Author Topic: [Resolved] Still Slow After Cleaning  (Read 6768 times)

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #60 on: December 10, 2015, 04:31:29 PM »
Hi Playtpuss,

Here is the report.

Thanks

***********************

Fix result of Farbar Recovery Scan Tool (x64) Version:05-12-2015
Ran by David (2015-12-11 09:30:26) Run:2
Running from C:\Users\David\Desktop
Loaded Profiles: David (Available Profiles: user & David & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses
CreateRestorePoint
FindFolder:C:\Users\David\AppData\Local\Temp\ehdrv.sys
DeleteKey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eapihdrv
CreateRestorePoint
EmptyTemp
Reboot
*****************

CloseProcesses => Error: No automatic fix found for this entry.
CreateRestorePoint => Error: No automatic fix found for this entry.
================== FindFolder: "FindFolder:C:\Users\David\AppData\Local\Temp\ehdrv.sys" ===================

No File

=== End of FindFolder ===
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eapihdrv => key not found.
CreateRestorePoint => Error: No automatic fix found for this entry.
EmptyTemp => Error: No automatic fix found for this entry.
Reboot => Error: No automatic fix found for this entry.

==== End of Fixlog 09:30:26 ====

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #61 on: December 11, 2015, 11:22:24 AM »

 




 Hello Eureka888,

 My apologies for my script mistake, it needs to be run again but as the file was not found we need to expose hidden files:-


How to show hidden files in Windows 7

1. Close all programs so that you are at your desktop.
2. Click on the Start button. This is the small round button with the Windows flag in the lower left corner.
3. Click on the Control Panel menu option.
4. When the control panel opens click on the Appearance and Personalization link.
5. Under the Folder Options category, click on Show Hidden Files or Folders.
6. Under the Hidden files and folders section select the radio button labeled Show hidden files, folders, or drives.
7. Remove the checkmark from the checkbox labeled Hide extensions for known file types.
8. Remove the checkmark from the checkbox labeled Hide protected operating system files (Recommended).
9. Press the Apply button and then the OK button..
10. Now Windows 7 is configured to show all hidden files.
>>>>>>>>>>>>>>>>>



Open notepad. Please copy the contents of the code box below.
To do this highlight the contents of the box and right click on it.
Then paste it into the open notepad.
Save it on the Desktop as fixlist.txt


Code: [Select]
Start:
CloseProcesses:
CreateRestorePoint:
FindFolder:C:\Users\David\AppData\Local\Temp\ehdrv.sys
DeleteKey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eapihdrv
CreateRestorePoint:
EmptyTemp:
Reboot:

NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
(Both on the Desktop is OK, or both in the same folder elsewhere)

Run FRST64 and press the FIX button just once, and wait.

Run FRST64 and press the FIX button just once, and wait. DO NOT PRESS THE SCAN BUTTON.
If for some reason the tool needs a restart, please make sure you let the system restart normally.
The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

Thank you for your patience  :)1
platypuss.




Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #62 on: December 11, 2015, 09:22:55 PM »
Hi Platypuss,

Here is the report.

THANKS FOR YOUR TIME AND EFFORT.

*******************************************

Fix result of Farbar Recovery Scan Tool (x64) Version:05-12-2015
Ran by David (2015-12-12 14:13:53) Run:3
Running from C:\Users\David\Desktop
Loaded Profiles: David &  (Available Profiles: user & David & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start:
CloseProcesses:
CreateRestorePoint:
FindFolder:C:\Users\David\AppData\Local\Temp\ehdrv.sys
DeleteKey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eapihdrv
CreateRestorePoint:
EmptyTemp:
Reboot:
*****************

Start: => Error: No automatic fix found for this entry.
Processes closed successfully.
Restore point was successfully created.
================== FindFolder: "FindFolder:C:\Users\David\AppData\Local\Temp\ehdrv.sys" ===================

No File

=== End of FindFolder ===
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eapihdrv => key not found.
Restore point was successfully created.
EmptyTemp: => 213.1 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 14:15:28 ====

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #63 on: December 14, 2015, 03:07:52 PM »


 
Hello Eureka888,

We are going to delete the ESET folder/file finally by using the Revo Uninstaller.

STEP 1
First of all run a scan from your existing copy of DDS
Following instructions in post No.46. again but when the DDS.Settings box appears  ensure that both the dds.txt & attach.txt boxes are ticked
It will produce two logs. Please post the full logs here.
>>>>>>>>>>>>>

 STEP2


First download Revo Uninstaller Pro and install it. You will be using the trial version.
Note you may find minor disparity with instructions 6 & 7.
1.Start up Revo Uninstaller. Now hit the CTRL and F keys at the same time.
2.You will get a popup. In the box under Programs exact name type in ESET Online Scanner .
3.Now in the box below that (full path to program's file or folder) click the browse for button and browse to
and select the folder C:\Program Files (x86)\ESET\ESET Online Scanner and then click the next button.
4.Now Revo will start scanning your file system and registry. It will take a few minutes.
5.When it is done it will display registry results. You need to be careful here.
6.Go thru and check the boxes next to the BOLD entries ONLY.
7.Once you have checked all the boxes next to the BOLD entries click the Delete button that is just below the registry list. 8.You might get a popup asking you if you are sure, click yes.
9.Now click the next button. You will now see a list of program files
10.Click the Select All Button and then click the delete button.
11.You will get another popup asking if you are sure. Select Yes.
12.Now the windows will probably close. Now close Revo. And Reboot the computer.
13.Let me know the time you restart the computer (look in the lower right corner and tell me the time the computer says it is)
14.Now scan your computer with DDS again but when the DDS.Settings box appears  ensure that both the dds.txt & attach.txt boxes are ticked
15.You should  get two logs . Post both full logs here please.

I need both DDS logs that were run before Revo.
Plus both DDS logs that were run after Revo.

platypuss

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #64 on: December 14, 2015, 05:46:45 PM »
Hi Platypuss,

Here are the two dds logs.

******************************
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 25/09/2013 11:33:15 AM
System Uptime: 15/12/2015 10:19:27 AM (0 hours ago)
.
Motherboard: Gigabyte Technology Co., Ltd. |  | B75M-D2V
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | 3601/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 819.447 GiB free.
D: is CDROM ()
F: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP176: 16/11/2015 12:17:09 PM - Windows Backup
RP177: 10/12/2015 12:27:37 PM - Windows Update
RP179: 12/12/2015 2:14:23 PM - Restore Point Created by FRST
RP181: 12/12/2015 2:15:01 PM - Restore Point Created by FRST
.
==== Installed Programs ======================
.
@BIOS
7-Zip 9.22beta
Adobe Refresh Manager
Advertising Center
Apple Application Support (32-bit)
Apple Application Support (64-bit)
Apple Mobile Device Support
Apple Software Update
AutoGreen B12.0206.1
AVG
AVG 2016
AVG Protection
AVS Audio Editor 7.1
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Bing Bar
Bonjour
CameraHelperMsi
CCleaner
Citrix Online Launcher
CyberScrub® Privacy Suite™ 5.1
DAEMON Tools Lite
DolbyFiles
Easy Tune 6 B12.1121.1
erLT
FMW 1
Foxit Reader
FxPro cTrader
Google Chrome
Google Update Helper
GoToMeeting 7.7.0.4062
Gpg4win (2.2.6)
Grand Theft Auto: Episodes from Liberty City
HD Tune 2.55
HP FWUpdateEDO2
HP Photo Creations
HP Photosmart 5510 series Basic Device Software
HP Photosmart 5510 series Help
HP Photosmart 5510 series Product Improvement Study
HP Support Solutions Framework
HP Update
HPDiagnosticAlert
iCloud
ImagXpress
InfraRecorder
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) SDK for OpenCL - CPU Only Runtime Package
Intel(R) USB 3.0 eXtensible Host Controller Driver
Intel® Trusted Connect Service Client
Intel® Watchdog Timer Driver (Intel® WDT)
iTunes
Logitech Webcam Software
LWS Facebook
LWS Gallery
LWS Help_main
LWS Launcher
LWS Motion Detection
LWS Pictures And Video
LWS Twitter
LWS Webcam Software
LWS WLM Plugin
LWS YouTube Plugin
Malwarebytes Anti-Malware version 2.2.0.1024
Market Analyst 8
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Mindjet MindManager 15
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 9 Essentials
Nero BurnRights
Nero BurnRights Help
Nero ControlCenter
Nero CoverDesigner
Nero CoverDesigner Help
Nero Disc Copy Gadget
Nero Disc Copy Gadget Help
Nero DiscSpeed
Nero DiscSpeed Help
Nero DriveSpeed
Nero DriveSpeed Help
Nero Express Help
Nero InfoTool
Nero InfoTool Help
Nero Installer
Nero Online Upgrade
Nero PhotoSnap
Nero PhotoSnap Help
Nero Recode
Nero Recode Help
Nero ShowTime
Nero StartSmart
Nero StartSmart Help
Nero StartSmart OEM
Nero Vision
Nero Vision Help
NeroExpress
NVIDIA 3D Vision Controller Driver 352.65
NVIDIA 3D Vision Driver 347.52
NVIDIA Control Panel 347.52
NVIDIA GeForce Experience 2.5.15.46
NVIDIA GeForce Experience Service
NVIDIA Graphics Driver 347.52
NVIDIA HD Audio Driver 1.3.34.3
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX System Software 9.15.0428
NVIDIA ShadowPlay 2.5.15.46
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 2.5.15.46
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.31
PC Wizard 2013.2.12
Pepperstone cTrader
QuickTime 7
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Revo Uninstaller 1.95
Revo Uninstaller Pro 3.1.4
Seagate Dashboard
SeaTools for Windows 1.4.0.2
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2894842v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2898855v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2901110v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2931365)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2972106)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2972215)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2978125)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2979575v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB3023221)
Security Update for Microsoft .NET Framework 4 Client Profile (KB3032662)
Security Update for Microsoft .NET Framework 4 Client Profile (KB3037578)
Security Update for Microsoft .NET Framework 4 Client Profile (KB3074547)
Security Update for Microsoft .NET Framework 4 Client Profile (KB3097994)
Security Update for Microsoft .NET Framework 4 Client Profile (KB3098778)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2894842v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2901110v2)
Security Update for Microsoft .NET Framework 4 Extended (KB3037578)
Security Update for Microsoft .NET Framework 4 Extended (KB3098778)
Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687409) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920795) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085549) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085616) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085620) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3114425) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114431) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114457) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB3114422) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2889915) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB3085548) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB3114458) 32-Bit Edition
SHIELD Streaming
SHIELD Wireless Controller Driver
Skype Click to Call
Skype™ 7.7
TeamViewer 10
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
VLC media player 2.0.0
Windows 7 USB/DVD Download Tool
WinRAR 5.21 (64-bit)
.
==== Event Viewer Messages From Past Week ========
.
9/12/2015 11:17:58 AM, Error: Service Control Manager [7032]  - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:  An instance of the service is already running.
9/12/2015 11:17:28 AM, Error: Service Control Manager [7034]  - The DirMngr service terminated unexpectedly.  It has done this 1 time(s).
9/12/2015 11:17:28 AM, Error: Service Control Manager [7034]  - The BBUpdate service terminated unexpectedly.  It has done this 1 time(s).
8/12/2015 11:00:06 AM, Error: Service Control Manager [7043]  - The Group Policy Client service did not shut down properly after receiving a preshutdown control.
12/12/2015 2:16:14 PM, Error: Service Control Manager [7000]  - The Windows Modules Installer service failed to start due to the following error:  The system cannot find the path specified.
12/12/2015 2:16:14 PM, Error: Service Control Manager [7000]  - The Software Protection service failed to start due to the following error:  The system cannot find the path specified.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The Skype Click to Call PNR Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The Seagate MobileBackup Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The Seagate Dashboard Services service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The NVIDIA Network Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The MBAMService service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The iPod Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The Intel(R) Management and Security Application User Notification Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The Intel(R) Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7034]  - The HP Support Solutions Framework Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Windows Modules Installer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Software Protection service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Print Spooler service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Nero BackItUp Scheduler 4.0 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 500 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Intel(R) Management and Security Application Local Management Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The AVG Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.
12/12/2015 2:14:11 PM, Error: Service Control Manager [7031]  - The Apple Mobile Device Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
12/12/2015 2:14:10 PM, Error: Service Control Manager [7031]  - The TeamViewer 10 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 2000 milliseconds: Restart the service.
12/12/2015 2:13:54 PM, Error: Service Control Manager [7034]  - The NVIDIA Streamer Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:54 PM, Error: Service Control Manager [7034]  - The MBAMScheduler service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7034]  - The Skype Click to Call Updater service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7034]  - The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7034]  - The NVIDIA GeForce Experience Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7034]  - The NVIDIA Display Driver Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7034]  - The Bonjour Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7034]  - The BingBar Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7034]  - The Adobe Acrobat Update Service service terminated unexpectedly.  It has done this 1 time(s).
12/12/2015 2:13:53 PM, Error: Service Control Manager [7031]  - The Intel(R) Capability Licensing Service Interface service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.
11/12/2015 4:35:01 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Nero BackItUp Scheduler 4.0 service to connect.
11/12/2015 4:35:01 PM, Error: Service Control Manager [7000]  - The Nero BackItUp Scheduler 4.0 service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
10/12/2015 11:22:31 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WerSvc service.
.
==== End Of File ===========================

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #65 on: December 14, 2015, 05:51:10 PM »
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.18124
Run by David at 10:44:09 on 2015-12-15
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.61.1033.18.4039.1865 [GMT 11:00]
.
AV: AVG AntiVirus Free Edition *Enabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition *Enabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
.
============== Running Processes ===============
.
c:\PROGRA~2\AVG\Av\avgrsa.exe
C:\Program Files (x86)\AVG\Av\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\AVG\Av\avgidsagent.exe
C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
C:\Program Files (x86)\AVG\Av\avgnsa.exe
C:\Program Files (x86)\AVG\Av\avgemca.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Mindjet\MindManager 15\MmReminderService.exe
C:\Program Files (x86)\AVG\Av\avgui.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe
C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe
C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DeviceAgent.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\splwow64.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com
uSearch Page = hxxp://www.google.com
mWinlogon: Userinit = userinit.exe,
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [HP Photosmart 5510 series (NET)] "C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN19R085K105NR:NW" -scfn "HP Photosmart 5510 series (NET)" -AutoStart 1
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [Uploader] C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe
uRun: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
mRun: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [MMReminderService] C:\Program Files (x86)\Mindjet\MindManager 15\MMReminderService.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avgui.exe" /TRAYONLY
mRun: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
mRun: [DBAgent] "C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe" /WinStart
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:0
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: Send Image To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/201
IE: Send Link To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/203
IE: Send Page To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/204
IE: Send Text To MindManager - C:\Program Files (x86)\Mindjet\MindManager 15\Mm8InternetExplorer.dll/202
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {2F72393D-2472-4F82-B600-ED77F354B7FF} - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - <orphaned>
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer = 192.168.2.1 192.168.2.1 198.142.0.51 211.29.132.12 198.142.235.14
TCP: Interfaces\{46018298-8F7D-42F2-BF6B-9EEFF270CE39} : DHCPNameServer = 192.168.2.1 192.168.2.1 198.142.0.51 211.29.132.12 198.142.235.14
TCP: Interfaces\{91CEC22E-8CFE-4A07-A847-E7942DEAA5F5} : DHCPNameServer = 172.20.10.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.80\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
mASetup: {90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB} - C:\Program Files (x86)\Mindjet\MindManager 15\sys\MmInternetExplorerActiveSetup.vbs
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
IFEO: ProcessHacker.exe - svchost.exe
x64-BHO: UniiSalEEs: {643bd21e-0455-43c1-8744-47c1d96c6f8a} - LocalServer32 - <no file>
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-IFEO: ProcessHacker.exe - svchost.exe
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2015-8-20 298416]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2015-8-14 398256]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2015-11-6 256432]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2015-8-10 42416]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-9-25 19264]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2015-11-6 184240]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2015-11-6 313776]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2015-10-21 284080]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2015-10-8 302000]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-14 283064]
R1 SBRE;SBRE;C:\Windows\System32\drivers\sbredrv.sys [2014-12-13 55384]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-7 77104]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\Av\avgidsagent.exe [2015-11-20 3857272]
R2 avgsvc;AVG Service;C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2015-11-12 1046952]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [2015-11-20 579776]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 GfExperienceService;NVIDIA GeForce Experience Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-18 1155376]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe [2015-3-28 89840]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-6-19 634632]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-9-25 166720]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-7-13 1513784]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-7-13 1135416]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-1-8 1872688]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-7-30 5568816]
R2 Seagate Dashboard Services;Seagate Dashboard Services;C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe [2015-7-15 16216]
R2 Seagate MobileBackup Service;Seagate MobileBackup Service;C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe [2015-7-15 143656]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-11-2 410952]
R2 TeamViewer;TeamViewer 10;C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-7-13 5613328]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-9-25 365376]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE [2012-1-25 240408]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);C:\Windows\System32\drivers\ICCWDT.sys [2010-8-18 26136]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-9-25 357184]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-9-25 789824]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2015-7-13 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2015-7-13 192216]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2015-7-13 63704]
R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-6-3 19760]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2015-10-14 50472]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-9-25 646248]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2014-12-11 33448]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2015-6-11 54784]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE [2012-1-25 192792]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-6-25 327296]
S3 AvgAMPS;AvgAMPS;C:\Program Files (x86)\AVG\Av\avgamps.exe [2015-11-20 615584]
S3 cpuz137;cpuz137;C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys [2015-7-30 26856]
S3 etdrv;etdrv;C:\Windows\etdrv.sys [2013-11-8 25640]
S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2013-9-25 30528]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2015-12-10 114688]
S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-9-22 351520]
S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-9-22 4763680]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\System32\drivers\netaapl64.sys [2013-7-25 23040]
S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2015-11-2 31800]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-11-10 1255736]
.
=============== Created Last 30 ================
.
2015-12-14 04:54:07   --------   d-----w-   C:\Users\David\AppData\Local\Apple Inc
2015-12-10 00:49:16   802304   ----a-w-   C:\Windows\System32\usp10.dll
2015-12-10 00:49:16   627712   ----a-w-   C:\Windows\SysWow64\usp10.dll
2015-12-10 00:48:51   241664   ----a-w-   C:\Windows\System32\els.dll
2015-12-10 00:48:51   179712   ----a-w-   C:\Windows\SysWow64\els.dll
2015-12-10 00:45:15   1648128   ----a-w-   C:\Windows\System32\DWrite.dll
2015-12-10 00:45:14   3211264   ----a-w-   C:\Windows\System32\win32k.sys
2015-12-10 00:45:13   1180160   ----a-w-   C:\Windows\System32\FntCache.dll
2015-12-10 00:45:12   1251328   ----a-w-   C:\Windows\SysWow64\DWrite.dll
2015-12-10 00:45:12   1008640   ----a-w-   C:\Windows\System32\user32.dll
2015-12-10 00:45:08   833024   ----a-w-   C:\Windows\SysWow64\user32.dll
2015-12-10 00:43:38   17408   ----a-w-   C:\Windows\System32\wshrm.dll
2015-12-10 00:43:38   14848   ----a-w-   C:\Windows\SysWow64\wshrm.dll
2015-12-10 00:43:38   146944   ----a-w-   C:\Windows\System32\drivers\rmcast.sys
2015-12-10 00:42:39   1735680   ----a-w-   C:\Windows\System32\comsvcs.dll
2015-12-10 00:42:38   525312   ----a-w-   C:\Windows\System32\catsrvut.dll
2015-12-10 00:42:35   487936   ----a-w-   C:\Windows\SysWow64\catsrvut.dll
2015-12-10 00:42:35   1242624   ----a-w-   C:\Windows\SysWow64\comsvcs.dll
2015-12-06 23:25:44   --------   d-----w-   C:\FRST
2015-11-22 23:39:08   --------   d-----w-   C:\ProgramData\Package Cache
2015-11-22 23:19:16   --------   d-----w-   C:\Program Files (x86)\Seagate
2015-11-22 23:14:28   --------   d-----w-   C:\Users\David\AppData\Roaming\Seagate
2015-11-22 23:14:28   --------   d-----w-   C:\ProgramData\Seagate
2015-11-16 22:34:28   --------   d-----w-   C:\Program Files (x86)\HD Tune
.
==================== Find3M  ====================
.
2015-12-14 23:21:07   192216   ----a-w-   C:\Windows\System32\drivers\MBAMSwissArmy.sys
2015-12-05 00:41:17   25640   ----a-w-   C:\Windows\gdrv.sys
2015-12-05 00:38:36   30528   ----a-w-   C:\Windows\GVTDrv64.sys
2015-11-20 18:54:59   98816   ----a-w-   C:\Windows\System32\wudriver.dll
2015-11-20 18:54:59   3170304   ----a-w-   C:\Windows\System32\wucltux.dll
2015-11-20 18:54:59   192512   ----a-w-   C:\Windows\System32\wuwebv.dll
2015-11-20 18:54:28   91136   ----a-w-   C:\Windows\System32\WinSetupUI.dll
2015-11-20 18:54:18   12288   ----a-w-   C:\Windows\System32\wu.upgrade.ps.dll
2015-11-20 18:54:15   37888   ----a-w-   C:\Windows\System32\wuapp.exe
2015-11-20 18:34:36   93696   ----a-w-   C:\Windows\SysWow64\wudriver.dll
2015-11-20 18:34:36   174080   ----a-w-   C:\Windows\SysWow64\wuwebv.dll
2015-11-20 18:33:56   35328   ----a-w-   C:\Windows\SysWow64\wuapp.exe
2015-11-10 00:24:59   2724864   ----a-w-   C:\Windows\SysWow64\mshtml.tlb
2015-11-10 00:13:04   496640   ----a-w-   C:\Windows\SysWow64\vbscript.dll
2015-11-10 00:13:03   62464   ----a-w-   C:\Windows\SysWow64\iesetup.dll
2015-11-10 00:12:29   47616   ----a-w-   C:\Windows\SysWow64\ieetwproxystub.dll
2015-11-10 00:12:19   341504   ----a-w-   C:\Windows\SysWow64\html.iec
2015-11-10 00:11:38   64000   ----a-w-   C:\Windows\SysWow64\MshtmlDac.dll
2015-11-10 00:03:01   115712   ----a-w-   C:\Windows\SysWow64\ieUnatt.exe
2015-11-10 00:02:42   620032   ----a-w-   C:\Windows\SysWow64\jscript9diag.dll
2015-11-09 23:50:28   60416   ----a-w-   C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2015-11-09 23:46:18   4514816   ----a-w-   C:\Windows\SysWow64\jscript9.dll
2015-11-09 23:36:09   2050560   ----a-w-   C:\Windows\SysWow64\inetcpl.cpl
2015-11-09 23:35:17   1155072   ----a-w-   C:\Windows\SysWow64\mshtmlmedia.dll
2015-11-09 23:17:36   2011136   ----a-w-   C:\Windows\SysWow64\wininet.dll
2015-11-08 22:33:00   2724864   ----a-w-   C:\Windows\System32\mshtml.tlb
2015-11-08 22:32:46   4096   ----a-w-   C:\Windows\System32\ieetwcollectorres.dll
2015-11-08 22:16:29   66560   ----a-w-   C:\Windows\System32\iesetup.dll
2015-11-08 22:15:39   48640   ----a-w-   C:\Windows\System32\ieetwproxystub.dll
2015-11-08 22:15:31   417792   ----a-w-   C:\Windows\System32\html.iec
2015-11-08 22:15:22   571392   ----a-w-   C:\Windows\System32\vbscript.dll
2015-11-08 22:14:50   88064   ----a-w-   C:\Windows\System32\MshtmlDac.dll
2015-11-08 22:04:46   5923840   ----a-w-   C:\Windows\System32\jscript9.dll
2015-11-08 22:01:25   114688   ----a-w-   C:\Windows\System32\ieetwcollector.exe
2015-11-08 22:01:24   144384   ----a-w-   C:\Windows\System32\ieUnatt.exe
2015-11-08 22:01:01   814080   ----a-w-   C:\Windows\System32\jscript9diag.dll
2015-11-08 21:52:10   968704   ----a-w-   C:\Windows\System32\MsSpellCheckingFacility.exe
2015-11-08 21:40:10   77824   ----a-w-   C:\Windows\System32\JavaScriptCollectionAgent.dll
2015-11-08 21:14:19   1359360   ----a-w-   C:\Windows\System32\mshtmlmedia.dll
2015-11-08 21:13:40   2123264   ----a-w-   C:\Windows\System32\inetcpl.cpl
2015-11-08 20:53:08   2487808   ----a-w-   C:\Windows\System32\wininet.dll
2015-11-06 04:50:34   184240   ----a-w-   C:\Windows\System32\drivers\avgdiska.sys
2015-11-06 04:49:38   313776   ----a-w-   C:\Windows\System32\drivers\avgidsdrivera.sys
2015-11-06 04:49:38   256432   ----a-w-   C:\Windows\System32\drivers\avgmfx64.sys
2015-10-21 05:16:48   284080   ----a-w-   C:\Windows\System32\drivers\avgldx64.sys
2015-10-20 01:12:12   5570496   ----a-w-   C:\Windows\System32\ntoskrnl.exe
2015-10-20 01:12:10   95680   ----a-w-   C:\Windows\System32\drivers\ksecdd.sys
2015-10-20 01:12:10   154560   ----a-w-   C:\Windows\System32\drivers\ksecpkg.sys
2015-10-20 01:09:05   1730496   ----a-w-   C:\Windows\System32\ntdll.dll
2015-10-20 01:06:18   362496   ----a-w-   C:\Windows\System32\wow64win.dll
2015-10-20 01:06:18   243712   ----a-w-   C:\Windows\System32\wow64.dll
2015-10-20 01:06:18   215040   ----a-w-   C:\Windows\System32\winsrv.dll
2015-10-20 01:06:18   13312   ----a-w-   C:\Windows\System32\wow64cpu.dll
2015-10-20 01:04:53   31232   ----a-w-   C:\Windows\System32\lsass.exe
2015-10-20 01:04:40   338432   ----a-w-   C:\Windows\System32\conhost.exe
2015-10-20 01:04:35   64000   ----a-w-   C:\Windows\System32\auditpol.exe
2015-10-20 01:00:20   60416   ----a-w-   C:\Windows\System32\msobjs.dll
2015-10-20 00:59:20   146432   ----a-w-   C:\Windows\System32\msaudite.dll
2015-10-20 00:52:02   3991488   ----a-w-   C:\Windows\SysWow64\ntkrnlpa.exe
2015-10-20 00:52:02   3935680   ----a-w-   C:\Windows\SysWow64\ntoskrnl.exe
2015-10-20 00:48:46   1311768   ----a-w-   C:\Windows\SysWow64\ntdll.dll
2015-10-20 00:44:35   50176   ----a-w-   C:\Windows\SysWow64\auditpol.exe
2015-10-20 00:44:19   5120   ----a-w-   C:\Windows\SysWow64\wow32.dll
2015-10-20 00:44:18   96768   ----a-w-   C:\Windows\SysWow64\sspicli.dll
2015-10-20 00:44:18   665088   ----a-w-   C:\Windows\SysWow64\rpcrt4.dll
2015-10-20 00:44:18   274944   ----a-w-   C:\Windows\SysWow64\KernelBase.dll
2015-10-20 00:39:32   60416   ----a-w-   C:\Windows\SysWow64\msobjs.dll
2015-10-20 00:39:11   146432   ----a-w-   C:\Windows\SysWow64\msaudite.dll
2015-10-19 23:41:20   159232   ----a-w-   C:\Windows\System32\drivers\mrxsmb.sys
2015-10-19 23:40:43   290816   ----a-w-   C:\Windows\System32\drivers\mrxsmb10.sys
2015-10-19 23:40:39   129024   ----a-w-   C:\Windows\System32\drivers\mrxsmb20.sys
2015-10-19 23:29:36   7680   ----a-w-   C:\Windows\SysWow64\instnm.exe
2015-10-19 23:29:34   2048   ----a-w-   C:\Windows\SysWow64\user.exe
2015-10-19 23:27:10   6144   ---ha-w-   C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2015-10-19 23:27:10   4608   ---ha-w-   C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-19 23:27:10   3584   ---ha-w-   C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2015-10-19 23:27:10   3072   ---ha-w-   C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2015-10-14 06:03:19   1660   ----a-w-   C:\Windows\System32\ASOROSet.bin
2015-10-13 16:41:05   497664   ----a-w-   C:\Windows\System32\drivers\afd.sys
2015-10-13 16:40:33   118272   ----a-w-   C:\Windows\System32\drivers\tdx.sys
2015-10-13 04:57:21   950720   ----a-w-   C:\Windows\System32\drivers\ndis.sys
2015-10-07 20:46:44   302000   ----a-w-   C:\Windows\System32\drivers\avgtdia.sys
2015-10-04 22:50:18   63704   ----a-w-   C:\Windows\System32\drivers\mwac.sys
2015-10-04 22:50:10   109272   ----a-w-   C:\Windows\System32\drivers\mbamchameleon.sys
2015-10-04 22:50:06   25816   ----a-w-   C:\Windows\System32\drivers\mbam.sys
2015-10-04 08:23:01   1423120   ----a-w-   C:\Windows\SysWow64\nvspcap.dll
2015-10-04 08:23:01   1317192   ----a-w-   C:\Windows\SysWow64\nvspbridge.dll
2015-10-04 08:22:52   1756608   ----a-w-   C:\Windows\System32\nvspbridge64.dll
2015-10-04 08:22:52   1710568   ----a-w-   C:\Windows\System32\nvspcap64.dll
2015-10-03 05:06:17   40280   ----a-w-   C:\Windows\System32\nvhdap64.dll
2015-10-03 05:06:17   204648   ----a-w-   C:\Windows\System32\drivers\nvhda64v.sys
2015-10-03 05:06:17   1905456   ----a-w-   C:\Windows\System32\nvdispco6435850.dll
2015-10-03 05:06:17   1567576   ----a-w-   C:\Windows\System32\nvhdagenco6420103.dll
2015-10-03 05:06:17   1564976   ----a-w-   C:\Windows\System32\nvdispgenco6435850.dll
2015-10-01 18:06:49   692672   ----a-w-   C:\Windows\System32\winload.efi
2015-10-01 18:04:11   616360   ----a-w-   C:\Windows\System32\winresume.efi
2015-10-01 18:00:59   63488   ----a-w-   C:\Windows\System32\setbcdlocale.dll
2015-10-01 18:00:51   24576   ----a-w-   C:\Windows\System32\jnwmon.dll
2015-10-01 18:00:50   275456   ----a-w-   C:\Windows\System32\InkEd.dll
2015-10-01 18:00:43   59392   ----a-w-   C:\Windows\System32\appidapi.dll
.
============= FINISH: 10:44:45.01 ===============

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #66 on: December 14, 2015, 05:53:54 PM »
With STEP 2, I am being asked to activate the product. I think this may be because I have used it in the past...

It won't let me into the program without activation.

Thanks

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #67 on: December 15, 2015, 09:38:26 AM »

 

Hello Eureka888,

Just to confirm, you are unable to start Revo Uninstaller Pro.
 This because you ran a Free Trial of Revo Prol recently.
Therefore we must try another way:-

  • Download Autoruns and
  • Then open Windows Explorer and go to C:\Program Files (x86) and create a folder named Autoruns.
  • Next extract all the Autoruns files to that folder.
  • Now start Autoruns.exe . Once it is running go to the Internet Explorer Tab.
  • Now find the entry for ESET Online Scanner, right click on it and select delete.
  • Next go to C:\Program Files (x86)\ESET and delete that folder.
  • Reboot the computer.
  • Now run DDS again. when the DDS.Settings box appears  ensure that both the dds.txt & attach.txt boxes are ticked
  • Please post both logs here.

    Thank you.
    >>>>>>>>>>>>>>>>

    platypuss

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #68 on: December 15, 2015, 04:22:31 PM »
Hi Platypuss,

Yes that is correct about Revo.

With Autoruns, I was unable to find the ESET entry under the Internet Explorer tab. I also did a search in the "filter" box for "eset" and nothing came up.

Kind regards,

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #69 on: December 16, 2015, 11:49:25 AM »

Hello Eureka888,

 That is good news, it has gone at last. So just some tidying up to do.



Rehide Hidden Files


1. Go to Start, then click on Control Panel


2.
Click on the Appearance and Personalization link.

Note: If you're viewing the Small icons or Large icons view of Control Panel, you won't see this link.
 Simply click on Folder Options and skip to Step 4.

3.
Click on the Folder Options link.

4.
Click on the View tab on the Folder Options window.

5.
In the Advanced settings: area, locate the Hidden files and folders category.

Note: You should be able to see the Hidden files and folders category at the bottom of the Advanced settings: text area without scrolling down. You should also see two options under the folder.

6.
Choose the Don't show hidden files, folders, or drives radio button under the Hidden files and folders category.

7Now tick that box.
>>>>>>>>>>>>>>>>>>>

Download & run Delfix

Download "Delfix by Xplode" and save it to your desktop.https://toolslib.net/downloads/viewdownload/2-delfix/

Or use the following if first link is down:

"Delfix link mirror"http://ccm.net/download/download-24087-delfix

Double Click to start the program. If you are using Vista or higher, please right-click and choose run as administrator

Make Sure the following items are checked:

   
  • Remove disinfection tools
  • Purge System Restore <- this will remove old restore points (that are possibly infected) & create a current new one.
       
  • Reset system settings
  • Create registry backup


Now click on "Run" and wait patiently until the tool has completed.

The tool will create a log when it has completed. We don't need you to post this.

Any remnant files/logs from tools we have used can be deleted…

>>>>>>>>>>>>>>


 Uninstall Revo Uninstaller

You can uninstall Revo Uninstaller Pro from its shortcut in the Start Menu->All Programs->Revo Uninstaller Pro->Uninstall .

Or you can uninstall it from  Start->Control Panel -> Programs and Features (or Add or Remove Programs)
  in the list select "Revo Uninstaller Pro" and uninstall it .You also  have the Free version which can be similarly uninstalled.
Both approaches will start the uninstall module of Revo Uninstaller and remove it from your system.

>>>>>>>>>>>>>

Finally.
Please read the following  link HERE to fully understand PC security and best practices, you may find it useful....
 :s
Platypuss









 


Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #70 on: December 16, 2015, 05:42:49 PM »
Hi Platypuss,

All of the above steps completed. Is that the end?  :)1


Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #71 on: December 17, 2015, 05:56:30 AM »

Hello Eureka888,

Yes, your computer is clear of infection. The System Restore
point created by Delfix is a useful recovery position for a known
clean computer state if needed in future.

One final caution, even though your Hard drive passed all the
Manufacturers tests, there is still a suspicion that the fault may manifest itself in future. Therefore do keep your computer
backed up regularly.....just in case  :t

My thanks for your helpful responses & patience  :)1

platypuss.

Offline Eureka888

  • Bronze Member
  • Posts: 43
Re: [In Progress] Still Slow After Cleaning
« Reply #72 on: December 17, 2015, 04:37:41 PM »
Hi Platypuss,

Thank you for all your time and effort!!

All the best.

 :ty

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 443
Re: [In Progress] Still Slow After Cleaning
« Reply #73 on: December 18, 2015, 03:13:06 PM »


 
This topic is now closed as the issue has been resolved.

Should the topic starter require the topic to be re-opened, please contact a staff member & include the address of this thread.

Anyone else start a new topic please.