I still get pop ups

[Alekos]

hello. i am new to this forum. sorry about my english. i have a problem with pop ups. i am still getting them (in firefox and dota 2<----?!?!) after i scan my pc with malwarebytes (free edition) and spybot. my antivirus is the ZoneAlarm free security (antivirus and firewall). here is the log from the dds.scr---->

 

dds

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7600.17267  BrowserJavaVersion: 10.21.2
Run by peris at 22:55:24 on 2013-07-31
Microsoft Windows 7 Ultimate   6.1.7600.0.1253.30.1033.18.4078.2195 [GMT 3:00]
.
AV: ZoneAlarm Antivirus *Disabled/Updated* {DE038A5B-9EDD-18A9-2361-FF7D98D43730}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: ZoneAlarm Anti-Spyware *Disabled/Updated* {65626BBF-B8E7-1727-19D1-C40FE3537D8D}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
FW: ZoneAlarm Firewall *Disabled* {E6380B7E-D4B2-19F1-083E-56486607704B}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Windows\system32\hasplms.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\SysWOW64\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.

mWinlogon: Userinit = userinit.exe,
BHO: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - <orphaned>
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
uRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
mRun: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{A23257DF-4310-46B9-B380-0E4CCA2897A2} : DHCPNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
Hosts: 64.27.10.42 www.google-analytics.com.
Hosts: 64.27.10.42 ad-emea.doubleclick.net.
Hosts: 64.27.10.42 www.statcounter.com.
Hosts: 108.163.215.51 www.google-analytics.com.
Hosts: 108.163.215.51 ad-emea.doubleclick.net.
.
Note: multiple HOSTS entries found. Please refer to Attach.txt
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\peris\AppData\Roaming\Mozilla\Firefox\Profiles\ats8nmc1.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home

FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - ExtSQL: 2013-07-22 20:59; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\peris\AppData\Roaming\Mozilla\Firefox\Profiles\ats8nmc1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
============= SERVICES / DRIVERS ===============
.
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-1-13 465216]
R2 aksdf;aksdf;C:\Windows\System32\drivers\aksdf.sys [2013-5-12 83072]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-19 240640]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-12-19 361984]
R2 AODDriver4.2;AODDriver4.2;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-4-9 57472]
R2 hasplms;Sentinel Local License Manager;C:\Windows\System32\hasplms.exe  -run --> C:\Windows\System32\hasplms.exe  -run [?]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-2-24 335168]
R2 ZAPrivacyService;ZoneAlarm Privacy Service;C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [2013-6-18 54160]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-11-6 96256]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-8-20 708200]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2012-8-20 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2012-8-20 46136]
S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2013-7-9 34336]
S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2013-7-9 23016]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-6-27 1255736]
S4 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-7-9 23048]
.
=============== Created Last 30 ================
.
2013-07-29 00:23:44    --------    d-----w-    C:\ProgramData\Spybot - Search & Destroy
2013-07-29 00:23:44    --------    d-----w-    C:\Program Files (x86)\Spybot - Search & Destroy
2013-07-27 21:38:11    --------    d-----w-    C:\Users\peris\alekos arxia
2013-07-27 21:29:19    --------    d-----w-    C:\Program Files (x86)\EaseUS
2013-07-27 18:07:08    --------    d-----w-    C:\ProgramData\SecTaskMan
2013-07-25 23:30:17    2622464    ----a-w-    C:\Windows\System32\wucltux.dll
2013-07-25 23:30:09    99840    ----a-w-    C:\Windows\System32\wudriver.dll
2013-07-25 23:29:55    36864    ----a-w-    C:\Windows\System32\wuapp.exe
2013-07-25 23:29:55    186752    ----a-w-    C:\Windows\System32\wuwebv.dll
2013-07-25 17:42:19    --------    d-----w-    C:\Windows\el
2013-07-25 17:42:07    --------    d-----w-    C:\Windows\en
2013-07-25 17:39:06    3860992    ----a-w-    C:\Windows\System32\UIRibbon.dll
2013-07-25 17:39:06    2983424    ----a-w-    C:\Windows\SysWow64\UIRibbon.dll
2013-07-25 17:39:06    1164800    ----a-w-    C:\Windows\SysWow64\UIRibbonRes.dll
2013-07-25 17:39:06    1164800    ----a-w-    C:\Windows\System32\UIRibbonRes.dll
2013-07-25 17:37:59    89944    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\b32d885e1ce895d06\DSETUP.dll
2013-07-25 17:37:59    537432    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\b32d885e1ce895d06\DXSETUP.exe
2013-07-25 17:37:59    1801048    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\b32d885e1ce895d06\dsetup32.dll
2013-07-25 17:37:48    94040    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\a9b97c431ce895d03\DSETUP.dll
2013-07-25 17:37:48    525656    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\a9b97c431ce895d03\DXSETUP.exe
2013-07-25 17:37:48    1691480    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\a9b97c431ce895d03\dsetup32.dll
2013-07-25 17:37:31    89944    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\a34060ed1ce895d01\DSETUP.dll
2013-07-25 17:37:31    537432    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\a34060ed1ce895d01\DXSETUP.exe
2013-07-25 17:37:31    1801048    -c--a-w-    C:\Program Files (x86)\Common Files\Windows Live\.cache\a34060ed1ce895d01\dsetup32.dll
2013-07-25 17:37:22    --------    d-----w-    C:\Users\peris\AppData\Local\Windows Live
2013-07-25 17:32:14    --------    d-----w-    C:\Program Files (x86)\Common Files\Windows Live
2013-07-25 16:51:52    --------    d-----w-    C:\Users\peris\AppData\Roaming\Waves Audio
2013-07-25 16:51:24    --------    d-----w-    C:\Program Files (x86)\Common Files\Digidesign
2013-07-25 16:51:09    499712    ----a-w-    C:\Windows\SysWow64\msvcp71.dll
2013-07-25 16:51:08    --------    d-----w-    C:\Program Files (x86)\Waves
2013-07-25 16:50:59    --------    d-----w-    C:\temp
2013-07-25 16:50:49    2395648    ----a-w-    C:\Windows\SysWow64\SYNSOEMU.DLL
2013-07-25 16:47:57    --------    d-----w-    C:\Program Files (x86)\Steinberg
2013-07-22 18:42:32    458584    ----a-w-    C:\Windows\System32\drivers\kl1.sys
2013-07-22 18:42:28    89944    ----a-w-    C:\Windows\System32\drivers\klflt.sys
2013-07-22 18:09:31    --------    d-----w-    C:\ProgramData\Solidshield
2013-07-22 18:09:23    374664    ----a-w-    C:\Windows\System32\drivers\netio.sys
2013-07-22 17:58:06    9133488    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-07-22 17:57:54    9460976    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{243BF4F5-9FDF-4ABD-A548-7D430F029B24}\mpengine.dll
2013-07-22 17:55:46    --------    d-----w-    C:\Program Files (x86)\CheckPoint
2013-07-22 17:55:25    --------    d-----w-    C:\ProgramData\CheckPoint
.
==================== Find3M  ====================
.
2013-07-13 18:44:51    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-13 18:44:51    692104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-27 09:47:05    1653096    ----a-w-    C:\Windows\System32\drivers\ntfs.sys
2013-06-27 09:45:23    44032    ----a-w-    C:\Windows\System32\tsgqec.dll
2013-06-27 09:45:23    36864    ----a-w-    C:\Windows\SysWow64\tsgqec.dll
2013-06-27 09:45:23    3138048    ----a-w-    C:\Windows\System32\mstscax.dll
2013-06-27 09:45:23    158208    ----a-w-    C:\Windows\System32\aaclient.dll
2013-06-27 09:45:23    131072    ----a-w-    C:\Windows\SysWow64\aaclient.dll
2013-06-27 09:45:22    2691072    ----a-w-    C:\Windows\SysWow64\mstscax.dll
2013-06-27 09:43:36    3150848    ----a-w-    C:\Windows\System32\win32k.sys
2013-06-27 09:41:53    6656    ----a-w-    C:\Windows\SysWow64\apisetschema.dll
2013-06-27 09:41:53    5497688    ----a-w-    C:\Windows\System32\ntoskrnl.exe
2013-06-27 09:41:53    43520    ----a-w-    C:\Windows\System32\csrsrv.dll
2013-06-27 09:41:53    3958120    ----a-w-    C:\Windows\SysWow64\ntkrnlpa.exe
2013-06-27 09:41:53    3902312    ----a-w-    C:\Windows\SysWow64\ntoskrnl.exe
2013-06-27 09:41:53    112640    ----a-w-    C:\Windows\System32\smss.exe
2013-06-27 09:40:29    223752    ----a-w-    C:\Windows\System32\drivers\fvevol.sys
2013-06-27 09:38:48    981504    ----a-w-    C:\Windows\SysWow64\wininet.dll
2013-06-27 09:38:48    57856    ----a-w-    C:\Windows\System32\licmgr10.dll
2013-06-27 09:38:48    482816    ----a-w-    C:\Windows\System32\html.iec
2013-06-27 09:38:48    44544    ----a-w-    C:\Windows\SysWow64\licmgr10.dll
2013-06-27 09:38:48    386048    ----a-w-    C:\Windows\SysWow64\html.iec
2013-06-27 09:38:48    1638912    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2013-06-27 09:38:48    1638912    ----a-w-    C:\Windows\System32\mshtml.tlb
2013-06-27 09:38:48    1198080    ----a-w-    C:\Windows\System32\wininet.dll
2013-06-27 09:36:53    19968    ----a-w-    C:\Windows\System32\drivers\usb8023.sys
2013-06-27 09:34:16    287576    ----a-w-    C:\Windows\System32\drivers\FWPKCLNT.SYS
2013-06-27 09:34:16    1893224    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
2013-06-27 09:26:51    801280    ----a-w-    C:\Windows\System32\usp10.dll
2013-06-27 09:26:51    627712    ----a-w-    C:\Windows\SysWow64\usp10.dll
2013-06-27 09:24:59    441856    ----a-w-    C:\Windows\System32\Wpc.dll
2013-06-27 09:24:59    308736    ----a-w-    C:\Windows\SysWow64\Wpc.dll
2013-06-27 09:24:55    2745856    ----a-w-    C:\Windows\System32\gameux.dll
2013-06-27 09:24:55    2576384    ----a-w-    C:\Windows\SysWow64\gameux.dll
2013-06-27 09:22:55    492032    ----a-w-    C:\Windows\SysWow64\win32spl.dll
2013-06-27 09:22:54    751104    ----a-w-    C:\Windows\System32\win32spl.dll
2013-06-27 09:20:23    307200    ----a-w-    C:\Windows\System32\ncrypt.dll
2013-06-27 09:20:23    219136    ----a-w-    C:\Windows\SysWow64\ncrypt.dll
2013-06-27 09:17:40    2001408    ----a-w-    C:\Windows\System32\msxml6.dll
2013-06-27 09:17:40    1880064    ----a-w-    C:\Windows\System32\msxml3.dll
2013-06-27 09:17:40    1388544    ----a-w-    C:\Windows\SysWow64\msxml6.dll
2013-06-27 09:17:40    1236992    ----a-w-    C:\Windows\SysWow64\msxml3.dll
2013-06-27 09:16:22    46080    ----a-w-    C:\Windows\System32\atmlib.dll
2013-06-27 09:16:22    367616    ----a-w-    C:\Windows\System32\atmfd.dll
2013-06-27 09:16:22    34304    ----a-w-    C:\Windows\SysWow64\atmlib.dll
2013-06-27 09:16:22    295424    ----a-w-    C:\Windows\SysWow64\atmfd.dll
2013-06-27 09:14:56    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2013-06-27 09:14:56    2048    ----a-w-    C:\Windows\System32\tzres.dll
2013-06-27 09:10:55    478208    ----a-w-    C:\Windows\System32\dpnet.dll
2013-06-27 09:10:55    376832    ----a-w-    C:\Windows\SysWow64\dpnet.dll
2013-06-27 09:09:54    295792    ----a-w-    C:\Windows\System32\drivers\volsnap.sys
2013-06-27 09:08:54    559104    ----a-w-    C:\Windows\apppatch\AcLayers.dll
2013-06-27 09:08:54    347648    ----a-w-    C:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-06-27 09:08:54    135168    ----a-w-    C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-06-27 09:07:47    609792    ----a-w-    C:\Windows\System32\vbscript.dll
2013-06-27 09:07:47    428032    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2013-06-27 09:06:47    95744    ----a-w-    C:\Windows\System32\synceng.dll
2013-06-27 09:06:47    78336    ----a-w-    C:\Windows\SysWow64\synceng.dll
2013-06-27 09:05:35    87040    ----a-w-    C:\Windows\System32\drivers\WUDFPf.sys
2013-06-27 09:05:35    84992    ----a-w-    C:\Windows\System32\WUDFSvc.dll
2013-06-27 09:05:35    744448    ----a-w-    C:\Windows\System32\WUDFx.dll
2013-06-27 09:05:35    45056    ----a-w-    C:\Windows\System32\WUDFCoinstaller.dll
2013-06-27 09:05:35    229888    ----a-w-    C:\Windows\System32\WUDFHost.exe
2013-06-27 09:05:35    198656    ----a-w-    C:\Windows\System32\drivers\WUDFRd.sys
2013-06-27 09:05:35    194048    ----a-w-    C:\Windows\System32\WUDFPlatform.dll
2013-06-27 09:04:17    9728    ----a-w-    C:\Windows\System32\Wdfres.dll
2013-06-27 09:04:17    785512    ----a-w-    C:\Windows\System32\drivers\Wdf01000.sys
2013-06-27 09:04:17    54376    ----a-w-    C:\Windows\System32\drivers\WdfLdr.sys
2013-06-27 09:00:45    714752    ----a-w-    C:\Windows\System32\kerberos.dll
2013-06-27 09:00:45    541184    ----a-w-    C:\Windows\SysWow64\kerberos.dll
2013-06-27 08:59:32    182272    ----a-w-    C:\Windows\System32\cryptsvc.dll
2013-06-27 08:59:32    1462784    ----a-w-    C:\Windows\System32\crypt32.dll
2013-06-27 08:59:32    140288    ----a-w-    C:\Windows\System32\cryptnet.dll
2013-06-27 08:59:32    139264    ----a-w-    C:\Windows\SysWow64\cryptsvc.dll
2013-06-27 08:59:32    1157632    ----a-w-    C:\Windows\SysWow64\crypt32.dll
2013-06-27 08:59:32    103936    ----a-w-    C:\Windows\SysWow64\cryptnet.dll
2013-06-27 08:58:09    503808    ----a-w-    C:\Windows\System32\srcore.dll
2013-06-27 08:58:09    43008    ----a-w-    C:\Windows\SysWow64\srclient.dll
2013-06-27 08:57:03    67584    ----a-w-    C:\Windows\splwow64.exe
2013-06-27 08:57:03    559104    ----a-w-    C:\Windows\System32\spoolsv.exe
2013-06-27 08:54:54    58880    ----a-w-    C:\Windows\System32\browcli.dll
2013-06-27 08:54:54    41472    ----a-w-    C:\Windows\SysWow64\browcli.dll
2013-06-27 08:54:54    136704    ----a-w-    C:\Windows\System32\browser.dll
2013-06-27 08:53:43    220160    ----a-w-    C:\Windows\System32\wintrust.dll
2013-06-27 08:53:43    172544    ----a-w-    C:\Windows\SysWow64\wintrust.dll
2013-06-27 08:52:37    574464    ----a-w-    C:\Windows\System32\d3d10level9.dll
2013-06-27 08:52:37    490496    ----a-w-    C:\Windows\SysWow64\d3d10level9.dll
2013-06-27 08:51:31    956416    ----a-w-    C:\Windows\System32\localspl.dll
2013-06-27 08:50:23    96768    ----a-w-    C:\Windows\SysWow64\sspicli.dll
2013-06-27 08:50:23    95088    ----a-w-    C:\Windows\System32\drivers\ksecdd.sys
2013-06-27 08:50:23    459216    ----a-w-    C:\Windows\System32\drivers\cng.sys
2013-06-27 08:50:23    340992    ----a-w-    C:\Windows\System32\schannel.dll
2013-06-27 08:50:23    225280    ----a-w-    C:\Windows\SysWow64\schannel.dll
2013-06-27 08:50:23    22016    ----a-w-    C:\Windows\SysWow64\secur32.dll
2013-06-27 08:50:23    152432    ----a-w-    C:\Windows\System32\drivers\ksecpkg.sys
2013-06-27 08:46:34    9216    ----a-w-    C:\Windows\System32\rdrmemptylst.exe
2013-06-27 08:46:34    76288    ----a-w-    C:\Windows\System32\rdpwsx.dll
2013-06-27 08:46:34    149504    ----a-w-    C:\Windows\System32\rdpcorekmts.dll
2013-06-27 08:45:47    204800    ----a-w-    C:\Windows\System32\drivers\rdpwd.sys
2013-06-27 08:45:00    208896    ----a-w-    C:\Windows\System32\profsvc.dll
.
============= FINISH: 22:55:34,68 ===============
 

 

 

attach

 

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 20/8/2012 5:42:25 μμ
System Uptime: 31/7/2013 9:56:52 μμ (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. |  | M5A78L LE
Processor: AMD FX-4100 Quad-Core Processor             | AM3R2 | 3600/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 466 GiB total, 217,964 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 0 GiB total, 0,07 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP81: 22/7/2013 9:09:04 μμ - Windows Update
RP82: 25/7/2013 8:37:25 μμ - Windows Live Essentials
RP83: 25/7/2013 8:38:14 μμ - Windows Update
RP84: 25/7/2013 8:38:49 μμ - Windows Update
RP85: 25/7/2013 8:39:33 μμ - Installed DirectX
RP86: 25/7/2013 8:39:54 μμ - Installed DirectX
RP87: 25/7/2013 8:40:13 μμ - Installed DirectX
RP88: 25/7/2013 8:41:02 μμ - WLSetup
RP89: 26/7/2013 2:29:30 πμ - Windows Update
RP90: 27/7/2013 5:38:27 μμ - Installed ASUS PC Diagnostics
RP91: 27/7/2013 7:16:23 μμ - Removed ASUS PC Diagnostics
RP92: 27/7/2013 9:09:47 μμ - Μετακίνηση του αρχείου στην καραντίνα: PunkBuster Service Co
RP93: 28/7/2013 4:56:16 μμ - Removed Microsoft SQL Server 2005 Compact Edition [ENU]
.
==== Hosts File Hijack ======================
.
Hosts: 64.27.10.42 www.google-analytics.com.
Hosts: 64.27.10.42 ad-emea.doubleclick.net.
Hosts: 64.27.10.42 www.statcounter.com.
Hosts: 108.163.215.51 www.google-analytics.com.
Hosts: 108.163.215.51 ad-emea.doubleclick.net.
Hosts: 108.163.215.51 www.statcounter.com.
.
==== Installed Programs ======================
.
Φωτογραφία & απεικόνιση HP 2.0 - All-in-One
Φωτογραφία & απεικόνιση HP 2.0 - All-in-One πρόγραμμα οδήγησης
Συλλογή φωτογραφιών
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.02)
Advanced SystemCare 6
AMD Accelerated Video Transcoding
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Fuel
AMD Media Foundation Decoders
AMD VISION Engine Control Center
ASIO4ALL
BitTorrent
BS.Player FREE
Call of Duty® 4 - Modern Warfare 1.6 Patch
Call of Duty® 4 - Modern Warfare 1.7 Patch
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
D3DX10
Dota 2
Grand Theft Auto IV
IObit Malware Fighter
Java 7 Update 21
Java Auto Updater
JavaFX 2.1.1
League of Legends
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Games for Windows - LIVE Redistributable
Microsoft IntelliType Pro 8.2
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Movie Maker
Mozilla Firefox 22.0 (x86 el)
Mozilla Maintenance Service
MSVCRT
MSVCRT110
MSVCRT110_amd64
NVIDIA PhysX
Pando Media Booster
Photo Common
Photo Gallery
PowerISO
Realtek Ethernet Controller Driver
Realtek HDMI Audio Driver for ATI
Realtek High Definition Audio Driver
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
SHIFT 2 UNLEASHED™
Skype™ 5.10
Smart Defrag 2
Spybot - Search & Destroy
Steam
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Video CD HP
WaveLab 6
Waves Mercury Bundle
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
WinRAR 4.00 (64-bit)
ZoneAlarm Antivirus
ZoneAlarm Firewall
ZoneAlarm Free Antivirus + Firewall
ZoneAlarm Security
.
==== Event Viewer Messages From Past Week ========
.
31/7/2013 9:57:35 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 9:57:35 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 9:57:35 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 9:57:35 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 9:57:35 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 9:57:35 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 9:57:24 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 9:57:24 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 9:57:24 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 9:57:21 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
31/7/2013 9:43:56 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 9:43:56 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 9:43:56 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 9:38:16 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 9:38:16 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 9:38:16 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 9:38:16 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 9:38:16 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 9:38:16 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 9:38:05 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 9:38:05 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 9:38:05 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 9:37:51 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
31/7/2013 9:37:26 μμ, Error: Microsoft-Windows-WER-SystemErrorReporting [1001]  - The computer has rebooted from a bugcheck.  The bugcheck was: 0x0000007f (0x0000000000000008, 0x0000000080050031, 0x00000000000006f8, 0xfffff80003691f42). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 073113-17128-01.
31/7/2013 3:54:51 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 3:54:51 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 3:54:51 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 2:25:24 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 2:25:24 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 2:25:24 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 2:25:24 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 2:25:24 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 2:25:24 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 2:25:13 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 2:25:13 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 2:25:13 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
31/7/2013 2:25:10 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
31/7/2013 10:55:17 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
31/7/2013 10:55:17 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
31/7/2013 10:55:17 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 7:42:13 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 7:42:13 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 7:42:13 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 7:42:13 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 7:42:13 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 7:42:13 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 7:42:02 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 7:42:02 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 7:42:02 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 7:42:00 πμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
30/7/2013 2:47:21 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:47:21 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:47:21 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 2:47:20 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:47:20 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:47:20 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:47:20 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:47:20 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 2:47:20 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 2:01:21 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:01:21 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:01:21 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 2:01:08 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:01:08 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:01:08 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 2:01:06 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:01:06 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:01:06 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 2:01:06 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:01:06 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:01:06 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 2:01:06 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 2:01:06 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 2:01:05 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 12:34:42 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 12:34:42 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 12:34:42 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
30/7/2013 12:34:42 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 12:34:42 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 12:34:42 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
30/7/2013 12:34:42 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 12:34:42 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
30/7/2013 12:34:42 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
29/7/2013 6:01:13 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
29/7/2013 6:01:13 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
29/7/2013 6:01:13 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
29/7/2013 4:40:36 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
29/7/2013 4:40:36 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
29/7/2013 4:40:36 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
29/7/2013 4:40:35 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
29/7/2013 4:40:35 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
29/7/2013 4:40:35 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
29/7/2013 11:23:20 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
29/7/2013 11:23:20 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
29/7/2013 11:23:20 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
29/7/2013 11:23:20 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
29/7/2013 11:23:20 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
29/7/2013 11:23:20 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
29/7/2013 11:23:09 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
29/7/2013 11:23:09 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
29/7/2013 11:23:09 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
29/7/2013 11:23:07 πμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
28/7/2013 7:10:51 μμ, Error: bowser [8003]  - The master browser has received a server announcement from the computer PC127083187421 that believes that it is the master browser for the domain on transport NetBT_Tcpip_{A23257DF-4310-46B9-B380-0E4CCA2897A2}. The master browser is stopping or an election is being forced.
28/7/2013 7:07:20 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 7:07:20 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 7:07:20 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 7:07:20 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 7:07:20 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 7:07:20 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 7:07:03 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR2.
28/7/2013 6:01:23 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
28/7/2013 6:01:23 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
28/7/2013 6:01:22 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
28/7/2013 4:46:16 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 4:46:16 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 4:46:16 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 4:46:16 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 4:46:16 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 4:46:16 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 4:46:05 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 4:46:05 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 4:46:05 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 4:46:04 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
28/7/2013 3:41:48 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 3:41:48 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 3:41:48 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 3:20:14 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 3:20:14 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 3:20:14 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 3:20:14 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 3:20:14 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 3:20:14 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 3:20:03 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 3:20:03 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 3:20:03 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 3:20:01 πμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
28/7/2013 3:13:07 πμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
28/7/2013 3:13:07 πμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
28/7/2013 3:13:07 πμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
28/7/2013 2:33:25 πμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR4.
28/7/2013 2:33:25 πμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR4.
28/7/2013 2:33:24 πμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR4.
27/7/2013 9:21:29 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 9:21:29 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 9:21:29 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 9:21:29 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 9:21:29 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 9:21:29 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 9:21:18 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 9:21:18 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 9:21:18 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 9:21:13 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
27/7/2013 9:16:35 μμ, Error: Service Control Manager [7023]  - The Windows Defender service terminated with the following error:  %%-2147024882
27/7/2013 9:14:31 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
27/7/2013 9:14:14 μμ, Error: Microsoft-Windows-WER-SystemErrorReporting [1001]  - The computer has rebooted from a bugcheck.  The bugcheck was: 0x000000f4 (0x0000000000000003, 0xfffffa8005e049e0, 0xfffffa8005e04cc0, 0xfffff800039d5260). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 072713-16473-01.
27/7/2013 9:10:39 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 9:10:39 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 9:10:39 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 9:10:39 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 9:10:39 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 9:10:39 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 7:19:48 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 7:19:48 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 7:19:48 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 7:19:48 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 7:19:48 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 7:19:48 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 7:19:37 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 7:19:37 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 7:19:37 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 7:19:34 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
27/7/2013 7:18:20 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 7:18:20 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 7:18:20 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 6:38:35 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 6:38:35 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 6:38:35 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 6:38:35 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 6:38:35 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 6:38:35 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 6:38:24 μμ, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
27/7/2013 6:38:24 μμ, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
27/7/2013 6:38:24 μμ, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
27/7/2013 6:38:21 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
27/7/2013 2:41:52 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
27/7/2013 2:38:55 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
26/7/2013 7:54:39 μμ, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
26/7/2013 7:54:39 μμ, Error: Service Control Manager [7000]  - The Steam Client Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
26/7/2013 2:26:10 πμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
26/7/2013 11:19:04 πμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
25/7/2013 7:33:03 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
25/7/2013 7:33:03 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
25/7/2013 7:33:02 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
25/7/2013 7:33:02 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
25/7/2013 7:33:01 μμ, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
25/7/2013 5:48:45 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
24/7/2013 12:36:11 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
24/7/2013 12:27:01 πμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
24/7/2013 12:25:30 πμ, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WSearch service.
24/7/2013 12:25:00 πμ, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.
24/7/2013 11:10:44 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
24/7/2013 10:02:27 μμ, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFS
.
==== End Of File ===========================
 

attach.txt

dds.txt

[TheDarkKnight]

I am TheDarkKnight and will be assisting you. Please ask questions if anything is unclear.

 

Please follow these instructions to run ComboFix.exe. Please visit this webpage for download links and instructions for running this tool:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix (CF).

Please go here to see a list of programs that need to be disabled.

**Note: Do not mouseclick ComboFix's window while it's running. That may cause it to stall.**

**Note 2: If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.**

Please include the C:\ComboFix.txt in your next reply for further review.
 

=====

 

Also, please download AdwCleaner by Xplode onto your Desktop.

• Double click on AdwCleaner.exe to run the tool.
• Click on Search.
• A logfile will automatically open after the scan has finished.
• Please post the content of that logfile in your reply.
• You can find the logfile at C:\AdwCleaner[R1].txt as well.

 
=====
 
In your reply please provide the following logs:

• ComboFix.txt.
  
• AdwCleaner[R1].txt.

How is your computer running?

[Alekos]

Hello DarkKnight and thank you for your help! Here is the log from the Combofix....

 

 

 

ComboFix 13-07-31.02 - peris 01/08/2013   1:54.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7600.0.1253.30.1033.18.4078.3013 [GMT 3:00]
Running from: c:\users\peris\Desktop\ComboFix.exe
AV: ZoneAlarm Antivirus *Disabled/Updated* {DE038A5B-9EDD-18A9-2361-FF7D98D43730}
FW: ZoneAlarm Firewall *Disabled* {E6380B7E-D4B2-19F1-083E-56486607704B}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: ZoneAlarm Anti-Spyware *Disabled/Updated* {65626BBF-B8E7-1727-19D1-C40FE3537D8D}
 * Created a new restore point
.
.
(((((((((((((((((((((((((   Files Created from 2013-06-28 to 2013-07-31  )))))))))))))))))))))))))))))))
.
.
2013-07-31 22:58 . 2013-07-31 22:58    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-07-29 00:23 . 2013-07-30 04:50    --------    d-----w-    c:\programdata\Spybot - Search & Destroy
2013-07-29 00:23 . 2013-07-29 01:22    --------    d-----w-    c:\program files (x86)\Spybot - Search & Destroy
2013-07-27 21:38 . 2013-07-27 23:20    --------    d-----w-    c:\users\peris\alekos arxia
2013-07-27 21:29 . 2013-07-28 13:55    --------    d-----w-    c:\program files (x86)\EaseUS
2013-07-27 18:07 . 2013-07-28 13:55    --------    d-----w-    c:\programdata\SecTaskMan
2013-07-25 23:30 . 2012-06-02 22:19    2428952    ----a-w-    c:\windows\system32\wuaueng.dll
2013-07-25 23:30 . 2012-06-02 22:19    57880    ----a-w-    c:\windows\system32\wuauclt.exe
2013-07-25 23:30 . 2012-06-02 22:19    44056    ----a-w-    c:\windows\system32\wups2.dll
2013-07-25 23:30 . 2012-06-02 22:15    2622464    ----a-w-    c:\windows\system32\wucltux.dll
2013-07-25 23:30 . 2012-06-02 22:19    38424    ----a-w-    c:\windows\system32\wups.dll
2013-07-25 23:30 . 2012-06-02 22:19    701976    ----a-w-    c:\windows\system32\wuapi.dll
2013-07-25 23:30 . 2012-06-02 22:15    99840    ----a-w-    c:\windows\system32\wudriver.dll
2013-07-25 23:29 . 2012-06-02 12:19    186752    ----a-w-    c:\windows\system32\wuwebv.dll
2013-07-25 23:29 . 2012-06-02 12:15    36864    ----a-w-    c:\windows\system32\wuapp.exe
2013-07-25 17:42 . 2013-07-25 17:42    --------    d-----w-    c:\windows\el
2013-07-25 17:42 . 2013-07-25 17:42    --------    d-----w-    c:\windows\en
2013-07-25 17:40 . 2013-07-25 17:41    --------    d-----w-    c:\program files (x86)\Windows Live
2013-07-25 17:39 . 2010-08-11 05:19    3860992    ----a-w-    c:\windows\system32\UIRibbon.dll
2013-07-25 17:39 . 2010-08-11 05:13    1164800    ----a-w-    c:\windows\system32\UIRibbonRes.dll
2013-07-25 17:39 . 2010-08-11 04:44    2983424    ----a-w-    c:\windows\SysWow64\UIRibbon.dll
2013-07-25 17:39 . 2010-08-11 04:35    1164800    ----a-w-    c:\windows\SysWow64\UIRibbonRes.dll
2013-07-25 17:37 . 2013-07-25 23:44    --------    d-----w-    c:\users\peris\AppData\Local\Windows Live
2013-07-25 17:32 . 2013-07-25 17:32    --------    d-----w-    c:\program files (x86)\Common Files\Windows Live
2013-07-25 16:51 . 2013-07-25 16:51    --------    d-----w-    c:\users\peris\AppData\Roaming\Waves Audio
2013-07-25 16:51 . 2013-07-25 16:51    --------    d-----w-    c:\program files (x86)\Common Files\Digidesign
2013-07-25 16:51 . 2007-02-14 16:05    499712    ----a-w-    c:\windows\SysWow64\msvcp71.dll
2013-07-25 16:51 . 2013-07-25 16:51    --------    d-----w-    c:\program files (x86)\Waves
2013-07-25 16:50 . 2013-07-26 00:41    --------    d-----w-    C:\temp
2013-07-25 16:50 . 2009-12-19 08:18    2395648    ----a-w-    c:\windows\SysWow64\SYNSOEMU.DLL
2013-07-25 16:47 . 2013-07-25 16:47    --------    d-----w-    c:\program files (x86)\Steinberg
2013-07-22 18:42 . 2012-11-15 18:06    458584    ----a-w-    c:\windows\system32\drivers\kl1.sys
2013-07-22 18:42 . 2013-02-21 11:44    89944    ----a-w-    c:\windows\system32\drivers\klflt.sys
2013-07-22 18:42 . 2013-02-21 11:44    613720    ----a-w-    c:\windows\system32\drivers\klif.sys
2013-07-22 18:11 . 2013-07-22 18:11    --------    d-----w-    c:\program files (x86)\Electronic Arts
2013-07-22 18:09 . 2013-07-22 18:09    --------    d-----w-    c:\programdata\Solidshield
2013-07-22 18:09 . 2010-04-09 11:06    374664    ----a-w-    c:\windows\system32\drivers\netio.sys
2013-07-22 17:57 . 2013-07-15 00:34    9460976    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{243BF4F5-9FDF-4ABD-A548-7D430F029B24}\mpengine.dll
2013-07-22 17:55 . 2013-07-22 18:41    --------    d-----w-    c:\program files (x86)\CheckPoint
2013-07-22 17:55 . 2013-07-22 17:55    --------    d-----w-    c:\programdata\CheckPoint
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-25 17:41 . 2012-07-17 11:37    22240    ----a-w-    c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-07-13 18:44 . 2012-08-20 17:16    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-13 18:44 . 2012-08-20 17:16    692104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-27 09:47 . 2013-06-27 09:47    1653096    ----a-w-    c:\windows\system32\drivers\ntfs.sys
2013-06-27 09:45 . 2013-06-27 09:45    44032    ----a-w-    c:\windows\system32\tsgqec.dll
2013-06-27 09:45 . 2013-06-27 09:45    36864    ----a-w-    c:\windows\SysWow64\tsgqec.dll
2013-06-27 09:45 . 2013-06-27 09:45    3138048    ----a-w-    c:\windows\system32\mstscax.dll
2013-06-27 09:45 . 2013-06-27 09:45    158208    ----a-w-    c:\windows\system32\aaclient.dll
2013-06-27 09:45 . 2013-06-27 09:45    131072    ----a-w-    c:\windows\SysWow64\aaclient.dll
2013-06-27 09:45 . 2013-06-27 09:45    2691072    ----a-w-    c:\windows\SysWow64\mstscax.dll
2013-06-27 09:43 . 2013-06-27 09:43    3150848    ----a-w-    c:\windows\system32\win32k.sys
2013-06-27 09:41 . 2013-06-27 09:41    6656    ----a-w-    c:\windows\SysWow64\apisetschema.dll
2013-06-27 09:41 . 2013-06-27 09:41    5497688    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-06-27 09:41 . 2013-06-27 09:41    43520    ----a-w-    c:\windows\system32\csrsrv.dll
2013-06-27 09:41 . 2013-06-27 09:41    3958120    ----a-w-    c:\windows\SysWow64\ntkrnlpa.exe
2013-06-27 09:41 . 2013-06-27 09:41    3902312    ----a-w-    c:\windows\SysWow64\ntoskrnl.exe
2013-06-27 09:41 . 2013-06-27 09:41    112640    ----a-w-    c:\windows\system32\smss.exe
2013-06-27 09:40 . 2013-06-27 09:40    223752    ----a-w-    c:\windows\system32\drivers\fvevol.sys
2013-06-27 09:38 . 2013-06-27 09:38    735744    ----a-w-    c:\windows\system32\msfeeds.dll
2013-06-27 09:38 . 2013-06-27 09:38    256000    ----a-w-    c:\windows\system32\iepeers.dll
2013-06-27 09:38 . 2013-06-27 09:38    247808    ----a-w-    c:\windows\system32\ieui.dll
2013-06-27 09:38 . 2013-06-27 09:38    12405760    ----a-w-    c:\windows\system32\ieframe.dll
2013-06-27 09:38 . 2013-06-27 09:38    981504    ----a-w-    c:\windows\SysWow64\wininet.dll
2013-06-27 09:38 . 2013-06-27 09:38    97792    ----a-w-    c:\windows\system32\mshtmled.dll
2013-06-27 09:38 . 2013-06-27 09:38    9377280    ----a-w-    c:\windows\system32\mshtml.dll
2013-06-27 09:38 . 2013-06-27 09:38    82944    ----a-w-    c:\windows\system32\msfeedsbs.dll
2013-06-27 09:38 . 2013-06-27 09:38    64512    ----a-w-    c:\windows\system32\jsproxy.dll
2013-06-27 09:38 . 2013-06-27 09:38    57856    ----a-w-    c:\windows\system32\licmgr10.dll
2013-06-27 09:38 . 2013-06-27 09:38    482816    ----a-w-    c:\windows\system32\html.iec
2013-06-27 09:38 . 2013-06-27 09:38    445952    ----a-w-    c:\windows\system32\iedkcs32.dll
2013-06-27 09:38 . 2013-06-27 09:38    44544    ----a-w-    c:\windows\SysWow64\licmgr10.dll
2013-06-27 09:38 . 2013-06-27 09:38    386048    ----a-w-    c:\windows\SysWow64\html.iec
2013-06-27 09:38 . 2013-06-27 09:38    2463744    ----a-w-    c:\windows\system32\iertutil.dll
2013-06-27 09:38 . 2013-06-27 09:38    1638912    ----a-w-    c:\windows\SysWow64\mshtml.tlb
2013-06-27 09:38 . 2013-06-27 09:38    1638912    ----a-w-    c:\windows\system32\mshtml.tlb
2013-06-27 09:38 . 2013-06-27 09:38    1499648    ----a-w-    c:\windows\system32\urlmon.dll
2013-06-27 09:38 . 2013-06-27 09:38    134144    ----a-w-    c:\windows\system32\url.dll
2013-06-27 09:38 . 2013-06-27 09:38    12288    ----a-w-    c:\windows\system32\msfeedssync.exe
2013-06-27 09:38 . 2013-06-27 09:38    1198080    ----a-w-    c:\windows\system32\wininet.dll
2013-06-27 09:38 . 2013-06-27 09:38    1026560    ----a-w-    c:\windows\system32\mstime.dll
2013-06-27 09:36 . 2013-06-27 09:36    19968    ----a-w-    c:\windows\system32\drivers\usb8023.sys
2013-06-27 09:34 . 2013-06-27 09:34    287576    ----a-w-    c:\windows\system32\drivers\FWPKCLNT.SYS
2013-06-27 09:34 . 2013-06-27 09:34    1893224    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2013-06-27 09:32 . 2013-06-27 09:32    424960    ----a-w-    c:\windows\system32\KernelBase.dll
2013-06-27 09:32 . 2013-06-27 09:32    362496    ----a-w-    c:\windows\system32\wow64win.dll
2013-06-27 09:32 . 2013-06-27 09:32    338432    ----a-w-    c:\windows\system32\conhost.exe
2013-06-27 09:32 . 2013-06-27 09:32    243200    ----a-w-    c:\windows\system32\wow64.dll
2013-06-27 09:32 . 2013-06-27 09:32    215040    ----a-w-    c:\windows\system32\winsrv.dll
2013-06-27 09:32 . 2013-06-27 09:32    16384    ----a-w-    c:\windows\system32\ntvdm64.dll
2013-06-27 09:32 . 2013-06-27 09:32    13312    ----a-w-    c:\windows\system32\wow64cpu.dll
2013-06-27 09:32 . 2013-06-27 09:32    1161216    ----a-w-    c:\windows\system32\kernel32.dll
2013-06-27 09:32 . 2013-06-27 09:32    7680    ----a-w-    c:\windows\SysWow64\instnm.exe
2013-06-27 09:32 . 2013-06-27 09:32    5120    ----a-w-    c:\windows\SysWow64\wow32.dll
2013-06-27 09:32 . 2013-06-27 09:32    44032    ----a-w-    c:\windows\apppatch\acwow64.dll
2013-06-27 09:32 . 2013-06-27 09:32    25600    ----a-w-    c:\windows\SysWow64\setup16.exe
2013-06-27 09:32 . 2013-06-27 09:32    2048    ----a-w-    c:\windows\SysWow64\user.exe
2013-06-27 09:32 . 2013-06-27 09:32    14336    ----a-w-    c:\windows\SysWow64\ntvdm64.dll
2013-06-27 09:32 . 2013-06-27 09:32    274944    ----a-w-    c:\windows\SysWow64\KernelBase.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4608    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    6144    ---ha-w-    c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    5120    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    6144    ---ha-w-    c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    5120    ---ha-w-    c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4608    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4608    ---ha-w-    c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4608    ---ha-w-    c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    4096    ---ha-w-    c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3584    ---ha-w-    c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-06-27 09:32 . 2013-06-27 09:32    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 6"="c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-01-15 491840]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ZoneAlarm"="c:\program files (x86)\CheckPoint\ZoneAlarm\zatray.exe" [2013-06-19 73832]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
R0 AFS;AFS; [x]
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys;c:\windows\SYSNATIVE\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys;c:\windows\SYSNATIVE\drivers\aksdf.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe  -run;c:\windows\SYSNATIVE\hasplms.exe  -run [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 ZAPrivacyService;ZoneAlarm Privacy Service;c:\program files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe;c:\program files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-07-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-20 18:44]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{A23257DF-4310-46B9-B380-0E4CCA2897A2}: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\peris\AppData\Roaming\Mozilla\Firefox\Profiles\ats8nmc1.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home

FF - ExtSQL: 2013-07-22 20:59; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\peris\AppData\Roaming\Mozilla\Firefox\Profiles\ats8nmc1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-02692776.sys
SafeBoot-37749346.sys
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-652929629-2010012093-804843689-1000\Software\SecuROM\License information*]
"datasecu"=hex:46,f9,8a,cb,d3,cc,70,fb,8b,f4,a9,c1,bc,b5,f7,7d,93,de,5a,ab,ce,
   ff,dc,a0,37,ae,ec,63,7c,70,e6,9f,04,a1,3e,8e,7a,a3,dc,bb,cb,8f,41,a1,58,49,\
"rkeysecu"=hex:be,16,f3,5c,15,3f,2e,ce,94,7e,7e,f5,16,50,3e,54
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\hasplms.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Completion time: 2013-08-01  02:03:40 - machine was rebooted
ComboFix-quarantined-files.txt  2013-07-31 23:03
.
Pre-Run: 237.960.810.496 bytes free
Post-Run: 237.913.800.704 bytes free
.
- - End Of File - - D88C5D8235C53222B560E870D543B715
A36C5E4F47E84449FF07ED3517B43A31
 

 

 

 

 

and here is the log from adscleaner

 

 

# AdwCleaner v2.306 - Logfile created 08/01/2013 at 02:04:44
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Ultimate  (64 bits)
# User : peris - PERIS-PC
# Boot Mode : Normal
# Running from : C:\Users\peris\Desktop\adwcleaner.exe
# Option [search]


***** [services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Found : HKCU\Software\Conduit

***** [internet Browsers] *****

-\\ Internet Explorer v8.0.7600.17267

[OK] Registry is clean.

-\\ Mozilla Firefox v22.0 (el)

File : C:\Users\peris\AppData\Roaming\Mozilla\Firefox\Profiles\ats8nmc1.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [unable to get version]

File : C:\Users\peris\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R2].txt - [834 octets] - [01/08/2013 02:04:44]

########## EOF - C:\AdwCleaner[R2].txt - [893 octets] ##########
 

[TheDarkKnight]

Hey Alekos,

 

Please download Junkware Removal Tool to your Desktop.

• Please close your security software to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete, depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
• Please post the contents of JRT.txt into your reply.

[TheDarkKnight]

Are you still with me Alekos?

[AdvancedSetup]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!