Author Topic: [Resolved] Still Slow After Cleaning  (Read 6334 times)

Offline Eureka888

  • Bronze Member
  • Posts: 43
[Resolved] Still Slow After Cleaning
« on: October 28, 2015, 01:00:01 AM »
Hi guys,

After I cleaned my PC with PC cleaner Pro, I am noticing that it's still very slow (this has been going on for a few days). I also noticed that windows firewall has been turning off automatically (this started today only). Here are my details. THANKS:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.18057  BrowserJavaVersion: 11.65.2
Run by David at 11:43:08 on 2015-10-28
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.61.1033.18.4039.1007 [GMT 11:00]
.
AV: AVG AntiVirus Free Edition *Enabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition *Enabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
.
============== Running Processes ===============
.
c:\PROGRA~2\AVG\Av\avgrsa.exe
C:\Program Files (x86)\AVG\Av\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\AVG\Av\avgidsagent.exe
C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\AVG\Av\avgnsa.exe
C:\Program Files (x86)\AVG\Av\avgemca.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Market Analyst 8\MarketAnalyst.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Mindjet\MindManager 15\MmReminderService.exe
C:\Program Files (x86)\AVG\Av\avgui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\ProgramData\PC Cleaner Pro\PCCleaners.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe
C:\Users\David\AppData\Local\Apps\2.0\2PALMKPX.W7O\DGPB84C1.OQV\xtra..xpro_2b1d787f64b7eb41_0001.001e_a63078168703e4af\cTrader.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\ProgramData\PC Cleaner Pro\PCCleaners.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com
uSearch Page = hxxp://www.google.com
uSearchAssistant = hxxp://www.google.com
mWinlogon: Userinit = userinit.exe,
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [HP Photosmart 5510 series (NET)] "C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN19R085K105NR:NW" -scfn "HP Photosmart 5510 series (NET)" -AutoStart 1
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
mRun: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [MMReminderService] C:\Program Files (x86)\Mindjet\MindManager 15\MMReminderService.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avgui.exe" /TRAYONLY
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
mRun: [PC Cleaners] "C:\ProgramData\PC Cleaner Pro\PCCleaners.exe" /minimize
mRunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:0
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: Send Image To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/201
IE: Send Link To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/203
IE: Send Page To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/204
IE: Send Text To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/202
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {2F72393D-2472-4F82-B600-ED77F354B7FF} - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - <orphaned>
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer = 192.168.2.1 192.168.2.1 198.142.0.51 211.29.132.12 198.142.235.14
TCP: Interfaces\{46018298-8F7D-42F2-BF6B-9EEFF270CE39} : DHCPNameServer = 192.168.2.1 192.168.2.1 198.142.0.51 211.29.132.12 198.142.235.14
TCP: Interfaces\{91CEC22E-8CFE-4A07-A847-E7942DEAA5F5} : DHCPNameServer = 172.20.10.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
mASetup: {90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB} - C:\Program Files (x86)\Mindjet\MindManager 15\sys\MmInternetExplorerActiveSetup.vbs
IFEO: ProcessHacker.exe - svchost.exe
x64-BHO: UniiSalEEs: {643bd21e-0455-43c1-8744-47c1d96c6f8a} - LocalServer32 - <no file>
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-IFEO: ProcessHacker.exe - svchost.exe
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2015-8-20 298416]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2015-8-14 398256]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2015-8-10 251312]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2015-8-10 42416]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-9-25 19264]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2015-8-10 197040]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2015-9-11 312752]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2015-8-10 293296]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2015-8-28 301488]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-14 283064]
R1 SBRE;SBRE;C:\Windows\System32\drivers\sbredrv.sys [2014-12-13 55384]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-9-2 77104]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\Av\avgidsagent.exe [2015-10-12 3792880]
R2 avgsvc;AVG Service;C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2015-10-16 1046952]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [2015-10-12 596344]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service;C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2015-5-15 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-18 1155376]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe [2015-3-28 89840]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-6-19 634632]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-9-25 166720]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-7-13 1513784]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-7-13 1135416]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-1-8 1872688]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-7-30 5568816]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE [2012-1-25 240408]
R3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2013-9-25 30528]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);C:\Windows\System32\drivers\ICCWDT.sys [2010-8-18 26136]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-9-25 357184]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-9-25 789824]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-9-22 351520]
R3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-9-22 4763680]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2015-7-13 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2015-7-13 192216]
R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-6-3 19760]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2015-10-14 50472]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-9-25 646248]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2014-12-11 33448]
S?3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2015-7-13 63704]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE [2012-1-25 192792]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 AvgAMPS;AvgAMPS;C:\Program Files (x86)\AVG\Av\avgamps.exe [2015-10-12 604712]
S3 cpuz137;cpuz137;C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys [2015-7-30 26856]
S3 etdrv;etdrv;C:\Windows\etdrv.sys [2013-11-8 25640]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-9-25 160256]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2015-10-14 114688]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\System32\drivers\netaapl64.sys [2013-7-25 23040]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2015-6-11 54784]
.
=============== Created Last 30 ================
.
2015-10-27 00:42:46   --------   d-----w-   C:\ProgramData\PC Cleaner Pro
2015-10-27 00:42:32   --------   d-----w-   C:\ProgramData\PC1Data
2015-10-27 00:29:31   5133208   ----a-r-   C:\ProgramData\pclunst.exe
2015-10-26 23:39:49   --------   d-----w-   C:\Users\David\AppData\Local\AvgSetupLog
2015-10-14 13:32:51   --------   d-----w-   C:\ProgramData\Synaptics
2015-10-14 03:32:02   --------   d-----w-   C:\Program Files\Synaptics
2015-10-14 03:03:01   2702040   ----a-w-   C:\Windows\System32\RTSnMg64.cpl
2015-10-14 03:03:00   2918104   ----a-w-   C:\Windows\System32\RtPgEx64.dll
2015-10-14 03:02:58   4477656   ----a-w-   C:\Windows\System32\drivers\RTKVHD64.sys
2015-10-14 03:02:55   631000   ----a-w-   C:\Windows\System32\RtDataProc64.dll
2015-10-14 03:02:55   3234520   ----a-w-   C:\Windows\System32\RtkApi64.dll
2015-10-14 03:02:55   166616   ----a-w-   C:\Windows\System32\RtkCfg64.dll
2015-10-14 03:02:55   1316056   ----a-w-   C:\Windows\System32\RTCOM64.dll
2015-10-14 03:02:54   2847960   ----a-w-   C:\Windows\System32\RltkAPO64.dll
2015-10-14 03:02:53   1747160   ----a-w-   C:\Windows\System32\RCoInstII64.dll
2015-10-14 03:02:44   397592   ----a-w-   C:\Windows\System32\MBWrp64.dll
2015-10-14 03:02:37   2041432   ----a-w-   C:\Windows\System32\MaxxAudioEQ64.dll
2015-10-14 03:02:30   3195416   ----a-w-   C:\Windows\System32\FMAPO64.dll
2015-10-14 03:02:22   113576   ----a-w-   C:\Windows\System32\CONEQMSAPOGUILibrary.dll
2015-10-14 03:02:20   560328   ----a-w-   C:\Windows\System32\AERTAC64.dll
2015-10-14 03:01:27   741480   ------w-   C:\Windows\System32\HPDiscoPMa111.dll
2015-10-14 02:58:31   1580368   ----a-w-   C:\Windows\System32\LogiLDA.DLL
2015-10-14 02:57:41   --------   d-----w-   C:\temp
2015-10-14 02:38:27   102520   ----a-w-   C:\Windows\SysWow64\nvStreaming.exe
2015-10-14 02:38:24   --------   d-----w-   C:\ProgramData\Systweak
2015-10-14 02:28:37   69416   ----a-w-   C:\Windows\SysWow64\nvaudcap32v.dll
2015-10-14 02:28:37   50472   ----a-w-   C:\Windows\System32\drivers\nvvad64v.sys
2015-10-14 01:54:34   1660   ----a-w-   C:\Windows\System32\ASOROSet.bin
2015-10-14 00:27:54   692672   ----a-w-   C:\Windows\System32\winload.efi
2015-10-14 00:27:54   616360   ----a-w-   C:\Windows\System32\winresume.efi
2015-10-14 00:27:52   63488   ----a-w-   C:\Windows\System32\setbcdlocale.dll
2015-10-14 00:27:52   61440   ----a-w-   C:\Windows\System32\drivers\appid.sys
2015-10-14 00:27:52   59392   ----a-w-   C:\Windows\System32\appidapi.dll
2015-10-14 00:27:52   50688   ----a-w-   C:\Windows\SysWow64\appidapi.dll
2015-10-14 00:27:52   32768   ----a-w-   C:\Windows\System32\appidsvc.dll
2015-10-14 00:27:52   17920   ----a-w-   C:\Windows\System32\appidcertstorecheck.exe
2015-10-14 00:27:52   147456   ----a-w-   C:\Windows\System32\appidpolicyconverter.exe
2015-10-13 00:28:31   --------   d-----w-   C:\Users\David\AppData\Local\CEF
2015-10-11 23:06:39   --------   d-----w-   C:\Users\David\AppData\Roaming\FxPro-cTraderUsers
2015-10-11 23:06:38   --------   d-----w-   C:\Users\David\AppData\Roaming\FxPro-cTraderCommon
2015-10-11 23:06:35   --------   d-----w-   C:\Users\David\AppData\Roaming\FxPro-cTrader
2015-10-10 21:32:58   --------   d-----w-   C:\Users\David\AppData\Local\Market Analyst 8
2015-10-10 21:32:40   --------   d-----w-   C:\Program Files (x86)\Market Analyst 8
2015-10-02 05:40:50   17314496   ----a-w-   C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSO.DLL
.
==================== Find3M  ====================
.
2015-10-27 23:44:43   192216   ----a-w-   C:\Windows\System32\drivers\MBAMSwissArmy.sys
2015-10-27 23:18:53   30528   ----a-w-   C:\Windows\GVTDrv64.sys
2015-10-27 23:18:46   25640   ----a-w-   C:\Windows\gdrv.sys
2015-10-20 22:14:16   97888   ----a-w-   C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2015-10-04 22:50:18   63704   ----a-w-   C:\Windows\System32\drivers\mwac.sys
2015-10-04 22:50:10   109272   ----a-w-   C:\Windows\System32\drivers\mbamchameleon.sys
2015-10-04 22:50:06   25816   ----a-w-   C:\Windows\System32\drivers\mbam.sys
2015-10-04 08:23:01   1423120   ----a-w-   C:\Windows\SysWow64\nvspcap.dll
2015-10-04 08:23:01   1317192   ----a-w-   C:\Windows\SysWow64\nvspbridge.dll
2015-10-04 08:22:52   1756608   ----a-w-   C:\Windows\System32\nvspbridge64.dll
2015-10-04 08:22:52   1710568   ----a-w-   C:\Windows\System32\nvspcap64.dll
2015-10-03 02:49:56   6358648   ----a-w-   C:\Windows\System32\nvcpl.dll
2015-10-03 02:49:56   2982520   ----a-w-   C:\Windows\System32\nvsvc64.dll
2015-10-03 02:49:54   938800   ----a-w-   C:\Windows\System32\nvvsvc.exe
2015-10-03 02:49:54   62768   ----a-w-   C:\Windows\System32\nvshext.dll
2015-10-03 02:49:54   385328   ----a-w-   C:\Windows\System32\nvmctray.dll
2015-10-03 02:49:54   2554488   ----a-w-   C:\Windows\System32\nvsvcr.dll
2015-10-01 09:33:41   5284082   ----a-w-   C:\Windows\System32\nvcoproc.bin
2015-09-29 03:16:51   5569472   ----a-w-   C:\Windows\System32\ntoskrnl.exe
2015-09-29 03:13:50   1730496   ----a-w-   C:\Windows\System32\ntdll.dll
2015-09-29 03:11:19   362496   ----a-w-   C:\Windows\System32\wow64win.dll
2015-09-29 03:11:19   243712   ----a-w-   C:\Windows\System32\wow64.dll
2015-09-29 03:11:19   215040   ----a-w-   C:\Windows\System32\winsrv.dll
2015-09-29 03:11:19   13312   ----a-w-   C:\Windows\System32\wow64cpu.dll
2015-09-29 03:11:06   210944   ----a-w-   C:\Windows\System32\wdigest.dll
2015-09-29 03:11:03   86528   ----a-w-   C:\Windows\System32\TSpkg.dll
2015-09-29 03:11:01   503808   ----a-w-   C:\Windows\System32\srcore.dll
2015-09-29 03:11:01   50176   ----a-w-   C:\Windows\System32\srclient.dll
2015-09-29 03:10:59   1216512   ----a-w-   C:\Windows\System32\rpcrt4.dll
2015-09-29 03:10:56   16384   ----a-w-   C:\Windows\System32\ntvdm64.dll
2015-09-29 03:10:55   315392   ----a-w-   C:\Windows\System32\msv1_0.dll
2015-09-29 03:10:53   729088   ----a-w-   C:\Windows\System32\kerberos.dll
2015-09-29 03:10:53   424960   ----a-w-   C:\Windows\System32\KernelBase.dll
2015-09-29 03:10:47   44032   ----a-w-   C:\Windows\System32\cryptbase.dll
2015-09-29 03:10:47   43520   ----a-w-   C:\Windows\System32\csrsrv.dll
2015-09-29 03:10:47   22016   ----a-w-   C:\Windows\System32\credssp.dll
2015-09-29 03:10:30   112640   ----a-w-   C:\Windows\System32\smss.exe
2015-09-29 03:10:25   296960   ----a-w-   C:\Windows\System32\rstrui.exe
2015-09-29 03:09:59   338432   ----a-w-   C:\Windows\System32\conhost.exe
2015-09-29 03:09:53   64000   ----a-w-   C:\Windows\System32\auditpol.exe
2015-09-29 03:05:56   60416   ----a-w-   C:\Windows\System32\msobjs.dll
2015-09-29 03:05:36   146432   ----a-w-   C:\Windows\System32\msaudite.dll
2015-09-29 03:05:01   3990976   ----a-w-   C:\Windows\SysWow64\ntkrnlpa.exe
2015-09-29 03:05:01   3936192   ----a-w-   C:\Windows\SysWow64\ntoskrnl.exe
2015-09-29 03:02:09   1311768   ----a-w-   C:\Windows\SysWow64\ntdll.dll
2015-09-29 02:59:20   172032   ----a-w-   C:\Windows\SysWow64\wdigest.dll
2015-09-29 02:59:17   65536   ----a-w-   C:\Windows\SysWow64\TSpkg.dll
2015-09-29 02:59:16   43008   ----a-w-   C:\Windows\SysWow64\srclient.dll
2015-09-29 02:59:10   14336   ----a-w-   C:\Windows\SysWow64\ntvdm64.dll
2015-09-29 02:59:08   259584   ----a-w-   C:\Windows\SysWow64\msv1_0.dll
2015-09-29 02:59:04   552960   ----a-w-   C:\Windows\SysWow64\kerberos.dll
2015-09-29 02:58:57   36864   ----a-w-   C:\Windows\SysWow64\cryptbase.dll
2015-09-29 02:58:57   17408   ----a-w-   C:\Windows\SysWow64\credssp.dll
2015-09-29 02:58:52   44032   ----a-w-   C:\Windows\apppatch\acwow64.dll
2015-09-29 02:58:36   25600   ----a-w-   C:\Windows\SysWow64\setup16.exe
2015-09-29 02:58:05   50176   ----a-w-   C:\Windows\SysWow64\auditpol.exe
2015-09-29 02:57:53   665088   ----a-w-   C:\Windows\SysWow64\rpcrt4.dll
2015-09-29 02:57:53   5120   ----a-w-   C:\Windows\SysWow64\wow32.dll
2015-09-29 02:57:52   274944   ----a-w-   C:\Windows\SysWow64\KernelBase.dll
2015-09-29 02:53:44   60416   ----a-w-   C:\Windows\SysWow64\msobjs.dll
2015-09-29 02:53:28   146432   ----a-w-   C:\Windows\SysWow64\msaudite.dll
2015-09-29 01:50:29   159232   ----a-w-   C:\Windows\System32\drivers\mrxsmb.sys
2015-09-29 01:49:43   290816   ----a-w-   C:\Windows\System32\drivers\mrxsmb10.sys
2015-09-29 01:49:31   129024   ----a-w-   C:\Windows\System32\drivers\mrxsmb20.sys
2015-09-29 01:43:29   7680   ----a-w-   C:\Windows\SysWow64\instnm.exe
2015-09-29 01:43:27   2048   ----a-w-   C:\Windows\SysWow64\user.exe
2015-09-29 01:40:57   6144   ---ha-w-   C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2015-09-29 01:40:57   4608   ---ha-w-   C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-29 01:40:57   3584   ---ha-w-   C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-29 01:40:57   3072   ---ha-w-   C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2015-09-25 18:07:19   98816   ----a-w-   C:\Windows\System32\wudriver.dll
2015-09-25 18:07:19   3168768   ----a-w-   C:\Windows\System32\wucltux.dll
2015-09-25 18:07:19   192512   ----a-w-   C:\Windows\System32\wuwebv.dll
2015-09-25 18:06:54   91136   ----a-w-   C:\Windows\System32\WinSetupUI.dll
2015-09-25 18:06:44   12288   ----a-w-   C:\Windows\System32\wu.upgrade.ps.dll
2015-09-25 18:06:40   37888   ----a-w-   C:\Windows\System32\wuapp.exe
2015-09-25 17:59:08   93696   ----a-w-   C:\Windows\SysWow64\wudriver.dll
2015-09-25 17:59:08   174080   ----a-w-   C:\Windows\SysWow64\wuwebv.dll
2015-09-25 17:58:25   35328   ----a-w-   C:\Windows\SysWow64\wuapp.exe
2015-09-16 04:36:53   2724864   ----a-w-   C:\Windows\System32\mshtml.tlb
2015-09-16 04:36:43   4096   ----a-w-   C:\Windows\System32\ieetwcollectorres.dll
2015-09-16 04:22:21   66560   ----a-w-   C:\Windows\System32\iesetup.dll
2015-09-16 04:21:39   48640   ----a-w-   C:\Windows\System32\ieetwproxystub.dll
2015-09-16 04:21:33   417792   ----a-w-   C:\Windows\System32\html.iec
2015-09-16 04:21:27   585728   ----a-w-   C:\Windows\System32\vbscript.dll
2015-09-16 04:21:17   88064   ----a-w-   C:\Windows\System32\MshtmlDac.dll
2015-09-16 04:09:30   5990912   ----a-w-   C:\Windows\System32\jscript9.dll
2015-09-16 04:08:40   114688   ----a-w-   C:\Windows\System32\ieetwcollector.exe
2015-09-16 04:08:38   144384   ----a-w-   C:\Windows\System32\ieUnatt.exe
2015-09-16 04:08:23   814080   ----a-w-   C:\Windows\System32\jscript9diag.dll
2015-09-16 04:01:30   968704   ----a-w-   C:\Windows\System32\MsSpellCheckingFacility.exe
2015-09-16 03:50:29   77824   ----a-w-   C:\Windows\System32\JavaScriptCollectionAgent.dll
2015-09-16 03:45:19   2724864   ----a-w-   C:\Windows\SysWow64\mshtml.tlb
2015-09-16 03:33:26   504832   ----a-w-   C:\Windows\SysWow64\vbscript.dll
2015-09-16 03:33:07   62464   ----a-w-   C:\Windows\SysWow64\iesetup.dll
2015-09-16 03:32:33   47616   ----a-w-   C:\Windows\SysWow64\ieetwproxystub.dll
2015-09-16 03:32:24   341504   ----a-w-   C:\Windows\SysWow64\html.iec
2015-09-16 03:31:57   64000   ----a-w-   C:\Windows\SysWow64\MshtmlDac.dll
2015-09-16 03:28:33   1359360   ----a-w-   C:\Windows\System32\mshtmlmedia.dll
2015-09-16 03:26:47   2126336   ----a-w-   C:\Windows\System32\inetcpl.cpl
.
============= FINISH: 11:44:30.24 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 25/09/2013 11:33:15 AM
System Uptime: 28/10/2015 10:17:26 AM (1 hours ago)
.
Motherboard: Gigabyte Technology Co., Ltd. |  | B75M-D2V
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | 2196/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 832.034 GiB free.
D: is CDROM ()
E: is Removable
F: is CDROM (CDFS)
H: is FIXED (NTFS) - 298 GiB total, 90.384 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
@BIOS
7-Zip 9.22beta
Adobe Reader XI (11.0.13)
Adobe Refresh Manager
Advertising Center
Apple Application Support (32-bit)
Apple Application Support (64-bit)
Apple Mobile Device Support
Apple Software Update
µTorrent
AutoGreen B12.0206.1
AVG
AVG 2016
AVG Protection
AVS Audio Editor 7.1
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Bing Bar
Bonjour
CameraHelperMsi
CCleaner
CCleaner Packages
Citrix Online Launcher
CyberScrub® Privacy Suite™ 5.1
DAEMON Tools Lite
DolbyFiles
Easy Tune 6 B12.1121.1
erLT
FMW 1
Foxit Cloud
Foxit Reader
FxPro cTrader
Google Chrome
Google Update Helper
GoToMeeting 7.4.1.3770
Grand Theft Auto: Episodes from Liberty City
HP FWUpdateEDO2
HP Photo Creations
HP Photosmart 5510 series Basic Device Software
HP Photosmart 5510 series Help
HP Photosmart 5510 series Product Improvement Study
HP Support Solutions Framework
HP Update
HPDiagnosticAlert
iCloud
ImagXpress
InfraRecorder
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) SDK for OpenCL - CPU Only Runtime Package
Intel(R) USB 3.0 eXtensible Host Controller Driver
Intel® Trusted Connect Service Client
Intel® Watchdog Timer Driver (Intel® WDT)
iTunes
Java 8 Update 65
Java Auto Updater
Logitech Webcam Software
LWS Facebook
LWS Gallery
LWS Help_main
LWS Launcher
LWS Motion Detection
LWS Pictures And Video
LWS Twitter
LWS Webcam Software
LWS WLM Plugin
LWS YouTube Plugin
Malwarebytes Anti-Malware version 2.2.0.1024
Market Analyst 8
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Mindjet MindManager 15
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 9 Essentials
Nero BurnRights
Nero BurnRights Help
Nero ControlCenter
Nero CoverDesigner
Nero CoverDesigner Help
Nero Disc Copy Gadget
Nero Disc Copy Gadget Help
Nero DiscSpeed
Nero DiscSpeed Help
Nero DriveSpeed
Nero DriveSpeed Help
Nero Express Help
Nero InfoTool
Nero InfoTool Help
Nero Installer
Nero Online Upgrade
Nero PhotoSnap
Nero PhotoSnap Help
Nero Recode
Nero Recode Help
Nero ShowTime
Nero StartSmart
Nero StartSmart Help
Nero StartSmart OEM
Nero Vision
Nero Vision Help
NeroExpress
NVIDIA 3D Vision Controller Driver 352.65
NVIDIA 3D Vision Driver 358.50
NVIDIA Control Panel 358.50
NVIDIA GeForce Experience 2.5.15.46
NVIDIA GeForce Experience Service
NVIDIA Graphics Driver 358.50
NVIDIA HD Audio Driver 1.3.34.3
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX System Software 9.15.0428
NVIDIA ShadowPlay 2.5.15.46
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 2.5.15.46
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.31
PC Cleaners
PC Wizard 2013.2.12
Pepperstone cTrader
QuickTime 7
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687409) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2837610) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920795) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3054987) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085544) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085546) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2986254) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3085618) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB3085615) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB3055051) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB3055052) 32-Bit Edition
SHIELD Streaming
SHIELD Wireless Controller Driver
Skype Click to Call
Skype™ 7.7
TeamViewer 10
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
VLC media player 2.0.0
Windows 7 USB/DVD Download Tool
WinRAR 5.21 (64-bit)
.
==== Event Viewer Messages From Past Week ========
.
28/10/2015 11:37:23 AM, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The service has not been started.
28/10/2015 11:37:23 AM, Error: Microsoft-Windows-WMPNSS-Service [14333]  - Service 'WMPNetworkSvc' did not start correctly due to error '0x8007042c'. Restart your computer, and then try to restart the service.
28/10/2015 11:37:23 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
28/10/2015 11:14:05 AM, Error: Service Control Manager [7023]  - The System Event Notification Service service terminated with the following error:  Overlapped I/O operation is in progress.
27/10/2015 7:18:02 AM, Error: Tcpip [4199]  - The system detected an address conflict for IP address 0.0.0.0 with the system having network hardware address 00-00-00-00-00-00. Network operations on this system may be disrupted as a result.
27/10/2015 4:38:08 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
27/10/2015 12:11:44 PM, Error: Schannel [36870]  - A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.
27/10/2015 12:02:20 PM, Error: Service Control Manager [7030]  - The ESET Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
22/10/2015 1:42:43 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
.
==== End Of File ===========================


« Last Edit: October 28, 2015, 07:43:11 AM by Hoov »



Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27120
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Re: Still Slow After Cleaning
« Reply #1 on: October 28, 2015, 07:42:05 AM »
Platypuss will be helping you with your problem, please wait for his first post.

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #2 on: October 28, 2015, 07:25:51 PM »
Great, Thanks!

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #3 on: October 29, 2015, 03:06:50 AM »


Hello Eureka888,
I am Platypuss & I will be helping you with your problem  :)1

 
Before we begin, please follow my simple rules:-
  • If you do not understand any instructions, Stop & Ask do not risk creating further problems.
  • Please do not run any tools unless instructed to do so because it may wellcause unforseen damage to your machine.
  • It may help you to print out my instructions, so that mistakes are not made.
  • I am a trainee here but my instructions are checked by Hoov (My Mentor,) there may be some delay but you will get a high quality of service.
  • Malware removal is frequently complex, it takes time to analyse logs, please be patient.   
  • I will advise you as soon as your computer is clean, until then it may still be infected !

>>>>>>>>>>>>>>>>>>>>

 
   I see you have P2P software ( UTorrent ) installed on your machine, having this kind of software installed on your machine will always make you more susceptible to re-infections. It may be contributing to your current situation.
It is a SpywareHammer rule that all P2p software must be removed from your computer whilst it is being cleaned, to prevent possible further reinfection.Would you be good enough to remove it now please.Our reasons are explained HERE Please read them.

Please backup your files for safety purposes

 How to backup your files:-
Vista
Windows7
Windows8
windows10 


>>>>>>>>>>>>>>>>>>>>>
     


  • Please open your copy of Malwarebytes Anti-Malware (MBAM)
  • Should it fail to open, refer to the MBAM FAQ for alternate ways to start the program.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits, scan within archives & use Advanced Heuristic Engine.
  • In the Non-Malware Protection box select Treat detections as malware for both PUP & PUM detections.
  • Now return to the Dashboard & select Scan Now
  • If you receive a message that updates are available, click the Update Now(The update will be downloaded,installed &  scan will start.
  • N.B. it may take some time so please be patient.
  • If potential threats are detected, click Quarantine all button
  • While still on the Scan tab, click the Export Log button, select Text file, and save the log to your  Desktop
  • If asked to restart the computer, please do so immediately.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs
Please post the log to me here.

>>>>>>>>>>>>>>>>>>

Would you kindly advise which browsers you have on your machine & if there are any other users.

Is your AVG & PC cleaner Pro, paid for or a Free copy ?

platypuss



Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #4 on: October 29, 2015, 06:11:29 PM »
Hi Platypuss,

UPDATE:

- Windows firewall has been working for the past few days and has not switched itself off.
- U torrent has been uninstalled.
- Backup is in process.
- MBAM settings changed and software up to date (scan log below)
- The only other user is my dad, however he uses the same user profile as me
- MBAM and PC cleaner PRO was installed by my dad's friend and he said they are the full versions. When I start MBAM it says "premium" up the top. PC Cleaner PRO does not ask for, nor offer any paid services so I assume it's the real deal.
- AVG is the free version, installed by me.
- Browser I use is google Chrome however Internet Explorer is installed also.

The main reason for this is my software for trading the markets is slow (I use MARKET ANALYST 8). The previous version MA7 worked smoothly but then something happened after installing MA8. It's a paid for software so it should work fine. A free version of a PC Optimizer I was using, was picking up on a .dll file in MA8 as being potentially harmful but after talking to the developers they said "it happens sometimes as some files are recognized as Malware". The recommended action was to make an exception around that file so it would not be detected - which I did.

Thanks for your time and patience.  :t

Kind regards,

E

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #5 on: October 29, 2015, 06:13:40 PM »
And here is the log....

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 25/09/2013 11:33:15 AM
System Uptime: 28/10/2015 10:17:26 AM (1 hours ago)
.
Motherboard: Gigabyte Technology Co., Ltd. |  | B75M-D2V
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | 2196/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 832.034 GiB free.
D: is CDROM ()
E: is Removable
F: is CDROM (CDFS)
H: is FIXED (NTFS) - 298 GiB total, 90.384 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
@BIOS
7-Zip 9.22beta
Adobe Reader XI (11.0.13)
Adobe Refresh Manager
Advertising Center
Apple Application Support (32-bit)
Apple Application Support (64-bit)
Apple Mobile Device Support
Apple Software Update
µTorrent
AutoGreen B12.0206.1
AVG
AVG 2016
AVG Protection
AVS Audio Editor 7.1
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Bing Bar
Bonjour
CameraHelperMsi
CCleaner
CCleaner Packages
Citrix Online Launcher
CyberScrub® Privacy Suite™ 5.1
DAEMON Tools Lite
DolbyFiles
Easy Tune 6 B12.1121.1
erLT
FMW 1
Foxit Cloud
Foxit Reader
FxPro cTrader
Google Chrome
Google Update Helper
GoToMeeting 7.4.1.3770
Grand Theft Auto: Episodes from Liberty City
HP FWUpdateEDO2
HP Photo Creations
HP Photosmart 5510 series Basic Device Software
HP Photosmart 5510 series Help
HP Photosmart 5510 series Product Improvement Study
HP Support Solutions Framework
HP Update
HPDiagnosticAlert
iCloud
ImagXpress
InfraRecorder
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) SDK for OpenCL - CPU Only Runtime Package
Intel(R) USB 3.0 eXtensible Host Controller Driver
Intel® Trusted Connect Service Client
Intel® Watchdog Timer Driver (Intel® WDT)
iTunes
Java 8 Update 65
Java Auto Updater
Logitech Webcam Software
LWS Facebook
LWS Gallery
LWS Help_main
LWS Launcher
LWS Motion Detection
LWS Pictures And Video
LWS Twitter
LWS Webcam Software
LWS WLM Plugin
LWS YouTube Plugin
Malwarebytes Anti-Malware version 2.2.0.1024
Market Analyst 8
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Mindjet MindManager 15
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 9 Essentials
Nero BurnRights
Nero BurnRights Help
Nero ControlCenter
Nero CoverDesigner
Nero CoverDesigner Help
Nero Disc Copy Gadget
Nero Disc Copy Gadget Help
Nero DiscSpeed
Nero DiscSpeed Help
Nero DriveSpeed
Nero DriveSpeed Help
Nero Express Help
Nero InfoTool
Nero InfoTool Help
Nero Installer
Nero Online Upgrade
Nero PhotoSnap
Nero PhotoSnap Help
Nero Recode
Nero Recode Help
Nero ShowTime
Nero StartSmart
Nero StartSmart Help
Nero StartSmart OEM
Nero Vision
Nero Vision Help
NeroExpress
NVIDIA 3D Vision Controller Driver 352.65
NVIDIA 3D Vision Driver 358.50
NVIDIA Control Panel 358.50
NVIDIA GeForce Experience 2.5.15.46
NVIDIA GeForce Experience Service
NVIDIA Graphics Driver 358.50
NVIDIA HD Audio Driver 1.3.34.3
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX System Software 9.15.0428
NVIDIA ShadowPlay 2.5.15.46
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 2.5.15.46
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.31
PC Cleaners
PC Wizard 2013.2.12
Pepperstone cTrader
QuickTime 7
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687409) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2837610) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920795) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3054987) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085544) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085546) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2986254) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3085618) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB3085615) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB3055051) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB3055052) 32-Bit Edition
SHIELD Streaming
SHIELD Wireless Controller Driver
Skype Click to Call
Skype™ 7.7
TeamViewer 10
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
VLC media player 2.0.0
Windows 7 USB/DVD Download Tool
WinRAR 5.21 (64-bit)
.
==== Event Viewer Messages From Past Week ========
.
28/10/2015 11:37:23 AM, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The service has not been started.
28/10/2015 11:37:23 AM, Error: Microsoft-Windows-WMPNSS-Service [14333]  - Service 'WMPNetworkSvc' did not start correctly due to error '0x8007042c'. Restart your computer, and then try to restart the service.
28/10/2015 11:37:23 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
28/10/2015 11:14:05 AM, Error: Service Control Manager [7023]  - The System Event Notification Service service terminated with the following error:  Overlapped I/O operation is in progress.
27/10/2015 7:18:02 AM, Error: Tcpip [4199]  - The system detected an address conflict for IP address 0.0.0.0 with the system having network hardware address 00-00-00-00-00-00. Network operations on this system may be disrupted as a result.
27/10/2015 4:38:08 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
27/10/2015 12:11:44 PM, Error: Schannel [36870]  - A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.
27/10/2015 12:02:20 PM, Error: Service Control Manager [7030]  - The ESET Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
22/10/2015 1:42:43 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
.
==== End Of File ===========================

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #6 on: October 30, 2015, 03:19:27 PM »

 Hello Eureka888,

Thank you for the information, most helpful indeed.  :)1


STEP 1
Change the download folder setting in your default Browser so all tools we may use are saved to the Desktop:

Google Chrome - Click the "Customize and control Google Chrome" button in the upper right-corner of the browser.
Choose Settings. at the bottom of the screen click the
"Show advanced settings..." link. Scroll down to find the Downloads section and click the Change... button. Select your desktop and click OK.

Mozilla Firefox - Click the "Open Menu" button in the upper right-corner of the browser. Choose Options. In the downloads section, click the Browse button, click on the Desktop folder and the click the "Select Folder" button. Click OK to get out of the Options menu.

Internet Explorer - Click the Tools menu in the upper right-corner of the browser. Select View downloads. Select the Options link in the lower left of the window. Click Browse and select the Desktop and then choose the Select Folder button. Click OK to get out of the download options screen and then click Close to get out of the View Downloads screen.
NOTE: IE8 Does not support changing download locations in this manner. You will need to download the tool(s) to the default folder, usually Downloads, then copy them to the desktop.

STEP 2
Follow the instructions in the following link to show hidden files:

http://www.bleepingcomputer.com/tutorials/how-to-see-hidden-files-in-windows.

>>>>>>>>>>>>>>>

STEP 3
Regarding your copy of PCcleanerPro. Unfortunately it is regarded as a "Rogue Antivirus" & should be removed.
Once installed on a machine it becomes resistant to removal & it requires a special tool to remove it cleanly, it may even be part of your problem.

Please download and install Revo Uninstaller Free
Since it is a very powerful tool, please be sure to follow the instructions carefully.
There is a very useful video[url=http://www.revouninstaller.com/revo_uninstaller_video.html]HERE

 I strongly recommend you watch it BEFORE following my instructions.

  • Double click Revo Uninstaller to run it.
       
  • From the list of programs double click on The Program to remove
  • When prompted if you want to uninstall this program, clickYes.
       
  • Be sure the Moderate option is selected then click
             Next
       
  • The program will run, If prompted again clickYes
       
  • When the built-in uninstaller is finished click on Next.
       
  • Once the program has searched for leftovers....(be patient here ! ) click Next.
       
  • Check /tick the PCcleanerPro Only, then click DELETE
       
  • When prompted click on Yes and then on Next.
       
  • Put a check on any folders that are found and select delete
       
  • When prompted select yes then on Next
       
  • Once done click Finish
       
You may find this interesting regarding PCcleanerPro HERE & HERE
>>>>>>>>>>>

STEP 4
  • One minor glitch, you gave me the DDS log instead of the MBAM.
  • I would like to see that MBAM log, so could you post it to me please?
  • Next, access your copy of MBAM, updateit again(It is frequently updated) then run a scan & post it to me here.
I need the two MBAM logs please.
Is there any change in your computer running behaviour ?
You do have some Malware present.


platypuss

 






 

 
 

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #7 on: November 01, 2015, 07:28:19 PM »
Hi Platypuss,

Update:

- When I turned on my PC this morning, AVG had picked up that PC Cleaner Pro had a Virus of some sort, so I deleted and uninstalled PC Cleaner before reading about Revo.  :m
- After installing Revo, PC Cleaner was not on the list of programs but was still in the Start Menu, so I added PC Cleaner's folder to the desktop and used Revo's "Hunter Mode" on that folder and what it detected was Adobe Acrobat Reader  ??? , which has been flagged has a problem in the bottom right had tray of Desktop for sometime. I deleted the files associated with Adobe however the "solve a problem with Acrobat Reader" is still in the tray .
- Also when I first booted up I noticed that my second Monitor is not being recognized. It's saying "HDMI No Signal" which is strange as it was working fine previously. I have turned it on and off, un-plugged the power cord and the HDMI Cable but it hasn't worked.
- Step 1,2 and 4 have been completed to instructions.
- Interesting "about rogue software"  :i
- As my second monitor has not turned on I haven't used Market Analyst 8 Software to see if it's running smoothly but the mouse movements and clicks have definitely improved  :t

Thanks and speak soon.

E

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #8 on: November 01, 2015, 07:29:20 PM »
First MBAM log from 30/10/2015

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 30/10/2015
Scan Time: 9:48 AM
Logfile: MBAM Log.txt
Administrator: Yes

Version: 2.2.0.1024
Malware Database: v2015.10.29.06
Rootkit Database: v2015.10.28.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: David

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 407633
Time Elapsed: 59 min, 9 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 5
PUP.Optional.OpenCandy, C:\Users\David\AppData\Local\Temp\HYD4230.tmp.1446158284\HTA\install.1446158284.zip, , [b109bf9d53389b9b32ff717ca75a48b8],
PUP.Optional.OpenCandy, C:\Users\David\AppData\Local\Temp\HYD4230.tmp.1446158284\HTA\3rdparty\OCComSDK.dll, , [e9d1e17b92f9d46282af44a9e31e52ae],
PUP.Optional.OpenCandy, C:\Users\David\AppData\Local\Temp\HYD4230.tmp.1446158284\HTA\3rdparty\OCSetupHlp.dll, , [7149510b9dee3ef86be70d43c93b52ae],
PUP.Optional.OpenCandy, C:\Users\David\AppData\Local\Temp\HYD96F4.tmp.1446158306\HTA\install.1446158306.zip, , [8535e577602b2610cd64b8355ea311ef],
PUP.Optional.OpenCandy, C:\Users\David\AppData\Local\Temp\HYD96F4.tmp.1446158306\HTA\3rdparty\OCSetupHlp.dll, , [aa10ef6d3f4cac8a84ce76da28dcd62a],

Physical Sectors: 0
(No malicious items detected)


(end)

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #9 on: November 01, 2015, 07:32:54 PM »
MBAM Log from today:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 2/11/2015
Scan Time: 11:58 AM
Logfile: MBAM Log 2.txt
Administrator: Yes

Version: 2.2.0.1024
Malware Database: v2015.11.01.05
Rootkit Database: v2015.10.28.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: David

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 407224
Time Elapsed: 32 min, 54 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #10 on: November 04, 2015, 05:53:31 AM »


 Hello Eureka888,

Apologies for the delay.
Thank you for the Mbam logs & problem details.
As you have completed a Win7 uninstall for PCcleanerPro
I will now address that & Revo later & continue with cleaning your computer.
I assume that you still have one monitor working for internet access.It is worth
attempting a re-install of the 2nd. monitor HERE

STEP 1

Please download AdwCleaner  onto your Desktop.
Download AdwCleaner and save it to your desktop
Take care NOT to click on any ad, like from PC Optimizer Pro. The correct link is the button labeled "Download from Bleeping Computer".
NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on Tools > Smartscreen Filter > Turn off Smartscreen Filter then click on OK in the box that opens. Then click on the link again.
Close your browser and double click the AdwCleaner icon on your desktop.

   
  • Click on the Scan button, accept any prompts that appear, and allow it to run.

    It may take several minutes to complete.
   
  • When it is done, the Scan button will be dimmed down, and it will wait for you to make any exceptions to its suggested removals. Don't make any exceptions or uncheck anything
       
  • DO NOT CLEAN ANYTHING! Removal will be done after analysis of the log.
       
  • Click on the Cleaning button, accept any prompts that appear, and allow the system to Reboot.
       
  • You will then be presented with the report. Copy/Paste it into a reply here.
       
  • If you lose track of the log, it is saved in this folder C:\AdwCleaner\

    The filename will be adwcleaner[xx].txt, where [xx] will be S1, or S2, etc. whichever filename is newest.

AT THIS POINT, DO NOT ATTEMPT TO CLEAN ANYTHING THAT MAY BE FOUND


  STEP 2
Please download Junkware Removal Tool to your Desktop.
  • Please close your security software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete, depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
  • Please post the contents of JRT.txt into your reply.
>>>>>>>>>>>>
platypuss
























[/list]

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #11 on: November 04, 2015, 08:54:20 PM »
# AdwCleaner v5.017 - Logfile created 05/11/2015 at 13:50:32
# Updated 03/11/2015 by Xplode
# Database : 2015-11-03.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : David - USER-PC
# Running from : C:\Users\David\Desktop\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\SeaRch-NewTaaB
[-] Folder Deleted : C:\Program Files (x86)\surf uaondd keeeep
[!] Folder Not Deleted : C:\Program Files (x86)\SeaRch-NewTaaB
[!] Folder Not Deleted : C:\Program Files (x86)\surf uaondd keeeep
[-] Folder Deleted : C:\ProgramData\Systweak
[-] Folder Deleted : C:\ProgramData\PC Cleaner Pro
[-] Folder Deleted : C:\ProgramData\SeaRch-NewTaaB
[-] Folder Deleted : C:\ProgramData\surf uaondd keeeep
[!] Folder Not Deleted : C:\ProgramData\SeaRch-NewTaaB
[!] Folder Not Deleted : C:\ProgramData\surf uaondd keeeep
[-] Folder Deleted : C:\ProgramData\YoutubeBookmark
[-] Folder Deleted : C:\ProgramData\8a3929d1c1c94028
[-] Folder Deleted : C:\ProgramData\{f0d80270-0826-440c-f0d8-8027008209c0}
[-] Folder Deleted : C:\Users\David\AppData\Roaming\Systweak
[-] Folder Deleted : C:\Users\David\Desktop\PC Cleaners
[-] Folder Deleted : C:\Users\user\AppData\Local\Conduit
[-] Folder Deleted : C:\Users\user\AppData\Local\NativeMessaging
[-] Folder Deleted : C:\Users\user\AppData\Local\WhiteListing
[-] Folder Deleted : C:\Users\user\AppData\LocalLow\Conduit
[-] Folder Deleted : C:\Users\user\AppData\Roaming\SearchProtect
[-] Folder Deleted : C:\Users\user\AppData\Roaming\Systweak

***** [ Files ] *****

[-] File Deleted : C:\Users\David\Desktop\PC Cleaner Pro.lnk
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kdfbddbdpnahdahmamlolacimfdbeckk
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_twitter.conduitapps.com_0.localstorage-journal
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.superfish.com_0.localstorage-journal
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxps_www.superfish.com_0.localstorage-journal
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_amazon.conduitapps.com_0.localstorage
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_amazon.conduitapps.com_0.localstorage-journal
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.linkswift.co_0.localstorage
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.linkswift.co_0.localstorage-journal
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_twitter.conduitapps.com_0.localstorage
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_twitter.conduitapps.com_0.localstorage-journal
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.pur-esult.info_0.localstorage
[-] File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.pur-esult.info_0.localstorage-journal

***** [ DLLs ] *****


***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\user\Desktop\Search.lnk
[-] Shortcut Disinfected : C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
[-] Shortcut Disinfected : C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Search.lnk
[-] Shortcut Disinfected : C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofTanks.lnk

***** [ Scheduled tasks ] *****

[-] Task Deleted : PC Cleaner Pro Update Job
[-] Task Deleted : PC Cleaner Pro Optimization

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbar
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{2009AF2F-5786-3067-8799-B97F7832FDD6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{425E7597-03A2-338D-B72A-0E51FFE77A7E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{915BB7D5-082E-3B91-B1E0-45B5FDE01F24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{FB2E65F4-5687-33EF-9BBF-4E3C9C98D3B9}
[-] Key Deleted : HKLM\SOFTWARE\b1f999e1-b55f-0edc-6311-c6fc229d3830
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKCU\Software\ParetoLogic
[-] Key Deleted : HKCU\Software\systweak
[-] Key Deleted : HKCU\Software\PCCleaners
[-] Key Deleted : HKCU\Software\WEBAPP
[-] Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKLM\SOFTWARE\ParetoLogic
[-] Key Deleted : HKLM\SOFTWARE\SearchProtect
[-] Key Deleted : HKLM\SOFTWARE\systweak
[-] Key Deleted : HKLM\SOFTWARE\Avg Secure Update
[-] Key Deleted : HKLM\SOFTWARE\PCCleaners
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner Packages
[-] Key Deleted : HKU\.DEFAULT\Software\Avg Secure Update
[!] Key Not Deleted : HKU\S-1-5-18\Software\Avg Secure Update
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5E8031606EB60A64C882918F8FF38DD4

***** [ Web browsers ] *****

[-] [C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : websearch.pur-esult.info
[-] [C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : websearch
[-] [C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.pur-esult.info/?pid=724&r=2013/11/25&hid=15794643848199061664&lg=EN&cc=AU
[-] [C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider_Data] Deleted : hxxp://websearch.pur-esult.info/?l=1&q={searchTerms}&pid=724&r=2013/11/25&hid=15794643848199061664&lg=EN&cc=AU
[-] [C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : kdfbddbdpnahdahmamlolacimfdbeckk
[-] [C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://websearch.pur-esult.info/?pid=724&r=2013/11/25&hid=15794643848199061664&lg=EN&cc=AU
[-] [C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : flpcjncodpafbgdpnkljologafpionhb
[-] [C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : kdfbddbdpnahdahmamlolacimfdbeckk
[-] [C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://websearch.pur-esult.info/?pid=724&r=2013/11/25&hid=15794643848199061664&lg=EN&cc=AU

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [7988 bytes] ##########

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #12 on: November 04, 2015, 08:58:48 PM »
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 7 Home Premium x64
Ran by David on Thu 05/11/2015 at 13:55:50.37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\Users\David\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_kepemmpmljphklmpfgfmhpjhpdlccpke_0.localstorage
Successfully deleted: [File] C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\worldoftanks.lnk



~~~ Folders

Successfully deleted: [Folder] C:\ProgramData\pc1data
Successfully deleted: [Folder] C:\Users\David\Appdata\Local\ggempire
Successfully deleted: [Folder] C:\Users\David\Appdata\Local\worldoftanks
Successfully deleted: [Folder] C:\Users\David\AppData\Roaming\worldoftanks



~~~ Chrome


[C:\Users\David\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\David\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\David\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\David\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
  kepemmpmljphklmpfgfmhpjhpdlccpke
]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 05/11/2015 at 13:58:04.92
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #13 on: November 04, 2015, 09:06:15 PM »
Hi Platypuss,

Thanks for that.

- The second monitor is back up and running. It turns out it was a faulty HDMI cable.
- Steps 1 and 2 have been completed and I didn't clean anything.
- Computer is running better; clicks and mouse speed are normal, programs and web pages are loading well. MA8 is still running slowly as in the mouse still drags and takes time to catch up and when adding tools or zooming in and out it's still slow.

Cheers

E

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #14 on: November 05, 2015, 03:24:08 PM »


  Hello Eureka888,

Just a small point with regard to Adwcleaner, I requested that the "Clean" operation should NOT be used.
It is most important that my instructions are followed carefully.
Some of the software used is particularly powerful & can easily render a computer unusable.
I suggest that you print the instructions out successively to use as guide.


Thanks for the logs & news that computer operation is improving but:-
 

We still need to run an online AV scan to ensure there are no remnants of any infection left on your system that may have been missed.
This scan is very thorough and well worth running, it can take several hours please be patient and let it complete:

Run Eset Online Scanner

**Note** You will need to use Internet Explorer for this scan - Vista and Windows 7/8 right click on IE shortcut and run as admin.

(To run ESET Online Scanner in a browser other than Internet Explorer, you'll need to download ESET SMART Installer during the process)

Go to Eset web page HERE to run an online scan from ESET.
   
  • Turn off the real time scanner of any existing antivirus program while performing the online scan
       
  • Click on the Run ESET Online Scanner button then Click Start
       
  • When asked, allow the add/on to be installed Click Start
       
  • Make sure that the option "Remove found threats" isUNticked
       
  • Click on Advanced Settings, ensure the following options are checked:-
Scan for potentially unsafe applications & Enable Anti-Stealth Technology
   
  • Select Change next to Current scan targets A new window will open.
       
  • Select any extra drives, Flash drives etc as required.
Click Scan
   
  • wait for the virus definitions to be downloaded
  • Wait for the scan to finish

When the scan is complete
   
  • If no threats were found
       
  • put a checkmark in "Uninstall application on close"
  • close program
  • report to me that nothing was found

If threats were found
   
  • click on "list of threats found"
  • click on "export to text file" and save it as ESET SCAN and save to the desktop
  • Click on back
  • put a checkmark in "Uninstall application on close"
  • click on finish

Please copy & paste the log  (If applicable) here.

 

Click Here