Kidpon
-
Posts
3 -
Joined
-
Last visited
-
My computer plays random ads sounds
Kidpon replied to Kidpon's topic in Resolved Malware Removal Logs
what malwares have infected my computer? -
My computer plays random ads sounds
Kidpon replied to Kidpon's topic in Resolved Malware Removal Logs
I have scanned and these are the logs DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16635 BrowserJavaVersion: 10.11.2Run by Ponkid at 5:22:31 on 2013-07-29Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.8085.3270 [GMT 7:00].AV: Microsoft Security Essentials *Enabled/Outdated* {641105E6-77ED-3F35-A304-765193BCB75F}AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: Microsoft Security Essentials *Enabled/Outdated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k RPCSSc:\Program Files\Microsoft Security Client\MsMpEng.exeC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\atieclxx.exeC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\SYSTEM32\WISPTIS.EXEC:\Windows\System32\spoolsv.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeC:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exeC:\Program Files (x86)\Bonjour\mDNSResponder.exeC:\Program Files\ASRock\XFast LAN\spd.exeC:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exeC:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exeC:\Windows\system32\sesinetd.exeC:\Windows\system32\hserver.exeC:\Program Files\Intel\iCLS Client\HeciServer.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exeC:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exec:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exeC:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exeC:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exeC:\Windows\SysWOW64\PnkBstrA.exec:\Program Files\Common Files\Protexis\License Service\PsiService_2.exeC:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exec:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\system32\Wacom_Tablet.exeC:\Program Files\Smartfren AC692 UI\bin\MonServiceUDisk.exeC:\Windows\System32\svchost.exe -k secsvcsC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\system32\taskhost.exeC:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Windows\system32\Dwm.exeC:\Windows\SYSTEM32\WISPTIS.EXEC:\Program Files\Common Files\microsoft shared\ink\TabTip.exeC:\Windows\system32\taskeng.exeC:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exeC:\Windows\system32\WTablet\Wacom_TabletUser.exeC:\Windows\system32\Wacom_Tablet.exeC:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exeC:\Windows\System32\igfxpers.exeC:\Program Files\Realtek\Audio\HDA\RAVCpl64.exeC:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.exeC:\Program Files\ASRock\XFast LAN\cfosspeed.exeC:\Program Files\Microsoft Security Client\msseces.exeC:\Program Files (x86)\Steam\Steam.exeC:\Users\Ponkid\AppData\Local\Akamai\netsession_win.exeC:\zqsdqsdkza532120azeaze12qsd42z\Leap.exeC:\Users\Ponkid\AppData\Local\Akamai\netsession_win.exeC:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXEC:\Windows\system32\SearchIndexer.exeC:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\Dual Package.exeC:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exeC:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\TestDDCCI.exeC:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\cloneTestDDCCI.exeC:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\SmartHookTestApp.exeC:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exeC:\Program Files (x86)\XFastUSB\XFastUsb.exeC:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exeC:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exeC:\Windows\system32\wuauclt.exeC:\Windows\system32\wbem\unsecapp.exeC:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exeC:\Windows\sysWOW64\wbem\wmiprvse.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exeC:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Windows\System32\svchost.exe -k LocalServicePeerNetC:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\Windows\system32\NOTEPAD.EXEC:\Windows\SysWOW64\schtasks.exeC:\Windows\explorer.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Windows\system32\NOTEPAD.EXEC:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exeC:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Windows\system32\taskmgr.exeC:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exec:\Program Files\Microsoft Security Client\MpCmdRun.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Ponkid\AppData\Local\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exeC:\Windows\System32\svchost.exe -k WerSvcGroupC:\Windows\system32\SearchProtocolHost.exeC:\Windows\system32\SearchFilterHost.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uProxyOverride = <local>;*.localuURLSearchHooks: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - uURLSearchHooks: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\7.3\iobitappsToolbarIE.dlluURLSearchHooks: SearchHook Class: {D8278076-BC68-4484-9233-6E7F1628B56C} - uURLSearchHooks: Splashtop Connect SearchHook: {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - uURLSearchHooks: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dlluURLSearchHooks: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBrot.dllmURLSearchHooks: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dllmURLSearchHooks: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBrot.dllBHO: SearchNewTab: {03C9C9DD-F5F8-BDD5-038C-F0031130FD97} - BHO: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\7.3\iobitappsToolbarIE.dllBHO: SearchNewTab: {04B591B6-8943-5D19-7F58-A43DE9679FB1} - BHO: SearchNewTab: {08AFC53E-0397-BDAC-3456-9C532ABA2618} - BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dllBHO: contiNuetoSaVE: {11C150EE-3B5F-C592-3EBA-2BF17936FAC7} - BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllBHO: SearchNewTab: {1A0F5E51-744C-46E1-AF88-B9629D2CF5F0} - BHO: SearchNewTab: {207BE010-6750-65F6-1C57-DF5FAFEAC082} - BHO: SearchNewTab: {24CD6CAE-1993-F800-02B8-04604B7C7864} - C:\ProgramData\SearchNewTab\51f507c45b3bc.dllBHO: SearchNewTab: {2A3C0FE9-9779-3082-3D17-35BA985A9176} - BHO: SearchNewTab: {2C224AF3-8B12-DE7E-1799-584F521FB540} - BHO: KMP Media Toolbar: {4B4D5056-3600-A76A-76A7-7A786E7484D7} - BHO: contiinUEEtosaVe: {4ECFE4A6-0CB6-44E2-FD16-B0DF10785ACE} - BHO: SearchNewTab: {50789738-D487-0E3A-F491-02D4131329B1} - BHO: contiNuetoSaVE: {5588B74F-E083-AD69-235D-3555ACBA96D3} - BHO: SearchNewTab: {5882FB18-1157-ECC4-C260-F71332512A8B} - BHO: SearchNewTab: {5D3B04FE-D660-9E40-8CC0-1A9BC83AE051} - BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dllBHO: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBrot.dllBHO: contiNuetoSaVE: {6AB3BA98-5CFD-ECBD-D868-396BE65282BB} - BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\IPS\IPSBHO.dllBHO: SearchNewTab: {6EB0508C-0F5E-B41C-8AB4-E24134BAF26F} - BHO: conotiNuetosave: {8704F54E-04F5-7F12-5D19-7F5A41F09AAD} - BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: SearchNewTab: {935A1AAA-E861-20E4-96BB-B67969A48E2A} - BHO: SearchNewTab: {98EC62D7-0501-0ADB-527A-C6079AF60095} - BHO: coontiinueTosoave: {98EFB062-D953-A3ED-7409-120D7A1551AA} - BHO: cOnattinueotosave: {AEB603FA-395C-B43F-E4EF-27A9951E4C61} - BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLBHO: SearchNewTab: {BD3E4944-F6B6-DDCF-3913-6F2918448187} - BHO: SearchNewTab: {C023AC9B-C113-00ED-869B-6D42C2157DCC} - BHO: SearchNewTab: {C5AD0711-F9FC-7441-1BB4-80739A977B94} - BHO: SearchNewTab: {C7942604-2110-0915-0A17-378522AC1598} - BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllBHO: MyEmoticons Class: {DCC39ACE-709B-44EA-B062-5F6BE2774644} - C:\Users\Ponkid\AppData\Roaming\MyEmoticons\myemoticons-1.3.dllBHO: SearchNewTab: {E8C5C6E7-915E-064D-36C5-FED044BD3207} - BHO: cyointiynuuetossavue: {EC81BFAE-52EF-C24D-A5EC-207B93C88079} - BHO: SearchNewTab: {EEF20526-5662-BFDA-C5BF-186EC91CB209} - BHO: coontiinueTosoave: {F30DB853-EB2F-F751-263B-53066D78B892} - BHO: safuey sAivve: {F99F8993-0876-8B33-4BF7-2AEA5BFCF0B9} - C:\ProgramData\safuey sAivve\51f50663dcd05.dllBHO: coonotinuEtosayvee: {FBC972DF-8489-90E3-10F9-6DB3E8B82B0D} - BHO: Weekaepp: {FE790CA7-FDE6-93D9-74DB-2CD4EF1AFFB4} - C:\ProgramData\Weekaepp\51f507fc01900.dllTB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dllTB: BrotherSoft Extreme3 Toolbar: {62D40876-DF18-411F-9D34-A9DD7A197BC5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBrot.dllTB: uTorrentControl2 Toolbar: {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dllTB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dllTB: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dllTB: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBrot.dllTB: KMP Media Toolbar: {4B4D5056-3600-A76A-76A7-7A786E7484D7} - TB: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - TB: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\7.3\iobitappsToolbarIE.dlluRun: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silentuRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorunuRun: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStartuRun: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startupuRun: [Akamai NetSession Interface] "C:\Users\Ponkid\AppData\Local\Akamai\netsession_win.exe"uRun: [systemIO.Linq] C:\zqsdqsdkza532120azeaze12qsd42z\Leap.exeuRun: [iSUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startupuRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZEDmRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exemRun: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"mRun: [XFastUSB] "C:\Program Files (x86)\XFastUSB\XFastUsb.exe"mRun: [THX TruStudio NB Settings] "C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" /rmRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exemRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbyloginmRun: [sTCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"mRun: [ZyngaGamesAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRunmRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"mRun: [backupNowEZtray] "C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe" -kmRun: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -startmRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-startmRunOnce: [*ForceDelete] C:\Users\Ponkid\Downloads\AdwCleaner.exe /forcedeleteStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\DUALPA~1.LNK - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\Dual Package.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\TP-LIN~1.LNK - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:255uPolicies-Explorer: NoDrives = dword:0mPolicies-Explorer: NoDrives = dword:0mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllTrusted Zone: clonewarsadventures.comTrusted Zone: freerealms.comTrusted Zone: soe.comTrusted Zone: sony.comTCP: NameServer = 192.168.0.1TCP: Interfaces\{16363E9A-00D7-4AA3-A603-A9689BBED29B} : DHCPNameServer = 7.254.254.254TCP: Interfaces\{3DFC7E8C-2C1D-46A1-862A-3987E890AF62} : DHCPNameServer = 192.168.0.1Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLSSODL: WebCheck - <orphaned>x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dllx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dllx64-Run: [igfxTray] C:\Windows\System32\igfxtray.exex64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exex64-Run: [Persistence] C:\Windows\System32\igfxpers.exex64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -sx64-Run: [VIRTU MVP] C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe /hidex64-Run: [XFast LAN] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exex64-Run: [THXCfg64] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\THXCfg64.dll,RunDLLEntry THXCfg64x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkeyx64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dllx64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Notify: igfxcui - igfxdev.dllx64-SSODL: WebCheck - <orphaned>x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Ponkid\AppData\Roaming\Mozilla\Firefox\Profiles\px9icijs.default\.============= SERVICES / DRIVERS ===============.R0 asahci64;asahci64;C:\Windows\System32\drivers\asahci64.sys [2011-9-21 49760]R0 AsrRamDisk;AsrRamDisk;C:\Windows\System32\drivers\AsrRamDisk.sys [2012-7-1 31016]R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2012-7-1 16152]R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-6-18 247216]R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2013-1-29 17720]R0 SymDS;Symantec Data Store;C:\Windows\System32\drivers\NISx64\1301000.01C\SymDS64.sys [2012-7-1 451192]R0 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\NISx64\1301000.01C\SymEFA64.sys [2012-7-1 1084536]R1 AsrAppCharger;AsrAppCharger;C:\Windows\System32\drivers\AsrAppCharger.sys [2012-7-1 17192]R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120823.007\BHDrvx64.sys [2012-6-19 1161376]R1 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\System32\drivers\NISx64\1301000.01C\ccSetx64.sys [2012-7-1 167048]R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-7-1 283200]R1 FNETURPX;FNETURPX;C:\Windows\System32\drivers\FNETURPX.SYS [2012-7-1 15936]R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120829.001\IDSviA64.sys [2012-8-30 512672]R1 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NISx64\1301000.01C\Ironx64.sys [2012-7-1 189560]R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NISx64\1301000.01C\symnets.sys [2012-7-1 401016]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-20 240640]R2 Autodesk Content Service;Autodesk Content Service;C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-2-2 18656]R2 DAZContentManagementService;DAZ Content Management Service;C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe [2012-11-2 22528]R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-6-28 2470736]R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-7-1 13592]R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]R2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2012-7-1 121344]R2 ISCTAgent;ISCT Always Updated Agent;C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2012-2-9 133632]R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2012-7-1 161560]R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-7-25 418376]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-7-25 701512]R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit;C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-9-15 86016]R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe [2012-7-1 138760]R2 NTI BackupNowEZSvr;NTI BackupNowEZSvr;C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe [2013-2-5 46072]R2 PSI_SVC_2_x64;Protexis Licensing V2 x64;C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]R2 SCBackService;Splashtop Connect Service;C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]R2 TabletServiceWacom;TabletServiceWacom;C:\Windows\System32\Wacom_Tablet.exe [2012-7-1 5521192]R2 UDisk Monitor;UDisk Monitor;C:\Program Files\Smartfren AC692 UI\bin\MonServiceUDisk.exe [2013-6-6 405504]R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-7-1 363800]R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-11-6 96256]R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;C:\Windows\System32\drivers\EtronHub3.sys [2012-7-1 59392]R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;C:\Windows\System32\drivers\EtronXHCI.sys [2012-7-1 84608]R3 FNETTBOH_305;FNETTBOH_305;C:\Windows\System32\drivers\FNETTBOH_305.SYS [2012-7-1 32320]R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\drivers\ikbevent.sys [2012-2-9 25536]R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\drivers\imsevent.sys [2012-2-9 25536]R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2012-7-1 331264]R3 ISCT;Intel® Smart Connect Technology Device Driver;C:\Windows\System32\drivers\ISCTD64.sys [2012-2-9 44992]R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2012-7-1 356120]R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2012-7-1 787736]R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2011-5-9 425000]R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-7-25 25928]R3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2012-7-1 32344]R3 RTL8192cu;%RTL8192cu.DeviceDesc.DispName%;C:\Windows\System32\drivers\RTL8192cu.sys [2012-7-1 926824]R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);C:\Windows\System32\drivers\tap0901t.sys [2012-10-30 31232]R3 VirtuWDDM;VirtuWDDM;C:\Windows\System32\drivers\VirtuWDDM.sys [2012-7-1 66336]R3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2012-7-1 18216]R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\drivers\WPRO_41_2001.sys [2012-7-1 34752]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S2 SmartViewService;SmartView service;C:\Program Files (x86)\DeviceVM\SmartView\SmartViewService.exe --> C:\Program Files (x86)\DeviceVM\SmartView\SmartViewService.exe [?]S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-7-1 1432400]S3 Generalusbserialser20679;Legacy Serial Communication 20679;C:\Windows\System32\drivers\CT_U_USBSER.sys [2013-6-6 124160]S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-2-5 235216]S3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-6-18 139616]S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-7-18 366600]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-4-12 88960]S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2011-4-12 34816]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-4-12 117248]S3 TunngleService;TunngleService;C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2012-10-30 746392]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-7-24 1255736]S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]S4 RsFx0103;RsFx0103 Driver;C:\Windows\System32\drivers\RsFx0103.sys [2009-3-30 311656]S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-3-30 427880].=============== File Associations ===============.FileExt: .scr: AutoCADScriptFile=C:\Windows\System32\notepad.exe "%1"FileExt: .reg: Applications\notepad.exe=C:\Windows\System32\NOTEPAD.EXE %1 [userChoice].=============== Created Last 30 ================.2013-07-28 16:03:00 -------- d-----w- C:\Windows\ERUNT2013-07-28 14:44:00 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp2013-07-28 14:26:50 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client2013-07-28 14:26:47 -------- d-----w- C:\Program Files\Microsoft Security Client2013-07-28 13:28:37 -------- d-----w- C:\TDSSKiller_Quarantine2013-07-28 13:19:00 -------- d-----w- C:\Program Files\CCleaner2013-07-28 12:31:54 -------- d-----w- C:\Program Files (x86)\Security Task Manager2013-07-28 12:03:10 16896 ----a-w- C:\Windows\System32\sasnative64.exe2013-07-28 12:01:17 -------- d-----w- C:\ProgramData\Weekaepp2013-07-28 12:00:34 -------- d-----w- C:\ProgramData\SearchNewTab2013-07-28 11:57:59 20488 ----a-w- C:\Windows\System32\roboot64.exe2013-07-28 11:55:04 -------- d-----w- C:\Program Files (x86)\SafeSaver2013-07-28 11:54:20 -------- d-----w- C:\ProgramData\safuey sAivve2013-07-28 03:53:10 -------- d-sh--w- C:\$RECYCLE.BIN2013-07-26 17:01:06 9460976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D4F45FF6-BB71-41B9-B044-BB484F50C789}\mpengine.dll2013-07-26 15:23:47 -------- d-----w- C:\Program Files (x86)\IObit Apps Toolbar2013-07-25 01:52:18 -------- d-----w- C:\Users\Ponkid\AppData\Roaming\Malwarebytes2013-07-25 01:52:08 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys2013-07-25 01:52:08 -------- d-----w- C:\ProgramData\Malwarebytes2013-07-25 01:52:08 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware2013-07-22 16:07:39 -------- d-----w- C:\Users\Ponkid\minecraft2013-07-20 05:52:04 -------- d-----w- C:\Users\Ponkid\AppData\Roaming\library_dir2013-07-17 04:16:28 -------- d-----w- C:\Users\Ponkid\AppData\Roaming\Luxology2013-07-17 04:16:28 -------- d-----w- C:\Users\Ponkid\AppData\Roaming\Kits2013-07-17 03:22:52 -------- d-----w- C:\Users\Ponkid\AppData\Local\Luxology2013-07-17 03:21:34 -------- d-----w- C:\Program Files\Bonjour2013-07-17 03:21:34 -------- d-----w- C:\Program Files (x86)\Bonjour2013-07-17 03:20:02 -------- d-----w- C:\Program Files\Luxology2013-07-15 15:30:14 1732608 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL2013-07-15 15:30:13 936448 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll2013-07-15 15:30:13 1402880 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll2013-07-15 15:30:13 1393152 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll2013-07-15 15:30:13 1367040 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll2013-07-15 06:42:42 -------- d-----w- C:\Program Files (x86)\QUALCOMM Incorporated2013-07-15 06:34:34 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll2013-07-15 06:34:34 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll2013-07-15 06:34:34 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll2013-07-15 06:34:34 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll2013-07-15 06:34:34 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll2013-07-15 06:34:34 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll2013-07-15 06:34:34 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll2013-07-15 06:34:21 624128 ----a-w- C:\Windows\System32\qedit.dll2013-07-15 06:34:21 509440 ----a-w- C:\Windows\SysWow64\qedit.dll2013-07-15 06:34:20 1887744 ----a-w- C:\Windows\System32\WMVDECOD.DLL2013-07-15 06:34:20 1620480 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL2013-07-15 06:17:39 3153920 ----a-w- C:\Windows\System32\win32k.sys2013-07-15 06:03:19 1643520 ----a-w- C:\Windows\System32\DWrite.dll2013-07-15 06:03:19 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll2013-07-03 07:13:51 -------- d-----w- C:\Users\Ponkid\AppData\Local\Chromium2013-07-03 07:11:27 -------- d-----w- C:\Program Files (x86)\Rockstar Games2013-07-03 06:33:17 -------- d-----w- C:\ProgramData\Rockstar Games.==================== Find3M ====================.2013-07-28 14:44:00 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys2013-07-21 00:47:56 32320 ----a-w- C:\Windows\System32\drivers\FNETTBOH_305.SYS2013-06-18 14:50:08 247216 ----a-w- C:\Windows\System32\drivers\MpFilter.sys2013-06-18 14:50:08 139616 ----a-w- C:\Windows\System32\drivers\NisDrvWFP.sys2013-06-12 10:28:22 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2013-06-12 10:28:22 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2013-06-11 23:43:37 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll2013-06-11 23:43:00 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll2013-06-11 23:42:58 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll2013-06-11 23:42:58 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll2013-06-11 23:26:20 2241024 ----a-w- C:\Windows\System32\wininet.dll2013-06-11 23:25:16 3958784 ----a-w- C:\Windows\System32\jscript9.dll2013-06-11 23:25:13 67072 ----a-w- C:\Windows\System32\iesetup.dll2013-06-11 23:25:13 136704 ----a-w- C:\Windows\System32\iesysprep.dll2013-06-11 22:51:45 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe2013-06-11 22:50:58 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe2013-06-07 03:22:18 2706432 ----a-w- C:\Windows\System32\mshtml.tlb2013-06-07 02:37:52 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb2013-05-31 10:15:46 291088 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2013-05-31 10:15:46 291088 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2013-05-31 10:14:58 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex02013-05-30 07:50:38 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe2013-05-28 13:05:16 163328 ----a-w- C:\Windows\SysWow64\FlashPlayerUpdateService.exe2013-05-13 05:51:01 184320 ----a-w- C:\Windows\System32\cryptsvc.dll2013-05-13 05:51:00 1464320 ----a-w- C:\Windows\System32\crypt32.dll2013-05-13 05:51:00 139776 ----a-w- C:\Windows\System32\cryptnet.dll2013-05-13 05:50:40 52224 ----a-w- C:\Windows\System32\certenc.dll2013-05-13 04:45:55 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll2013-05-13 04:45:55 1160192 ----a-w- C:\Windows\SysWow64\crypt32.dll2013-05-13 04:45:55 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll2013-05-13 03:43:55 1192448 ----a-w- C:\Windows\System32\certutil.exe2013-05-13 03:08:10 903168 ----a-w- C:\Windows\SysWow64\certutil.exe2013-05-13 03:08:06 43008 ----a-w- C:\Windows\SysWow64\certenc.dll2013-05-10 05:49:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll2013-05-10 03:20:54 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll2013-05-08 06:39:01 1910632 ----a-w- C:\Windows\System32\drivers\tcpip.sys2013-05-01 19:06:08 278800 ------w- C:\Windows\System32\MpSigStub.exe.============= FINISH: 5:23:15.48 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1Install Date: 7/1/2012 10:02:50 AMSystem Uptime: 7/28/2013 9:42:22 PM (8 hours ago).Motherboard: ASRock | | Z77 Extreme6Processor: Intel® Core i5-3570K CPU @ 3.40GHz | CPUSocket | 3401/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 1863 GiB total, 391.881 GiB free.D: is CDROM ()E: is CDROM (UDF)F: is CDROM (UDF)G: is CDROM (CDFS)H: is CDROM (CDFS)I: is FIXED (NTFS) - 932 GiB total, 680.281 GiB free..==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP234: 7/24/2013 12:13:18 AM - Windows UpdateRP235: 7/28/2013 7:50:26 AM - ComboFix created restore pointRP236: 7/28/2013 6:55:31 PM - Removed L.A. NoireRP237: 7/28/2013 6:59:39 PM - RegClean Pro Sun, Jul 28, 13 18:59RP238: 7/29/2013 5:05:21 AM - Removed Far Cry 3 Blood DragonRP239: 7/29/2013 5:07:17 AM - Configured SILENT HILL 3.==== Installed Programs ======================.??????? ?????@Mail.RuµTorrentAcrobat.comAdobe AIRAdobe Community HelpAdobe Flash Player 11 PluginAdobe Media PlayerAdobe Photoshop CS5Adobe Reader 9Advanced System ProtectorAkamai NetSession InterfaceAMD Accelerated Video TranscodingAMD APP SDK RuntimeAMD Catalyst Install ManagerAMD Drag and Drop TranscodingAMD Media Foundation DecodersAsmedia ASM106x SATA Host Controller DriverASRock App Charger v1.0.5ASRock eXtreme Tuner v0.1.183ASRock InstantBoot v1.29ASRock SmartConnect v1.0.6ASRock XFast RAM v2.0.9Assassin's Creed ® IIIAutoCAD 2012 - EnglishAutoCAD 2012 Language Pack - EnglishAutodesk 3ds Max 2013 64-bitAutodesk Backburner 2013.0.0Autodesk Content ServiceAutodesk Design Review 2012Autodesk DirectConnect 2012 64-bitAutodesk DirectConnect 2013 64-bitAutodesk Essential Skills Movies for 3ds Max 2013 64-bitAutodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bitAutodesk Inventor Fusion 2012Autodesk Inventor Fusion 2012 Language PackAutodesk Inventor Fusion plug-in for AutoCAD 2012Autodesk Inventor Fusion plug-in language pack for AutoCAD 2012Autodesk Inventor Server Engine for 3ds Max 2013 64-bitAutodesk MatchMover 2012 64-bitAutodesk Material Library 2012Autodesk Material Library 2013Autodesk Material Library Base Resolution Image Library 2012Autodesk Material Library Base Resolution Image Library 2013Autodesk Material Library Medium Resolution Image Library 2013Autodesk Maya 2012 64-bitAutodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bitBabylon toolbar BabylonObjectInstallerBattlefield 3™Battlefield Play4FreeBattlelog Web PluginsBioShock Infinite version 5.1BlackBerry Desktop Software 5.0BlackBerry Theme Studio 5.0BlackBerry Theme Studio 6.0BonjourBroadcom NetLink ControllerBrotherSoft Extreme3 ToolbarBrowser ManagerBundled software uninstallerCall of Duty® - World at WarCall of Duty® - World at War 1.1 PatchCall of Duty® - World at War 1.2 PatchCall of Duty® - World at War 1.4 PatchCall of Duty® - World at War 1.5 PatchCall of Duty® - World at War 1.6 PatchCall of Duty® - World at War 1.7 PatchCall of Duty: Black Ops II - MultiplayerCall of Juarez Gunslinger version 5.1Camtasia Studio 7Catalyst Control CenterCatalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyCatalyst Control Center Localization Allccc-utility64CCC Help Chinese StandardCCC Help Chinese TraditionalCCC Help CzechCCC Help DanishCCC Help DutchCCC Help EnglishCCC Help FinnishCCC Help FrenchCCC Help GermanCCC Help GreekCCC Help HungarianCCC Help ItalianCCC Help JapaneseCCC Help KoreanCCC Help NorwegianCCC Help PolishCCC Help PortugueseCCC Help RussianCCC Help SpanishCCC Help SwedishCCC Help ThaiCCC Help TurkishCCleanerCo-Op installerCompany of Heroes 2 - Beta Stress TestComposite 2012 64-bitComposite 2013 64-bitContinueToSave 1.74Corel Painter 12Counter-Strike: Global OffensiveCrysis®3 MP Open BetaCyberLink MediaEspressoD3DX10DAEMON Tools LiteDAZ Content Management ServiceDAZ Studio 4.5 (64bit)Definition Update for Microsoft Office 2010 (KB982726) 32-Bit EditionDelta Chrome ToolbarDelta toolbar Document Express DjVu Plug-inDota 2DropboxDual PackageESN SonarEtron USB3.0 Host ControllerFar Cry 3FARO LS 1.1.406.58FencesFinale 2011FireAlpaca 1.0.30FrapsFree Image ConverterFreemake Video Converter version 3.2.1FrostWire 5.2.9Google ChromeGoogle SketchUp Pro 8Half-Life Dedicated Server Update ToolHoudini 12.0.683IconHandler 64 bitIntel® Control CenterIntel® Manageability Engine Firmware Recovery AgentIntel® Management Engine ComponentsIntel® OpenCL CPU RuntimeIntel® Processor GraphicsIntel® Rapid Storage TechnologyIntel® Smart Connect Technology 2.0 x64Intel® USB 3.0 eXtensible Host Controller DriverIntel® Trusted Connect Service ClientIObit Apps Toolbar v7.3Java 7 Update 11Java Auto UpdaterJava 6 Update 24Java 7 Update 5 (64-bit)KMP Media ToolbarLeft 4 Dead 2LogMeIn HamachiLuxology modo 701 64-bit build 58358Macromedia Extension ManagerMacromedia Flash 8Macromedia Flash 8 Video EncoderMacromedia Flash Player 8Magic ISO Maker v5.5 (build 0281)Malwarebytes Anti-Malware version 1.75.0.1300McAfee Security Scan PlusMetro Last Light Read version 5.1Microsoft .NET Framework 4 Client ProfileMicrosoft .NET Framework 4 ExtendedMicrosoft .NET Framework 4 Multi-Targeting PackMicrosoft Application Error ReportingMicrosoft Games for Windows MarketplaceMicrosoft Help Viewer 1.0Microsoft Office 2010 Service Pack 1 (SP1)Microsoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Home and Business 2010Microsoft Office Office 64-bit Components 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared 64-bit MUI (English) 2010Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Single Image 2010Microsoft Office Word MUI (English) 2010Microsoft Security ClientMicrosoft Security EssentialsMicrosoft SilverlightMicrosoft SQL Server 2008 (64-bit)Microsoft SQL Server 2008 BrowserMicrosoft SQL Server 2008 Common FilesMicrosoft SQL Server 2008 Database Engine ServicesMicrosoft SQL Server 2008 Database Engine SharedMicrosoft SQL Server 2008 Native ClientMicrosoft SQL Server 2008 R2 Management ObjectsMicrosoft SQL Server 2008 RsFx DriverMicrosoft SQL Server 2008 Setup Support Files Microsoft SQL Server Compact 3.5 SP2 ENUMicrosoft SQL Server Compact 3.5 SP2 x64 ENUMicrosoft SQL Server System CLR TypesMicrosoft SQL Server VSS WriterMicrosoft Visual C# 2010 Express - ENUMicrosoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106Microsoft Visual J# 2.0 Redistributable PackageMicrosoft Visual Studio 2010 ADO.NET Entity Framework ToolsMicrosoft Visual Studio 2010 Express Prerequisites x64 - ENUMicrosoft XNA Framework Redistributable 3.1Microsoft XNA Framework Redistributable 4.0Microsoft_VC80_ATL_x86Microsoft_VC80_ATL_x86_x64Microsoft_VC80_CRT_x86Microsoft_VC80_CRT_x86_x64Microsoft_VC80_MFC_x86Microsoft_VC80_MFC_x86_x64Microsoft_VC80_MFCLOC_x86Microsoft_VC80_MFCLOC_x86_x64Microsoft_VC90_ATL_x86Microsoft_VC90_ATL_x86_x64Microsoft_VC90_CRT_x86Microsoft_VC90_CRT_x86_x64Microsoft_VC90_MFC_x86Microsoft_VC90_MFC_x86_x64Missile CommandMozilla Firefox 15.0.1 (x86 en-US)Mozilla Maintenance ServiceMSVCRTMy Game Long NameMyEmoticonsNorton Internet SecurityNTI Backup Now EZNVIDIA PhysXNVIDIA PhysX Plug-in for Autodesk Maya 2012 64 bitOptimizer Pro v3.0OriginPainter 12 - ContentPainter 12 - CorePainter 12 - Corex64Painter 12 - ENPainter 12 - IPMPainter 12 - Setup FilesPDF Settings CS5Penny Arcade's On the Rain-Slick Precipice of Darkness 3Pepakura Designer 3Pepakura Viewer 3Pinball FX2PlanetSide 2PunkBuster ServicesQualcomm USB Drivers For WindowsRaptrRealtek High Definition Audio DriverRegClean ProRockstar Games Social ClubSafeSaver 1.74safuey sAivveSearch Assistant WebSearch 1.74SearchNewTabSecurity Task Manager 1.8gSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)Security Update for Microsoft .NET Framework 4 Extended (KB2487367)Security Update for Microsoft .NET Framework 4 Extended (KB2656351)Security Update for Microsoft .NET Framework 4 Extended (KB2736428)Security Update for Microsoft .NET Framework 4 Extended (KB2742595)Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit EditionSecurity Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit EditionSecurity Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553091)Security Update for Microsoft Office 2010 (KB2553096)Security Update for Microsoft Office 2010 (KB2553371) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553447) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2589320) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2598243) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687276) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687501) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687510) 32-Bit EditionSecurity Update for Microsoft OneNote 2010 (KB2760600) 32-Bit EditionSecurity Update for Microsoft Publisher 2010 (KB2553147) 32-Bit EditionSecurity Update for Microsoft Visio 2010 (KB2810068) 32-Bit EditionSecurity Update for Microsoft Visio Viewer 2010 (KB2687505) 32-Bit EditionSecurity Update for Microsoft Visual C# 2010 Express - ENU (KB2251489)Security Update for Microsoft Word 2010 (KB2760410) 32-Bit EditionService Pack 1 for SQL Server 2008 (KB968369) (64-bit)SimCity™Smart Defrag 2Smartfren AC692 UISplashtop Connect IESql Server Customer Experience Improvement ProgramStarCraft IISteamSupreme Commander - Forged AllianceSweetIM Bundle by SweetPacksSweetIM for Messenger 3.7SweetPacks New Tab for Google Chrome 1.3.0.3Team Fortress 2The KMPlayerThe Witcher 2 - Assassins of Kings Enhanced EditionTHX TruStudioTomb Raider version 5.1TP-LINK TL-WN723N DriverTP-LINK Wireless Configuration UtilityTunngle betaUnity Web PlayerUpdate for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)Update for Microsoft .NET Framework 4 Client Profile (KB2836939)Update for Microsoft .NET Framework 4 Extended (KB2468871)Update for Microsoft .NET Framework 4 Extended (KB2533523)Update for Microsoft .NET Framework 4 Extended (KB2600217)Update for Microsoft .NET Framework 4 Extended (KB2836939)Update for Microsoft Office 2010 (KB2553065)Update for Microsoft Office 2010 (KB2553181) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553267) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553310) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553378) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2566458)Update for Microsoft Office 2010 (KB2596964) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2598242) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687503) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687509) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2767886) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2553290) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2597090) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2687623) 32-Bit EditionUpdate for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2598240) 32-Bit EditionUpdate for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit EditionUplayuTorrentControl2 ToolbarVIRTU MVP 2.1.111Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENUVLC media player 2.0.6Wacom TabletWarfaceWarframeWargame AirLand Battle © Focus Home Interactive version RLD!WebTablet IE PluginWebTablet Netscape PluginWeekaeppWindows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MessengerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWinRAR 4.20 (64-bit)XFast LAN v6.61XFastUSBXfire (remove only)YTD Toolbar v7.3YTD Video Downloader 4.0.==== Event Viewer Messages From Past Week ========.7/29/2013 5:03:27 AM, Error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the interface with IP address 192.168.0.103. The computer with the IP address 192.168.0.105 did not allow the name to be claimed by this computer.7/29/2013 4:56:04 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 0.0.0.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 0.0.0.0 Error code: 0x80240022 Error description: The program can't check for definition updates. 7/29/2013 4:56:04 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 0.0.0.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 0.0.0.0 Error code: 0x80240022 Error description: The program can't check for definition updates. .==== End Of File =========================== RogueKiller V8.6.3 _x64_ [Jul 17 2013] by Tigzymail : tigzyRK<at>gmail<dot>comFeedback : http://www.adlice.com/forum/Website : http://www.adlice.com/softwares/roguekiller/Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits versionStarted in : Normal modeUser : Ponkid [Admin rights]Mode : Scan -- Date : 07/29/2013 05:27:00| ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 8 ¤¤¤[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> FOUND[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> FOUND[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND[HJ POL] HKLM\[...]\System : EnableLUA (0) -> FOUND[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Scheduled tasks : 5 ¤¤¤[V2][sUSP PATH] EPUpdater : C:\Users\Ponkid\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [x] -> FOUND[V2][sUSP PATH] KMS Activation for Office : C:\Windows\KMSAct.exe [x] -> FOUND[V2][sUSP PATH] RunAsStdUser Task : "C:\Users\Ponkid\AppData\Local\RavenBleuSA\bin\1.0.17.0\RavenBleuSA.exe" [x] -> FOUND ¤¤¤ Startup Entries : 0 ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤ ¤¤¤ External Hives: ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤--> %SystemRoot%\System32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: WDC WD20EARX-008FB0 ATA Device +++++--- User ---[MBR] 27a571a2589e9bd625dc57c2311dd053[bSP] ed31105bfcec1c2c09513a0c90151b02 : Windows 7/8 MBR CodePartition table:0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 1907627 MoUser = LL1 ... OK!User = LL2 ... OK! +++++ PhysicalDrive1: WDC WD20EARX-008FB0 ATA Device +++++--- User ---[MBR] 3f610ec8cfb5bc9681fab97bce757082[bSP] 2f786de91a0f7ea59392664a2e11d425 : Windows Vista MBR CodePartition table:0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MoError reading LL1 MBR!Error reading LL2 MBR! Finished : << RKreport[0]_S_07292013_052700.txt >> -
This has happened since about 3-4 days ago. I did some research including this website and donloaded everything. Please I need help. My OS is Windows 7 64 bit.