Jump to content

BSOD malware found yet unable to remove


Recommended Posts

Someone using my computer accidentally happened to run an .exe file yesterday and installed a ton of malware software onto the computer. I removed them individually via Program Uninstall ("cleaning software,etc") however, they probably imbedded deeper roots within the system files.

While trying to run a complete custom scan with MalwareBytes 2.0 last night, the computer crashed with a BSOD. The same happened when I did a custom scan a while ago so the problem repeated itself. The scan does find malware on the system while the scan is running, but due to the BSOD, it is unable to remove it. I run BitDefender Total Security as the primary AV on my system, and it happened to only locate 1 file worth removing during a full system scan.

 

The two outputs files via dds:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.16521
Run by JEDI at 14:04:37 on 2014-03-31
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.16349.13063 [GMT -7:00]
.
AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall *Enabled* {A23392FD-84B9-F933-2C71-81E751F6EF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Windows\SysWOW64\ASGT.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\taskeng.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\ASUS\GPU Tweak\3D_Enable.exe
C:\Program Files (x86)\WizMouse\wizmouse.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
C:\Program Files\Logitech\Gaming Software\LWEMon.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe
C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe
BHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
uRun: [Medialink Utilty] C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe -s
uRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
uRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
uRun: [f.lux] "C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [AdobeBridge] <no file>
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [sE61T-UserTools] C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe /s
mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
mRun: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
dRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
dRun: [bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
dRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
dRunOnce: [Application Restart #0] C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe  /RestartByRestartManager:D187C21E-DE40-4c3c-962F-256FB24C7B5A
StartupFolder: C:\Users\JEDI\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{8915748F-7D56-4967-B75D-FB550EB0A255} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{ED61F2FC-4422-4966-B893-37B1E2BE1B98} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = about:blank
x64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"
x64-Run: [start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
x64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\JEDI\AppData\Roaming\Mozilla\Firefox\Profiles\jau5928u.default\

FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\myitlab\plugin\npenlite.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
.
============= SERVICES / DRIVERS ===============
.
R0 avc3;avc3;C:\Windows\System32\drivers\avc3.sys [2013-11-15 893440]
R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2014-2-21 116000]
R0 gzflt;gzflt;C:\Windows\System32\drivers\gzflt.sys [2013-11-15 150256]
R0 tib;Acronis TIB Manager;C:\Windows\System32\drivers\tib.sys [2014-2-21 1120032]
R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sys [2014-2-21 183224]
R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2014-2-21 161568]
R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2014-2-21 117024]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [2013-11-15 93600]
R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2013-11-15 103504]
R1 BDVEDISK;BDVEDISK;C:\Windows\System32\drivers\bdvedisk.sys [2013-11-15 76944]
R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-2-21 3873784]
R2 ASGT;ASGT;C:\Windows\SysWOW64\ASGT.exe [2012-1-17 55296]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-26 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-10-30 16939296]
R2 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe [2013-11-15 94624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-3-26 411936]
R2 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-8-21 9735112]
R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]
R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2013-11-15 67320]
R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2014-2-21 367200]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-11-3 130536]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-11-3 395752]
R3 avchv;avchv Function Driver;C:\Windows\System32\drivers\avchv.sys [2013-11-15 261056]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-17 283064]
R3 IOMap;IOMap;C:\Windows\System32\drivers\IOMap64.sys [2014-3-30 24824]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-3-26 39200]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-10-30 646248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S3 andnetadb;ADB Interface DriverNet;C:\Windows\System32\drivers\lgandnetadb.sys [2014-3-16 31744]
S3 avckf;avckf;C:\Windows\System32\drivers\avckf.sys [2013-11-15 635392]
S3 bdfwfpf_pc;bdfwfpf_pc;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-11-15 121928]
S3 BDSandBox;BDSandBox;C:\Windows\System32\drivers\bdsandbox.sys [2013-11-15 82824]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ffusb2audio;Focusrite USB 2.0 Audio Driver;C:\Windows\System32\drivers\ffusb2audio.sys [2013-12-25 127280]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2013-11-15 137336]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-3-11 111616]
S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-1-18 351136]
S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-1-18 4865568]
S3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-3-24 119512]
S3 NVFLASH;NVFLASH;C:\Windows\System32\drivers\nvflash.sys [2013-11-20 15648]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-11-16 19456]
S3 SaiK0BD3;SaiK0BD3;C:\Windows\System32\drivers\SaiK0BD3.sys [2011-7-20 176136]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-11-16 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-12 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-11-16 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-3-30 1255736]
S4 BdDesktopParental;Bitdefender Desktop Parental Control;C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-11-15 77632]
.
=============== Created Last 30 ================
.
2014-03-31 06:10:38    24824    ----a-w-    C:\Windows\System32\drivers\IOMap64.sys
2014-03-31 00:42:08    --------    d-sh--r-    C:\acroldr
2014-03-31 00:37:13    --------    d-----w-    C:\Windows\System32\appmgmt
2014-03-31 00:11:20    --------    d-----w-    C:\Users\JEDI\AppData\Local\MicroPCFix
2014-03-31 00:10:06    --------    d-----w-    C:\Program Files (x86)\Bench
2014-03-31 00:07:57    --------    d-----w-    C:\Users\JEDI\AppData\Local\VisualBeeExe
2014-03-31 00:07:21    --------    d-----w-    C:\ProgramData\VisualBee
2014-03-31 00:07:19    --------    d-----w-    C:\Users\JEDI\AppData\Local\emaze
2014-03-31 00:07:13    20312    ----a-w-    C:\Windows\System32\roboot64.exe
2014-03-31 00:07:12    --------    d-----w-    C:\Users\JEDI\AppData\Roaming\systweak
2014-03-31 00:07:05    --------    d-----w-    C:\Program Files\Conduit
2014-03-31 00:07:04    --------    d-----w-    C:\Users\JEDI\AppData\Roaming\ValueApps
2014-03-31 00:07:04    --------    d-----w-    C:\Users\JEDI\AppData\Local\Conduit
2014-03-31 00:07:04    --------    d-----w-    C:\Program Files (x86)\Conduit
2014-03-30 23:07:13    419840    ----a-w-    C:\Windows\System32\systemcplx64.dll
2014-03-30 23:07:13    15360    ----a-w-    C:\Windows\System32\slwga.dll
2014-03-30 23:07:13    13824    ----a-w-    C:\Windows\32slwga.dll
2014-03-30 06:33:03    --------    d-----w-    C:\Program Files (x86)\DiskCheckup
2014-03-26 16:20:23    599840    ----a-w-    C:\Windows\SysWow64\nvStreaming.exe
2014-03-26 16:10:52    39200    ----a-w-    C:\Windows\System32\drivers\nvvad64v.sys
2014-03-26 16:10:52    33056    ----a-w-    C:\Windows\SysWow64\nvaudcap32v.dll
2014-03-25 06:10:08    119512    ----a-w-    C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-03-25 06:10:08    119512    ----a-w-    C:\Windows\System32\drivers\6IKEBBI1~MBAMSwissArmy.sys~
2014-03-25 06:09:58    88280    ----a-w-    C:\Windows\System32\drivers\NH5PA5H5~mbamchameleon.sys~
2014-03-25 06:09:58    88280    ----a-w-    C:\Windows\System32\drivers\mbamchameleon.sys
2014-03-25 06:09:57    63192    ----a-w-    C:\Windows\System32\drivers\mwac.sys
2014-03-25 06:09:57    63192    ----a-w-    C:\Windows\System32\drivers\BREBJ28D~mwac.sys~
2014-03-25 06:09:57    --------    d-----w-    C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-18 06:43:07    --------    d-----r-    C:\Users\JEDI\Google Drive
2014-03-16 07:43:06    --------    d-----w-    C:\Users\JEDI\.android
2014-03-16 07:37:54    31744    ----a-w-    C:\Windows\System32\drivers\lgandnetadb.sys
2014-03-16 07:37:54    31744    ----a-w-    C:\Windows\System32\drivers\4R4J2P8O~lgandnetadb.sys~
2014-03-16 07:37:54    1919968    ----a-w-    C:\Windows\System32\wdfcoinstaller01005.dll
2014-03-16 07:37:54    1919968    ----a-w-    C:\Windows\System32\DHDFHIUO~wdfcoinstaller01005.dll~
2014-03-16 07:37:53    --------    d-----w-    C:\Program Files (x86)\LG Electronics
2014-03-16 07:05:48    24824    ----a-w-    C:\Windows\System32\drivers\FU5CPV6J~IOMap64.sys~
2014-03-13 03:53:16    --------    d-----w-    C:\Users\JEDI\AppData\Local\bdch
2014-03-13 03:53:14    --------    d-----w-    C:\ProgramData\bdch
2014-03-12 00:34:20    624128    ----a-w-    C:\Windows\System32\SG2RTO97~qedit.dll~
2014-03-12 00:34:20    624128    ----a-w-    C:\Windows\System32\qedit.dll
2014-03-12 00:34:20    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
2014-03-12 00:34:20    509440    ----a-w-    C:\Windows\SysWow64\HK54NTM5~qedit.dll~
2014-03-12 00:34:20    1424384    ----a-w-    C:\Windows\System32\WindowsCodecs.dll
2014-03-12 00:34:20    1424384    ----a-w-    C:\Windows\System32\VI2I3Q73~WindowsCodecs.dll~
2014-03-12 00:34:20    1230336    ----a-w-    C:\Windows\SysWow64\WindowsCodecs.dll
2014-03-12 00:34:20    1230336    ----a-w-    C:\Windows\SysWow64\MHJE0S3M~WindowsCodecs.dll~
2014-03-04 00:18:27    6574592    ----a-w-    C:\Windows\System32\mstscax.dll
2014-03-04 00:18:27    6574592    ----a-w-    C:\Windows\System32\EC437VED~mstscax.dll~
2014-03-04 00:18:27    5694464    ----a-w-    C:\Windows\SysWow64\T2FVESLP~mstscax.dll~
2014-03-04 00:18:27    5694464    ----a-w-    C:\Windows\SysWow64\mstscax.dll
.
==================== Find3M  ====================
.
2014-03-29 02:54:56    290184    ----a-w-    C:\Windows\SysWow64\PnkBstrB.xtr
2014-03-29 02:54:56    290184    ----a-w-    C:\Windows\SysWow64\PnkBstrB.exe
2014-03-29 02:27:21    290184    ----a-w-    C:\Windows\SysWow64\PnkBstrB.ex0
2014-03-26 00:08:49    290184    ----a-w-    C:\Windows\SysWow64\OVD8CCNP~PnkBstrB.xtr~
2014-03-26 00:08:49    290184    ----a-w-    C:\Windows\SysWow64\2AD103VQ~PnkBstrB.exe~
2014-03-23 06:03:16    290184    ----a-w-    C:\Windows\SysWow64\QPLJS4TV~PnkBstrB.ex0~
2014-03-12 06:12:32    71048    ----a-w-    C:\Windows\SysWow64\O6UD5UQV~FlashPlayerCPLApp.cpl~
2014-03-12 06:12:32    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-03-12 06:12:32    692616    ----a-w-    C:\Windows\SysWow64\TDLQ6DE1~FlashPlayerApp.exe~
2014-03-12 06:12:32    692616    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-03-05 16:26:04    25816    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2014-03-04 13:06:00    6714312    ----a-w-    C:\Windows\System32\nvcpl.dll
2014-03-04 13:06:00    3497816    ----a-w-    C:\Windows\System32\nvsvc64.dll
2014-03-04 13:05:58    922968    ------w-    C:\Windows\System32\nvvsvc.exe
2014-03-04 13:05:58    64968    ----a-w-    C:\Windows\System32\nvshext.dll
2014-03-04 13:05:57    386336    ----a-w-    C:\Windows\System32\nvmctray.dll
2014-03-04 13:05:53    3649185    ----a-w-    C:\Windows\System32\nvcoproc.bin
2014-03-01 06:05:15    23133696    ----a-w-    C:\Windows\System32\LU2021TO~mshtml.dll~
2014-03-01 05:17:02    2724864    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-03-01 05:17:02    2724864    ----a-w-    C:\Windows\System32\HAFA1AQQ~mshtml.tlb~
2014-03-01 05:16:26    4096    ----a-w-    C:\Windows\System32\ieetwcollectorres.dll
2014-03-01 05:16:26    4096    ----a-w-    C:\Windows\System32\A53L17MS~ieetwcollectorres.dll~
2014-03-01 04:58:28    2765824    ----a-w-    C:\Windows\System32\3JRJ0TPL~iertutil.dll~
2014-03-01 04:52:55    66048    ----a-w-    C:\Windows\System32\iesetup.dll
2014-03-01 04:52:55    66048    ----a-w-    C:\Windows\System32\C46UF4JU~iesetup.dll~
2014-03-01 04:51:59    48640    ----a-w-    C:\Windows\System32\ieetwproxystub.dll
2014-03-01 04:51:59    48640    ----a-w-    C:\Windows\System32\32NLQDPG~ieetwproxystub.dll~
2014-03-01 04:42:17    53760    ----a-w-    C:\Windows\System32\M5DT4NKT~jsproxy.dll~
2014-03-01 04:40:43    33792    ----a-w-    C:\Windows\System32\0NQ84VNF~iernonce.dll~
2014-03-01 04:37:12    574976    ----a-w-    C:\Windows\System32\34MF3I0F~ieui.dll~
2014-03-01 04:33:52    139264    ----a-w-    C:\Windows\System32\ieUnatt.exe
2014-03-01 04:33:52    139264    ----a-w-    C:\Windows\System32\GJ9F2C14~ieUnatt.exe~
2014-03-01 04:33:34    111616    ----a-w-    C:\Windows\System32\ieetwcollector.exe
2014-03-01 04:33:34    111616    ----a-w-    C:\Windows\System32\25KM2L6R~ieetwcollector.exe~
2014-03-01 04:32:59    708608    ----a-w-    C:\Windows\System32\Q3T1TSK3~jscript9diag.dll~
2014-03-01 04:32:59    708608    ----a-w-    C:\Windows\System32\jscript9diag.dll
2014-03-01 04:30:58    17074688    ----a-w-    C:\Windows\SysWow64\0LAR88P1~mshtml.dll~
2014-03-01 04:23:49    940032    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-01 04:23:49    940032    ----a-w-    C:\Windows\System32\MC4VV6IJ~MsSpellCheckingFacility.exe~
2014-03-01 04:17:43    218624    ----a-w-    C:\Windows\System32\48NG5FR2~ie4uinit.exe~
2014-03-01 04:11:20    2724864    ----a-w-    C:\Windows\SysWow64\Q58PKJ8Q~mshtml.tlb~
2014-03-01 04:11:20    2724864    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-03-01 04:02:07    195584    ----a-w-    C:\Windows\System32\6P6184RA~msrating.dll~
2014-03-01 03:54:33    5768704    ----a-w-    C:\Windows\System32\jscript9.dll
2014-03-01 03:54:33    5768704    ----a-w-    C:\Windows\System32\IPJUH9IP~jscript9.dll~
2014-03-01 03:52:43    61952    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-03-01 03:52:43    61952    ----a-w-    C:\Windows\SysWow64\7I19BO4S~iesetup.dll~
2014-03-01 03:51:53    51200    ----a-w-    C:\Windows\SysWow64\ieetwproxystub.dll
2014-03-01 03:51:53    51200    ----a-w-    C:\Windows\SysWow64\D19HFQ7T~ieetwproxystub.dll~
2014-03-01 03:47:28    2168320    ----a-w-    C:\Windows\SysWow64\Q0OKS4OC~iertutil.dll~
2014-03-01 03:43:55    43008    ----a-w-    C:\Windows\SysWow64\MCKH1035~jsproxy.dll~
2014-03-01 03:43:28    32768    ----a-w-    C:\Windows\SysWow64\UBLK5F8R~iernonce.dll~
2014-03-01 03:42:12    627200    ----a-w-    C:\Windows\System32\32INSGEF~msfeeds.dll~
2014-03-01 03:40:17    440832    ----a-w-    C:\Windows\SysWow64\87SPFINB~ieui.dll~
2014-03-01 03:38:26    112128    ----a-w-    C:\Windows\SysWow64\ieUnatt.exe
2014-03-01 03:38:26    112128    ----a-w-    C:\Windows\SysWow64\HFPSI54D~ieUnatt.exe~
2014-03-01 03:37:35    553472    ----a-w-    C:\Windows\SysWow64\jscript9diag.dll
2014-03-01 03:37:35    553472    ----a-w-    C:\Windows\SysWow64\1J56GJJD~jscript9diag.dll~
2014-03-01 03:35:11    2041856    ----a-w-    C:\Windows\System32\KMCRAMHR~inetcpl.cpl~
2014-03-01 03:35:11    2041856    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-03-01 03:18:25    13051904    ----a-w-    C:\Windows\System32\8N5V9BO8~ieframe.dll~
2014-03-01 03:16:09    164864    ----a-w-    C:\Windows\SysWow64\2Q5CMH4P~msrating.dll~
2014-03-01 03:14:15    4244480    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-03-01 03:14:15    4244480    ----a-w-    C:\Windows\SysWow64\AA3KNG8F~jscript9.dll~
2014-03-01 03:10:28    2334208    ----a-w-    C:\Windows\System32\wininet.dll
2014-03-01 03:10:28    2334208    ----a-w-    C:\Windows\System32\29S3BADH~wininet.dll~
2014-03-01 03:03:49    524288    ----a-w-    C:\Windows\SysWow64\573LSMJB~msfeeds.dll~
2014-03-01 03:00:08    1964032    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-03-01 03:00:08    1964032    ----a-w-    C:\Windows\SysWow64\0V7LLUMT~inetcpl.cpl~
2014-03-01 02:57:18    11266048    ----a-w-    C:\Windows\SysWow64\B3ADUJC7~ieframe.dll~
2014-03-01 02:38:44    1393664    ----a-w-    C:\Windows\System32\DP373PQ5~urlmon.dll~
2014-03-01 02:32:16    1820160    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-03-01 02:32:16    1820160    ----a-w-    C:\Windows\SysWow64\9K6SIB9S~wininet.dll~
2014-03-01 02:27:15    1156096    ----a-w-    C:\Windows\SysWow64\MVRVVLJK~urlmon.dll~
2014-03-01 02:25:42    703488    ----a-w-    C:\Windows\SysWow64\5UNNT0OQ~ieapfltr.dll~
2014-03-01 02:25:22    817664    ----a-w-    C:\Windows\System32\FT8M1RTD~ieapfltr.dll~
2014-02-21 09:01:49    367200    ----a-w-    C:\Windows\System32\drivers\afcdp.sys
2014-02-21 09:01:46    1464096    ----a-w-    C:\Windows\System32\drivers\tdrpman.sys
2014-02-21 09:01:42    183224    ----a-w-    C:\Windows\System32\drivers\tib_mounter.sys
2014-02-21 09:01:40    1120032    ----a-w-    C:\Windows\System32\drivers\tib.sys
2014-02-21 09:01:37    161568    ----a-w-    C:\Windows\System32\drivers\vididr.sys
2014-02-21 09:01:36    117024    ----a-w-    C:\Windows\System32\drivers\vidsflt.sys
2014-02-21 09:01:35    269600    ----a-w-    C:\Windows\System32\drivers\snapman.sys
2014-02-21 09:01:34    116000    ----a-w-    C:\Windows\System32\drivers\fltsrv.sys
2014-02-18 22:09:30    49940480    ----a-w-    C:\Program Files (x86)\GUT935A.tmp
2014-02-07 01:23:30    3156480    ----a-w-    C:\Windows\System32\win32k.sys
2014-02-07 01:23:30    3156480    ----a-w-    C:\Windows\System32\DIQS22T0~win32k.sys~
2014-02-06 20:52:08    95915    ----a-w-    C:\ProgramData\1391719925.bdinstall.bin
2014-02-06 20:51:00    95915    ----a-w-    C:\ProgramData\1391719854.bdinstall.bin
2014-01-29 02:32:18    484864    ----a-w-    C:\Windows\System32\wer.dll
2014-01-29 02:32:18    484864    ----a-w-    C:\Windows\System32\JGD07PJO~wer.dll~
2014-01-29 02:06:47    381440    ----a-w-    C:\Windows\SysWow64\wer.dll
2014-01-29 02:06:47    381440    ----a-w-    C:\Windows\SysWow64\9HOR3VEN~wer.dll~
2014-01-28 02:32:46    228864    ----a-w-    C:\Windows\System32\wwansvc.dll
2014-01-28 02:32:46    228864    ----a-w-    C:\Windows\System32\DJDUIQK4~wwansvc.dll~
2014-01-27 14:43:55    893440    ------w-    C:\Windows\System32\drivers\avc3.sys
2014-01-27 14:21:36    635392    ----a-w-    C:\Windows\System32\drivers\avckf.sys
2014-01-21 02:54:53    1048152    ----a-w-    C:\Windows\SysWow64\nvspcap.dll
2014-01-21 02:54:22    1179576    ----a-w-    C:\Windows\System32\nvspcap64.dll
2014-01-03 22:59:32    61    --sh--w-    C:\Windows\cnerolf.bin
.
============= FINISH: 14:05:47.45 ===============
 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 10/30/2013 3:21:10 PM
System Uptime: 3/31/2014 1:47:00 PM (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. |  | P8Z68-V LE
Processor: Intel® Core i7-3770K CPU @ 3.50GHz | LGA1155 | 3501/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 409.97 GiB free.
D: is CDROM ()
E: is FIXED (exFAT) - 931 GiB total, 438.548 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP108: 3/30/2014 4:03:21 PM - Windows Modules Installer
RP109: 3/30/2014 5:20:47 PM - Windows Update
RP110: 3/30/2014 9:23:40 PM - Restore Operation
.
==== Installed Programs ======================
.
 Tools for .Net 3.5
µTorrent
3DMark 11
7-Zip 9.20 (x64 edition)
Ableton Live 9 Suite
Acronis True Image 2014
Adobe Flash Player 12 Plugin
Adobe Photoshop Lightroom 5.2 64-bit
Adobe Reader XI (11.0.06)
aerosoft's - Lukla X - Mount Everest
Amazon Kindle
Asmedia ASM104x USB 3.0 Host Controller Driver
ASUS GPU Tweak
Batman: Arkham Asylum GOTY Edition
Batman: Arkham City GOTY
Battlefield 3™
Battlelog Web Plugins
BioShock Infinite
Bitdefender Total Security
Blend for Visual Studio 2012
Blend for Visual Studio 2012 ENU resources
Blend for Visual Studio Add-in for Adobe FXG Import
Blend for Visual Studio SDK for .NET 4.5
Blend for Visual Studio SDK for Silverlight 5
C90B King Air HD SERIES FSX
CPUID CPU-Z 1.67.1
CPUID HWMonitor 1.24
D3DX10
DAEMON Tools Lite
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
DiskCheckup v3.2
Dotfuscator and Analytics Community Edition
Dropbox
Entity Framework Designer for Visual Studio 2012 - enu
ESN Sonar
Euro Truck Simulator 2
f.lux
Far Cry® 3
Fraps (remove only)
Futuremark SystemInfo
Geekbench 3
GeForce Experience NvStream Client Components
Google Chrome
Google Drive
HandBrake 0.9.9.1
Heaven Benchmark version 4.0
IIS 8.0 Express
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
JavaScript Tooling
Just Cause 2
LG United Mobile Driver
LinuxLive USB Creator
LocalESPC
LocalESPCui for en-us
Logitech Gaming Software 5.10
Malwarebytes Anti-Malware version 2.00.0.1000
Max Payne 3
Medialink MWN-USB150N
Metro 2033
Metro: Last Light
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft .NET Framework 4.5 Multi-Targeting Pack
Microsoft .NET Framework 4.5 SDK
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft ASP.NET MVC 3
Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update
Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools - ENU
Microsoft ASP.NET MVC 4 Runtime
Microsoft ASP.NET Web Pages
Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools
Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - ENU
Microsoft ASP.NET Web Pages 2 Runtime
Microsoft Expression Blend SDK for .NET 4
Microsoft Expression Blend SDK for Silverlight 4
Microsoft Flight Simulator X
Microsoft Flight Simulator X Service Pack 2
Microsoft Help Viewer 2.0
Microsoft LightSwitch for Visual Studio 2012 Core
Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU
Microsoft LightSwitch for Visual Studio 2012 v3.0 Core
Microsoft LightSwitch for Visual Studio 2012 v3.0 CoreRes - ENU
Microsoft Mouse and Keyboard Center
Microsoft NuGet - Visual Studio 2012
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Office 32-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 32-bit MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Portable Library Multi-Targeting Pack
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
Microsoft Report Viewer Add-On for Visual Studio 2012
Microsoft Silverlight
Microsoft Silverlight 4 SDK
Microsoft Silverlight 5 SDK
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server 2012 Command Line Utilities
Microsoft SQL Server 2012 Data-Tier App Framework
Microsoft SQL Server 2012 Express LocalDB
Microsoft SQL Server 2012 Management Objects
Microsoft SQL Server 2012 Management Objects  (x64)
Microsoft SQL Server 2012 Native Client
Microsoft SQL Server 2012 T-SQL Language Service
Microsoft SQL Server 2012 Transact-SQL Compiler Service
Microsoft SQL Server 2012 Transact-SQL ScriptDom
Microsoft SQL Server Compact 4.0 SP1 x64 ENU
Microsoft SQL Server Data Tools - enu (11.1.20627.00)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)
Microsoft SQL Server System CLR Types
Microsoft SQL Server System CLR Types (x64)
Microsoft System CLR Types for SQL Server 2012
Microsoft System CLR Types for SQL Server 2012 (x64)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012  x64 Designtime - 11.0.50727
Microsoft Visual C++ 2012 32bit Compilers - ENU Resources
Microsoft Visual C++ 2012 Compilers
Microsoft Visual C++ 2012 Compilers - ENU Resources
Microsoft Visual C++ 2012 Core Libraries
Microsoft Visual C++ 2012 Extended Libraries
Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.51106
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86-x64 Compilers
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
Microsoft Visual Studio 2010 Office Developer Tools (x64)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
Microsoft Visual Studio 2012 Devenv
Microsoft Visual Studio 2012 Devenv Resources
Microsoft Visual Studio 2012 Performance Collection Tools
Microsoft Visual Studio 2012 Performance Collection Tools - ENU
Microsoft Visual Studio 2012 Preparation
Microsoft Visual Studio 2012 SharePoint Developer Tools
Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack
Microsoft Visual Studio 2012 Shell (Minimum)
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies
Microsoft Visual Studio 2012 Shell (Minimum) Resources
Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU
Microsoft Visual Studio Professional 2012
Microsoft Visual Studio Professional 2012 - ENU
Microsoft Visual Studio Team Foundation Server 2012 Object Model
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU
Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core
Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources
Microsoft Web Deploy 3.0
Microsoft Web Deploy dbSqlPackage Provider - enu
Microsoft Web Developer Tools 2012.2 - Visual Studio 2012
Microsoft Web Platform Installer 4.0
Microsoft_VC80_CRT_x86
Microsoft_VC90_CRT_x86
Movie Maker
Mozilla Firefox 28.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT110
MSVCRT110_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
myitlab Plug-in/ActiveX Installer
NVIDIA 3D Vision Controller Driver 335.21
NVIDIA 3D Vision Driver 335.23
NVIDIA Control Panel 335.23
NVIDIA GeForce Experience 1.8.2
NVIDIA Graphics Driver 335.23
NVIDIA HD Audio Driver 1.3.30.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX
NVIDIA PhysX System Software 9.13.1220
NVIDIA ShadowPlay 11.10.11
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 11.10.11
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.20
Origin
PDF Settings CS6
Perixx Gaming mouse version 1.0.7
Photo Common
Photo Gallery
PMDG 737 8900 NGX
PMDG BAe JS4100
PreEmptive Analytics Visual Studio Components
Prerequisites for SSDT
PRO-ATC/X version 1.2.2.6
PS3 Media Server
PunkBuster Services
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
REX 4 - Texture Direct
Rockstar Games Social Club
Secure Download Manager
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826023) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826035) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
SHIELD Streaming
Steam
Tom Clancy's Splinter Cell® Blacklist™
Tomb Raider
Unigine Valley Benchmark version 1.0
Update for  (KB2504637)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2837594) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition
Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2775360) 64-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition
Update for Microsoft Visio 2010 (KB2878227) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
Update for Microsoft Visual Studio 2012 (KB2781514)
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition
Uplay
Visual Studio 2012 Prerequisites
Visual Studio 2012 Prerequisites - ENU Language Pack
Visual Studio 2012 Update 2 (KB2707250)
Visual Studio Extensions for Windows Library for JavaScript
VLC media player 2.1.4
WCF Data Services 5.0 (for OData v3) Primary Components
WCF Data Services Tools for Microsoft Visual Studio 2012
WCF RIA Services V1.0 SP2
Windows App Certification Kit Native Components
Windows App Certification Kit x64
Windows Azure Tools for LightSwitch HTML Client for Visual Studio 2012
Windows Driver Package - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Runtime Intellisense Content - en-us
Windows Software Development Kit
Windows Software Development Kit DirectX x64 Remote
Windows Software Development Kit DirectX x86 Remote
Windows Software Development Kit for Windows Store Apps
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
Windows XP Targeting with C++
WizMouse v1.7.0.3
.
==== Event Viewer Messages From Past Week ========
.
3/30/2014 9:03:46 PM, Error: Service Control Manager [7023]  - The SPP Notification Service service terminated with the following error:  Access is denied.
3/30/2014 5:18:08 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
3/30/2014 3:39:27 PM, Error: Microsoft-Windows-DistributedCOM [10001]  - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding
3/30/2014 11:01:23 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk2\DR2.
3/29/2014 5:49:49 PM, Error: Microsoft-Windows-BitLocker-Driver [24620]  - Encrypted volume check: Volume information on  cannot be read.
3/28/2014 3:41:55 PM, Error: VDS Basic Provider [1]  - Unexpected failure. Error code: D@01010004
3/25/2014 5:58:08 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR5.
3/24/2014 10:43:15 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR2.
.
==== End Of File ===========================
 

Link to post
Share on other sites

Hello wintsint and :welcome:! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.
P2P/Piracy Warning:

If you're using Peer 2 Peer software such as µTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

When you are done, please generate a new fresh DDS log file.

Link to post
Share on other sites

Thank you. I'd like to continue receiving instructions on possible malware removal. Here are the text files :

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.16521
Run by JEDI at 20:01:34 on 2014-04-01
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.16349.12119 [GMT -7:00]
.
AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall *Enabled* {A23392FD-84B9-F933-2C71-81E751F6EF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Windows\SysWOW64\ASGT.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\taskeng.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
C:\Program Files\Logitech\Gaming Software\LWEMon.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe
C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\ASUS\GPU Tweak\3D_Enable.exe
C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files (x86)\WizMouse\wizmouse.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Bitdefender\Bitdefender\downloader.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe,
BHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
uRun: [Medialink Utilty] C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe -s
uRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
uRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
uRun: [f.lux] "C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [AdobeBridge] <no file>
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [sE61T-UserTools] C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe /s
mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
mRun: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
dRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
dRun: [bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
dRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
dRunOnce: [Application Restart #0] C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe  /RestartByRestartManager:D187C21E-DE40-4c3c-962F-256FB24C7B5A
StartupFolder: C:\Users\JEDI\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{8915748F-7D56-4967-B75D-FB550EB0A255} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{ED61F2FC-4422-4966-B893-37B1E2BE1B98} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = about:blank
x64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"
x64-Run: [start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
x64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\JEDI\AppData\Roaming\Mozilla\Firefox\Profiles\jau5928u.default\

FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\myitlab\plugin\npenlite.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
.
============= SERVICES / DRIVERS ===============
.
R0 avc3;avc3;C:\Windows\System32\drivers\avc3.sys [2013-11-15 893440]
R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2014-2-21 116000]
R0 gzflt;gzflt;C:\Windows\System32\drivers\gzflt.sys [2013-11-15 150256]
R0 tib;Acronis TIB Manager;C:\Windows\System32\drivers\tib.sys [2014-2-21 1120032]
R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sys [2014-2-21 183224]
R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2014-2-21 161568]
R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2014-2-21 117024]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [2013-11-15 93600]
R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2013-11-15 103504]
R1 BDVEDISK;BDVEDISK;C:\Windows\System32\drivers\bdvedisk.sys [2013-11-15 76944]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-10-10 144152]
R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-2-21 3873784]
R2 ASGT;ASGT;C:\Windows\SysWOW64\ASGT.exe [2012-1-17 55296]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-26 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-10-30 16939296]
R2 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe [2013-11-15 94624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-3-26 411936]
R2 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-8-21 9735112]
R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]
R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2013-11-15 67320]
R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2014-2-21 367200]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-11-3 130536]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-11-3 395752]
R3 avchv;avchv Function Driver;C:\Windows\System32\drivers\avchv.sys [2013-11-15 261056]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-17 283064]
R3 IOMap;IOMap;C:\Windows\System32\drivers\IOMap64.sys [2014-3-30 24824]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-3-26 39200]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-10-30 646248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S3 andnetadb;ADB Interface DriverNet;C:\Windows\System32\drivers\lgandnetadb.sys [2014-3-16 31744]
S3 avckf;avckf;C:\Windows\System32\drivers\avckf.sys [2013-11-15 635392]
S3 bdfwfpf_pc;bdfwfpf_pc;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-11-15 121928]
S3 BDSandBox;BDSandBox;C:\Windows\System32\drivers\bdsandbox.sys [2013-11-15 82824]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ffusb2audio;Focusrite USB 2.0 Audio Driver;C:\Windows\System32\drivers\ffusb2audio.sys [2013-12-25 127280]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2013-11-15 137336]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-3-11 111616]
S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-1-18 351136]
S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-1-18 4865568]
S3 NVFLASH;NVFLASH;C:\Windows\System32\drivers\nvflash.sys [2013-11-20 15648]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-11-16 19456]
S3 SaiK0BD3;SaiK0BD3;C:\Windows\System32\drivers\SaiK0BD3.sys [2011-7-20 176136]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-11-16 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-12 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-11-16 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-3-30 1255736]
S4 BdDesktopParental;Bitdefender Desktop Parental Control;C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-11-15 77632]
.
=============== Created Last 30 ================
.
2014-04-01 20:17:11    --------    d-----w-    C:\Users\JEDI\AppData\Roaming\SUPERAntiSpyware.com
2014-04-01 20:16:46    --------    d-----w-    C:\ProgramData\SUPERAntiSpyware.com
2014-04-01 20:16:46    --------    d-----w-    C:\Program Files\SUPERAntiSpyware
2014-03-31 22:14:18    --------    d-----w-    C:\Program Files\CCleaner
2014-03-31 06:10:38    24824    ----a-w-    C:\Windows\System32\drivers\IOMap64.sys
2014-03-31 00:42:08    --------    d-sh--r-    C:\acroldr
2014-03-31 00:37:13    --------    d-----w-    C:\Windows\System32\appmgmt
2014-03-31 00:10:06    --------    d-----w-    C:\Program Files (x86)\Bench
2014-03-31 00:07:21    --------    d-----w-    C:\ProgramData\VisualBee
2014-03-31 00:07:12    --------    d-----w-    C:\Users\JEDI\AppData\Roaming\systweak
2014-03-31 00:07:05    --------    d-----w-    C:\Program Files\Conduit
2014-03-31 00:07:04    --------    d-----w-    C:\Users\JEDI\AppData\Roaming\ValueApps
2014-03-31 00:07:04    --------    d-----w-    C:\Users\JEDI\AppData\Local\Conduit
2014-03-31 00:07:04    --------    d-----w-    C:\Program Files (x86)\Conduit
2014-03-30 23:07:13    419840    ----a-w-    C:\Windows\System32\systemcplx64.dll
2014-03-30 23:07:13    15360    ----a-w-    C:\Windows\System32\slwga.dll
2014-03-30 23:07:13    13824    ----a-w-    C:\Windows\32slwga.dll
2014-03-30 06:33:03    --------    d-----w-    C:\Program Files (x86)\DiskCheckup
2014-03-26 16:20:23    599840    ----a-w-    C:\Windows\SysWow64\nvStreaming.exe
2014-03-26 16:10:52    39200    ----a-w-    C:\Windows\System32\drivers\nvvad64v.sys
2014-03-26 16:10:52    33056    ----a-w-    C:\Windows\SysWow64\nvaudcap32v.dll
2014-03-25 06:10:08    119512    ----a-w-    C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-03-25 06:10:08    119512    ----a-w-    C:\Windows\System32\drivers\6IKEBBI1~MBAMSwissArmy.sys~
2014-03-25 06:09:58    88280    ----a-w-    C:\Windows\System32\drivers\NH5PA5H5~mbamchameleon.sys~
2014-03-25 06:09:58    88280    ----a-w-    C:\Windows\System32\drivers\mbamchameleon.sys
2014-03-25 06:09:57    63192    ----a-w-    C:\Windows\System32\drivers\mwac.sys
2014-03-25 06:09:57    63192    ----a-w-    C:\Windows\System32\drivers\BREBJ28D~mwac.sys~
2014-03-25 06:09:57    --------    d-----w-    C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-18 06:43:07    --------    d-----r-    C:\Users\JEDI\Google Drive
2014-03-16 07:43:06    --------    d-----w-    C:\Users\JEDI\.android
2014-03-16 07:37:54    31744    ----a-w-    C:\Windows\System32\drivers\lgandnetadb.sys
2014-03-16 07:37:54    31744    ----a-w-    C:\Windows\System32\drivers\4R4J2P8O~lgandnetadb.sys~
2014-03-16 07:37:54    1919968    ----a-w-    C:\Windows\System32\wdfcoinstaller01005.dll
2014-03-16 07:37:54    1919968    ----a-w-    C:\Windows\System32\DHDFHIUO~wdfcoinstaller01005.dll~
2014-03-16 07:37:53    --------    d-----w-    C:\Program Files (x86)\LG Electronics
2014-03-16 07:05:48    24824    ----a-w-    C:\Windows\System32\drivers\FU5CPV6J~IOMap64.sys~
2014-03-13 03:53:16    --------    d-----w-    C:\Users\JEDI\AppData\Local\bdch
2014-03-13 03:53:14    --------    d-----w-    C:\ProgramData\bdch
2014-03-12 00:34:20    624128    ----a-w-    C:\Windows\System32\SG2RTO97~qedit.dll~
2014-03-12 00:34:20    624128    ----a-w-    C:\Windows\System32\qedit.dll
2014-03-12 00:34:20    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
2014-03-12 00:34:20    509440    ----a-w-    C:\Windows\SysWow64\HK54NTM5~qedit.dll~
2014-03-12 00:34:20    1424384    ----a-w-    C:\Windows\System32\WindowsCodecs.dll
2014-03-12 00:34:20    1424384    ----a-w-    C:\Windows\System32\VI2I3Q73~WindowsCodecs.dll~
2014-03-12 00:34:20    1230336    ----a-w-    C:\Windows\SysWow64\WindowsCodecs.dll
2014-03-12 00:34:20    1230336    ----a-w-    C:\Windows\SysWow64\MHJE0S3M~WindowsCodecs.dll~
2014-03-04 00:18:27    6574592    ----a-w-    C:\Windows\System32\mstscax.dll
2014-03-04 00:18:27    6574592    ----a-w-    C:\Windows\System32\EC437VED~mstscax.dll~
2014-03-04 00:18:27    5694464    ----a-w-    C:\Windows\SysWow64\T2FVESLP~mstscax.dll~
2014-03-04 00:18:27    5694464    ----a-w-    C:\Windows\SysWow64\mstscax.dll
.
==================== Find3M  ====================
.
2014-03-29 02:54:56    290184    ----a-w-    C:\Windows\SysWow64\PnkBstrB.xtr
2014-03-29 02:54:56    290184    ----a-w-    C:\Windows\SysWow64\PnkBstrB.exe
2014-03-29 02:27:21    290184    ----a-w-    C:\Windows\SysWow64\PnkBstrB.ex0
2014-03-26 00:08:49    290184    ----a-w-    C:\Windows\SysWow64\OVD8CCNP~PnkBstrB.xtr~
2014-03-26 00:08:49    290184    ----a-w-    C:\Windows\SysWow64\2AD103VQ~PnkBstrB.exe~
2014-03-23 06:03:16    290184    ----a-w-    C:\Windows\SysWow64\QPLJS4TV~PnkBstrB.ex0~
2014-03-12 06:12:32    71048    ----a-w-    C:\Windows\SysWow64\O6UD5UQV~FlashPlayerCPLApp.cpl~
2014-03-12 06:12:32    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-03-12 06:12:32    692616    ----a-w-    C:\Windows\SysWow64\TDLQ6DE1~FlashPlayerApp.exe~
2014-03-12 06:12:32    692616    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-03-05 16:26:04    25816    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2014-03-04 13:06:00    6714312    ----a-w-    C:\Windows\System32\nvcpl.dll
2014-03-04 13:06:00    3497816    ----a-w-    C:\Windows\System32\nvsvc64.dll
2014-03-04 13:05:58    922968    ------w-    C:\Windows\System32\nvvsvc.exe
2014-03-04 13:05:58    64968    ----a-w-    C:\Windows\System32\nvshext.dll
2014-03-04 13:05:57    386336    ----a-w-    C:\Windows\System32\nvmctray.dll
2014-03-04 13:05:53    3649185    ----a-w-    C:\Windows\System32\nvcoproc.bin
2014-03-01 06:05:15    23133696    ----a-w-    C:\Windows\System32\LU2021TO~mshtml.dll~
2014-03-01 05:17:02    2724864    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-03-01 05:17:02    2724864    ----a-w-    C:\Windows\System32\HAFA1AQQ~mshtml.tlb~
2014-03-01 05:16:26    4096    ----a-w-    C:\Windows\System32\ieetwcollectorres.dll
2014-03-01 05:16:26    4096    ----a-w-    C:\Windows\System32\A53L17MS~ieetwcollectorres.dll~
2014-03-01 04:58:28    2765824    ----a-w-    C:\Windows\System32\3JRJ0TPL~iertutil.dll~
2014-03-01 04:52:55    66048    ----a-w-    C:\Windows\System32\iesetup.dll
2014-03-01 04:52:55    66048    ----a-w-    C:\Windows\System32\C46UF4JU~iesetup.dll~
2014-03-01 04:51:59    48640    ----a-w-    C:\Windows\System32\ieetwproxystub.dll
2014-03-01 04:51:59    48640    ----a-w-    C:\Windows\System32\32NLQDPG~ieetwproxystub.dll~
2014-03-01 04:42:17    53760    ----a-w-    C:\Windows\System32\M5DT4NKT~jsproxy.dll~
2014-03-01 04:40:43    33792    ----a-w-    C:\Windows\System32\0NQ84VNF~iernonce.dll~
2014-03-01 04:37:12    574976    ----a-w-    C:\Windows\System32\34MF3I0F~ieui.dll~
2014-03-01 04:33:52    139264    ----a-w-    C:\Windows\System32\ieUnatt.exe
2014-03-01 04:33:52    139264    ----a-w-    C:\Windows\System32\GJ9F2C14~ieUnatt.exe~
2014-03-01 04:33:34    111616    ----a-w-    C:\Windows\System32\ieetwcollector.exe
2014-03-01 04:33:34    111616    ----a-w-    C:\Windows\System32\25KM2L6R~ieetwcollector.exe~
2014-03-01 04:32:59    708608    ----a-w-    C:\Windows\System32\Q3T1TSK3~jscript9diag.dll~
2014-03-01 04:32:59    708608    ----a-w-    C:\Windows\System32\jscript9diag.dll
2014-03-01 04:30:58    17074688    ----a-w-    C:\Windows\SysWow64\0LAR88P1~mshtml.dll~
2014-03-01 04:23:49    940032    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-01 04:23:49    940032    ----a-w-    C:\Windows\System32\MC4VV6IJ~MsSpellCheckingFacility.exe~
2014-03-01 04:17:43    218624    ----a-w-    C:\Windows\System32\48NG5FR2~ie4uinit.exe~
2014-03-01 04:11:20    2724864    ----a-w-    C:\Windows\SysWow64\Q58PKJ8Q~mshtml.tlb~
2014-03-01 04:11:20    2724864    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-03-01 04:02:07    195584    ----a-w-    C:\Windows\System32\6P6184RA~msrating.dll~
2014-03-01 03:54:33    5768704    ----a-w-    C:\Windows\System32\jscript9.dll
2014-03-01 03:54:33    5768704    ----a-w-    C:\Windows\System32\IPJUH9IP~jscript9.dll~
2014-03-01 03:52:43    61952    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-03-01 03:52:43    61952    ----a-w-    C:\Windows\SysWow64\7I19BO4S~iesetup.dll~
2014-03-01 03:51:53    51200    ----a-w-    C:\Windows\SysWow64\ieetwproxystub.dll
2014-03-01 03:51:53    51200    ----a-w-    C:\Windows\SysWow64\D19HFQ7T~ieetwproxystub.dll~
2014-03-01 03:47:28    2168320    ----a-w-    C:\Windows\SysWow64\Q0OKS4OC~iertutil.dll~
2014-03-01 03:43:55    43008    ----a-w-    C:\Windows\SysWow64\MCKH1035~jsproxy.dll~
2014-03-01 03:43:28    32768    ----a-w-    C:\Windows\SysWow64\UBLK5F8R~iernonce.dll~
2014-03-01 03:42:12    627200    ----a-w-    C:\Windows\System32\32INSGEF~msfeeds.dll~
2014-03-01 03:40:17    440832    ----a-w-    C:\Windows\SysWow64\87SPFINB~ieui.dll~
2014-03-01 03:38:26    112128    ----a-w-    C:\Windows\SysWow64\ieUnatt.exe
2014-03-01 03:38:26    112128    ----a-w-    C:\Windows\SysWow64\HFPSI54D~ieUnatt.exe~
2014-03-01 03:37:35    553472    ----a-w-    C:\Windows\SysWow64\jscript9diag.dll
2014-03-01 03:37:35    553472    ----a-w-    C:\Windows\SysWow64\1J56GJJD~jscript9diag.dll~
2014-03-01 03:35:11    2041856    ----a-w-    C:\Windows\System32\KMCRAMHR~inetcpl.cpl~
2014-03-01 03:35:11    2041856    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-03-01 03:18:25    13051904    ----a-w-    C:\Windows\System32\8N5V9BO8~ieframe.dll~
2014-03-01 03:16:09    164864    ----a-w-    C:\Windows\SysWow64\2Q5CMH4P~msrating.dll~
2014-03-01 03:14:15    4244480    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-03-01 03:14:15    4244480    ----a-w-    C:\Windows\SysWow64\AA3KNG8F~jscript9.dll~
2014-03-01 03:10:28    2334208    ----a-w-    C:\Windows\System32\wininet.dll
2014-03-01 03:10:28    2334208    ----a-w-    C:\Windows\System32\29S3BADH~wininet.dll~
2014-03-01 03:03:49    524288    ----a-w-    C:\Windows\SysWow64\573LSMJB~msfeeds.dll~
2014-03-01 03:00:08    1964032    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-03-01 03:00:08    1964032    ----a-w-    C:\Windows\SysWow64\0V7LLUMT~inetcpl.cpl~
2014-03-01 02:57:18    11266048    ----a-w-    C:\Windows\SysWow64\B3ADUJC7~ieframe.dll~
2014-03-01 02:38:44    1393664    ----a-w-    C:\Windows\System32\DP373PQ5~urlmon.dll~
2014-03-01 02:32:16    1820160    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-03-01 02:32:16    1820160    ----a-w-    C:\Windows\SysWow64\9K6SIB9S~wininet.dll~
2014-03-01 02:27:15    1156096    ----a-w-    C:\Windows\SysWow64\MVRVVLJK~urlmon.dll~
2014-03-01 02:25:42    703488    ----a-w-    C:\Windows\SysWow64\5UNNT0OQ~ieapfltr.dll~
2014-03-01 02:25:22    817664    ----a-w-    C:\Windows\System32\FT8M1RTD~ieapfltr.dll~
2014-02-21 09:01:49    367200    ----a-w-    C:\Windows\System32\drivers\afcdp.sys
2014-02-21 09:01:46    1464096    ----a-w-    C:\Windows\System32\drivers\tdrpman.sys
2014-02-21 09:01:42    183224    ----a-w-    C:\Windows\System32\drivers\tib_mounter.sys
2014-02-21 09:01:40    1120032    ----a-w-    C:\Windows\System32\drivers\tib.sys
2014-02-21 09:01:37    161568    ----a-w-    C:\Windows\System32\drivers\vididr.sys
2014-02-21 09:01:36    117024    ----a-w-    C:\Windows\System32\drivers\vidsflt.sys
2014-02-21 09:01:35    269600    ----a-w-    C:\Windows\System32\drivers\snapman.sys
2014-02-21 09:01:34    116000    ----a-w-    C:\Windows\System32\drivers\fltsrv.sys
2014-02-18 22:09:30    49940480    ----a-w-    C:\Program Files (x86)\GUT935A.tmp
2014-02-07 01:23:30    3156480    ----a-w-    C:\Windows\System32\win32k.sys
2014-02-07 01:23:30    3156480    ----a-w-    C:\Windows\System32\DIQS22T0~win32k.sys~
2014-02-06 20:52:08    95915    ----a-w-    C:\ProgramData\1391719925.bdinstall.bin
2014-02-06 20:51:00    95915    ----a-w-    C:\ProgramData\1391719854.bdinstall.bin
2014-01-29 02:32:18    484864    ----a-w-    C:\Windows\System32\wer.dll
2014-01-29 02:32:18    484864    ----a-w-    C:\Windows\System32\JGD07PJO~wer.dll~
2014-01-29 02:06:47    381440    ----a-w-    C:\Windows\SysWow64\wer.dll
2014-01-29 02:06:47    381440    ----a-w-    C:\Windows\SysWow64\9HOR3VEN~wer.dll~
2014-01-28 02:32:46    228864    ----a-w-    C:\Windows\System32\wwansvc.dll
2014-01-28 02:32:46    228864    ----a-w-    C:\Windows\System32\DJDUIQK4~wwansvc.dll~
2014-01-27 14:43:55    893440    ------w-    C:\Windows\System32\drivers\avc3.sys
2014-01-27 14:21:36    635392    ----a-w-    C:\Windows\System32\drivers\avckf.sys
2014-01-21 02:54:53    1048152    ----a-w-    C:\Windows\SysWow64\nvspcap.dll
2014-01-21 02:54:22    1179576    ----a-w-    C:\Windows\System32\nvspcap64.dll
2014-01-03 22:59:32    61    --sh--w-    C:\Windows\cnerolf.bin
.
============= FINISH: 20:01:43.76 ===============

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 10/30/2013 3:21:10 PM
System Uptime: 3/31/2014 3:46:05 PM (29 hours ago)
.
Motherboard: ASUSTeK Computer INC. |  | P8Z68-V LE
Processor: Intel® Core i7-3770K CPU @ 3.50GHz | LGA1155 | 3501/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 411.216 GiB free.
D: is CDROM ()
E: is FIXED (exFAT) - 931 GiB total, 438.182 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP108: 3/30/2014 4:03:21 PM - Windows Modules Installer
RP109: 3/30/2014 5:20:47 PM - Windows Update
RP110: 3/30/2014 9:23:40 PM - Restore Operation
.
==== Installed Programs ======================
.
 Tools for .Net 3.5
3DMark 11
7-Zip 9.20 (x64 edition)
Ableton Live 9 Suite
Acronis True Image 2014
Adobe Flash Player 12 Plugin
Adobe Photoshop Lightroom 5.2 64-bit
Adobe Reader XI (11.0.06)
aerosoft's - Lukla X - Mount Everest
Amazon Kindle
Asmedia ASM104x USB 3.0 Host Controller Driver
ASUS GPU Tweak
Batman: Arkham Asylum GOTY Edition
Batman: Arkham City GOTY
Battlefield 3™
Battlelog Web Plugins
BioShock Infinite
Bitdefender Total Security
Blend for Visual Studio 2012
Blend for Visual Studio 2012 ENU resources
Blend for Visual Studio Add-in for Adobe FXG Import
Blend for Visual Studio SDK for .NET 4.5
Blend for Visual Studio SDK for Silverlight 5
C90B King Air HD SERIES FSX
CCleaner
CPUID CPU-Z 1.67.1
CPUID HWMonitor 1.24
D3DX10
DAEMON Tools Lite
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
DiskCheckup v3.2
Dotfuscator and Analytics Community Edition
Dropbox
Entity Framework Designer for Visual Studio 2012 - enu
ESN Sonar
Euro Truck Simulator 2
f.lux
Far Cry® 3
Fraps (remove only)
Futuremark SystemInfo
Geekbench 3
GeForce Experience NvStream Client Components
Google Chrome
Google Drive
HandBrake 0.9.9.1
Heaven Benchmark version 4.0
IIS 8.0 Express
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
JavaScript Tooling
Just Cause 2
LG United Mobile Driver
LinuxLive USB Creator
LocalESPC
LocalESPCui for en-us
Logitech Gaming Software 5.10
Malwarebytes Anti-Malware version 2.00.0.1000
Max Payne 3
Medialink MWN-USB150N
Metro 2033
Metro: Last Light
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft .NET Framework 4.5 Multi-Targeting Pack
Microsoft .NET Framework 4.5 SDK
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft ASP.NET MVC 3
Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update
Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools - ENU
Microsoft ASP.NET MVC 4 Runtime
Microsoft ASP.NET Web Pages
Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools
Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - ENU
Microsoft ASP.NET Web Pages 2 Runtime
Microsoft Expression Blend SDK for .NET 4
Microsoft Expression Blend SDK for Silverlight 4
Microsoft Flight Simulator X
Microsoft Flight Simulator X Service Pack 2
Microsoft Help Viewer 2.0
Microsoft LightSwitch for Visual Studio 2012 Core
Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU
Microsoft LightSwitch for Visual Studio 2012 v3.0 Core
Microsoft LightSwitch for Visual Studio 2012 v3.0 CoreRes - ENU
Microsoft Mouse and Keyboard Center
Microsoft NuGet - Visual Studio 2012
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Office 32-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 32-bit MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Portable Library Multi-Targeting Pack
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
Microsoft Report Viewer Add-On for Visual Studio 2012
Microsoft Silverlight
Microsoft Silverlight 4 SDK
Microsoft Silverlight 5 SDK
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server 2012 Command Line Utilities
Microsoft SQL Server 2012 Data-Tier App Framework
Microsoft SQL Server 2012 Express LocalDB
Microsoft SQL Server 2012 Management Objects
Microsoft SQL Server 2012 Management Objects  (x64)
Microsoft SQL Server 2012 Native Client
Microsoft SQL Server 2012 T-SQL Language Service
Microsoft SQL Server 2012 Transact-SQL Compiler Service
Microsoft SQL Server 2012 Transact-SQL ScriptDom
Microsoft SQL Server Compact 4.0 SP1 x64 ENU
Microsoft SQL Server Data Tools - enu (11.1.20627.00)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)
Microsoft SQL Server System CLR Types
Microsoft SQL Server System CLR Types (x64)
Microsoft System CLR Types for SQL Server 2012
Microsoft System CLR Types for SQL Server 2012 (x64)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012  x64 Designtime - 11.0.50727
Microsoft Visual C++ 2012 32bit Compilers - ENU Resources
Microsoft Visual C++ 2012 Compilers
Microsoft Visual C++ 2012 Compilers - ENU Resources
Microsoft Visual C++ 2012 Core Libraries
Microsoft Visual C++ 2012 Extended Libraries
Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.51106
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86-x64 Compilers
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
Microsoft Visual Studio 2010 Office Developer Tools (x64)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
Microsoft Visual Studio 2012 Devenv
Microsoft Visual Studio 2012 Devenv Resources
Microsoft Visual Studio 2012 Performance Collection Tools
Microsoft Visual Studio 2012 Performance Collection Tools - ENU
Microsoft Visual Studio 2012 Preparation
Microsoft Visual Studio 2012 SharePoint Developer Tools
Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack
Microsoft Visual Studio 2012 Shell (Minimum)
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies
Microsoft Visual Studio 2012 Shell (Minimum) Resources
Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU
Microsoft Visual Studio Professional 2012
Microsoft Visual Studio Professional 2012 - ENU
Microsoft Visual Studio Team Foundation Server 2012 Object Model
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU
Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core
Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources
Microsoft Web Deploy 3.0
Microsoft Web Deploy dbSqlPackage Provider - enu
Microsoft Web Developer Tools 2012.2 - Visual Studio 2012
Microsoft Web Platform Installer 4.0
Microsoft_VC80_CRT_x86
Microsoft_VC90_CRT_x86
Movie Maker
Mozilla Firefox 28.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT110
MSVCRT110_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
myitlab Plug-in/ActiveX Installer
NVIDIA 3D Vision Controller Driver 335.21
NVIDIA 3D Vision Driver 335.23
NVIDIA Control Panel 335.23
NVIDIA GeForce Experience 1.8.2
NVIDIA Graphics Driver 335.23
NVIDIA HD Audio Driver 1.3.30.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX
NVIDIA PhysX System Software 9.13.1220
NVIDIA ShadowPlay 11.10.11
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 11.10.11
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.20
Origin
PDF Settings CS6
Perixx Gaming mouse version 1.0.7
Photo Common
Photo Gallery
PMDG 737 8900 NGX
PMDG BAe JS4100
PreEmptive Analytics Visual Studio Components
Prerequisites for SSDT
PRO-ATC/X version 1.2.2.6
PS3 Media Server
PunkBuster Services
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
REX 4 - Texture Direct
Rockstar Games Social Club
Secure Download Manager
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826023) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826035) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
SHIELD Streaming
Steam
SUPERAntiSpyware
Tom Clancy's Splinter Cell® Blacklist™
Tomb Raider
Unigine Valley Benchmark version 1.0
Update for  (KB2504637)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2837594) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition
Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2775360) 64-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition
Update for Microsoft Visio 2010 (KB2878227) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
Update for Microsoft Visual Studio 2012 (KB2781514)
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition
Uplay
Visual Studio 2012 Prerequisites
Visual Studio 2012 Prerequisites - ENU Language Pack
Visual Studio 2012 Update 2 (KB2707250)
Visual Studio Extensions for Windows Library for JavaScript
VLC media player 2.1.4
WCF Data Services 5.0 (for OData v3) Primary Components
WCF Data Services Tools for Microsoft Visual Studio 2012
WCF RIA Services V1.0 SP2
Windows App Certification Kit Native Components
Windows App Certification Kit x64
Windows Azure Tools for LightSwitch HTML Client for Visual Studio 2012
Windows Driver Package - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Runtime Intellisense Content - en-us
Windows Software Development Kit
Windows Software Development Kit DirectX x64 Remote
Windows Software Development Kit DirectX x86 Remote
Windows Software Development Kit for Windows Store Apps
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
Windows XP Targeting with C++
WizMouse v1.7.0.3
.
==== Event Viewer Messages From Past Week ========
.
3/31/2014 3:48:01 PM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
3/31/2014 3:48:01 PM, Error: Service Control Manager [7024]  - The Windows Search service terminated with service-specific error %%-1073473535.
3/30/2014 9:03:46 PM, Error: Service Control Manager [7023]  - The SPP Notification Service service terminated with the following error:  Access is denied.
3/30/2014 5:18:08 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR1.
3/30/2014 3:39:27 PM, Error: Microsoft-Windows-DistributedCOM [10001]  - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding
3/30/2014 11:01:23 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk2\DR2.
3/29/2014 5:49:49 PM, Error: Microsoft-Windows-BitLocker-Driver [24620]  - Encrypted volume check: Volume information on  cannot be read.
3/28/2014 3:41:55 PM, Error: VDS Basic Provider [1]  - Unexpected failure. Error code: D@01010004
3/25/2014 5:58:08 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR5.
.
==== End Of File ===========================


 

Link to post
Share on other sites

Please run a Quick Scan with Malwarebytes and post the log:

Open up Malwarebytes => Settings Tab => Scanner Settings => Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report.

Make sure that everything is checked, and click Remove Selected.

Link to post
Share on other sites

Scan Date: 4/2/2014
Scan Time: 9:05:14 AM
Logfile: logFile.txt
Administrator: Yes

Version: 2.00.0.1000
Malware Database: v2014.04.02.05
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: JEDI

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 306319
Time Elapsed: 8 min, 54 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

Link to post
Share on other sites

Step 1

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 2

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan button. Wait until is finished.
  • Click on Clean.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner\AdwCleaner[s0].txt as well.
In your next reply, post the following log files:
  • Junkware Removal Tool log
  • AdwCleaner log
Link to post
Share on other sites

First and foremost, my debit card was used yesterday. I just called my bank to cancel my DEBIT card, and they have offered to reimburse me for the charges. It was done locally, so I'm not sure if it was caught online or through a physical machine in the area. The theif probably made a counterfeit card and used it as they all show as Misc Debit transactions. At this point, I'm not sure if I should clean my computer or do a complete reinstall because it's not looking good. Need help thank you.

 

# AdwCleaner v3.023 - Report created 09/04/2014 at 09:24:57
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : JEDI - DEVA
# Running from : C:\Users\JEDI\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Bench
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Users\JEDI\AppData\Local\Conduit
Folder Deleted : C:\Users\JEDI\AppData\Roaming\ValueApps

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{15527BF5-9729-49DC-889C-9F956983154C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DD05B915-F77B-474A-9D42-9FEEAF5475C4}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKLM\Software\Bench
Key Deleted : HKLM\Software\CompeteInc

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v28.0 (en-US)

[ File : C:\Users\JEDI\AppData\Roaming\Mozilla\Firefox\Profiles\jau5928u.default\prefs.js ]


-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\JEDI\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1788 octets] - [09/04/2014 09:23:46]
AdwCleaner[s0].txt - [1719 octets] - [09/04/2014 09:24:57]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1779 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x64
Ran by JEDI on Wed 04/09/2014 at  9:17:37.03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\visualbee"
Successfully deleted: [Folder] "C:\Users\JEDI\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ FireFox

Emptied folder: C:\Users\JEDI\AppData\Roaming\mozilla\firefox\profiles\jau5928u.default\minidumps [53 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 04/09/2014 at  9:21:08.84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Link to post
Share on other sites

  • 4 weeks later...
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.