Internet is better. What ever is it was is gone. I never called my ISP because as I indicted in my original post, if I connected directly to the router via ethernet cable, I was seeing 27+ mbs. When I originally posted I was only seeing less then 1 via wireless, but other devices in the house were seeing over 10.
What ever it was, I am seeing between 7 and 12 now.
Anyways, logs are attached. Doesn't seem that Malware was what was causing it.
1)
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-09-2014
Ran by Scott (administrator) on SCOTT-PC on 18-09-2014 20:20:47
Running from C:\Users\Scott\Downloads
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\epson\EpsonCustomerParticipation\EPCP.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\TpScrex.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Lenovo Group Limited) C:\Program Files\ThinkPad\Utilities\SCHTASK.EXE
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Lenovo) C:\Program Files\ThinkPad\Utilities\PWMDBSVC.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [PWMTRV] => rundll32 "C:\Program Files\ThinkPad\Utilities\PWMTR32V.DLL",PwrMgrBkGndMonitor
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
BootExecute: autocheck autochk * sdnclean.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1B81FC22DF76CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
Chrome:
=======
CHR CustomProfile: C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-23]
CHR Extension: (Google Drive) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-23]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (YouTube) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-23]
CHR Extension: (Google Search) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-23]
CHR Extension: (Google Wallet) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-23]
CHR Extension: (Gmail) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-23]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 EpsonCustomerParticipation; C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [521600 2011-06-09] (SEIKO EPSON CORPORATION)
S3 Lenovo EasyPlus Hotspot; C:\Program Files\Common Files\lenovo\easyplussdk\bin\EPHotspot.exe [458496 2014-08-06] (Lenovo)
S2 LENOVO.MICMUTE; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [110128 2014-05-27] (Lenovo Group Limited)
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
S3 PwmEWSvc; C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE [1664856 2014-03-20] (Lenovo Group Limited)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 SUService; C:\Program Files\Lenovo\System Update\SUService.exe [24560 2014-06-18] ()
R2 TPHKLOAD; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [116208 2014-06-10] (Lenovo Group Limited)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 e1express; C:\Windows\System32\DRIVERS\e1e6232.sys [232312 2012-10-30] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
S3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [139776 2013-10-25] (Prolific Technology Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-18 20:20 - 2014-09-18 20:21 - 00008663 _____ () C:\Users\Scott\Downloads\FRST.txt
2014-09-18 20:20 - 2014-09-18 20:20 - 00000000 ____D () C:\FRST
2014-09-18 20:19 - 2014-09-18 20:19 - 01097728 _____ (Farbar) C:\Users\Scott\Downloads\FRST.exe
2014-09-18 20:12 - 2014-09-18 20:12 - 245064646 _____ () C:\Windows\MEMORY.DMP
2014-09-18 20:12 - 2014-09-18 20:12 - 00908624 _____ () C:\Windows\Minidump\091814-15631-01.dmp
2014-09-16 19:53 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-09-16 19:52 - 2014-09-16 19:58 - 00000000 ____D () C:\AdwCleaner
2014-09-16 19:51 - 2014-09-16 19:51 - 01373475 _____ () C:\Users\Scott\Downloads\adwcleaner_3.310.exe
2014-09-15 19:57 - 2014-09-15 20:01 - 00025208 _____ () C:\Users\Scott\Downloads\Result.txt
2014-09-15 19:54 - 2014-09-15 19:54 - 00401920 _____ (Farbar) C:\Users\Scott\Downloads\MiniToolBox.exe
2014-09-15 19:41 - 2014-09-15 19:40 - 00448512 _____ (OldTimer Tools) C:\Users\Scott\Desktop\TFC.exe
2014-09-15 19:40 - 2014-09-15 19:40 - 00448512 _____ (OldTimer Tools) C:\Users\Scott\Downloads\TFC.exe
2014-09-13 12:38 - 2014-09-13 12:38 - 00001944 _____ () C:\Users\Public\Desktop\SHAREit.lnk
2014-09-13 12:38 - 2014-09-13 12:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-09-13 10:26 - 2014-09-13 10:26 - 00052448 _____ () C:\Users\Scott\Desktop\OTL 9-13-2014 1030am.txt
2014-09-13 10:20 - 2014-09-13 10:20 - 00043520 _____ () C:\Users\Scott\Downloads\Extras.Txt
2014-09-13 10:18 - 2014-09-13 10:18 - 00052448 _____ () C:\Users\Scott\Downloads\OTL.Txt
2014-09-13 10:11 - 2014-09-13 10:11 - 00001083 _____ () C:\Users\Scott\Desktop\OTL - Shortcut.lnk
2014-09-13 10:10 - 2014-09-13 10:10 - 00000503 _____ () C:\Users\Scott\Downloads\Desktop.lnk
2014-09-13 10:09 - 2014-09-13 10:09 - 00602112 _____ (OldTimer Tools) C:\Users\Scott\Downloads\OTL.exe
2014-09-13 09:43 - 2014-09-13 09:43 - 00006414 _____ () C:\Users\Scott\Downloads\MyDefrag.dat
2014-09-13 09:36 - 2014-09-13 09:36 - 00000538 _____ () C:\Users\Scott\Downloads\MyDefrag.debuglog
2014-09-13 09:33 - 2014-09-13 09:33 - 00000000 ____D () C:\Users\Scott\AppData\Local\SlimWare Utilities Inc
2014-09-13 09:30 - 2014-09-13 09:37 - 00000000 ____D () C:\Program Files\SlimCleaner
2014-09-13 09:30 - 2014-09-13 09:30 - 00002455 _____ () C:\Users\Public\Desktop\SlimCleaner.lnk
2014-09-13 09:30 - 2014-09-13 09:30 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-09-13 09:30 - 2014-09-13 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner
2014-09-13 09:28 - 2014-09-13 09:28 - 00801088 _____ (SlimWare Utilities, Inc.) C:\Users\Scott\Downloads\SlimCleaner-setup.exe
2014-09-11 21:45 - 2014-09-12 19:23 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-09-11 21:45 - 2014-09-11 21:45 - 00002135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-09-11 21:45 - 2014-09-11 21:45 - 00002123 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-09-11 21:45 - 2014-09-11 21:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-09-11 21:45 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-09-11 21:44 - 2014-09-12 05:18 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-09-11 21:26 - 2014-09-11 21:43 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Scott\Downloads\spybot-2.4.exe
2014-09-11 21:11 - 2014-09-14 08:10 - 00000000 ____D () C:\Windows\pss
2014-09-11 19:56 - 2014-08-18 16:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-11 19:56 - 2014-08-18 16:57 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-11 19:56 - 2014-08-18 16:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-11 19:56 - 2014-08-18 16:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-11 19:56 - 2014-08-18 16:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-11 19:56 - 2014-08-18 16:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-11 19:56 - 2014-08-18 16:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-11 19:55 - 2014-08-19 12:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-11 19:55 - 2014-08-18 17:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-11 19:55 - 2014-08-18 17:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-11 19:55 - 2014-08-18 16:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-11 19:55 - 2014-08-18 16:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-11 19:55 - 2014-08-18 16:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-11 19:55 - 2014-08-18 16:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-11 19:55 - 2014-08-18 16:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-11 19:55 - 2014-08-18 16:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-11 19:55 - 2014-08-18 16:36 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-11 19:55 - 2014-08-18 16:30 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-11 19:55 - 2014-08-18 16:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-11 19:55 - 2014-08-18 16:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-11 19:55 - 2014-08-18 16:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-11 19:55 - 2014-08-18 16:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-11 19:55 - 2014-08-18 16:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-11 19:55 - 2014-08-18 16:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-11 19:55 - 2014-08-18 16:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-11 19:55 - 2014-08-18 16:08 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-11 19:55 - 2014-08-18 16:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-11 19:55 - 2014-08-18 15:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-11 19:55 - 2014-08-18 15:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-11 19:55 - 2014-08-18 15:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-11 19:54 - 2014-06-26 20:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-11 19:40 - 2014-09-14 08:16 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-11 19:40 - 2014-09-11 19:40 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-11 19:40 - 2014-09-11 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-11 19:39 - 2014-09-11 19:40 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-09-11 19:39 - 2014-09-11 19:39 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-11 19:39 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-11 19:39 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-11 19:39 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-11 19:37 - 2014-09-11 19:38 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Scott\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-11 19:27 - 2014-07-06 20:40 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-11 19:27 - 2014-07-06 20:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-11 19:21 - 2014-08-01 06:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-11 19:21 - 2014-06-23 21:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-11 19:20 - 2014-09-04 20:52 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-11 19:20 - 2014-09-04 20:47 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-27 17:33 - 2014-08-22 20:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-27 17:33 - 2014-08-22 19:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-21 07:06 - 2014-08-21 07:06 - 00302507 _____ () C:\Users\Scott\Downloads\Google Maps 379 - 1058.htm
2014-08-21 07:06 - 2014-08-21 07:06 - 00000000 ____D () C:\Users\Scott\Downloads\Google Maps 379 - 1058_files
2014-08-21 07:03 - 2014-08-22 08:29 - 00000000 ____D () C:\Users\Scott\Documents\Maps
2014-08-19 14:10 - 2014-08-20 11:58 - 00000000 ____D () C:\Users\Scott\Documents\Vacation 2014
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-18 20:21 - 2014-09-18 20:20 - 00008663 _____ () C:\Users\Scott\Downloads\FRST.txt
2014-09-18 20:20 - 2014-09-18 20:20 - 00000000 ____D () C:\FRST
2014-09-18 20:19 - 2014-09-18 20:19 - 01097728 _____ (Farbar) C:\Users\Scott\Downloads\FRST.exe
2014-09-18 20:19 - 2009-07-13 23:34 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-18 20:19 - 2009-07-13 23:34 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-18 20:15 - 2014-05-23 19:56 - 01071084 _____ () C:\Windows\WindowsUpdate.log
2014-09-18 20:12 - 2014-09-18 20:12 - 245064646 _____ () C:\Windows\MEMORY.DMP
2014-09-18 20:12 - 2014-09-18 20:12 - 00908624 _____ () C:\Windows\Minidump\091814-15631-01.dmp
2014-09-18 20:12 - 2014-06-11 18:20 - 00000000 ____D () C:\Windows\Minidump
2014-09-18 20:12 - 2014-05-23 18:41 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-18 20:12 - 2009-07-13 23:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-18 20:12 - 2009-07-13 23:39 - 00037149 _____ () C:\Windows\setupact.log
2014-09-18 18:24 - 2014-05-23 18:41 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-16 19:59 - 2010-11-20 16:48 - 00063798 _____ () C:\Windows\PFRO.log
2014-09-16 19:58 - 2014-09-16 19:52 - 00000000 ____D () C:\AdwCleaner
2014-09-16 19:51 - 2014-09-16 19:51 - 01373475 _____ () C:\Users\Scott\Downloads\adwcleaner_3.310.exe
2014-09-15 20:01 - 2014-09-15 19:57 - 00025208 _____ () C:\Users\Scott\Downloads\Result.txt
2014-09-15 19:54 - 2014-09-15 19:54 - 00401920 _____ (Farbar) C:\Users\Scott\Downloads\MiniToolBox.exe
2014-09-15 19:40 - 2014-09-15 19:41 - 00448512 _____ (OldTimer Tools) C:\Users\Scott\Desktop\TFC.exe
2014-09-15 19:40 - 2014-09-15 19:40 - 00448512 _____ (OldTimer Tools) C:\Users\Scott\Downloads\TFC.exe
2014-09-14 08:16 - 2014-09-11 19:40 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-14 08:10 - 2014-09-11 21:11 - 00000000 ____D () C:\Windows\pss
2014-09-13 16:09 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-09-13 12:39 - 2014-05-24 14:28 - 00000000 ____D () C:\Users\Scott\AppData\Local\Lenovo
2014-09-13 12:38 - 2014-09-13 12:38 - 00001944 _____ () C:\Users\Public\Desktop\SHAREit.lnk
2014-09-13 12:38 - 2014-09-13 12:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-09-13 12:38 - 2014-05-24 01:42 - 00000000 ____D () C:\Program Files\Common Files\lenovo
2014-09-13 12:38 - 2014-05-24 01:39 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-09-13 12:38 - 2014-05-23 18:49 - 00000000 ____D () C:\Program Files\Lenovo
2014-09-13 11:45 - 2014-06-03 20:51 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2014-09-13 11:45 - 2014-05-23 22:53 - 00000000 ____D () C:\ProgramData\Lenovo
2014-09-13 11:27 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-09-13 11:26 - 2010-11-20 16:01 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-13 10:26 - 2014-09-13 10:26 - 00052448 _____ () C:\Users\Scott\Desktop\OTL 9-13-2014 1030am.txt
2014-09-13 10:20 - 2014-09-13 10:20 - 00043520 _____ () C:\Users\Scott\Downloads\Extras.Txt
2014-09-13 10:18 - 2014-09-13 10:18 - 00052448 _____ () C:\Users\Scott\Downloads\OTL.Txt
2014-09-13 10:11 - 2014-09-13 10:11 - 00001083 _____ () C:\Users\Scott\Desktop\OTL - Shortcut.lnk
2014-09-13 10:10 - 2014-09-13 10:10 - 00000503 _____ () C:\Users\Scott\Downloads\Desktop.lnk
2014-09-13 10:09 - 2014-09-13 10:09 - 00602112 _____ (OldTimer Tools) C:\Users\Scott\Downloads\OTL.exe
2014-09-13 09:43 - 2014-09-13 09:43 - 00006414 _____ () C:\Users\Scott\Downloads\MyDefrag.dat
2014-09-13 09:37 - 2014-09-13 09:30 - 00000000 ____D () C:\Program Files\SlimCleaner
2014-09-13 09:36 - 2014-09-13 09:36 - 00000538 _____ () C:\Users\Scott\Downloads\MyDefrag.debuglog
2014-09-13 09:36 - 2014-05-23 20:52 - 00000000 ____D () C:\Windows\Panther
2014-09-13 09:33 - 2014-09-13 09:33 - 00000000 ____D () C:\Users\Scott\AppData\Local\SlimWare Utilities Inc
2014-09-13 09:30 - 2014-09-13 09:30 - 00002455 _____ () C:\Users\Public\Desktop\SlimCleaner.lnk
2014-09-13 09:30 - 2014-09-13 09:30 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-09-13 09:30 - 2014-09-13 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner
2014-09-13 09:28 - 2014-09-13 09:28 - 00801088 _____ (SlimWare Utilities, Inc.) C:\Users\Scott\Downloads\SlimCleaner-setup.exe
2014-09-13 09:23 - 2014-05-23 18:43 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-12 19:23 - 2014-09-11 21:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-09-12 17:17 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-12 05:18 - 2014-09-11 21:44 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-09-11 21:45 - 2014-09-11 21:45 - 00002135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-09-11 21:45 - 2014-09-11 21:45 - 00002123 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-09-11 21:45 - 2014-09-11 21:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-09-11 21:43 - 2014-09-11 21:26 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Scott\Downloads\spybot-2.4.exe
2014-09-11 20:36 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\Speech
2014-09-11 19:54 - 2014-05-23 21:39 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-11 19:48 - 2014-05-23 21:39 - 98758480 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-11 19:47 - 2014-05-23 19:43 - 00002155 _____ () C:\Windows\epplauncher.mif
2014-09-11 19:47 - 2014-05-23 19:43 - 00002117 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-09-11 19:46 - 2014-05-23 22:23 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-11 19:46 - 2014-05-23 19:43 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-09-11 19:40 - 2014-09-11 19:40 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-11 19:40 - 2014-09-11 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-11 19:40 - 2014-09-11 19:39 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-09-11 19:39 - 2014-09-11 19:39 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-11 19:38 - 2014-09-11 19:37 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Scott\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-11 17:49 - 2009-07-13 23:52 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-09-05 17:02 - 2014-05-23 20:07 - 00013824 _____ () C:\Users\Scott\Documents\Oil Changes.xls
2014-09-04 20:52 - 2014-09-11 19:20 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-04 20:47 - 2014-09-11 19:20 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-29 15:38 - 2009-07-13 23:33 - 00333352 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-25 18:59 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\rescache
2014-08-25 17:54 - 2014-08-03 19:50 - 00000000 ____D () C:\Users\Scott\Documents\Plate Renewals
2014-08-25 17:40 - 2014-05-27 21:05 - 00036864 _____ () C:\Users\Scott\Documents\Accounting 2010.xlr
2014-08-22 20:46 - 2014-08-27 17:33 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 19:42 - 2014-08-27 17:33 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 08:29 - 2014-08-21 07:03 - 00000000 ____D () C:\Users\Scott\Documents\Maps
2014-08-21 07:06 - 2014-08-21 07:06 - 00302507 _____ () C:\Users\Scott\Downloads\Google Maps 379 - 1058.htm
2014-08-21 07:06 - 2014-08-21 07:06 - 00000000 ____D () C:\Users\Scott\Downloads\Google Maps 379 - 1058_files
2014-08-20 11:58 - 2014-08-19 14:10 - 00000000 ____D () C:\Users\Scott\Documents\Vacation 2014
2014-08-19 12:39 - 2014-09-11 19:55 - 00327872 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
Some content of TEMP:
====================
C:\Users\Scott\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-11 20:32
==================== End Of Log ============================
2)
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-09-2014
Ran by Scott at 2014-09-18 20:21:56
Running from C:\Users\Scott\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Corel WordPerfect Suite 8 (HKLM\...\Corel WordPerfect Suite 8) (Version: - )
Epson Connect (HKLM\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX330 Series Printer Uninstall (HKLM\...\EPSON NX330 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Intel RSX 3D (HKLM\...\RSX2Uninst) (Version: - )
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1867 - Intel Corporation)
InterACQ 2006 Ver 4.0 (HKLM\...\InterACQ 2006) (Version: Ver 4.0 - Plus 1 Micro, Inc)
Lenovo Patch Utility (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.05 - )
Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - )
Lenovo System Update (HKLM\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.06.0016 - Lenovo)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Metric Collection SDK (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard Edition 2003 (HKLM\...\{91120409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Security Client (Version: 4.6.0305.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
On Screen Display (HKLM\...\OnScreenDisplay) (Version: 6.73.00 - )
Power Manager (HKLM\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.65.1 - Lenovo Group Limited)
SHAREit (HKLM\...\SHAREit_is1) (Version: 2.1.4.0 - Lenovo Group Limited)
SlimCleaner (HKLM\...\{6B8D6199-EE44-4FD7-813A-6D8C62C9B384}) (Version: 4.0.30878 - SlimWare Utilities, Inc.)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.41 - )
ThinkPad Modem (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_10140588) (Version: 7.62.00 - )
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.7 - )
ThinkPad UltraNav Utility (HKLM\...\{17CBC505-D1AE-459D-B445-3D2000A85842}) (Version: 2.13.0 - Lenovo)
WinRAR 5.10 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
Zeitronix Data Logger v3.0.7 (HKLM\...\{DA24DF5A-4FD4-45A8-91AF-67565529C28E}) (Version: 3.0.7 - Zeitronix)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
20-08-2014 13:53:28 Windows Update
23-08-2014 22:48:59 Windows Update
27-08-2014 22:32:57 Windows Update
29-08-2014 02:32:12 Windows Update
01-09-2014 23:29:12 Windows Update
05-09-2014 03:31:38 Windows Update
09-09-2014 00:15:32 Windows Update
12-09-2014 00:38:17 Windows Update
16-09-2014 01:21:43 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 21:04 - 2014-09-15 19:37 - 00000021 _RASH C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {079B6172-C175-4B5E-93F9-2E30EE821CAB} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files\Lenovo\System Update\tvsuShim.exe [2014-06-18] ()
Task: {0FEC700C-D2EA-4C24-9A41-9683B5B5D63F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-05-23] (Google Inc.)
Task: {2D48A24F-BBFB-4EA9-B512-5F5513D3246C} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo)
Task: {53ADF6B8-95E7-45FA-972A-660519369C4A} - System32\Tasks\PMTask => C:\Program Files\ThinkPad\Utilities\PwmIdTsv.exe [2014-03-20] (Lenovo Group Limited)
Task: {63B3C349-8A19-4EEE-B9BA-971D30CB5A74} - System32\Tasks\SlimCleaner Run => C:\Program Files\SlimCleaner\SlimCleaner.exe [2013-07-10] (SlimWare Utilities, Inc.)
Task: {644B68F1-F4AE-42B9-96B3-1CDD6BEE389F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {6ACB95FD-13AF-4F62-9273-8C9D51514BA2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-05-23] (Google Inc.)
Task: {6D728A7F-87D9-4A76-BBE0-3DB77649A58B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 35 => C:\Program Files\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-05-30] (Lenovo)
Task: {87702086-6D79-4394-9481-0EEE29A569D4} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: {8F8895AF-1254-4402-A0ED-E3356412A387} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {C72F775E-5608-4309-BCF6-BBBCC3094634} - System32\Tasks\TVT\LenovoWERMonitor => C:\Program Files\Common Files\lenovo\SUP\sup_wermonitor_shim.exe [2014-09-01] ()
Task: {E6BA6F71-88E7-4D37-AB4C-7544E4D7D66E} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-04-24] (Synaptics Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-09-11 21:45 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-09-11 21:45 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2014-09-11 21:45 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-09-11 21:45 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-09-11 21:45 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-06-14 11:11 - 2014-03-20 06:05 - 00095232 ____N () C:\Program Files\ThinkPad\Utilities\US\PWMRT32V.DLL
2014-05-24 00:21 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\Scott\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-05-24 00:21 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\Scott\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2014-09-13 09:23 - 2014-09-03 22:01 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.120\pdf.dll
2014-09-13 09:23 - 2014-09-03 22:01 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll
2014-09-13 09:23 - 2014-09-03 22:01 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Corel Desktop Application Director 8.LNK => C:\Windows\pss\Corel Desktop Application Director 8.LNK.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: EEventManager => "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: SDTray => "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/18/2014 08:13:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/18/2014 03:58:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/17/2014 05:17:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/16/2014 08:00:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 08:10:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 08:07:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 07:52:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 07:48:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 07:38:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 05:22:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GoogleUpdate.exe, version: 1.3.21.103, time stamp: 0x4f3c6d6c
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea91c
Exception code: 0xc0000005
Fault offset: 0x00034d60
Faulting process id: 0x7e8
Faulting application start time: 0xGoogleUpdate.exe0
Faulting application path: GoogleUpdate.exe1
Faulting module path: GoogleUpdate.exe2
Report Id: GoogleUpdate.exe3
System errors:
=============
Error: (09/18/2014 08:12:35 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000009f (0x00000003, 0x85c5c518, 0x82b77ae0, 0x862b2c18)C:\Windows\MEMORY.DMP091814-15631-01
Error: (09/18/2014 08:12:28 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 6:25:45 PM on 9/18/2014 was unexpected.
Error: (09/17/2014 05:17:38 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:58:41 PM on 9/16/2014 was unexpected.
Error: (09/15/2014 08:06:02 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.183.2486.0
Update Source: %NT AUTHORITY59
Update Stage: 4.6.0305.00
Source Path: 4.6.0305.01
Signature Type: %NT AUTHORITY602
Update Type: %NT AUTHORITY604
User: NT AUTHORITY\SYSTEM
Current Engine Version: %NT AUTHORITY605
Previous Engine Version: %NT AUTHORITY606
Error code: %NT AUTHORITY607
Error description: %NT AUTHORITY608
Error: (09/15/2014 08:06:02 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.183.2486.0
Update Source: %NT AUTHORITY59
Update Stage: 4.6.0305.00
Source Path: 4.6.0305.01
Signature Type: %NT AUTHORITY602
Update Type: %NT AUTHORITY604
User: NT AUTHORITY\SYSTEM
Current Engine Version: %NT AUTHORITY605
Previous Engine Version: %NT AUTHORITY606
Error code: %NT AUTHORITY607
Error description: %NT AUTHORITY608
Error: (09/15/2014 04:56:52 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.183.2486.0
Update Source: %NT AUTHORITY59
Update Stage: 4.6.0305.00
Source Path: 4.6.0305.01
Signature Type: %NT AUTHORITY602
Update Type: %NT AUTHORITY604
User: NT AUTHORITY\SYSTEM
Current Engine Version: %NT AUTHORITY605
Previous Engine Version: %NT AUTHORITY606
Error code: %NT AUTHORITY607
Error description: %NT AUTHORITY608
Error: (09/11/2014 09:23:10 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY)
Description: The event logging service encountered an error (res=32) while initializing logging resources for channel Microsoft-Windows-Windows Defender/WHC.
Error: (09/11/2014 09:17:20 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The Windows Update service did not shut down properly after receiving a preshutdown control.
Error: (09/05/2014 03:42:56 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000009f (0x00000003, 0x87726028, 0x82b69ae0, 0x8538fb10)C:\Windows\MEMORY.DMP090514-29655-01
Error: (09/05/2014 03:42:39 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 6:33:17 AM on 9/5/2014 was unexpected.
Microsoft Office Sessions:
=========================
Error: (09/18/2014 08:13:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/18/2014 03:58:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/17/2014 05:17:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/16/2014 08:00:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 08:10:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 08:07:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 07:52:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 07:48:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 07:38:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/15/2014 05:22:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: GoogleUpdate.exe1.3.21.1034f3c6d6cntdll.dll6.1.7601.18247521ea91cc000000500034d607e801cfd0cde7f66764C:\Program Files\Google\Update\GoogleUpdate.exeC:\Windows\SYSTEM32\ntdll.dll3b503647-3cc2-11e4-9bdb-88c778feb1f8
==================== Memory info ===========================
Processor: Genuine Intel® CPU T2300 @ 1.66GHz
Percentage of memory in use: 42%
Total physical RAM: 3062.43 MB
Available physical RAM: 1752.45 MB
Total Pagefile: 6123.15 MB
Available Pagefile: 4584.99 MB
Total Virtual: 2047.88 MB
Available Virtual: 1913.12 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:196.7 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: E588E766)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End Of Log ============================