I recently downloaded spotify from a virus site or something now this add on called LyricXeeker wont go away it keeps redirecting me and changing my homepage I have tried to manually get rid of it but it wont allow me the option to delete it. I need help anyways here are my logs DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16660 Run by judyh_000 at 3:04:06 on 2013-08-25 Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.7650.4831 [GMT -4:00] . AV: ZoneAlarm Antivirus *Disabled/Updated* {DE038A5B-9EDD-18A9-2361-FF7D98D43730} AV: Trend Micro Titanium *Enabled/Updated* {B7599298-8445-728A-A5C7-A26A082C8BDA} AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Trend Micro Titanium *Enabled/Updated* {0C38737C-A27F-7D04-9F77-991873ABC167} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: ZoneAlarm Anti-Spyware *Disabled/Updated* {65626BBF-B8E7-1727-19D1-C40FE3537D8D} FW: ZoneAlarm Firewall *Enabled* {E6380B7E-D4B2-19F1-083E-56486607704B} . ============== Running Processes =============== . C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\dwm.exe C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\atieclxx.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Program Files\IDT\WDM\STacSV64.exe C:\Windows\system32\Hpservice.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe C:\Windows\system32\taskhostex.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\Explorer.EXE C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiWatchDog.exe C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe C:\Windows\system32\svchost.exe -k apphost C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe C:\Windows\system32\dashost.exe C:\Windows\system32\dmwu.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe C:\Windows\SysWOW64\jmdp\stij.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe C:\Windows\system32\SearchIndexer.exe C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE C:\Program Files\IDT\WDM\sttray64.exe C:\Program Files (x86)\Corel\Corel PDF Fusion\CorelCreatorClient.exe C:\Users\judyh_000\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe C:\Windows\System32\RuntimeBroker.exe C:\Program Files\HitmanPro\HitmanPro.exe C:\Windows\system32\CorelCreatorMessages.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\QuickTime\qttask.exe C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe C:\Program Files (x86)\Nightly\firefox.exe C:\Program Files (x86)\Nightly\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uURLSearchHooks: Vuze Remote Toolbar: {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\7.4\vuzeToolbarIE.dll uURLSearchHooks: MixiDJ V37 Toolbar: {eef3855c-fc2d-41e6-8d91-d368f51b3055} - C:\Program Files (x86)\MixiDJ_V37\prxtbMixi.dll mURLSearchHooks: MixiDJ V37 Toolbar: {eef3855c-fc2d-41e6-8d91-d368f51b3055} - C:\Program Files (x86)\MixiDJ_V37\prxtbMixi.dll mWinlogon: Userinit = userinit.exe, BHO: Vuze Remote Toolbar: {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\7.4\vuzeToolbarIE.dll BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll BHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20013\1.0.1209\1.0.1209\TmopIEPlg32.dll BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll BHO: Superfish: {74F475FA-6C75-43BD-AAB9-ECDA6184F600} - C:\Program Files (x86)\WindowShopper\Superfish.dll BHO: Updater By SweetPacks: {7D4F1959-3F72-49d5-8E59-F02F8AA6815D} - C:\Program Files\Updater By SweetPacks\Extension32.dll BHO: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\15.5.0.2\AVG SafeGuard toolbar_toolbar.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\7.5.1136\7.5.1136\TmBpIe32.dll BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll BHO: SweetPacks Browser Helper: {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll BHO: MixiDJ V37 Toolbar: {eef3855c-fc2d-41e6-8d91-d368f51b3055} - C:\Program Files (x86)\MixiDJ_V37\prxtbMixi.dll TB: MixiDJ V37 Toolbar: {EEF3855C-FC2D-41E6-8D91-D368F51B3055} - C:\Program Files (x86)\MixiDJ_V37\prxtbMixi.dll TB: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\15.5.0.2\AVG SafeGuard toolbar_toolbar.dll TB: Vuze Remote Toolbar: {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\7.4\vuzeToolbarIE.dll TB: MixiDJ V37 Toolbar: {eef3855c-fc2d-41e6-8d91-d368f51b3055} - C:\Program Files (x86)\MixiDJ_V37\prxtbMixi.dll TB: SweetPacks Toolbar for Internet Explorer: {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll uRun: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent uRun: [skyDrive] "C:\Users\judyh_000\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background uRun: [searchProtect] C:\Users\judyh_000\AppData\Roaming\SearchProtect\bin\cltmng.exe uRunOnce: [uninstall C:\Users\judyh_000\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\judyh_000\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64" uRunOnce: [uninstall C:\Users\judyh_000\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\judyh_000\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64" mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe" mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" mRun: [searchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\qttask.exe" -atboottime mRun: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe" mRun: [searchProtectAll] C:\Program Files (x86)\SearchProtect\bin\cltmng.exe StartupFolder: C:\Users\JUDYH_~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ERUNTA~1.LNK - C:\Windows\ERUNT\AUTOBACK.EXE StartupFolder: C:\Users\JUDYH_~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MYPCBA~1.LNK - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll IE: {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - C:\Program Files (x86)\WindowShopper\Superfish.dll TCP: NameServer = 75.75.76.76 75.75.75.75 TCP: Interfaces\{82AB070F-18DA-4415-A338-1CEB364DFB71} : DHCPNameServer = 75.75.76.76 75.75.75.75 Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\7.5.1136\7.5.1136\TmBpIe32.dll Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20013\1.0.1209\1.0.1209\TmopIEPlg32.dll Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll SSODL: WebCheck - <orphaned> x64-mStart Page = about:blank x64-BHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20013\1.0.1209\1.0.1209\TmopIEPlg.dll x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll x64-BHO: Updater By SweetPacks: {7D4F1959-3F72-49d5-8E59-F02F8AA6815D} - C:\Program Files\Updater By SweetPacks\Extension64.dll x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL x64-BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\7.5.1136\7.5.1136\TmBpIe64.dll x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe x64-Run: [Trend Micro Titanium] "C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe" -set Silent "1" SplashURL "" x64-Run: [CorelCreatorClient] C:\Program Files (x86)\Corel\Corel PDF Fusion\CorelCreatorClient.exe x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Run: [Trend Micro Client Framework] "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned> x64-Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\7.5.1136\7.5.1136\TmBpIe64.dll x64-Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20013\1.0.1209\1.0.1209\TmopIEPlg.dll x64-Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - <orphaned> x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned> x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-SSODL: WebCheck - <orphaned> . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\judyh_000\AppData\Roaming\Mozilla\Firefox\Profiles\2750bd20.default\ FF - prefs.js: browser.startup.homepage - www.google.com FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\npsitesafety.dll FF - plugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll FF - plugin: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL FF - plugin: C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll FF - plugin: C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll FF - plugin: C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll . ============= SERVICES / DRIVERS =============== . R0 amd_sata;amd_sata;C:\Windows\System32\Drivers\amd_sata.sys [2012-9-2 79528] R0 amd_xata;amd_xata;C:\Windows\System32\Drivers\amd_xata.sys [2012-9-2 26280] R1 CLVirtualDrive;CLVirtualDrive;C:\Windows\System32\Drivers\CLVirtualDrive.sys [2013-3-21 92536] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\Drivers\AtihdW86.sys [2012-8-21 91648] R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-8-24 25928] S0 klelam;klelam;C:\Windows\System32\Drivers\klelam.sys [2013-2-21 29616] S3 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-9-28 650808] S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\System32\Drivers\MijXfilt.sys [2013-6-12 115272] . =============== Created Last 30 ================ . 2013-08-25 06:47:25 -------- d-----w- C:\Windows\ERUNT 2013-08-25 06:07:10 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service 2013-08-25 05:54:04 32000 ----a-w- C:\Windows\System32\drivers\hitmanpro37.sys 2013-08-25 03:08:35 -------- d-----w- C:\Program Files\Updater By SweetPacks 2013-08-25 03:06:38 -------- d-----w- C:\Program Files\HitmanPro 2013-08-25 03:06:17 -------- d-----w- C:\ProgramData\HitmanPro 2013-08-25 03:05:17 -------- d-----w- C:\Program Files (x86)\SweetIM 2013-08-25 03:02:55 -------- d-----w- C:\Windows\SysWow64\jmdp 2013-08-25 03:02:48 -------- d-----w- C:\Windows\SysWow64\ARFC 2013-08-25 03:02:42 1648432 ----a-w- C:\Windows\System32\dmwu.exe 2013-08-25 03:02:41 33792 ----a-w- C:\Windows\System32\ImHttpComm.dll 2013-08-25 03:02:36 -------- d-----w- C:\Windows\SysWow64\WNLT 2013-08-25 02:49:14 -------- d-----w- C:\Program Files (x86)\Nightly 2013-08-25 01:54:28 -------- d-----w- C:\Windows\System32\MRT 2013-08-25 01:51:14 -------- d-----w- C:\Windows\SysWow64\searchplugins 2013-08-25 01:51:14 -------- d-----w- C:\Windows\SysWow64\Extensions 2013-08-24 22:34:38 3958784 ----a-w- C:\Windows\System32\jscript9.dll 2013-08-24 22:34:16 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll 2013-08-24 22:34:15 108032 ----a-w- C:\Program Files (x86)\Internet Explorer\jsdebuggeride.dll 2013-08-24 22:30:00 1314816 ----a-w- C:\Windows\System32\rpcrt4.dll 2013-08-24 22:29:59 694272 ----a-w- C:\Windows\SysWow64\rpcrt4.dll 2013-08-24 22:29:51 337408 ----a-w- C:\Windows\System32\wintrust.dll 2013-08-24 22:29:51 1889280 ----a-w- C:\Windows\System32\crypt32.dll 2013-08-24 22:29:51 1568256 ----a-w- C:\Windows\SysWow64\crypt32.dll 2013-08-24 22:29:50 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll 2013-08-24 22:29:50 68096 ----a-w- C:\Windows\System32\cryptsvc.dll 2013-08-24 22:29:50 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll 2013-08-24 22:29:50 124416 ----a-w- C:\Windows\System32\apprepapi.dll 2013-08-24 22:29:49 98304 ----a-w- C:\Windows\System32\apprepsync.dll 2013-08-24 22:29:49 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll 2013-08-24 22:27:48 2233168 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-08-24 21:17:16 -------- d-----w- C:\Program Files (x86)\MyPC Backup 2013-08-24 21:12:05 -------- d-----w- C:\Program Files (x86)\SearchProtect 2013-08-24 21:11:39 -------- d-----w- C:\Users\judyh_000\AppData\Roaming\SearchProtect 2013-08-24 21:10:58 -------- d-----w- C:\Program Files (x86)\MixiDJ_V37 2013-08-24 20:52:16 -------- d-----w- C:\Users\judyh_000\AppData\Roaming\Malwarebytes 2013-08-24 20:52:03 -------- d-----w- C:\ProgramData\Malwarebytes 2013-08-24 20:51:57 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-08-24 20:51:57 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-08-24 20:38:51 458584 ----a-w- C:\Windows\System32\drivers\kl1.sys 2013-08-24 20:38:48 89944 ----a-w- C:\Windows\System32\drivers\klflt.sys 2013-08-24 20:36:12 -------- d-----w- C:\Program Files (x86)\CheckPoint 2013-08-24 20:35:58 -------- d-----w- C:\ProgramData\CheckPoint 2013-08-24 20:28:49 -------- d-----w- C:\ProgramData\BrowserDefender 2013-08-24 20:27:57 -------- d-----w- C:\Program Files (x86)\LyriXeeker 2013-08-24 19:57:55 -------- d-----w- C:\Program Files (x86)\Nightly.bak 2013-08-22 02:11:32 86016 ----a-w- C:\Windows\unvise32qt.exe 2013-08-22 02:07:55 98304 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin6.dll 2013-08-22 02:07:55 98304 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll 2013-08-22 02:07:55 98304 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll 2013-08-22 02:07:55 98304 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll 2013-08-22 02:07:55 98304 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll 2013-08-22 02:07:55 98304 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll 2013-08-22 02:07:41 1409 ----a-w- C:\Windows\QTFont.for 2013-08-22 02:07:03 -------- d-----w- C:\Windows\SysWow64\QuickTime 2013-08-20 08:28:24 240304 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10214.bin 2013-08-14 02:25:51 -------- d-----w- C:\Program Files (x86)\Application Updater 2013-08-14 02:25:50 -------- d-----w- C:\Program Files (x86)\Vuze Remote Toolbar 2013-08-09 21:41:19 -------- d-----w- C:\ProgramData\McAfee Security Scan 2013-08-09 21:41:16 -------- d-----w- C:\Program Files (x86)\McAfee Security Scan . ==================== Find3M ==================== . 2013-08-15 02:28:02 45856 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys 2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll 2013-07-26 05:13:28 915968 ----a-w- C:\Windows\System32\uxtheme.dll 2013-07-26 05:13:28 53760 ----a-w- C:\Windows\System32\UXInit.dll 2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll 2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll 2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll 2013-07-26 03:13:15 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll 2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll 2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2013-07-26 00:54:34 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll 2013-07-02 00:44:14 36288 ----a-w- C:\Windows\System32\drivers\WdBoot.sys 2013-07-01 22:08:49 247216 ----a-w- C:\Windows\System32\drivers\WdFilter.sys 2013-06-27 22:04:51 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-06-27 22:04:51 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-06-16 22:41:31 997632 ----a-w- C:\Windows\System32\drivers\ndis.sys 2013-06-13 20:34:16 451096 ----a-w- C:\Windows\System32\drivers\vsdatant.sys 2013-06-10 20:20:02 495856 ----a-w- C:\Windows\System32\drivers\SynTP.sys 2013-06-10 20:20:02 264432 ----a-w- C:\Windows\System32\SynTPAPI.dll 2013-06-10 20:20:02 192240 ----a-w- C:\Windows\System32\SynTPCo18.dll 2013-06-10 20:20:02 151280 ----a-w- C:\Windows\SysWow64\SynTPCom.dll 2013-06-10 20:20:00 544496 ----a-w- C:\Windows\SysWow64\SynCom.dll 2013-06-10 20:20:00 1060080 ----a-w- C:\Windows\System32\SynCOM.dll 2013-06-01 11:54:16 194816 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2013-06-01 11:54:10 125184 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2013-06-01 11:34:21 2391280 ----a-w- C:\Windows\explorer.exe 2013-06-01 11:29:35 337152 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS 2013-06-01 11:29:35 213248 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS 2013-06-01 11:26:33 327936 ----a-w- C:\Windows\System32\drivers\volsnap.sys 2013-06-01 11:26:31 6987008 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-06-01 10:24:46 2106176 ----a-w- C:\Windows\SysWow64\explorer.exe 2013-06-01 09:25:52 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll 2013-06-01 09:25:05 67584 ----a-w- C:\Windows\SysWow64\samlib.dll 2013-06-01 09:25:03 496640 ----a-w- C:\Windows\SysWow64\qedit.dll 2013-06-01 09:24:19 493056 ----a-w- C:\Windows\SysWow64\mscms.dll 2013-06-01 09:24:09 850944 ----a-w- C:\Windows\SysWow64\mfasfsrcsnk.dll 2013-06-01 09:24:09 1453568 ----a-w- C:\Windows\SysWow64\mfcore.dll 2013-06-01 09:23:46 1842176 ----a-w- C:\Windows\SysWow64\dwmcore.dll 2013-06-01 09:23:06 680960 ----a-w- C:\Windows\System32\vds.exe 2013-06-01 09:22:47 80896 ----a-w- C:\Windows\System32\MbaeParserTask.exe 2013-06-01 09:22:33 523264 ----a-w- C:\Windows\System32\XpsGdiConverter.dll 2013-06-01 09:22:33 446976 ----a-w- C:\Windows\System32\wwansvc.dll 2013-06-01 09:22:09 190976 ----a-w- C:\Windows\System32\vdsutil.dll 2013-06-01 09:21:39 729600 ----a-w- C:\Windows\System32\samsrv.dll 2013-06-01 09:21:39 106496 ----a-w- C:\Windows\System32\samlib.dll 2013-06-01 09:21:34 595968 ----a-w- C:\Windows\System32\qedit.dll 2013-06-01 09:20:45 583168 ----a-w- C:\Windows\System32\mscms.dll 2013-06-01 09:20:34 1527808 ----a-w- C:\Windows\System32\mfcore.dll 2013-06-01 09:20:34 1048576 ----a-w- C:\Windows\System32\mfasfsrcsnk.dll 2013-06-01 09:20:04 2219520 ----a-w- C:\Windows\System32\dwmcore.dll 2013-06-01 09:19:58 207872 ----a-w- C:\Windows\System32\DeviceSetupManager.dll 2013-06-01 09:19:42 785408 ----a-w- C:\Windows\System32\audiosrv.dll 2013-06-01 03:08:57 37632 ----a-w- C:\Windows\System32\drivers\BthAvrcpTg.sys 2013-05-30 23:14:23 4036096 ----a-w- C:\Windows\System32\win32k.sys . ============= FINISH: 3:05:40.96 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 8 Boot Device: \Device\HarddiskVolume2 Install Date: 4/1/2013 9:07:27 PM System Uptime: 8/25/2013 1:53:26 AM (2 hours ago) . Motherboard: Hewlett-Packard | | 1849 Processor: AMD A8-4500M APU with Radeon HD Graphics | Socket FT1 | 1400/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 906 GiB total, 820.317 GiB free. D: is FIXED (NTFS) - 25 GiB total, 2.998 GiB free. E: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP26: 8/5/2013 6:14:31 PM - Scheduled Checkpoint RP27: 8/12/2013 7:09:18 PM - Scheduled Checkpoint RP28: 8/20/2013 5:23:57 AM - Scheduled Checkpoint RP29: 8/24/2013 9:51:36 PM - Windows Update . ==== Installed Programs ====================== . Adobe Flash Player 11 Plugin Adobe Photoshop Elements 11 Adobe Shockwave Player 11.6 AMD Accelerated Video Transcoding AMD APP SDK Runtime AMD Catalyst Install Manager AMD Fuel AMD VISION Engine Control Center Apple Application Support Apple Mobile Device Support Apple Software Update ASIO4ALL AVG SafeGuard toolbar Bonjour Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish Cool Edit Pro 2.1 Corel PDF Fusion CyberLink LabelPrint CyberLink Media Suite 10 CyberLink PhotoDirector CyberLink Power2Go 8 CyberLink PowerDirector 10 CyberLink PowerDVD CyberLink YouCam D3DX10 Diablo III Elements 11 Organizer Energy Star ERUNT 1.1j FL Studio 9 Gigantic Savings Hewlett-Packard ACLM.NET v1.2.1.1 HitmanPro 3.7 HP 3D DriveGuard HP Connected Music (Meridian - installer) HP Connected Music (Meridian - player) HP Connected Remote HP CoolSense HP Customer Experience Enhancements HP Documentation HP Games HP MyRoom HP Postscript Converter HP Quick Launch HP Recovery Manager HP Registration Service HP Support Assistant HP Utility Center HP Wireless Button Driver IDT Audio IL Download Manager Internet Explorer Toolbar 4.9 by SweetPacks iSEEK AnswerWorks English Runtime iTunes LSAT 4.0 Malwarebytes Anti-Malware version 1.75.0.1300 McAfee Security Scan Plus Microsoft Application Error Reporting Microsoft Office Professional Plus 2013 - en-us Microsoft Silverlight Microsoft SkyDrive Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 MixiDJ V37 Toolbar MixPad MotioninJoy Gamepad tool 0.7.0000 Movie Maker Mozilla Maintenance Service MSVCRT MSVCRT110 MSVCRT110_amd64 MyPC Backup Nightly 26.0a1 (x86 en-US) Office 15 Click-to-Run Extensibility Component Office 15 Click-to-Run Licensing Component Office 15 Click-to-Run Localization Component Photo Common Photo Gallery PoiZone PSE11 STI Installer Qualcomm Atheros Driver Installation Program Quicken 2013 QuickTime Realtek Ethernet Controller Driver Realtek PCIE Card Reader Sawer Search Protect by conduit Steam SweetPacks Updater Service swMSM Synaptics Pointing Device Driver Toxic Biohazard Trend Micro Titanium Updater By SweetPacks 2.0.0.608 Vuze Vuze Remote Toolbar v7.4 Warframe WavePad Sound Editor Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack WindowShopper WinRAR 4.20 (32-bit) Yahoo! Messenger ZoneAlarm Antivirus ZoneAlarm Firewall ZoneAlarm Free Antivirus + Firewall ZoneAlarm Security . ==== Event Viewer Messages From Past Week ======== . 8/25/2013 1:55:21 AM, Error: Service Control Manager [7034] - The Computer Backup (MyPC Backup) service terminated unexpectedly. It has done this 1 time(s). 8/25/2013 1:54:10 AM, Error: Service Control Manager [7024] - The HitmanPro 3.7 Crusader (Boot) service terminated with the following service-specific error: The operation completed successfully. 8/25/2013 1:50:58 AM, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Start with the following error: Access is denied. 8/24/2013 9:57:20 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045B: Update for Windows 8 for x64-based Systems (KB2863058). 8/24/2013 9:57:20 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045B: Update for Windows 8 for x64-based Systems (KB2856373). 8/24/2013 9:57:20 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045B: Security Update for Windows 8 for x64-based Systems (KB2868623). 8/24/2013 9:57:20 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045B: Security Update for Windows 8 for x64-based Systems (KB2849470). 8/24/2013 9:57:20 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045B: Security Update for Microsoft .NET Framework 4.5 on Windows 8 and Windows Server 2012 for x64-based Systems (KB2840632). 8/24/2013 4:46:10 PM, Error: Service Control Manager [7023] - The IPsec Policy Agent service terminated with the following error: The authentication service is unknown. 8/24/2013 4:45:58 PM, Error: Service Control Manager [7043] - The Group Policy Client service did not shut down properly after receiving a preshutdown control. 8/24/2013 4:39:44 PM, Error: Service Control Manager [7030] - The TrueVector Internet Monitor service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. . ==== End Of File ===========================