I am Infected and Have been for weeks(Help)

[ILoveSnapple]

Hi guys So later today I was searching my symptoms on google for my PC and I got an answer saying I most likely have a R.A.T. or sometime of virus but I am deff infected . Know things that are obviously supposed to be done in this situation is scan your computer well I can't I have MBAW PRO and I still cannot scan my computer I try to and it freezes/ crashes the farthest I ever gotten was 162,000 files searched in 14 + hours when I have 284,000 files or more I have tried scanning in safe mode and regular mode .. There is no difference when I do scan only for like 6 witch has to be overnight because I can't use my comp while it is scanning because my computer freezes etc . I do find viruses and remove them Idk why but I deleted my quarintne logs witch was dumb but most of them where trojan and hackagent all this stuff and I am pretty sure that the virus I have know is undetectable so there is know way I know that since I can't even scan my computer .. Some more symptoms is my computer takes 15-20 minutes to turn on , My account passwords are getting changed I keep getting this popup on my screen asking me if I can let jemiautoupdate.exe go through everyday and that seems soo suspicious and I cannot do much stuff do to cleaning my computer because of this virus so I have no idea on what I should do so I am really hoping a PRO can help me with this .. I was told to download dds.com and share the files here I attached them to this post . If someone could help me that will be great I also have MBAW PRO if that helps anyway and one on one support maybe even someone helping me through a screen sharing program like teamviewer or join.me Hope someone can help me

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31

Run by Joel at 5:29:17 on 2012-03-09

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.1913.697 [GMT -6:00]

.

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\windows\system32\wininit.exe

C:\windows\system32\lsm.exe

C:\windows\system32\svchost.exe -k DcomLaunch

C:\windows\system32\svchost.exe -k RPCSS

C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\windows\system32\svchost.exe -k netsvcs

C:\windows\system32\svchost.exe -k LocalService

C:\Program Files\Sandboxie\SbieSvc.exe

C:\windows\system32\svchost.exe -k NetworkService

C:\windows\System32\spoolsv.exe

C:\windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe

c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

C:\windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\TODDSrv.exe

C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe

C:\windows\system32\vmnat.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\windows\system32\SearchIndexer.exe

C:\Program Files\VMware\VMware Workstation\vmware-authd.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\windows\system32\vmnetdhcp.exe

C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\windows\system32\taskhost.exe

C:\windows\system32\Dwm.exe

C:\windows\Explorer.EXE

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\windows\system32\igfxsrvc.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\TOSHIBA\Utilities\KeNotify.exe

C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe

C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe

C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\VMware\VMware Workstation\vmware-tray.exe

C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\windows\system32\igfxext.exe

C:\Program Files\Jumi\jumi.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\Sandboxie\SbieCtrl.exe

C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\windows\system32\taskeng.exe

C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe

C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe

C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\windows\System32\svchost.exe -k secsvcs

C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

C:\Program Files\Zune\ZuneNss.exe

C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe

C:\windows\system32\wuauclt.exe

C:\windows\system32\rundll32.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\windows\system32\NOTEPAD.EXE

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Joel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\windows\system32\DllHost.exe

C:\windows\system32\DllHost.exe

C:\windows\system32\conhost.exe

C:\windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.bing.com/?pc=Z015&form=ZGAPHP

uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA

mDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA

mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA

uInternet Settings,ProxyServer = http=;ftp=;https=;

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: Microsoft Web Test Recorder 10.0 Helper: {dda57003-0068-4ed2-9d32-4d1ec707d94d} - c:\program files\microsoft visual studio 10.0\common7\ide\privateassemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll

TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

EB: Web Test Recorder 10.0: {5802d092-1784-4908-8cdb-99b6842d353d} - mscoree.dll

uRun: [MyTOSHIBA] "c:\program files\toshiba\my toshiba\MyToshiba.exe" /AUTO

uRun: [EPSON Stylus Photo RX595 Series] c:\windows\system32\spool\drivers\w32x86\3\e_faticla.exe /fu "c:\windows\temp\E_S4D98.tmp" /EF "HKCU"

uRun: [DW6] "c:\program files\the weather channel fw\desktop\DesktopWeather.exe"

uRun: [AdobeBridge]

uRun: [JumiController] c:\program files\jumi\jumi.exe

uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background

uRun: [sandboxieControl] "c:\program files\sandboxie\SbieCtrl.exe"

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe

mRun: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

mRun: [sVPWUTIL] c:\program files\toshiba\utilities\SVPWUTIL.exe SVPwUTIL

mRun: [HWSetup] "c:\program files\toshiba\utilities\HWSetup.exe" hwSetUP

mRun: [KeNotify] c:\program files\toshiba\utilities\KeNotify.exe

mRun: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE

mRun: [smoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe

mRun: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe

mRun: [ToshibaServiceStation] "c:\program files\toshiba\toshiba service station\ToshibaServiceStation.exe" /hide:60

mRun: [TosSENotify] c:\program files\toshiba\toshiba hdd ssd alert\TosWaitSrv.exe

mRun: [NortonOnlineBackupReminder] "c:\program files\toshiba\toshiba online backup\activation\TobuActivation.exe" UNATTENDED

mRun: [blackBerryAutoUpdate] c:\program files\common files\research in motion\auto update\RIMAutoUpdate.exe /background

mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [vmware-tray] "c:\program files\vmware\vmware workstation\vmware-tray.exe"

mRun: [VirtualCloneDrive] "c:\program files\elaborate bytes\virtualclonedrive\VCDDaemon.exe" /s

mRun: [MFARestart] "c:\programdata\mfadata\pack\avgrunasx.exe" /usereg

mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"

mRun: [switchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\desktop messenger\8876480\program\LogitechDesktopMessenger.exe

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: E&xport to Microsoft Excel - c:\progra~1\mif5ba~1\office12\EXCEL.EXE/3000

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\mif5ba~1\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mif5ba~1\office12\REFIEBAR.DLL

LSP: c:\program files\vmware\vmware workstation\vsocklib.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 192.168.1.1

TCP: Interfaces\{1DAC9BA7-2697-4922-B858-259F81683908} : DhcpNameServer = 192.168.0.1

TCP: Interfaces\{2B628043-564D-499C-B681-5AC04A3A786D} : NameServer = 8.26.56.26,156.154.70.22

TCP: Interfaces\{82F7B462-B2AF-4D84-9E0D-0B4896AFC699} : DhcpNameServer = 192.168.1.1

Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

Notify: igfxcui - igfxdev.dll

mASetup: {01250B8F-D947-4F8A-9408-FE8E3EE2EC92} - c:\program files\toshiba\my toshiba\MyToshiba.exe /SETUP

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\joel\appdata\roaming\mozilla\firefox\profiles\98v7eqh9.default\

FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll

FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll

FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll

FF - plugin: c:\program files\microsoft silverlight\4.1.10111.0\npctrlui.dll

FF - plugin: c:\program files\microsoft\office live\npOLW.dll

FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - plugin: c:\users\joel\appdata\local\google\update\1.3.21.99\npGoogleUpdate3.dll

FF - plugin: c:\users\joel\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll

.

============= SERVICES / DRIVERS ===============

.

R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]

R2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files\toshiba\configfree\CFIWmxSvcs.exe [2009-8-10 185712]

R2 ConfigFree Service;ConfigFree Service;c:\program files\toshiba\configfree\CFSvcs.exe [2009-3-10 46448]

R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [2011-2-24 22504]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-3-3 652360]

R2 VMUSBArbService;VMware USB Arbitration Service;c:\program files\common files\vmware\usb\vmware-usbarbitrator.exe [2010-11-11 539248]

R3 jumi;%Jumi%;c:\windows\system32\drivers\jumi.sys [2010-6-3 13112]

R3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys [2012-3-1 173880]

R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\drivers\ManyCam.sys [2011-9-29 21632]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-2-13 20464]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-10-19 167936]

R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187B.sys [2010-3-31 379904]

R3 SbieDrv;SbieDrv;c:\program files\sandboxie\SbieDrv.sys [2012-2-7 133392]

R3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [2010-7-1 34896]

R3 TMachInfo;TMachInfo;c:\program files\toshiba\toshiba service station\TMachInfo.exe [2009-10-19 51512]

R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\toshiba\toshiba hdd ssd alert\TosSmartSrv.exe [2009-9-17 111960]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-5-22 135664]

S3 androidusb;ADB Interface Driver;c:\windows\system32\drivers\androidusb.sys [2010-4-29 26112]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2010-12-5 39272]

S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-23 1493352]

S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-5-22 135664]

S3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2012-3-6 26224]

S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\drivers\nx6000.sys [2010-12-13 30576]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2009-10-19 171008]

S3 SwitchBoard;Adobe SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]

S3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files\microsoft visual studio 10.0\team tools\performance tools\VSPerfDrv100.sys [2009-12-8 48128]

S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-4-20 1343400]

S3 WMZuneComm;Zune Windows Mobile Connectivity Service;c:\program files\zune\WMZuneComm.exe [2010-11-11 268528]

S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2009-7-22 47128]

S4 RsFx0103;RsFx0103 Driver;c:\windows\system32\drivers\RsFx0103.sys [2009-3-30 239336]

S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2010-9-17 370008]

S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]

.

=============== Created Last 30 ================

.

2012-03-09 10:50:28 -------- d-----w- c:\users\joel\appdata\local\{2DBF38B6-38A5-4E1F-ACD1-4F4D1A21E978}

2012-03-09 10:50:15 -------- d-----w- c:\users\joel\appdata\local\{4FAC5F9D-76BE-4161-9753-80C3BD888677}

2012-03-09 10:39:53 -------- d-sh--w- C:\found.001

2012-03-09 08:54:55 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{53160ed4-a4ca-4a59-9308-50502ff99caa}\offreg.dll

2012-03-09 07:45:00 -------- d-----w- c:\users\joel\appdata\local\{CC7E9E08-95F5-4F8C-BFC8-65221B4E8CA4}

2012-03-09 07:44:48 -------- d-----w- c:\users\joel\appdata\local\{B2B111D0-29FF-4642-AEAD-8791FA68EC3F}

2012-03-09 07:09:44 -------- d-----w- c:\users\joel\appdata\local\{7417F681-6A03-4416-82D6-4E97E88D1DC5}

2012-03-09 07:09:31 -------- d-----w- c:\users\joel\appdata\local\{A9D0698E-8CF4-4796-BB80-6B35B3210015}

2012-03-08 19:24:35 -------- d-----w- c:\users\joel\appdata\local\join.me

2012-03-08 16:30:47 -------- d-----w- c:\users\joel\appdata\local\{CAFB3886-A328-4703-A63F-14B1D5228D0E}

2012-03-08 16:30:34 -------- d-----w- c:\users\joel\appdata\local\{C701ABCB-4FC2-45DE-A9AD-1A9E22097284}

2012-03-08 16:08:13 -------- d-----w- c:\users\joel\appdata\local\{F7040CB5-CF3B-4CED-937C-F4E26E5AC7CC}

2012-03-08 16:08:00 -------- d-----w- c:\users\joel\appdata\local\{8D841C44-7170-4FB7-A463-DE80F13E1417}

2012-03-08 04:02:47 -------- d-----w- c:\users\joel\appdata\local\{9538E7C3-E5AE-4F06-B443-0E5A04C81411}

2012-03-08 04:02:35 -------- d-----w- c:\users\joel\appdata\local\{1172B6D5-B0DD-40A8-AF1D-96ECC134BA33}

2012-03-07 21:40:07 -------- d-----w- c:\users\joel\appdata\local\{FE49A1DF-C4D9-4EFC-B28A-8793EB10C22D}

2012-03-07 21:39:56 -------- d-----w- c:\users\joel\appdata\local\{B36398F1-0EAB-4EE1-BBC2-87818BB8C7E8}

2012-03-07 07:25:03 -------- d-----r- C:\Sandbox

2012-03-07 07:20:57 -------- d-----w- c:\program files\Sandboxie

2012-03-07 04:08:09 -------- d-----w- c:\users\joel\appdata\local\{C1C1EF1B-57F2-4293-B422-1903BD94AA6E}

2012-03-07 04:07:57 -------- d-----w- c:\users\joel\appdata\local\{DBD40BBC-3C10-4CE6-8C9E-6FBE2B4006BB}

2012-03-07 01:27:19 26224 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys

2012-03-06 22:23:47 -------- d-----w- c:\users\joel\appdata\local\{0DC430AF-374E-4CA6-B9B2-AEB91DC35F66}

2012-03-06 22:23:35 -------- d-----w- c:\users\joel\appdata\local\{C4C85DD2-9336-4A68-9D59-3852193A3FF4}

2012-03-06 20:46:36 6552120 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{53160ed4-a4ca-4a59-9308-50502ff99caa}\mpengine.dll

2012-03-06 20:42:57 -------- d-----w- c:\users\joel\appdata\local\{703D0B1A-BA18-452B-938E-FB54A71BBB62}

2012-03-05 20:43:09 -------- d-----w- c:\users\joel\appdata\local\{CAA420ED-E139-4C2D-BA89-9C56608BCE26}

2012-03-05 20:42:58 -------- d-----w- c:\users\joel\appdata\local\{3D969E0C-E7FE-4562-B938-B7E04497288F}

2012-03-05 03:40:12 -------- d-----w- c:\users\joel\appdata\local\{FD6A286F-52B5-4386-8058-77EA32F29E93}

2012-03-05 03:39:48 -------- d-----w- c:\users\joel\appdata\local\{0E4EEEB8-2C95-405F-980A-25904EE9451C}

2012-03-04 23:00:24 -------- d-----w- c:\users\joel\appdata\local\{EACF949B-EB76-49D9-9C1B-FBFB75F52795}

2012-03-04 23:00:13 -------- d-----w- c:\users\joel\appdata\local\{DD5B7D36-F195-4774-8571-6909CF3DB60E}

2012-03-04 08:32:43 -------- d-----w- c:\users\joel\appdata\roaming\Screaming Bee

2012-03-04 08:31:58 -------- d-----w- c:\programdata\Screaming Bee

2012-03-04 08:31:53 -------- d-----w- c:\program files\Screaming Bee

2012-03-03 21:27:42 -------- d-----w- c:\users\joel\appdata\local\{9F027883-E997-4982-9604-078B2CF26131}

2012-03-03 21:27:30 -------- d-----w- c:\users\joel\appdata\local\{EA5BF475-9084-4F54-AB5F-85143E865254}

2012-03-02 23:50:21 -------- d-----w- c:\users\joel\appdata\local\{8C851752-8E90-4FF0-AA20-ACB592226F27}

2012-03-02 23:50:09 -------- d-----w- c:\users\joel\appdata\local\{9893FF81-1354-493D-944A-BB4C0398CD8D}

2012-03-02 16:11:17 -------- d-----w- c:\users\joel\appdata\local\{84F2DBC1-95A8-4252-8142-2B21EECE0927}

2012-03-02 10:14:46 -------- d-----w- c:\users\joel\appdata\local\{7008E4FF-45EE-40AA-942E-804600CCE9BE}

2012-03-02 10:13:15 -------- d-----w- c:\users\joel\appdata\local\{DF899A55-7C72-4FB0-A2AB-A8DC840D3E05}

2012-03-01 20:21:55 -------- d-----w- c:\users\joel\appdata\local\{8FDB8FA9-D579-4342-B07E-9B566ADE5365}

2012-03-01 20:21:41 -------- d-----w- c:\users\joel\appdata\local\{AE307A03-D9BA-4ACD-8EA2-5F55DA57DFAE}

2012-03-01 09:10:58 173880 ----a-w- c:\windows\system32\drivers\keyscrambler.sys

2012-03-01 09:10:58 -------- d-----w- c:\program files\KeyScrambler

2012-03-01 00:09:24 -------- d-----w- c:\users\joel\appdata\local\{4CE1E8D2-6F8B-42ED-98D0-079748CC3FDD}

2012-03-01 00:09:13 -------- d-----w- c:\users\joel\appdata\local\{AD1F3751-2DB2-45E9-BFC1-2AFB57A39EFE}

2012-02-29 17:51:48 -------- d-----w- c:\users\joel\appdata\local\{F75A2BE4-65EF-4889-912E-08EDF0D79790}

2012-02-29 17:51:37 -------- d-----w- c:\users\joel\appdata\local\{9524A921-A5D3-4D1B-975F-0AE62B9D861B}

2012-02-29 17:24:35 -------- d-----w- c:\users\joel\appdata\local\{72D9566F-A6FA-4FDC-895B-9F3EF8920005}

2012-02-29 17:24:24 -------- d-----w- c:\users\joel\appdata\local\{DB78E308-FE3B-4E18-9D8E-ECE5DA9F14C4}

2012-02-29 02:17:36 -------- d-----w- c:\users\joel\appdata\local\{779BED83-696D-4164-B3EB-7975C51C44B0}

2012-02-29 02:17:24 -------- d-----w- c:\users\joel\appdata\local\{F46F4EAF-C223-40C3-A23C-697661D274D9}

2012-02-28 04:50:58 -------- d-----w- c:\users\joel\appdata\local\{AF7FAFEC-B5BB-483A-93A4-64E693D5B111}

2012-02-28 04:50:46 -------- d-----w- c:\users\joel\appdata\local\{17543FBF-DDF9-4DDD-8781-B8988031638A}

2012-02-27 23:12:45 -------- d-----w- c:\users\joel\appdata\local\{10F30BA9-9E84-47FC-B5C7-E94B0035A79D}

2012-02-27 23:12:33 -------- d-----w- c:\users\joel\appdata\local\{5838ECFA-45A9-4638-8A6D-02BAFF8871AB}

2012-02-27 20:36:00 -------- d-----w- c:\users\joel\appdata\local\{51611FD4-D225-4B24-8656-E0A1419E8206}

2012-02-27 20:35:21 -------- d-----w- c:\users\joel\appdata\local\{190B71F8-FDEB-43A3-8E58-A673AAB48AA8}

2012-02-27 16:56:35 737072 ----a-w- c:\programdata\microsoft\ehome\packages\sportsv2\sportstemplatecore\Microsoft.MediaCenter.Sports.UI.dll

2012-02-27 16:46:10 4283672 ----a-w- c:\programdata\microsoft\ehome\packages\mceclientux\updateablemarkup\markup.dll

2012-02-27 16:45:48 42776 ----a-w- c:\programdata\microsoft\ehome\packages\mceclientux\dsm\StartResources.dll

2012-02-27 16:45:44 539984 ----a-w- c:\programdata\microsoft\ehome\packages\mcespotlight\mcespotlight\SpotlightResources.dll

2012-02-27 05:24:09 -------- d-----w- c:\users\joel\appdata\roaming\AnvSoft

2012-02-27 05:05:02 -------- d-----w- c:\users\joel\appdata\local\{C41CFD70-4D47-472D-90CC-0B04D548F4CE}

2012-02-27 05:04:43 -------- d-----w- c:\users\joel\appdata\local\{D1B90FE0-CB36-482C-B425-ABE68B19882D}

2012-02-26 17:58:57 -------- d-----w- c:\users\joel\appdata\local\{ED6AD532-672D-4CF9-9FC7-E1E7D78FD045}

2012-02-26 17:58:46 -------- d-----w- c:\users\joel\appdata\local\{F035D7E5-D73F-49B0-BADB-7692ACEC7B7B}

2012-02-26 04:55:42 -------- d-----w- c:\users\joel\appdata\roaming\com.adobe.downloadassistant.AdobeDownloadAssistant

2012-02-26 04:30:10 -------- d-----w- c:\users\joel\appdata\local\{948D0B99-224E-4D4A-A54A-DCAC746B7E45}

2012-02-26 04:29:56 -------- d-----w- c:\users\joel\appdata\local\{1EFB2EFC-2069-43DF-AF61-2AAD9EE7FEF7}

2012-02-25 22:23:05 -------- d-----w- c:\users\joel\appdata\local\{5A0D6D67-51BE-476B-A4F2-62C328CDB95E}

2012-02-25 22:22:49 -------- d-----w- c:\users\joel\appdata\local\{340B28B9-A8DA-4392-BDDC-89D9094EEC93}

2012-02-25 03:38:34 -------- d-----w- c:\users\joel\appdata\local\{8A85B534-1D8E-44E3-8BBE-9FDA93A822C7}

2012-02-25 03:38:22 -------- d-----w- c:\users\joel\appdata\local\{8334A824-6AF5-425D-B719-8E1D7ADB40E6}

2012-02-24 21:44:15 -------- d-----w- c:\users\joel\appdata\local\{925E0768-260B-4B17-9BC0-8705B0C93922}

2012-02-24 21:44:03 -------- d-----w- c:\users\joel\appdata\local\{895C5886-BC92-49F9-84DB-3D67ECFA873D}

2012-02-24 01:25:49 -------- d-----w- c:\users\joel\appdata\local\{5C4D485B-D281-4939-B02F-7F33050B1AAE}

2012-02-24 01:25:38 -------- d-----w- c:\users\joel\appdata\local\{2CD00400-CF61-4A4F-8E48-EFF4F2800DC1}

2012-02-24 00:59:54 -------- d-----w- c:\users\joel\appdata\local\{2B99766E-B727-4050-A9DC-9F1E2DC6F8E2}

2012-02-24 00:59:39 -------- d-----w- c:\users\joel\appdata\local\{CB544701-A972-4E3E-B7F3-387D512B37CB}

2012-02-23 17:33:01 -------- d-----w- c:\users\joel\appdata\local\{92CEA0AF-839F-41C5-B989-DFCEEF3AB50D}

2012-02-23 17:32:50 -------- d-----w- c:\users\joel\appdata\local\{786130C9-B83A-4CE8-992C-C9748C82EAC5}

2012-02-23 15:11:30 -------- d-----w- c:\users\joel\appdata\local\{4E9113D2-C0C1-45FA-A9EF-F890A23F2F3A}

2012-02-23 15:11:18 -------- d-----w- c:\users\joel\appdata\local\{89DBBB4E-B512-410C-9709-F1BC791ABF1B}

2012-02-23 02:00:56 -------- d-----w- c:\users\joel\appdata\local\{A6070946-70D1-444E-9F9C-059B069FB814}

2012-02-23 02:00:43 -------- d-----w- c:\users\joel\appdata\local\{A0456C84-242F-4BF5-A3D3-25B26F276509}

2012-02-22 13:50:53 -------- d-----w- c:\users\joel\appdata\local\{8CB4CA5E-C06F-4C53-90B0-F79C423C7D40}

2012-02-22 13:48:43 -------- d-----w- c:\users\joel\appdata\local\{3FC5F956-025C-4B88-9E2E-AFE41D3CEA3D}

2012-02-21 21:11:30 -------- d-----w- c:\users\joel\appdata\local\{203C6353-B616-4E99-9209-2AC76BB05397}

2012-02-21 21:11:18 -------- d-----w- c:\users\joel\appdata\local\{3D8300EA-5203-4B80-8DF8-84FF5F4DEB6D}

2012-02-21 06:42:53 -------- d-----w- c:\users\joel\appdata\local\{79BA49FA-60C7-402D-A7EC-69FE664A7A7C}

2012-02-21 06:42:39 -------- d-----w- c:\users\joel\appdata\local\{851E4235-4304-4A21-85A3-CD7BCE4D3162}

2012-02-21 01:34:10 -------- d-----w- c:\users\joel\appdata\local\{7BBB2190-CDB0-4D6D-A2FA-A2A3C0170D2D}

2012-02-21 01:33:59 -------- d-----w- c:\users\joel\appdata\local\{CE3769BC-90D9-41B6-9940-E55E700CAC5A}

2012-02-21 00:33:21 -------- d-----w- c:\users\joel\appdata\local\{F951C9F9-3168-40DC-A63C-297BA23C974A}

2012-02-20 16:50:35 -------- d-----w- c:\users\joel\appdata\local\{BEB18CCD-09CD-4226-9887-1428293C8E22}

2012-02-20 16:50:22 -------- d-----w- c:\users\joel\appdata\local\{00959C32-9331-45B9-9D6F-06DCF894BA5E}

2012-02-20 14:26:10 -------- d-----w- c:\program files\Free Offers from Freeze.com

2012-02-20 10:35:11 -------- d-----w- c:\users\joel\appdata\local\{A1BAD6FB-F0C8-4E53-B8EA-C8E405EA2888}

2012-02-20 10:34:59 -------- d-----w- c:\users\joel\appdata\local\{E70AB7B3-8798-4E75-99FC-BAAF06CAD7F8}

2012-02-20 02:03:03 -------- d-----w- c:\users\joel\appdata\local\{A96E977B-22D2-4E54-8A36-B1AC0E193489}

2012-02-20 02:02:46 -------- d-----w- c:\users\joel\appdata\local\{445625A9-6092-45CB-96EB-57FBD5A212ED}

2012-02-19 18:44:27 -------- d-----w- c:\users\joel\appdata\local\{84779C3C-F02A-4321-A757-F7985CECEB70}

2012-02-19 18:44:12 -------- d-----w- c:\users\joel\appdata\local\{A169A08A-337E-4E19-A044-B06D1466CC6F}

2012-02-19 18:42:54 -------- d-----w- c:\programdata\CPA_VA

2012-02-19 09:41:32 472808 ----a-w- c:\windows\system32\deployJava1.dll

2012-02-19 06:20:10 236768 ----a-w- c:\windows\system32\drivers\sfi.dat

2012-02-19 06:18:02 -------- d-----w- c:\program files\Comodo

2012-02-19 06:17:59 1700352 ----a-w- c:\windows\system32\gdiplus.dll

2012-02-19 02:46:28 53248 ----a-w- C:\gendel32.exe

2012-02-19 02:33:21 -------- d-----w- c:\program files\HTTP-Tunnel

2012-02-18 23:45:20 -------- d-----w- c:\users\joel\appdata\local\{D8986DA7-91AE-454E-9DA4-E029FFC307A4}

2012-02-18 23:44:54 -------- d-----w- c:\users\joel\appdata\local\{60DE7C9F-5E92-4FA7-A2F7-69776DE3988C}

2012-02-18 21:25:11 478208 ----a-w- c:\windows\system32\timedate.cpl

2012-02-18 21:24:37 690688 ----a-w- c:\windows\system32\msvcrt.dll

2012-02-18 21:24:02 442880 ----a-w- c:\windows\system32\ntshrui.dll

2012-02-18 21:23:04 2340864 ----a-w- c:\windows\system32\win32k.sys

2012-02-18 21:10:33 -------- d-----w- c:\users\joel\appdata\local\{FA829B90-1CCF-4F10-B102-ECA69737AB19}

2012-02-18 21:10:21 -------- d-----w- c:\users\joel\appdata\local\{A2064E8D-687C-438B-A3DF-C42D36D519C5}

2012-02-18 20:52:45 -------- d-----w- c:\users\joel\appdata\local\{BF6DB93C-7C47-4252-A7CB-2F3C8899D4DC}

2012-02-18 20:52:33 -------- d-----w- c:\users\joel\appdata\local\{2C6388AB-744E-4B58-8E4D-6D9D43A60A85}

2012-02-17 19:50:20 -------- d-----w- c:\users\joel\appdata\local\{126158C2-8C26-4F79-9FA1-96B2DA21E2C1}

2012-02-17 19:50:05 -------- d-----w- c:\users\joel\appdata\local\{F2F5D76B-B140-4FFE-AC91-C9A913AFEF62}

2012-02-16 23:54:17 -------- d-----w- c:\program files\Ask.com

2012-02-16 23:53:54 -------- d-----w- c:\users\joel\appdata\local\ManyCam

2012-02-16 23:11:57 -------- d-----w- c:\users\joel\appdata\roaming\OpenCandy

2012-02-16 23:11:54 -------- d-----w- c:\program files\AnvSoft

2012-02-16 22:21:46 -------- d-----w- c:\program files\MSN Toolbar

2012-02-16 22:21:37 -------- d-----w- c:\programdata\Freemake

2012-02-16 22:20:57 -------- d-----w- c:\program files\Bing Bar Installer

2012-02-16 09:17:04 -------- d-----w- C:\571e8c0e3eeff57c5bf11ca24ddfed27

2012-02-16 05:32:22 -------- d-----w- c:\program files\pazera-software

2012-02-16 03:20:57 -------- d-----w- c:\users\joel\appdata\roaming\ManyCam

2012-02-16 03:20:51 -------- d-----w- c:\program files\ManyCam

2012-02-14 04:27:17 -------- d-----w- c:\users\joel\appdata\roaming\Malwarebytes

2012-02-14 04:26:31 20464 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-02-14 04:26:31 -------- d-----w- c:\programdata\Malwarebytes

2012-02-14 04:26:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2012-02-13 05:23:14 -------- d-----w- c:\program files\common files\Symantec Shared

2012-02-12 23:07:01 -------- d-----w- c:\users\joel\appdata\roaming\Unity

2012-02-12 13:53:12 -------- d-----w- c:\program files\common files\PX Storage Engine

2012-02-12 13:52:42 -------- d-----w- c:\program files\common files\DivX Shared

2012-02-12 13:51:06 -------- d-----w- c:\programdata\DivX

2012-02-12 09:02:59 -------- d-----w- c:\users\joel\appdata\local\{997DAA50-09FF-4098-98CD-FF4045EDD1F6}

2012-02-12 09:02:47 -------- d-----w- c:\users\joel\appdata\local\{05669525-7B92-45EA-A080-0072A82E3FD7}

2012-02-12 04:17:42 -------- d-----w- c:\users\joel\appdata\roaming\HideIPEasy

2012-02-12 04:17:42 -------- d-----w- c:\programdata\HideIPEasy

2012-02-12 04:17:01 -------- d-----w- c:\users\joel\appdata\roaming\C__Users_Joel_AppData_Local_Temp_Rar$EX13.975_HideIPEasy_Crack_HideIPEasy.exe

2012-02-12 04:17:01 -------- d-----w- c:\programdata\C__Users_Joel_AppData_Local_Temp_Rar$EX13.975_HideIPEasy_Crack_HideIPEasy.exe

2012-02-12 04:16:43 -------- d-----w- c:\users\joel\appdata\local\APN

2012-02-12 04:15:19 -------- d-----w- c:\users\joel\appdata\roaming\C__Users_Joel_AppData_Local_Temp_Rar$EX03.043_HideIPEasy_Crack_HideIPEasy.exe

2012-02-12 04:15:19 -------- d-----w- c:\programdata\C__Users_Joel_AppData_Local_Temp_Rar$EX03.043_HideIPEasy_Crack_HideIPEasy.exe

2012-02-11 22:34:39 -------- d-----w- c:\users\joel\appdata\local\{6A1013D5-5AAE-46AA-949E-805723EB86E6}

2012-02-11 22:34:27 -------- d-----w- c:\users\joel\appdata\local\{D7B9C796-C72E-48E9-AA0E-4D660648682E}

2012-02-10 19:09:28 -------- d-----w- c:\programdata\Nexon

2012-02-10 18:56:24 -------- d-----w- C:\Nexon

2012-02-10 18:56:23 -------- d-----w- c:\programdata\NexonUS

2012-02-10 16:46:27 -------- d-----w- c:\users\joel\appdata\local\{3E711184-0CE4-4C24-B15E-796194DDE786}

2012-02-10 16:46:11 -------- d-----w- c:\users\joel\appdata\local\{236ABC74-AF0C-4BF1-91CB-C6EAB2B30CF3}

2012-02-08 11:35:36 -------- d-----w- c:\programdata\MFAData

.

==================== Find3M ====================

.

2012-02-23 15:18:36 237072 ------w- c:\windows\system32\MpSigStub.exe

2012-01-15 00:15:28 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-01-04 00:48:42 354176 ----a-w- c:\windows\system32\DivXControlPanelApplet.cpl

.

============= FINISH: 5:33:15.88 ===============

IT HAS BEEN 2 DAYS .. And no one is trying to help me .. Can anyone help me.

DDS.txt

Attach.rar

[LDTate]

Do you have a Anti-Virus program?

[ILoveSnapple]

Noo , I do not.

[LDTate]

Lets start there.

Get a free one.

Only run one Anti-Virus at a time.

Use an AntiVirus Software - Choose only one - More than one will conflict. It is very important that your computer has anti-virus software running to protect against viruses. Update Antivirus prior to manual scans as necessary or as used. Please only choose one, having more than one can cause problems, such as crashes and your computer to slow down.

• Microsoft Security Essentials
  
• AVAST Home Edition
  

Run a full scan and let us know what it finds along with a new HijackThis log.

Also please describe how your computer behaves at the moment

[ILoveSnapple]

I am installing Avast . But my computer is really bad right now . It is really slow , It takes me 15-20 mins to Boot up my computer .. My computer freezes a lot .Its just really really slow and I don't know what I can do to fix that .

[LDTate]

I'm sure it's very badly infected.

Just let the AV install and run.

I'll be going offline in a few minutes but will check back in the morning.

[LDTate]

Do you still need help with this?

[LDTate]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!