IP 208.73.210.29

[saw4846]

Every couple minutes this IP is blocked. Always outgoing.

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 8.0.7601.17514

Run by puppy at 2:40:37 on 2012-04-04

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8190.5371 [GMT -5:00]

.

AV: ESET Smart Security 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}

SP: ESET Smart Security 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe

C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Windows\system32\taskhost.exe

C:\Windows\system32\DllHost.exe

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe

C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe

C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe

C:\Program Files\Logitech\ScrollApp\KhalScroll.exe

C:\Program Files\Logitech\SetPointP\SetPoint.exe

C:\Program Files\ESET\ESET Smart Security\egui.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE

C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Program Files\Logitech\SetPointG\SetPointII.exe

C:\Program Files\Windows Media Player\WMPSideShowGadget.exe

C:\Program Files (x86)\Windows Media Player\wmplayer.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\rundll32.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

mStart Page = hxxp://www.google.com

uInternet Settings,ProxyOverride = *.local

uURLSearchHooks: H - No File

mWinlogon: Userinit=userinit.exe,

BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: SecureBrowsing bho: {7632abca-b104-4fbc-9c70-419c4147061b} - C:\Program Files (x86)\M86Security Secure Browsing\SecureBrowsing.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: Logitech Scroll App: {e11db59d-5008-42ff-9069-535843bc0be1} - C:\Program Files\Logitech\ScrollApp\32-bit\LogiSmooth.dll

TB: M86 Security Secure Browsing: {b99f805c-f0b1-48ea-8c8b-753bfcbed913} - C:\Program Files (x86)\M86Security Secure Browsing\SecureBrowsing.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

mRun: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe

mRun: [AmazonGSDownloaderTray] C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderTray.exe

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MICROS~1.LNK - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office10\EXCEL.EXE/3000

Trusted Zone: clonewarsadventures.com

Trusted Zone: freerealms.com

Trusted Zone: soe.com

Trusted Zone: sony.com

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

TCP: DhcpNameServer = 192.168.0.1

TCP: Interfaces\{E0F17E69-2B70-4249-A676-D19F62CD8BF8} : DhcpNameServer = 192.168.0.1

mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache

BHO-X64: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File

BHO-X64: 0x1 - No File

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO-X64: SecureBrowsing bho: {7632ABCA-B104-4fbc-9C70-419C4147061B} - C:\Program Files (x86)\M86Security Secure Browsing\SecureBrowsing.dll

BHO-X64: SecureBrowsing Toolbar - No File

BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

BHO-X64: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO-X64: Logitech Scroll App: {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\ScrollApp\32-bit\LogiSmooth.dll

TB-X64: M86 Security Secure Browsing: {B99F805C-F0B1-48EA-8C8B-753BFCBED913} - C:\Program Files (x86)\M86Security Secure Browsing\SecureBrowsing.dll

TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

mRun-x64: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe

mRun-x64: [AmazonGSDownloaderTray] C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderTray.exe

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

.

============= SERVICES / DRIVERS ===============

.

R0 epfwwfp;epfwwfp;C:\Windows\system32\DRIVERS\epfwwfp.sys --> C:\Windows\system32\DRIVERS\epfwwfp.sys [?]

R1 EpfwLWF;Epfw NDIS LightWeight Filter;C:\Windows\system32\DRIVERS\EpfwLWF.sys --> C:\Windows\system32\DRIVERS\EpfwLWF.sys [?]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]

R2 eamonm;eamonm;C:\Windows\system32\DRIVERS\eamonm.sys --> C:\Windows\system32\DRIVERS\eamonm.sys [?]

R2 ekrn;ESET Service;C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-9-22 974944]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-1-31 652360]

R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-3-25 2348352]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-2-29 382272]

R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\system32\drivers\LGBusEnum.sys --> C:\Windows\system32\drivers\LGBusEnum.sys [?]

R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\system32\drivers\LGVirHid.sys --> C:\Windows\system32\drivers\LGVirHid.sys [?]

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2011-7-20 17144]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-7-20 136176]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-2 253600]

S3 Amazon Download Agent;Amazon Download Agent;C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe [2011-8-7 401920]

S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-7-20 136176]

S3 Leapfrog-USBLAN;Leapfrog-USBLAN;C:\Windows\system32\DRIVERS\btblan.sys --> C:\Windows\system32\DRIVERS\btblan.sys [?]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S4 AirPrint;AirPrint;C:\Program Files (x86)\AirPrint\Airprint.exe -s --> C:\Program Files (x86)\AirPrint\Airprint.exe -s [?]

.

=============== Created Last 30 ================

.

2012-04-04 07:27:51 -------- d-----w- C:\Users\puppy\AppData\Local\{896E80DC-4EEA-407C-A86A-2824CB29820A}

2012-04-04 07:23:42 8669240 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2885D8E0-30E2-4800-8FD3-3C3ABCB8DDD0}\mpengine.dll

2012-04-03 07:26:47 -------- d-----w- C:\Users\puppy\AppData\Local\{E4D7DCAC-2C98-40FA-A310-EE55E6A0E0D3}

2012-04-02 19:34:07 8738464 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe

2012-04-02 19:27:40 418464 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-04-02 06:40:03 -------- d-----w- C:\Users\puppy\AppData\Local\{0737BFFD-7B8C-48E7-B688-FE294B48D2D1}

2012-04-01 17:07:40 -------- d-----w- C:\Users\puppy\AppData\Local\{67AD0579-A19D-4FDB-9223-F28480B27B79}

2012-04-01 04:11:07 -------- d-----w- C:\Users\puppy\AppData\Local\{8AEB488B-6001-4F7E-B1FA-E915B71B742F}

2012-03-30 18:52:15 -------- d-----w- C:\Users\puppy\AppData\Local\{11EEFE65-D68D-4F19-80FA-700B731FAD50}

2012-03-29 22:55:16 -------- d-----w- C:\Users\puppy\AppData\Roaming\NVIDIA

2012-03-29 22:53:16 -------- d-----w- C:\Users\puppy\AppData\Local\Imaginova Canada

2012-03-29 22:49:51 -------- d-----w- C:\Program Files (x86)\Common Files\ASCOM

2012-03-29 22:49:51 -------- d-----w- C:\Program Files (x86)\ASCOM

2012-03-29 22:27:53 -------- d--h--w- C:\Program Files (x86)\Zero G Registry

2012-03-29 22:27:53 -------- d-----w- C:\Program Files (x86)\Starry Night Orion Special Edition

2012-03-29 22:27:00 -------- d--h--w- C:\Users\puppy\InstallAnywhere

2012-03-29 22:06:43 -------- d-----w- C:\Users\puppy\AppData\Local\{BB26C6EB-57C3-45D7-8D76-4B1CF55F0232}

2012-03-29 07:25:23 -------- d-----w- C:\Users\puppy\AppData\Local\{14D5BD25-AF1D-4D65-A439-09C1D426F075}

2012-03-28 18:26:49 -------- d-----w- C:\Users\puppy\AppData\Local\{2729248A-A1FC-4AA4-959E-A20A4D49F2E9}

2012-03-28 18:26:47 -------- d-----w- C:\Users\puppy\AppData\Local\{8F470E64-7186-45C7-9BA6-2A852D2F67DC}

2012-03-27 07:26:01 -------- d-----w- C:\Users\puppy\AppData\Local\{58920782-5A63-476D-812F-4FDB0823AA5C}

2012-03-27 07:25:56 -------- d-----w- C:\Users\puppy\AppData\Local\{03E1BB21-88A3-4999-8421-F12A81C91408}

2012-03-26 19:01:16 -------- d-----w- C:\Users\puppy\AppData\Local\{9B976F3D-D612-40BD-A97B-856D3B39FB29}

2012-03-26 19:01:15 -------- d-----w- C:\Users\puppy\AppData\Local\{644EAECE-BF69-4CF1-AA08-F56AF39E6F6E}

2012-03-26 18:19:03 -------- d-----w- C:\Users\puppy\AppData\Local\{57CC58E6-785B-406D-85E9-D071E484FD90}

2012-03-26 18:08:41 -------- d-----w- C:\Users\puppy\AppData\Local\{52963EAB-8C27-4D00-9F44-7F6AAE184949}

2012-03-26 03:33:50 -------- d-----w- C:\Users\puppy\AppData\Local\{1B617A4F-1630-4305-AB37-D0BDEBFE757F}

2012-03-26 03:33:48 -------- d-----w- C:\Users\puppy\AppData\Local\{BDFCB05E-6956-4BC4-A102-C401E7AD79D9}

2012-03-26 00:53:49 889664 ----a-w- C:\Windows\System32\nvvsvc.exe

2012-03-26 00:53:49 63296 ----a-w- C:\Windows\System32\nvshext.dll

2012-03-26 00:53:49 6074176 ----a-w- C:\Windows\System32\nvcpl.dll

2012-03-26 00:53:49 3089728 ----a-w- C:\Windows\System32\nvsvc64.dll

2012-03-26 00:53:49 2515790 ----a-w- C:\Windows\System32\nvcoproc.bin

2012-03-26 00:53:49 118080 ----a-w- C:\Windows\System32\nvmctray.dll

2012-03-26 00:53:36 -------- d-----w- C:\ProgramData\NVIDIA Corporation

2012-03-24 22:32:33 -------- d-----w- C:\Users\puppy\AppData\Local\{BE39B764-C1F5-4B2A-80B6-96EB44AA0849}

2012-03-24 22:32:31 -------- d-----w- C:\Users\puppy\AppData\Local\{591F4CB0-4494-40A5-8763-A664A57B2402}

2012-03-24 06:11:41 -------- d-----w- C:\Users\puppy\AppData\Local\{6653557D-79E0-43E4-8BA8-30117555CE46}

2012-03-24 06:11:40 -------- d-----w- C:\Users\puppy\AppData\Local\{F4B6F10E-9E9F-40BE-8506-F0AE74C2A5B0}

2012-03-23 17:08:18 -------- d-----w- C:\Users\puppy\AppData\Local\{C4D7F89B-FE3D-4635-9568-0F436A7374D6}

2012-03-23 17:08:16 -------- d-----w- C:\Users\puppy\AppData\Local\{B47D7106-EBF4-467E-AE71-8C62EB8488DB}

2012-03-22 08:32:57 -------- d-----w- C:\Program Files\ESET

2012-03-22 07:34:23 -------- d-----w- C:\Users\puppy\AppData\Local\{AC73DCB5-7A3B-484C-916C-274C3BE7984A}

2012-03-22 07:34:21 -------- d-----w- C:\Users\puppy\AppData\Local\{D34BB0E5-5142-460F-96D0-3EB8D2713E2D}

2012-03-18 03:31:41 -------- d-----w- C:\Users\puppy\AppData\Local\{027122E8-5E0A-4569-9F4F-95E4EE387233}

2012-03-18 03:31:39 -------- d-----w- C:\Users\puppy\AppData\Local\{B74D1F86-0C2D-4CBA-97C0-60B660879ED1}

2012-03-17 07:11:26 -------- d-----w- C:\Users\puppy\AppData\Local\{B63CC07E-EF51-4C02-A3A9-464686F018E4}

2012-03-17 07:11:23 -------- d-----w- C:\Users\puppy\AppData\Local\{FA7C7ECF-7C41-44B4-B52E-DDF1B3ED3138}

2012-03-15 07:28:00 -------- d-----w- C:\Users\puppy\AppData\Local\{AFCABB18-CB7D-4B92-A880-BF55D9CFD4E1}

2012-03-15 07:27:59 -------- d-----w- C:\Users\puppy\AppData\Local\{86505B01-97B2-4450-92A3-627B09DE98E4}

2012-03-14 07:39:16 -------- d-----w- C:\Users\puppy\AppData\Local\{7F1F7DC1-66CA-44F9-A5F5-66757CC6E38B}

2012-03-14 07:39:15 -------- d-----w- C:\Users\puppy\AppData\Local\{1DB9E095-0829-479D-8B2A-3A18DAA69196}

2012-03-14 07:26:45 5559152 ----a-w- C:\Windows\System32\ntoskrnl.exe

2012-03-14 07:26:44 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2012-03-14 07:26:43 3913584 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2012-03-14 07:24:55 3145728 ----a-w- C:\Windows\System32\win32k.sys

2012-03-14 07:24:54 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe

2012-03-14 07:24:54 77312 ----a-w- C:\Windows\System32\rdpwsx.dll

2012-03-14 07:24:54 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll

2012-03-14 07:24:53 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll

2012-03-14 07:24:53 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys

2012-03-14 07:24:53 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys

2012-03-14 07:24:53 1031680 ----a-w- C:\Windows\System32\rdpcore.dll

2012-03-14 07:24:43 1544192 ----a-w- C:\Windows\System32\DWrite.dll

2012-03-14 07:24:43 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll

2012-03-13 08:08:43 -------- d-----w- C:\Users\puppy\AppData\Local\{32429F78-1B95-4636-A26B-78C2496373FA}

2012-03-13 08:08:42 -------- d-----w- C:\Users\puppy\AppData\Local\{07712CE1-B7F7-452F-B2E2-53A987415059}

2012-03-12 06:42:28 -------- d-----w- C:\Users\puppy\AppData\Local\{087CE212-6D76-4354-B500-5A9284F7BC42}

2012-03-12 06:42:26 -------- d-----w- C:\Users\puppy\AppData\Local\{2106DC1D-431A-48FE-9DF5-55E00FBE7A83}

2012-03-11 06:53:45 -------- d-----w- C:\Users\puppy\AppData\Local\{0C9AADD1-CF2E-4F88-B0D2-ABC135C2BE46}

2012-03-11 06:53:43 -------- d-----w- C:\Users\puppy\AppData\Local\{D7DD4906-A9A0-4BF3-87A7-435D14053C9C}

2012-03-09 16:17:29 -------- d-----w- C:\Users\puppy\AppData\Local\{F6A4294B-6E38-4E33-8DB5-267EC47EEEBA}

2012-03-09 16:17:27 -------- d-----w- C:\Users\puppy\AppData\Local\{AD3C1581-387B-4A53-8B5E-0C6E017622DA}

2012-03-09 02:30:58 -------- d-----w- C:\Program Files\iPod

2012-03-09 02:30:57 -------- d-----w- C:\Program Files\iTunes

2012-03-09 02:30:57 -------- d-----w- C:\Program Files (x86)\iTunes

2012-03-09 01:34:34 -------- d-----w- C:\Users\puppy\AppData\Local\{07FC866C-0A2D-4541-B553-45307C6F37B3}

2012-03-09 01:34:32 -------- d-----w- C:\Users\puppy\AppData\Local\{8DE6CF3E-20EA-4FA0-B689-8C9ADCEBFE09}

2012-03-08 09:21:35 -------- d-----w- C:\Users\puppy\AppData\Local\{BF7FD26F-795E-4563-B52C-46153353CF25}

2012-03-08 09:21:33 -------- d-----w- C:\Users\puppy\AppData\Local\{C103394F-8023-4664-8F2E-5B62F30A88D2}

2012-03-06 08:27:49 -------- d-----w- C:\Users\puppy\AppData\Local\{BDAC79DF-6C99-4106-9AFA-166E84A63929}

2012-03-06 08:27:47 -------- d-----w- C:\Users\puppy\AppData\Local\{9513F49D-98B3-498E-8516-16CB1669A95D}

.

==================== Find3M ====================

.

2012-04-02 19:34:09 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-03-03 19:00:37 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-02-29 18:26:56 416064 ----a-w- C:\Windows\SysWow64\nvStreaming.exe

2012-02-23 14:18:36 279656 ------w- C:\Windows\System32\MpSigStub.exe

2012-02-04 08:39:25 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys

2012-01-17 12:46:01 31040 ----a-w- C:\Windows\System32\nvhdap64.dll

2012-01-17 12:45:56 188224 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys

2012-01-17 12:45:55 1451840 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll

.

============= FINISH: 2:40:54.35 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 7/20/2011 12:33:13 AM

System Uptime: 3/31/2012 11:11:56 PM (75 hours ago)

.

Motherboard: Gigabyte Technology Co., Ltd. | | GA-770T-USB3

Processor: AMD Phenom II X2 555 Processor | Socket M2 | 3200/200mhz

.

==== Disk Partitions =========================

.

A: is Removable

C: is FIXED (NTFS) - 931 GiB total, 856.216 GiB free.

D: is CDROM ()

E: is FIXED (NTFS) - 0 GiB total, 0.07 GiB free.

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP85: 3/11/2012 1:38:33 AM - Windows Update

RP86: 3/14/2012 2:25:02 AM - Windows Update

RP87: 3/20/2012 1:06:51 PM - Windows Update

RP88: 3/27/2012 2:25:28 AM - Windows Update

RP89: 3/29/2012 5:48:57 PM - Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

RP90: 3/29/2012 5:49:37 PM - Installed ASCOM Platform 5.0

RP91: 3/30/2012 11:54:01 AM - Windows Update

RP92: 4/4/2012 2:23:13 AM - Windows Update

.

==== Installed Programs ======================

.

Adobe AIR

Adobe Reader X (10.1.2)

Adobe Shockwave Player 11.6

Amazon Games & Software Downloader

Apple Application Support

Apple Software Update

ASCOM Celestron Telescope Driver 5.0.10

ASCOM Intelliscope Telescope Driver 1.0.0.0

ASCOM Platform 5.0

Big Fish Games: Game Manager

Canon IJ Network Scan Utility

Canon IJ Network Tool

Compatibility Pack for the 2007 Office system

D3DX10

DC Universe Online Live

Duke Nukem 3D

eReg

Eric's Might and Magic 1 Trainer

EverQuest

Google Toolbar for Internet Explorer

Google Update Helper

Java Auto Updater

Java 6 Update 31

Junk Mail filter update

LeapFrog Connect

LeapFrog LeapPad Explorer Plugin

M86Security Secure Browsing

Malwarebytes Anti-Malware version 1.60.1.1000

Microsoft Entertainment Pack: The Puzzle Collection

Microsoft Money 98

Microsoft Office XP Media Content

Microsoft Office XP Small Business

Microsoft Silverlight

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Might & Magic VI Limited Edition

MSVCRT

MSVCRT_amd64

NVIDIA 3D Vision Controller Driver

NVIDIA PhysX

NVIDIA Stereoscopic 3D Driver

QuickTime

Realtek Ethernet Controller Driver

Renesas Electronics USB 3.0 Host Controller Driver

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Starry Night Orion Special Edition

swMSM

Ultima 4 - Quest of the Avatar

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin)

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Mail

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Zhu Zhu Pets

.

==== End Of File ===========================

[screen317]

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post only DDS.txt directly into your reply.

[Maurice Naggar]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!