Jump to content

Recommended Posts

I was told my computer appears to be currently infected or damaged from a previous infection. So I am unable to use website blocking. I have the PRO version. Here are my DDS and attach txts

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26

Run by kyt at 19:59:27 on 2012-02-18

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.12279.10107 [GMT -8:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe

D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe

D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\MediaServer\CLMSServer.exe

C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\SysWOW64\HsMgr.exe

C:\Windows\system\HsMgr64.exe

C:\Program Files\ASUS Xonar DX Audio\Customapp\ASUSAUDIOCENTER.EXE

D:\Program Files (x86)\Steam\Steam.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

D:\Program Files (x86)\SpeedFan\speedfan.exe

C:\Program Files (x86)\Razer\DeathAdder\razerhid.exe

C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe

D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\PDVD11Serv.exe

C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

D:\Program Files (x86)\BinarySense\SSDlife\ssdlife_free.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files (x86)\Razer\DeathAdder\razertra.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Razer\DeathAdder\razerofa.exe

C:\Program Files (x86)\Razer\DeathAdder\vdDaemon.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Windows\SysWOW64\ctfmon.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

.

============== Pseudo HJT Report ===============

.

mWinlogon: Userinit=userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

uRun: [steam] "D:\Program Files (x86)\Steam\steam.exe" -silent

uRun: [Xvid] D:\Program Files (x86)\Xvid\CheckUpdate.exe

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [Google Update] "C:\Users\kyt\AppData\Local\Google\Update\GoogleUpdate.exe" /c

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [DeathAdder] C:\Program Files (x86)\Razer\DeathAdder\razerhid.exe

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [RDesc]

mRun: [RemoteControl11] D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\PDVD11Serv.exe

mRun: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

StartupFolder: C:\Users\kyt\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SpeedFan.lnk - D:\Program Files (x86)\SpeedFan\speedfan.exe

StartupFolder: C:\Users\kyt\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SSDLIF~1.LNK - D:\Program Files (x86)\BinarySense\SSDlife\ssdlife_free.exe

uPolicies-explorer: HideSCAHealth = 1 (0x1)

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

mPolicies-system: DisableCAD = 1 (0x1)

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

TCP: DhcpNameServer = 75.75.75.75 75.75.76.76

TCP: Interfaces\{24198C8B-1882-4C01-BD75-F85F290AB65C} : DhcpNameServer = 75.75.75.75 75.75.76.76

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun-x64: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun-x64: [DeathAdder] C:\Program Files (x86)\Razer\DeathAdder\razerhid.exe

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [RDesc]

mRun-x64: [RemoteControl11] D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\PDVD11Serv.exe

mRun-x64: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

mRun-x64: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\kyt\AppData\Roaming\Mozilla\Firefox\Profiles\8cydw0ok.default\

FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll

FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll

FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll

FF - plugin: C:\Users\kyt\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll

FF - plugin: C:\Windows\system32\npmproxy.dll

FF - plugin: C:\Windows\system32\npOGPPlugin.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

FF - plugin: D:\Program Files (x86)\BF3 Alpha Trial Web Plugins\npesnlaunch.dll

FF - plugin: D:\Program Files (x86)\BF3 Alpha Trial Web Plugins\Sonar\npesnsonar.dll

FF - plugin: d:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll

FF - plugin: d:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll

.

============= SERVICES / DRIVERS ===============

.

R0 mv91cons;Marvell 91xx Config Device Driver;C:\Windows\system32\DRIVERS\mv91cons.sys --> C:\Windows\system32\DRIVERS\mv91cons.sys [?]

R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/07/24 17:16:12];D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\NavFilter\000.fcl [2011-5-20 148976]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]

R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-12-1 44768]

R2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2011-7-24 83240]

R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]

R2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2011-7-24 70952]

R2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\MediaServer\CLMSServer.exe [2011-7-24 312616]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-2-18 652360]

R2 ntk_PowerDVD;ntk_PowerDVD;D:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2011-7-24 75248]

R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]

R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]

R3 cmudaxp;ASUS Xonar DX Audio Interface;C:\Windows\system32\drivers\cmudaxp.sys --> C:\Windows\system32\drivers\cmudaxp.sys [?]

R3 danewFltr;NewDeathAdder Mouse;C:\Windows\system32\drivers\danew.sys --> C:\Windows\system32\drivers\danew.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

R3 VKbms;Virtual HID Minidriver;C:\Windows\system32\DRIVERS\VKbms.sys --> C:\Windows\system32\DRIVERS\VKbms.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-5-4 503080]

S3 CYUSB;Cypress Generic USB Driver;C:\Windows\system32\Drivers\CYUSB.sys --> C:\Windows\system32\Drivers\CYUSB.sys [?]

S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-7-30 130976]

S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?]

S3 NTIOLib_1_0_1;NTIOLib_1_0_1;D:\Program Files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [2011-7-17 14136]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

S3 RTLE8023x64;Realtek 10/100/1000 PCI-E NIC Family NDIS XP(x64) Driver;C:\Windows\system32\DRIVERS\Rtenic64.sys --> C:\Windows\system32\DRIVERS\Rtenic64.sys [?]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]

.

=============== Created Last 30 ================

.

2012-02-19 03:55:43 -------- d-----w- C:\Users\kyt\AppData\Roaming\Malwarebytes

2012-02-19 03:55:38 -------- d-----w- C:\ProgramData\Malwarebytes

2012-02-19 03:55:37 23152 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-02-19 03:55:37 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-02-19 01:28:14 0 ----a-w- C:\Windows\ativpsrm.bin

2012-02-19 01:27:27 -------- d-----w- C:\Windows\kdb

2012-02-19 01:27:21 -------- d-----w- C:\Program Files (x86)\AMD APP

2012-02-19 01:27:20 -------- d-----w- C:\Program Files\Common Files\ATI Technologies

2012-02-19 01:27:20 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies

2012-02-19 01:26:32 -------- d-----w- C:\Program Files (x86)\ATI Technologies

2012-02-19 01:26:31 -------- d-----w- C:\Program Files\ATI

2012-02-19 01:26:21 -------- d-----w- C:\Program Files\ATI Technologies

2012-02-16 07:38:54 509952 ----a-w- C:\Windows\System32\ntshrui.dll

2012-02-16 07:38:54 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll

2012-02-16 07:38:52 515584 ----a-w- C:\Windows\System32\timedate.cpl

2012-02-16 07:38:52 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl

2012-02-16 03:17:00 -------- d-----w- C:\Program Files (x86)\Elaborate Bytes

2012-02-15 03:03:22 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation

2012-02-14 22:38:22 -------- d-----w- C:\ProgramData\EA Logs

2012-02-14 04:03:41 -------- d-----w- C:\Users\kyt\AppData\Local\Microsoft Games

2012-02-11 04:57:18 -------- d-----w- C:\ProgramData\Steam

2012-02-11 04:57:16 -------- d-----w- C:\ProgramData\PopCap Games

2012-02-08 21:58:45 -------- d-----w- C:\Users\kyt\AppData\Roaming\.Tribler

2012-02-02 03:35:34 32768 ----a-w- C:\Windows\System32\cmudaxp.dll

2012-02-02 03:35:34 315392 ----a-w- C:\Windows\SysWow64\CmiFltr.dll

2012-02-02 03:35:34 315392 ----a-w- C:\Windows\system\CmiFltr.dll

2012-02-02 03:35:34 2725376 ----a-w- C:\Windows\System32\drivers\cmudaxp.sys

2012-01-29 00:01:43 809496 ----a-r- C:\Windows\SysWow64\tmpFDB5.tmp

2012-01-28 20:21:43 809496 ----a-r- C:\Windows\SysWow64\tmp9233.tmp

2012-01-21 06:04:58 68096 ----a-w- C:\Windows\System32\OpenVideo64.dll

2012-01-21 06:04:54 58368 ----a-w- C:\Windows\SysWow64\OpenVideo.dll

2012-01-21 06:04:48 61952 ----a-w- C:\Windows\System32\OVDecode64.dll

2012-01-21 06:04:44 54784 ----a-w- C:\Windows\SysWow64\OVDecode.dll

2012-01-21 06:04:36 16209920 ----a-w- C:\Windows\System32\amdocl64.dll

2012-01-21 06:03:56 12991488 ----a-w- C:\Windows\SysWow64\amdocl.dll

2012-01-21 03:48:08 10818048 ----a-w- C:\Windows\System32\drivers\atikmdag.sys

2012-01-21 03:28:42 -------- d-----w- C:\Users\kyt\AppData\Local\.inapptracking

2012-01-21 03:21:28 25610240 ----a-w- C:\Windows\System32\atio6axx.dll

2012-01-21 03:17:18 159744 ----a-w- C:\Windows\System32\atiapfxx.exe

2012-01-21 03:17:04 784384 ----a-w- C:\Windows\SysWow64\aticfx32.dll

2012-01-21 03:15:26 942592 ----a-w- C:\Windows\System32\aticfx64.dll

2012-01-21 03:12:18 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll

2012-01-21 03:12:04 494592 ----a-w- C:\Windows\System32\atieclxx.exe

2012-01-21 03:11:26 235520 ----a-w- C:\Windows\System32\atiesrxx.exe

2012-01-21 03:10:08 120320 ----a-w- C:\Windows\System32\atitmm64.dll

2012-01-21 03:09:48 426496 ----a-w- C:\Windows\System32\atipdl64.dll

2012-01-21 03:09:40 360448 ----a-w- C:\Windows\SysWow64\atipdlxx.dll

2012-01-21 03:09:28 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll

2012-01-21 03:09:24 21504 ----a-w- C:\Windows\System32\atimuixx.dll

2012-01-21 03:09:18 59392 ----a-w- C:\Windows\System32\atiedu64.dll

2012-01-21 03:09:12 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll

2012-01-21 03:06:06 6226432 ----a-w- C:\Windows\SysWow64\atidxx32.dll

2012-01-21 02:59:02 19366912 ----a-w- C:\Windows\SysWow64\atioglxx.dll

2012-01-21 02:50:46 7604736 ----a-w- C:\Windows\System32\atidxx64.dll

2012-01-21 02:41:44 1113088 ----a-w- C:\Windows\System32\atiumd6v.dll

2012-01-21 02:41:10 1828864 ----a-w- C:\Windows\SysWow64\atiumdmv.dll

2012-01-21 02:40:56 5052416 ----a-w- C:\Windows\System32\atiumd6a.dll

2012-01-21 02:35:32 51200 ----a-w- C:\Windows\System32\aticalrt64.dll

2012-01-21 02:35:30 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll

2012-01-21 02:35:20 44544 ----a-w- C:\Windows\System32\aticalcl64.dll

2012-01-21 02:35:18 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll

2012-01-21 02:35:06 13818880 ----a-w- C:\Windows\System32\aticaldd64.dll

2012-01-21 02:33:00 5935104 ----a-w- C:\Windows\SysWow64\atiumdag.dll

2012-01-21 02:30:28 11540992 ----a-w- C:\Windows\SysWow64\aticaldd.dll

2012-01-21 02:30:08 5159424 ----a-w- C:\Windows\SysWow64\atiumdva.dll

2012-01-21 02:23:24 7534592 ----a-w- C:\Windows\System32\atiumd64.dll

2012-01-21 02:17:26 58880 ----a-w- C:\Windows\System32\coinst.dll

2012-01-21 02:12:24 512000 ----a-w- C:\Windows\System32\atiadlxx.dll

2012-01-21 02:12:14 356352 ----a-w- C:\Windows\SysWow64\atiadlxy.dll

2012-01-21 02:12:02 17408 ----a-w- C:\Windows\System32\atig6pxx.dll

2012-01-21 02:11:56 14336 ----a-w- C:\Windows\SysWow64\atiglpxx.dll

2012-01-21 02:11:56 14336 ----a-w- C:\Windows\System32\atiglpxx.dll

2012-01-21 02:11:52 39936 ----a-w- C:\Windows\System32\atig6txx.dll

2012-01-21 02:11:44 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll

2012-01-21 02:11:36 327168 ----a-w- C:\Windows\System32\drivers\atikmpag.sys

2012-01-21 02:11:20 54784 ----a-w- C:\Windows\System32\atimpc64.dll

2012-01-21 02:11:20 54784 ----a-w- C:\Windows\System32\amdpcom64.dll

2012-01-21 02:11:14 53760 ----a-w- C:\Windows\SysWow64\atimpc32.dll

2012-01-21 02:11:14 53760 ----a-w- C:\Windows\SysWow64\amdpcom32.dll

2012-01-21 02:10:46 43008 ----a-w- C:\Windows\System32\atiuxp64.dll

2012-01-21 02:10:40 33280 ----a-w- C:\Windows\SysWow64\atiuxpag.dll

2012-01-21 02:10:32 39936 ----a-w- C:\Windows\System32\atiu9p64.dll

2012-01-21 02:10:26 30208 ----a-w- C:\Windows\SysWow64\atiu9pag.dll

2012-01-21 02:09:50 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll

2012-01-20 04:36:00 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll

2012-01-20 04:34:51 2250024 ----a-w- C:\Windows\SysWow64\pbsvc.exe

.

==================== Find3M ====================

.

2012-02-19 02:27:24 282864 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr

2012-02-19 02:27:24 282864 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe

2012-02-19 02:26:56 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0

2012-02-14 22:43:09 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe

2012-01-29 00:01:43 122904 ----a-w- C:\Windows\System32\OpenAL32.dll

2012-01-29 00:01:43 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll

2012-01-14 04:06:27 3145728 ----a-w- C:\Windows\System32\win32k.sys

2011-12-28 03:59:24 498688 ----a-w- C:\Windows\System32\drivers\afd.sys

2011-12-16 08:46:06 634880 ----a-w- C:\Windows\System32\msvcrt.dll

2011-12-16 07:52:58 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll

2011-12-14 07:11:03 2308096 ----a-w- C:\Windows\System32\jscript9.dll

2011-12-14 07:04:30 1390080 ----a-w- C:\Windows\System32\wininet.dll

2011-12-14 07:03:38 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl

2011-12-14 06:57:28 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2011-12-14 05:44:22 27648 ----a-w- C:\Windows\System32\kdbsdk64.dll

2011-12-14 05:44:10 23040 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll

2011-12-14 03:04:54 1798656 ----a-w- C:\Windows\SysWow64\jscript9.dll

2011-12-14 02:57:18 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll

2011-12-14 02:56:58 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2011-12-14 02:50:04 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2011-12-05 19:47:30 95248 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys

2011-12-01 01:59:26 42392 ----a-w- C:\Windows\SysWow64\xfcodec.dll

2011-12-01 01:59:26 28056 ----a-w- C:\Windows\System32\xfcodec64.dll

2011-11-30 20:07:06 66560 ----a-w- C:\Windows\System32\OVDecoder64.dll

2011-11-30 20:07:00 56832 ----a-w- C:\Windows\SysWow64\OVDecoder.dll

2011-11-28 18:01:25 41184 ----a-w- C:\Windows\avastSS.scr

2011-11-28 17:54:06 591192 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2011-11-28 17:52:11 66904 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

.

============= FINISH: 19:59:39.61 ===============

DDS.txt

Attach.txt

Link to post
Share on other sites

post-32477-1261866970.gif

Logs will be closed if you haven't replied within 3 days

Please don't attach the scans / logs for these tools, use "copy/paste".

DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision.

Doing so could make your pc inoperatible and could require a full reinstall of your OS, losing all your programs and data.

Please run a new MBAM scan being sure to update before scanning.

Post the scan results

Also please describe how your computer behaves at the moment.

Please don't attach the scans / logs, use "copy/paste".

Link to post
Share on other sites

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.