\Windows\System32\drivers\rtl8192ce.sys [2012-1-17 1145448]
R3 SymDS;Symantec Data Store;C:\Windows\System32\drivers\NISx64\1301000.01C\SymDS64.sys [2012-1-17 451192]
R3 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\NISx64\1301000.01C\SymEFA64.sys [2012-1-17 1084536]
R3 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NISx64\1301000.01C\Ironx64.sys [2012-1-17 189560]
R3 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NISx64\1301000.01C\symnets.sys [2012-1-17 401016]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE [2012-6-11 193616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-4-19 161384]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.287\McCHSvc.exe [2012-9-11 234776]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\drivers\RtsPStor.sys [2012-1-17 339048]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-6-1 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2013-06-05 20:05:08 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E5F4B6F7-CE65-4D37-8570-43706AEF3DA9}\offreg.dll
2013-06-04 22:08:46 -------- d-----w- C:\Program Files (x86)\EA Games
2013-06-04 21:03:45 9460464 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E5F4B6F7-CE65-4D37-8570-43706AEF3DA9}\mpengine.dll
2013-06-03 20:50:30 77824 ----a-w- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SyKxw.exe
2013-06-03 12:02:53 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2013-06-02 23:34:18 77824 ----a-w- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EB8uh.exe
2013-06-02 23:13:55 77824 ----a-w- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yj0xs.exe
2013-06-02 22:52:39 77824 ----a-w- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\L8ZUE.exe
2013-06-02 17:57:04 77824 ----a-w- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftFJ0.exe
2013-06-02 01:48:04 77824 ----a-w- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LMCV1.exe
2013-06-02 01:48:04 77824 ----a-w- C:\Users\Daniel\AppData\Roaming\lsu2J88.exe
2013-06-01 22:56:45 -------- d-----w- C:\Users\Daniel\AppData\Local\CyberLink
2013-06-01 22:54:00 -------- d-----r- C:\Program Files (x86)\Skype
2013-06-01 22:48:03 -------- d-----w- C:\Users\Daniel\AppData\Local\Facebook
2013-06-01 21:24:45 -------- d-----w- C:\Program Files (x86)\Cheat Engine 6.1
2013-06-01 14:30:53 -------- d-----w- C:\ProgramData\McAfee Security Scan
2013-06-01 14:30:49 -------- d-----w- C:\Program Files (x86)\McAfee Security Scan
2013-06-01 14:30:06 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-01 14:22:49 -------- d-----w- C:\Users\Daniel\AppData\Roaming\.minecraft
2013-06-01 14:05:22 -------- d-----w- C:\Windows\SysWow64\Wat
2013-06-01 14:05:22 -------- d-----w- C:\Windows\System32\Wat
2013-06-01 13:40:22 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2013-06-01 13:40:22 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-06-01 13:40:22 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2013-06-01 13:40:22 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2013-06-01 13:28:23 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-01 13:18:21 46080 ----a-w- C:\Windows\System32\atmlib.dll
2013-06-01 13:18:21 367616 ----a-w- C:\Windows\System32\atmfd.dll
2013-06-01 13:18:21 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2013-06-01 13:18:21 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2013-06-01 13:17:15 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2013-06-01 13:17:15 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2013-06-01 13:17:15 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2013-06-01 13:17:15 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2013-06-01 13:17:15 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2013-06-01 13:17:14 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2013-06-01 13:17:14 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2013-06-01 13:14:13 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2013-06-01 13:14:13 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2013-06-01 13:14:13 5120 ----a-w- C:\Windows\System32\wmi.dll
2013-06-01 13:14:13 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2013-06-01 13:14:13 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2013-05-31 22:23:07 -------- d-----w- C:\Games
2013-05-31 22:18:46 788896 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-05-31 22:18:45 866720 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-05-31 22:15:23 -------- d-----w- C:\Users\Daniel\AppData\Roaming\.techniclauncher
2013-05-31 21:43:39 -------- d-----w- C:\Program Files (x86)\LyricsPlug
2013-05-31 21:43:33 -------- d-----w- C:\Program Files\Updater By SweetPacks
2013-05-31 21:43:31 -------- d-----w- C:\Users\Daniel\AppData\Local\Programs
2013-05-31 21:43:21 -------- d-----w- C:\Program Files (x86)\SweetIM
2013-05-31 21:43:04 33792 ----a-w- C:\Windows\System32\ImHttpComm.dll
2013-05-31 21:43:04 1453872 ----a-w- C:\Windows\System32\dmwu.exe
2013-05-31 21:43:04 -------- d-----w- C:\Windows\SysWow64\jmdp
2013-05-31 21:43:04 -------- d-----w- C:\Windows\SysWow64\ARFC
2013-05-31 21:43:03 -------- d-----w- C:\Windows\SysWow64\WNLT
2013-05-31 21:27:17 142336 ----a-w- C:\Windows\System32\poqexec.exe
2013-05-31 21:27:17 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2013-05-31 21:27:16 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2013-05-31 21:27:16 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2013-05-31 21:27:16 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2013-05-31 21:27:16 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2013-05-31 21:26:58 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-05-31 21:26:58 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-05-31 21:26:18 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2013-05-31 21:26:18 1572864 ----a-w- C:\Windows\System32\quartz.dll
2013-05-31 21:26:18 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2013-05-31 21:26:17 366592 ----a-w- C:\Windows\System32\qdvd.dll
2013-05-31 21:26:05 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2013-05-31 21:26:05 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2013-05-31 21:25:51 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-05-31 21:25:50 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-05-31 21:25:50 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-05-31 21:25:50 111448 ----a-w- C:\Windows\System32\consent.exe
2013-05-31 21:04:55 -------- d-sh--w- C:\ProgramData\Javaa0
2013-05-31 21:01:02 -------- d-----w- C:\Program Files (x86)\Email Hacker Pro
2013-05-31 20:39:17 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2013-05-31 20:39:15 -------- d-----w- C:\Program Files (x86)\Steam
2013-05-31 20:09:52 8795216 ----a-w- C:\ProgramData\Microsoft\BingBar\BBSvc\7.1.391.0oemBingBarSetup-Partner.EXE
2013-05-31 20:07:58 515584 ----a-w- C:\Windows\System32\timedate.cpl
2013-05-31 20:06:46 800768 ----a-w- C:\Windows\System32\usp10.dll
2013-05-31 20:05:59 6144 ---ha-w- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2013-05-31 20:04:59 77312 ----a-w- C:\Windows\System32\packager.dll
2013-05-31 20:04:59 67072 ----a-w- C:\Windows\SysWow64\packager.dll
2013-05-31 20:02:10 -------- d-----w- C:\Users\Daniel\AppData\Local\Google
2013-05-31 20:01:59 -------- d-----w- C:\Users\Daniel\AppData\Local\Apps
2013-05-31 20:01:58 -------- d-----w- C:\Users\Daniel\AppData\Local\Deployment
2013-05-31 20:01:42 9460464 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-05-31 19:55:50 -------- d-----w- C:\Users\Daniel\AppData\Roaming\WildTangent
2013-05-31 19:55:40 -------- d-----w- C:\Users\Daniel\AppData\Local\CrashDumps
2013-05-31 05:55:45 425345024 ----a-w- C:\ProgramData\Microsoft\OEMOffice14\Office14\Updates\OFFICESUITEWWSP1-X-NONE.MSP
2013-05-31 03:10:46 -------- d-----w- C:\ProgramData\Blio
2013-05-31 03:10:43 -------- d-----w- C:\Users\Daniel\AppData\Roaming\Blio
2013-05-31 03:09:19 -------- d-----w- C:\Users\Daniel\AppData\Roaming\Synaptics
2013-05-31 03:08:36 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2013-05-31 03:08:36 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2013-05-31 03:08:36 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2013-05-31 03:07:14 -------- d-----w- C:\Users\Daniel\AppData\Roaming\hpqlog
2013-05-31 03:07:09 -------- d-----w- C:\Users\Daniel\AppData\Local\Hewlett-Packard
2013-05-31 03:06:21 -------- d-----w- C:\Users\Daniel\AppData\Local\RemEngine
2013-05-31 03:06:19 -------- d-----w- C:\Users\Daniel\AppData\Local\Hewlett-Packard_Company
2013-05-31 03:05:57 -------- d-----w- C:\Users\Daniel\AppData\Local\AuthenTec
2013-05-31 03:05:30 -------- d-----w- C:\Users\Daniel\AppData\Roaming\Symantec
2013-05-31 03:05:09 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2013-05-31 03:05:00 99840 ----a-w- C:\Windows\System32\wudriver.dll
.
==================== Find3M  ====================
.
2013-06-01 13:28:23 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-21 12:28:00 829264 ----a-w- C:\Windows\System32\msvcr100.dll
2013-05-21 12:28:00 608080 ----a-w- C:\Windows\System32\msvcp100.dll
2013-05-02 06:06:08 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-04-13 05:49:23 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49:19 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49:19 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49:19 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45:16 474624 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2013-04-13 04:45:15 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll
2013-04-12 14:45:08 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2013-04-10 05:24:10 983912 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-04-10 05:24:10 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-04-10 03:30:50 3153920 ----a-w- C:\Windows\System32\win32k.sys
2013-03-19 06:04:06 5550424 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-03-19 05:53:58 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2013-03-19 05:53:58 230400 ----a-w- C:\Windows\System32\wwansvc.dll
2013-03-19 05:46:56 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2013-03-19 05:04:13 3968856 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04:10 3913560 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47:50 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll
2013-03-19 03:06:33 112640 ----a-w- C:\Windows\System32\smss.exe
.
============= FINISH: 17:54:10.71 ===============
 

Attach.txt (I was asked by gringo_pr to copy and paste this in my previous thread rather than attaching it):

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium 
Boot Device: \Device\HarddiskVolume1
Install Date: 5/30/2013 11:04:32 PM
System Uptime: 6/4/2013 9:26:27 PM (20 hours ago)
.
Motherboard: Hewlett-Packard |  | 1695
Processor: Intel® Core™ i3-2350M CPU @ 2.30GHz | CPU1 | 1794/1333mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 441 GiB total, 397.03 GiB free.
D: is FIXED (NTFS) - 21 GiB total, 2.246 GiB free.
E: is FIXED (FAT32) - 4 GiB total, 1.074 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP3: 5/30/2013 11:09:20 PM - Windows Update
RP4: 5/31/2013 4:38:55 PM - Installed Steam
RP5: 5/31/2013 6:18:14 PM - Installed Java 7 Update 21
RP6: 6/1/2013 9:11:46 AM - Windows Update
RP7: 6/1/2013 10:28:35 AM - Removed Java 7 Update 21
RP8: 6/1/2013 10:29:27 AM - Installed Java 7 Update 21
RP9: 6/3/2013 8:02:14 AM - Windows Update
RP10: 6/5/2013 3:54:42 PM - Windows Update
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Reader X (10.1.0) MUI
Adobe Shockwave Player 11.6
AuthenTec TrueAPI
Bejeweled 3
Bing Bar
Blackhawk Striker 2
Blio
Cheat Engine 6.1
Chuzzle Deluxe
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Cradle of Rome 2
CyberLink YouCam
D3DX10
Dora's World Adventure
ESU for Microsoft Windows 7 SP1
Evernote v. 4.2.3
Facebook Video Calling 1.2.0.287
Farm Frenzy
Farmscapes
FATE
Final Drive Fury
Google Chrome
Google Update Helper
Hewlett-Packard ACLM.NET v1.1.2.0
Hoyle Card Games
HP Application Assistant
HP Auto
HP Client Services
HP Customer Experience Enhancements
HP Documentation
HP Games
HP Launch Box
HP MovieStore
HP On Screen Display
HP Power Manager
HP Quick Launch
HP QuickWeb
HP Recovery Manager
HP Security Assistant
HP Setup
HP Setup Manager
HP SimplePass PE 2012
HP Software Framework
HP Support Assistant
IDT Audio
Intel® Control Center
Intel® Identity Protection Technology 1.1.2.0
Intel® Management Engine Components
Intel® Processor Graphics
Intel® Rapid Storage Technology
Internet Explorer Toolbar 4.8 by SweetPacks
Java 7 Update 21
Java Auto Updater
Jewel Match 3
Jewel Quest Mysteries: The Seventh Gate Collector's Edition
John Deere Drive Green
Junk Mail filter update
Letters from Nowhere 2
Luxor HD
Lyrics Plug
Mah Jong Medley
McAfee Security Scan Plus
Mesh Runtime
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft WSE 3.0 Runtime
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Norton Internet Security
opensource
Penguins!
Plants vs. Zombies - Game of the Year
PlayReady PC Runtime x86
Poker Superstars III
Polar Bowler
Polar Golfer
Realtek Ethernet Controller Driver
Realtek PCIE Card Reader
REALTEK Wireless LAN Driver
RollerCoaster Tycoon 3: Platinum
Skype Click to Call
Skype™ 6.3
Steam
SweetPacks Updater Service
swMSM
Synaptics TouchPad Driver
The Treasures of Mystery Island: The Ghost Ship
Torchlight
Update Installer for WildTangent Games App
Updater By SweetPacks 2.0.0.566
VIP Access SDK (1.0.1.2) 
Virtual Villagers 4 - The Tree of Life
WildTangent Games App (HP Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR 4.20 (32-bit)
Zuma's Revenge
.
==== Event Viewer Messages From Past Week ========
.
6/1/2013 9:46:40 AM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft XML Core Services 4.0 Service Pack 2 for x64-based Systems (KB973688).
6/1/2013 9:39:25 AM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft XML Core Services 4.0 Service Pack 2 for x64-based Systems (KB954430).
6/1/2013 10:14:45 AM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2847204).
6/1/2013 10:14:45 AM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80242016: Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2829530).
6/1/2013 10:11:26 AM, Error: Service Control Manager [7023]  - 
5/31/2013 4:43:14 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
5/31/2013 4:43:14 PM, Error: Service Control Manager [7000]  - The Steam Client Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
5/30/2013 11:09:25 PM, Error: Service Control Manager [7034]  - The HPWMISVC service terminated unexpectedly.  It has done this 1 time(s).
5/30/2013 11:06:14 PM, Error: Service Control Manager [7022]  - The Windows Search service hung on starting.
.
==== End Of File ===========================
 
I'd like to thank you in advance for helping me!

 



BC AdBot (Login to Remove)

 


#2 Robybel

Robybel

    Bleepin' Mattley


  • Malware Response Team
  • 179 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:22 AM

Posted 05 June 2013 - 10:26 PM

Hi and Welcome!! JosephTm :)

My name is Robybel.

I would be more than happy to take a look at your log and help you with solving any malware problems you might have. Logs can take a while to research, so please be patient and know that I am working hard to get you a clean and functional system back in your hands. I'd be grateful if you would note the following:
  • I will be working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for the issues on this machine.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.
IMPORTANT NOTE : Please do not delete, download or install anything unless instructed to do so.
DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision. Doing so could make your system inoperable and could require a full reinstall of your Operating System and losing all your programs and data.


Vista and Windows 7 users:

These tools MUST be run from the executable. (.exe) every time you run them
with Admin Rights (Right click, choose "Run as Administrator")


Stay with this topic until I give you the all clean post.

Having said that....Let's get going!! :)

=============================

Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Next

AdwCleaner
  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
Next

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Next
  • Download RogueKiller and save it to your desktop.
  • Quit all other programs
  • Start RogueKiller.exe
  • Wait until the Prescan has finished ...
  • Click on Scan
    RGKRScan.png
  • Wait for the end of the scan
  • A report will be created on your desktop.
  • Click on the Delete button
    RGKRDelete.png
  • Next click on the ShortcutsFix
    RGKRShortcutsFix.png
  • another report will be created on your desktop.
Please post: All RKreport.txt text files located on your desktop.

On your next reply please post :
  • checkup.txt
  • AdwCleaner[S1].txt
  • JRT.txt
  • All RKreport.txt

Let me know if you have any problems in performing with the steps above or any questions you may have.

Good Day!

- Proud Graduate of WTT Classroom -

Member of ASAP and UNITE


Please Only Copy And Paste Reports Into Topic - Do Not Attach

If you are satisfied with the help that you have received, please consider a donation btndonatesmr.gif

 

 


#3 Robybel

Robybel

    Bleepin' Mattley


  • Malware Response Team
  • 179 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:22 AM

Posted 08 June 2013 - 08:10 AM

Still need help?

- Proud Graduate of WTT Classroom -

Member of ASAP and UNITE


Please Only Copy And Paste Reports Into Topic - Do Not Attach

If you are satisfied with the help that you have received, please consider a donation btndonatesmr.gif

 

 


#4 Robybel

Robybel

    Bleepin' Mattley


  • Malware Response Team
  • 179 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:22 AM

Posted 10 June 2013 - 10:44 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

- Proud Graduate of WTT Classroom -

Member of ASAP and UNITE


Please Only Copy And Paste Reports Into Topic - Do Not Attach

If you are satisfied with the help that you have received, please consider a donation btndonatesmr.gif

 

 


#5 Robybel

Robybel

    Bleepin' Mattley


  • Malware Response Team
  • 179 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:22 AM

Posted 10 June 2013 - 10:45 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

- Proud Graduate of WTT Classroom -

Member of ASAP and UNITE


Please Only Copy And Paste Reports Into Topic - Do Not Attach

If you are satisfied with the help that you have received, please consider a donation btndonatesmr.gif

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users