Jump to content

Does this mean that my laptop is infected? plz help


Recommended Posts

hi,

 

actually, I have KasperSky. My laptop is less than one month old . yesterday, someone in facebook sent me link and I opened it . He said that he wanted to help me by suggesting me the site he sent. Because, I posted in one of Facebook pages a problem about buying from onecard.com.  I suspected him after talking specially because after I opened the site he suggested , I find that it is below than normal site and not professional. Also, minutes after I opened the link he asked me :" You have windows 8, right? " --- this question made me shocked because how did he know that or why he was asking this. After that, I told him that he must be a hacker but he said no. I decided to protect myself and started to search how to know that I have spyware. I found in one site that I should try to do this ( start >>>> run >>> type : system.ini  then click enter

 

some say that if there is the word WOA so it means that I´m infected. Some people say no.

 

 

I got this ,,

 

 

 

; for 16-bit app support
[386Enh]
woafont=dosapp.fon
EGA80WOA.FON=EGA80WOA.FON
EGA40WOA.FON=EGA40WOA.FON
CGA80WOA.FON=CGA80WOA.FON
CGA40WOA.FON=CGA40WOA.FON
 
[drivers]
wave=mmdrv.dll
timer=timer.drv
 
[mci]
 
 
 
'''''''''''''''''''''
 
 
Then I searced for good program and I found yours . I find it good actually.. but I got like this pop ups many times with diffrent ips...
 
blocked access to malicious site'''
 
does that mean that I have virus or spy 
 
IXHIJdd.png

 

 

 

 

yesterday also at night I noticed that my laptop is hanging then I tried to click on shut down pc from keyboard because I could not by the mouse . After that it started making noise like zzzzzzzzzzzzzz .... and other strange sounds . It was closing but made that sound then it closed and was still making that sound. So, I had to take the battery out.  Now, my laptop is okay. But, I got these pop up from your program. What does it mean?? does it mean that someone is spying me or I have a virus ???? and by the way KasperSky shows this '' what does they mean''  

 

Iam in danger or safe now???

 

 

LenZIFh.png

 

 

 

Afs3QeQ.png

 

uveOYUl.png

 

 

 

 

Link to post
Share on other sites

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 
 
This entries doesn´t mean your Computer is infected, see here: http://answers.microsoft.com/en-us/windows/forum/windows_7-networking/does-this-information-mean-that-my-computer/b59afd7e-a9b5-4fc4-92ed-1138345c25cd
 
Please do the following:
 
 
Scan with DDS

Download DDS and save it to your desktop from here or here or
here.

Disable any script blocker, and then double click dds.scr to run the tool.

When done, DDS will open two (2) logs

DDS.txt: save to your desktop then post its contents in your topic
Attach.txt: save to your desktop then attach it to your next reply
 
 
 
Scan with aswMBR

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • There will be a short delay before the next dialog box comes up. Please just wait a minute or two.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Typically this is about a 100MB download so depending on your connection speed it can take a short while to download and become ready.
  • Click the Scan button to start the scan once the update has finished downloading
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.


Note: There will also be a file on your desktop named MBR.dat do not delete this for now. It is an actual backup of the MBR (master boot record).

Link to post
Share on other sites

Thank you  :) 

 

This is the DDS and the other file is in the attachment . The second thing that you wanted me to do did not succeed. I downloaded it then clicked scan but, it stopped working and closed. How do I open it again . Do the same process or the 100M file that I downloaded is still there to open it again then click scan. 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16660  BrowserJavaVersion: 10.25.2
Run by asus at 16:05:03 on 2013-09-05
Microsoft Windows 8  6.2.9200.0.1252.1.1033.18.6034.3514 [GMT 3:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Classic Shell\ClassicShellService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Windows\system32\WLANExt.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Windows\system32\dashost.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\System32\dwm.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files\ASUS\P4G\BatteryLife.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\system32\igfxpers.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
C:\Windows\system32\mspaint.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\splwow64.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
uURLSearchHooks: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
mURLSearchHooks: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
mURLSearchHooks: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
TB: Hotspot Shield Toolbar: {C95A4E8E-816D-4655-8C79-D736DA1ADB6D} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
TB: IMVU Inc Toolbar: {90B49673-5506-483E-B92B-CA0265BD9CA8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
TB: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
TB: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
uRun: [uTorrent] "C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S
mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\runner_avp.exe"
mPolicies-Explorer: NoDriveTypeAutoRun = dword:28
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
IE: ????? ??? ???? Bluetooth - <no file>
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
IE: {FD9DE2B4-C926-4460-81C4-FC58C6F1062E} - C:\Program Files (x86)\SmartWhois\swmsie.exe
IE: {FF983118-58C7-4AD4-B5A7-691C39CB7B42} - C:\Program Files (x86)\SmartWhois\swmsie.exe
TCP: NameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{958B2E52-9881-4BB0-B80E-FB26F359D3DB} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{958B2E52-9881-4BB0-B80E-FB26F359D3DB}\356523 : DHCPNameServer = 192.168.2.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-BHO: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - <orphaned>
x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [bTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-mPolicies-Explorer: NoDriveTypeAutoRun = dword:28
x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-IE: {FD9DE2B4-C926-4460-81C4-FC58C6F1062E} - C:\Program Files (x86)\SmartWhois\swmsie.exe
x64-IE: {FF983118-58C7-4AD4-B5A7-691C39CB7B42} - C:\Program Files (x86)\SmartWhois\swmsie.exe
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\oxczlsci.default\
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 8555
FF - prefs.js: network.proxy.type - 1
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-08-12 22:38; anti_banner@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; content_blocker@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; online_banking@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; url_advisor@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; virtual_keyboard@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF - ExtSQL: 2013-08-18 04:21; afurladvisor@anchorfree.com; C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afurladvisor@anchorfree.com
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-11-13 645952]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\Windows\System32\Drivers\hssdrv6.sys [2013-8-24 46792]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\Drivers\klim6.sys [2012-8-3 28504]
R1 klwfp;klwfp;C:\Windows\System32\Drivers\klwfp.sys [2013-5-3 50448]
R1 kneps;kneps;C:\Windows\System32\Drivers\kneps.sys [2013-5-3 178448]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-9-13 731688]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-3 15416]
R2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-4-13 277120]
R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-5-3 356376]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-1-15 1091520]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-1-15 1107904]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-8-16 135984]
R2 hshld;Hotspot Shield Service;C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2013-8-17 852264]
R2 HssWd;Hotspot Shield Monitoring Service;C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [2013-8-17 555304]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-21 635104]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-1-15 165760]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-9-4 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-9-4 701512]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-1-15 364416]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\Drivers\AiCharger.sys [2012-7-25 17152]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\Windows\System32\Drivers\AmpPal.sys [2012-9-13 162344]
R3 ATP;ASUS PS/2 Port Input Device;C:\Windows\System32\Drivers\AsusTP.sys [2012-10-31 61824]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\Drivers\btmaux.sys [2013-1-15 110592]
R3 btmhsf;btmhsf;C:\Windows\System32\Drivers\btmhsf.sys [2013-1-15 825344]
R3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\Drivers\AsHIDSwitch64.sys [2012-11-13 21152]
R3 iBtFltCoex;iBtFltCoex;C:\Windows\System32\Drivers\iBtFltCoex.sys [2013-1-15 55848]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-11-13 342528]
R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\Drivers\iwdbus.sys [2012-10-10 25568]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\Drivers\klkbdflt.sys [2013-5-3 29016]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\Drivers\klmouflt.sys [2013-5-3 29528]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-9-4 25928]
R3 NETwNe64;@oem12.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\Windows\System32\Drivers\NETwew00.sys [2012-10-10 4309032]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\Drivers\RtsUStor.sys [2013-1-15 252048]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-1-15 690832]
R3 taphss6;Anchorfree HSS VPN Adapter;C:\Windows\System32\Drivers\taphss6.sys [2013-6-21 42184]
R3 usb3Hub;USB-IF USB 3.0 Hub;C:\Windows\System32\Drivers\usb3Hub.sys [2012-10-10 47072]
R3 XHCIPort;USB-IF xHCI USB Host Controller;C:\Windows\System32\Drivers\xHCIPort.sys [2012-10-10 188896]
S0 klelam;klelam;C:\Windows\System32\Drivers\klelam.sys [2012-7-28 29616]
S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-9-25 1153840]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\Windows\System32\Drivers\AmpPal.sys [2012-9-13 162344]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\Drivers\intelaud.sys [2012-10-10 35296]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-9-25 272176]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
.
=============== Created Last 30 ================
.
2013-09-05 02:01:31 -------- d-----w- C:\Users\asus\AppData\Roaming\TamoSoft
2013-09-05 02:01:11 -------- d-----w- C:\ProgramData\TamoSoft
2013-09-05 02:01:02 -------- d-----w- C:\Program Files (x86)\SmartWhois
2013-09-05 01:21:27 -------- d-----w- C:\Program Files\CCleaner
2013-09-05 00:49:05 -------- d-----w- C:\ProgramData\AntiSpyInfo
2013-09-05 00:28:07 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2013-09-05 00:27:18 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-09-04 16:08:23 -------- d-----w- C:\Users\asus\AppData\Roaming\Malwarebytes
2013-09-04 16:08:19 -------- d-----w- C:\ProgramData\Malwarebytes
2013-09-04 16:08:17 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-09-04 16:08:17 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-04 15:59:16 270512 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10215.bin
2013-09-04 02:45:12 -------- d-----w- C:\Windows\SysWow64\drivers\UMDF\es-ES
2013-09-04 02:45:12 -------- d-----w- C:\Windows\SysWow64\0C0A
2013-09-04 02:44:16 -------- d-----w- C:\Windows\System32\0C0A
2013-08-31 03:07:13 -------- d-----w- C:\Users\asus\AppData\Local\TechSmith
2013-08-30 05:08:45 -------- d-----w- C:\Users\asus\AppData\Roaming\TechSmith
2013-08-30 05:04:17 -------- d-----w- C:\ProgramData\regid.1995-08.com.techsmith
2013-08-30 05:04:07 -------- d-----w- C:\Program Files (x86)\Common Files\TechSmith Shared
2013-08-30 04:32:19 -------- d-----w- C:\Program Files (x86)\Nation Toolbar
2013-08-30 04:31:36 -------- d-----w- C:\Users\asus\AppData\Local\Programs
2013-08-30 04:10:58 -------- d-----w- C:\Users\asus\AppData\Roaming\uTorrent
2013-08-26 05:35:29 -------- d-----w- C:\Users\asus\AppData\Local\Deployment
2013-08-26 05:35:29 -------- d-----w- C:\Users\asus\AppData\Local\Apps
2013-08-24 01:28:42 -------- d-----w- C:\Users\asus\AppData\Local\SecondLife
2013-08-24 01:28:12 -------- d-----w- C:\Program Files (x86)\SecondLifeViewer
2013-08-24 01:13:50 -------- d-----w- C:\Makena
2013-08-24 01:13:38 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll
2013-08-24 00:26:33 46792 ----a-w- C:\Windows\System32\drivers\hssdrv6.sys
2013-08-22 23:14:45 -------- d-----w- C:\Users\asus\AppData\Local\Macromedia
2013-08-22 23:12:18 -------- d-----w- C:\Program Files (x86)\IMVU_Inc
2013-08-22 23:11:45 -------- d-----w- C:\Users\asus\AppData\Roaming\IMVU
2013-08-22 23:09:48 -------- d-----w- C:\Users\asus\AppData\Roaming\IMVUClient
2013-08-22 12:37:33 -------- d-----w- C:\sources
2013-08-21 05:51:23 -------- d-----w- C:\Users\asus\AppData\Roaming\Maxthon3
2013-08-21 05:51:21 -------- d-----w- C:\Program Files (x86)\Maxthon
2013-08-18 09:13:53 92056 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe
2013-08-18 08:40:59 -------- d-----w- C:\Users\asus\AppData\Local\Mozilla
2013-08-18 02:12:46 109568 ----a-w- C:\Windows\System32\dskquota.dll
2013-08-18 02:12:45 82944 ----a-w- C:\Windows\SysWow64\dskquota.dll
2013-08-18 02:12:30 929792 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll
2013-08-18 02:12:30 677888 ----a-w- C:\Windows\System32\mfnetcore.dll
2013-08-18 02:12:30 673280 ----a-w- C:\Windows\System32\mfmpeg2srcsnk.dll
2013-08-18 02:12:30 568832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll
2013-08-18 02:12:30 513024 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2013-08-18 02:12:30 1172992 ----a-w- C:\Windows\System32\mfnetsrc.dll
2013-08-18 02:12:03 3236864 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
2013-08-18 02:12:01 1395712 ----a-w- C:\Windows\System32\Windows.UI.Immersive.dll
2013-08-18 02:10:59 997632 ----a-w- C:\Windows\System32\drivers\ndis.sys
2013-08-18 02:09:59 99328 ----a-w- C:\Windows\System32\wushareduxresources.dll
2013-08-18 02:08:58 368640 ----a-w- C:\Windows\System32\sppwinob.dll
2013-08-18 02:08:12 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-08-18 02:08:11 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-08-18 01:34:58 550912 ----a-w- C:\Windows\SysWow64\drvstore.dll
2013-08-18 01:31:30 -------- d-----w- C:\Users\asus\AppData\Local\Sony
2013-08-18 01:31:30 -------- d-----w- C:\Program Files\Sony
2013-08-18 01:31:30 -------- d-----w- C:\Program Files (x86)\Sony
2013-08-18 01:30:44 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll
2013-08-18 01:29:13 17888 ----a-w- C:\Windows\System32\msvcr100_clr0400.dll
2013-08-18 01:26:59 1285632 ----a-w- C:\Windows\System32\schedsvc.dll
2013-08-18 01:12:21 -------- d-----w- C:\Program Files (x86)\Conduit
2013-08-18 01:12:10 -------- d-----w- C:\Users\asus\AppData\Local\Conduit
2013-08-18 01:12:10 -------- d-----w- C:\Program Files (x86)\Hotspot_Shield
2013-08-18 01:11:03 -------- d-----w- C:\ProgramData\Hotspot Shield
2013-08-18 01:10:48 -------- d-----w- C:\Program Files (x86)\Hotspot Shield
2013-08-18 01:10:29 -------- d-----w- C:\Users\asus\AppData\Roaming\Hotspot Shield
2013-08-15 03:44:58 -------- d-----w- C:\Windows\System32\MRT
2013-08-15 02:09:14 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-08-15 02:09:14 112872 ----a-w- C:\Windows\System32\consent.exe
2013-08-15 02:08:00 1558912 ----a-w- C:\Program Files\Windows Defender\DbgHelp.dll
2013-08-15 02:08:00 149264 ----a-w- C:\Program Files\Windows Defender\SymSrv.dll
2013-08-14 05:13:48 -------- d-----w- C:\Windows\PCHEALTH
2013-08-14 05:10:29 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-08-14 05:04:42 -------- d-----w- C:\Users\asus\AppData\Local\Microsoft Help
2013-08-14 01:27:55 1314816 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-08-14 01:25:21 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll
2013-08-14 01:25:21 68096 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-08-14 01:25:21 337408 ----a-w- C:\Windows\System32\wintrust.dll
2013-08-14 01:25:21 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-08-14 01:25:21 1889280 ----a-w- C:\Windows\System32\crypt32.dll
2013-08-14 01:25:21 1568256 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-08-14 01:25:21 124416 ----a-w- C:\Windows\System32\apprepapi.dll
2013-08-14 01:25:20 98304 ----a-w- C:\Windows\System32\apprepsync.dll
2013-08-14 01:25:20 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll
2013-08-13 15:15:16 -------- d-----w- C:\Program Files (x86)\VideoLAN
2013-08-13 15:13:23 175616 ----a-w- C:\Windows\SysWow64\unrar.dll
2013-08-13 15:13:22 839680 ----a-w- C:\Windows\SysWow64\lameACM.acm
2013-08-13 15:13:22 74752 ----a-w- C:\Windows\SysWow64\ff_vfw.dll
2013-08-13 15:13:22 650752 ----a-w- C:\Windows\SysWow64\xvidcore.dll
2013-08-13 15:13:22 243200 ----a-w- C:\Windows\SysWow64\xvidvfw.dll
2013-08-13 15:13:22 237568 ----a-w- C:\Windows\SysWow64\yv12vfw.dll
2013-08-13 15:13:22 151552 ----a-w- C:\Windows\SysWow64\ac3acm.acm
2013-08-13 15:13:21 -------- d-----w- C:\Program Files (x86)\K-Lite Codec Pack
2013-08-13 14:57:01 -------- d-----w- C:\Windows\SysWow64\drivers\ar-SA
2013-08-13 14:56:33 -------- d-----w- C:\Windows\SysWow64\wbem\ar-SA
2013-08-13 14:56:26 -------- d-----w- C:\Windows\ar-SA
2013-08-13 14:56:24 -------- d-----w- C:\Windows\System32\drivers\ar-SA
2013-08-13 14:56:24 -------- d-----w- C:\Windows\System32\ar
2013-08-13 14:55:35 -------- d-----w- C:\Windows\System32\wbem\ar-SA
2013-08-13 14:49:49 4096 ----a-w- C:\Windows\System32\drivers\ar-SA\portcls.sys.mui
2013-08-13 14:49:47 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\serscan.sys.mui
2013-08-13 14:49:29 68608 ----a-w- C:\Windows\System32\drivers\ar-SA\tcpip.sys.mui
2013-08-13 14:49:28 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\scfilter.sys.mui
2013-08-13 14:49:17 11264 ----a-w- C:\Windows\System32\drivers\ar-SA\NdisImPlatform.sys.mui
2013-08-13 14:49:15 8704 ----a-w- C:\Windows\System32\drivers\ar-SA\mslldp.sys.mui
2013-08-13 14:49:03 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\wudfpf.sys.mui
2013-08-13 14:48:52 30720 ----a-w- C:\Windows\System32\drivers\ar-SA\bthport.sys.mui
2013-08-13 14:48:52 3072 ----a-w- C:\Windows\System32\drivers\ar-SA\hidbth.sys.mui
2013-08-13 14:48:52 3072 ----a-w- C:\Windows\System32\drivers\ar-SA\BthMini.SYS.mui
2013-08-13 14:48:52 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\BTHUSB.SYS.mui
2013-08-13 14:48:52 2048 ----a-w- C:\Windows\System32\drivers\ar-SA\bthenum.sys.mui
2013-08-13 14:43:45 50784 ----a-w- C:\ProgramData\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-08-13 14:43:40 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-08-12 20:33:39 888320 ----a-w- C:\Windows\System32\autochk.exe
2013-08-12 20:33:39 793088 ----a-w- C:\Windows\SysWow64\autochk.exe
2013-08-12 20:33:39 542208 ----a-w- C:\Windows\System32\untfs.dll
2013-08-12 20:33:39 482816 ----a-w- C:\Windows\SysWow64\untfs.dll
2013-08-12 20:33:33 1300992 ----a-w- C:\Windows\System32\gdi32.dll
2013-08-12 20:33:33 1022464 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-08-12 20:31:10 2035200 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
2013-08-12 20:31:10 1272320 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-08-12 20:31:09 1617920 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2013-08-12 20:31:09 1306112 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2013-08-12 20:31:08 1455368 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-08-12 20:31:08 1413632 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll
2013-08-12 20:31:08 1318912 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2013-08-12 20:31:08 1029632 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\journal.dll
2013-08-12 20:31:07 303848 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-08-12 20:29:57 830464 ----a-w- C:\Windows\System32\wbem\WmiPrvSD.dll
2013-08-12 20:28:15 733184 ----a-w- C:\Windows\System32\win32spl.dll
2013-08-12 19:39:12 64856 ----a-w- C:\Windows\System32\klfphc.dll
2013-08-12 19:38:40 -------- d-----w- C:\ProgramData\Kaspersky Lab
2013-08-12 19:38:40 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2013-08-12 19:38:27 90208 ----a-w- C:\Windows\System32\drivers\klflt.sys
2013-08-12 19:32:11 -------- d-----w- C:\Program Files\Classic Shell
2013-08-12 19:25:34 -------- d-----w- C:\Users\asus\AppData\Local\Google
2013-08-12 19:25:09 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-12 19:18:46 -------- d-----w- C:\Users\asus\AppData\Roaming\ASUS WebStorage
2013-08-12 19:18:14 401 ----a-w- C:\Users\asus\AppData\Roaming\sp_data.sys
2013-08-12 19:18:12 -------- d-----r- C:\Users\asus\Searches
2013-08-12 19:18:11 -------- d-----r- C:\Users\asus\Contacts
2013-08-12 19:17:16 -------- d-----w- C:\Users\asus\AppData\Local\VirtualStore
2013-08-12 19:17:03 -------- d-----w- C:\Users\asus\AppData\Local\Packages
2013-08-12 19:17:01 -------- d-----w- C:\Users\asus\AppData\Local\ASUS
2013-08-12 19:17:00 -------- d-----w- C:\Users\asus\AppData\Roaming\Intel
.
==================== Find3M  ====================
.
2013-08-12 19:26:44 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2013-08-12 19:26:43 972712 ----a-w- C:\Windows\System32\deployJava1.dll
2013-08-12 19:26:43 1093032 ----a-w- C:\Windows\System32\npDeployJava1.dll
2013-08-12 19:26:15 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-12 19:26:15 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-08-12 19:26:15 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-07-26 05:13:28 915968 ----a-w- C:\Windows\System32\uxtheme.dll
2013-07-26 05:13:28 53760 ----a-w- C:\Windows\System32\UXInit.dll
2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-07-26 03:13:15 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll
2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-07-26 00:54:34 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2013-07-09 06:07:17 2233168 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-07-02 00:44:14 36288 ----a-w- C:\Windows\System32\drivers\WdBoot.sys
2013-07-01 22:08:49 247216 ----a-w- C:\Windows\System32\drivers\WdFilter.sys
2013-06-27 22:04:51 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-27DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16660  BrowserJavaVersion: 10.25.2
Run by asus at 16:05:03 on 2013-09-05
Microsoft Windows 8  6.2.9200.0.1252.1.1033.18.6034.3514 [GMT 3:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Classic Shell\ClassicShellService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Windows\system32\WLANExt.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Windows\system32\dashost.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\System32\dwm.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files\ASUS\P4G\BatteryLife.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\system32\igfxpers.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
C:\Windows\system32\mspaint.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\splwow64.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
uURLSearchHooks: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
mURLSearchHooks: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
mURLSearchHooks: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
TB: Hotspot Shield Toolbar: {C95A4E8E-816D-4655-8C79-D736DA1ADB6D} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
TB: IMVU Inc Toolbar: {90B49673-5506-483E-B92B-CA0265BD9CA8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
TB: Hotspot Shield Toolbar: {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll
TB: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
uRun: [uTorrent] "C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S
mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\runner_avp.exe"
mPolicies-Explorer: NoDriveTypeAutoRun = dword:28
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
IE: ????? ??? ???? Bluetooth - <no file>
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
IE: {FD9DE2B4-C926-4460-81C4-FC58C6F1062E} - C:\Program Files (x86)\SmartWhois\swmsie.exe
IE: {FF983118-58C7-4AD4-B5A7-691C39CB7B42} - C:\Program Files (x86)\SmartWhois\swmsie.exe
TCP: NameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{958B2E52-9881-4BB0-B80E-FB26F359D3DB} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{958B2E52-9881-4BB0-B80E-FB26F359D3DB}\356523 : DHCPNameServer = 192.168.2.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-BHO: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - <orphaned>
x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [bTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-mPolicies-Explorer: NoDriveTypeAutoRun = dword:28
x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-IE: {FD9DE2B4-C926-4460-81C4-FC58C6F1062E} - C:\Program Files (x86)\SmartWhois\swmsie.exe
x64-IE: {FF983118-58C7-4AD4-B5A7-691C39CB7B42} - C:\Program Files (x86)\SmartWhois\swmsie.exe
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\oxczlsci.default\
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 8555
FF - prefs.js: network.proxy.type - 1
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-08-12 22:38; anti_banner@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; content_blocker@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; online_banking@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; url_advisor@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF - ExtSQL: 2013-08-12 22:38; virtual_keyboard@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF - ExtSQL: 2013-08-18 04:21; afurladvisor@anchorfree.com; C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afurladvisor@anchorfree.com
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-11-13 645952]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\Windows\System32\Drivers\hssdrv6.sys [2013-8-24 46792]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\Drivers\klim6.sys [2012-8-3 28504]
R1 klwfp;klwfp;C:\Windows\System32\Drivers\klwfp.sys [2013-5-3 50448]
R1 kneps;kneps;C:\Windows\System32\Drivers\kneps.sys [2013-5-3 178448]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-9-13 731688]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-3 15416]
R2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-4-13 277120]
R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-5-3 356376]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-1-15 1091520]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-1-15 1107904]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-8-16 135984]
R2 hshld;Hotspot Shield Service;C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2013-8-17 852264]
R2 HssWd;Hotspot Shield Monitoring Service;C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [2013-8-17 555304]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-21 635104]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-1-15 165760]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-9-4 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-9-4 701512]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-1-15 364416]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\Drivers\AiCharger.sys [2012-7-25 17152]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\Windows\System32\Drivers\AmpPal.sys [2012-9-13 162344]
R3 ATP;ASUS PS/2 Port Input Device;C:\Windows\System32\Drivers\AsusTP.sys [2012-10-31 61824]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\Drivers\btmaux.sys [2013-1-15 110592]
R3 btmhsf;btmhsf;C:\Windows\System32\Drivers\btmhsf.sys [2013-1-15 825344]
R3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\Drivers\AsHIDSwitch64.sys [2012-11-13 21152]
R3 iBtFltCoex;iBtFltCoex;C:\Windows\System32\Drivers\iBtFltCoex.sys [2013-1-15 55848]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-11-13 342528]
R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\Drivers\iwdbus.sys [2012-10-10 25568]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\Drivers\klkbdflt.sys [2013-5-3 29016]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\Drivers\klmouflt.sys [2013-5-3 29528]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-9-4 25928]
R3 NETwNe64;@oem12.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\Windows\System32\Drivers\NETwew00.sys [2012-10-10 4309032]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\Drivers\RtsUStor.sys [2013-1-15 252048]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-1-15 690832]
R3 taphss6;Anchorfree HSS VPN Adapter;C:\Windows\System32\Drivers\taphss6.sys [2013-6-21 42184]
R3 usb3Hub;USB-IF USB 3.0 Hub;C:\Windows\System32\Drivers\usb3Hub.sys [2012-10-10 47072]
R3 XHCIPort;USB-IF xHCI USB Host Controller;C:\Windows\System32\Drivers\xHCIPort.sys [2012-10-10 188896]
S0 klelam;klelam;C:\Windows\System32\Drivers\klelam.sys [2012-7-28 29616]
S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-9-25 1153840]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\Windows\System32\Drivers\AmpPal.sys [2012-9-13 162344]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\Drivers\intelaud.sys [2012-10-10 35296]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-9-25 272176]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
.
=============== Created Last 30 ================
.
2013-09-05 02:01:31 -------- d-----w- C:\Users\asus\AppData\Roaming\TamoSoft
2013-09-05 02:01:11 -------- d-----w- C:\ProgramData\TamoSoft
2013-09-05 02:01:02 -------- d-----w- C:\Program Files (x86)\SmartWhois
2013-09-05 01:21:27 -------- d-----w- C:\Program Files\CCleaner
2013-09-05 00:49:05 -------- d-----w- C:\ProgramData\AntiSpyInfo
2013-09-05 00:28:07 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2013-09-05 00:27:18 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-09-04 16:08:23 -------- d-----w- C:\Users\asus\AppData\Roaming\Malwarebytes
2013-09-04 16:08:19 -------- d-----w- C:\ProgramData\Malwarebytes
2013-09-04 16:08:17 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-09-04 16:08:17 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-04 15:59:16 270512 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10215.bin
2013-09-04 02:45:12 -------- d-----w- C:\Windows\SysWow64\drivers\UMDF\es-ES
2013-09-04 02:45:12 -------- d-----w- C:\Windows\SysWow64\0C0A
2013-09-04 02:44:16 -------- d-----w- C:\Windows\System32\0C0A
2013-08-31 03:07:13 -------- d-----w- C:\Users\asus\AppData\Local\TechSmith
2013-08-30 05:08:45 -------- d-----w- C:\Users\asus\AppData\Roaming\TechSmith
2013-08-30 05:04:17 -------- d-----w- C:\ProgramData\regid.1995-08.com.techsmith
2013-08-30 05:04:07 -------- d-----w- C:\Program Files (x86)\Common Files\TechSmith Shared
2013-08-30 04:32:19 -------- d-----w- C:\Program Files (x86)\Nation Toolbar
2013-08-30 04:31:36 -------- d-----w- C:\Users\asus\AppData\Local\Programs
2013-08-30 04:10:58 -------- d-----w- C:\Users\asus\AppData\Roaming\uTorrent
2013-08-26 05:35:29 -------- d-----w- C:\Users\asus\AppData\Local\Deployment
2013-08-26 05:35:29 -------- d-----w- C:\Users\asus\AppData\Local\Apps
2013-08-24 01:28:42 -------- d-----w- C:\Users\asus\AppData\Local\SecondLife
2013-08-24 01:28:12 -------- d-----w- C:\Program Files (x86)\SecondLifeViewer
2013-08-24 01:13:50 -------- d-----w- C:\Makena
2013-08-24 01:13:38 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll
2013-08-24 00:26:33 46792 ----a-w- C:\Windows\System32\drivers\hssdrv6.sys
2013-08-22 23:14:45 -------- d-----w- C:\Users\asus\AppData\Local\Macromedia
2013-08-22 23:12:18 -------- d-----w- C:\Program Files (x86)\IMVU_Inc
2013-08-22 23:11:45 -------- d-----w- C:\Users\asus\AppData\Roaming\IMVU
2013-08-22 23:09:48 -------- d-----w- C:\Users\asus\AppData\Roaming\IMVUClient
2013-08-22 12:37:33 -------- d-----w- C:\sources
2013-08-21 05:51:23 -------- d-----w- C:\Users\asus\AppData\Roaming\Maxthon3
2013-08-21 05:51:21 -------- d-----w- C:\Program Files (x86)\Maxthon
2013-08-18 09:13:53 92056 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe
2013-08-18 08:40:59 -------- d-----w- C:\Users\asus\AppData\Local\Mozilla
2013-08-18 02:12:46 109568 ----a-w- C:\Windows\System32\dskquota.dll
2013-08-18 02:12:45 82944 ----a-w- C:\Windows\SysWow64\dskquota.dll
2013-08-18 02:12:30 929792 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll
2013-08-18 02:12:30 677888 ----a-w- C:\Windows\System32\mfnetcore.dll
2013-08-18 02:12:30 673280 ----a-w- C:\Windows\System32\mfmpeg2srcsnk.dll
2013-08-18 02:12:30 568832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll
2013-08-18 02:12:30 513024 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2013-08-18 02:12:30 1172992 ----a-w- C:\Windows\System32\mfnetsrc.dll
2013-08-18 02:12:03 3236864 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
2013-08-18 02:12:01 1395712 ----a-w- C:\Windows\System32\Windows.UI.Immersive.dll
2013-08-18 02:10:59 997632 ----a-w- C:\Windows\System32\drivers\ndis.sys
2013-08-18 02:09:59 99328 ----a-w- C:\Windows\System32\wushareduxresources.dll
2013-08-18 02:08:58 368640 ----a-w- C:\Windows\System32\sppwinob.dll
2013-08-18 02:08:12 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-08-18 02:08:11 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-08-18 01:34:58 550912 ----a-w- C:\Windows\SysWow64\drvstore.dll
2013-08-18 01:31:30 -------- d-----w- C:\Users\asus\AppData\Local\Sony
2013-08-18 01:31:30 -------- d-----w- C:\Program Files\Sony
2013-08-18 01:31:30 -------- d-----w- C:\Program Files (x86)\Sony
2013-08-18 01:30:44 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll
2013-08-18 01:29:13 17888 ----a-w- C:\Windows\System32\msvcr100_clr0400.dll
2013-08-18 01:26:59 1285632 ----a-w- C:\Windows\System32\schedsvc.dll
2013-08-18 01:12:21 -------- d-----w- C:\Program Files (x86)\Conduit
2013-08-18 01:12:10 -------- d-----w- C:\Users\asus\AppData\Local\Conduit
2013-08-18 01:12:10 -------- d-----w- C:\Program Files (x86)\Hotspot_Shield
2013-08-18 01:11:03 -------- d-----w- C:\ProgramData\Hotspot Shield
2013-08-18 01:10:48 -------- d-----w- C:\Program Files (x86)\Hotspot Shield
2013-08-18 01:10:29 -------- d-----w- C:\Users\asus\AppData\Roaming\Hotspot Shield
2013-08-15 03:44:58 -------- d-----w- C:\Windows\System32\MRT
2013-08-15 02:09:14 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-08-15 02:09:14 112872 ----a-w- C:\Windows\System32\consent.exe
2013-08-15 02:08:00 1558912 ----a-w- C:\Program Files\Windows Defender\DbgHelp.dll
2013-08-15 02:08:00 149264 ----a-w- C:\Program Files\Windows Defender\SymSrv.dll
2013-08-14 05:13:48 -------- d-----w- C:\Windows\PCHEALTH
2013-08-14 05:10:29 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-08-14 05:04:42 -------- d-----w- C:\Users\asus\AppData\Local\Microsoft Help
2013-08-14 01:27:55 1314816 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-08-14 01:25:21 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll
2013-08-14 01:25:21 68096 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-08-14 01:25:21 337408 ----a-w- C:\Windows\System32\wintrust.dll
2013-08-14 01:25:21 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-08-14 01:25:21 1889280 ----a-w- C:\Windows\System32\crypt32.dll
2013-08-14 01:25:21 1568256 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-08-14 01:25:21 124416 ----a-w- C:\Windows\System32\apprepapi.dll
2013-08-14 01:25:20 98304 ----a-w- C:\Windows\System32\apprepsync.dll
2013-08-14 01:25:20 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll
2013-08-13 15:15:16 -------- d-----w- C:\Program Files (x86)\VideoLAN
2013-08-13 15:13:23 175616 ----a-w- C:\Windows\SysWow64\unrar.dll
2013-08-13 15:13:22 839680 ----a-w- C:\Windows\SysWow64\lameACM.acm
2013-08-13 15:13:22 74752 ----a-w- C:\Windows\SysWow64\ff_vfw.dll
2013-08-13 15:13:22 650752 ----a-w- C:\Windows\SysWow64\xvidcore.dll
2013-08-13 15:13:22 243200 ----a-w- C:\Windows\SysWow64\xvidvfw.dll
2013-08-13 15:13:22 237568 ----a-w- C:\Windows\SysWow64\yv12vfw.dll
2013-08-13 15:13:22 151552 ----a-w- C:\Windows\SysWow64\ac3acm.acm
2013-08-13 15:13:21 -------- d-----w- C:\Program Files (x86)\K-Lite Codec Pack
2013-08-13 14:57:01 -------- d-----w- C:\Windows\SysWow64\drivers\ar-SA
2013-08-13 14:56:33 -------- d-----w- C:\Windows\SysWow64\wbem\ar-SA
2013-08-13 14:56:26 -------- d-----w- C:\Windows\ar-SA
2013-08-13 14:56:24 -------- d-----w- C:\Windows\System32\drivers\ar-SA
2013-08-13 14:56:24 -------- d-----w- C:\Windows\System32\ar
2013-08-13 14:55:35 -------- d-----w- C:\Windows\System32\wbem\ar-SA
2013-08-13 14:49:49 4096 ----a-w- C:\Windows\System32\drivers\ar-SA\portcls.sys.mui
2013-08-13 14:49:47 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\serscan.sys.mui
2013-08-13 14:49:29 68608 ----a-w- C:\Windows\System32\drivers\ar-SA\tcpip.sys.mui
2013-08-13 14:49:28 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\scfilter.sys.mui
2013-08-13 14:49:17 11264 ----a-w- C:\Windows\System32\drivers\ar-SA\NdisImPlatform.sys.mui
2013-08-13 14:49:15 8704 ----a-w- C:\Windows\System32\drivers\ar-SA\mslldp.sys.mui
2013-08-13 14:49:03 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\wudfpf.sys.mui
2013-08-13 14:48:52 30720 ----a-w- C:\Windows\System32\drivers\ar-SA\bthport.sys.mui
2013-08-13 14:48:52 3072 ----a-w- C:\Windows\System32\drivers\ar-SA\hidbth.sys.mui
2013-08-13 14:48:52 3072 ----a-w- C:\Windows\System32\drivers\ar-SA\BthMini.SYS.mui
2013-08-13 14:48:52 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\BTHUSB.SYS.mui
2013-08-13 14:48:52 2048 ----a-w- C:\Windows\System32\drivers\ar-SA\bthenum.sys.mui
2013-08-13 14:43:45 50784 ----a-w- C:\ProgramData\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-08-13 14:43:40 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-08-12 20:33:39 888320 ----a-w- C:\Windows\System32\autochk.exe
2013-08-12 20:33:39 793088 ----a-w- C:\Windows\SysWow64\autochk.exe
2013-08-12 20:33:39 542208 ----a-w- C:\Windows\System32\untfs.dll
2013-08-12 20:33:39 482816 ----a-w- C:\Windows\SysWow64\untfs.dll
2013-08-12 20:33:33 1300992 ----a-w- C:\Windows\System32\gdi32.dll
2013-08-12 20:33:33 1022464 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-08-12 20:31:10 2035200 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
2013-08-12 20:31:10 1272320 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-08-12 20:31:09 1617920 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2013-08-12 20:31:09 1306112 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2013-08-12 20:31:08 1455368 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-08-12 20:31:08 1413632 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll
2013-08-12 20:31:08 1318912 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2013-08-12 20:31:08 1029632 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\journal.dll
2013-08-12 20:31:07 303848 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-08-12 20:29:57 830464 ----a-w- C:\Windows\System32\wbem\WmiPrvSD.dll
2013-08-12 20:28:15 733184 ----a-w- C:\Windows\System32\win32spl.dll
2013-08-12 19:39:12 64856 ----a-w- C:\Windows\System32\klfphc.dll
2013-08-12 19:38:40 -------- d-----w- C:\ProgramData\Kaspersky Lab
2013-08-12 19:38:40 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2013-08-12 19:38:27 90208 ----a-w- C:\Windows\System32\drivers\klflt.sys
2013-08-12 19:32:11 -------- d-----w- C:\Program Files\Classic Shell
2013-08-12 19:25:34 -------- d-----w- C:\Users\asus\AppData\Local\Google
2013-08-12 19:25:09 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-12 19:18:46 -------- d-----w- C:\Users\asus\AppData\Roaming\ASUS WebStorage
2013-08-12 19:18:14 401 ----a-w- C:\Users\asus\AppData\Roaming\sp_data.sys
2013-08-12 19:18:12 -------- d-----r- C:\Users\asus\Searches
2013-08-12 19:18:11 -------- d-----r- C:\Users\asus\Contacts
2013-08-12 19:17:16 -------- d-----w- C:\Users\asus\AppData\Local\VirtualStore
2013-08-12 19:17:03 -------- d-----w- C:\Users\asus\AppData\Local\Packages
2013-08-12 19:17:01 -------- d-----w- C:\Users\asus\AppData\Local\ASUS
2013-08-12 19:17:00 -------- d-----w- C:\Users\asus\AppData\Roaming\Intel
.
==================== Find3M  ====================
.
2013-08-12 19:26:44 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2013-08-12 19:26:43 972712 ----a-w- C:\Windows\System32\deployJava1.dll
2013-08-12 19:26:43 1093032 ----a-w- C:\Windows\System32\npDeployJava1.dll
2013-08-12 19:26:15 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-12 19:26:15 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-08-12 19:26:15 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-07-26 05:13:28 915968 ----a-w- C:\Windows\System32\uxtheme.dll
2013-07-26 05:13:28 53760 ----a-w- C:\Windows\System32\UXInit.dll
2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-07-26 03:13:15 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll
2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-07-26 00:54:34 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2013-07-09 06:07:17 2233168 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-07-02 00:44:14 36288 ----a-w- C:\Windows\System32\drivers\WdBoot.sys
2013-07-01 22:08:49 247216 ----a-w- C:\Windows\System32\drivers\WdFilter.sys
2013-06-27 22:04:51 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-27 22:04:51 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-21 01:09:44 42184 ----a-w- C:\Windows\System32\drivers\taphss6.sys
.
============= FINISH: 16:06:06.79 ===============
 
 
 
22:04:51 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-21 01:09:44 42184 ----a-w- C:\Windows\System32\drivers\taphss6.sys
.
============= FINISH: 16:06:06.79 ===============
 

attach.txt

Link to post
Share on other sites

I tried again . It worked 

 

 

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-09-05 16:41:03
-----------------------------
16:41:03.034    OS Version: Windows x64 6.2.9200 
16:41:03.035    Number of processors: 4 586 0x3A09
16:41:03.036    ComputerName: ASUS1  UserName: asus
16:41:03.099    Initialze error 1 
16:41:35.256    AVAST engine defs: 13090500
16:41:43.467    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000003e
16:41:43.471    Disk 0 Vendor: Hitachi_HTS547575A9E384 JE4OA60A Size: 715404MB BusType: 11
16:41:43.477    Disk 0 MBR read successfully
16:41:43.480    Disk 0 MBR scan
16:41:43.487    Disk 0 unknown MBR code
16:41:43.491    Disk 0 Partition 1 00     EE          GPT           2097151 MB offset 1
16:41:43.499    Disk 0 scanning C:\Windows\system32\drivers
16:41:43.503    Service scanning
16:41:44.115    Modules scanning
16:41:44.120    Disk 0 trace - called modules:
16:41:44.143    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll iaStorA.sys 
16:41:44.149    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80074d6060]
16:41:44.155    3 CLASSPNP.SYS[fffff88001d27fea] -> nt!IofCallDriver -> [0xfffffa8005bdbc00]
16:41:44.166    5 ACPI.sys[fffff88001001a91] -> nt!IofCallDriver -> \Device\0000003e[0xfffffa8005bda7f0]
16:41:44.174    AVAST engine scan C:\Windows
16:41:44.182    AVAST engine scan C:\Windows\system32
16:41:44.190    AVAST engine scan C:\Windows\system32\drivers
16:41:44.197    AVAST engine scan C:\Users\asus
16:41:44.204    AVAST engine scan C:\ProgramData
16:41:44.211    Scan finished successfully
16:41:54.980    Disk 0 MBR has been saved successfully to "C:\Users\asus\Desktop\MBR.dat"
16:41:54.988    The log file has been saved successfully to "C:\Users\asus\Desktop\aswMBR.txt"
Link to post
Share on other sites

Add-/remove programms

Click on start-->control panel.

Vista/7: Open Programs and Features
XP: Open add/remove programs

Search for and remove the following programs

Hotspot Shield Toolbar
IMVU Inc Toolbar


Close the window.

 

 

 

Combofix

Combofix should only be run when adviced by a team member!

Link


Important - Save the file to your desktop!


  • Deactivate any and all of your antivirus programs /spyware scanners - they can prevent CF from doing its work.
  • Run Combofix.exe



When finished, Combofix creates a log file named C:\Combofix.txt. Please post its content in your next reply.

Note: When receiving an error message containing ""Illegal operation attempted on a registry key that has been marked for deletion" simply restart your computer to fix this.

Link to post
Share on other sites

ComboFix 13-09-04.04 - asus 09/05/2013  18:07:59.1.4 - x64

Microsoft Windows 8  6.2.9200.0.1252.1.1033.18.6034.3507 [GMT 3:00]

Running from: c:\users\asus\Downloads\ComboFix.exe

AV: Kaspersky Internet Security *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Kaspersky Internet Security *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}

SP: Kaspersky Internet Security *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}

SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\programdata\Roaming

.

.

(((((((((((((((((((((((((   Files Created from 2013-08-05 to 2013-09-05  )))))))))))))))))))))))))))))))

.

.

2013-09-05 02:01 . 2013-09-05 02:01 -------- d-----w- c:\programdata\TamoSoft

2013-09-05 02:01 . 2013-09-05 02:01 -------- d-----w- c:\program files (x86)\SmartWhois

2013-09-05 01:21 . 2013-09-05 01:24 -------- d-----w- c:\program files\CCleaner

2013-09-05 00:49 . 2013-09-05 01:27 -------- d-----w- c:\programdata\AntiSpyInfo

2013-09-05 00:28 . 2013-09-05 00:33 -------- d-----w- c:\programdata\Spybot - Search & Destroy

2013-09-05 00:27 . 2013-09-05 01:28 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2

2013-09-04 16:08 . 2013-09-04 16:08 -------- d-----w- c:\programdata\Malwarebytes

2013-09-04 16:08 . 2013-09-04 16:08 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2013-09-04 16:08 . 2013-04-04 11:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-09-04 15:59 . 2013-09-04 15:59 270512 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10215.bin

2013-09-04 02:45 . 2013-09-04 02:45 -------- d-----w- c:\windows\SysWow64\drivers\UMDF\es-ES

2013-09-04 02:45 . 2013-09-04 02:45 -------- d-----w- c:\windows\SysWow64\0C0A

2013-09-04 02:44 . 2013-09-04 02:44 -------- d-----w- c:\windows\system32\0C0A

2013-08-30 05:04 . 2013-08-30 05:04 -------- d-----w- c:\programdata\regid.1995-08.com.techsmith

2013-08-30 05:04 . 2013-08-30 05:04 -------- d-----w- c:\program files (x86)\QuickTime

2013-08-30 05:04 . 2013-08-30 05:04 -------- d-----w- c:\program files (x86)\Common Files\TechSmith Shared

2013-08-30 05:03 . 2013-08-30 05:03 -------- d-----w- c:\programdata\TechSmith

2013-08-30 05:03 . 2013-08-30 05:03 -------- d-----w- c:\program files (x86)\TechSmith

2013-08-30 04:32 . 2013-08-30 04:32 -------- d-----w- c:\program files (x86)\Nation Toolbar

2013-08-24 01:28 . 2013-08-24 01:28 -------- d-----w- c:\program files (x86)\SecondLifeViewer

2013-08-24 01:13 . 2013-08-24 01:13 -------- d-----w- C:\Makena

2013-08-24 01:13 . 2008-10-15 03:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll

2013-08-24 00:26 . 2013-08-12 23:07 46792 ----a-w- c:\windows\system32\drivers\hssdrv6.sys

2013-08-22 12:37 . 2013-09-04 02:42 -------- d-----w- C:\sources

2013-08-21 05:51 . 2013-08-21 05:51 -------- d-----w- c:\program files (x86)\Maxthon

2013-08-18 02:12 . 2012-10-12 06:13 109568 ----a-w- c:\windows\system32\dskquota.dll

2013-08-18 02:12 . 2012-10-12 05:39 82944 ----a-w- c:\windows\SysWow64\dskquota.dll

2013-08-18 02:12 . 2012-10-24 04:54 396008 ----a-w- c:\windows\system32\hal.dll

2013-08-18 02:12 . 2012-10-17 04:32 1172992 ----a-w- c:\windows\system32\mfnetsrc.dll

2013-08-18 02:12 . 2012-10-17 04:32 677888 ----a-w- c:\windows\system32\mfnetcore.dll

2013-08-18 02:12 . 2012-10-17 04:32 673280 ----a-w- c:\windows\system32\mfmpeg2srcsnk.dll

2013-08-18 02:12 . 2012-10-17 03:57 929792 ----a-w- c:\windows\SysWow64\mfnetsrc.dll

2013-08-18 02:12 . 2012-10-17 03:57 568832 ----a-w- c:\windows\SysWow64\mfnetcore.dll

2013-08-18 02:12 . 2012-10-17 03:57 513024 ----a-w- c:\windows\SysWow64\mfmpeg2srcsnk.dll

2013-08-18 02:12 . 2012-10-11 05:45 3236864 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll

2013-08-18 02:12 . 2012-10-11 05:46 1395712 ----a-w- c:\windows\system32\Windows.UI.Immersive.dll

2013-08-18 02:10 . 2013-06-16 22:41 997632 ----a-w- c:\windows\system32\drivers\ndis.sys

2013-08-18 02:09 . 2012-11-06 04:00 99328 ----a-w- c:\windows\system32\wushareduxresources.dll

2013-08-18 02:08 . 2012-12-04 04:21 368640 ----a-w- c:\windows\system32\sppwinob.dll

2013-08-18 02:08 . 2013-06-21 05:04 19187712 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll

2013-08-18 02:08 . 2013-06-21 04:46 18523648 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll

2013-08-18 01:34 . 2013-03-02 08:21 550912 ----a-w- c:\windows\SysWow64\drvstore.dll

2013-08-18 01:31 . 2013-08-18 01:31 -------- d-----w- c:\programdata\Sony

2013-08-18 01:31 . 2013-08-18 01:31 -------- d-----w- c:\program files\Sony

2013-08-18 01:31 . 2013-08-18 01:31 -------- d-----w- c:\program files (x86)\Sony

2013-08-18 01:30 . 2012-08-31 00:53 17888 ----a-w- c:\windows\SysWow64\msvcr100_clr0400.dll

2013-08-18 01:29 . 2012-08-31 00:52 17888 ----a-w- c:\windows\system32\msvcr100_clr0400.dll

2013-08-18 01:26 . 2013-04-09 04:50 1285632 ----a-w- c:\windows\system32\schedsvc.dll

2013-08-18 01:13 . 2013-08-18 01:13 -------- d-----w- c:\program files\WinRAR

2013-08-18 01:12 . 2013-08-18 01:12 -------- d-----w- c:\program files (x86)\Conduit

2013-08-18 01:11 . 2013-08-18 01:11 -------- d-----w- c:\programdata\Hotspot Shield

2013-08-18 01:11 . 2013-09-04 15:42 -------- d-----w- c:\users\fbwuser

2013-08-18 01:10 . 2013-08-24 00:26 -------- d-----w- c:\program files (x86)\Hotspot Shield

2013-08-15 03:44 . 2013-08-15 03:45 -------- d-----w- c:\windows\system32\MRT

2013-08-15 03:42 . 2013-08-15 03:42 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help

2013-08-15 02:09 . 2013-03-06 07:10 112872 ----a-w- c:\windows\system32\consent.exe

2013-08-15 02:09 . 2013-03-06 06:31 19758592 ----a-w- c:\windows\system32\shell32.dll

2013-08-15 02:09 . 2013-03-06 06:31 222208 ----a-w- c:\windows\system32\shdocvw.dll

2013-08-15 02:09 . 2013-03-06 06:29 70144 ----a-w- c:\windows\system32\appinfo.dll

2013-08-15 02:08 . 2012-11-07 23:04 149264 ----a-w- c:\program files\Windows Defender\SymSrv.dll

2013-08-15 02:08 . 2012-11-07 23:04 1558912 ----a-w- c:\program files\Windows Defender\DbgHelp.dll

2013-08-14 05:13 . 2013-08-14 05:13 -------- d-----w- c:\windows\PCHEALTH

2013-08-14 05:10 . 2013-08-14 05:10 -------- d-----w- c:\program files\Microsoft Office

2013-08-14 05:10 . 2013-08-14 05:10 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services

2013-08-14 05:10 . 2013-08-14 05:10 -------- d-----r- C:\MSOCache

2013-08-14 05:04 . 2013-08-15 03:58 -------- d-----w- c:\programdata\Microsoft Help

2013-08-14 01:27 . 2013-05-23 23:02 1314816 ----a-w- c:\windows\system32\rpcrt4.dll

2013-08-14 01:25 . 2013-07-13 06:18 337408 ----a-w- c:\windows\system32\wintrust.dll

2013-08-14 01:25 . 2013-07-13 06:16 68096 ----a-w- c:\windows\system32\cryptsvc.dll

2013-08-14 01:25 . 2013-07-13 06:16 1889280 ----a-w- c:\windows\system32\crypt32.dll

2013-08-14 01:25 . 2013-07-13 06:15 124416 ----a-w- c:\windows\system32\apprepapi.dll

2013-08-14 01:25 . 2013-07-13 04:24 261120 ----a-w- c:\windows\SysWow64\wintrust.dll

2013-08-14 01:25 . 2013-07-13 04:23 1568256 ----a-w- c:\windows\SysWow64\crypt32.dll

2013-08-14 01:25 . 2013-07-13 04:23 87040 ----a-w- c:\windows\SysWow64\apprepapi.dll

2013-08-14 01:25 . 2013-07-13 06:15 98304 ----a-w- c:\windows\system32\apprepsync.dll

2013-08-14 01:25 . 2013-07-13 04:23 74240 ----a-w- c:\windows\SysWow64\apprepsync.dll

2013-08-13 15:15 . 2013-08-13 15:15 -------- d-----w- c:\program files (x86)\VideoLAN

2013-08-13 15:13 . 2011-03-02 10:43 175616 ----a-w- c:\windows\SysWow64\unrar.dll

2013-08-13 15:13 . 2011-08-22 08:00 74752 ----a-w- c:\windows\SysWow64\ff_vfw.dll

2013-08-13 15:13 . 2011-07-16 14:17 151552 ----a-w- c:\windows\SysWow64\ac3acm.acm

2013-08-13 15:13 . 2011-06-24 14:44 243200 ----a-w- c:\windows\SysWow64\xvidvfw.dll

2013-08-13 15:13 . 2011-06-24 14:28 650752 ----a-w- c:\windows\SysWow64\xvidcore.dll

2013-08-13 15:13 . 2010-11-03 18:08 237568 ----a-w- c:\windows\SysWow64\yv12vfw.dll

2013-08-13 15:13 . 2008-09-24 18:41 839680 ----a-w- c:\windows\SysWow64\lameACM.acm

2013-08-13 15:13 . 2013-08-13 15:13 -------- d-----w- c:\program files (x86)\K-Lite Codec Pack

2013-08-13 14:57 . 2013-08-13 14:57 -------- d-----w- c:\windows\SysWow64\drivers\ar-SA

2013-08-13 14:56 . 2013-08-13 14:56 -------- d-----w- c:\windows\SysWow64\wbem\ar-SA

2013-08-13 14:56 . 2013-08-13 14:56 -------- d-----w- c:\windows\ar-SA

2013-08-13 14:56 . 2013-08-13 14:56 -------- d-----w- c:\windows\system32\drivers\ar-SA

2013-08-13 14:56 . 2013-08-13 14:56 -------- d-----w- c:\windows\system32\ar

2013-08-13 14:55 . 2013-08-13 14:55 -------- d-----w- c:\windows\system32\wbem\ar-SA

2013-08-13 14:43 . 2013-08-13 14:43 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin

2013-08-13 14:43 . 2013-08-13 14:43 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin

2013-08-12 20:33 . 2013-05-15 02:25 888320 ----a-w- c:\windows\system32\autochk.exe

2013-08-12 20:33 . 2013-05-15 02:25 542208 ----a-w- c:\windows\system32\untfs.dll

2013-08-12 20:33 . 2013-05-15 02:24 793088 ----a-w- c:\windows\SysWow64\autochk.exe

2013-08-12 20:33 . 2013-05-15 02:24 482816 ----a-w- c:\windows\SysWow64\untfs.dll

2013-08-12 20:33 . 2013-05-30 23:24 1257472 ----a-w- c:\windows\system32\kernel32.dll

2013-08-12 20:33 . 2013-05-23 23:01 1300992 ----a-w- c:\windows\system32\gdi32.dll

2013-08-12 20:33 . 2013-05-23 22:27 1022464 ----a-w- c:\windows\SysWow64\gdi32.dll

2013-08-12 20:31 . 2013-04-10 22:35 2035200 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll

2013-08-12 20:31 . 2013-04-10 22:35 1272320 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll

2013-08-12 20:31 . 2013-04-10 22:35 1617920 ----a-w- c:\program files\Windows Journal\NBDoc.DLL

2013-08-12 20:31 . 2013-04-10 22:35 1306112 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll

2013-08-12 20:31 . 2013-04-16 02:34 1455368 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2013-08-12 20:31 . 2013-04-11 04:12 1029632 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\journal.dll

2013-08-12 20:31 . 2013-04-11 04:12 1413632 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll

2013-08-12 20:31 . 2013-04-10 22:35 1318912 ----a-w- c:\program files\Windows Journal\JNWDRV.dll

2013-08-12 20:31 . 2013-01-10 01:40 303848 ----a-w- c:\windows\system32\drivers\dxgmms1.sys

2013-08-12 20:29 . 2013-02-02 08:23 830464 ----a-w- c:\windows\system32\wbem\WmiPrvSD.dll

2013-08-12 20:28 . 2013-04-27 05:20 733184 ----a-w- c:\windows\system32\win32spl.dll

2013-08-12 19:39 . 2013-05-03 00:11 64856 ----a-w- c:\windows\system32\klfphc.dll

2013-08-12 19:38 . 2013-09-05 13:15 -------- d-----w- c:\programdata\Kaspersky Lab

2013-08-12 19:38 . 2013-08-12 19:38 -------- d-----w- c:\program files (x86)\Kaspersky Lab

2013-08-12 19:38 . 2013-05-03 00:11 90208 ----a-w- c:\windows\system32\drivers\klflt.sys

2013-08-12 19:38 . 2013-05-03 00:11 619616 ----a-w- c:\windows\system32\drivers\klif.sys

2013-08-12 19:32 . 2013-08-12 19:32 -------- d-----w- c:\program files\Classic Shell

2013-08-12 19:25 . 2013-08-12 19:25 -------- d-----w- c:\program files (x86)\Google

2013-08-12 19:25 . 2013-08-22 22:48 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service

2013-08-12 19:16 . 2013-09-04 15:43 -------- d-----w- c:\users\asus

.

.

.

((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-08-14 01:22 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-06-27 22:04 . 2012-07-26 08:14 78200 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-06-27 22:04 . 2012-07-26 08:14 693112 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-06-21 01:09 . 2013-06-21 01:09 42184 ----a-w- c:\windows\system32\drivers\taphss6.sys

.

.

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown 

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"uTorrent"="c:\users\asus\AppData\Roaming\uTorrent\uTorrent.exe" [2013-08-30 1130576]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-16 35736]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-16 932288]

"RemoteControl10"="c:\program files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" [2012-03-29 91432]

"ASUSWebStorage"="c:\program files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe" [2012-08-28 3417984]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]

"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\runner_avp.exe" [2013-05-03 24504]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"EnableUIADesktopToggle"= 0 (0x0)

"EnableCursorSuppression"= 1 (0x1)

"ConsentPromptBehaviorUser"= 3 (0x3)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer3"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ   autocheck autochk *\0\0sdnclean64.exe

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001

.

R0 klelam;klelam;c:\windows\system32\DRIVERS\klelam.sys;c:\windows\SYSNATIVE\DRIVERS\klelam.sys [x]

R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]

R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]

R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]

R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]

R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]

R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]

R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]

S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]

S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]

S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x]

S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]

S1 klwfp;klwfp;c:\windows\system32\DRIVERS\klwfp.sys;c:\windows\SYSNATIVE\DRIVERS\klwfp.sys [x]

S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]

S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]

S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]

S2 ASUS InstantOn;ASUS InstantOn Service;c:\program files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe;c:\program files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [x]

S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]

S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]

S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]

S2 hshld;Hotspot Shield Service;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe [x]

S2 HssWd;Hotspot Shield Monitoring Service;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe [x]

S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]

S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 AiCharger;ASUS Charger Driver;c:\windows\system32\DRIVERS\AiCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AiCharger.sys [x]

S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;c:\windows\System32\drivers\AMPPAL.sys;c:\windows\SYSNATIVE\drivers\AMPPAL.sys [x]

S3 ATP;ASUS PS/2 Port Input Device;c:\windows\System32\drivers\AsusTP.sys;c:\windows\SYSNATIVE\drivers\AsusTP.sys [x]

S3 BthLEEnum;Bluetooth Low Energy Driver;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]

S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]

S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]

S3 HIDSwitch;ASUS Wireless Radio Control;c:\windows\System32\drivers\AsHIDSwitch64.sys;c:\windows\SYSNATIVE\drivers\AsHIDSwitch64.sys [x]

S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 iwdbus;IWD Bus Enumerator;c:\windows\System32\drivers\iwdbus.sys;c:\windows\SYSNATIVE\drivers\iwdbus.sys [x]

S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]

S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]

S3 NETwNe64;@oem12.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;c:\windows\system32\DRIVERS\NETwew00.sys;c:\windows\SYSNATIVE\DRIVERS\NETwew00.sys [x]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]

S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]

S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]

S3 usb3Hub;USB-IF USB 3.0 Hub;c:\windows\System32\drivers\usb3Hub.sys;c:\windows\SYSNATIVE\drivers\usb3Hub.sys [x]

S3 XHCIPort;USB-IF xHCI USB Host Controller;c:\windows\System32\drivers\XHCIPort.sys;c:\windows\SYSNATIVE\drivers\XHCIPort.sys [x]

.

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2013-09-05 09:41 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe

.

Contents of the 'Scheduled Tasks' folder

.

2013-09-05 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21 05:51]

.

2013-09-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-26 05:35]

.

2013-09-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-26 05:35]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]

@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"

[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]

2012-03-13 09:23 1500672 ----a-w- c:\program files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSShellExt64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]

@="{64174815-8D98-4CE6-8646-4C039977D808}"

[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]

2012-03-13 09:23 1500672 ----a-w- c:\program files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSShellExt64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_U]

@="{1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D}"

[HKEY_CLASSES_ROOT\CLSID\{1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D}]

2012-03-13 09:23 1500672 ----a-w- c:\program files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSShellExt64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-15 171040]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-15 399392]

"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-10-18 13213328]

"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2012-07-21 11554176]

.

------- Supplementary Scan -------

.

uLocal Page = c:\windows\system32\blank.htm


mLocal Page = c:\windows\SysWOW64\blank.htm

IE: Add to Anti-Banner - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm

IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: Send to Bluetooth - c:\program files (x86)\Intel\Bluetooth\btSendToObject.htm

IE: ????? ??? ???? Bluetooth - c:\program files (x86)\Intel\Bluetooth\btSendToObject.htm

TCP: DhcpNameServer = 192.168.1.1 192.168.1.1

FF - ProfilePath - c:\users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\oxczlsci.default\


FF - prefs.js: network.proxy.http - 127.0.0.1

FF - prefs.js: network.proxy.http_port - 8555

FF - prefs.js: network.proxy.type - 1

FF - ExtSQL: 2013-08-12 22:38; anti_banner@kaspersky.com; c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com

FF - ExtSQL: 2013-08-12 22:38; content_blocker@kaspersky.com; c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com

FF - ExtSQL: 2013-08-12 22:38; online_banking@kaspersky.com; c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com

FF - ExtSQL: 2013-08-12 22:38; url_advisor@kaspersky.com; c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com

FF - ExtSQL: 2013-08-12 22:38; virtual_keyboard@kaspersky.com; c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com

FF - ExtSQL: 2013-08-18 04:21; afurladvisor@anchorfree.com; c:\program files (x86)\Mozilla Firefox\browser\extensions\afurladvisor@anchorfree.com

.

- - - - ORPHANS REMOVED - - - -

.

Toolbar-Locked - (no file)

BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)

Toolbar-Locked - (no file)

.

.

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

@SACL=(02 0000)

.

Completion time: 2013-09-05  18:18:03

ComboFix-quarantined-files.txt  2013-09-05 15:18

.

Pre-Run: 247,466,651,648 bytes free

Post-Run: 247,341,727,744 bytes free

.

- - End Of File - - 24C08AFEDE82040948221AAC9EC782DD
Link to post
Share on other sites

Don´t panic and don´t try things on your own.

 

 

Multiple Antivirus Programs installed!

I do not recommend that you have more than one anti-virus product installed and running on your computer at a time.

The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti-virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:

1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.

Therefore please go to add/remove in the control panel and remove either Windows Defender or Kaspersky.

Link to post
Share on other sites

Thank you :) but,  windows defender is already disabled . 

 

see when I try to open it :

 

lR1X7El.png

 

and by the way, when I restarted my laptop the start menu came back and also I became able to make another pc account from control panel

 and about the problem that I think I have virus it was because your program keep pop up notification and says that you blocked access - some times it happens 3 or 2 different pop ups one after another . That what actually made me suspicious. here is another one that have just popped up to me . Why do I get these pop ups ??

 

 

5LYGVtk.png

 

see when I searched for that IP . I got that it is from China. While Iam not living there.

 

JwDPp7C.png

Link to post
Share on other sites

Combofix scripting

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Download the attached CFScript.txt and save it to the location where Combofix is.


CFScriptB-4.gif


Refering to the picture above, drag CFScript into ComboFix.exe

When finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.

 

 

 

Full System Scan with Malwarebytes Antimalware


  • If not existing, please download
Malwarebytes' Anti-Malware to your desktop. Double-click mbam-setup.exe and follow the prompts to install the program. At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.



If the program is already installed:

  • Run Malwarebytes Antimalware
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform fullscan, place a checkmark on all hard drives, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad. Please save it to a convenient location.
  • The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
  • Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt
  • Post that log back here.

CFScript.txt

Link to post
Share on other sites

ComboFix 13-09-04.04 - asus 09/06/2013  10:28:22.2.4 - x64

Microsoft Windows 8  6.2.9200.0.1252.1.1033.18.6034.4383 [GMT 3:00]

Running from: C:\Users\asus\Desktop\ComboFix.exe

Command switches used :: C:\Users\asus\Desktop\CFScript.txt

AV: Kaspersky Internet Security *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Kaspersky Internet Security *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}

SP: Kaspersky Internet Security *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}

SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

 * Created a new restore point

 

 

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))

 

 

c:\program files (x86)\Conduit

c:\program files (x86)\Conduit\Community Alerts\Alert.dll

c:\program files (x86)\Maxthon

c:\program files (x86)\Maxthon\Addons\Avatarext\MxAvatarExt.dll

c:\program files (x86)\Maxthon\Addons\CloudsSvc\MxCloudsSvc.dat

c:\program files (x86)\Maxthon\Addons\CloudsSvc\MxCloudsSvc.dll

c:\program files (x86)\Maxthon\Addons\ExtTools\MxExtTools.dat

c:\program files (x86)\Maxthon\Addons\ExtTools\MxExtTools.dll

c:\program files (x86)\Maxthon\Addons\Misc\MxAddonMisc.dat

c:\program files (x86)\Maxthon\Addons\Misc\MxAddonMisc.dll

c:\program files (x86)\Maxthon\Addons\Mobile\android\Adb.exe

c:\program files (x86)\Maxthon\Addons\Mobile\android\AdbWinApi.dll

c:\program files (x86)\Maxthon\Addons\Mobile\android\AdbWinUsbApi.dll

c:\program files (x86)\Maxthon\Addons\Mobile\MxMobile.dat

c:\program files (x86)\Maxthon\Addons\Mobile\MxMobile.dll

c:\program files (x86)\Maxthon\Addons\MsgPush\MxMsgPush.dll

c:\program files (x86)\Maxthon\Addons\TabsSync\MxTabsSync.dll

c:\program files (x86)\Maxthon\Addons\Ueip\MxUeip.dll

c:\program files (x86)\Maxthon\Bin\default.dat

c:\program files (x86)\Maxthon\Bin\Maxthon.dll

c:\program files (x86)\Maxthon\Bin\Maxthon.exe

c:\program files (x86)\Maxthon\Bin\Maxzlib.dll

c:\program files (x86)\Maxthon\Bin\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest

c:\program files (x86)\Maxthon\Bin\Microsoft.VC90.CRT\msvcm90.dll

c:\program files (x86)\Maxthon\Bin\Microsoft.VC90.CRT\msvcp90.dll

c:\program files (x86)\Maxthon\Bin\Microsoft.VC90.CRT\msvcr90.dll

c:\program files (x86)\Maxthon\Bin\Mx3UnInstall.exe

c:\program files (x86)\Maxthon\Bin\MxAccountSvc.dll

c:\program files (x86)\Maxthon\Bin\MxAddonsMgr.dll

c:\program files (x86)\Maxthon\Bin\MxApp.dll

c:\program files (x86)\Maxthon\Bin\MxAppFrame.dll

c:\program files (x86)\Maxthon\Bin\MxAppLoader.exe

c:\program files (x86)\Maxthon\Bin\MxCore.dll

c:\program files (x86)\Maxthon\Bin\MxCoreMan.dll

c:\program files (x86)\Maxthon\Bin\MxCrashCatch.dll

c:\program files (x86)\Maxthon\Bin\MxCrashReport.exe

c:\program files (x86)\Maxthon\Bin\MxDb.dll

c:\program files (x86)\Maxthon\Bin\MxDownloader.dll

c:\program files (x86)\Maxthon\Bin\MxEncode.dll

c:\program files (x86)\Maxthon\Bin\MxFilePackage.dll

c:\program files (x86)\Maxthon\Bin\MxFileSync.dll

c:\program files (x86)\Maxthon\Bin\MxHttpRq.dll

c:\program files (x86)\Maxthon\Bin\MxIPC.dll

c:\program files (x86)\Maxthon\Bin\MxMsg.dll

c:\program files (x86)\Maxthon\Bin\MxResMgr.dll

c:\program files (x86)\Maxthon\Bin\MxRsc.dll

c:\program files (x86)\Maxthon\Bin\MxSvTrace.dll

c:\program files (x86)\Maxthon\Bin\MxTool.dll

c:\program files (x86)\Maxthon\Bin\MxUI.dll

c:\program files (x86)\Maxthon\Bin\MxUp.exe

c:\program files (x86)\Maxthon\Bin\mxver.db

c:\program files (x86)\Maxthon\Bin\MxWKView.dll

c:\program files (x86)\Maxthon\Bin\MxXDR.dll

c:\program files (x86)\Maxthon\Bin\page.dat

c:\program files (x86)\Maxthon\Bin\ui.dat

c:\program files (x86)\Maxthon\Core\Trident\MxTrident.dll

c:\program files (x86)\Maxthon\Core\Webkit\avcodec-54.dll

c:\program files (x86)\Maxthon\Core\Webkit\avformat-54.dll

c:\program files (x86)\Maxthon\Core\Webkit\avutil-51.dll

c:\program files (x86)\Maxthon\Core\Webkit\D3DCompiler_43.dll

c:\program files (x86)\Maxthon\Core\Webkit\d3dx9_43.dll

c:\program files (x86)\Maxthon\Core\Webkit\libEGL.dll

c:\program files (x86)\Maxthon\Core\Webkit\libGLESv2.dll

c:\program files (x86)\Maxthon\Core\Webkit\MxHwDec.dll

c:\program files (x86)\Maxthon\Core\Webkit\MxNPPluginsFile.xml

c:\program files (x86)\Maxthon\Core\Webkit\MxWebkit.dll

c:\program files (x86)\Maxthon\Core\Webkit\Npplugins\np-mswmp.dll

c:\program files (x86)\Maxthon\Core\Webkit\Npplugins\npaliedit.dll

c:\program files (x86)\Maxthon\Core\Webkit\Npplugins\NPCMBEdit.dll

c:\program files (x86)\Maxthon\Core\Webkit\Npplugins\NPSWF32.dll

c:\program files (x86)\Maxthon\Language\ar-bh.ini

c:\program files (x86)\Maxthon\Language\ar-sa.ini

c:\program files (x86)\Maxthon\Language\ar-ye.ini

c:\program files (x86)\Maxthon\Language\be-by.ini

c:\program files (x86)\Maxthon\Language\bg-bg.ini

c:\program files (x86)\Maxthon\Language\bn-in.ini

c:\program files (x86)\Maxthon\Language\ca-es.ini

c:\program files (x86)\Maxthon\Language\cs-cz.ini

c:\program files (x86)\Maxthon\Language\de-de.ini

c:\program files (x86)\Maxthon\Language\el-gr.ini

c:\program files (x86)\Maxthon\Language\en.ini

c:\program files (x86)\Maxthon\Language\es-ar.ini

c:\program files (x86)\Maxthon\Language\es-es.ini

c:\program files (x86)\Maxthon\Language\es-mx.ini

c:\program files (x86)\Maxthon\Language\et-ee.ini

c:\program files (x86)\Maxthon\Language\fa-ir.ini

c:\program files (x86)\Maxthon\Language\fi-fi.ini

c:\program files (x86)\Maxthon\Language\fr-fr.ini

c:\program files (x86)\Maxthon\Language\he-il.ini

c:\program files (x86)\Maxthon\Language\hi-in.ini

c:\program files (x86)\Maxthon\Language\hu-hu.ini

c:\program files (x86)\Maxthon\Language\id-id.ini

c:\program files (x86)\Maxthon\Language\it-it.ini

c:\program files (x86)\Maxthon\Language\ja-jp.ini

c:\program files (x86)\Maxthon\Language\ka-ge.ini

c:\program files (x86)\Maxthon\Language\ko-kr.ini

c:\program files (x86)\Maxthon\Language\license_en.txt

c:\program files (x86)\Maxthon\Language\license_zh-cn.txt

c:\program files (x86)\Maxthon\Language\ml-in.ini

c:\program files (x86)\Maxthon\Language\mn-cyrl-mn.ini

c:\program files (x86)\Maxthon\Language\nb-no.ini

c:\program files (x86)\Maxthon\Language\nl-nl.ini

c:\program files (x86)\Maxthon\Language\pl-pl.ini

c:\program files (x86)\Maxthon\Language\pt-br.ini

c:\program files (x86)\Maxthon\Language\pt-pt.ini

c:\program files (x86)\Maxthon\Language\ro-ro.ini

c:\program files (x86)\Maxthon\Language\ru-ru.ini

c:\program files (x86)\Maxthon\Language\sk-sk.ini

c:\program files (x86)\Maxthon\Language\sr-cyrl-cs.ini

c:\program files (x86)\Maxthon\Language\sv-se.ini

c:\program files (x86)\Maxthon\Language\ta-in.ini

c:\program files (x86)\Maxthon\Language\th-th.ini

c:\program files (x86)\Maxthon\Language\tr-tr.ini

c:\program files (x86)\Maxthon\Language\uk-ua.ini

c:\program files (x86)\Maxthon\Language\vi-vn.ini

c:\program files (x86)\Maxthon\Language\zh-cn.ini

c:\program files (x86)\Maxthon\Language\zh-tw.ini

c:\program files (x86)\Maxthon\Modules\MxCaptureScreen3\MxCaptureScreen3.dll

c:\program files (x86)\Maxthon\Modules\MxCmpUrl\MxCmpUrl.dll

c:\program files (x86)\Maxthon\Modules\MxDock\language\ar-bh.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ar-sa.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ar-ye.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\be-by.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\bg-bg.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\bn-in.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ca-es.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\cs-cz.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\de-de.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\el-gr.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\en.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\es-ar.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\es-es.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\es-mx.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\et-ee.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\fa-ir.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\fi-fi.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\fr-fr.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\he-il.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\hi-in.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\hu-hu.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\id-id.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\it-it.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ja-jp.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ka-ge.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ko-kr.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ml-in.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\mn-cyrl-mn.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\nb-no.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\nl-nl.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\pl-pl.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\pt-br.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\pt-pt.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ro-ro.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ru-ru.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\sk-sk.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\sr-cyrl-cs.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\sv-se.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\ta-in.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\th-th.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\tr-tr.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\uk-ua.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\vi-vn.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\zh-cn.ini

c:\program files (x86)\Maxthon\Modules\MxDock\language\zh-tw.ini

c:\program files (x86)\Maxthon\Modules\MxDock\MxDock.exe

c:\program files (x86)\Maxthon\Modules\MxDock\res_en.dll

c:\program files (x86)\Maxthon\Modules\MxDock\res_zh-cn.dll

c:\program files (x86)\Maxthon\Modules\MxDock\Sound.WAV

c:\program files (x86)\Maxthon\Modules\MxFavDb\MxFav.dll

c:\program files (x86)\Maxthon\Modules\MxFavDb\MxFavDb.dll

c:\program files (x86)\Maxthon\Modules\MxHistory\MxHistory.dll

c:\program files (x86)\Maxthon\Modules\MxMultiSearch\MxMultiSearch.dll

c:\program files (x86)\Maxthon\Modules\MxMute\MxMute.dll

c:\program files (x86)\Maxthon\Modules\MxPicLib\MxPicLib.dll

c:\program files (x86)\Maxthon\Modules\MxPrint\MxPrint.dll

c:\program files (x86)\Maxthon\Modules\MxQRGen\MxQRGen.dll

c:\program files (x86)\Maxthon\Modules\MxSandBox\MxSec.dll

c:\program files (x86)\Maxthon\Modules\MxSiteIcon\MxSiteIcon.dll

c:\program files (x86)\Maxthon\Modules\MxSmartUrl\MxSmartUrl.dll

c:\program files (x86)\Maxthon\Modules\MxStorage\MxStorage.dll

c:\program files (x86)\Maxthon\Modules\MxSvInfo\MxSvInfo.dll

c:\program files (x86)\Maxthon\Modules\MxSync\MxSync.dll

c:\program files (x86)\Maxthon\Modules\MxUrlSec\MxUrlSec.dll

c:\program files (x86)\Nation Toolbar

c:\program files (x86)\Nation Toolbar\Chrome.zip

c:\program files (x86)\Nation Toolbar\chrome_search.exe

c:\program files (x86)\Nation Toolbar\inst.txt

c:\program files (x86)\Nation Toolbar\sheller.exe

c:\program files (x86)\Nation Toolbar\tab.zip

c:\program files (x86)\Nation Toolbar\tabinst.txt

c:\program files (x86)\Nation Toolbar\tbcore3.dll

c:\program files (x86)\Nation Toolbar\tbid.txt

c:\program files (x86)\Nation Toolbar\tbunsr278F.tmp\tbcore3.dll

 

 

(((((((((((((((((((((((((   Files Created from 2013-08-06 to 2013-09-06  )))))))))))))))))))))))))))))))

 

 

2013-09-06 07:36:05 . 2013-09-06 07:36:05 -------- d-----w- C:\Users\Default\AppData\Local\temp

2013-09-06 03:02:36 . 2013-09-06 03:04:08 -------- d-----w- C:\Users\Guest

2013-09-06 00:39:14 . 2013-09-06 00:39:17 -------- d-----w- C:\Windows\ServiceProfiles\LocalService\winhttp

2013-09-05 15:40:06 . 2013-09-05 15:40:06 -------- d-----w- C:\ProgramData\hsswpr

2013-09-05 02:01:11 . 2013-09-05 02:01:11 -------- d-----w- C:\ProgramData\TamoSoft

2013-09-05 02:01:02 . 2013-09-05 02:01:13 -------- d-----w- C:\Program Files (x86)\SmartWhois

2013-09-05 01:21:27 . 2013-09-05 01:24:20 -------- d-----w- C:\Program Files\CCleaner

2013-09-05 00:49:05 . 2013-09-05 01:27:30 -------- d-----w- C:\ProgramData\AntiSpyInfo

2013-09-05 00:28:07 . 2013-09-05 00:33:33 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy

2013-09-05 00:27:18 . 2013-09-05 01:28:41 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 2

2013-09-04 16:08:19 . 2013-09-04 16:08:19 -------- d-----w- C:\ProgramData\Malwarebytes

2013-09-04 16:08:17 . 2013-09-04 16:08:21 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-09-04 16:08:17 . 2013-04-04 11:50:32 25928 ----a-w- C:\Windows\system32\drivers\mbam.sys

2013-09-04 15:59:16 . 2013-09-04 15:59:16 270512 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10215.bin

2013-09-04 02:45:12 . 2013-09-04 02:45:12 -------- d-----w- C:\Windows\SysWow64\drivers\UMDF\es-ES

2013-09-04 02:45:12 . 2013-09-04 02:45:12 -------- d-----w- C:\Windows\SysWow64\0C0A

2013-09-04 02:44:16 . 2013-09-04 02:44:16 -------- d-----w- C:\Windows\system32\0C0A

2013-08-30 05:04:17 . 2013-08-30 05:04:17 -------- d-----w- C:\ProgramData\regid.1995-08.com.techsmith

2013-08-30 05:04:16 . 2013-08-30 05:04:16 -------- d-----w- C:\Program Files (x86)\QuickTime

2013-08-30 05:04:07 . 2013-08-30 05:04:07 -------- d-----w- C:\Program Files (x86)\Common Files\TechSmith Shared

2013-08-30 05:03:53 . 2013-08-30 05:03:53 -------- d-----w- C:\ProgramData\TechSmith

2013-08-30 05:03:53 . 2013-08-30 05:03:53 -------- d-----w- C:\Program Files (x86)\TechSmith

2013-08-24 01:28:12 . 2013-08-24 01:28:39 -------- d-----w- C:\Program Files (x86)\SecondLifeViewer

2013-08-24 01:13:50 . 2013-08-24 01:13:50 -------- d-----w- C:\Makena

2013-08-24 01:13:38 . 2008-10-15 03:22:52 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll

2013-08-22 12:37:33 . 2013-09-04 02:42:26 -------- d-----w- C:\sources

2013-08-18 02:12:46 . 2012-10-12 06:13:32 109568 ----a-w- C:\Windows\system32\dskquota.dll

2013-08-18 02:12:45 . 2012-10-12 05:39:54 82944 ----a-w- C:\Windows\SysWow64\dskquota.dll

2013-08-18 02:12:34 . 2012-10-24 04:54:04 396008 ----a-w- C:\Windows\system32\hal.dll

2013-08-18 02:12:30 . 2012-10-17 04:32:52 1172992 ----a-w- C:\Windows\system32\mfnetsrc.dll

2013-08-18 02:12:30 . 2012-10-17 04:32:51 677888 ----a-w- C:\Windows\system32\mfnetcore.dll

2013-08-18 02:12:30 . 2012-10-17 04:32:51 673280 ----a-w- C:\Windows\system32\mfmpeg2srcsnk.dll

2013-08-18 02:12:30 . 2012-10-17 03:57:37 929792 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll

2013-08-18 02:12:30 . 2012-10-17 03:57:37 568832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll

2013-08-18 02:12:30 . 2012-10-17 03:57:37 513024 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll

2013-08-18 02:12:03 . 2012-10-11 05:45:52 3236864 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll

2013-08-18 02:12:01 . 2012-10-11 05:46:07 1395712 ----a-w- C:\Windows\system32\Windows.UI.Immersive.dll

2013-08-18 02:10:59 . 2013-06-16 22:41:31 997632 ----a-w- C:\Windows\system32\drivers\ndis.sys

2013-08-18 02:09:59 . 2012-11-06 04:00:44 99328 ----a-w- C:\Windows\system32\wushareduxresources.dll

2013-08-18 02:08:58 . 2012-12-04 04:21:42 368640 ----a-w- C:\Windows\system32\sppwinob.dll

2013-08-18 02:08:12 . 2013-06-21 05:04:24 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll

2013-08-18 02:08:11 . 2013-06-21 04:46:18 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll

2013-08-18 01:34:58 . 2013-03-02 08:21:56 550912 ----a-w- C:\Windows\SysWow64\drvstore.dll

2013-08-18 01:31:30 . 2013-08-18 01:31:30 -------- d-----w- C:\ProgramData\Sony

2013-08-18 01:31:30 . 2013-08-18 01:31:30 -------- d-----w- C:\Program Files\Sony

2013-08-18 01:31:30 . 2013-08-18 01:31:30 -------- d-----w- C:\Program Files (x86)\Sony

2013-08-18 01:30:44 . 2012-08-31 00:53:55 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll

2013-08-18 01:29:13 . 2012-08-31 00:52:59 17888 ----a-w- C:\Windows\system32\msvcr100_clr0400.dll

2013-08-18 01:26:59 . 2013-04-09 04:50:39 1285632 ----a-w- C:\Windows\system32\schedsvc.dll

2013-08-18 01:13:37 . 2013-08-18 01:13:54 -------- d-----w- C:\Program Files\WinRAR

2013-08-15 03:44:58 . 2013-08-15 03:45:56 -------- d-----w- C:\Windows\system32\MRT

2013-08-15 03:42:34 . 2013-08-15 03:42:34 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help

2013-08-15 02:09:14 . 2013-03-06 07:10:10 112872 ----a-w- C:\Windows\system32\consent.exe

2013-08-15 02:09:14 . 2013-03-06 06:31:28 19758592 ----a-w- C:\Windows\system32\shell32.dll

2013-08-15 02:09:14 . 2013-03-06 06:31:26 222208 ----a-w- C:\Windows\system32\shdocvw.dll

2013-08-15 02:09:14 . 2013-03-06 06:29:15 70144 ----a-w- C:\Windows\system32\appinfo.dll

2013-08-15 02:08:00 . 2012-11-07 23:04:04 149264 ----a-w- C:\Program Files\Windows Defender\SymSrv.dll

2013-08-15 02:08:00 . 2012-11-07 23:04:00 1558912 ----a-w- C:\Program Files\Windows Defender\DbgHelp.dll

2013-08-14 05:13:48 . 2013-08-14 05:13:48 -------- d-----w- C:\Windows\PCHEALTH

2013-08-14 05:10:33 . 2013-08-14 05:10:33 -------- d-----w- C:\Program Files\Microsoft Office

2013-08-14 05:10:29 . 2013-08-14 05:10:29 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services

2013-08-14 05:10:05 . 2013-08-14 05:10:05 -------- d-----r- C:\MSOCache

2013-08-14 05:04:38 . 2013-08-15 03:58:58 -------- d-----w- C:\ProgramData\Microsoft Help

2013-08-14 01:27:55 . 2013-05-23 23:02:30 1314816 ----a-w- C:\Windows\system32\rpcrt4.dll

2013-08-14 01:25:21 . 2013-07-13 06:18:21 337408 ----a-w- C:\Windows\system32\wintrust.dll

2013-08-14 01:25:21 . 2013-07-13 06:16:06 68096 ----a-w- C:\Windows\system32\cryptsvc.dll

2013-08-14 01:25:21 . 2013-07-13 06:16:06 1889280 ----a-w- C:\Windows\system32\crypt32.dll

2013-08-14 01:25:21 . 2013-07-13 06:15:53 124416 ----a-w- C:\Windows\system32\apprepapi.dll

2013-08-14 01:25:21 . 2013-07-13 04:24:58 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll

2013-08-14 01:25:21 . 2013-07-13 04:23:11 1568256 ----a-w- C:\Windows\SysWow64\crypt32.dll

2013-08-14 01:25:21 . 2013-07-13 04:23:03 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll

2013-08-14 01:25:20 . 2013-07-13 06:15:53 98304 ----a-w- C:\Windows\system32\apprepsync.dll

2013-08-14 01:25:20 . 2013-07-13 04:23:03 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll

2013-08-13 15:15:16 . 2013-08-13 15:15:16 -------- d-----w- C:\Program Files (x86)\VideoLAN

2013-08-13 15:13:23 . 2011-03-02 10:43:46 175616 ----a-w- C:\Windows\SysWow64\unrar.dll

2013-08-13 15:13:22 . 2011-08-22 08:00:00 74752 ----a-w- C:\Windows\SysWow64\ff_vfw.dll

2013-08-13 15:13:22 . 2011-07-16 14:17:06 151552 ----a-w- C:\Windows\SysWow64\ac3acm.acm

2013-08-13 15:13:22 . 2011-06-24 14:44:30 243200 ----a-w- C:\Windows\SysWow64\xvidvfw.dll

2013-08-13 15:13:22 . 2011-06-24 14:28:22 650752 ----a-w- C:\Windows\SysWow64\xvidcore.dll

2013-08-13 15:13:22 . 2010-11-03 18:08:48 237568 ----a-w- C:\Windows\SysWow64\yv12vfw.dll

2013-08-13 15:13:22 . 2008-09-24 18:41:12 839680 ----a-w- C:\Windows\SysWow64\lameACM.acm

2013-08-13 15:13:21 . 2013-08-13 15:13:22 -------- d-----w- C:\Program Files (x86)\K-Lite Codec Pack

2013-08-13 14:57:01 . 2013-08-13 14:57:01 -------- d-----w- C:\Windows\SysWow64\drivers\ar-SA

2013-08-13 14:56:33 . 2013-08-13 14:56:35 -------- d-----w- C:\Windows\SysWow64\wbem\ar-SA

2013-08-13 14:56:26 . 2013-08-13 14:56:26 -------- d-----w- C:\Windows\ar-SA

2013-08-13 14:56:24 . 2013-08-13 14:56:25 -------- d-----w- C:\Windows\system32\drivers\ar-SA

2013-08-13 14:56:24 . 2013-08-13 14:56:24 -------- d-----w- C:\Windows\system32\ar

2013-08-13 14:55:35 . 2013-08-13 14:55:41 -------- d-----w- C:\Windows\system32\wbem\ar-SA

2013-08-13 14:43:45 . 2013-08-13 14:43:45 50784 ----a-w- C:\ProgramData\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin

2013-08-13 14:43:40 . 2013-08-13 14:43:40 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin

2013-08-12 20:33:39 . 2013-05-15 02:25:59 888320 ----a-w- C:\Windows\system32\autochk.exe

2013-08-12 20:33:39 . 2013-05-15 02:25:44 542208 ----a-w- C:\Windows\system32\untfs.dll

2013-08-12 20:33:39 . 2013-05-15 02:24:10 793088 ----a-w- C:\Windows\SysWow64\autochk.exe

2013-08-12 20:33:39 . 2013-05-15 02:24:01 482816 ----a-w- C:\Windows\SysWow64\untfs.dll

2013-08-12 20:33:37 . 2013-05-30 23:24:29 1257472 ----a-w- C:\Windows\system32\kernel32.dll

2013-08-12 20:33:33 . 2013-05-23 23:01:46 1300992 ----a-w- C:\Windows\system32\gdi32.dll

2013-08-12 20:33:33 . 2013-05-23 22:27:05 1022464 ----a-w- C:\Windows\SysWow64\gdi32.dll

2013-08-12 20:31:10 . 2013-04-10 22:35:00 2035200 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll

2013-08-12 20:31:10 . 2013-04-10 22:35:00 1272320 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll

2013-08-12 20:31:09 . 2013-04-10 22:35:09 1617920 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL

2013-08-12 20:31:09 . 2013-04-10 22:35:00 1306112 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll

2013-08-12 20:31:08 . 2013-04-16 02:34:44 1455368 ----a-w- C:\Windows\system32\drivers\dxgkrnl.sys

2013-08-12 20:31:08 . 2013-04-11 04:12:06 1029632 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\journal.dll

2013-08-12 20:31:08 . 2013-04-11 04:12:04 1413632 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll

2013-08-12 20:31:08 . 2013-04-10 22:35:00 1318912 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll

2013-08-12 20:31:07 . 2013-01-10 01:40:38 303848 ----a-w- C:\Windows\system32\drivers\dxgmms1.sys

2013-08-12 20:29:57 . 2013-02-02 08:23:30 830464 ----a-w- C:\Windows\system32\wbem\WmiPrvSD.dll

2013-08-12 20:28:15 . 2013-04-27 05:20:12 733184 ----a-w- C:\Windows\system32\win32spl.dll

2013-08-12 19:39:12 . 2013-05-03 00:11:42 64856 ----a-w- C:\Windows\system32\klfphc.dll

2013-08-12 19:38:40 . 2013-09-06 04:39:18 -------- d-----w- C:\ProgramData\Kaspersky Lab

2013-08-12 19:38:40 . 2013-08-12 19:38:40 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab

2013-08-12 19:38:27 . 2013-05-03 00:11:42 90208 ----a-w- C:\Windows\system32\drivers\klflt.sys

2013-08-12 19:38:27 . 2013-05-03 00:11:42 619616 ----a-w- C:\Windows\system32\drivers\klif.sys

2013-08-12 19:32:11 . 2013-08-12 19:32:12 -------- d-----w- C:\Program Files\Classic Shell

2013-08-12 19:25:34 . 2013-08-12 19:25:49 -------- d-----w- C:\Program Files (x86)\Google

2013-08-12 19:16:56 . 2013-09-04 15:43:31 -------- d-----w- C:\Users\asus

.

 

 

((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

 

2013-08-14 01:22:44 . 2012-07-26 08:13:01 22240 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-06-27 22:04:51 . 2012-07-26 08:14:35 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-06-27 22:04:51 . 2012-07-26 08:14:35 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-06-21 01:09:44 . 2013-06-21 01:09:44 42184 ----a-w- C:\Windows\system32\drivers\taphss6.sys

 

 

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))

 

 

*Note* empty entries & legit default entries are not shown 

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"uTorrent"="C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe" [2013-08-30 04:11:59 1130576]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-16 04:02:24 35736]

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-16 04:02:22 932288]

"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" [2012-03-29 02:34:30 91432]

"ASUSWebStorage"="C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe" [2012-08-28 01:09:32 3417984]

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 14:32:50 253816]

"AVP"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\runner_avp.exe" [2013-05-03 00:11:44 24504]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"EnableUIADesktopToggle"= 0 (0x0)

"EnableCursorSuppression"= 1 (0x1)

"ConsentPromptBehaviorUser"= 3 (0x3)

 

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer3"=wdmaud.drv

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ   autocheck autochk *\0\0sdnclean64.exe

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001

 

R0 klelam;klelam;C:\Windows\system32\DRIVERS\klelam.sys;C:\Windows\SYSNATIVE\DRIVERS\klelam.sys [x]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]

R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [x]

R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\Windows\system32\DRIVERS\amppal.sys;C:\Windows\SYSNATIVE\DRIVERS\amppal.sys [x]

R3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\system32\drivers\intelaud.sys;C:\Windows\SYSNATIVE\drivers\intelaud.sys [x]

R3 MBAMProtector;MBAMProtector;C:\Windows\system32\drivers\mbam.sys;C:\Windows\SYSNATIVE\drivers\mbam.sys [x]

R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [x]

R3 taphss6;Anchorfree HSS VPN Adapter;C:\Windows\system32\DRIVERS\taphss6.sys;C:\Windows\SYSNATIVE\DRIVERS\taphss6.sys [x]

R3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\system32\DRIVERS\WUDFRd.sys;C:\Windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]

S0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys;C:\Windows\SYSNATIVE\drivers\iaStorA.sys [x]

S1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]

S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys;C:\Windows\SYSNATIVE\DRIVERS\klim6.sys [x]

S1 klwfp;klwfp;C:\Windows\system32\DRIVERS\klwfp.sys;C:\Windows\SYSNATIVE\DRIVERS\klwfp.sys [x]

S1 kneps;kneps;C:\Windows\system32\DRIVERS\kneps.sys;C:\Windows\SYSNATIVE\DRIVERS\kneps.sys [x]

S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]

S2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]

S2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe;C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [x]

S2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [x]

S2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [x]

S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]

S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe;C:\Program Files\Intel\iCLS Client\HeciServer.exe [x]

S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]

S2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 AiCharger;ASUS Charger Driver;C:\Windows\system32\DRIVERS\AiCharger.sys;C:\Windows\SYSNATIVE\DRIVERS\AiCharger.sys [x]

S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\Windows\System32\drivers\AMPPAL.sys;C:\Windows\SYSNATIVE\drivers\AMPPAL.sys [x]

S3 ATP;ASUS PS/2 Port Input Device;C:\Windows\System32\drivers\AsusTP.sys;C:\Windows\SYSNATIVE\drivers\AsusTP.sys [x]

S3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\system32\DRIVERS\BthLEEnum.sys;C:\Windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]

S3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\system32\DRIVERS\btmaux.sys;C:\Windows\SYSNATIVE\DRIVERS\btmaux.sys [x]

S3 btmhsf;btmhsf;C:\Windows\system32\DRIVERS\btmhsf.sys;C:\Windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]

S3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\drivers\AsHIDSwitch64.sys;C:\Windows\SYSNATIVE\drivers\AsHIDSwitch64.sys [x]

S3 iBtFltCoex;iBtFltCoex;C:\Windows\system32\DRIVERS\iBtFltCoex.sys;C:\Windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]

S3 IntcDAud;Intel® Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys;C:\Windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\drivers\iwdbus.sys;C:\Windows\SYSNATIVE\drivers\iwdbus.sys [x]

S3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\system32\DRIVERS\klkbdflt.sys;C:\Windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]

S3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\system32\DRIVERS\klmouflt.sys;C:\Windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]

S3 NETwNe64;@oem12.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\Windows\system32\DRIVERS\NETwew00.sys;C:\Windows\SYSNATIVE\DRIVERS\NETwew00.sys [x]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\Drivers\RtsUStor.sys;C:\Windows\SYSNATIVE\Drivers\RtsUStor.sys [x]

S3 RTL8168;Realtek 8168 NT Driver;C:\Windows\system32\DRIVERS\Rt630x64.sys;C:\Windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]

S3 usb3Hub;USB-IF USB 3.0 Hub;C:\Windows\System32\drivers\usb3Hub.sys;C:\Windows\SYSNATIVE\drivers\usb3Hub.sys [x]

S3 XHCIPort;USB-IF xHCI USB Host Controller;C:\Windows\System32\drivers\XHCIPort.sys;C:\Windows\SYSNATIVE\drivers\XHCIPort.sys [x]

 

 

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2013-09-05 09:41:41 1177552 ----a-w- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe

 

Contents of the 'Scheduled Tasks' folder

 

2013-09-06 C:\Windows\Tasks\Adobe Flash Player Updater.job

- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21 05:51:02 . 2013-08-21 05:51:02]

 

2013-09-06 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-26 05:36:01 . 2013-08-26 05:35:59]

 

2013-09-06 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-26 05:36:01 . 2013-08-26 05:35:59]

 

 

--------- X64 Entries -----------

 

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]

@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"

[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]

2012-03-13 09:23:30 1500672 ----a-w- C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSShellExt64.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]

@="{64174815-8D98-4CE6-8646-4C039977D808}"

[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]

2012-03-13 09:23:30 1500672 ----a-w- C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSShellExt64.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_U]

@="{1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D}"

[HKEY_CLASSES_ROOT\CLSID\{1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D}]

2012-03-13 09:23:30 1500672 ----a-w- C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSShellExt64.dll

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="C:\Windows\system32\igfxtray.exe" [2012-10-15 04:10:14 171040]

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2012-10-15 04:09:52 399392]

"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-10-18 09:42:22 13213328]

"BTMTrayAgent"="C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll" [2012-07-21 02:16:02 11554176]

 

------- Supplementary Scan -------

 

uLocal Page = C:\Windows\system32\blank.htm

mLocal Page = C:\Windows\SysWOW64\blank.htm

IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm

IE: ????? ??? ???? Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm

TCP: DhcpNameServer = 192.168.1.1 192.168.1.1

 

- - - - ORPHANS REMOVED - - - -

 

Toolbar-Locked - (no file)

BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)

AddRemove-Maxthon3 - C:\Program Files (x86)\Maxthon\Bin\Mx3Uninstall.exe

 

 

 

--------------------- LOCKED REGISTRY KEYS ---------------------

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

@SACL=(02 0000)
Link to post
Share on other sites

Malwarebytes Anti-Malware (PRO) 1.75.0.1300

www.malwarebytes.org

 

Database version: v2013.09.04.06

 

Windows 8 x64 NTFS

Internet Explorer 10.0.9200.16660

asus :: ASUS1 [administrator]

 

Protection: Disabled

 

9/6/2013 10:45:24 AM

mbam-log-2013-09-06 (10-45-24).txt

 

Scan type: Full scan (C:\|D:\|E:\|)

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 448370

Time elapsed: 46 minute(s), 31 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 0

(No malicious items detected)

 

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 1

C:\Users\asus\Downloads\SoftonicDownloader_for_malwarebytes-anti-malware.exe (PUP.Optional.Softonic) -> Quarantined and deleted successfully.

 

(end)
Link to post
Share on other sites

Scan with ESET Online Scan

Please go to here to run the online scannner from ESET.

  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings and ensure these options are ticked:
    • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology

[*]Click Scan[*]Wait for the scan to finish[*]If any threats were found, click the 'List of found threats' , then click Export to text file.... [*]Save it to your desktop, then please copy and paste that log as a reply to this topic.

Link to post
Share on other sites

Then we can do the cleanup - if you are facing any issues, report that immediately.

Delete junk with adwCleaner


Please download AdwCleaner to your desktop.


  • Run adwcleaner.exe.
  • Hit delete.
  • When the run is finished, it will open up a text file.
  • Please post its contents within your next reply.
  • You´ll find the log file at C:\AdwCleaner[s1].txt also.


SecurityCheck

Please download SecurityCheck: LINK1 LINK2

  • Save it to your desktop, start it and follow the instructions in the window.
  • After the scan finished the (checkup.txt) will open. Copy its content to your thread.

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.