Zebadon

Okay thanks. I actually found my problem in another post, and followed the links to solve it. No traces so far, so thanks for having this forum that allowed me to fix my issue. If I come across another issue I'll be sure to post here and follow the steps. Sorry about that.

Does anyone know how to fix this please?

Can anyone help me with this?

Anyone?

This is my first post, so bare with me. Here is my DDS.text DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.25.2Run by Traven at 21:33:57 on 2013-09-01Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.8122.6596 [GMT -7:00].AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files\Intel\iCLS Client\HeciServer.exeC:\Windows\system32\dashost.exeC:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Windows\SysWOW64\PnkBstrA.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Program Files\Windows Defender\MsMpEng.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\System32\svchost.exe -k LocalServicePeerNetC:\Windows\system32\SearchIndexer.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Windows\System32\dwm.exeC:\Windows\system32\taskhostex.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Windows\Explorer.EXEC:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exeC:\Windows\System32\RuntimeBroker.exeC:\Program Files (x86)\Steam\Steam.exeC:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\Program Files (x86)\Common Files\Steam\SteamService.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\SearchProtocolHost.exeC:\Windows\system32\SearchFilterHost.exeC:\Windows\system32\SearchProtocolHost.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uSearch Bar = PreservemWinlogon: Userinit = userinit.exe,BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dlluRun: [steam] "C:\Program Files (x86)\Steam\steam.exe" -silentmRun: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRunmRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ISCTSY~1.LNK - C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exeTrusted Zone: clonewarsadventures.comTrusted Zone: freerealms.comTrusted Zone: soe.comTrusted Zone: sony.comTCP: NameServer = 192.168.2.1TCP: Interfaces\{123E1D51-98F7-4350-A8CE-2FC9A4122CA4} : DHCPNameServer = 192.168.2.1SSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-SSODL: WebCheck - <orphaned>.============= SERVICES / DRIVERS ===============.R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-3-28 241152]R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-7-27 636952]R2 ISCTAgent;ISCT Always Updated Agent;C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2012-8-16 149032]R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-8-23 166432]R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-8-23 418376]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-8-23 701512]R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-8-23 365600]R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\Drivers\AtihdW86.sys [2013-4-23 98744]R3 hitmanpro37;HitmanPro 3.7 Support Driver;C:\Windows\System32\Drivers\hitmanpro37.sys [2013-8-31 32512]R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\Drivers\ikbevent.sys [2012-8-16 20968]R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\Drivers\imsevent.sys [2012-8-16 19944]R3 ISCT;Intel® Smart Connect Technology Device Driver;C:\Windows\System32\Drivers\ISCTD64.sys [2013-1-19 46568]R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-8-23 25928]R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-8-23 690832]R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\Drivers\WPRO_41_2001.sys [2013-8-23 34752]S3 amdkmafd;AMD Audio Bus Lower Filter;C:\Windows\System32\Drivers\amdkmafd.sys [2012-9-22 21160]S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656].=============== Created Last 30 ================.2013-09-02 02:39:55 9515512 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BA620FD9-BD29-47EF-A47B-733C04971338}\mpengine.dll2013-09-01 07:08:30 941720 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D3BC58AA-F2E4-4184-9CB6-414C741201AC}\gapaengine.dll2013-09-01 07:08:15 9515512 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll2013-09-01 06:55:06 32512 ----a-w- C:\Windows\System32\drivers\hitmanpro37.sys2013-09-01 06:06:43 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp2013-08-31 22:31:10 -------- d-----w- C:\Users\iTzx\AppData\Local\Sidebar72013-08-31 05:33:40 -------- d-----w- C:\Users\iTzx\AppData\Local\Adobe2013-08-31 03:22:34 -------- d-----w- C:\BOSS2013-08-29 04:52:35 -------- d-----w- C:\Users\iTzx\AppData\Local\Ubisoft Game Launcher2013-08-27 18:50:18 -------- d-----w- C:\Windows\SysWow64\AGEIA2013-08-27 18:50:10 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard2013-08-26 22:53:08 301568 ----a-w- C:\Windows\System32\newdev.dll2013-08-26 22:53:07 76288 ----a-w- C:\Windows\System32\newdev.exe2013-08-26 22:53:07 75264 ----a-w- C:\Windows\System32\ndadmin.exe2013-08-26 22:53:07 74240 ----a-w- C:\Windows\SysWow64\newdev.exe2013-08-26 22:53:07 73728 ----a-w- C:\Windows\SysWow64\ndadmin.exe2013-08-26 22:53:07 275968 ----a-w- C:\Windows\SysWow64\newdev.dll2013-08-26 22:53:06 68608 ----a-w- C:\Windows\System32\wwanprotdim.dll2013-08-26 22:53:01 7168 ----a-w- C:\Windows\System32\KBDKURD.DLL2013-08-26 22:53:01 6656 ----a-w- C:\Windows\SysWow64\KBDKURD.DLL2013-08-26 22:53:01 1184256 ----a-w- C:\Windows\System32\Display.dll2013-08-26 22:53:01 1164800 ----a-w- C:\Windows\SysWow64\Display.dll2013-08-26 22:51:43 3236864 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll2013-08-26 22:50:59 46592 ----a-w- C:\Windows\SysWow64\vds_ps.dll2013-08-26 22:49:59 533224 ----a-w- C:\Windows\System32\drivers\bxvbda.sys2013-08-26 22:48:59 76288 ----a-w- C:\Windows\System32\RpcEpMap.dll2013-08-26 22:32:41 -------- d-----w- C:\Users\iTzx\AppData\Local\ArmA 22013-08-26 22:26:44 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2013-08-26 22:26:44 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2013-08-25 20:52:15 -------- d-----w- C:\ProgramData\Blizzard Entertainment2013-08-25 20:52:15 -------- d-----w- C:\Program Files (x86)\World of Warcraft2013-08-25 20:52:15 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment2013-08-25 20:51:31 -------- d-----w- C:\ProgramData\Battle.net2013-08-25 19:13:12 -------- d-----w- C:\Users\iTzx\AppData\Local\SCE2013-08-25 18:57:17 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll2013-08-25 18:57:15 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll2013-08-25 07:03:25 447752 ----a-w- C:\Windows\SysWow64\vp6vfw.dll2013-08-25 05:20:47 278800 ------w- C:\Windows\System32\MpSigStub.exe2013-08-25 05:02:06 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2013-08-25 05:02:01 -------- d-----w- C:\Users\iTzx\AppData\Local\PunkBuster2013-08-25 05:01:55 -------- d-----w- C:\Windows\System32\MRT2013-08-25 05:01:00 -------- d-----w- C:\Users\iTzx\AppData\Local\ESN2013-08-25 05:00:56 -------- d-----w- C:\Program Files (x86)\Battlelog Web Plugins2013-08-25 04:49:27 -------- d-----w- C:\ProgramData\EA Core2013-08-25 04:49:26 -------- d-----w- C:\ProgramData\EA Logs2013-08-25 02:55:14 17888 ----a-w- C:\Windows\System32\msvcr100_clr0400.dll2013-08-25 02:55:12 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll2013-08-25 02:52:40 888320 ----a-w- C:\Windows\System32\autochk.exe2013-08-25 02:51:19 3552768 ----a-w- C:\Windows\System32\tquery.dll2013-08-25 02:50:59 94208 ----a-w- C:\Windows\SysWow64\mssitlb.dll2013-08-25 02:48:51 1255936 ----a-w- C:\Windows\System32\certutil.exe2013-08-25 02:48:50 141312 ----a-w- C:\Windows\System32\cryptnet.dll2013-08-25 02:48:50 109056 ----a-w- C:\Windows\SysWow64\cryptnet.dll2013-08-25 02:48:50 1013248 ----a-w- C:\Windows\SysWow64\certutil.exe2013-08-25 02:48:39 2233168 ----a-w- C:\Windows\System32\drivers\tcpip.sys2013-08-25 02:48:38 411880 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS2013-08-25 02:45:36 2893824 ----a-w- C:\Windows\System32\msmpeg2vdec.dll2013-08-25 02:45:36 2400256 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll2013-08-25 02:44:12 1558912 ----a-w- C:\Program Files\Windows Defender\DbgHelp.dll2013-08-25 02:44:12 149264 ----a-w- C:\Program Files\Windows Defender\SymSrv.dll2013-08-25 02:44:00 2842112 ----a-w- C:\Windows\System32\WMVDECOD.DLL2013-08-25 02:44:00 2620928 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL2013-08-25 02:41:46 595968 ----a-w- C:\Windows\System32\qedit.dll2013-08-25 02:41:46 496640 ----a-w- C:\Windows\SysWow64\qedit.dll2013-08-25 02:41:46 4036096 ----a-w- C:\Windows\System32\win32k.sys2013-08-25 02:41:26 86016 ----a-w- C:\Windows\System32\ncryptsslp.dll2013-08-25 02:41:26 71168 ----a-w- C:\Windows\SysWow64\ncryptsslp.dll2013-08-25 02:39:53 9216 ----a-w- C:\Windows\System32\dpnhupnp.dll2013-08-25 02:38:47 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2013-08-25 02:38:47 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex02013-08-25 02:38:46 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe2013-08-25 02:38:42 861184 ----a-w- C:\Windows\System32\drivers\http.sys2013-08-24 22:34:38 -------- d-----w- C:\Program Files (x86)\Origin Games2013-08-24 22:34:09 -------- d-----w- C:\Users\iTzx\AppData\Roaming\Origin2013-08-24 22:34:08 -------- d-----w- C:\Users\iTzx\AppData\Local\Origin2013-08-24 22:32:07 -------- d-----w- C:\ProgramData\Origin2013-08-24 22:32:06 -------- d-----w- C:\ProgramData\Electronic Arts2013-08-24 22:32:05 -------- d-----w- C:\Program Files (x86)\Origin2013-08-24 22:30:50 -------- d-----w- C:\Users\iTzx\AppData\Local\The Witcher 22013-08-24 20:47:04 -------- d-----w- C:\Users\iTzx\AppData\Local\Black_Tree_Gaming2013-08-24 18:43:22 -------- d-----w- C:\Users\iTzx\AppData\Local\Skyrim2013-08-24 18:31:32 -------- d-----w- C:\Users\iTzx\AppData\Local\PokerStars.NET2013-08-24 18:31:20 -------- d-----w- C:\Program Files (x86)\PokerStars.NET2013-08-24 09:37:23 778856 ----a-w- C:\Windows\SysWow64\PresentationNative_v0300.dll2013-08-24 09:37:23 35400 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe2013-08-24 09:37:23 35400 ----a-w- C:\Windows\System32\TsWpfWrp.exe2013-08-24 09:37:23 124040 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll2013-08-24 09:37:23 1166440 ----a-w- C:\Windows\System32\PresentationNative_v0300.dll2013-08-24 09:37:23 102528 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll2013-08-24 09:33:31 -------- d-----w- C:\Program Files\Nexus Mod Manager2013-08-24 08:27:27 -------- d-----w- C:\Users\iTzx\AppData\Roaming\Toribash2013-08-24 08:27:10 -------- d-----w- C:\Games2013-08-24 08:25:23 -------- d-----w- C:\Fraps2013-08-24 07:07:59 73544 ----a-w- C:\Windows\System32\XAPOFX1_3.dll2013-08-24 07:05:52 -------- d-----w- C:\Users\iTzx\AppData\Local\CrashDumps2013-08-24 06:34:05 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll2013-08-24 06:34:05 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll2013-08-24 06:34:04 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2013-08-24 04:06:33 -------- d-----w- C:\Users\iTzx\AppData\Local\ElevatedDiagnostics2013-08-24 04:03:18 -------- d-----w- C:\Users\iTzx\AppData\Roaming\Awesomium2013-08-24 03:58:39 -------- d-----w- C:\Users\iTzx\AppData\Local\ATI2013-08-24 00:39:36 -------- d-----w- C:\ProgramData\AMD2013-08-24 00:39:35 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies2013-08-24 00:39:35 -------- d-----w- C:\Program Files (x86)\AMD AVT2013-08-24 00:38:54 -------- d-----w- C:\Program Files (x86)\ATI Technologies2013-08-24 00:38:47 -------- d-----w- C:\Program Files\ATI Technologies2013-08-24 00:38:45 -------- d-----w- C:\Program Files\ATI2013-08-24 00:38:09 -------- d-----w- C:\AMD2013-08-24 00:14:37 -------- d-----w- C:\winki2013-08-24 00:14:16 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys2013-08-24 00:12:44 8192 ----a-r- C:\Windows\System32\drivers\IntelMEFWVer.dll2013-08-24 00:12:08 -------- d-----w- C:\Windows\SysWow64\RTCOM2013-08-24 00:12:08 -------- d-----w- C:\Program Files\Realtek2013-08-24 00:10:55 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll2013-08-24 00:10:39 -------- d-----w- C:\Intel2013-08-24 00:08:36 -------- d-----w- C:\MSI2013-08-23 23:37:09 -------- d-----w- C:\Program Files (x86)\Common Files\Steam2013-08-23 23:37:07 -------- d-----w- C:\Program Files (x86)\Steam2013-08-23 23:28:34 -------- d-----w- C:\ProgramData\HitmanPro2013-08-23 23:16:33 -------- d-----w- C:\Windows\ERUNT2013-08-23 23:14:30 -------- d-----w- C:\AdwCleaner2013-08-23 23:07:39 -------- d-----w- C:\Program Files\CCleaner2013-08-23 23:03:12 -------- d-----w- C:\Users\iTzx\AppData\Roaming\Malwarebytes2013-08-23 23:02:49 -------- d-----w- C:\ProgramData\Malwarebytes2013-08-23 23:02:48 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys2013-08-23 23:02:48 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware2013-08-23 22:55:34 -------- d-----w- C:\Users\iTzx\AppData\Local\Programs2013-08-23 22:54:57 -------- d-----w- C:\Users\iTzx\AppData\Local\Google2013-08-23 22:54:48 -------- d-----w- C:\Program Files\Common Files\ATI Technologies2013-08-23 22:54:15 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin2013-08-23 22:50:19 -------- d-----r- C:\Users\iTzx\Searches2013-08-23 22:50:19 -------- d-----r- C:\Users\iTzx\Contacts2013-08-23 14:45:05 -------- d-----w- C:\Windows\Panther2013-08-23 13:45:48 0 ----a-w- C:\Windows\ativpsrm.bin.==================== Find3M ====================.2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll2013-07-26 05:13:28 915968 ----a-w- C:\Windows\System32\uxtheme.dll2013-07-26 05:13:28 53760 ----a-w- C:\Windows\System32\UXInit.dll2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll2013-07-26 03:13:15 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb2013-07-26 00:54:34 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll2013-07-13 06:18:21 337408 ----a-w- C:\Windows\System32\wintrust.dll2013-07-13 06:16:06 68096 ----a-w- C:\Windows\System32\cryptsvc.dll2013-07-13 06:16:06 1889280 ----a-w- C:\Windows\System32\crypt32.dll2013-07-13 06:15:53 98304 ----a-w- C:\Windows\System32\apprepsync.dll2013-07-13 06:15:53 124416 ----a-w- C:\Windows\System32\apprepapi.dll2013-07-13 04:24:58 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll2013-07-13 04:23:11 1568256 ----a-w- C:\Windows\SysWow64\crypt32.dll2013-07-13 04:23:03 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll2013-07-13 04:23:03 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll2013-07-02 00:44:14 36288 ----a-w- C:\Windows\System32\drivers\WdBoot.sys2013-07-01 22:08:49 247216 ----a-w- C:\Windows\System32\drivers\WdFilter.sys2013-06-16 22:41:31 997632 ----a-w- C:\Windows\System32\drivers\ndis.sys.============= FINISH: 21:34:08.64 =============== Here is the Attach.exe: .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 8Boot Device: \Device\HarddiskVolume1Install Date: 8/23/2013 3:49:35 PMSystem Uptime: 8/31/2013 11:54:45 PM (22 hours ago).Motherboard: MSI | | B75MA-P45 (MS-7798)Processor: Intel® Pentium® CPU G860 @ 3.00GHz | SOCKET 0 | 3000/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 931 GiB total, 665.854 GiB free.D: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP1: 8/23/2013 4:36:52 PM - Installed SteamRP2: 8/24/2013 7:35:35 PM - Installed DirectXRP3: 8/26/2013 3:31:05 PM - Installed DirectXRP4: 8/27/2013 9:14:21 PM - Installed DirectXRP5: 8/31/2013 3:30:29 PM - Installed 8GadgetPack.==== Installed Programs ======================.Adobe Flash Player 11 PluginAMD Accelerated Video TranscodingAMD Catalyst Install ManagerAMD Wireless Display v3.0Arma 2Arma 2: British Armed ForcesArma 2: DayZ ModArma 2: Operation ArrowheadArma 2: Private Military CompanyBattlefield 3™Battlelog Web PluginsBattlEye UninstallBOSSCall of Duty: Modern Warfare 3Call of Duty: Modern Warfare 3 - MultiplayerCatalyst Control CenterCatalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyCatalyst Control Center Localization Allccc-utility64CCC Help Chinese StandardCCC Help Chinese TraditionalCCC Help CzechCCC Help DanishCCC Help DutchCCC Help EnglishCCC Help FinnishCCC Help FrenchCCC Help GermanCCC Help GreekCCC Help HungarianCCC Help ItalianCCC Help JapaneseCCC Help KoreanCCC Help NorwegianCCC Help PolishCCC Help PortugueseCCC Help RussianCCC Help SpanishCCC Help SwedishCCC Help ThaiCCC Help TurkishCCleanerChivalry: Medieval WarfareCommand and Conquer: Red Alert 3 - UprisingCrysis 2 Maximum EditionDishonoredESN SonarFrapsGoogle ChromeGoogle Update HelperIntel® Control CenterIntel® Management Engine ComponentsIntel® Smart Connect Technology 3.0 x64Intel® Trusted Connect Service ClientJava 7 Update 25Java Auto UpdaterMalwarebytes Anti-Malware version 1.75.0.1300Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Mirror's EdgeNexus Mod ManagerNVIDIA PhysX v8.10.17Orcs Must Die! 2OriginPlanetSide 2PokerStars.netPunkBuster ServicesRealtek Ethernet Controller DriverRealtek High Definition Audio DriverSaints Row IVSid Meier's Civilization VSleeping Dogs™SteamThe Elder Scrolls V: SkyrimThe Sims™ 3The Sims™ 3 High-End Loft StuffThe Sims™ 3 Late NightThe Witcher 2: Assassins of Kings Enhanced EditionTom Clancy's Splinter Cell BlacklistUplayWinkiWinRAR 5.00 beta 8 (64-bit)World of Warcraft.==== Event Viewer Messages From Past Week ========.8/31/2013 11:55:08 PM, Error: Service Control Manager [7024] - The HitmanPro 3.7 Crusader (Boot) service terminated with the following service-specific error: The operation completed successfully.8/29/2013 6:34:22 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.8/29/2013 6:34:22 PM, Error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.8/25/2013 12:22:51 PM, Error: Schannel [36888] - A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 51. The Windows SChannel error state is 900..==== End Of File =========================== Explanation: I just bought a new PC last week (for gaming) and I click what I thought was a link to download google chrome. I knew I had messed up when it asked me if I wanted to install several toolbars, at which case I shut everything down, but it was too late. Conduit had been installed. I ran a scan that came up clean, but after scanning I restarted and it detected a few program that I listed in the JRT.exe. One that couldn't be removed was Toolbarhelper.exe and a program that was blocked that I noticed was stub.exe. What are these? Here's the list of programs that I used prior to that: 1. Rkill 2. ADWCleaner 3. Malware Bytes 4. Junk Removal Tool 5. HitmanPro(64 bit) After I thought I had successfully deleted conduit, I ran my weekly check last night and these were my results: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by ThisisuVersion: 5.5.4 (08.22.2013:1)OS: Windows 8 x64Ran by Traven on Sat 08/31/2013 at 23:56:24.09~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3289663 ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on Sat 08/31/2013 at 23:58:46.87End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ After I ran that, I restarted my PC to find MalWareBytes had quarantined several programs. Log list is here: Malwarebytes Anti-Malware (Trial) 1.75.0.1300www.malwarebytes.org Database version: v2013.08.23.07 Windows 8 x64 NTFSInternet Explorer 10.0.9200.16384iTzx :: TRAVENSPC [administrator] Protection: Enabled 8/23/2013 4:19:09 PMmbam-log-2013-08-23 (16-19-09).txt Scan type: Full scan (C:\|)Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 285267Time elapsed: 7 minute(s), 16 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 1HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} (PUP.Optional.OptimzerPro.A) -> Quarantined and deleted successfully. Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 7C:\Users\iTzx\AppData\Local\Temp\airCFF1.exe (PUP.Optional.OptimizePro.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\SPStub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ToolbarHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\ctbe.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\ieLogic.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\statisticsStub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\stub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully. (end) I need help making sure my PC is COMPLETELY clean. I ran Windows Defender twice and it came up with nothing, I ran through my list of programs I mentioned at the start twice, and again it came back clean. Help?

Disregard this post, I made a new one with more info.

This is my first post, so bare with me. I just bought a new PC last week (for gaming) and I click what I thought was a link to download google chrome. I knew I had messed up when it asked me if I wanted to install several toolbars, at which case I shut everything down, but it was too late. Conduit had been installed. So I ran the following list of programs: 1. Rkill 2. ADWCleaner 3. Malware Bytes 4. Junk Removal Tool 5. HitmanPro(64 bit) After I thought I had successfully deleted conduit, I ran my weekly check last night and these were my results: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by ThisisuVersion: 5.5.4 (08.22.2013:1)OS: Windows 8 x64Ran by Traven on Sat 08/31/2013 at 23:56:24.09~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3289663 ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on Sat 08/31/2013 at 23:58:46.87End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ After I ran that, I restarted my PC to find MalWareBytes had quarantined several programs. Log list is here: Malwarebytes Anti-Malware (Trial) 1.75.0.1300www.malwarebytes.org Database version: v2013.08.23.07 Windows 8 x64 NTFSInternet Explorer 10.0.9200.16384iTzx :: TRAVENSPC [administrator] Protection: Enabled 8/23/2013 4:19:09 PMmbam-log-2013-08-23 (16-19-09).txt Scan type: Full scan (C:\|)Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 285267Time elapsed: 7 minute(s), 16 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 1HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} (PUP.Optional.OptimzerPro.A) -> Quarantined and deleted successfully. Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 7C:\Users\iTzx\AppData\Local\Temp\airCFF1.exe (PUP.Optional.OptimizePro.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\SPStub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ToolbarHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\ctbe.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\ieLogic.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\statisticsStub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Users\iTzx\AppData\Local\Temp\ct3289663\stub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully. (end) I need help making sure my PC is COMPLETELY clean. I ran Windows Defender twice and it came up with nothing, I ran through my list of programs I mentioned at the start twice, and again it came back clean. Help?