wintsint Posted March 31, 2014 ID:811324 Share Posted March 31, 2014 Someone using my computer accidentally happened to run an .exe file yesterday and installed a ton of malware software onto the computer. I removed them individually via Program Uninstall ("cleaning software,etc") however, they probably imbedded deeper roots within the system files.While trying to run a complete custom scan with MalwareBytes 2.0 last night, the computer crashed with a BSOD. The same happened when I did a custom scan a while ago so the problem repeated itself. The scan does find malware on the system while the scan is running, but due to the BSOD, it is unable to remove it. I run BitDefender Total Security as the primary AV on my system, and it happened to only locate 1 file worth removing during a full system scan. The two outputs files via dds:DDS (Ver_2012-11-20.01) - NTFS_AMD64Internet Explorer: 11.0.9600.16521Run by JEDI at 14:04:37 on 2014-03-31Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.16349.13063 [GMT -7:00].AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}FW: Bitdefender Firewall *Enabled* {A23392FD-84B9-F933-2C71-81E751F6EF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Program Files\Bitdefender\Bitdefender\vsserv.exeC:\Windows\system32\nvvsvc.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exeC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Windows\system32\svchost.exe -k NetworkServiceC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exeC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exeC:\Windows\SysWOW64\ASGT.exeC:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\SysWOW64\PnkBstrA.exeC:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Program Files\Bitdefender\Bitdefender\updatesrv.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\system32\taskeng.exec:\Program Files\Microsoft Mouse and Keyboard Center\itype.exec:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exeC:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exeC:\Windows\System32\rundll32.exeC:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXEC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Program Files (x86)\ASUS\GPU Tweak\3D_Enable.exeC:\Program Files (x86)\WizMouse\wizmouse.exeC:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exeC:\Program Files\Bitdefender\Bitdefender\bdagent.exeC:\Program Files\Logitech\Gaming Software\LWEMon.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Windows\system32\SearchIndexer.exeC:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exeC:\Program Files (x86)\Medialink\MWN-USB150N\UI.exeC:\Program Files\Bitdefender\Bitdefender\pmbxag.exeC:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exeC:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exeC:\Program Files\Microsoft Office\Office14\MSOSYNC.EXEC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Windows\SysWOW64\rundll32.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exeC:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exeC:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exeC:\Windows\system32\SearchProtocolHost.exeC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exeC:\Windows\system32\wuauclt.exeC:\Windows\servicing\TrustedInstaller.exeC:\Windows\system32\SearchFilterHost.exeC:\Windows\SysWOW64\DllHost.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = about:blankmStart Page = about:blankmWinlogon: Userinit = userinit.exeBHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dllBHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLLBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLuRun: [Medialink Utilty] C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe -suRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"uRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"uRun: [f.lux] "C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe" /noshowuRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorunuRun: [AdobeBridge] <no file>mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [sE61T-UserTools] C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe /smRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exemRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbyloginmRun: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"mRun: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exedRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"dRun: [bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizarddRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"dRunOnce: [Application Restart #0] C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe /RestartByRestartManager:D187C21E-DE40-4c3c-962F-256FB24C7B5AStartupFolder: C:\Users\JEDI\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllTCP: NameServer = 192.168.1.1TCP: Interfaces\{8915748F-7D56-4967-B75D-FB550EB0A255} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{ED61F2FC-4422-4966-B893-37B1E2BE1B98} : DHCPNameServer = 192.168.1.1Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLLmASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-mStart Page = about:blankx64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dllx64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLLx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -sx64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStartx64-Run: [bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"x64-Run: [start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /nouix64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServicesx64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dllx64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-SSODL: WebCheck - <orphaned>x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL.================= FIREFOX ===================.FF - ProfilePath - C:\Users\JEDI\AppData\Roaming\Mozilla\Firefox\Profiles\jau5928u.default\FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLLFF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLLFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dllFF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\myitlab\plugin\npenlite.dllFF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dllFF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dllFF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dllFF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dllFF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll.============= SERVICES / DRIVERS ===============.R0 avc3;avc3;C:\Windows\System32\drivers\avc3.sys [2013-11-15 893440]R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2014-2-21 116000]R0 gzflt;gzflt;C:\Windows\System32\drivers\gzflt.sys [2013-11-15 150256]R0 tib;Acronis TIB Manager;C:\Windows\System32\drivers\tib.sys [2014-2-21 1120032]R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sys [2014-2-21 183224]R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2014-2-21 161568]R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2014-2-21 117024]R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [2013-11-15 93600]R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2013-11-15 103504]R1 BDVEDISK;BDVEDISK;C:\Windows\System32\drivers\bdvedisk.sys [2013-11-15 76944]R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-2-21 3873784]R2 ASGT;ASGT;C:\Windows\SysWOW64\ASGT.exe [2012-1-17 55296]R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-26 1593632]R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-10-30 16939296]R2 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe [2013-11-15 94624]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-3-26 411936]R2 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-8-21 9735112]R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2013-11-15 67320]R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2014-2-21 367200]R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-11-3 130536]R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-11-3 395752]R3 avchv;avchv Function Driver;C:\Windows\System32\drivers\avchv.sys [2013-11-15 261056]R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-17 283064]R3 IOMap;IOMap;C:\Windows\System32\drivers\IOMap64.sys [2014-3-30 24824]R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-3-26 39200]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-10-30 646248]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]S3 andnetadb;ADB Interface DriverNet;C:\Windows\System32\drivers\lgandnetadb.sys [2014-3-16 31744]S3 avckf;avckf;C:\Windows\System32\drivers\avckf.sys [2013-11-15 635392]S3 bdfwfpf_pc;bdfwfpf_pc;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-11-15 121928]S3 BDSandBox;BDSandBox;C:\Windows\System32\drivers\bdsandbox.sys [2013-11-15 82824]S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]S3 ffusb2audio;Focusrite USB 2.0 Audio Driver;C:\Windows\System32\drivers\ffusb2audio.sys [2013-12-25 127280]S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2013-11-15 137336]S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-3-11 111616]S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-1-18 351136]S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-1-18 4865568]S3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-3-24 119512]S3 NVFLASH;NVFLASH;C:\Windows\System32\drivers\nvflash.sys [2013-11-20 15648]S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-11-16 19456]S3 SaiK0BD3;SaiK0BD3;C:\Windows\System32\drivers\SaiK0BD3.sys [2011-7-20 176136]S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-11-16 29696]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-12 56832]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-11-16 30208]S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-3-30 1255736]S4 BdDesktopParental;Bitdefender Desktop Parental Control;C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-11-15 77632].=============== Created Last 30 ================.2014-03-31 06:10:38 24824 ----a-w- C:\Windows\System32\drivers\IOMap64.sys2014-03-31 00:42:08 -------- d-sh--r- C:\acroldr2014-03-31 00:37:13 -------- d-----w- C:\Windows\System32\appmgmt2014-03-31 00:11:20 -------- d-----w- C:\Users\JEDI\AppData\Local\MicroPCFix2014-03-31 00:10:06 -------- d-----w- C:\Program Files (x86)\Bench2014-03-31 00:07:57 -------- d-----w- C:\Users\JEDI\AppData\Local\VisualBeeExe2014-03-31 00:07:21 -------- d-----w- C:\ProgramData\VisualBee2014-03-31 00:07:19 -------- d-----w- C:\Users\JEDI\AppData\Local\emaze2014-03-31 00:07:13 20312 ----a-w- C:\Windows\System32\roboot64.exe2014-03-31 00:07:12 -------- d-----w- C:\Users\JEDI\AppData\Roaming\systweak2014-03-31 00:07:05 -------- d-----w- C:\Program Files\Conduit2014-03-31 00:07:04 -------- d-----w- C:\Users\JEDI\AppData\Roaming\ValueApps2014-03-31 00:07:04 -------- d-----w- C:\Users\JEDI\AppData\Local\Conduit2014-03-31 00:07:04 -------- d-----w- C:\Program Files (x86)\Conduit2014-03-30 23:07:13 419840 ----a-w- C:\Windows\System32\systemcplx64.dll2014-03-30 23:07:13 15360 ----a-w- C:\Windows\System32\slwga.dll2014-03-30 23:07:13 13824 ----a-w- C:\Windows\32slwga.dll2014-03-30 06:33:03 -------- d-----w- C:\Program Files (x86)\DiskCheckup2014-03-26 16:20:23 599840 ----a-w- C:\Windows\SysWow64\nvStreaming.exe2014-03-26 16:10:52 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys2014-03-26 16:10:52 33056 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll2014-03-25 06:10:08 119512 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys2014-03-25 06:10:08 119512 ----a-w- C:\Windows\System32\drivers\6IKEBBI1~MBAMSwissArmy.sys~2014-03-25 06:09:58 88280 ----a-w- C:\Windows\System32\drivers\NH5PA5H5~mbamchameleon.sys~2014-03-25 06:09:58 88280 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys2014-03-25 06:09:57 63192 ----a-w- C:\Windows\System32\drivers\mwac.sys2014-03-25 06:09:57 63192 ----a-w- C:\Windows\System32\drivers\BREBJ28D~mwac.sys~2014-03-25 06:09:57 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware2014-03-18 06:43:07 -------- d-----r- C:\Users\JEDI\Google Drive2014-03-16 07:43:06 -------- d-----w- C:\Users\JEDI\.android2014-03-16 07:37:54 31744 ----a-w- C:\Windows\System32\drivers\lgandnetadb.sys2014-03-16 07:37:54 31744 ----a-w- C:\Windows\System32\drivers\4R4J2P8O~lgandnetadb.sys~2014-03-16 07:37:54 1919968 ----a-w- C:\Windows\System32\wdfcoinstaller01005.dll2014-03-16 07:37:54 1919968 ----a-w- C:\Windows\System32\DHDFHIUO~wdfcoinstaller01005.dll~2014-03-16 07:37:53 -------- d-----w- C:\Program Files (x86)\LG Electronics2014-03-16 07:05:48 24824 ----a-w- C:\Windows\System32\drivers\FU5CPV6J~IOMap64.sys~2014-03-13 03:53:16 -------- d-----w- C:\Users\JEDI\AppData\Local\bdch2014-03-13 03:53:14 -------- d-----w- C:\ProgramData\bdch2014-03-12 00:34:20 624128 ----a-w- C:\Windows\System32\SG2RTO97~qedit.dll~2014-03-12 00:34:20 624128 ----a-w- C:\Windows\System32\qedit.dll2014-03-12 00:34:20 509440 ----a-w- C:\Windows\SysWow64\qedit.dll2014-03-12 00:34:20 509440 ----a-w- C:\Windows\SysWow64\HK54NTM5~qedit.dll~2014-03-12 00:34:20 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll2014-03-12 00:34:20 1424384 ----a-w- C:\Windows\System32\VI2I3Q73~WindowsCodecs.dll~2014-03-12 00:34:20 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll2014-03-12 00:34:20 1230336 ----a-w- C:\Windows\SysWow64\MHJE0S3M~WindowsCodecs.dll~2014-03-04 00:18:27 6574592 ----a-w- C:\Windows\System32\mstscax.dll2014-03-04 00:18:27 6574592 ----a-w- C:\Windows\System32\EC437VED~mstscax.dll~2014-03-04 00:18:27 5694464 ----a-w- C:\Windows\SysWow64\T2FVESLP~mstscax.dll~2014-03-04 00:18:27 5694464 ----a-w- C:\Windows\SysWow64\mstscax.dll.==================== Find3M ====================.2014-03-29 02:54:56 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2014-03-29 02:54:56 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2014-03-29 02:27:21 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex02014-03-26 00:08:49 290184 ----a-w- C:\Windows\SysWow64\OVD8CCNP~PnkBstrB.xtr~2014-03-26 00:08:49 290184 ----a-w- C:\Windows\SysWow64\2AD103VQ~PnkBstrB.exe~2014-03-23 06:03:16 290184 ----a-w- C:\Windows\SysWow64\QPLJS4TV~PnkBstrB.ex0~2014-03-12 06:12:32 71048 ----a-w- C:\Windows\SysWow64\O6UD5UQV~FlashPlayerCPLApp.cpl~2014-03-12 06:12:32 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2014-03-12 06:12:32 692616 ----a-w- C:\Windows\SysWow64\TDLQ6DE1~FlashPlayerApp.exe~2014-03-12 06:12:32 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2014-03-05 16:26:04 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys2014-03-04 13:06:00 6714312 ----a-w- C:\Windows\System32\nvcpl.dll2014-03-04 13:06:00 3497816 ----a-w- C:\Windows\System32\nvsvc64.dll2014-03-04 13:05:58 922968 ------w- C:\Windows\System32\nvvsvc.exe2014-03-04 13:05:58 64968 ----a-w- C:\Windows\System32\nvshext.dll2014-03-04 13:05:57 386336 ----a-w- C:\Windows\System32\nvmctray.dll2014-03-04 13:05:53 3649185 ----a-w- C:\Windows\System32\nvcoproc.bin2014-03-01 06:05:15 23133696 ----a-w- C:\Windows\System32\LU2021TO~mshtml.dll~2014-03-01 05:17:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb2014-03-01 05:17:02 2724864 ----a-w- C:\Windows\System32\HAFA1AQQ~mshtml.tlb~2014-03-01 05:16:26 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll2014-03-01 05:16:26 4096 ----a-w- C:\Windows\System32\A53L17MS~ieetwcollectorres.dll~2014-03-01 04:58:28 2765824 ----a-w- C:\Windows\System32\3JRJ0TPL~iertutil.dll~2014-03-01 04:52:55 66048 ----a-w- C:\Windows\System32\iesetup.dll2014-03-01 04:52:55 66048 ----a-w- C:\Windows\System32\C46UF4JU~iesetup.dll~2014-03-01 04:51:59 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll2014-03-01 04:51:59 48640 ----a-w- C:\Windows\System32\32NLQDPG~ieetwproxystub.dll~2014-03-01 04:42:17 53760 ----a-w- C:\Windows\System32\M5DT4NKT~jsproxy.dll~2014-03-01 04:40:43 33792 ----a-w- C:\Windows\System32\0NQ84VNF~iernonce.dll~2014-03-01 04:37:12 574976 ----a-w- C:\Windows\System32\34MF3I0F~ieui.dll~2014-03-01 04:33:52 139264 ----a-w- C:\Windows\System32\ieUnatt.exe2014-03-01 04:33:52 139264 ----a-w- C:\Windows\System32\GJ9F2C14~ieUnatt.exe~2014-03-01 04:33:34 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe2014-03-01 04:33:34 111616 ----a-w- C:\Windows\System32\25KM2L6R~ieetwcollector.exe~2014-03-01 04:32:59 708608 ----a-w- C:\Windows\System32\Q3T1TSK3~jscript9diag.dll~2014-03-01 04:32:59 708608 ----a-w- C:\Windows\System32\jscript9diag.dll2014-03-01 04:30:58 17074688 ----a-w- C:\Windows\SysWow64\0LAR88P1~mshtml.dll~2014-03-01 04:23:49 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe2014-03-01 04:23:49 940032 ----a-w- C:\Windows\System32\MC4VV6IJ~MsSpellCheckingFacility.exe~2014-03-01 04:17:43 218624 ----a-w- C:\Windows\System32\48NG5FR2~ie4uinit.exe~2014-03-01 04:11:20 2724864 ----a-w- C:\Windows\SysWow64\Q58PKJ8Q~mshtml.tlb~2014-03-01 04:11:20 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb2014-03-01 04:02:07 195584 ----a-w- C:\Windows\System32\6P6184RA~msrating.dll~2014-03-01 03:54:33 5768704 ----a-w- C:\Windows\System32\jscript9.dll2014-03-01 03:54:33 5768704 ----a-w- C:\Windows\System32\IPJUH9IP~jscript9.dll~2014-03-01 03:52:43 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll2014-03-01 03:52:43 61952 ----a-w- C:\Windows\SysWow64\7I19BO4S~iesetup.dll~2014-03-01 03:51:53 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll2014-03-01 03:51:53 51200 ----a-w- C:\Windows\SysWow64\D19HFQ7T~ieetwproxystub.dll~2014-03-01 03:47:28 2168320 ----a-w- C:\Windows\SysWow64\Q0OKS4OC~iertutil.dll~2014-03-01 03:43:55 43008 ----a-w- C:\Windows\SysWow64\MCKH1035~jsproxy.dll~2014-03-01 03:43:28 32768 ----a-w- C:\Windows\SysWow64\UBLK5F8R~iernonce.dll~2014-03-01 03:42:12 627200 ----a-w- C:\Windows\System32\32INSGEF~msfeeds.dll~2014-03-01 03:40:17 440832 ----a-w- C:\Windows\SysWow64\87SPFINB~ieui.dll~2014-03-01 03:38:26 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe2014-03-01 03:38:26 112128 ----a-w- C:\Windows\SysWow64\HFPSI54D~ieUnatt.exe~2014-03-01 03:37:35 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll2014-03-01 03:37:35 553472 ----a-w- C:\Windows\SysWow64\1J56GJJD~jscript9diag.dll~2014-03-01 03:35:11 2041856 ----a-w- C:\Windows\System32\KMCRAMHR~inetcpl.cpl~2014-03-01 03:35:11 2041856 ----a-w- C:\Windows\System32\inetcpl.cpl2014-03-01 03:18:25 13051904 ----a-w- C:\Windows\System32\8N5V9BO8~ieframe.dll~2014-03-01 03:16:09 164864 ----a-w- C:\Windows\SysWow64\2Q5CMH4P~msrating.dll~2014-03-01 03:14:15 4244480 ----a-w- C:\Windows\SysWow64\jscript9.dll2014-03-01 03:14:15 4244480 ----a-w- C:\Windows\SysWow64\AA3KNG8F~jscript9.dll~2014-03-01 03:10:28 2334208 ----a-w- C:\Windows\System32\wininet.dll2014-03-01 03:10:28 2334208 ----a-w- C:\Windows\System32\29S3BADH~wininet.dll~2014-03-01 03:03:49 524288 ----a-w- C:\Windows\SysWow64\573LSMJB~msfeeds.dll~2014-03-01 03:00:08 1964032 ----a-w- C:\Windows\SysWow64\inetcpl.cpl2014-03-01 03:00:08 1964032 ----a-w- C:\Windows\SysWow64\0V7LLUMT~inetcpl.cpl~2014-03-01 02:57:18 11266048 ----a-w- C:\Windows\SysWow64\B3ADUJC7~ieframe.dll~2014-03-01 02:38:44 1393664 ----a-w- C:\Windows\System32\DP373PQ5~urlmon.dll~2014-03-01 02:32:16 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll2014-03-01 02:32:16 1820160 ----a-w- C:\Windows\SysWow64\9K6SIB9S~wininet.dll~2014-03-01 02:27:15 1156096 ----a-w- C:\Windows\SysWow64\MVRVVLJK~urlmon.dll~2014-03-01 02:25:42 703488 ----a-w- C:\Windows\SysWow64\5UNNT0OQ~ieapfltr.dll~2014-03-01 02:25:22 817664 ----a-w- C:\Windows\System32\FT8M1RTD~ieapfltr.dll~2014-02-21 09:01:49 367200 ----a-w- C:\Windows\System32\drivers\afcdp.sys2014-02-21 09:01:46 1464096 ----a-w- C:\Windows\System32\drivers\tdrpman.sys2014-02-21 09:01:42 183224 ----a-w- C:\Windows\System32\drivers\tib_mounter.sys2014-02-21 09:01:40 1120032 ----a-w- C:\Windows\System32\drivers\tib.sys2014-02-21 09:01:37 161568 ----a-w- C:\Windows\System32\drivers\vididr.sys2014-02-21 09:01:36 117024 ----a-w- C:\Windows\System32\drivers\vidsflt.sys2014-02-21 09:01:35 269600 ----a-w- C:\Windows\System32\drivers\snapman.sys2014-02-21 09:01:34 116000 ----a-w- C:\Windows\System32\drivers\fltsrv.sys2014-02-18 22:09:30 49940480 ----a-w- C:\Program Files (x86)\GUT935A.tmp2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\win32k.sys2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\DIQS22T0~win32k.sys~2014-02-06 20:52:08 95915 ----a-w- C:\ProgramData\1391719925.bdinstall.bin2014-02-06 20:51:00 95915 ----a-w- C:\ProgramData\1391719854.bdinstall.bin2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\wer.dll2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\JGD07PJO~wer.dll~2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\wer.dll2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\9HOR3VEN~wer.dll~2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\wwansvc.dll2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\DJDUIQK4~wwansvc.dll~2014-01-27 14:43:55 893440 ------w- C:\Windows\System32\drivers\avc3.sys2014-01-27 14:21:36 635392 ----a-w- C:\Windows\System32\drivers\avckf.sys2014-01-21 02:54:53 1048152 ----a-w- C:\Windows\SysWow64\nvspcap.dll2014-01-21 02:54:22 1179576 ----a-w- C:\Windows\System32\nvspcap64.dll2014-01-03 22:59:32 61 --sh--w- C:\Windows\cnerolf.bin.============= FINISH: 14:05:47.45 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 UltimateBoot Device: \Device\HarddiskVolume1Install Date: 10/30/2013 3:21:10 PMSystem Uptime: 3/31/2014 1:47:00 PM (1 hours ago).Motherboard: ASUSTeK Computer INC. | | P8Z68-V LEProcessor: Intel® Core i7-3770K CPU @ 3.50GHz | LGA1155 | 3501/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 931 GiB total, 409.97 GiB free.D: is CDROM ()E: is FIXED (exFAT) - 931 GiB total, 438.548 GiB free..==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP108: 3/30/2014 4:03:21 PM - Windows Modules InstallerRP109: 3/30/2014 5:20:47 PM - Windows UpdateRP110: 3/30/2014 9:23:40 PM - Restore Operation.==== Installed Programs ======================. Tools for .Net 3.5µTorrent3DMark 117-Zip 9.20 (x64 edition)Ableton Live 9 SuiteAcronis True Image 2014Adobe Flash Player 12 PluginAdobe Photoshop Lightroom 5.2 64-bitAdobe Reader XI (11.0.06)aerosoft's - Lukla X - Mount EverestAmazon KindleAsmedia ASM104x USB 3.0 Host Controller DriverASUS GPU TweakBatman: Arkham Asylum GOTY EditionBatman: Arkham City GOTYBattlefield 3™Battlelog Web PluginsBioShock InfiniteBitdefender Total SecurityBlend for Visual Studio 2012Blend for Visual Studio 2012 ENU resourcesBlend for Visual Studio Add-in for Adobe FXG ImportBlend for Visual Studio SDK for .NET 4.5Blend for Visual Studio SDK for Silverlight 5C90B King Air HD SERIES FSXCPUID CPU-Z 1.67.1CPUID HWMonitor 1.24D3DX10DAEMON Tools LiteDefinition Update for Microsoft Office 2010 (KB982726) 64-Bit EditionDiskCheckup v3.2Dotfuscator and Analytics Community EditionDropboxEntity Framework Designer for Visual Studio 2012 - enuESN SonarEuro Truck Simulator 2f.luxFar Cry® 3Fraps (remove only)Futuremark SystemInfoGeekbench 3GeForce Experience NvStream Client ComponentsGoogle ChromeGoogle DriveHandBrake 0.9.9.1Heaven Benchmark version 4.0IIS 8.0 ExpressIIS Express Application Compatibility Database for x64IIS Express Application Compatibility Database for x86JavaScript ToolingJust Cause 2LG United Mobile DriverLinuxLive USB CreatorLocalESPCLocalESPCui for en-usLogitech Gaming Software 5.10Malwarebytes Anti-Malware version 2.00.0.1000Max Payne 3Medialink MWN-USB150NMetro 2033Metro: Last LightMicrosoft .NET Framework 4 Multi-Targeting PackMicrosoft .NET Framework 4.5 Multi-Targeting PackMicrosoft .NET Framework 4.5 SDKMicrosoft .NET Framework 4.5.1Microsoft Application Error ReportingMicrosoft ASP.NET MVC 3Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools UpdateMicrosoft ASP.NET MVC 4 - Visual Studio 2012 Tools - ENUMicrosoft ASP.NET MVC 4 RuntimeMicrosoft ASP.NET Web PagesMicrosoft ASP.NET Web Pages - Visual Studio 2012 ToolsMicrosoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - ENUMicrosoft ASP.NET Web Pages 2 RuntimeMicrosoft Expression Blend SDK for .NET 4Microsoft Expression Blend SDK for Silverlight 4Microsoft Flight Simulator XMicrosoft Flight Simulator X Service Pack 2Microsoft Help Viewer 2.0Microsoft LightSwitch for Visual Studio 2012 CoreMicrosoft LightSwitch for Visual Studio 2012 CoreRes - ENUMicrosoft LightSwitch for Visual Studio 2012 v3.0 CoreMicrosoft LightSwitch for Visual Studio 2012 v3.0 CoreRes - ENUMicrosoft Mouse and Keyboard CenterMicrosoft NuGet - Visual Studio 2012Microsoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Groove MUI (English) 2010Microsoft Office InfoPath MUI (English) 2010Microsoft Office Office 32-bit Components 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Professional Plus 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared 32-bit MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Word MUI (English) 2010Microsoft Portable Library Multi-Targeting PackMicrosoft Portable Library Multi-Targeting Pack Language Pack - enuMicrosoft Report Viewer Add-On for Visual Studio 2012Microsoft SilverlightMicrosoft Silverlight 4 SDKMicrosoft Silverlight 5 SDKMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft SQL Server 2012 Command Line UtilitiesMicrosoft SQL Server 2012 Data-Tier App FrameworkMicrosoft SQL Server 2012 Express LocalDBMicrosoft SQL Server 2012 Management ObjectsMicrosoft SQL Server 2012 Management Objects (x64)Microsoft SQL Server 2012 Native ClientMicrosoft SQL Server 2012 T-SQL Language ServiceMicrosoft SQL Server 2012 Transact-SQL Compiler ServiceMicrosoft SQL Server 2012 Transact-SQL ScriptDomMicrosoft SQL Server Compact 4.0 SP1 x64 ENUMicrosoft SQL Server Data Tools - enu (11.1.20627.00)Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)Microsoft SQL Server System CLR TypesMicrosoft SQL Server System CLR Types (x64)Microsoft System CLR Types for SQL Server 2012Microsoft System CLR Types for SQL Server 2012 (x64)Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727Microsoft Visual C++ 2012 32bit Compilers - ENU ResourcesMicrosoft Visual C++ 2012 CompilersMicrosoft Visual C++ 2012 Compilers - ENU ResourcesMicrosoft Visual C++ 2012 Core LibrariesMicrosoft Visual C++ 2012 Extended LibrariesMicrosoft Visual C++ 2012 Microsoft Foundation Class LibrariesMicrosoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.51106Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106Microsoft Visual C++ 2012 x86-x64 CompilersMicrosoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.51106Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106Microsoft Visual Studio 2010 Office Developer Tools (x64)Microsoft Visual Studio 2010 Tools for Office Runtime (x64)Microsoft Visual Studio 2012 DevenvMicrosoft Visual Studio 2012 Devenv ResourcesMicrosoft Visual Studio 2012 Performance Collection ToolsMicrosoft Visual Studio 2012 Performance Collection Tools - ENUMicrosoft Visual Studio 2012 PreparationMicrosoft Visual Studio 2012 SharePoint Developer ToolsMicrosoft Visual Studio 2012 SharePoint Developer Tools ENU Language PackMicrosoft Visual Studio 2012 Shell (Minimum)Microsoft Visual Studio 2012 Shell (Minimum) Interop AssembliesMicrosoft Visual Studio 2012 Shell (Minimum) ResourcesMicrosoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENUMicrosoft Visual Studio Professional 2012Microsoft Visual Studio Professional 2012 - ENUMicrosoft Visual Studio Team Foundation Server 2012 Object ModelMicrosoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENUMicrosoft Visual Studio Team Foundation Server 2012 Team ExplorerMicrosoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENUMicrosoft Visual Studio Ultimate 2012 XAML UI Designer CoreMicrosoft Visual Studio Ultimate 2012 XAML UI Designer enu ResourcesMicrosoft Web Deploy 3.0Microsoft Web Deploy dbSqlPackage Provider - enuMicrosoft Web Developer Tools 2012.2 - Visual Studio 2012Microsoft Web Platform Installer 4.0Microsoft_VC80_CRT_x86Microsoft_VC90_CRT_x86Movie MakerMozilla Firefox 28.0 (x86 en-US)Mozilla Maintenance ServiceMSVCRTMSVCRT110MSVCRT110_amd64MSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)MSXML 4.0 SP2 Parser and SDKmyitlab Plug-in/ActiveX InstallerNVIDIA 3D Vision Controller Driver 335.21NVIDIA 3D Vision Driver 335.23NVIDIA Control Panel 335.23NVIDIA GeForce Experience 1.8.2NVIDIA Graphics Driver 335.23NVIDIA HD Audio Driver 1.3.30.1NVIDIA Install ApplicationNVIDIA LED Visualizer 1.0NVIDIA Network ServiceNVIDIA PhysXNVIDIA PhysX System Software 9.13.1220NVIDIA ShadowPlay 11.10.11NVIDIA Stereoscopic 3D DriverNVIDIA Update 11.10.11NVIDIA Update CoreNVIDIA Virtual Audio 1.2.20OriginPDF Settings CS6Perixx Gaming mouse version 1.0.7Photo CommonPhoto GalleryPMDG 737 8900 NGXPMDG BAe JS4100PreEmptive Analytics Visual Studio ComponentsPrerequisites for SSDTPRO-ATC/X version 1.2.2.6PS3 Media ServerPunkBuster ServicesRealtek Ethernet Controller DriverRealtek High Definition Audio DriverREX 4 - Texture DirectRockstar Games Social ClubSecure Download ManagerSecurity Update for Microsoft .NET Framework 4.5.1 (KB2898869)Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553284) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687423) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826023) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826035) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2850016) 64-Bit EditionService Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit EditionSHIELD StreamingSteamTom Clancy's Splinter Cell® Blacklist™Tomb RaiderUnigine Valley Benchmark version 1.0Update for (KB2504637)Update for Microsoft Access 2010 (KB2553446) 64-Bit EditionUpdate for Microsoft Filter Pack 2.0 (KB2837594) 64-Bit EditionUpdate for Microsoft InfoPath 2010 (KB2817369) 64-Bit EditionUpdate for Microsoft InfoPath 2010 (KB2817396) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2589298) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2589352) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2589375) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2597087) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2760598) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2794737) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2825640) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2850079) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2863818) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2878225) 64-Bit EditionUpdate for Microsoft OneNote 2010 (KB2837595) 64-Bit EditionUpdate for Microsoft Outlook 2010 (KB2687567) 64-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2553145) 64-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2775360) 64-Bit EditionUpdate for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit EditionUpdate for Microsoft Visio 2010 (KB2878227) 64-Bit EditionUpdate for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit EditionUpdate for Microsoft Visual Studio 2012 (KB2781514)Update for Microsoft Word 2010 (KB2837593) 64-Bit EditionUplayVisual Studio 2012 PrerequisitesVisual Studio 2012 Prerequisites - ENU Language PackVisual Studio 2012 Update 2 (KB2707250)Visual Studio Extensions for Windows Library for JavaScriptVLC media player 2.1.4WCF Data Services 5.0 (for OData v3) Primary ComponentsWCF Data Services Tools for Microsoft Visual Studio 2012WCF RIA Services V1.0 SP2Windows App Certification Kit Native ComponentsWindows App Certification Kit x64Windows Azure Tools for LightSwitch HTML Client for Visual Studio 2012Windows Driver Package - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1)Windows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWindows Runtime Intellisense Content - en-usWindows Software Development KitWindows Software Development Kit DirectX x64 RemoteWindows Software Development Kit DirectX x86 RemoteWindows Software Development Kit for Windows Store AppsWindows Software Development Kit for Windows Store Apps DirectX x64 RemoteWindows Software Development Kit for Windows Store Apps DirectX x86 RemoteWindows XP Targeting with C++WizMouse v1.7.0.3.==== Event Viewer Messages From Past Week ========.3/30/2014 9:03:46 PM, Error: Service Control Manager [7023] - The SPP Notification Service service terminated with the following error: Access is denied.3/30/2014 5:18:08 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.3/30/2014 3:39:27 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding3/30/2014 11:01:23 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR2.3/29/2014 5:49:49 PM, Error: Microsoft-Windows-BitLocker-Driver [24620] - Encrypted volume check: Volume information on cannot be read.3/28/2014 3:41:55 PM, Error: VDS Basic Provider [1] - Unexpected failure. Error code: D@010100043/25/2014 5:58:08 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR5.3/24/2014 10:43:15 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR2..==== End Of File =========================== Link to post Share on other sites More sharing options...
Maniac Posted April 1, 2014 ID:811929 Share Posted April 1, 2014 Hello wintsint and ! My name is Borislav and I will be glad to help you solve your malware problem. Please note:If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.Make sure you read all of the instructions and fixes thoroughly before continuing with them.Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.P2P/Piracy Warning: If you're using Peer 2 Peer software such as µTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here. Failure to remove or disable such software will result in your topic being closed and no further assistance being provided. If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy. When you are done, please generate a new fresh DDS log file. Link to post Share on other sites More sharing options...
wintsint Posted April 2, 2014 Author ID:812042 Share Posted April 2, 2014 Thank you. I'd like to continue receiving instructions on possible malware removal. Here are the text files : DDS (Ver_2012-11-20.01) - NTFS_AMD64Internet Explorer: 11.0.9600.16521Run by JEDI at 20:01:34 on 2014-04-01Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.16349.12119 [GMT -7:00].AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}FW: Bitdefender Firewall *Enabled* {A23392FD-84B9-F933-2C71-81E751F6EF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Program Files\Bitdefender\Bitdefender\vsserv.exeC:\Windows\system32\nvvsvc.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exeC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exeC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exeC:\Windows\SysWOW64\ASGT.exeC:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\SysWOW64\PnkBstrA.exeC:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Program Files\Bitdefender\Bitdefender\updatesrv.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Windows\system32\Dwm.exeC:\Windows\system32\taskhost.exeC:\Windows\Explorer.EXEC:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\system32\taskeng.exec:\Program Files\Microsoft Mouse and Keyboard Center\itype.exec:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exeC:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exeC:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exeC:\Program Files\Bitdefender\Bitdefender\bdagent.exeC:\Program Files\Logitech\Gaming Software\LWEMon.exeC:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exeC:\Program Files (x86)\Medialink\MWN-USB150N\UI.exeC:\Program Files\Bitdefender\Bitdefender\pmbxag.exeC:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exeC:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exeC:\Program Files\Microsoft Office\Office14\MSOSYNC.EXEC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Program Files (x86)\ASUS\GPU Tweak\3D_Enable.exeC:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exeC:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exeC:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\system32\SearchIndexer.exeC:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exeC:\Windows\system32\wuauclt.exeC:\Program Files\SUPERAntiSpyware\SASCORE64.EXEC:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXEC:\Program Files (x86)\WizMouse\wizmouse.exeC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exeC:\Windows\system32\svchost.exe -k SDRSVCC:\Windows\system32\SearchProtocolHost.exeC:\Windows\system32\SearchFilterHost.exeC:\Windows\system32\taskhost.exeC:\Program Files\Bitdefender\Bitdefender\downloader.exeC:\Windows\system32\vssvc.exeC:\Windows\System32\svchost.exe -k swprvC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = about:blankmStart Page = about:blankmWinlogon: Userinit = userinit.exe,BHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dllBHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLLBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLuRun: [Medialink Utilty] C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe -suRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"uRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"uRun: [f.lux] "C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe" /noshowuRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorunuRun: [AdobeBridge] <no file>mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [sE61T-UserTools] C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe /smRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exemRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbyloginmRun: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"mRun: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exedRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"dRun: [bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizarddRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"dRunOnce: [Application Restart #0] C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe /RestartByRestartManager:D187C21E-DE40-4c3c-962F-256FB24C7B5AStartupFolder: C:\Users\JEDI\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllTCP: NameServer = 192.168.1.1TCP: Interfaces\{8915748F-7D56-4967-B75D-FB550EB0A255} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{ED61F2FC-4422-4966-B893-37B1E2BE1B98} : DHCPNameServer = 192.168.1.1Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLLmASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-mStart Page = about:blankx64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dllx64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLLx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -sx64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStartx64-Run: [bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"x64-Run: [start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /nouix64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServicesx64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dllx64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-SSODL: WebCheck - <orphaned>x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL.================= FIREFOX ===================.FF - ProfilePath - C:\Users\JEDI\AppData\Roaming\Mozilla\Firefox\Profiles\jau5928u.default\FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLLFF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLLFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dllFF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\myitlab\plugin\npenlite.dllFF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dllFF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dllFF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dllFF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dllFF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll.============= SERVICES / DRIVERS ===============.R0 avc3;avc3;C:\Windows\System32\drivers\avc3.sys [2013-11-15 893440]R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2014-2-21 116000]R0 gzflt;gzflt;C:\Windows\System32\drivers\gzflt.sys [2013-11-15 150256]R0 tib;Acronis TIB Manager;C:\Windows\System32\drivers\tib.sys [2014-2-21 1120032]R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sys [2014-2-21 183224]R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2014-2-21 161568]R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2014-2-21 117024]R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [2013-11-15 93600]R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2013-11-15 103504]R1 BDVEDISK;BDVEDISK;C:\Windows\System32\drivers\bdvedisk.sys [2013-11-15 76944]R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-10-10 144152]R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-2-21 3873784]R2 ASGT;ASGT;C:\Windows\SysWOW64\ASGT.exe [2012-1-17 55296]R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-26 1593632]R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-10-30 16939296]R2 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe [2013-11-15 94624]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-3-26 411936]R2 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-8-21 9735112]R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2013-11-15 67320]R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2014-2-21 367200]R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-11-3 130536]R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-11-3 395752]R3 avchv;avchv Function Driver;C:\Windows\System32\drivers\avchv.sys [2013-11-15 261056]R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-17 283064]R3 IOMap;IOMap;C:\Windows\System32\drivers\IOMap64.sys [2014-3-30 24824]R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-3-26 39200]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-10-30 646248]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]S3 andnetadb;ADB Interface DriverNet;C:\Windows\System32\drivers\lgandnetadb.sys [2014-3-16 31744]S3 avckf;avckf;C:\Windows\System32\drivers\avckf.sys [2013-11-15 635392]S3 bdfwfpf_pc;bdfwfpf_pc;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-11-15 121928]S3 BDSandBox;BDSandBox;C:\Windows\System32\drivers\bdsandbox.sys [2013-11-15 82824]S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]S3 ffusb2audio;Focusrite USB 2.0 Audio Driver;C:\Windows\System32\drivers\ffusb2audio.sys [2013-12-25 127280]S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2013-11-15 137336]S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-3-11 111616]S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-1-18 351136]S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-1-18 4865568]S3 NVFLASH;NVFLASH;C:\Windows\System32\drivers\nvflash.sys [2013-11-20 15648]S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-11-16 19456]S3 SaiK0BD3;SaiK0BD3;C:\Windows\System32\drivers\SaiK0BD3.sys [2011-7-20 176136]S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-11-16 29696]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-12 56832]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-11-16 30208]S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-3-30 1255736]S4 BdDesktopParental;Bitdefender Desktop Parental Control;C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-11-15 77632].=============== Created Last 30 ================.2014-04-01 20:17:11 -------- d-----w- C:\Users\JEDI\AppData\Roaming\SUPERAntiSpyware.com2014-04-01 20:16:46 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com2014-04-01 20:16:46 -------- d-----w- C:\Program Files\SUPERAntiSpyware2014-03-31 22:14:18 -------- d-----w- C:\Program Files\CCleaner2014-03-31 06:10:38 24824 ----a-w- C:\Windows\System32\drivers\IOMap64.sys2014-03-31 00:42:08 -------- d-sh--r- C:\acroldr2014-03-31 00:37:13 -------- d-----w- C:\Windows\System32\appmgmt2014-03-31 00:10:06 -------- d-----w- C:\Program Files (x86)\Bench2014-03-31 00:07:21 -------- d-----w- C:\ProgramData\VisualBee2014-03-31 00:07:12 -------- d-----w- C:\Users\JEDI\AppData\Roaming\systweak2014-03-31 00:07:05 -------- d-----w- C:\Program Files\Conduit2014-03-31 00:07:04 -------- d-----w- C:\Users\JEDI\AppData\Roaming\ValueApps2014-03-31 00:07:04 -------- d-----w- C:\Users\JEDI\AppData\Local\Conduit2014-03-31 00:07:04 -------- d-----w- C:\Program Files (x86)\Conduit2014-03-30 23:07:13 419840 ----a-w- C:\Windows\System32\systemcplx64.dll2014-03-30 23:07:13 15360 ----a-w- C:\Windows\System32\slwga.dll2014-03-30 23:07:13 13824 ----a-w- C:\Windows\32slwga.dll2014-03-30 06:33:03 -------- d-----w- C:\Program Files (x86)\DiskCheckup2014-03-26 16:20:23 599840 ----a-w- C:\Windows\SysWow64\nvStreaming.exe2014-03-26 16:10:52 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys2014-03-26 16:10:52 33056 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll2014-03-25 06:10:08 119512 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys2014-03-25 06:10:08 119512 ----a-w- C:\Windows\System32\drivers\6IKEBBI1~MBAMSwissArmy.sys~2014-03-25 06:09:58 88280 ----a-w- C:\Windows\System32\drivers\NH5PA5H5~mbamchameleon.sys~2014-03-25 06:09:58 88280 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys2014-03-25 06:09:57 63192 ----a-w- C:\Windows\System32\drivers\mwac.sys2014-03-25 06:09:57 63192 ----a-w- C:\Windows\System32\drivers\BREBJ28D~mwac.sys~2014-03-25 06:09:57 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware2014-03-18 06:43:07 -------- d-----r- C:\Users\JEDI\Google Drive2014-03-16 07:43:06 -------- d-----w- C:\Users\JEDI\.android2014-03-16 07:37:54 31744 ----a-w- C:\Windows\System32\drivers\lgandnetadb.sys2014-03-16 07:37:54 31744 ----a-w- C:\Windows\System32\drivers\4R4J2P8O~lgandnetadb.sys~2014-03-16 07:37:54 1919968 ----a-w- C:\Windows\System32\wdfcoinstaller01005.dll2014-03-16 07:37:54 1919968 ----a-w- C:\Windows\System32\DHDFHIUO~wdfcoinstaller01005.dll~2014-03-16 07:37:53 -------- d-----w- C:\Program Files (x86)\LG Electronics2014-03-16 07:05:48 24824 ----a-w- C:\Windows\System32\drivers\FU5CPV6J~IOMap64.sys~2014-03-13 03:53:16 -------- d-----w- C:\Users\JEDI\AppData\Local\bdch2014-03-13 03:53:14 -------- d-----w- C:\ProgramData\bdch2014-03-12 00:34:20 624128 ----a-w- C:\Windows\System32\SG2RTO97~qedit.dll~2014-03-12 00:34:20 624128 ----a-w- C:\Windows\System32\qedit.dll2014-03-12 00:34:20 509440 ----a-w- C:\Windows\SysWow64\qedit.dll2014-03-12 00:34:20 509440 ----a-w- C:\Windows\SysWow64\HK54NTM5~qedit.dll~2014-03-12 00:34:20 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll2014-03-12 00:34:20 1424384 ----a-w- C:\Windows\System32\VI2I3Q73~WindowsCodecs.dll~2014-03-12 00:34:20 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll2014-03-12 00:34:20 1230336 ----a-w- C:\Windows\SysWow64\MHJE0S3M~WindowsCodecs.dll~2014-03-04 00:18:27 6574592 ----a-w- C:\Windows\System32\mstscax.dll2014-03-04 00:18:27 6574592 ----a-w- C:\Windows\System32\EC437VED~mstscax.dll~2014-03-04 00:18:27 5694464 ----a-w- C:\Windows\SysWow64\T2FVESLP~mstscax.dll~2014-03-04 00:18:27 5694464 ----a-w- C:\Windows\SysWow64\mstscax.dll.==================== Find3M ====================.2014-03-29 02:54:56 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2014-03-29 02:54:56 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2014-03-29 02:27:21 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex02014-03-26 00:08:49 290184 ----a-w- C:\Windows\SysWow64\OVD8CCNP~PnkBstrB.xtr~2014-03-26 00:08:49 290184 ----a-w- C:\Windows\SysWow64\2AD103VQ~PnkBstrB.exe~2014-03-23 06:03:16 290184 ----a-w- C:\Windows\SysWow64\QPLJS4TV~PnkBstrB.ex0~2014-03-12 06:12:32 71048 ----a-w- C:\Windows\SysWow64\O6UD5UQV~FlashPlayerCPLApp.cpl~2014-03-12 06:12:32 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2014-03-12 06:12:32 692616 ----a-w- C:\Windows\SysWow64\TDLQ6DE1~FlashPlayerApp.exe~2014-03-12 06:12:32 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2014-03-05 16:26:04 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys2014-03-04 13:06:00 6714312 ----a-w- C:\Windows\System32\nvcpl.dll2014-03-04 13:06:00 3497816 ----a-w- C:\Windows\System32\nvsvc64.dll2014-03-04 13:05:58 922968 ------w- C:\Windows\System32\nvvsvc.exe2014-03-04 13:05:58 64968 ----a-w- C:\Windows\System32\nvshext.dll2014-03-04 13:05:57 386336 ----a-w- C:\Windows\System32\nvmctray.dll2014-03-04 13:05:53 3649185 ----a-w- C:\Windows\System32\nvcoproc.bin2014-03-01 06:05:15 23133696 ----a-w- C:\Windows\System32\LU2021TO~mshtml.dll~2014-03-01 05:17:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb2014-03-01 05:17:02 2724864 ----a-w- C:\Windows\System32\HAFA1AQQ~mshtml.tlb~2014-03-01 05:16:26 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll2014-03-01 05:16:26 4096 ----a-w- C:\Windows\System32\A53L17MS~ieetwcollectorres.dll~2014-03-01 04:58:28 2765824 ----a-w- C:\Windows\System32\3JRJ0TPL~iertutil.dll~2014-03-01 04:52:55 66048 ----a-w- C:\Windows\System32\iesetup.dll2014-03-01 04:52:55 66048 ----a-w- C:\Windows\System32\C46UF4JU~iesetup.dll~2014-03-01 04:51:59 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll2014-03-01 04:51:59 48640 ----a-w- C:\Windows\System32\32NLQDPG~ieetwproxystub.dll~2014-03-01 04:42:17 53760 ----a-w- C:\Windows\System32\M5DT4NKT~jsproxy.dll~2014-03-01 04:40:43 33792 ----a-w- C:\Windows\System32\0NQ84VNF~iernonce.dll~2014-03-01 04:37:12 574976 ----a-w- C:\Windows\System32\34MF3I0F~ieui.dll~2014-03-01 04:33:52 139264 ----a-w- C:\Windows\System32\ieUnatt.exe2014-03-01 04:33:52 139264 ----a-w- C:\Windows\System32\GJ9F2C14~ieUnatt.exe~2014-03-01 04:33:34 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe2014-03-01 04:33:34 111616 ----a-w- C:\Windows\System32\25KM2L6R~ieetwcollector.exe~2014-03-01 04:32:59 708608 ----a-w- C:\Windows\System32\Q3T1TSK3~jscript9diag.dll~2014-03-01 04:32:59 708608 ----a-w- C:\Windows\System32\jscript9diag.dll2014-03-01 04:30:58 17074688 ----a-w- C:\Windows\SysWow64\0LAR88P1~mshtml.dll~2014-03-01 04:23:49 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe2014-03-01 04:23:49 940032 ----a-w- C:\Windows\System32\MC4VV6IJ~MsSpellCheckingFacility.exe~2014-03-01 04:17:43 218624 ----a-w- C:\Windows\System32\48NG5FR2~ie4uinit.exe~2014-03-01 04:11:20 2724864 ----a-w- C:\Windows\SysWow64\Q58PKJ8Q~mshtml.tlb~2014-03-01 04:11:20 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb2014-03-01 04:02:07 195584 ----a-w- C:\Windows\System32\6P6184RA~msrating.dll~2014-03-01 03:54:33 5768704 ----a-w- C:\Windows\System32\jscript9.dll2014-03-01 03:54:33 5768704 ----a-w- C:\Windows\System32\IPJUH9IP~jscript9.dll~2014-03-01 03:52:43 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll2014-03-01 03:52:43 61952 ----a-w- C:\Windows\SysWow64\7I19BO4S~iesetup.dll~2014-03-01 03:51:53 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll2014-03-01 03:51:53 51200 ----a-w- C:\Windows\SysWow64\D19HFQ7T~ieetwproxystub.dll~2014-03-01 03:47:28 2168320 ----a-w- C:\Windows\SysWow64\Q0OKS4OC~iertutil.dll~2014-03-01 03:43:55 43008 ----a-w- C:\Windows\SysWow64\MCKH1035~jsproxy.dll~2014-03-01 03:43:28 32768 ----a-w- C:\Windows\SysWow64\UBLK5F8R~iernonce.dll~2014-03-01 03:42:12 627200 ----a-w- C:\Windows\System32\32INSGEF~msfeeds.dll~2014-03-01 03:40:17 440832 ----a-w- C:\Windows\SysWow64\87SPFINB~ieui.dll~2014-03-01 03:38:26 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe2014-03-01 03:38:26 112128 ----a-w- C:\Windows\SysWow64\HFPSI54D~ieUnatt.exe~2014-03-01 03:37:35 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll2014-03-01 03:37:35 553472 ----a-w- C:\Windows\SysWow64\1J56GJJD~jscript9diag.dll~2014-03-01 03:35:11 2041856 ----a-w- C:\Windows\System32\KMCRAMHR~inetcpl.cpl~2014-03-01 03:35:11 2041856 ----a-w- C:\Windows\System32\inetcpl.cpl2014-03-01 03:18:25 13051904 ----a-w- C:\Windows\System32\8N5V9BO8~ieframe.dll~2014-03-01 03:16:09 164864 ----a-w- C:\Windows\SysWow64\2Q5CMH4P~msrating.dll~2014-03-01 03:14:15 4244480 ----a-w- C:\Windows\SysWow64\jscript9.dll2014-03-01 03:14:15 4244480 ----a-w- C:\Windows\SysWow64\AA3KNG8F~jscript9.dll~2014-03-01 03:10:28 2334208 ----a-w- C:\Windows\System32\wininet.dll2014-03-01 03:10:28 2334208 ----a-w- C:\Windows\System32\29S3BADH~wininet.dll~2014-03-01 03:03:49 524288 ----a-w- C:\Windows\SysWow64\573LSMJB~msfeeds.dll~2014-03-01 03:00:08 1964032 ----a-w- C:\Windows\SysWow64\inetcpl.cpl2014-03-01 03:00:08 1964032 ----a-w- C:\Windows\SysWow64\0V7LLUMT~inetcpl.cpl~2014-03-01 02:57:18 11266048 ----a-w- C:\Windows\SysWow64\B3ADUJC7~ieframe.dll~2014-03-01 02:38:44 1393664 ----a-w- C:\Windows\System32\DP373PQ5~urlmon.dll~2014-03-01 02:32:16 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll2014-03-01 02:32:16 1820160 ----a-w- C:\Windows\SysWow64\9K6SIB9S~wininet.dll~2014-03-01 02:27:15 1156096 ----a-w- C:\Windows\SysWow64\MVRVVLJK~urlmon.dll~2014-03-01 02:25:42 703488 ----a-w- C:\Windows\SysWow64\5UNNT0OQ~ieapfltr.dll~2014-03-01 02:25:22 817664 ----a-w- C:\Windows\System32\FT8M1RTD~ieapfltr.dll~2014-02-21 09:01:49 367200 ----a-w- C:\Windows\System32\drivers\afcdp.sys2014-02-21 09:01:46 1464096 ----a-w- C:\Windows\System32\drivers\tdrpman.sys2014-02-21 09:01:42 183224 ----a-w- C:\Windows\System32\drivers\tib_mounter.sys2014-02-21 09:01:40 1120032 ----a-w- C:\Windows\System32\drivers\tib.sys2014-02-21 09:01:37 161568 ----a-w- C:\Windows\System32\drivers\vididr.sys2014-02-21 09:01:36 117024 ----a-w- C:\Windows\System32\drivers\vidsflt.sys2014-02-21 09:01:35 269600 ----a-w- C:\Windows\System32\drivers\snapman.sys2014-02-21 09:01:34 116000 ----a-w- C:\Windows\System32\drivers\fltsrv.sys2014-02-18 22:09:30 49940480 ----a-w- C:\Program Files (x86)\GUT935A.tmp2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\win32k.sys2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\DIQS22T0~win32k.sys~2014-02-06 20:52:08 95915 ----a-w- C:\ProgramData\1391719925.bdinstall.bin2014-02-06 20:51:00 95915 ----a-w- C:\ProgramData\1391719854.bdinstall.bin2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\wer.dll2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\JGD07PJO~wer.dll~2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\wer.dll2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\9HOR3VEN~wer.dll~2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\wwansvc.dll2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\DJDUIQK4~wwansvc.dll~2014-01-27 14:43:55 893440 ------w- C:\Windows\System32\drivers\avc3.sys2014-01-27 14:21:36 635392 ----a-w- C:\Windows\System32\drivers\avckf.sys2014-01-21 02:54:53 1048152 ----a-w- C:\Windows\SysWow64\nvspcap.dll2014-01-21 02:54:22 1179576 ----a-w- C:\Windows\System32\nvspcap64.dll2014-01-03 22:59:32 61 --sh--w- C:\Windows\cnerolf.bin.============= FINISH: 20:01:43.76 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 UltimateBoot Device: \Device\HarddiskVolume1Install Date: 10/30/2013 3:21:10 PMSystem Uptime: 3/31/2014 3:46:05 PM (29 hours ago).Motherboard: ASUSTeK Computer INC. | | P8Z68-V LEProcessor: Intel® Core i7-3770K CPU @ 3.50GHz | LGA1155 | 3501/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 931 GiB total, 411.216 GiB free.D: is CDROM ()E: is FIXED (exFAT) - 931 GiB total, 438.182 GiB free..==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP108: 3/30/2014 4:03:21 PM - Windows Modules InstallerRP109: 3/30/2014 5:20:47 PM - Windows UpdateRP110: 3/30/2014 9:23:40 PM - Restore Operation.==== Installed Programs ======================. Tools for .Net 3.53DMark 117-Zip 9.20 (x64 edition)Ableton Live 9 SuiteAcronis True Image 2014Adobe Flash Player 12 PluginAdobe Photoshop Lightroom 5.2 64-bitAdobe Reader XI (11.0.06)aerosoft's - Lukla X - Mount EverestAmazon KindleAsmedia ASM104x USB 3.0 Host Controller DriverASUS GPU TweakBatman: Arkham Asylum GOTY EditionBatman: Arkham City GOTYBattlefield 3™Battlelog Web PluginsBioShock InfiniteBitdefender Total SecurityBlend for Visual Studio 2012Blend for Visual Studio 2012 ENU resourcesBlend for Visual Studio Add-in for Adobe FXG ImportBlend for Visual Studio SDK for .NET 4.5Blend for Visual Studio SDK for Silverlight 5C90B King Air HD SERIES FSXCCleanerCPUID CPU-Z 1.67.1CPUID HWMonitor 1.24D3DX10DAEMON Tools LiteDefinition Update for Microsoft Office 2010 (KB982726) 64-Bit EditionDiskCheckup v3.2Dotfuscator and Analytics Community EditionDropboxEntity Framework Designer for Visual Studio 2012 - enuESN SonarEuro Truck Simulator 2f.luxFar Cry® 3Fraps (remove only)Futuremark SystemInfoGeekbench 3GeForce Experience NvStream Client ComponentsGoogle ChromeGoogle DriveHandBrake 0.9.9.1Heaven Benchmark version 4.0IIS 8.0 ExpressIIS Express Application Compatibility Database for x64IIS Express Application Compatibility Database for x86JavaScript ToolingJust Cause 2LG United Mobile DriverLinuxLive USB CreatorLocalESPCLocalESPCui for en-usLogitech Gaming Software 5.10Malwarebytes Anti-Malware version 2.00.0.1000Max Payne 3Medialink MWN-USB150NMetro 2033Metro: Last LightMicrosoft .NET Framework 4 Multi-Targeting PackMicrosoft .NET Framework 4.5 Multi-Targeting PackMicrosoft .NET Framework 4.5 SDKMicrosoft .NET Framework 4.5.1Microsoft Application Error ReportingMicrosoft ASP.NET MVC 3Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools UpdateMicrosoft ASP.NET MVC 4 - Visual Studio 2012 Tools - ENUMicrosoft ASP.NET MVC 4 RuntimeMicrosoft ASP.NET Web PagesMicrosoft ASP.NET Web Pages - Visual Studio 2012 ToolsMicrosoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - ENUMicrosoft ASP.NET Web Pages 2 RuntimeMicrosoft Expression Blend SDK for .NET 4Microsoft Expression Blend SDK for Silverlight 4Microsoft Flight Simulator XMicrosoft Flight Simulator X Service Pack 2Microsoft Help Viewer 2.0Microsoft LightSwitch for Visual Studio 2012 CoreMicrosoft LightSwitch for Visual Studio 2012 CoreRes - ENUMicrosoft LightSwitch for Visual Studio 2012 v3.0 CoreMicrosoft LightSwitch for Visual Studio 2012 v3.0 CoreRes - ENUMicrosoft Mouse and Keyboard CenterMicrosoft NuGet - Visual Studio 2012Microsoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Groove MUI (English) 2010Microsoft Office InfoPath MUI (English) 2010Microsoft Office Office 32-bit Components 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Professional Plus 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared 32-bit MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Word MUI (English) 2010Microsoft Portable Library Multi-Targeting PackMicrosoft Portable Library Multi-Targeting Pack Language Pack - enuMicrosoft Report Viewer Add-On for Visual Studio 2012Microsoft SilverlightMicrosoft Silverlight 4 SDKMicrosoft Silverlight 5 SDKMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft SQL Server 2012 Command Line UtilitiesMicrosoft SQL Server 2012 Data-Tier App FrameworkMicrosoft SQL Server 2012 Express LocalDBMicrosoft SQL Server 2012 Management ObjectsMicrosoft SQL Server 2012 Management Objects (x64)Microsoft SQL Server 2012 Native ClientMicrosoft SQL Server 2012 T-SQL Language ServiceMicrosoft SQL Server 2012 Transact-SQL Compiler ServiceMicrosoft SQL Server 2012 Transact-SQL ScriptDomMicrosoft SQL Server Compact 4.0 SP1 x64 ENUMicrosoft SQL Server Data Tools - enu (11.1.20627.00)Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)Microsoft SQL Server System CLR TypesMicrosoft SQL Server System CLR Types (x64)Microsoft System CLR Types for SQL Server 2012Microsoft System CLR Types for SQL Server 2012 (x64)Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727Microsoft Visual C++ 2012 32bit Compilers - ENU ResourcesMicrosoft Visual C++ 2012 CompilersMicrosoft Visual C++ 2012 Compilers - ENU ResourcesMicrosoft Visual C++ 2012 Core LibrariesMicrosoft Visual C++ 2012 Extended LibrariesMicrosoft Visual C++ 2012 Microsoft Foundation Class LibrariesMicrosoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.51106Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106Microsoft Visual C++ 2012 x86-x64 CompilersMicrosoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.51106Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106Microsoft Visual Studio 2010 Office Developer Tools (x64)Microsoft Visual Studio 2010 Tools for Office Runtime (x64)Microsoft Visual Studio 2012 DevenvMicrosoft Visual Studio 2012 Devenv ResourcesMicrosoft Visual Studio 2012 Performance Collection ToolsMicrosoft Visual Studio 2012 Performance Collection Tools - ENUMicrosoft Visual Studio 2012 PreparationMicrosoft Visual Studio 2012 SharePoint Developer ToolsMicrosoft Visual Studio 2012 SharePoint Developer Tools ENU Language PackMicrosoft Visual Studio 2012 Shell (Minimum)Microsoft Visual Studio 2012 Shell (Minimum) Interop AssembliesMicrosoft Visual Studio 2012 Shell (Minimum) ResourcesMicrosoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENUMicrosoft Visual Studio Professional 2012Microsoft Visual Studio Professional 2012 - ENUMicrosoft Visual Studio Team Foundation Server 2012 Object ModelMicrosoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENUMicrosoft Visual Studio Team Foundation Server 2012 Team ExplorerMicrosoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENUMicrosoft Visual Studio Ultimate 2012 XAML UI Designer CoreMicrosoft Visual Studio Ultimate 2012 XAML UI Designer enu ResourcesMicrosoft Web Deploy 3.0Microsoft Web Deploy dbSqlPackage Provider - enuMicrosoft Web Developer Tools 2012.2 - Visual Studio 2012Microsoft Web Platform Installer 4.0Microsoft_VC80_CRT_x86Microsoft_VC90_CRT_x86Movie MakerMozilla Firefox 28.0 (x86 en-US)Mozilla Maintenance ServiceMSVCRTMSVCRT110MSVCRT110_amd64MSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)MSXML 4.0 SP2 Parser and SDKmyitlab Plug-in/ActiveX InstallerNVIDIA 3D Vision Controller Driver 335.21NVIDIA 3D Vision Driver 335.23NVIDIA Control Panel 335.23NVIDIA GeForce Experience 1.8.2NVIDIA Graphics Driver 335.23NVIDIA HD Audio Driver 1.3.30.1NVIDIA Install ApplicationNVIDIA LED Visualizer 1.0NVIDIA Network ServiceNVIDIA PhysXNVIDIA PhysX System Software 9.13.1220NVIDIA ShadowPlay 11.10.11NVIDIA Stereoscopic 3D DriverNVIDIA Update 11.10.11NVIDIA Update CoreNVIDIA Virtual Audio 1.2.20OriginPDF Settings CS6Perixx Gaming mouse version 1.0.7Photo CommonPhoto GalleryPMDG 737 8900 NGXPMDG BAe JS4100PreEmptive Analytics Visual Studio ComponentsPrerequisites for SSDTPRO-ATC/X version 1.2.2.6PS3 Media ServerPunkBuster ServicesRealtek Ethernet Controller DriverRealtek High Definition Audio DriverREX 4 - Texture DirectRockstar Games Social ClubSecure Download ManagerSecurity Update for Microsoft .NET Framework 4.5.1 (KB2898869)Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553284) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687423) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826023) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826035) 64-Bit EditionSecurity Update for Microsoft Office 2010 (KB2850016) 64-Bit EditionService Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit EditionSHIELD StreamingSteamSUPERAntiSpywareTom Clancy's Splinter Cell® Blacklist™Tomb RaiderUnigine Valley Benchmark version 1.0Update for (KB2504637)Update for Microsoft Access 2010 (KB2553446) 64-Bit EditionUpdate for Microsoft Filter Pack 2.0 (KB2837594) 64-Bit EditionUpdate for Microsoft InfoPath 2010 (KB2817369) 64-Bit EditionUpdate for Microsoft InfoPath 2010 (KB2817396) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2589298) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2589352) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2589375) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2597087) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2760598) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2794737) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2825640) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2850079) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2863818) 64-Bit EditionUpdate for Microsoft Office 2010 (KB2878225) 64-Bit EditionUpdate for Microsoft OneNote 2010 (KB2837595) 64-Bit EditionUpdate for Microsoft Outlook 2010 (KB2687567) 64-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2553145) 64-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2775360) 64-Bit EditionUpdate for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit EditionUpdate for Microsoft Visio 2010 (KB2878227) 64-Bit EditionUpdate for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit EditionUpdate for Microsoft Visual Studio 2012 (KB2781514)Update for Microsoft Word 2010 (KB2837593) 64-Bit EditionUplayVisual Studio 2012 PrerequisitesVisual Studio 2012 Prerequisites - ENU Language PackVisual Studio 2012 Update 2 (KB2707250)Visual Studio Extensions for Windows Library for JavaScriptVLC media player 2.1.4WCF Data Services 5.0 (for OData v3) Primary ComponentsWCF Data Services Tools for Microsoft Visual Studio 2012WCF RIA Services V1.0 SP2Windows App Certification Kit Native ComponentsWindows App Certification Kit x64Windows Azure Tools for LightSwitch HTML Client for Visual Studio 2012Windows Driver Package - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1)Windows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWindows Runtime Intellisense Content - en-usWindows Software Development KitWindows Software Development Kit DirectX x64 RemoteWindows Software Development Kit DirectX x86 RemoteWindows Software Development Kit for Windows Store AppsWindows Software Development Kit for Windows Store Apps DirectX x64 RemoteWindows Software Development Kit for Windows Store Apps DirectX x86 RemoteWindows XP Targeting with C++WizMouse v1.7.0.3.==== Event Viewer Messages From Past Week ========.3/31/2014 3:48:01 PM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.3/31/2014 3:48:01 PM, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.3/30/2014 9:03:46 PM, Error: Service Control Manager [7023] - The SPP Notification Service service terminated with the following error: Access is denied.3/30/2014 5:18:08 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.3/30/2014 3:39:27 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding3/30/2014 11:01:23 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR2.3/29/2014 5:49:49 PM, Error: Microsoft-Windows-BitLocker-Driver [24620] - Encrypted volume check: Volume information on cannot be read.3/28/2014 3:41:55 PM, Error: VDS Basic Provider [1] - Unexpected failure. Error code: D@010100043/25/2014 5:58:08 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR5..==== End Of File =========================== Link to post Share on other sites More sharing options...
Maniac Posted April 2, 2014 ID:812322 Share Posted April 2, 2014 Please run a Quick Scan with Malwarebytes and post the log: Open up Malwarebytes => Settings Tab => Scanner Settings => Under action for PUP > Select: Show in Results List and Check for removal. Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report. Make sure that everything is checked, and click Remove Selected. Link to post Share on other sites More sharing options...
wintsint Posted April 2, 2014 Author ID:812459 Share Posted April 2, 2014 Scan Date: 4/2/2014Scan Time: 9:05:14 AMLogfile: logFile.txtAdministrator: YesVersion: 2.00.0.1000Malware Database: v2014.04.02.05Rootkit Database: v2014.03.27.01License: FreeMalware Protection: DisabledMalicious Website Protection: DisabledChameleon: DisabledOS: Windows 7 Service Pack 1CPU: x64File System: NTFSUser: JEDIScan Type: Threat ScanResult: CompletedObjects Scanned: 306319Time Elapsed: 8 min, 54 secMemory: EnabledStartup: EnabledFilesystem: EnabledArchives: EnabledRootkits: DisabledShuriken: EnabledPUP: WarnPUM: EnabledProcesses: 0(No malicious items detected)Modules: 0(No malicious items detected)Registry Keys: 0(No malicious items detected)Registry Values: 0(No malicious items detected)Registry Data: 0(No malicious items detected)Folders: 0(No malicious items detected)Files: 0(No malicious items detected)Physical Sectors: 0(No malicious items detected)(end) Link to post Share on other sites More sharing options...
Maniac Posted April 5, 2014 ID:813824 Share Posted April 5, 2014 Step 1 Please download Junkware Removal Tool to your desktop.Shut down your protection software now to avoid potential conflicts.Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.The tool will open and start scanning your system.Please be patient as this can take a while to complete depending on your system's specifications.On completion, a log (JRT.txt) is saved to your desktop and will automatically open.Post the contents of JRT.txt into your next message.Step 2 Please download AdwCleaner by Xplode onto your desktop.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.Click on Scan button. Wait until is finished.Click on Clean.Confirm each time with Ok.Your computer will be rebooted automatically. A text file will open after the restart.Please post the content of that logfile with your next answer.You can find the logfile at C:\AdwCleaner\AdwCleaner[s0].txt as well.In your next reply, post the following log files:Junkware Removal Tool logAdwCleaner log Link to post Share on other sites More sharing options...
wintsint Posted April 9, 2014 Author ID:815970 Share Posted April 9, 2014 First and foremost, my debit card was used yesterday. I just called my bank to cancel my DEBIT card, and they have offered to reimburse me for the charges. It was done locally, so I'm not sure if it was caught online or through a physical machine in the area. The theif probably made a counterfeit card and used it as they all show as Misc Debit transactions. At this point, I'm not sure if I should clean my computer or do a complete reinstall because it's not looking good. Need help thank you. # AdwCleaner v3.023 - Report created 09/04/2014 at 09:24:57# Updated 01/04/2014 by Xplode# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)# Username : JEDI - DEVA# Running from : C:\Users\JEDI\Downloads\AdwCleaner.exe# Option : Clean***** [ Services ] ********** [ Files / Folders ] *****Folder Deleted : C:\Program Files (x86)\BenchFolder Deleted : C:\Program Files\ConduitFolder Deleted : C:\Users\JEDI\AppData\Local\ConduitFolder Deleted : C:\Users\JEDI\AppData\Roaming\ValueApps***** [ Shortcuts ] ********** [ Registry ] *****Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{15527BF5-9729-49DC-889C-9F956983154C}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DD05B915-F77B-474A-9D42-9FEEAF5475C4}Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}Key Deleted : HKLM\Software\BenchKey Deleted : HKLM\Software\CompeteInc***** [ Browsers ] *****-\\ Internet Explorer v11.0.9600.16521-\\ Mozilla Firefox v28.0 (en-US)[ File : C:\Users\JEDI\AppData\Roaming\Mozilla\Firefox\Profiles\jau5928u.default\prefs.js ]-\\ Google Chrome v33.0.1750.154[ File : C:\Users\JEDI\AppData\Local\Google\Chrome\User Data\Default\preferences ]*************************AdwCleaner[R0].txt - [1788 octets] - [09/04/2014 09:23:46]AdwCleaner[s0].txt - [1719 octets] - [09/04/2014 09:24:57]########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1779 octets] ##########~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by ThisisuVersion: 6.1.4 (04.06.2014:1)OS: Windows 7 Ultimate x64Ran by JEDI on Wed 04/09/2014 at 9:17:37.03~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Services~~~ Registry ValuesSuccessfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL~~~ Registry KeysSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweakSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweakSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasmancsSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}~~~ Files~~~ FoldersSuccessfully deleted: [Folder] "C:\ProgramData\visualbee"Successfully deleted: [Folder] "C:\Users\JEDI\AppData\Roaming\systweak"Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"~~~ FireFoxEmptied folder: C:\Users\JEDI\AppData\Roaming\mozilla\firefox\profiles\jau5928u.default\minidumps [53 files]~~~ Event Viewer Logs were cleared~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on Wed 04/09/2014 at 9:21:08.84End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Link to post Share on other sites More sharing options...
Maniac Posted April 14, 2014 ID:818172 Share Posted April 14, 2014 In this case, I recommend you to change all of your passwords from a clean PC and to perform a re-install of your system. Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted May 9, 2014 Root Admin ID:828296 Share Posted May 9, 2014 Since this issue is resolved I will close the thread to prevent others from posting here. If you need assistance please start your own topic and someone will be happy to assist you. Link to post Share on other sites More sharing options...
Recommended Posts