Greetings,
My friend borrowed my laptop computer and I know he downloaded software that messed my browser up. I use Chrome and it seems that every page has an ad that pops up automatically and it makes browsing very difficult. The computer now takes longer than normal to boot up and shut down. I would greatly appreciate any help to correct the annoying pop-ups and marked delay.
Here is the DDS.txt:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17909 BrowserJavaVersion: 11.31.2
Run by New User at 22:08:49 on 2015-07-31
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4044.2379 [GMT -10:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
SP: Microsoft Security Essentials *Enabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\windows\system32\CxAudMsg64.exe
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\TOSHIBA\TECO\TecoService.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\windows\System32\alg.exe
C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
C:\windows\System32\igfxtray.exe
C:\windows\System32\igfxpers.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\windows\System32\hkcmd.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Users\New User\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\New User\AppData\Local\Programs\Google\MusicManager\MusicManager.exe
C:\Program Files (x86)\Virtual Router\VirtualRouterClient.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\windows\servicing\TrustedInstaller.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\windows\system32\GWX\GWX.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugincontainer.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\3\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\3\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\4\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\6\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\2\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\8\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\5\plugin.exe
C:\Program Files (x86)\Common Files\77790361-426c-4fa2-8cf3-5994543d685d\updater.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\7\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\7\plugin.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\System32\svchost.exe -k WerSvcGroup
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=bl-bir-sw__alt__ddc_dsssyc_bd_com
uSearch Page = hxxp://www.google.com
uProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mWinlogon: Userinit = userinit.exe
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
BHO: Express Find: {d39539bb-f65e-4088-a9d1-6e5f01a42a3e} - C:\Program Files (x86)\Express Find\Extensions\d39539bb-f65e-4088-a9d1-6e5f01a42a3e.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
BHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [Google Update] "C:\Users\New User\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
uRun: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
uRun: [3EEACF25A3A34117C559996B7D8760AD66AA92BB._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [Spotify Web Helper] "C:\Users\New User\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
uRun: [Zoom] <no file>
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\VIRTUA~1.LNK - C:\windows\Installer\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}\_118D1A4EFFA6998C3492EB.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Trusted Zone: dell.com
Trusted Zone: unicoldcorp.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab
TCP: NameServer = 24.25.227.55 209.18.47.61
TCP: Interfaces\{4D212A25-9A31-4C6E-B8D6-229B29B2CBB6} : DHCPNameServer = 172.20.10.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC} : DHCPNameServer = 24.25.227.55 209.18.47.61
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\352474635383034344 : DHCPNameServer = 24.25.227.55 209.18.47.61 24.25.227.53
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\A65627963716D616 : DHCPNameServer = 192.168.137.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\A656279637A656279637 : DHCPNameServer = 192.168.137.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\A656279637A65627963716 : DHCPNameServer = 192.168.137.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\F42716E676564596765627D27657563747 : DHCPNameServer = 24.25.227.55 209.18.47.61
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {7D2B3E1D-D096-4594-9D8F-A6667F12E0AC} - "C:\Program Files (x86)\speed browser\Application\40.0.2214.45\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.125\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=bl-bir-sw__alt__ddc_dsssyc_bd_com
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll
x64-BHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll
x64-TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [HotKeysCmds] "C:\windows\System32\hkcmd.exe"
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\windows\System32\drivers\MpFilter.sys [2015-3-4 280376]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\drivers\tos_sps64.sys [2009-6-24 482384]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-1-19 77128]
R2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2013-8-6 173192]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-5-1 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-5-1 1772672]
R2 cfWiMAXService;ConfigFree WiMAX Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2011-6-7 250296]
R2 ConfigFree Service;ConfigFree Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2011-6-7 47032]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2015-3-18 822496]
R2 CxAudMsg;Conexant Audio Message Service;C:\windows\System32\CxAudMsg64.exe [2013-9-16 205560]
R2 DiagTrack;Diagnostics Tracking Service;C:\windows\System32\svchost.exe -k utcsvc [2011-11-2 27648]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2013-1-11 213440]
R2 NisDrv;Microsoft Network Inspection System;C:\windows\System32\drivers\NisDrvWFP.sys [2014-7-17 124568]
R2 PCCUJobMgr;Common Client Job Manager Service;C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe [2012-3-1 126392]
R2 Service Mgr ExpressFind;Service Mgr ExpressFind;C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugincontainer.exe [2015-3-23 1138960]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-8 534184]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2011-5-24 294848]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\drivers\TVALZFL.sys [2009-6-19 14472]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-3-1 2595824]
R2 Update Mgr ExpressFind;Update Mgr ExpressFind;C:\Program Files (x86)\Common Files\77790361-426c-4fa2-8cf3-5994543d685d\updater.exe [2015-3-23 1073424]
R2 Virtual Router;VirtualRouterService;C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe [2013-2-10 12288]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE [2014-3-11 247968]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-4-12 169752]
R3 IntcDAud;Intel(R) Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2013-3-12 342528]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2010-11-8 76912]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-4-30 366544]
R3 PGEffect;Pangu effect driver;C:\windows\System32\drivers\PGEffect.sys [2012-3-1 38096]
R3 QIOMem;Generic IO & Memory Access;C:\windows\System32\drivers\QIOMem.sys [2009-6-15 12800]
R3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;C:\windows\System32\drivers\rtwlane.sys [2013-5-2 1514568]
R3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2014-10-8 766632]
R3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2014-10-8 273576]
R3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2014-10-8 29352]
R3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2014-10-8 23208]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-8 211104]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE [2014-3-11 193696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-1-2 315488]
S3 cpudrv64;cpudrv64;C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-6-2 17864]
S3 HP8207_8307;HP-HP8207_8307;C:\windows\System32\drivers\HP8207_8307.sys [2010-2-4 15360]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2015-7-22 114688]
S3 ivusb;Initio Driver for USB Default Controller;C:\windows\System32\drivers\ivusb.sys [2010-7-29 29720]
S3 massfilter;Mass Storage Filter Driver;C:\windows\System32\drivers\massfilter.sys [2013-1-16 11776]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-4-9 289256]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\windows\System32\drivers\netaapl64.sys [2013-7-25 23040]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2012-3-1 250984]
S3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;C:\windows\System32\drivers\rtsuvstor.sys [2012-3-1 307304]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\drivers\rtl8192ce.sys [2012-3-1 1109096]
S3 SrvHsfHDA;SrvHsfHDA;C:\windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-3-1 57216]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2011-6-9 138152]
S3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2011-7-1 828856]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2014-7-28 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2012-7-10 1255736]
S3 WSDScan;WSD Scan Support via UMB;C:\windows\System32\drivers\WSDScan.sys [2009-7-13 25088]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2015-08-01 05:38:52 1190000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AB3EBAB3-E234-40D0-A341-156AC9849BC1}\gapaengine.dll
2015-08-01 05:21:56 12222168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F03B73E4-28DA-42D3-B26B-DD8F0873E26B}\mpengine.dll
2015-07-26 04:08:49 0 ----a-w- C:\windows\SysWow64\sho14A8.tmp
2015-07-26 03:34:39 -------- d-----w- C:\windows\System32\appraiser
2015-07-24 01:58:04 124112 ----a-w- C:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2015-07-24 01:58:04 102608 ----a-w- C:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-07-23 07:36:26 5569984 ----a-w- C:\windows\System32\ntoskrnl.exe
2015-07-23 07:35:59 6656 ----a-w- C:\windows\SysWow64\apisetschema.dll
2015-07-23 07:35:59 6656 ----a-w- C:\windows\System32\apisetschema.dll
2015-07-23 07:35:59 6144 ---ha-w- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2015-07-23 07:35:59 4608 ---ha-w- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2015-07-23 07:35:59 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2015-07-23 07:35:59 4096 ---ha-w- C:\windows\System32\api-ms-win-core-localization-l1-1-0.dll
2015-07-23 07:35:59 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\System32\api-ms-win-core-util-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\System32\api-ms-win-core-console-l1-1-0.dll
2015-07-23 07:35:59 2048 ----a-w- C:\windows\SysWow64\user.exe
2015-07-23 07:32:59 2052608 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2015-07-23 07:30:17 633856 ----a-w- C:\windows\System32\comctl32.dll
2015-07-23 07:30:16 530432 ----a-w- C:\windows\SysWow64\comctl32.dll
2015-07-23 07:30:14 2087424 ----a-w- C:\windows\System32\ole32.dll
2015-07-23 07:30:14 1414656 ----a-w- C:\windows\SysWow64\ole32.dll
2015-07-23 07:30:09 188416 ----a-w- C:\windows\System32\cryptsvc.dll
2015-07-23 07:30:09 143872 ----a-w- C:\windows\SysWow64\cryptsvc.dll
2015-07-23 07:30:08 1480192 ----a-w- C:\windows\System32\crypt32.dll
2015-07-23 07:30:08 1174528 ----a-w- C:\windows\SysWow64\crypt32.dll
2015-07-23 07:30:07 229376 ----a-w- C:\windows\System32\wintrust.dll
2015-07-23 07:30:07 179200 ----a-w- C:\windows\SysWow64\wintrust.dll
2015-07-23 07:30:07 140288 ----a-w- C:\windows\System32\cryptnet.dll
2015-07-23 07:30:07 103936 ----a-w- C:\windows\SysWow64\cryptnet.dll
2015-07-23 07:28:50 1882624 ----a-w- C:\windows\System32\msxml3.dll
2015-07-23 07:28:49 2048 ----a-w- C:\windows\SysWow64\msxml3r.dll
2015-07-23 07:28:49 2048 ----a-w- C:\windows\System32\msxml3r.dll
2015-07-23 07:28:49 1237504 ----a-w- C:\windows\SysWow64\msxml3.dll
2015-07-23 07:26:11 12222168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2015-07-23 07:25:34 72192 ----a-w- C:\windows\System32\aelupsvc.dll
2015-07-23 07:25:34 342016 ----a-w- C:\windows\System32\apphelp.dll
2015-07-23 07:25:34 295936 ----a-w- C:\windows\SysWow64\apphelp.dll
2015-07-23 07:25:34 23552 ----a-w- C:\windows\System32\sdbinst.exe
2015-07-23 07:25:33 6656 ----a-w- C:\windows\System32\shimeng.dll
2015-07-23 07:25:33 5120 ----a-w- C:\windows\SysWow64\shimeng.dll
2015-07-23 07:25:33 20992 ----a-w- C:\windows\SysWow64\sdbinst.exe
2015-07-23 07:24:04 79360 ----a-w- C:\windows\System32\clfsw32.dll
2015-07-23 07:24:04 58880 ----a-w- C:\windows\SysWow64\clfsw32.dll
2015-07-23 07:24:04 367552 ----a-w- C:\windows\System32\clfs.sys
2015-07-23 06:39:06 0 ---ha-w- C:\Users\New User\AppData\Local\BIT425.tmp
2015-07-20 21:18:22 1190000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E7133028-A446-4B95-A697-F6C5E5C9BC94}\gapaengine.dll
2015-07-14 09:06:35 6420480 ----a-w- C:\Program Files (x86)\GUT6991.tmp
2015-07-14 09:06:35 -------- d-----w- C:\Program Files (x86)\GUM6990.tmp
.
==================== Find3M ====================
.
2015-07-23 07:11:33 778416 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2015-07-23 07:11:33 142512 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-07-15 03:19:54 41984 ----a-w- C:\windows\System32\lpk.dll
2015-07-15 03:19:50 100864 ----a-w- C:\windows\System32\fontsub.dll
2015-07-15 03:19:46 14336 ----a-w- C:\windows\System32\dciman32.dll
2015-07-15 03:19:45 46080 ----a-w- C:\windows\System32\atmlib.dll
2015-07-15 02:55:37 70656 ----a-w- C:\windows\SysWow64\fontsub.dll
2015-07-15 02:55:35 10240 ----a-w- C:\windows\SysWow64\dciman32.dll
2015-07-15 02:55:32 34304 ----a-w- C:\windows\SysWow64\atmlib.dll
2015-07-15 02:54:33 25600 ----a-w- C:\windows\SysWow64\lpk.dll
2015-07-15 01:59:42 372224 ----a-w- C:\windows\System32\atmfd.dll
2015-07-15 01:52:35 299008 ----a-w- C:\windows\SysWow64\atmfd.dll
2015-07-09 17:59:59 17856 ----a-w- C:\windows\System32\CompatTelRunner.exe
2015-07-09 17:58:56 192000 ----a-w- C:\windows\System32\wuwebv.dll
2015-07-09 17:58:55 98304 ----a-w- C:\windows\System32\wudriver.dll
2015-07-09 17:58:55 3154944 ----a-w- C:\windows\System32\wucltux.dll
2015-07-09 17:58:41 726528 ----a-w- C:\windows\System32\generaltel.dll
2015-07-09 17:58:34 91136 ----a-w- C:\windows\System32\WinSetupUI.dll
2015-07-09 17:58:31 765440 ----a-w- C:\windows\System32\invagent.dll
2015-07-09 17:58:26 433664 ----a-w- C:\windows\System32\devinv.dll
2015-07-09 17:58:25 12288 ----a-w- C:\windows\System32\wu.upgrade.ps.dll
2015-07-09 17:58:24 1085440 ----a-w- C:\windows\System32\appraiser.dll
2015-07-09 17:58:23 67584 ----a-w- C:\windows\System32\acmigration.dll
2015-07-09 17:58:23 227328 ----a-w- C:\windows\System32\aepdu.dll
2015-07-09 17:58:20 37376 ----a-w- C:\windows\System32\wuapp.exe
2015-07-09 17:50:11 1145856 ----a-w- C:\windows\System32\aeinv.dll
2015-07-09 17:43:25 93184 ----a-w- C:\windows\SysWow64\wudriver.dll
2015-07-09 17:43:25 173056 ----a-w- C:\windows\SysWow64\wuwebv.dll
2015-07-09 17:42:47 34816 ----a-w- C:\windows\SysWow64\wuapp.exe
2015-07-05 10:08:23 300704 ------w- C:\windows\System32\MpSigStub.exe
2015-07-02 21:08:53 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2015-07-02 20:40:34 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2015-07-01 20:56:03 95680 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2015-07-01 20:56:03 155584 ----a-w- C:\windows\System32\drivers\ksecpkg.sys
2015-07-01 20:49:53 210944 ----a-w- C:\windows\System32\wdigest.dll
2015-07-01 20:49:47 86528 ----a-w- C:\windows\System32\TSpkg.dll
2015-07-01 20:49:45 29184 ----a-w- C:\windows\System32\sspisrv.dll
2015-07-01 20:49:45 136192 ----a-w- C:\windows\System32\sspicli.dll
2015-07-01 20:49:42 342016 ----a-w- C:\windows\System32\schannel.dll
2015-07-01 20:49:42 28160 ----a-w- C:\windows\System32\secur32.dll
2015-07-01 20:49:41 1216512 ----a-w- C:\windows\System32\rpcrt4.dll
2015-07-01 20:49:23 309760 ----a-w- C:\windows\System32\ncrypt.dll
2015-07-01 20:49:22 315392 ----a-w- C:\windows\System32\msv1_0.dll
2015-07-01 20:49:11 729088 ----a-w- C:\windows\System32\kerberos.dll
2015-07-01 20:49:11 1461760 ----a-w- C:\windows\System32\lsasrv.dll
2015-07-01 20:48:34 44032 ----a-w- C:\windows\System32\cryptbase.dll
2015-07-01 20:48:34 22016 ----a-w- C:\windows\System32\credssp.dll
2015-07-01 20:47:38 31232 ----a-w- C:\windows\System32\lsass.exe
2015-07-01 20:47:18 64000 ----a-w- C:\windows\System32\auditpol.exe
2015-07-01 20:43:51 60416 ----a-w- C:\windows\System32\msobjs.dll
2015-07-01 20:43:37 146432 ----a-w- C:\windows\System32\msaudite.dll
2015-07-01 20:39:24 686080 ----a-w- C:\windows\System32\adtschema.dll
2015-07-01 20:30:43 172032 ----a-w- C:\windows\SysWow64\wdigest.dll
2015-07-01 20:30:40 65536 ----a-w- C:\windows\SysWow64\TSpkg.dll
2015-07-01 20:30:37 248832 ----a-w- C:\windows\SysWow64\schannel.dll
2015-07-01 20:30:37 22016 ----a-w- C:\windows\SysWow64\secur32.dll
2015-07-01 20:30:33 221184 ----a-w- C:\windows\SysWow64\ncrypt.dll
2015-07-01 20:30:32 259584 ----a-w- C:\windows\SysWow64\msv1_0.dll
2015-07-01 20:30:27 552960 ----a-w- C:\windows\SysWow64\kerberos.dll
2015-07-01 20:30:21 36864 ----a-w- C:\windows\SysWow64\cryptbase.dll
2015-07-01 20:30:21 17408 ----a-w- C:\windows\SysWow64\credssp.dll
2015-07-01 20:29:46 50176 ----a-w- C:\windows\SysWow64\auditpol.exe
2015-07-01 20:29:34 96768 ----a-w- C:\windows\SysWow64\sspicli.dll
2015-07-01 20:29:34 665088 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2015-07-01 20:27:04 60416 ----a-w- C:\windows\SysWow64\msobjs.dll
2015-07-01 20:26:52 146432 ----a-w- C:\windows\SysWow64\msaudite.dll
2015-07-01 20:24:59 686080 ----a-w- C:\windows\SysWow64\adtschema.dll
2015-07-01 19:27:34 159232 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
2015-07-01 19:26:43 290816 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
2015-07-01 19:26:37 129024 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
2015-06-27 02:47:11 814080 ----a-w- C:\windows\System32\jscript9diag.dll
2015-06-27 02:43:26 5923840 ----a-w- C:\windows\System32\jscript9.dll
2015-06-27 01:58:17 620032 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2015-06-27 01:39:37 4520448 ----a-w- C:\windows\SysWow64\jscript9.dll
2015-06-25 08:57:44 3207168 ----a-w- C:\windows\System32\win32k.sys
2015-06-20 20:06:50 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2015-06-20 19:50:10 66560 ----a-w- C:\windows\System32\iesetup.dll
2015-06-20 19:49:17 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2015-06-20 19:49:09 417792 ----a-w- C:\windows\System32\html.iec
2015-06-20 19:49:08 584192 ----a-w- C:\windows\System32\vbscript.dll
2015-06-20 19:48:29 88064 ----a-w- C:\windows\System32\MshtmlDac.dll
2015-06-20 19:34:46 114688 ----a-w- C:\windows\System32\ieetwcollector.exe
2015-06-20 19:34:45 144384 ----a-w- C:\windows\System32\ieUnatt.exe
2015-06-20 19:25:28 968704 ----a-w- C:\windows\System32\MsSpellCheckingFacility.exe
2015-06-20 19:13:07 77824 ----a-w- C:\windows\System32\JavaScriptCollectionAgent.dll
2015-06-20 18:46:53 1359360 ----a-w- C:\windows\System32\mshtmlmedia.dll
2015-06-20 18:46:48 2125824 ----a-w- C:\windows\System32\inetcpl.cpl
2015-06-20 18:26:01 2427392 ----a-w- C:\windows\System32\wininet.dll
2015-06-19 18:25:41 504320 ----a-w- C:\windows\SysWow64\vbscript.dll
2015-06-19 18:25:35 62464 ----a-w- C:\windows\SysWow64\iesetup.dll
2015-06-19 18:24:43 47616 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2015-06-19 18:24:27 341504 ----a-w- C:\windows\SysWow64\html.iec
2015-06-19 18:23:26 64000 ----a-w- C:\windows\SysWow64\MshtmlDac.dll
2015-06-19 18:13:10 115712 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2015-06-19 17:57:45 60416 ----a-w- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-06-19 17:39:13 1155072 ----a-w- C:\windows\SysWow64\mshtmlmedia.dll
2015-06-19 17:15:43 1951232 ----a-w- C:\windows\SysWow64\wininet.dll
2015-06-17 17:47:05 404992 ----a-w- C:\windows\System32\gdi32.dll
2015-06-17 17:37:03 312320 ----a-w- C:\windows\SysWow64\gdi32.dll
2015-06-15 21:50:42 112064 ----a-w- C:\windows\System32\consent.exe
.
============= FINISH: 22:09:55.41 ===============
My friend borrowed my laptop computer and I know he downloaded software that messed my browser up. I use Chrome and it seems that every page has an ad that pops up automatically and it makes browsing very difficult. The computer now takes longer than normal to boot up and shut down. I would greatly appreciate any help to correct the annoying pop-ups and marked delay.
Here is the DDS.txt:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17909 BrowserJavaVersion: 11.31.2
Run by New User at 22:08:49 on 2015-07-31
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4044.2379 [GMT -10:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
SP: Microsoft Security Essentials *Enabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\windows\system32\CxAudMsg64.exe
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\TOSHIBA\TECO\TecoService.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\windows\System32\alg.exe
C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
C:\windows\System32\igfxtray.exe
C:\windows\System32\igfxpers.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\windows\System32\hkcmd.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Users\New User\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\New User\AppData\Local\Programs\Google\MusicManager\MusicManager.exe
C:\Program Files (x86)\Virtual Router\VirtualRouterClient.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\windows\servicing\TrustedInstaller.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\windows\system32\GWX\GWX.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugincontainer.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\3\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\3\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\4\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\6\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\2\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\8\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\5\plugin.exe
C:\Program Files (x86)\Common Files\77790361-426c-4fa2-8cf3-5994543d685d\updater.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\7\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\7\plugin.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\System32\svchost.exe -k WerSvcGroup
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=bl-bir-sw__alt__ddc_dsssyc_bd_com
uSearch Page = hxxp://www.google.com
uProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mWinlogon: Userinit = userinit.exe
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
BHO: Express Find: {d39539bb-f65e-4088-a9d1-6e5f01a42a3e} - C:\Program Files (x86)\Express Find\Extensions\d39539bb-f65e-4088-a9d1-6e5f01a42a3e.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
BHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [Google Update] "C:\Users\New User\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
uRun: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
uRun: [3EEACF25A3A34117C559996B7D8760AD66AA92BB._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [Spotify Web Helper] "C:\Users\New User\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
uRun: [Zoom] <no file>
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\VIRTUA~1.LNK - C:\windows\Installer\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}\_118D1A4EFFA6998C3492EB.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Trusted Zone: dell.com
Trusted Zone: unicoldcorp.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab
TCP: NameServer = 24.25.227.55 209.18.47.61
TCP: Interfaces\{4D212A25-9A31-4C6E-B8D6-229B29B2CBB6} : DHCPNameServer = 172.20.10.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC} : DHCPNameServer = 24.25.227.55 209.18.47.61
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\352474635383034344 : DHCPNameServer = 24.25.227.55 209.18.47.61 24.25.227.53
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\A65627963716D616 : DHCPNameServer = 192.168.137.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\A656279637A656279637 : DHCPNameServer = 192.168.137.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\A656279637A65627963716 : DHCPNameServer = 192.168.137.1
TCP: Interfaces\{5BC8C55B-9E9F-43CD-A572-1FF6E7F12CBC}\F42716E676564596765627D27657563747 : DHCPNameServer = 24.25.227.55 209.18.47.61
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {7D2B3E1D-D096-4594-9D8F-A6667F12E0AC} - "C:\Program Files (x86)\speed browser\Application\40.0.2214.45\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.125\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=bl-bir-sw__alt__ddc_dsssyc_bd_com
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll
x64-BHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll
x64-TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [HotKeysCmds] "C:\windows\System32\hkcmd.exe"
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\windows\System32\drivers\MpFilter.sys [2015-3-4 280376]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\drivers\tos_sps64.sys [2009-6-24 482384]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-1-19 77128]
R2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2013-8-6 173192]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-5-1 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-5-1 1772672]
R2 cfWiMAXService;ConfigFree WiMAX Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2011-6-7 250296]
R2 ConfigFree Service;ConfigFree Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2011-6-7 47032]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2015-3-18 822496]
R2 CxAudMsg;Conexant Audio Message Service;C:\windows\System32\CxAudMsg64.exe [2013-9-16 205560]
R2 DiagTrack;Diagnostics Tracking Service;C:\windows\System32\svchost.exe -k utcsvc [2011-11-2 27648]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2013-1-11 213440]
R2 NisDrv;Microsoft Network Inspection System;C:\windows\System32\drivers\NisDrvWFP.sys [2014-7-17 124568]
R2 PCCUJobMgr;Common Client Job Manager Service;C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe [2012-3-1 126392]
R2 Service Mgr ExpressFind;Service Mgr ExpressFind;C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugincontainer.exe [2015-3-23 1138960]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-8 534184]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2011-5-24 294848]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\drivers\TVALZFL.sys [2009-6-19 14472]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-3-1 2595824]
R2 Update Mgr ExpressFind;Update Mgr ExpressFind;C:\Program Files (x86)\Common Files\77790361-426c-4fa2-8cf3-5994543d685d\updater.exe [2015-3-23 1073424]
R2 Virtual Router;VirtualRouterService;C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe [2013-2-10 12288]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE [2014-3-11 247968]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-4-12 169752]
R3 IntcDAud;Intel(R) Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2013-3-12 342528]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2010-11-8 76912]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-4-30 366544]
R3 PGEffect;Pangu effect driver;C:\windows\System32\drivers\PGEffect.sys [2012-3-1 38096]
R3 QIOMem;Generic IO & Memory Access;C:\windows\System32\drivers\QIOMem.sys [2009-6-15 12800]
R3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;C:\windows\System32\drivers\rtwlane.sys [2013-5-2 1514568]
R3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2014-10-8 766632]
R3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2014-10-8 273576]
R3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2014-10-8 29352]
R3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2014-10-8 23208]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-8 211104]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE [2014-3-11 193696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-1-2 315488]
S3 cpudrv64;cpudrv64;C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-6-2 17864]
S3 HP8207_8307;HP-HP8207_8307;C:\windows\System32\drivers\HP8207_8307.sys [2010-2-4 15360]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2015-7-22 114688]
S3 ivusb;Initio Driver for USB Default Controller;C:\windows\System32\drivers\ivusb.sys [2010-7-29 29720]
S3 massfilter;Mass Storage Filter Driver;C:\windows\System32\drivers\massfilter.sys [2013-1-16 11776]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-4-9 289256]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\windows\System32\drivers\netaapl64.sys [2013-7-25 23040]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2012-3-1 250984]
S3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;C:\windows\System32\drivers\rtsuvstor.sys [2012-3-1 307304]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\drivers\rtl8192ce.sys [2012-3-1 1109096]
S3 SrvHsfHDA;SrvHsfHDA;C:\windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-3-1 57216]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2011-6-9 138152]
S3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2011-7-1 828856]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2014-7-28 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2012-7-10 1255736]
S3 WSDScan;WSD Scan Support via UMB;C:\windows\System32\drivers\WSDScan.sys [2009-7-13 25088]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2015-08-01 05:38:52 1190000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AB3EBAB3-E234-40D0-A341-156AC9849BC1}\gapaengine.dll
2015-08-01 05:21:56 12222168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F03B73E4-28DA-42D3-B26B-DD8F0873E26B}\mpengine.dll
2015-07-26 04:08:49 0 ----a-w- C:\windows\SysWow64\sho14A8.tmp
2015-07-26 03:34:39 -------- d-----w- C:\windows\System32\appraiser
2015-07-24 01:58:04 124112 ----a-w- C:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2015-07-24 01:58:04 102608 ----a-w- C:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-07-23 07:36:26 5569984 ----a-w- C:\windows\System32\ntoskrnl.exe
2015-07-23 07:35:59 6656 ----a-w- C:\windows\SysWow64\apisetschema.dll
2015-07-23 07:35:59 6656 ----a-w- C:\windows\System32\apisetschema.dll
2015-07-23 07:35:59 6144 ---ha-w- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2015-07-23 07:35:59 4608 ---ha-w- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2015-07-23 07:35:59 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2015-07-23 07:35:59 4096 ---ha-w- C:\windows\System32\api-ms-win-core-localization-l1-1-0.dll
2015-07-23 07:35:59 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\System32\api-ms-win-core-util-l1-1-0.dll
2015-07-23 07:35:59 3072 ---ha-w- C:\windows\System32\api-ms-win-core-console-l1-1-0.dll
2015-07-23 07:35:59 2048 ----a-w- C:\windows\SysWow64\user.exe
2015-07-23 07:32:59 2052608 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2015-07-23 07:30:17 633856 ----a-w- C:\windows\System32\comctl32.dll
2015-07-23 07:30:16 530432 ----a-w- C:\windows\SysWow64\comctl32.dll
2015-07-23 07:30:14 2087424 ----a-w- C:\windows\System32\ole32.dll
2015-07-23 07:30:14 1414656 ----a-w- C:\windows\SysWow64\ole32.dll
2015-07-23 07:30:09 188416 ----a-w- C:\windows\System32\cryptsvc.dll
2015-07-23 07:30:09 143872 ----a-w- C:\windows\SysWow64\cryptsvc.dll
2015-07-23 07:30:08 1480192 ----a-w- C:\windows\System32\crypt32.dll
2015-07-23 07:30:08 1174528 ----a-w- C:\windows\SysWow64\crypt32.dll
2015-07-23 07:30:07 229376 ----a-w- C:\windows\System32\wintrust.dll
2015-07-23 07:30:07 179200 ----a-w- C:\windows\SysWow64\wintrust.dll
2015-07-23 07:30:07 140288 ----a-w- C:\windows\System32\cryptnet.dll
2015-07-23 07:30:07 103936 ----a-w- C:\windows\SysWow64\cryptnet.dll
2015-07-23 07:28:50 1882624 ----a-w- C:\windows\System32\msxml3.dll
2015-07-23 07:28:49 2048 ----a-w- C:\windows\SysWow64\msxml3r.dll
2015-07-23 07:28:49 2048 ----a-w- C:\windows\System32\msxml3r.dll
2015-07-23 07:28:49 1237504 ----a-w- C:\windows\SysWow64\msxml3.dll
2015-07-23 07:26:11 12222168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2015-07-23 07:25:34 72192 ----a-w- C:\windows\System32\aelupsvc.dll
2015-07-23 07:25:34 342016 ----a-w- C:\windows\System32\apphelp.dll
2015-07-23 07:25:34 295936 ----a-w- C:\windows\SysWow64\apphelp.dll
2015-07-23 07:25:34 23552 ----a-w- C:\windows\System32\sdbinst.exe
2015-07-23 07:25:33 6656 ----a-w- C:\windows\System32\shimeng.dll
2015-07-23 07:25:33 5120 ----a-w- C:\windows\SysWow64\shimeng.dll
2015-07-23 07:25:33 20992 ----a-w- C:\windows\SysWow64\sdbinst.exe
2015-07-23 07:24:04 79360 ----a-w- C:\windows\System32\clfsw32.dll
2015-07-23 07:24:04 58880 ----a-w- C:\windows\SysWow64\clfsw32.dll
2015-07-23 07:24:04 367552 ----a-w- C:\windows\System32\clfs.sys
2015-07-23 06:39:06 0 ---ha-w- C:\Users\New User\AppData\Local\BIT425.tmp
2015-07-20 21:18:22 1190000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E7133028-A446-4B95-A697-F6C5E5C9BC94}\gapaengine.dll
2015-07-14 09:06:35 6420480 ----a-w- C:\Program Files (x86)\GUT6991.tmp
2015-07-14 09:06:35 -------- d-----w- C:\Program Files (x86)\GUM6990.tmp
.
==================== Find3M ====================
.
2015-07-23 07:11:33 778416 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2015-07-23 07:11:33 142512 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-07-15 03:19:54 41984 ----a-w- C:\windows\System32\lpk.dll
2015-07-15 03:19:50 100864 ----a-w- C:\windows\System32\fontsub.dll
2015-07-15 03:19:46 14336 ----a-w- C:\windows\System32\dciman32.dll
2015-07-15 03:19:45 46080 ----a-w- C:\windows\System32\atmlib.dll
2015-07-15 02:55:37 70656 ----a-w- C:\windows\SysWow64\fontsub.dll
2015-07-15 02:55:35 10240 ----a-w- C:\windows\SysWow64\dciman32.dll
2015-07-15 02:55:32 34304 ----a-w- C:\windows\SysWow64\atmlib.dll
2015-07-15 02:54:33 25600 ----a-w- C:\windows\SysWow64\lpk.dll
2015-07-15 01:59:42 372224 ----a-w- C:\windows\System32\atmfd.dll
2015-07-15 01:52:35 299008 ----a-w- C:\windows\SysWow64\atmfd.dll
2015-07-09 17:59:59 17856 ----a-w- C:\windows\System32\CompatTelRunner.exe
2015-07-09 17:58:56 192000 ----a-w- C:\windows\System32\wuwebv.dll
2015-07-09 17:58:55 98304 ----a-w- C:\windows\System32\wudriver.dll
2015-07-09 17:58:55 3154944 ----a-w- C:\windows\System32\wucltux.dll
2015-07-09 17:58:41 726528 ----a-w- C:\windows\System32\generaltel.dll
2015-07-09 17:58:34 91136 ----a-w- C:\windows\System32\WinSetupUI.dll
2015-07-09 17:58:31 765440 ----a-w- C:\windows\System32\invagent.dll
2015-07-09 17:58:26 433664 ----a-w- C:\windows\System32\devinv.dll
2015-07-09 17:58:25 12288 ----a-w- C:\windows\System32\wu.upgrade.ps.dll
2015-07-09 17:58:24 1085440 ----a-w- C:\windows\System32\appraiser.dll
2015-07-09 17:58:23 67584 ----a-w- C:\windows\System32\acmigration.dll
2015-07-09 17:58:23 227328 ----a-w- C:\windows\System32\aepdu.dll
2015-07-09 17:58:20 37376 ----a-w- C:\windows\System32\wuapp.exe
2015-07-09 17:50:11 1145856 ----a-w- C:\windows\System32\aeinv.dll
2015-07-09 17:43:25 93184 ----a-w- C:\windows\SysWow64\wudriver.dll
2015-07-09 17:43:25 173056 ----a-w- C:\windows\SysWow64\wuwebv.dll
2015-07-09 17:42:47 34816 ----a-w- C:\windows\SysWow64\wuapp.exe
2015-07-05 10:08:23 300704 ------w- C:\windows\System32\MpSigStub.exe
2015-07-02 21:08:53 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2015-07-02 20:40:34 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2015-07-01 20:56:03 95680 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2015-07-01 20:56:03 155584 ----a-w- C:\windows\System32\drivers\ksecpkg.sys
2015-07-01 20:49:53 210944 ----a-w- C:\windows\System32\wdigest.dll
2015-07-01 20:49:47 86528 ----a-w- C:\windows\System32\TSpkg.dll
2015-07-01 20:49:45 29184 ----a-w- C:\windows\System32\sspisrv.dll
2015-07-01 20:49:45 136192 ----a-w- C:\windows\System32\sspicli.dll
2015-07-01 20:49:42 342016 ----a-w- C:\windows\System32\schannel.dll
2015-07-01 20:49:42 28160 ----a-w- C:\windows\System32\secur32.dll
2015-07-01 20:49:41 1216512 ----a-w- C:\windows\System32\rpcrt4.dll
2015-07-01 20:49:23 309760 ----a-w- C:\windows\System32\ncrypt.dll
2015-07-01 20:49:22 315392 ----a-w- C:\windows\System32\msv1_0.dll
2015-07-01 20:49:11 729088 ----a-w- C:\windows\System32\kerberos.dll
2015-07-01 20:49:11 1461760 ----a-w- C:\windows\System32\lsasrv.dll
2015-07-01 20:48:34 44032 ----a-w- C:\windows\System32\cryptbase.dll
2015-07-01 20:48:34 22016 ----a-w- C:\windows\System32\credssp.dll
2015-07-01 20:47:38 31232 ----a-w- C:\windows\System32\lsass.exe
2015-07-01 20:47:18 64000 ----a-w- C:\windows\System32\auditpol.exe
2015-07-01 20:43:51 60416 ----a-w- C:\windows\System32\msobjs.dll
2015-07-01 20:43:37 146432 ----a-w- C:\windows\System32\msaudite.dll
2015-07-01 20:39:24 686080 ----a-w- C:\windows\System32\adtschema.dll
2015-07-01 20:30:43 172032 ----a-w- C:\windows\SysWow64\wdigest.dll
2015-07-01 20:30:40 65536 ----a-w- C:\windows\SysWow64\TSpkg.dll
2015-07-01 20:30:37 248832 ----a-w- C:\windows\SysWow64\schannel.dll
2015-07-01 20:30:37 22016 ----a-w- C:\windows\SysWow64\secur32.dll
2015-07-01 20:30:33 221184 ----a-w- C:\windows\SysWow64\ncrypt.dll
2015-07-01 20:30:32 259584 ----a-w- C:\windows\SysWow64\msv1_0.dll
2015-07-01 20:30:27 552960 ----a-w- C:\windows\SysWow64\kerberos.dll
2015-07-01 20:30:21 36864 ----a-w- C:\windows\SysWow64\cryptbase.dll
2015-07-01 20:30:21 17408 ----a-w- C:\windows\SysWow64\credssp.dll
2015-07-01 20:29:46 50176 ----a-w- C:\windows\SysWow64\auditpol.exe
2015-07-01 20:29:34 96768 ----a-w- C:\windows\SysWow64\sspicli.dll
2015-07-01 20:29:34 665088 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2015-07-01 20:27:04 60416 ----a-w- C:\windows\SysWow64\msobjs.dll
2015-07-01 20:26:52 146432 ----a-w- C:\windows\SysWow64\msaudite.dll
2015-07-01 20:24:59 686080 ----a-w- C:\windows\SysWow64\adtschema.dll
2015-07-01 19:27:34 159232 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
2015-07-01 19:26:43 290816 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
2015-07-01 19:26:37 129024 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
2015-06-27 02:47:11 814080 ----a-w- C:\windows\System32\jscript9diag.dll
2015-06-27 02:43:26 5923840 ----a-w- C:\windows\System32\jscript9.dll
2015-06-27 01:58:17 620032 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2015-06-27 01:39:37 4520448 ----a-w- C:\windows\SysWow64\jscript9.dll
2015-06-25 08:57:44 3207168 ----a-w- C:\windows\System32\win32k.sys
2015-06-20 20:06:50 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2015-06-20 19:50:10 66560 ----a-w- C:\windows\System32\iesetup.dll
2015-06-20 19:49:17 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2015-06-20 19:49:09 417792 ----a-w- C:\windows\System32\html.iec
2015-06-20 19:49:08 584192 ----a-w- C:\windows\System32\vbscript.dll
2015-06-20 19:48:29 88064 ----a-w- C:\windows\System32\MshtmlDac.dll
2015-06-20 19:34:46 114688 ----a-w- C:\windows\System32\ieetwcollector.exe
2015-06-20 19:34:45 144384 ----a-w- C:\windows\System32\ieUnatt.exe
2015-06-20 19:25:28 968704 ----a-w- C:\windows\System32\MsSpellCheckingFacility.exe
2015-06-20 19:13:07 77824 ----a-w- C:\windows\System32\JavaScriptCollectionAgent.dll
2015-06-20 18:46:53 1359360 ----a-w- C:\windows\System32\mshtmlmedia.dll
2015-06-20 18:46:48 2125824 ----a-w- C:\windows\System32\inetcpl.cpl
2015-06-20 18:26:01 2427392 ----a-w- C:\windows\System32\wininet.dll
2015-06-19 18:25:41 504320 ----a-w- C:\windows\SysWow64\vbscript.dll
2015-06-19 18:25:35 62464 ----a-w- C:\windows\SysWow64\iesetup.dll
2015-06-19 18:24:43 47616 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2015-06-19 18:24:27 341504 ----a-w- C:\windows\SysWow64\html.iec
2015-06-19 18:23:26 64000 ----a-w- C:\windows\SysWow64\MshtmlDac.dll
2015-06-19 18:13:10 115712 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2015-06-19 17:57:45 60416 ----a-w- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-06-19 17:39:13 1155072 ----a-w- C:\windows\SysWow64\mshtmlmedia.dll
2015-06-19 17:15:43 1951232 ----a-w- C:\windows\SysWow64\wininet.dll
2015-06-17 17:47:05 404992 ----a-w- C:\windows\System32\gdi32.dll
2015-06-17 17:37:03 312320 ----a-w- C:\windows\SysWow64\gdi32.dll
2015-06-15 21:50:42 112064 ----a-w- C:\windows\System32\consent.exe
.
============= FINISH: 22:09:55.41 ===============