NEED HELP FROM A PRO

Posted 3/25/2018 5:51 PM
#129959
User avatar

FrankD Member

Date Joined Nov 2016
Total Posts: 2
I Have Been Trying Everything To Clean My PC, But This Time I Need Serious Help.

The Logs Are Posted Here, Computer Is Running Extremely Slow And Locks Up

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 12:01:22 AM, on 3/24/2018

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.18618)





Boot mode: Normal



Running processes:

C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe

C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\HPTouchSmartSyncCalReminderApp.exe

C:\Users\gfggfgfd\Desktop\BULLGUARD INST\HijackThis.exe



R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - c:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [Aimersoft Helper Compact.exe] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe

O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe

O4 - Global Startup: WDSmartWare.lnk = C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - c:\program files\bullguard ltd\bullguard\Files32\Antiphishing\IE\BGAntiphishingIE.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll

O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: BullGuard scanning service (BsScanner) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe

O23 - Service: BullGuard Sentry Engine (BsSentry) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BsSentry.exe

O23 - Service: BullGuard update service (BsUpdate) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe

O23 - Service: CalendarSynchService - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe

O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: WD SmartWare Drive Manager Service (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe

O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

O23 - Service: Wondershare Driver Install Service (WsDrvInst) - Wondershare - C:\Program Files (x86)\Keepvid\KeepVid Pro (Desktop)\DriverInstall.exe



--

End of file - 8617 bytes



Malwarebytes

www.malwarebytes.com



-Log Details-

Scan Date: 3/24/18

Scan Time: 5:22 PM

Log File: 6a16adf0-2fa9-11e8-89c7-386077e4a7fb.json

Administrator: Yes



-Software Information-

Version: 3.4.4.2398

Components Version: 1.0.322

Update Package Version: 1.0.4474

License: Trial



-System Information-

OS: Windows 7 Service Pack 1

CPU: x64

File System: NTFS

User: gfggfgfd-HP\gfggfgfd



-Scan Summary-

Scan Type: Custom Scan

Result: Completed

Objects Scanned: 335219

Threats Detected: 35

Threats Quarantined: 35

Time Elapsed: 3 hr, 12 min, 48 sec



-Scan Options-

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Disabled

Heuristics: Enabled

PUP: Detect

PUM: Detect



-Scan Details-

Process: 0

(No malicious items detected)



Module: 0

(No malicious items detected)



Registry Key: 3

PUP.Optional.ASK, HKU\S-1-5-21-1069065302-3694586213-3019344895-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2FA28606-DE77-4029-AF96-B231E3B8F827}, Quarantined, [480], [341070],1.0.4474

PUP.Optional.ASK, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2FA28606-DE77-4029-AF96-B231E3B8F827}, Quarantined, [480], [341070],1.0.4474

PUP.Optional.ASK, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}, Quarantined, [480], [341070],1.0.4474



Registry Value: 3

PUP.Optional.ASK, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}|URL, Quarantined, [480], [341070],1.0.4474

PUP.Optional.ASK, HKU\S-1-5-21-1069065302-3694586213-3019344895-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}|URL, Quarantined, [480], [341071],1.0.4474

PUP.Optional.ASK, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}|URL, Quarantined, [480], [341070],1.0.4474



Registry Data: 0

(No malicious items detected)



Data Stream: 0

(No malicious items detected)



Folder: 0

(No malicious items detected)



File: 29

PUP.Optional.AuslogicsBoostSpeed, C:\PROGRAM FILES (X86)\AUSLOGICS\DISK DEFRAG\DISKWIPEHELPER.DLL, Quarantined, [1618], [474616],1.0.4474

PUP.Optional.AuslogicsBoostSpeed, C:\PROGRAM FILES (X86)\AUSLOGICS\DISK DEFRAG\TRACKERASERHELPER.DLL, Quarantined, [1618], [474616],1.0.4474

PUP.Optional.AuslogicsBoostSpeed, C:\PROGRAM FILES (X86)\AUSLOGICS\DISK DEFRAG\BROWSERHELPER.DLL, Quarantined, [1618], [474616],1.0.4474

PUP.Optional.AuslogicsBoostSpeed, C:\PROGRAM FILES (X86)\AUSLOGICS\DISK DEFRAG\DISKCLEANERHELPER.DLL, Quarantined, [1618], [474616],1.0.4474

PUP.Optional.ASK, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\C  DRIVE OF DELL\PROGRAMS\2 PROGRAMS\KMP.EXE, Quarantined, [480], [383618],1.0.4474

PUP.Optional.ASK, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\C  DRIVE OF DELL\PROGRAMS\DATA RECOVERY PROGRAMS\PANDORARECOVERY.EXE, Quarantined, [480], [383618],1.0.4474

Generic.Malware/Suspicious, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\C  DRIVE OF DELL\PROGRAMS\AVANDQUEST PHONE TOOLS\ACPTLS.RAR, Quarantined, [0], [392686],1.0.4474

PUP.Optional.383Media, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\C  DRIVE OF DELL\PROGRAMS\2 PROGRAMS\DRIVERWHIZ.EXE, Quarantined, [6829], [448609],1.0.4474

HackTool.Agent, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\C  DRIVE OF DELL\PROGRAMS\BLU-RAY TO DVD PRO V1.10\BLU.RAR, Quarantined, [419], [1570],1.0.4474

HackTool.Agent, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\SIMPLETECH DRIVE\PROGRAMS\AISEESOFT.BLACKBERRY.VIDEO.CONVERTER.V5.018-LZ0\LZVVQKT1\LINEZER0.PART1.RAR, Quarantined, [419], [1570],1.0.4474

HackTool.Agent, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\SIMPLETECH DRIVE\PROGRAMS\AISEESOFT.BLACKBERRY.VIDEO.CONVERTER.V5.018-LZ0\LINEZER0.PART1.RAR, Quarantined, [419], [1570],1.0.4474

PUP.Optional.383Media, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\SIMPLETECH DRIVE\PROGRAMS\DRIVERWHIZ.EXE, Quarantined, [6829], [448609],1.0.4474

PUP.Optional.ASK, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\SIMPLETECH DRIVE\PROGRAMS\PANDORARECOVERY.EXE, Quarantined, [480], [383618],1.0.4474

PUP.Optional.AdvancedSystemCare, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\ADVANCE SYSTEM CARE\ASC-SETUP.EXE, Quarantined, [1159], [396386],1.0.4474

PUP.Optional.ASK, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\DELL\INSTALLED PROGRAMS & DRIVERS\THE_KMPLAYER_1435.EXE, Quarantined, [480], [383618],1.0.4474

PUP.Optional.Zugo, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\LINKSYS LNE100TX FAST ETHERNET ADAPTER(LNE100TX V4)\SETUP_116215.EXE, Quarantined, [6668], [403958],1.0.4474

PUP.Optional.IntroKeygen, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\PASSWORD.RECOVERY.BUNDLE.2012.V1.90.INCL.KEYMAKER-CORE\PASSWORD.RECOVERY.BUNDLE.2012.V1.90.INCL.KEYMAKER-CORE\PASSWORD.RECOVERY.BUNDLE.2012.V1.90.INCL.KEYMAKER-CORE\CR-RGL01.ZIP, Quarantined, [14001], [279993],1.0.4474

HackTool.Agent, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\SIMPLETECH DRIVE\PROGRAMS\AISEESOFT.BLACKBERRY.VIDEO.CONVERTER.V5.018-LZ0\LZVVQKT1.ZIP, Quarantined, [419], [1570],1.0.4474

PUP.Optional.IntroKeygen, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\SYMANTEC.NORTON.GHOST.V15.0.INCL.KEYMAKER-CORE\CORE10K.EXE, Quarantined, [14001], [279993],1.0.4474

PUP.Optional.ProductKeyFinder, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\USBTHIEF------\BATEXE\PRODUKEY.EXE, Quarantined, [6656], [86094],1.0.4474

PUP.Optional.HistoryTool, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\USBTHIEF------\BATEXE\IEHV.EXE, Quarantined, [6804], [86054],1.0.4474

PUP.Optional.AdvancedSystemCare, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\ASC-SETUP.EXE, Quarantined, [1159], [396386],1.0.4474

RiskWare.DontStealOurSoftware, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\MALWAREBYTES ANTI-MALWARE\KEYGEN MBAM.EXE, Quarantined, [682], [77939],1.0.4474

PUP.Optional.PCProtect, C:\USERS\GFGGFGFD\DOWNLOADS\AVG FOR WIN XP\TOTALAV.EXE, Quarantined, [2228], [354597],1.0.4474

PUP.Optional.SpyHunter, C:\USERS\GFGGFGFD\DOWNLOADS\SPYHUNTER-INSTALLER.EXE, Quarantined, [890], [433139],1.0.4474

RiskWare.DontStealOurSoftware, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\MALWAREBYTES_ANTI-MALWARE\MALWAREBYTES ANTI-MALWARE\KEYGEN MBAM.EXE, Quarantined, [682], [77939],1.0.4474

PUP.Optional.IntroKeygen, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\PASSWORD.RECOVERY.BUNDLE.2012.V1.90\CORE10K.EXE, Quarantined, [14001], [279993],1.0.4474

PUP.Optional.StartUpManager, C:\USERS\GFGGFGFD\DESKTOP\ALL DESKTOP FOLDERS\USB KEYS (ALL)\USBTHIEF------\BATEXE\STRUN.EXE, Quarantined, [6657], [86117],1.0.4474

PUP.Optional.DriverDetective, C:\USERS\GFGGFGFD\DOWNLOADS\DRIVERDETECTIVE.EXE, Quarantined, [1612], [335971],1.0.4474



Physical Sector: 0

(No malicious items detected)





(end)



.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 2/4/2012 4:59:14 PM

System Uptime: 3/23/2018 3:22:47 PM (25 hours ago)

.

Motherboard: PEGATRON CORPORATION |  | 2ACD

Processor: AMD A8-3820 APU with Radeon(tm) HD Graphics | P0 | 800/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 915 GiB total, 10.792 GiB free.

D: is FIXED (NTFS) - 16 GiB total, 0.626 GiB free.

E: is CDROM ()

F: is Removable

G: is Removable

H: is Removable

I: is Removable

J: is CDROM ()

K: is Removable

N: is FIXED (NTFS) - 0 GiB total, 0.061 GiB free.

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP617: 3/24/2018 1:10:32 PM - Removed Norton Online Backup

.

==== Installed Programs ======================

.

Adobe AIR

Adobe Flash Player 11 ActiveX (x64)

Adobe Flash Player 27 NPAPI

Aimersoft Helper Compact 2.5.2

AMD APP SDK Runtime

AMD Catalyst Install Manager

AMD Media Foundation Decoders

AMD Steady Video Plug-In

AMD VISION Engine Control Center

Apple Application Support (32-bit)

Apple Application Support (64-bit)

Apple Mobile Device Support

Apple Software Update

Auslogics Disk Defrag

Bejeweled 3

Blackhawk Striker 2

Blio

Bonjour

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

CCleaner

Chuzzle Deluxe

Cradle of Rome 2

CSV Viewer

D3DX10

DirectX for Managed Code Update (Summer 2004)

Dora's World Adventure

DVD Identifier

Exact Audio Copy 1.0beta6

Facebook

Farm Frenzy

Farmscapes

FATE

Final Drive Fury

Google Chrome

Google Update Helper

Harmony Remote Update

Hewlett-Packard ACLM.NET v1.1.2.0

Hoyle Card Games

HP Application Assistant

HP Auto

HP Calendar

HP Client Services

HP Clock

HP Customer Experience Enhancements

HP Games

HP LinkUp

HP Magic Canvas

HP Magic Canvas Tutorials

HP MovieStore

HP Notes

HP Odometer

HP RSS

HP Setup

HP Setup Manager

HP Support Assistant

HP Support Information

HP TouchSmart Background - Beats

HP TouchSmart RecipeBox

HP Update

HP Vision Hardware Diagnostics

HP Weather

iCloud

IDT Audio

iTunes

Java 8 Update 161 (64-bit)

Java Auto Updater

Jewel Match 3

Jewel Quest Mysteries: The Seventh Gate Collector's Edition

John Deere Drive Green

Junk Mail filter update

KeepVid Pro(Build 7.1.2.1)

Kobo

LabelPrint

Letters from Nowhere 2

Logitech Harmony Remote Software 7

Luxor HD

Mah Jong Medley

MediaInfo 0.7.54 (32-bit)

Mesh Runtime

Metric Converter

Microsoft .NET Framework 4.7.1

Microsoft Application Error Reporting

Microsoft Mathematics

Microsoft Office 2010

Microsoft Office Excel Viewer

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2005 Redistributable (x64)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501

Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005

Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005

Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005

Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005

Microsoft WSE 3.0 Runtime

Mozilla Firefox 59.0 (x64 en-US)

Mozilla Maintenance Service

MSVCRT

MSVCRT_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

NEC Electronics USB 3.0 Host Controller Driver

Norton Online Backup

opensource

Optimum App for Laptop 4.5

PDF Complete Special Edition

Penguins!

Plants vs. Zombies - Game of the Year

PlayReady PC Runtime amd64

PlayReady PC Runtime x86

Poker Superstars III

Polar Bowler

Polar Golfer

Power2Go

PressReader

Recovery Manager

Remote Control USB Driver

Remote Graphics Receiver

RollerCoaster Tycoon 3: Platinum

Seagate Dashboard

SearchPro version 1.0.3

Spot

TeraCopy 2.27

The Treasures of Mystery Island: The Ghost Ship

Torchlight

TSHostedAppLauncher

Update for Microsoft .NET Framework 4.7.1 (KB4054852)

Update for Microsoft .NET Framework 4.7.1 (KB4054981)

Update Installer for WildTangent Games App

Virtual Villagers 4 - The Tree of Life

VLC media player 2.0.3

Wansview version 1.0.2

WD SmartWare

WildTangent Games App (HP Games)

Windows Live Communications Platform

Windows Live Essentials

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Language Selector

Windows Live Mail

Windows Live Mesh

Windows Live Mesh ActiveX Control for Remote Connections

Windows Live Messenger

Windows Live MIME IFilter

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live Remote Client

Windows Live Remote Client Resources

Windows Live Remote Service

Windows Live Remote Service Resources

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

WinRAR archiver

Zinio Reader 4

Zuma's Revenge

.

==== Event Viewer Messages From Past Week ========

.

3/24/2018 6:38:44 AM, Error: Service Control Manager [7031]  - The Malwarebytes Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.

3/24/2018 4:02:03 PM, Error: Service Control Manager [7009]  - A timeout was reached (120000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

3/24/2018 2:46:47 AM, Error: Service Control Manager [7009]  - A timeout was reached (120000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.

3/24/2018 2:46:47 AM, Error: Service Control Manager [7000]  - The Google Update Service (gupdate) service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

3/23/2018 7:46:30 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service gupdate with arguments "/comsvc" in order to run the server: {4EB61BAC-A3B6-4760-9581-655041EF4D69}

3/23/2018 5:50:39 PM, Error: Service Control Manager [7009]  - A timeout was reached (120000 milliseconds) while waiting for the Windows Modules Installer service to connect.

3/23/2018 5:50:39 PM, Error: Service Control Manager [7000]  - The Windows Modules Installer service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

3/23/2018 5:50:39 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service TrustedInstaller with arguments "" in order to run the server: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

3/23/2018 3:29:56 PM, Error: volsnap [14]  - The shadow copies of volume C: were aborted because of an IO failure on volume C:.

3/23/2018 3:28:30 PM, Error: Service Control Manager [7022]  - The Windows Update service hung on starting.

3/23/2018 3:23:29 PM, Error: Service Control Manager [7024]  - The HomeGroup Listener service terminated with service-specific error %%-2147023143.

3/23/2018 3:23:20 PM, Error: Service Control Manager [7023]  - The BullGuard e-mail monitoring service service terminated with the following error:  The request is not supported.

3/23/2018 3:22:25 AM, Error: Service Control Manager [7011]  - A timeout (120000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.

3/23/2018 3:21:41 PM, Error: Service Control Manager [7006]  - The ScRegSetValueExW call failed for Start with the following error:  Access is denied.

3/23/2018 3:20:25 AM, Error: Service Control Manager [7011]  - A timeout (120000 milliseconds) was reached while waiting for a transaction response from the WDDMService service.

3/23/2018 2:50:59 AM, Error: Schannel [36888]  - The following fatal alert was generated: 70. The internal error state is 105.

3/23/2018 2:49:52 AM, Error: Service Control Manager [7001]  - The Remote Access Connection Manager service depends on the Telephony service which failed to start because of the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

3/23/2018 2:49:52 AM, Error: Service Control Manager [7001]  - The Internet Connection Sharing (ICS) service depends on the Remote Access Connection Manager service which failed to start because of the following error:  The dependency service or group failed to start.

3/22/2018 5:11:44 AM, Error: Ntfs [55]  - The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume OS.

3/22/2018 10:26:13 PM, Error: Service Control Manager [7030]  - The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

3/21/2018 4:14:20 AM, Error: Service Control Manager [7009]  - A timeout was reached (120000 milliseconds) while waiting for the Volume Shadow Copy service to connect.

3/21/2018 4:14:20 AM, Error: Service Control Manager [7000]  - The Volume Shadow Copy service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.

3/21/2018 4:14:20 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service VSS with arguments "" in order to run the server: {E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

3/20/2018 4:18:03 AM, Error: volsnap [36]  - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

.

==== End Of File ===========================



DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 11.0.9600.18616

Run by gfggfgfd at 16:40:26 on 2018-03-24

Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.15857.13263 [GMT -4:00]

.

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Program Files\IDT\WDM\STacSV64.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\atieclxx.exe

C:\Program Files\IDT\WDM\AESTSr64.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Windows\System32\svchost.exe -k utcsvc

C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe

C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

C:\Program Files\IDT\WDM\beats64.exe

C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe

C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe

C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\System32\WUDFHost.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\HPTouchSmartSyncCalReminderApp.exe

C:\Program Files\CCleaner\CCleaner64.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

C:\Windows\Explorer.exe

C:\Program Files (x86)\VideoLAN\VLC\vlc.exe

C:\Windows\system32\prevhost.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\system32\taskeng.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = about:blank

mStart Page = about:blank

uProxyServer = localhost:8080

BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - c:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

mRun: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

mRun: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [Aimersoft Helper Compact.exe] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe

mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WDDMST~1.LNK - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WDSMAR~1.LNK - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: NoDrives = dword:0

mPolicies-System: ConsentPromptBehaviorAdmin = dword:0

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableLUA = dword:0

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-System: PromptOnSecureDesktop = dword:0

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{4120C02B-5377-45F5-B967-BDE9B198F517} : DHCPNameServer = 192.168.1.1

Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll

Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

x64-mStart Page = about:blank

x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - c:\Program Files\AMD\SteadyVideo\SteadyVideo.dll

x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll

x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe

x64-Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe

x64-Run: [BeatsOSDApp] C:\Program Files\IDT\WDM\beats64.exe

x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll

x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-SSODL: WebCheck - <orphaned>

x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

x64-mASetup: {B34A07DD-C6F7-414A-AE63-01019482EAF0} - msiexec /fu {B34A07DD-C6F7-414A-AE63-01019482EAF0} /qn

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\gfggfgfd\AppData\Roaming\Mozilla\Firefox\Profiles\3898wkj3.default\

FF - prefs.js: browser.startup.homepage - about:home

FF - plugin: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll

FF - plugin: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrlui.dll

FF - plugin: C:\Windows\System32\Macromed\Flash\NPSWF64_27_0_0_187.dll

.

============= SERVICES / DRIVERS ===============

.

R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2012-1-10 78976]

R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2012-1-10 38528]

R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2012-1-10 89600]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-1-10 204288]

R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-1-5 83768]

R2 CalendarSynchService;CalendarSynchService;C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe [2011-8-16 16384]

R2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]

R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2011-9-9 86072]

R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]

R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-3-28 94264]

R2 WDDMService;WD SmartWare Drive Manager Service;C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2010-1-21 130048]

R2 WDSmartWareBackgroundService;WD SmartWare Background Service;C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [2009-6-16 20480]

R3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2012-1-10 87168]

R3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2012-1-10 188544]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-1-10 533096]

R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2012-1-10 47232]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-4 107624]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-3 128608]

S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2017-3-15 114688]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2017-11-27 54784]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2016-6-10 1255736]

S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2009-2-13 14464]

S3 WsDrvInst;Wondershare Driver Install Service;C:\Program Files (x86)\Keepvid\KeepVid Pro (Desktop)\DriverInstall.exe [2018-2-16 109688]

S4 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

S4 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-6-1 2804568]

S4 pdfcDispatcher;PDF Document Manager;C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2012-1-10 1128952]

S4 SeagateDashboardService;Seagate Dashboard Service;C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe [2010-4-30 14088]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

.

=============== File Associations ===============

.

FileExt: .txt: txtfile="C:\Windows\System32\NOTEPAD.EXE" %1 [UserChoice]

FileExt: .ini: inifile="C:\Windows\System32\NOTEPAD.EXE" %1

ShellExec: pdfvista.exe: Open="C:\Program Files (x86)\PDF Complete\pdfvista.exe"

ShellExec: pdfvista.exe: Read="C:\Program Files (x86)\PDF Complete\pdfvista.exe"

.

=============== Created Last 30 ================

.

2018-03-24 16:53:50    110144    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll

2018-03-24 16:22:53    --------    d-----w-    C:\ProgramData\Oracle

2018-03-24 04:02:28    --------    d-----w-    C:\ProgramData\Malwarebytes

2018-03-23 21:33:08    14453336    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2C44657B-093D-4FBD-B98A-73ED1BB2755F}\mpengine.dll

2018-03-23 19:25:37    --------    d-----w-    C:\Program Files\CCleaner

2018-03-23 06:54:15    --------    d-----w-    C:\Program Files (x86)\Avira

2018-03-23 02:47:59    --------    d-sh--w-    C:\$RECYCLE.BIN

2018-03-22 05:51:54    --------    d-----w-    C:\Program Files (x86)\SearchPro

2018-03-21 20:27:01    --------    d-----w-    C:\Wansview

2018-03-15 05:42:08    --------    d-----w-    C:\Users\gfggfgfd\AppData\Roaming\BullGuard

2018-03-15 05:34:39    --------    d-----w-    C:\Program Files\BullGuard Ltd

2018-03-15 05:30:16    --------    d-----w-    C:\ProgramData\Package Cache

2018-03-15 05:30:04    --------    d-----w-    C:\Users\gfggfgfd\AppData\Roaming\QuickScan

2018-03-15 05:28:34    --------    d-----w-    C:\ProgramData\BullGuard

2018-03-14 17:08:51    276480    ----a-w-    C:\Program Files\Internet Explorer\DiagnosticsHub.ScriptedSandboxPlugin.dll

2018-03-14 17:07:36    740864    ----a-w-    C:\Windows\System32\generaltel.dll

2018-03-14 17:07:36    600576    ----a-w-    C:\Windows\System32\devinv.dll

2018-03-14 17:07:36    451072    ----a-w-    C:\Windows\System32\centel.dll

2018-03-14 17:07:36    380928    ----a-w-    C:\Windows\System32\invagent.dll

2018-03-14 17:07:36    262144    ----a-w-    C:\Windows\System32\acmigration.dll

2018-03-14 17:07:36    1994752    ----a-w-    C:\Windows\System32\aitstatic.exe

2018-03-14 17:07:36    1560064    ----a-w-    C:\Windows\System32\appraiser.dll

2018-03-14 17:07:36    136384    ----a-w-    C:\Windows\System32\CompatTelRunner.exe

2018-03-14 13:55:00    --------    d-----r-    C:\Users\gfggfgfd\iCloudDrive

2018-03-14 13:54:47    --------    d-----w-    C:\Users\gfggfgfd\AppData\Local\Apple Inc

2018-03-14 04:18:53    --------    d-----w-    C:\Program Files\iPod

2018-03-14 04:18:27    --------    d-----w-    C:\Program Files\iTunes

2018-02-26 10:17:53    --------    d-----w-    C:\found.000

2018-02-25 08:36:04    --------    d-----w-    C:\Program Files (x86)\Auslogics

2018-02-25 08:35:23    --------    d-----w-    C:\ProgramData\Auslogics

2018-02-24 16:22:31    --------    d-----w-    C:\ProgramData\Spybot - Search & Destroy

2018-02-24 16:22:27    --------    d-----w-    C:\Program Files (x86)\Spybot - Search & Destroy 2

2018-02-23 05:24:04    --------    d-----w-    C:\iolo

2018-02-23 05:17:32    --------    d-----w-    C:\logs

2018-02-23 05:17:04    --------    d-----w-    C:\Users\gfggfgfd\AppData\Roaming\iolo

2018-02-23 05:17:04    --------    d-----w-    C:\ProgramData\iolo

.

==================== Find3M  ====================

.

2018-03-15 07:05:52    130364688    -c--a-w-    C:\Windows\System32\MRT-KB890830.exe

2018-01-23 18:58:51    548000    ----a-w-    C:\Windows\System32\MpSigStub.exe

.

============= FINISH: 16:47:08.96 ===============





Your Help And Expertise Will Be Most Helpful And Greatly Appreciated

Thank You

Frank







 
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Monday, September 21, 2020, 3:16 PM (GMT +2)
There are a total of 61,828 posts in 13,648 threads.
In the last 3 days there were 1 new threads and 1 reply posts.

Who's online

This forum has 38,580 registered members. Please welcome our newest member, CJT1963.
There are currently no users on-line.
×

Just a minute

Privacy has never been so important.

Nearly 50% of online users are now using a VPN to protect their privacy.

Find out why

…and if it grabs you bag yourself a VPN bargain.

We use cookies to ensure that we give you the best experience on our website. By continuing to browse, we are assuming that you have no objection in accepting cookies. You can change your cookie settings at any time.