Jump to content

J5566

Members
  • Posts

    6
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Here's the log for today. 2013/12/13 01:46:54 -0600 TROGDOR Jerrysohma IP-BLOCK 80.82.64.144 (Type: incoming, Port: 53, Process: svchost.exe) 2013/12/13 01:50:15 -0600 TROGDOR Jerrysohma IP-BLOCK 80.82.64.145 (Type: incoming, Port: 53, Process: svchost.exe) 2013/12/13 01:50:15 -0600 TROGDOR Jerrysohma IP-BLOCK 80.82.64.145 (Type: incoming, Port: 53, Process: svchost.exe) 2013/12/13 16:11:35 -0600 TROGDOR Jerrysohma IP-BLOCK 89.248.168.136 (Type: incoming, Port: 53, Process: svchost.exe)
  2. Hi, There have been numerous IP blocks yesterday and the day before. There was 10 yesterday and 20 the day before. Here is the quick scan log Malwarebytes Anti-Malware (PRO) 1.75.0.1300www.malwarebytes.org Database version: v2013.12.12.08 Windows 8 x64 NTFSInternet Explorer 10.0.9200.16750Jerrysohma :: TROGDOR [administrator] Protection: Enabled 12/12/2013 3:59:13 PMmbam-log-2013-12-12 (15-59-13).txt Scan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 238867Time elapsed: 2 minute(s), 32 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected) (end) Here is the hijackthis log Logfile of Trend Micro HijackThis v2.0.4Scan saved at 3:55:59 PM, on 12/12/2013Platform: Unknown Windows (WinNT 6.02.1008)MSIE: Internet Explorer v10.0 (10.00.9200.16537)Boot mode: Normal Running processes:C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\TuneClone\TuneClone.exeC:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exeC:\Program Files (x86)\Steam\Steam.exeC:\Program Files (x86)\Pando Networks\Media Booster\PMB.exeC:\Program Files (x86)\OpenOffice.org 3\program\soffice.exeC:\Program Files (x86)\OpenOffice.org 3\program\soffice.binC:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exeC:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exeC:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exeC:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exeC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\Program Files (x86)\iTunes\iTunesHelper.exeC:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\Jerrysohma\Desktop\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htmR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllO2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dllO2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLLO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllO3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dllO4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /sO4 - HKLM\..\Run: [updateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"O4 - HKLM\..\Run: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"O4 - HKLM\..\Run: [Reader Library Launcher] C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exeO4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\7e4035cd-064f-4435-af3e-49b9cf205e12.exe /checkO4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /noguiO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-startO4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\steam.exe" -silentO4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exeO4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exeO8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htmO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dllO9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dllO9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dllO9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dllO9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllO9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphicsO15 - Trusted Zone: *.clonewarsadventures.comO15 - Trusted Zone: *.freerealms.comO15 - Trusted Zone: *.soe.comO15 - Trusted Zone: *.sony.comO16 - DPF: {4FF78044-96B4-4312-A5B7-FDA3CB328095} (ExentInf1 Class) - O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLLO18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLLO18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllO18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - (no file)O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeO23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeO23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exeO23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exeO23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exeO23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: BitRaider Mini-Support Service (BRSptSvc) - BitRaider, LLC - C:\ProgramData\BitRaider\BRSptSvc.exeO23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exeO23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exeO23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exeO23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exeO23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exeO23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exeO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exeO23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeO23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exeO23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeO23 - Service: McAfee Personal Firewall Service (McMPFSvc) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)O23 - Service: McAfee Services (mcmscsvc) - Unknown owner - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (file missing)O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - Unknown owner - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (file missing)O23 - Service: McAfee Network Agent (McNASvc) - Unknown owner - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (file missing)O23 - Service: McAfee Scanner (McODS) - Unknown owner - C:\windows\O23 - Service: McAfee Proxy Service (McProxy) - Unknown owner - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (file missing)O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exeO23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exeO23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exeO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)O23 - Service: McAfee Anti-Spam Service (MSK80Service) - Unknown owner - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (file missing)O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exeO23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exeO23 - Service: PC Monitor - MMSOFT Design Ltd. - C:\Program Files\PC Monitor\PCMonitorSrv.exeO23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exeO23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeO23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exeO23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exeO23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exeO23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exeO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeO23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeO23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)O23 - Service: Intel® PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe --End of file - 16472 bytes
  3. I ran the malwarebytes anti-rootkit, and it came back clean, no threats found. When i ran the rouguekiller it gave me 2 reports, neither called RKreport[2], it saved RKreport[0]_D_12092013_194512 and RKreport[0]_S_12092013_194442. Which one would you like to see, or should i post them both? There were multiple IP blocks the 7th, after my last post. None yesterday and 6 between midnight and 1 am this morning. But none after that.
  4. Hello, I ran Combifix, there are still IP blocks. There has been 4 in the past hour alone. here is the log ComboFix 13-12-06.01 - Jerrysohma 12/06/2013 13:46:59.1.8 - x64Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.12235.9019 [GMT -6:00]Running from: c:\users\Jerrysohma\Downloads\ComboFix.exeAV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}. ADS - windows: deleted 192 bytes in 1 streams. .((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\programdata\Roamingc:\users\Jerrysohma\AppData\Local\assembly\tmpc:\windows\SysWow64\frapsvid.dll..((((((((((((((((((((((((( Files Created from 2013-11-06 to 2013-12-06 )))))))))))))))))))))))))))))))..2013-12-06 07:21 . 2013-12-06 07:21 -------- d-----w- c:\users\Jerrysohma\AppData\Local\Macromedia2013-12-06 07:20 . 2013-12-06 07:20 -------- d-----w- c:\users\Jerrysohma\AppData\Local\Mozilla2013-12-05 02:51 . 2013-12-06 19:54 -------- d-----w- c:\users\Jerrysohma\AppData\Local\LogMeIn Hamachi2013-12-05 02:51 . 2013-12-05 02:51 -------- d-----w- c:\users\Jerrysohma\AppData\Local\LogMeIn2013-12-05 02:51 . 2013-12-05 02:51 -------- d-----w- c:\programdata\LogMeIn2013-12-05 02:51 . 2013-12-05 02:51 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi2013-12-04 18:34 . 2013-12-04 18:34 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF692013-12-04 18:34 . 2013-12-04 18:34 -------- d-----w- c:\program files\iTunes2013-12-04 18:34 . 2013-12-04 18:34 -------- d-----w- c:\program files (x86)\iTunes2013-12-04 18:34 . 2013-12-04 18:34 -------- d-----w- c:\program files\iPod2013-12-02 20:48 . 2013-12-02 20:48 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\collection2013-12-02 06:54 . 2013-12-02 06:54 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\System2013-12-02 06:54 . 2013-12-02 06:58 -------- d-sh--w- c:\users\Jerrysohma\AppData\Roaming\wyUpdate AU2013-12-02 06:54 . 2013-12-02 06:54 -------- d-----w- c:\users\Jerrysohma\AppData\Local\Universe Sandbox2013-12-02 06:26 . 2013-12-02 06:26 -------- d-----w- c:\users\Jerrysohma\AppData\Local\PAYDAY 2 (Demo)2013-12-02 06:25 . 2013-12-02 06:25 -------- d-----w- c:\program files (x86)\AGEIA Technologies2013-11-29 22:19 . 2013-11-29 22:19 46136 ---ha-w- c:\windows\system32\drivers\Hamdrv.sys2013-11-29 18:59 . 2013-11-29 18:59 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\AVAST Software2013-11-27 21:24 . 2013-11-27 21:24 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories2013-11-26 06:28 . 2013-11-26 06:28 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\MotioninJoy2013-11-26 06:28 . 2013-11-26 06:28 -------- d-----w- c:\program files\MotioninJoy2013-11-26 06:28 . 2011-12-08 01:42 328712 ----a-w- c:\windows\system32\MijFrc.dll2013-11-26 06:06 . 2013-11-26 06:06 -------- d-----w- c:\windows\LastGood2013-11-26 06:06 . 2013-11-26 06:06 -------- d-----w- C:\iBTWU2013-11-26 00:23 . 2013-11-26 00:23 -------- d-----w- c:\windows\ERUNT2013-11-26 00:17 . 2013-11-26 00:19 -------- d-----w- C:\AdwCleaner2013-11-25 23:57 . 2012-03-25 16:26 115272 ----a-w- c:\windows\system32\drivers\MijXfilt.sys2013-11-25 23:57 . 2011-12-08 01:42 74960 ----a-w- c:\windows\system32\drivers\xusb21.sys2013-11-22 06:13 . 2013-11-22 06:13 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\OBS2013-11-22 06:13 . 2013-11-22 06:13 -------- d-----w- c:\program files\OBS2013-11-22 06:13 . 2013-11-22 06:13 -------- d-----w- c:\program files (x86)\OBS2013-11-22 01:12 . 2013-11-22 01:12 -------- d-----w- c:\program files (x86)\Cisco2013-11-22 01:12 . 2013-11-22 01:12 -------- d-----w- c:\program files\Common Files\Intel2013-11-20 21:34 . 2013-11-20 21:34 -------- d-----w- c:\users\Jerrysohma\AppData\Local\Logitech2013-11-20 21:34 . 2013-11-20 21:34 -------- d-----w- c:\programdata\LogiShrd2013-11-20 21:33 . 2013-11-20 21:33 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys2013-11-20 21:33 . 2013-11-20 21:34 -------- d-----w- c:\program files\Logitech Gaming Software2013-11-20 21:33 . 2013-11-20 21:33 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\Logitech2013-11-20 21:33 . 2013-11-20 21:33 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\Logishrd2013-11-18 14:44 . 2013-11-18 14:44 -------- d-----w- c:\windows\SysWow64\xlive2013-11-18 14:44 . 2013-11-18 14:44 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE2013-11-18 02:45 . 2013-11-18 02:45 -------- d-----w- c:\program files (x86)\MSECache2013-11-17 07:30 . 2013-11-17 07:30 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\Malwarebytes2013-11-17 07:30 . 2013-11-17 07:30 -------- d-----w- c:\programdata\Malwarebytes2013-11-17 07:30 . 2013-11-17 07:30 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware2013-11-17 07:30 . 2013-04-04 20:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys2013-11-15 22:01 . 2013-11-15 22:01 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\Red Alert 3 Uprising2013-11-14 21:58 . 2013-11-14 21:58 -------- d-----w- c:\programdata\WinterSoft2013-11-14 21:58 . 2013-11-14 21:58 -------- d-----w- c:\programdata\5c06ab9d9ab4ce8f2013-11-14 21:57 . 2013-11-14 21:58 -------- d-----w- c:\programdata\InstallMate2013-11-13 19:57 . 2013-11-05 22:58 78296 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-11-13 19:57 . 2013-11-05 22:58 694232 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2013-11-13 04:04 . 2013-09-04 03:11 576512 ----a-w- c:\windows\system32\drivers\afd.sys2013-11-13 04:03 . 2013-10-10 09:21 1160192 ----a-w- c:\windows\system32\IKEEXT.DLL2013-11-13 04:03 . 2013-10-10 11:53 96600 ----a-w- c:\windows\system32\drivers\wfplwfs.sys2013-11-13 04:03 . 2013-10-10 09:20 723968 ----a-w- c:\windows\system32\BFE.DLL2013-11-13 04:00 . 2013-08-23 07:22 2062848 ----a-w- c:\windows\system32\d3d11.dll2013-11-13 04:00 . 2013-08-23 01:44 1711616 ----a-w- c:\windows\SysWow64\d3d11.dll2013-11-13 04:00 . 2013-09-23 22:30 419328 ----a-w- c:\windows\system32\schannel.dll2013-11-13 04:00 . 2013-09-23 22:30 323072 ----a-w- c:\windows\SysWow64\schannel.dll2013-11-13 04:00 . 2013-10-01 23:37 2035712 ----a-w- c:\windows\SysWow64\authui.dll2013-11-13 04:00 . 2013-10-01 23:26 2304512 ----a-w- c:\windows\system32\authui.dll2013-11-13 02:37 . 2013-11-13 02:38 -------- d-----w- c:\program files (x86)\World of Warcraft2013-11-13 02:37 . 2013-11-13 02:37 -------- d-----w- c:\programdata\Blizzard Entertainment2013-11-13 02:37 . 2013-11-13 02:37 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment2013-11-13 02:36 . 2013-11-13 02:36 -------- d-----w- c:\programdata\Battle.net2013-11-13 00:47 . 2013-11-13 00:47 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\WebApp2013-11-12 18:04 . 2013-11-12 18:04 -------- d-----w- c:\users\Jerrysohma\AppData\Local\Introversion2013-11-08 07:34 . 2013-11-08 07:34 -------- d-----w- c:\program files (x86)\Microsoft SkyDrive2013-11-08 07:34 . 2013-11-08 07:34 -------- d-----r- c:\users\Jerrysohma\SkyDrive2013-11-08 07:34 . 2013-11-08 07:34 -------- d-----w- c:\programdata\Microsoft SkyDrive2013-11-08 07:32 . 2013-11-13 21:42 566480 ----a-w- c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe2013-11-08 07:31 . 2013-11-13 21:44 -------- d-----w- c:\program files\Microsoft Office 152013-11-08 07:23 . 2013-11-08 07:23 -------- d-----w- c:\users\Jerrysohma\AppData\Roaming\VERIZON...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2013-11-29 18:28 . 2013-05-31 13:46 409832 ----a-w- c:\windows\system32\drivers\aswSP.sys2013-11-29 18:28 . 2013-05-31 13:46 38984 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys2013-11-29 18:28 . 2013-05-31 13:46 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys2013-11-29 18:28 . 2013-05-31 13:45 84328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys2013-11-29 18:28 . 2013-05-31 13:45 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys2013-11-29 18:28 . 2013-05-31 13:45 334648 ----a-w- c:\windows\system32\aswBoot.exe2013-11-29 18:28 . 2013-05-31 13:45 205320 ----a-w- c:\windows\system32\drivers\aswVmm.sys2013-11-29 18:28 . 2013-05-31 13:45 1032416 ----a-w- c:\windows\system32\drivers\aswSnx.sys2013-11-29 18:28 . 2013-05-31 13:45 43152 ----a-w- c:\windows\avastSS.scr2013-11-20 06:00 . 2013-05-31 17:00 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin2013-11-13 19:50 . 2013-05-31 02:38 82896128 ----a-w- c:\windows\system32\MRT.exe2013-11-07 07:11 . 2013-08-29 19:35 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr2013-11-07 07:11 . 2013-08-25 00:21 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.exe2013-11-05 05:23 . 2013-08-25 00:21 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.ex02013-10-18 01:36 . 2013-10-29 05:07 1063200 ----a-w- c:\windows\system32\nvspcap64.dll2013-10-18 01:36 . 2013-10-29 05:07 955168 ----a-w- c:\windows\SysWow64\nvspcap.dll2013-10-16 00:48 . 2013-10-28 02:05 9472600 ----a-w- c:\windows\SysWow64\nvopencl.dll2013-10-16 00:48 . 2013-10-28 02:05 30344992 ----a-w- c:\windows\system32\nvoglv64.dll2013-10-16 00:48 . 2013-10-28 02:05 15858664 ----a-w- c:\windows\SysWow64\nvwgf2um.dll2013-10-16 00:48 . 2013-10-28 02:05 11362672 ----a-w- c:\windows\system32\nvopencl.dll2013-10-16 00:48 . 2013-10-28 02:05 9516872 ----a-w- c:\windows\SysWow64\nvcuda.dll2013-10-16 00:48 . 2013-10-28 02:05 696096 ----a-w- c:\windows\system32\NvFBC64.dll2013-10-16 00:48 . 2013-10-28 02:05 655136 ----a-w- c:\windows\system32\NvIFR64.dll2013-10-16 00:48 . 2013-10-28 02:05 599840 ----a-w- c:\windows\SysWow64\NvFBC.dll2013-10-16 00:48 . 2013-10-28 02:05 560416 ----a-w- c:\windows\SysWow64\NvIFR.dll2013-10-16 00:48 . 2013-10-28 02:05 479520 ----a-w- c:\windows\system32\nvEncodeAPI64.dll2013-10-16 00:48 . 2013-10-28 02:05 405280 ----a-w- c:\windows\SysWow64\nvEncodeAPI.dll2013-10-16 00:48 . 2013-10-28 02:05 3131680 ----a-w- c:\windows\system32\nvcuvid.dll2013-10-16 00:48 . 2013-10-28 02:05 3124512 ----a-w- c:\windows\system32\nvcuvenc.dll2013-10-16 00:48 . 2013-10-28 02:05 2946848 ----a-w- c:\windows\SysWow64\nvcuvid.dll2013-10-16 00:48 . 2013-10-28 02:05 2747168 ----a-w- c:\windows\SysWow64\nvcuvenc.dll2013-10-16 00:48 . 2013-10-28 02:05 22933280 ----a-w- c:\windows\SysWow64\nvoglv32.dll2013-10-16 00:48 . 2013-10-28 02:05 1884448 ----a-w- c:\windows\system32\nvdispco6433158.dll2013-10-16 00:48 . 2013-10-28 02:05 18243632 ----a-w- c:\windows\system32\nvd3dumx.dll2013-10-16 00:48 . 2013-10-28 02:05 1511712 ----a-w- c:\windows\system32\nvdispgenco6433158.dll2013-10-16 00:48 . 2013-10-28 02:05 12537632 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys2013-10-16 00:48 . 2013-10-28 02:05 11415232 ----a-w- c:\windows\system32\nvcuda.dll2013-10-16 00:48 . 2013-10-28 02:05 25256224 ----a-w- c:\windows\system32\nvcompiler.dll2013-10-16 00:48 . 2013-10-28 02:05 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll2013-10-16 00:48 . 2013-05-18 18:37 61216 ----a-w- c:\windows\system32\OpenCL.dll2013-10-16 00:48 . 2013-05-18 18:37 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll2013-10-16 00:48 . 2013-05-18 18:37 18290536 ----a-w- c:\windows\system32\nvwgf2umx.dll2013-10-16 00:48 . 2013-05-18 18:37 3067560 ----a-w- c:\windows\system32\nvapi64.dll2013-10-16 00:48 . 2013-05-18 18:37 2694664 ----a-w- c:\windows\SysWow64\nvapi.dll2013-10-16 00:48 . 2013-05-18 18:37 15244272 ----a-w- c:\windows\SysWow64\nvd3dum.dll2013-10-15 21:54 . 2013-10-15 21:54 589600 ----a-w- c:\windows\SysWow64\nvStreaming.exe2013-10-15 21:47 . 2013-05-18 18:38 6665504 ----a-w- c:\windows\system32\nvcpl.dll2013-10-15 21:47 . 2013-05-18 18:38 3489568 ----a-w- c:\windows\system32\nvsvc64.dll2013-10-15 21:47 . 2013-05-18 18:38 922912 ----a-w- c:\windows\system32\nvvsvc.exe2013-10-15 21:47 . 2013-05-18 18:38 63776 ----a-w- c:\windows\system32\nvshext.dll2013-10-15 21:47 . 2013-05-18 18:38 2559776 ----a-w- c:\windows\system32\nvsvcr.dll2013-10-15 21:47 . 2013-05-18 18:38 219424 ----a-w- c:\windows\system32\nvmctray.dll2013-10-15 21:47 . 2013-05-18 18:38 597280 ----a-w- c:\windows\SysWow64\oemdspif.dll2013-10-15 17:42 . 2013-10-15 17:42 1721216 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll2013-10-15 17:42 . 2013-10-15 17:42 1390904 ----a-w- c:\windows\system32\drivers\btmhsf.sys2013-10-15 17:42 . 2013-10-15 17:42 80184 ----a-w- c:\windows\system32\btmwu.dll2013-10-15 17:42 . 2013-10-15 17:42 69088 ----a-w- c:\windows\system32\drivers\iBtFltCoex.sys2013-10-09 04:12 . 2013-10-09 04:12 2193136 ----a-w- c:\windows\system32\Netwuw01.dll2013-10-09 04:12 . 2013-10-09 04:12 3345376 ----a-w- c:\windows\system32\drivers\NETwew00.sys2013-10-04 18:50 . 2013-08-25 00:21 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe2013-09-27 23:01 . 2013-10-29 05:06 39200 ----a-w- c:\windows\system32\drivers\nvvad64v.sys2013-09-27 23:01 . 2013-10-29 05:06 28960 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll2013-09-27 23:01 . 2013-09-19 20:35 29984 ----a-w- c:\windows\system32\nvaudcap64v.dll2013-09-17 02:06 . 2013-09-17 02:06 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll2013-09-17 02:06 . 2013-09-10 16:21 1095080 ----a-w- c:\windows\system32\npDeployJava1.dll2013-09-17 02:06 . 2013-09-05 23:44 973736 ----a-w- c:\windows\system32\deployJava1.dll2013-09-17 02:06 . 2013-09-05 23:44 312744 ----a-w- c:\windows\system32\javaws.exe2013-09-17 02:06 . 2013-09-05 23:44 189352 ----a-w- c:\windows\system32\javaw.exe2013-09-17 02:06 . 2013-09-05 23:44 189352 ----a-w- c:\windows\system32\java.exe2013-09-12 08:58 . 2013-09-19 20:35 1884448 ----a-w- c:\windows\system32\nvdispco6432723.dll2013-09-12 08:58 . 2013-09-19 20:35 1511712 ----a-w- c:\windows\system32\nvdispgenco6432723.dll..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]2013-11-08 07:34 220632 ----a-w- c:\users\Jerrysohma\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\SkyDriveShell.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]2013-11-08 07:34 220632 ----a-w- c:\users\Jerrysohma\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\SkyDriveShell.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]2013-11-08 07:34 220632 ----a-w- c:\users\Jerrysohma\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\SkyDriveShell.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]2013-09-11 02:09 131248 ----a-w- c:\users\Jerrysohma\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]2013-09-11 02:09 131248 ----a-w- c:\users\Jerrysohma\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]2013-09-11 02:09 131248 ----a-w- c:\users\Jerrysohma\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Steam"="c:\program files (x86)\Steam\steam.exe" [2013-12-04 1823656]"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2013-06-07 3093624].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" [2012-09-12 56128]"YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2012-07-27 136488]"YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-07-27 167024]"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-19 217088]"RemoteControl10"="c:\program files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" [2012-03-29 91432]"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-07-12 155488]"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-05-11 958576]"Reader Library Launcher"="c:\program files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe" [2010-07-13 906648]"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]"20131121"="c:\program files\AVAST Software\Avast\setup\emupdate\7e4035cd-064f-4435-af3e-49b9cf205e12.exe" [2013-11-23 180184]"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-11-29 3568312]"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-11-02 152392]"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-11-29 3806544].c:\users\Jerrysohma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 5 (0x5)"EnableUIADesktopToggle"= 0 (0x0)"EnableCursorSuppression"= 1 (0x1)"ConsentPromptBehaviorUser"= 3 (0x3).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]"LoadAppInit_DLLs"=1 (0x1).[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]@="".[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]@="".R0 mfeelamk;McAfee Inc. mfeelamk;c:\windows\system32\drivers\mfeelamk.sys;c:\windows\SYSNATIVE\drivers\mfeelamk.sys [x]R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [x]R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]R3 BRDriver64;BRDriver64;c:\programdata\BitRaider\BRDriver64.sys;c:\programdata\BitRaider\BRDriver64.sys [x]R3 BRSptSvc;BitRaider Mini-Support Service;c:\programdata\BitRaider\BRSptSvc.exe;c:\programdata\BitRaider\BRSptSvc.exe [x]R3 BthLEEnum;Bluetooth Low Energy Driver;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]R3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]R3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]R3 CompFilter64;UVCCompositeFilter;c:\windows\System32\drivers\lvbflt64.sys;c:\windows\SYSNATIVE\drivers\lvbflt64.sys [x]R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x]R3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]R3 JMCR;JMCR;c:\windows\System32\drivers\jmcr.sys;c:\windows\SYSNATIVE\drivers\jmcr.sys [x]R3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]R3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]R3 LVUVC64;@oem57.inf,%PID_082C_DD%(UVC);Logitech HD Webcam C615(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys;c:\windows\SYSNATIVE\drivers\mferkdet.sys [x]R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\System32\drivers\MijXfilt.sys;c:\windows\SYSNATIVE\drivers\MijXfilt.sys [x]R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]R3 rtsuvc;Lenovo EasyCamera;c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\System32\drivers\wdcsam64.sys;c:\windows\SYSNATIVE\drivers\wdcsam64.sys [x]R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\PC Monitor\PCMonitorSrv.sys;c:\program files\PC Monitor\PCMonitorSrv.sys [x]R3 WSDScan;WSD Scan Support;c:\windows\System32\drivers\WSDScan.sys;c:\windows\SYSNATIVE\drivers\WSDScan.sys [x]R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]R3 X6va012;X6va012;c:\windows\SysWOW64\Drivers\X6va012;c:\windows\SysWOW64\Drivers\X6va012 [x]R3 xusb22;Xbox 360 Wireless Receiver Driver Service 22;c:\windows\System32\drivers\xusb22.sys;c:\windows\SYSNATIVE\drivers\xusb22.sys [x]S0 aswRvrt;avast! Revert; [x]S0 aswVmm;avast! VM Monitor; [x]S0 excsd;ExpressCache Storage Filter Driver;c:\windows\system32\DRIVERS\excsd.sys;c:\windows\SYSNATIVE\DRIVERS\excsd.sys [x]S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]S0 tclondrv;tclondrv;c:\windows\system32\DRIVERS\tclondrv.sys;c:\windows\SYSNATIVE\DRIVERS\tclondrv.sys [x]S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]S1 excfs;ExpressCache File System Filter Driver;c:\windows\system32\DRIVERS\excfs.sys;c:\windows\SYSNATIVE\DRIVERS\excfs.sys [x]S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys;c:\windows\SYSNATIVE\drivers\aswFsBlk.sys [x]S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]S2 ETDService;Elan Service;c:\program files\Elantech\ETDService.exe;c:\program files\Elantech\ETDService.exe [x]S2 ExpressCache;ExpressCache;c:\program files\Diskeeper Corporation\ExpressCache\ExpressCache.exe;c:\program files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [x]S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]S2 OfficeSvc;Microsoft Office Service;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe [x]S2 PC Monitor;PC Monitor;c:\program files\PC Monitor\PCMonitorSrv.exe;c:\program files\PC Monitor\PCMonitorSrv.exe [x]S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]S2 X5XSEx_Pr148;X5XSEx_Pr148;c:\program files (x86)\FreeRide Games\X5XSEx_Pr148.Sys;c:\program files (x86)\FreeRide Games\X5XSEx_Pr148.Sys [x]S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]S3 NETwNe64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;c:\windows\system32\DRIVERS\NETwew00.sys;c:\windows\SYSNATIVE\DRIVERS\NETwew00.sys [x]S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]..[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]2013-12-04 18:17 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]2013-09-05 14:04 215416 ----a-w- c:\program files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll.Contents of the 'Scheduled Tasks' folder.2013-12-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 13:46].2013-12-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 13:46]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]2013-11-08 07:34 244696 ----a-w- c:\users\Jerrysohma\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]2013-11-08 07:34 244696 ----a-w- c:\users\Jerrysohma\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]2013-11-08 07:34 244696 ----a-w- c:\users\Jerrysohma\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]2013-11-13 21:42 2328776 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]2013-11-13 21:42 2328776 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]2013-11-13 21:42 2328776 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]@="{472083B0-C522-11CF-8763-00608CC02F24}"[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]2013-11-29 18:28 326944 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]2013-09-11 02:09 164016 ----a-w- c:\users\Jerrysohma\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]2013-09-11 02:09 164016 ----a-w- c:\users\Jerrysohma\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]2013-09-11 02:09 164016 ----a-w- c:\users\Jerrysohma\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]2013-09-11 02:09 164016 ----a-w- c:\users\Jerrysohma\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]@="{A759AFF6-5851-457D-A540-F4ECED148351}"[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-11-19 13260944]"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-11-19 1253520]"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshellex.dll" [2012-09-30 11582848]"OnekeyStudio"="c:\program files\Lenovo\Onekey Theater\OnekeyStudio.exe" [2012-08-10 4196432]"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2013-05-18 17080376]"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2013-05-18 191544]"PC Monitor Operations"="c:\program files\PC Monitor\pcmontask.exe" [2013-12-05 517592]"TuneClone"="c:\program files\TuneClone\TuneClone.exe" [2012-02-24 4550656]"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-10-18 1028384]"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-10-18 1063200]"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2013-08-01 8290584]"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmmLocal Page = c:\windows\SysWOW64\blank.htmuInternet Settings,ProxyOverride = *.localIE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105IE: Send to Bluetooth - c:\program files (x86)\Intel\Bluetooth\btSendToObject.htmTrusted Zone: clonewarsadventures.comTrusted Zone: freerealms.comTrusted Zone: soe.comTrusted Zone: sony.comTCP: DhcpNameServer = 134.129.111.111 165.234.99.100DPF: {4FF78044-96B4-4312-A5B7-FDA3CB328095} - FF - ProfilePath - c:\users\Jerrysohma\AppData\Roaming\Mozilla\Firefox\Profiles\lokg1bao.default\.- - - - ORPHANS REMOVED - - - -.Toolbar-Locked - (no file)Wow6432Node-HKCU-Run-PlayNC Launcher - (no file)BHO-{108C106C-90F2-A64E-1E9D-8E906B403927} - c:\program files (x86)\surfe annd keep\S.x64.dllToolbar-Locked - (no file)HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe...[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\npggsvc]"ImagePath"="c:\windows\system32\GameMon.des -service".[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\X6va012]"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va012".--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_USERS\S-1-5-21-3178378929-893640613-1100383122-1002CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Software\SecuROM\License information*]"datasecu"=hex:b9,a5,20,1b,aa,ce,40,c8,5d,27,fd,17,8d,2b,a9,70,cf,f8,99,e8,53, 8b,11,0d,1a,d9,95,73,e9,a0,b9,dd,3f,3b,54,95,f3,c6,48,75,08,cd,b8,3f,a7,95,\"rkeysecu"=hex:b4,c8,f2,ad,84,da,75,3e,c4,80,99,d6,37,b9,6e,12.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone)@SACL=(02 0000).Completion time: 2013-12-06 13:55:17ComboFix-quarantined-files.txt 2013-12-06 19:55.Pre-Run: 274,474,835,968 bytes freePost-Run: 274,552,967,168 bytes free.- - End Of File - - 36A1542A19A1D22569E6FF1D110C5733
  5. I ran the programs. Since i ran them, there still have been IP blocks, one every couple days. One just happened actually. They are still (Type: incoming, Port: 19, Process: svchost.exe) Here are the logs from the programs u told me to run # AdwCleaner v3.013 - Report created 25/11/2013 at 18:19:16 # Updated 24/11/2013 by Xplode # Operating System : Windows 8 (64 bits) # Username : Jerrysohma - TROGDOR # Running from : C:\Users\Jerrysohma\Desktop\AdwCleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\Babylon Folder Deleted : C:\ProgramData\surfe annd keep Folder Deleted : C:\Program Files (x86)\surfe annd keep Folder Deleted : C:\Users\Jerrysohma\AppData\Roaming\DSite Folder Deleted : C:\Users\Jerrysohma\AppData\Roaming\SendSpace File Deleted : C:\windows\Tasks\DSite.job File Deleted : C:\windows\System32\Tasks\DSite ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKCU\Software\Classes\iLivid.torrent Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid] Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\d53dc8fe73ae446 Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\dsiteproducts Key Deleted : HKCU\Software\ilivid Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\InstallIQ ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16537 -\\ Google Chrome v31.0.1650.57 [ File : C:\Users\Jerrysohma\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [3341 octets] - [25/11/2013 18:17:36] AdwCleaner[s0].txt - [3073 octets] - [25/11/2013 18:19:16] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [3133 octets] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.0.8 (11.05.2013:1) OS: Windows 8 x64 Ran by Jerrysohma on Mon 11/25/2013 at 18:27:21.29 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3178378929-893640613-1100383122-1002\Software\sweetim ~~~ Files ~~~ Folders Failed to delete: [Folder] "C:\windows\syswow64\ai_recyclebin" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Mon 11/25/2013 at 18:31:32.73 Computer was rebooted End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  6. I recently downloaded Malwarebytes and i scanned and it found stuff and deleted it. But since then (about a week ago) I've been getting IP-Blocked from a couple of different IP's 80.82.64.121(Type: incoming, Port: 53, Process: svchost.exe), 94.102.56.229 (Type: incoming, Port: 53, Process: svchost.exe), 80.82.64.126 (Type: incoming, Port: 53, Process: svchost.exe), 74.118.193.49 (Type: incoming, Port: 5060, Process: svchost.exe) here are the logs from the dds.scr DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2Run by Jerrysohma at 11:26:47 on 2013-11-22Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.12235.7104 [GMT -6:00].AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\windows\system32\svchost.exe -k DcomLaunchC:\windows\system32\nvvsvc.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\windows\system32\svchost.exe -k RPCSSC:\windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\windows\system32\svchost.exe -k netsvcsC:\windows\system32\svchost.exe -k LocalServiceC:\windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\windows\system32\svchost.exe -k NetworkServiceC:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\windows\system32\WLANExt.exeC:\windows\System32\spoolsv.exeC:\windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Elantech\ETDService.exeC:\windows\system32\dashost.exeC:\Program Files\Intel\WiFi\bin\EvtEng.exeC:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exeC:\Program Files\Intel\iCLS Client\HeciServer.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\windows\system32\mfevtps.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exeC:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exeC:\Program Files\PC Monitor\PCMonitorSrv.exeC:\windows\SysWOW64\PnkBstrA.exeC:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeC:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exeC:\windows\system32\svchost.exe -k imgsvcC:\Program Files\Intel\WiFi\bin\ZeroConfigService.exeC:\Program Files\Common Files\McAfee\SystemCore\mfefire.exeC:\windows\system32\wbem\unsecapp.exeC:\windows\system32\wbem\wmiprvse.exeC:\windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\System32\WUDFHost.exeC:\windows\system32\wbem\wmiprvse.exeC:\windows\system32\SearchIndexer.exeC:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exeC:\Program Files (x86)\Intel\Bluetooth\obexsrv.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files\Common Files\McAfee\SystemCore\mcshield.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\Program Files (x86)\Google\Update\GoogleUpdate.exeC:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exeC:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exeC:\windows\System32\dwm.exeC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\windows\system32\nvvsvc.exeC:\windows\system32\taskhostex.exeC:\windows\Explorer.EXEC:\Program Files\Elantech\ETDCtrl.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\Elantech\ETDCtrlHelper.exeC:\Program Files\Elantech\ETDIntelligent.exeC:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\System32\RuntimeBroker.exeC:\Program Files\Realtek\Audio\HDA\RAVCpl64.exeC:\Program Files\Realtek\Audio\HDA\RAVBg64.exeC:\Windows\System32\rundll32.exeC:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exeC:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exeC:\Program Files (x86)\Lenovo\Energy Management\utility.exeC:\Program Files\PC Monitor\pcmontask.exeC:\Program Files\TuneClone\TuneClone.exeC:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exeC:\Program Files\Logitech Gaming Software\LCore.exeC:\Program Files (x86)\Steam\Steam.exeC:\Users\Jerrysohma\AppData\Roaming\Dropbox\bin\Dropbox.exeC:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exeC:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exeC:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exeC:\Program Files (x86)\OpenOffice.org 3\program\soffice.exeC:\Program Files (x86)\OpenOffice.org 3\program\soffice.binC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exeC:\Program Files (x86)\iTunes\iTunesHelper.exeC:\Program Files (x86)\Common Files\Steam\SteamService.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\SysWOW64\NOTEPAD.EXEC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\SysWOW64\NOTEPAD.EXEC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\SysWOW64\NOTEPAD.EXEC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\system32\taskeng.exeC:\windows\SysWOW64\ctfmon.exeC:\windows\system32\SearchProtocolHost.exeC:\windows\system32\SearchFilterHost.exeC:\windows\System32\cscript.exe.============== Pseudo HJT Report ===============.mWinlogon: Userinit = userinit.exe,BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLLBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllTB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dlluRun: [steam] "C:\Program Files (x86)\Steam\steam.exe" -silentuRun: [PlayNC Launcher] <no file>mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60mRun: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"mRun: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /smRun: [updateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"mRun: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"mRun: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /noguimRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [Reader Library Launcher] C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exemRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"StartupFolder: C:\Users\JERRYS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Jerrysohma\AppData\Roaming\Dropbox\bin\Dropbox.exeStartupFolder: C:\Users\JERRYS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exeIE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htmIE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-001025-0002-0025-ABCDEFFEDCBC} - <orphaned>IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dllIE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllTrusted Zone: clonewarsadventures.comTrusted Zone: freerealms.comTrusted Zone: soe.comTrusted Zone: sony.comDPF: {4FF78044-96B4-4312-A5B7-FDA3CB328095} - TCP: Interfaces\{131C9840-C9FA-4C69-AAE9-07E853A659A2} : DHCPNameServer = 134.129.111.111 165.234.99.100TCP: Interfaces\{7B6AAEF3-ED0F-4F11-9C4D-35F966418F63} : DHCPNameServer = 77.234.40.79TCP: Interfaces\{90ACA19A-3CB8-4609-AC0B-3A2DD85A9007}\7457C6C602430235561637F6E63702255637F62747 : DHCPNameServer = 24.159.193.40 24.205.224.36TCP: Interfaces\{90ACA19A-3CB8-4609-AC0B-3A2DD85A9007}\84F6C6964616970294E6E60264162776F602E444 : DHCPNameServer = 76.10.67.2 64.21.232.212TCP: Interfaces\{90ACA19A-3CB8-4609-AC0B-3A2DD85A9007}\E44435550294E637472757364796F6E637 : DHCPNameServer = 134.129.111.111TCP: Interfaces\{90ACA19A-3CB8-4609-AC0B-3A2DD85A9007}\E4F6274626562776 : DHCPNameServer = 192.168.2.1 192.168.1.1TCP: Interfaces\{90ACA19A-3CB8-4609-AC0B-3A2DD85A9007}\E4F6274626562776D27657563747 : DHCPNameServer = 192.168.2.1 192.168.33.1TCP: Interfaces\{90ACA19A-3CB8-4609-AC0B-3A2DD85A9007}\F42716E6765664943786 : DHCPNameServer = 209.81.96.130 209.81.96.49Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - <orphaned>Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLLHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromemASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll",CreateReaderUserSettingsx64-BHO: surfe annd keep: {108C106C-90F2-A64E-1E9D-8E906B403927} - x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dllx64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dllx64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dllx64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLLx64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLLx64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dllx64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dllx64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -sx64-Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exex64-Run: [bTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayAppx64-Run: [OnekeyStudio] C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exex64-Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exex64-Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exex64-Run: [PC Monitor Operations] "C:\Program Files\PC Monitor\pcmontask.exe"x64-Run: [TuneClone] C:\Program Files\TuneClone\TuneClone.exe /silencex64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"x64-Run: [shadowPlay] C:\windows\System32\rundll32.exe C:\windows\System32\nvspcap64.dll,ShadowPlayOnSystemStartx64-Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimizedx64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dllx64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dllx64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - <orphaned>x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-SSODL: WebCheck - <orphaned>.============= SERVICES / DRIVERS ===============.R0 aswRvrt;aswRvrt;C:\windows\System32\Drivers\aswRvrt.sys [2013-5-31 65336]R0 aswVmm;aswVmm;C:\windows\System32\Drivers\aswVmm.sys [2013-5-31 189936]R0 excsd;ExpressCache Storage Filter Driver;C:\windows\System32\Drivers\excsd.sys [2013-5-18 95024]R0 iaStorA;iaStorA;C:\windows\System32\Drivers\iaStorA.sys [2013-5-18 647736]R0 LHDmgr;LHDmgr;C:\windows\System32\Drivers\LhdX64.sys [2013-5-18 39008]R0 mfehidk;McAfee Inc. mfehidk;C:\windows\System32\Drivers\mfehidk.sys [2012-6-22 771536]R0 mfewfpk;McAfee Inc. mfewfpk;C:\windows\System32\Drivers\mfewfpk.sys [2012-6-22 340216]R0 tclondrv;tclondrv;C:\windows\System32\Drivers\tclondrv.sys [2013-8-9 26856]R1 aswSnx;aswSnx;C:\windows\System32\Drivers\aswSnx.sys [2013-5-31 1030952]R1 aswSP;aswSP;C:\windows\System32\Drivers\aswSP.sys [2013-5-31 378944]R1 excfs;ExpressCache File System Filter Driver;C:\windows\System32\Drivers\excfs.sys [2013-5-18 23344]R2 aswFsBlk;aswFsBlk;C:\windows\System32\Drivers\aswFsBlk.sys [2013-5-31 33400]R2 aswMonFlt;aswMonFlt;C:\windows\System32\Drivers\aswMonFlt.sys [2013-5-31 80816]R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-5-31 46808]R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-9-30 1112000]R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-9-30 1132480]R2 ETDService;Elan Service;C:\Program Files\Elantech\ETDService.exe [2013-1-21 92160]R2 ExpressCache;ExpressCache;C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [2012-3-30 79664]R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-5-18 14904]R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-5-18 166720]R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-11-17 418376]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-11-17 701512]R2 McShield;McAfee McShield;C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe [2013-5-18 241456]R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2013-5-18 218760]R2 mfevtp;McAfee Validation Trust Protection Service;C:\windows\System32\mfevtps.exe [2013-5-18 182752]R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-9-19 15122208]R2 OfficeSvc;Microsoft Office Service;C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-11-8 1907896]R2 PC Monitor;PC Monitor;C:\Program Files\PC Monitor\PCMonitorSrv.exe [2013-5-21 585688]R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-9 3275136]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-15 414496]R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-5-18 365376]R2 X5XSEx_Pr148;X5XSEx_Pr148;C:\Program Files (x86)\FreeRide Games\X5XSEx_Pr148.sys [2013-5-18 56136]R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-8-28 3378416]R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\windows\System32\Drivers\AcpiVpc.sys [2012-5-15 33560]R3 ETD;ELAN PS/2 Port Input Device;C:\windows\System32\Drivers\ETD.sys [2013-1-21 329552]R3 JMCR;JMCR;C:\windows\System32\Drivers\jmcr.sys [2012-7-22 174176]R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;C:\windows\System32\Drivers\L1C63x64.sys [2012-11-8 118936]R3 LADF_CaptureOnly;LADF Capture Filter Driver;C:\windows\System32\Drivers\ladfGSCamd64.sys [2013-4-15 410008]R3 LADF_RenderOnly;LADF Render Filter Driver;C:\windows\System32\Drivers\ladfGSRamd64.sys [2013-4-15 102808]R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\windows\System32\Drivers\LGBusEnum.sys [2009-11-23 22408]R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;C:\windows\System32\Drivers\LGSHidFilt.Sys [2013-5-30 64280]R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\windows\System32\Drivers\LGVirHid.sys [2009-11-23 16008]R3 MBAMProtector;MBAMProtector;C:\windows\System32\Drivers\mbam.sys [2013-11-17 25928]R3 mfeavfk;McAfee Inc. mfeavfk;C:\windows\System32\Drivers\mfeavfk.sys [2012-6-22 309840]R3 mfefirek;McAfee Inc. mfefirek;C:\windows\System32\Drivers\mfefirek.sys [2012-6-22 515968]R3 NETwNe64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\windows\System32\Drivers\NETwew00.sys [2013-10-8 3345376]R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\windows\System32\Drivers\nvvad64v.sys [2013-10-28 39200]R3 WUDFWpdMtp;WUDFWpdMtp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]S0 mfeelamk;McAfee Inc. mfeelamk;C:\windows\System32\Drivers\mfeelamk.sys [2012-6-18 69168]S2 McMPFSvc;McAfee Personal Firewall Service;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [?]S2 McNaiAnn;McAfee VirusScan Announcer;"C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [?]S2 McProxy;McAfee Proxy Service;"C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [?]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]S3 BRSptSvc;BitRaider Mini-Support Service;C:\ProgramData\BitRaider\BRSptSvc.exe [2013-10-3 484592]S3 BthLEEnum;Bluetooth Low Energy Driver;C:\windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]S3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\Drivers\btmaux.sys [2012-10-1 132480]S3 btmhsf;btmhsf;C:\windows\System32\Drivers\btmhsf.sys [2012-10-1 1337216]S3 cfwids;McAfee Inc. cfwids;C:\windows\System32\Drivers\cfwids.sys [2012-6-22 70112]S3 CompFilter64;UVCCompositeFilter;C:\windows\System32\Drivers\lvbflt64.sys [2012-10-26 26784]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\windows\System32\Drivers\ssudbus.sys [2013-8-20 103576]S3 HipShieldK;McAfee Inc. HipShieldK;C:\windows\System32\Drivers\HipShieldK.sys [2013-5-31 196440]S3 ibtfltcoex;ibtfltcoex;C:\windows\System32\Drivers\iBtFltCoex.sys [2012-8-6 68136]S3 LVRS64;Logitech RightSound Filter Driver;C:\windows\System32\Drivers\lvrs64.sys [2012-10-26 351520]S3 LVUVC64;@oem57.inf,%PID_082C_DD%(UVC);Logitech HD Webcam C615(UVC);C:\windows\System32\Drivers\lvuvc64.sys [2012-10-26 4758176]S3 mferkdet;McAfee Inc. mferkdet;C:\windows\System32\Drivers\mferkdet.sys [2012-6-22 106552]S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-8-28 273136]S3 npggsvc;nProtect GameGuard Service;C:\windows\System32\GameMon.des -service --> C:\windows\System32\GameMon.des -service [?]S3 rtsuvc;Lenovo EasyCamera;C:\windows\System32\Drivers\rtsuvc.sys [2013-8-20 8235792]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\windows\System32\Drivers\ssudmdm.sys [2013-8-20 204568]S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]S3 WDC_SAM;WD SCSI Pass Thru driver;C:\windows\System32\Drivers\wdcsam64.sys [2008-5-6 14464]S3 WSDScan;WSD Scan Support;C:\windows\System32\Drivers\WSDScan.sys [2013-5-18 23552]S3 wsvd;wsvd;C:\windows\System32\Drivers\wsvd.sys [2013-5-18 102376]S3 xusb22;Xbox 360 Wireless Receiver Driver Service 22;C:\windows\System32\Drivers\xusb22.sys [2012-7-25 89088].=============== File Associations ===============.FileExt: .txt: txtfile=C:\windows\System32\NOTEPAD.EXE %1 [userChoice].=============== Created Last 30 ================.2013-11-22 06:13:11 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\OBS2013-11-22 06:13:08 -------- d-----w- C:\Program Files\OBS2013-11-22 06:13:07 -------- d-----w- C:\Program Files (x86)\OBS2013-11-22 01:12:42 -------- d-----w- C:\Program Files\Common Files\Intel2013-11-22 01:12:42 -------- d-----w- C:\Program Files (x86)\Cisco2013-11-22 01:10:29 -------- d-----w- C:\windows\LastGood.Tmp2013-11-20 21:34:11 -------- d-----w- C:\Users\Jerrysohma\AppData\Local\Logitech2013-11-20 21:33:52 18960 ----a-w- C:\windows\System32\drivers\LNonPnP.sys2013-11-20 21:33:41 -------- d-----w- C:\Program Files\Logitech Gaming Software2013-11-20 21:33:02 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\Logishrd2013-11-18 14:44:31 -------- d-----w- C:\windows\SysWow64\xlive2013-11-18 14:44:27 -------- d-----w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE2013-11-18 02:45:25 -------- d-----w- C:\Program Files (x86)\MSECache2013-11-17 07:30:37 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\Malwarebytes2013-11-17 07:30:23 -------- d-----w- C:\ProgramData\Malwarebytes2013-11-17 07:30:22 25928 ----a-w- C:\windows\System32\drivers\mbam.sys2013-11-17 07:30:22 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware2013-11-15 22:01:39 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\Red Alert 3 Uprising2013-11-14 21:58:35 -------- d-----w- C:\ProgramData\WinterSoft2013-11-14 21:58:25 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\SendSpace2013-11-14 21:58:18 -------- d-----w- C:\ProgramData\surfe annd keep2013-11-14 21:58:17 -------- d-----w- C:\Program Files (x86)\surfe annd keep2013-11-14 21:58:14 -------- d-----w- C:\ProgramData\5c06ab9d9ab4ce8f2013-11-14 21:57:49 -------- d-----w- C:\ProgramData\InstallMate2013-11-13 19:57:47 78296 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-11-13 19:57:47 694232 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe2013-11-13 04:04:18 576512 ----a-w- C:\windows\System32\drivers\afd.sys2013-11-13 04:03:27 1160192 ----a-w- C:\windows\System32\IKEEXT.DLL2013-11-13 04:03:15 96600 ----a-w- C:\windows\System32\drivers\wfplwfs.sys2013-11-13 04:03:14 723968 ----a-w- C:\windows\System32\BFE.DLL2013-11-13 04:00:58 2062848 ----a-w- C:\windows\System32\d3d11.dll2013-11-13 04:00:57 1711616 ----a-w- C:\windows\SysWow64\d3d11.dll2013-11-13 04:00:55 419328 ----a-w- C:\windows\System32\schannel.dll2013-11-13 04:00:55 323072 ----a-w- C:\windows\SysWow64\schannel.dll2013-11-13 04:00:48 2304512 ----a-w- C:\windows\System32\authui.dll2013-11-13 04:00:48 2035712 ----a-w- C:\windows\SysWow64\authui.dll2013-11-13 02:37:23 -------- d-----w- C:\ProgramData\Blizzard Entertainment2013-11-13 02:37:23 -------- d-----w- C:\Program Files (x86)\World of Warcraft2013-11-13 02:37:23 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment2013-11-13 02:36:15 -------- d-----w- C:\ProgramData\Battle.net2013-11-13 00:47:51 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\WebApp2013-11-12 18:04:55 -------- d-----w- C:\Users\Jerrysohma\AppData\Local\Introversion2013-11-08 07:34:55 -------- d-----w- C:\Program Files (x86)\Microsoft SkyDrive2013-11-08 07:34:55 -------- d-----r- C:\Users\Jerrysohma\SkyDrive2013-11-08 07:34:52 -------- d-----w- C:\ProgramData\Microsoft SkyDrive2013-11-08 07:32:55 566480 ----a-w- C:\ProgramData\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe2013-11-08 07:31:44 -------- d-----w- C:\Program Files\Microsoft Office 152013-11-08 07:23:27 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\VERIZON2013-11-04 21:19:21 30312 ----a-w- C:\windows\System32\aspnet_counters.dll2013-11-04 21:19:18 28776 ----a-w- C:\windows\SysWow64\aspnet_counters.dll2013-11-04 21:01:08 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\e-academy Inc2013-11-04 21:01:08 -------- d-----w- C:\Users\Jerrysohma\AppData\Local\e-academy Inc2013-11-02 02:27:54 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\Ubisoft2013-11-02 00:18:23 -------- d-----w- C:\GOG Games2013-11-01 23:10:27 -------- d-----w- C:\Users\Jerrysohma\AppData\Local\GOG.com2013-11-01 23:10:23 -------- d-----w- C:\Program Files (x86)\GOG.com2013-10-31 03:27:34 -------- d-----w- C:\Program Files (x86)\The Mighty Quest For Epic Loot2013-10-30 03:34:19 -------- d-----w- C:\Users\Jerrysohma\AppData\Local\Solid State Networks2013-10-30 03:34:14 -------- d-----w- C:\Program Files (x86)\MeteorEntertainment2013-10-29 05:07:18 955168 ----a-w- C:\windows\SysWow64\nvspcap.dll2013-10-29 05:07:18 1063200 ----a-w- C:\windows\System32\nvspcap64.dll2013-10-29 05:06:46 39200 ----a-w- C:\windows\System32\drivers\nvvad64v.sys2013-10-29 05:06:46 28960 ----a-w- C:\windows\SysWow64\nvaudcap32v.dll2013-10-28 02:27:59 -------- d--h--w- C:\windows\msdownld.tmp2013-10-28 02:27:55 -------- d-----w- C:\windows\SysWow64\directx2013-10-26 07:50:53 -------- d-----w- C:\Users\Jerrysohma\AppData\Roaming\BANDISOFT2013-10-26 07:50:45 -------- d-----w- C:\Program Files (x86)\Bandicam2013-10-26 07:50:44 -------- d-----w- C:\Program Files (x86)\BandiMPEG1.==================== Find3M ====================.2013-11-07 07:11:54 280904 ----a-w- C:\windows\SysWow64\PnkBstrB.xtr2013-11-07 07:11:54 280904 ----a-w- C:\windows\SysWow64\PnkBstrB.exe2013-11-05 05:23:56 290184 ----a-w- C:\windows\SysWow64\PnkBstrB.ex02013-10-15 21:54:06 589600 ----a-w- C:\windows\SysWow64\nvStreaming.exe2013-10-15 21:47:39 6665504 ----a-w- C:\windows\System32\nvcpl.dll2013-10-15 21:47:39 3489568 ----a-w- C:\windows\System32\nvsvc64.dll2013-10-15 21:47:36 922912 ----a-w- C:\windows\System32\nvvsvc.exe2013-10-15 21:47:36 63776 ----a-w- C:\windows\System32\nvshext.dll2013-10-15 21:47:36 597280 ----a-w- C:\windows\SysWow64\oemdspif.dll2013-10-15 21:47:36 2559776 ----a-w- C:\windows\System32\nvsvcr.dll2013-10-15 21:47:36 219424 ----a-w- C:\windows\System32\nvmctray.dll2013-10-12 08:45:20 2241536 ----a-w- C:\windows\System32\wininet.dll2013-10-12 08:43:37 3959808 ----a-w- C:\windows\System32\jscript9.dll2013-10-12 07:03:50 1767936 ----a-w- C:\windows\SysWow64\wininet.dll2013-10-12 07:02:33 2877952 ----a-w- C:\windows\SysWow64\jscript9.dll2013-10-09 04:12:50 2193136 ----a-w- C:\windows\System32\Netwuw01.dll2013-10-09 04:12:46 3345376 ----a-w- C:\windows\System32\drivers\NETwew00.sys2013-10-04 18:50:37 76888 ----a-w- C:\windows\SysWow64\PnkBstrA.exe2013-10-02 23:25:41 1300992 ----a-w- C:\windows\System32\gdi32.dll2013-10-01 23:37:57 1569280 ----a-w- C:\windows\SysWow64\crypt32.dll2013-10-01 23:26:49 1890816 ----a-w- C:\windows\System32\crypt32.dll2013-10-01 22:22:19 1022976 ----a-w- C:\windows\SysWow64\gdi32.dll2013-09-27 23:01:38 29984 ----a-w- C:\windows\System32\nvaudcap64v.dll2013-09-17 02:06:25 973736 ----a-w- C:\windows\System32\deployJava1.dll2013-09-17 02:06:25 1095080 ----a-w- C:\windows\System32\npDeployJava1.dll2013-09-17 02:06:25 108968 ----a-w- C:\windows\System32\WindowsAccessBridge-64.dll2013-09-13 22:36:37 35328 ----a-w- C:\windows\SysWow64\wuapp.exe2013-09-13 22:36:23 84992 ----a-w- C:\windows\SysWow64\wudriver.dll2013-09-13 22:36:23 126976 ----a-w- C:\windows\SysWow64\wuwebv.dll2013-09-13 22:36:14 247296 ----a-w- C:\windows\SysWow64\ubpm.dll2013-09-13 22:34:14 40448 ----a-w- C:\windows\System32\wuapp.exe2013-09-13 22:33:55 252928 ----a-w- C:\windows\System32\WUSettingsProvider.dll2013-09-13 22:33:55 142848 ----a-w- C:\windows\System32\wuwebv.dll2013-09-13 22:33:54 99328 ----a-w- C:\windows\System32\wudriver.dll2013-09-13 22:33:54 1622016 ----a-w- C:\windows\System32\wucltux.dll2013-09-13 22:33:42 328192 ----a-w- C:\windows\System32\ubpm.dll2013-09-13 22:33:39 175104 ----a-w- C:\windows\System32\storewuauth.dll2013-09-12 08:58:10 1884448 ----a-w- C:\windows\System32\nvdispco6432723.dll2013-09-12 08:58:10 1511712 ----a-w- C:\windows\System32\nvdispgenco6432723.dll2013-09-05 23:06:15 96168 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll2013-09-05 23:06:09 867240 ----a-w- C:\windows\SysWow64\npDeployJava1.dll2013-09-05 23:06:09 789416 ----a-w- C:\windows\SysWow64\deployJava1.dll2013-08-30 05:43:40 61784 ----a-w- C:\windows\System32\drivers\crashdmp.sys2013-08-30 05:20:13 1173504 ----a-w- C:\windows\System32\UIAutomationCore.dll2013-08-29 23:48:12 914432 ----a-w- C:\windows\SysWow64\UIAutomationCore.dll2013-08-28 22:24:46 4262128 ----a-w- C:\windows\System32\wlihvui.dll2013-08-28 22:24:44 2351856 ----a-w- C:\windows\System32\iwmssvc.dll2013-08-27 13:53:24 963152 ----a-w- C:\windows\System32\msvcr120.dll.============= FINISH: 11:27:18.05 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 8Boot Device: \Device\HarddiskVolume3Install Date: 5/31/2013 8:05:35 AMSystem Uptime: 11/21/2013 9:55:58 PM (14 hours ago).Motherboard: LENOVO | | INVALIDProcessor: Intel® Core i7-3630QM CPU @ 2.40GHz | U3E1 | 2401/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 884 GiB total, 275.017 GiB free.D: is FIXED (NTFS) - 25 GiB total, 22.688 GiB free.E: is CDROM ()F: is CDROM ().==== Disabled Device Manager Items =============.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: avast! SecureLine TAP AdapterDevice ID: ROOT\NET\0000Manufacturer: TAP-Windows Provider V9Name: avast! SecureLine TAP AdapterPNP Device ID: ROOT\NET\0000Service: tap0901.Class GUID: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}Description: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed AdapterDevice ID: USB\VID_8087&PID_07DA\6&2E2F5DEF&0&3Manufacturer: Intel CorporationName: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed AdapterPNP Device ID: USB\VID_8087&PID_07DA\6&2E2F5DEF&0&3Service: BTHUSB.==== System Restore Points ===================.RP47: 11/19/2013 5:23:12 PM - Installed DirectXRP48: 11/21/2013 10:05:52 PM - Removed Google Talk Plugin.==== Installed Programs ======================.Adobe AIRAdobe Flash Player 11 PluginAdobe Reader XI (11.0.05)Amnesia: The Dark DescentApple Application SupportApple Mobile Device SupportApple Software UpdateArtemis Artemis DEMOAssassin's CreedAudacity 2.0.3avast! Free AntivirusAwesomenautsBandicamBandisoft MPEG-1 DecoderBatman: Arkham Asylum GOTY EditionBattlefield 1942™Battlefield 3™Battlefield 4™ BetaBattlelog Web PluginsBioShockBioShock InfiniteBitRaider Web ClientBonjourBrothers - A Tale of Two SonsBurnout Paradise: The Ultimate BoxCCleanerChivalry: Medieval WarfareCloudberry KingdomCommand and Conquer: Red Alert 3 - UprisingCompatibility Pack for the 2007 Office systemConverterLite 1.6.3Cry of FearCrysis 2 Maximum EditionD3DX10DamnedDead Space™ 3DefianceDeus Ex: Game of the Year EditionDeus Ex: Human RevolutionDota 2DropboxDust: An Elysian TailElectronic Super JoyElswordEnergy ManagementESN SonarEuro Truck Simulator 2ExpressCacheF.E.A.R.F.E.A.R. 2: Project OriginFallout 3 - Game of the Year EditionFallout: New VegasFar Cry® 3 Blood DragonFEZFINAL FANTASY VIIForgeFrapsFreeRide GamesFTL: Faster Than LightGameMaker-Studio 1.2GeForce Experience NvStream Client ComponentsGOG.com Downloader version 3.6.0Gone HomeGoogle ChromeGoogle Update HelperGrand Theft Auto IIIGrand Theft Auto: San AndreasGrand Theft Auto: Vice CityHalf-LifeHalf-Life 2Half-Life 2: DeathmatchHalf-Life 2: Episode OneHalf-Life 2: Episode TwoHalf-Life 2: Lost CoastHalf-Life Deathmatch: SourceHalf-Life: Blue ShiftHalf-Life: Opposing ForceHalf-Life: SourceHawkenHotline MiamiIntel AppUp(SM) centerIntel Processor Diagnostic Tool 64BitIntel® Control CenterIntel® Management Engine ComponentsIntel® PRO/Wireless DriverIntel® PROSet/Wireless Software for Bluetooth® TechnologyIntel® Rapid Storage TechnologyIntel® PROSet/Wireless SoftwareIntel® PROSet/Wireless WiFi SoftwareIntel® Trusted Connect Service ClientiTunesJava 7 Update 25Java 7 Update 40 (64-bit)Java Auto UpdaterJava SE Development Kit 7 Update 25 (64-bit)Java SE Development Kit 7 Update 40 (64-bit)Java 6 Update 21 (64-bit)JingJMicron Flash Media Controller DriverJust Cause 2Kerbal Space ProgramLAME v3.99.3 (for Windows)League of LegendsLeft 4 Dead 2Lenovo OneKey RecoveryLenovo PhotosLenovo pointing deviceLenovo PowerDVD10Lenovo YouCamLineage IILogitech Gaming SoftwareLogitech Gaming Software 8.50Mafia IIMagickaMalwarebytes Anti-Malware version 1.75.0.1300Mark of the NinjaMcPixelMedal of Honor MultiplayerMedal of Honor Single PlayerMedieval II: Total WarMicrosoft Application Error ReportingMicrosoft Games for Windows - LIVE RedistributableMicrosoft Games for Windows MarketplaceMicrosoft Office 365 Home Premium - en-usMicrosoft Office Basic Edition 2003Microsoft SilverlightMicrosoft SkyDriveMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.60610Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.60610Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.20827Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.20827Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.20827Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.20827Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.20827Microsoft Visual Studio Ultimate 2013 RCMicrosoft XNA Framework Redistributable 3.1Microsoft XNA Framework Redistributable 4.0 RefreshMicrosoft Zoo TycoonMirror's EdgeMortal Kombat KollectionMovie MakerMSVCRTMSVCRT110MSVCRT110_amd64MuseScore 1.3NCsoft LauncherNetBeans IDE 7.3.1NVIDIA 3D Vision Driver 331.58NVIDIA Control Panel 331.58NVIDIA GeForce Experience 1.7NVIDIA Graphics Driver 331.58NVIDIA HD Audio Driver 1.3.26.4NVIDIA Install ApplicationNVIDIA LED Visualizer 1.0NVIDIA PhysXNVIDIA PhysX System Software 9.13.0725NVIDIA ShadowPlay 9.3.16NVIDIA Stereoscopic 3D DriverNVIDIA Update 9.3.16NVIDIA Update ComponentsNVIDIA Virtual Audio 1.2.9Office 15 Click-to-Run Extensibility ComponentOffice 15 Click-to-Run Licensing ComponentOffice 15 Click-to-Run Localization ComponentOnekey TheaterOpen Broadcaster SoftwareOpenALOpenOffice.org 3.4.1OriginPando Media BoosterPath of ExilePC MonitorPhoto CommonPhoto GalleryPlanetSide 2Pokémon Trading Card Game OnlinePower2GoPrison ArchitectPunkBuster ServicesQualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet DriverReader Library by SonyRealtek High Definition Audio DriverRealtek PC CameraRollerCoaster Tycoon 3 PlatinumSaints Row: The ThirdScribblenauts UnlimitedSecure Download ManagerShared C Run-time for x64SHIELD StreamingSid Meier's Civilization VSimCity 4 DeluxeSins of a Solar Empire: RebellionSkype Click to CallSkype™ 6.10Sleeping Dogs™Source SDK Base 2007Star Wars - Jedi Knight II: Jedi OutcastStar Wars - Jedi Knight: Mysteries of the SithStar Wars Jedi Knight: Dark Forces IIStar Wars Jedi Knight: Jedi AcademyStar Wars The Old RepublicStar Wars: Dark ForcesStar Wars: The Old RepublicStargunnerSteamSugarSync ManagerSuper Street Fighter IV: Arcade EditionSynfig StudioTeam Fortress 2Team Fortress ClassicTerrariaThe Elder Scrolls V: SkyrimThe Mighty Quest For Epic Loot version 1.219367The Sims™ 3The Sims™ 3 High-End Loft StuffThe Sims™ 3 Late NightThe Walking DeadTomb RaiderTuneClone 2.20Unity Web PlayerUplayUserGuideVentrilo Client for Windows x64Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1)Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733)Windows Live Communications PlatformWindows Live EssentialsWindows Live InstallerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWorld of Warcraft.==== Event Viewer Messages From Past Week ========.11/21/2013 9:59:07 PM, Error: Service Control Manager [7000] - The McAfee VirusScan Announcer service failed to start due to the following error: The system cannot find the file specified.11/21/2013 9:59:07 PM, Error: Service Control Manager [7000] - The McAfee Services service failed to start due to the following error: The system cannot find the file specified.11/21/2013 9:59:07 PM, Error: Service Control Manager [7000] - The McAfee Network Agent service failed to start due to the following error: The system cannot find the file specified.11/21/2013 9:58:27 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.11/21/2013 9:58:27 PM, Error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.11/21/2013 9:57:04 PM, Error: Service Control Manager [7000] - The McAfee Proxy Service service failed to start due to the following error: The system cannot find the file specified.11/21/2013 9:57:04 PM, Error: Service Control Manager [7000] - The McAfee Personal Firewall Service service failed to start due to the following error: The system cannot find the file specified.11/21/2013 9:57:04 PM, Error: Service Control Manager [7000] - The McAfee Anti-Spam Service service failed to start due to the following error: The system cannot find the file specified.11/21/2013 9:56:02 PM, Error: Microsoft-Windows-Kernel-General [6] - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file): ''.11/20/2013 1:46:13 PM, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{131C9840-C9FA-4C69-AAE9-07E853A659A2} because another computer on the network has the same name. The server could not start.11/20/2013 1:46:13 PM, Error: NetBT [4321] - The name "TROGDOR :20" could not be registered on the interface with IP address 134.129.54.48. The computer with the IP address 134.129.111.178 did not allow the name to be claimed by this computer.11/20/2013 1:46:13 PM, Error: NetBT [4321] - The name "TROGDOR :0" could not be registered on the interface with IP address 134.129.54.48. The computer with the IP address 134.129.111.178 did not allow the name to be claimed by this computer.11/18/2013 8:25:49 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070103: Intel driver update for Intel® Centrino® Wireless-N 2230.11/17/2013 5:49:43 AM, Error: Microsoft-Windows-DistributedCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} and APPID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} to the user Trogdor\Jerrysohma SID (S-1-5-21-3178378929-893640613-1100383122-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.11/17/2013 4:02:05 AM, Error: Service Control Manager [7043] - The Windows Update service did not shut down properly after receiving a preshutdown control..==== End Of File ===========================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.