TrunkMonkey
Posts: 73 +0
Two days ago my machine began to act strangely, so I did some googling based on windows messages I was getting. That brought me to downloading a free trial of MalwareBytes Pro, which found 2 instances of this malware. I instructed MB to delete these files. For a while I thought I was in the clear, but now I'm pretty sure I need your help. Here is the requested 3 logs:
Malwarebytes Anti-Malware (PRO) 1.70.0.1100
www.malwarebytes.org
Database version: v2013.01.08.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Justin Sidwell :: TOWEROFPOWER10 [administrator]
Protection: Enabled
1/8/2013 10:49:25 AM
mbam-log-2013-01-08 (10-49-25).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 229765
Time elapsed: 4 minute(s), 56 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
DDS (attach.txt)
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 7/23/2010 1:15:33 AM
System Uptime: 1/8/2013 10:44:17 AM (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M4A87TD EVO
Processor: AMD Phenom(tm) II X6 1055T Processor | AM3 | 784/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 343.545 GiB free.
D: is CDROM ()
E: is FIXED (FAT32) - 1 GiB total, 0.656 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP466: 1/5/2013 4:53:03 AM - IObit Uninstaller restore point
RP467: 1/5/2013 4:54:23 AM - IObit Uninstaller restore point
RP468: 1/5/2013 9:48:29 AM - Windows Update
RP470: 1/5/2013 5:28:50 PM - Windows Update
RP471: 1/5/2013 7:20:03 PM - Windows Update
RP472: 1/6/2013 12:32:32 AM - Installed Microsoft Fix it 50897
RP473: 1/6/2013 1:41:10 AM - xml bullshit
RP474: 1/6/2013 6:01:09 AM - Restore Operation
RP475: 1/6/2013 7:23:05 AM - Windows Update
RP476: 1/6/2013 12:45:55 PM - stable
RP477: 1/6/2013 1:09:02 PM - stable
RP478: 1/6/2013 10:35:36 PM - IObit Uninstaller restore point
RP479: 1/6/2013 10:38:05 PM - IObit Uninstaller restore point
RP480: 1/6/2013 10:41:16 PM - Removed TurboV EVO
RP481: 1/6/2013 10:42:19 PM - IObit Uninstaller restore point
RP482: 1/6/2013 10:42:35 PM - Removed TurboV EVO
RP483: 1/6/2013 11:19:26 PM - IObit Uninstaller restore point
RP484: 1/6/2013 11:23:33 PM - IObit Uninstaller restore point
RP485: 1/6/2013 11:24:29 PM - IObit Uninstaller restore point
RP486: 1/6/2013 11:24:53 PM - Removed JMicron JMB36X Driver
RP487: 1/7/2013 4:27:22 PM - reg assassin
RP488: 1/7/2013 6:10:17 PM - IObit Uninstaller restore point
RP489: 1/7/2013 7:30:17 PM - Removed Java 7 Update 9
RP490: 1/8/2013 3:15:35 AM - Restore Operation
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
64 Bit HP CIO Components Installer
7-Zip 9.20 (x64 edition)
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI
Akamai NetSession Interface
AMD Accelerated Video Transcoding
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Fuel
AMD Media Foundation Decoders
AMD System Monitor
AMD VISION Engine Control Center
Call of Duty(R) 4 - Modern Warfare(TM) Demo
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
DocProc
Doom 3
Dropbox
eReg
Geekbench 2.4
Google Chrome
Google Update Helper
Half-Life 2
Half-Life 2: Episode One
Half-Life 2: Episode Two
Half-Life 2: Lost Coast
Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)
HPPhotoSmartDiscLabelContent1
HPPhotosmartEssential
Java 7 Update 9
Java Auto Updater
Logitech Harmony Remote Software 7
Logitech SetPoint 6.30
Malwarebytes Anti-Malware version 1.70.0.1100
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Music Manager
MyFreeCodec
NEC Electronics USB 3.0 Host Controller Driver
neroxml
NETGEAR GA311 Gigabit Adapter
Platform
Portal
Portal 2
Radeon RAMDisk
Realtek Ethernet Controller Driver For Windows 7
Remote Control USB Driver
Samsung Kies
SAMSUNG USB Driver for Mobile Phones
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Smart Defrag 2
SmartPack 1.21.0
SmartWebPrinting
Steam
Team Fortress 2
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760573) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VCRedistSetup
VIA Platform Device Manager
VLC media player 2.0.5
Windows 7 Logon Background Changer
.
==== Event Viewer Messages From Past Week ========
.
1/8/2013 3:53:30 AM, Error: Microsoft-Windows-HttpEvent [15006] - Owner of the log file or directory \SystemRoot\System32\LogFiles\HTTPERR\httperr1.log is invalid. This could be because another user has already created the log file or the directory.
1/8/2013 3:21:29 AM, Error: Microsoft Antimalware [2004] - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x80070002 Error description: The system cannot find the file specified. Signature version: 1.141.3310.0;1.141.3310.0 Engine version: 1.1.9002.0
1/8/2013 12:54:52 AM, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{F9E98BE2-3828-45B7-A2B7-D61FD2EF7F5B} because another computer on the network has the same name. The server could not start.
1/8/2013 11:04:22 AM, Error: Microsoft-Windows-WMPNSS-Service [14365] - Proximity detection failed due to unknown error '0x80004004'. The best proximity time detected was -1 milliseconds.
1/8/2013 10:44:26 AM, Error: volmgr [46] - Crash dump initialization failed!
1/8/2013 1:49:37 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
1/7/2013 4:24:57 PM, Error: Schannel [36888] - The following fatal alert was generated: 70. The internal error state is 105.
1/7/2013 11:54:19 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
1/7/2013 10:27:24 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.
1/6/2013 6:12:20 AM, Error: Microsoft Antimalware [2004] - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x80070002 Error description: The system cannot find the file specified. Signature version: 1.141.3214.0;1.141.3214.0 Engine version: 1.1.9002.0
1/6/2013 4:30:05 AM, Error: Service Control Manager [7003] - The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.
1/6/2013 4:30:05 AM, Error: Service Control Manager [7003] - The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.
1/6/2013 4:30:05 AM, Error: Service Control Manager [7003] - The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.
1/6/2013 11:28:06 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cdrom
1/6/2013 1:57:57 PM, Error: Service Control Manager [7024] - The Background Intelligent Transfer Service service terminated with service-specific error %%-2147024864.
1/6/2013 1:57:57 PM, Error: Microsoft-Windows-Bits-Client [16392] - The BITS service failed to start. Error 0x80070020.
1/5/2013 3:16:48 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
.
==== End Of File ===========================
DDS (DDS.txt)
DDS (Ver_2012-11-20.01) - NTFS_AMD64
[FONT=mceinline]Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2[/FONT]
[FONT=mceinline]Run by Justin Sidwell at 11:04:34 on 2013-01-08[/FONT]
[FONT=mceinline]Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.4094.1623 [GMT -6:00][/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}[/FONT]
[FONT=mceinline]SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}[/FONT]
[FONT=mceinline]SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============== Running Processes ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]C:\Windows\system32\lsm.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k DcomLaunch[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k RPCSS[/FONT]
[FONT=mceinline]c:\Program Files\Microsoft Security Client\MsMpEng.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\atiesrxx.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k netsvcs[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k GPSvcGroup[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k LocalService[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k NetworkService[/FONT]
[FONT=mceinline]C:\Windows\system32\atieclxx.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\spoolsv.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork[/FONT]
[FONT=mceinline]C:\Windows\system32\taskhost.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\Dwm.exe[/FONT]
[FONT=mceinline]C:\Windows\Explorer.EXE[/FONT]
[FONT=mceinline]C:\Windows\system32\taskeng.exe[/FONT]
[FONT=mceinline]C:\Windows\DAODx.exe[/FONT]
[FONT=mceinline]C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Netgear\WIN7_GA311\GA311.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Netgear\WIN7_GA311\GA311.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k HPZ12[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k PeerDist[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k HPZ12[/FONT]
[FONT=mceinline]C:\Windows\System32\snmptrap.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k WerSvcGroup[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe[/FONT]
[FONT=mceinline]c:\Program Files\Microsoft Security Client\NisSrv.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\rundll32.exe[/FONT]
[FONT=mceinline]C:\Program Files\Logitech\SetPointP\SetPoint.exe[/FONT]
[FONT=mceinline]C:\Program Files\Microsoft Security Client\msseces.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe[/FONT]
[FONT=mceinline]C:\Users\Justin Sidwell\AppData\Roaming\Dropbox\bin\Dropbox.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k LocalServicePeerNet[/FONT]
[FONT=mceinline]C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe[/FONT]
[FONT=mceinline]C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[/FONT]
[FONT=mceinline]C:\Program Files\Logitech\SetPointG\SetPointII.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\SearchIndexer.exe[/FONT]
[FONT=mceinline]C:\Program Files\Windows Media Player\wmpnetwk.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\SearchProtocolHost.exe[/FONT]
[FONT=mceinline]C:\Program Files\Common Files\LogiShrd\sp6\LU\LULnchr.exe[/FONT]
[FONT=mceinline]C:\Program Files\Common Files\LogiShrd\sp6\LU\LogitechUpdate.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\AUDIODG.EXE[/FONT]
[FONT=mceinline]C:\Windows\system32\taskeng.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\SearchFilterHost.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\wbem\wmiprvse.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\cscript.exe[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============== Pseudo HJT Report ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]uStart Page = hxxps://www.google.com/[/FONT]
[FONT=mceinline]uProxyOverride = <local>[/FONT]
[FONT=mceinline]mWinlogon: Userinit = userinit.exe[/FONT]
[FONT=mceinline]BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>[/FONT]
[FONT=mceinline]BHO: {0347C33E-8762-4905-BF09-768834316C61} - <orphaned>[/FONT]
[FONT=mceinline]BHO: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - <orphaned>[/FONT]
[FONT=mceinline]BHO: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - <orphaned>[/FONT]
[FONT=mceinline]BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll[/FONT]
[FONT=mceinline]BHO: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - <orphaned>[/FONT]
[FONT=mceinline]BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll[/FONT]
[FONT=mceinline]BHO: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - <orphaned>[/FONT]
[FONT=mceinline]EB: {555D4D79-4BD2-4094-A395-CFC534424A05} - <orphaned>[/FONT]
[FONT=mceinline]uRun: [Google Update] "C:\Users\Justin Sidwell\AppData\Local\Google\Update\GoogleUpdate.exe" /c[/FONT]
[FONT=mceinline]mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r[/FONT]
[FONT=mceinline]mRun: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"[/FONT]
[FONT=mceinline]mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun[/FONT]
[FONT=mceinline]mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"[/FONT]
[FONT=mceinline]mRun: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b[/FONT]
[FONT=mceinline]mRun: [QFan Help] "C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe"[/FONT]
[FONT=mceinline]mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe[/FONT]
[FONT=mceinline]mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"[/FONT]
[FONT=mceinline]StartupFolder: C:\Users\JUSTIN~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Justin Sidwell\AppData\Roaming\Dropbox\bin\Dropbox.exe[/FONT]
[FONT=mceinline]uPolicies-Explorer: NoDriveTypeAutoRun = dword:0[/FONT]
[FONT=mceinline]mPolicies-Explorer: NoActiveDesktop = dword:1[/FONT]
[FONT=mceinline]mPolicies-Explorer: NoActiveDesktopChanges = dword:1[/FONT]
[FONT=mceinline]mPolicies-System: ConsentPromptBehaviorAdmin = dword:5[/FONT]
[FONT=mceinline]mPolicies-System: ConsentPromptBehaviorUser = dword:3[/FONT]
[FONT=mceinline]mPolicies-System: EnableUIADesktopToggle = dword:0[/FONT]
[FONT=mceinline]mPolicies-Windows\System: UseOEMBackground = dword:1[/FONT]
[FONT=mceinline]IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]INFO: HKCU has more than 50 listed domains.[/FONT]
[FONT=mceinline]If you wish to scan all of them, select the 'Force scan all domains' option.[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} - hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab[/FONT]
[FONT=mceinline]DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlcdnet.asus.com/pub/ASUS/misc/dlm-activex-2.2.5.0.cab[/FONT]
[FONT=mceinline]DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab[/FONT]
[FONT=mceinline]DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab[/FONT]
[FONT=mceinline]DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab[/FONT]
[FONT=mceinline]DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab[/FONT]
[FONT=mceinline]TCP: NameServer = 192.168.1.1[/FONT]
[FONT=mceinline]TCP: Interfaces\{07C7AB6D-61BF-417C-8263-713ADE83B628} : DHCPNameServer = 192.168.1.1[/FONT]
[FONT=mceinline]TCP: Interfaces\{F9E98BE2-3828-45B7-A2B7-D61FD2EF7F5B} : DHCPNameServer = 192.168.1.1[/FONT]
[FONT=mceinline]Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll[/FONT]
[FONT=mceinline]SSODL: WebCheck - <orphaned>[/FONT]
[FONT=mceinline]SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - [/FONT]
[FONT=mceinline]x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming[/FONT]
[FONT=mceinline]x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey[/FONT]
[FONT=mceinline]x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>[/FONT]
[FONT=mceinline]x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll[/FONT]
[FONT=mceinline]x64-SSODL: WebCheck - <orphaned>[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============= SERVICES / DRIVERS ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2012-8-30 228768][/FONT]
[FONT=mceinline]R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2012-12-17 17720][/FONT]
[FONT=mceinline]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-2 240640][/FONT]
[FONT=mceinline]R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-12-2 361984][/FONT]
[FONT=mceinline]R2 AODDriver4.2;AODDriver4.2;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-4-9 57472][/FONT]
[FONT=mceinline]R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [2012-12-23 109056][/FONT]
[FONT=mceinline]R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-1-7 398184][/FONT]
[FONT=mceinline]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-1-7 682344][/FONT]
[FONT=mceinline]R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-8-30 128456][/FONT]
[FONT=mceinline]R2 RtNdPt60;Realtek NDIS Protocol Driver;C:\Windows\System32\drivers\RtNdPt60.sys [2011-7-5 27136][/FONT]
[FONT=mceinline]R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-5-14 96896][/FONT]
[FONT=mceinline]R3 Lycosa;Lycosa Keyboard;C:\Windows\System32\drivers\Lycosa.sys [2008-1-17 18816][/FONT]
[FONT=mceinline]R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-1-7 24176][/FONT]
[FONT=mceinline]R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-9-12 368896][/FONT]
[FONT=mceinline]R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-1-22 77824][/FONT]
[FONT=mceinline]R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-1-22 180224][/FONT]
[FONT=mceinline]R3 RAMDiskVE;RAMDiskVE;C:\Windows\System32\drivers\RAMDiskVE.sys [2012-11-29 73552][/FONT]
[FONT=mceinline]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240][/FONT]
[FONT=mceinline]R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2010-3-2 1301504][/FONT]
[FONT=mceinline]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384][/FONT]
[FONT=mceinline]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576][/FONT]
[FONT=mceinline]S3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2010-12-26 46136][/FONT]
[FONT=mceinline]S3 AODDriver4.0;AODDriver4.0;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-4-9 57472][/FONT]
[FONT=mceinline]S3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver;C:\Windows\System32\drivers\BVRPMPR5a64.SYS [2011-7-5 35840][/FONT]
[FONT=mceinline]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-12-24 102368][/FONT]
[FONT=mceinline]S3 G311N6;NETGEAR GA311 Gigabit Driver;C:\Windows\System32\drivers\G311N6.sys [2011-7-5 347680][/FONT]
[FONT=mceinline]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-6 19456][/FONT]
[FONT=mceinline]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-12-24 203104][/FONT]
[FONT=mceinline]S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136][/FONT]
[FONT=mceinline]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-6 57856][/FONT]
[FONT=mceinline]S3 VKbms;Virtual HID Minidriver;C:\Windows\System32\drivers\VKbms.sys [2012-3-4 13312][/FONT]
[FONT=mceinline]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-7-23 1255736][/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]=============== File Associations ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]FileExt: .txt: textfile="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [UserChoice][/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]=============== Created Last 30 ================[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]2013-01-08 13:42:199125352----a-w-C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{ED7B033D-3272-452F-8282-8326EA4A0269}\mpengine.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\OLEPRO32.DLL[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\atiumdva.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\atiumdag.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\atiu9pag.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\aticfx32.dll[/FONT]
[FONT=mceinline]2013-01-08 10:04:469125352----a-w-C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll[/FONT]
[FONT=mceinline]2013-01-08 01:24:49--------d-----w-C:\MATS[/FONT]
[FONT=mceinline]2013-01-07 17:37:2624176----a-w-C:\Windows\System32\drivers\mbam.sys[/FONT]
[FONT=mceinline]2013-01-07 17:37:26--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware[/FONT]
[FONT=mceinline]2013-01-07 05:25:15315904----a-w-C:\Windows\SysWow64\Difx9cda.rra[/FONT]
[FONT=mceinline]2013-01-07 03:50:20--------d-----w-C:\ProgramData\Spybot - Search & Destroy[/FONT]
[FONT=mceinline]2013-01-07 03:50:20--------d-----w-C:\Program Files (x86)\Spybot - Search & Destroy[/FONT]
[FONT=mceinline]2013-01-06 22:50:22--------d-----w-C:\Users\Justin Sidwell\AppData\Roaming\start[/FONT]
[FONT=mceinline]2013-01-06 08:31:17--------d-----w-C:\Users\Justin Sidwell\AppData\Roaming\Malwarebytes[/FONT]
[FONT=mceinline]2013-01-06 08:30:53--------d-----w-C:\ProgramData\Malwarebytes[/FONT]
[FONT=mceinline]2013-01-06 01:45:41--------d-----w-C:\ProgramData\Kaspersky Lab[/FONT]
[FONT=mceinline]2013-01-06 01:45:41--------d-----w-C:\Program Files (x86)\Kaspersky Lab[/FONT]
[FONT=mceinline]2013-01-05 12:38:12--------d-----w-C:\Program Files (x86)\Resource Hacker[/FONT]
[FONT=mceinline]2013-01-05 06:23:15--------d-----w-C:\Program Files (x86)\AMD AVT[/FONT]
[FONT=mceinline]2013-01-05 06:23:09--------d-----w-C:\Program Files (x86)\AMD APP[/FONT]
[FONT=mceinline]2013-01-05 06:22:54--------d-----w-C:\Program Files\Common Files\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-05 06:22:54--------d-----w-C:\Program Files (x86)\Common Files\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-05 06:18:27--------d-----w-C:\Program Files (x86)\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-05 06:18:19--------d-----w-C:\Program Files\ATI[/FONT]
[FONT=mceinline]2013-01-05 06:17:39--------d-----w-C:\Program Files\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-04 20:30:17--------d--h--w-C:\Program Files (x86)\Zero G Registry[/FONT]
[FONT=mceinline]2013-01-04 20:30:17--------d-----w-C:\Program Files (x86)\Skifta[/FONT]
[FONT=mceinline]2013-01-04 20:27:58--------d--h--w-C:\Users\Justin Sidwell\InstallAnywhere[/FONT]
[FONT=mceinline]2013-01-04 20:27:57--------d-----w-C:\tmp[/FONT]
[FONT=mceinline]2013-01-02 23:33:3153248----a-r-C:\Users\Justin Sidwell\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe[/FONT]
[FONT=mceinline]2013-01-01 15:45:0916363960----a-w-C:\Windows\SysWow64\FlashPlayerInstaller.exe[/FONT]
[FONT=mceinline]2013-01-01 10:08:34--------d-----w-C:\Users\Justin Sidwell\AppData\Local\Logishrd[/FONT]
[FONT=mceinline]2012-12-28 07:12:47--------d-----w-C:\Windows\pss[/FONT]
[FONT=mceinline]2012-12-27 18:53:20--------d-----w-C:\Program Files (x86)\Radeon RAMDisk[/FONT]
[FONT=mceinline]2012-12-27 07:59:26--------d-----w-C:\Program Files\LockHunter[/FONT]
[FONT=mceinline]2012-12-27 01:31:2318960----a-w-C:\Windows\System32\drivers\LNonPnP.sys[/FONT]
[FONT=mceinline]2012-12-27 01:25:58--------d-----w-C:\Users\Justin Sidwell\AppData\Roaming\Logishrd[/FONT]
[FONT=mceinline]2012-12-26 08:24:3613368----a-w-C:\Windows\SysWow64\drivers\AsUpIO.sys[/FONT]
[FONT=mceinline]2012-12-26 04:51:33972264------w-C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DF887FDD-C14B-4F5D-9DCF-6ABC14527719}\gapaengine.dll[/FONT]
[FONT=mceinline]2012-12-25 09:28:059125352----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A8E69ADD-41CB-4D51-B163-46B0F9208C22}\mpengine.dll[/FONT]
[FONT=mceinline]2012-12-25 00:00:48--------d-----w-C:\Windows\System32\catroot2[/FONT]
[FONT=mceinline]2012-12-24 15:15:51--------d-----w-C:\Users\Justin Sidwell\AppData\Local\ElevatedDiagnostics[/FONT]
[FONT=mceinline]2012-12-24 07:27:09203104----a-w-C:\Windows\System32\drivers\ssudmdm.sys[/FONT]
[FONT=mceinline]2012-12-24 07:27:08102368----a-w-C:\Windows\System32\drivers\ssudbus.sys[/FONT]
[FONT=mceinline]2012-12-24 07:24:44--------d-----w-C:\Program Files (x86)\MarkAny[/FONT]
[FONT=mceinline]2012-12-23 15:40:09--------d-----w-C:\ProgramData\ASUS OC Profiles[/FONT]
[FONT=mceinline]2012-12-23 15:34:5824576----a-w-C:\Windows\SysWow64\AsIO.dll[/FONT]
[FONT=mceinline]2012-12-23 15:34:5813440----a-w-C:\Windows\SysWow64\drivers\AsIO.sys[/FONT]
[FONT=mceinline]2012-12-23 15:33:05225280----a-w-C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll[/FONT]
[FONT=mceinline]2012-12-23 12:26:52--------d-sh--w-C:\$RECYCLE.BIN[/FONT]
[FONT=mceinline]2012-12-23 11:15:38--------d-----w-C:\Program Files (x86)\AMD[/FONT]
[FONT=mceinline]2012-12-23 11:15:0416896----a-w-C:\Windows\AsTaskSched.dll[/FONT]
[FONT=mceinline]2012-12-23 10:44:40--------d-----w-C:\Users\Justin Sidwell\AppData\Local\Akamai[/FONT]
[FONT=mceinline]2012-12-21 20:35:3546080----a-w-C:\Windows\System32\atmlib.dll[/FONT]
[FONT=mceinline]2012-12-21 20:35:3534304----a-w-C:\Windows\SysWow64\atmlib.dll[/FONT]
[FONT=mceinline]2012-12-21 20:35:34367616----a-w-C:\Windows\System32\atmfd.dll[/FONT]
[FONT=mceinline]2012-12-21 20:35:33295424----a-w-C:\Windows\SysWow64\atmfd.dll[/FONT]
[FONT=mceinline]2012-12-21 04:13:33--------d-----w-C:\Program Files (x86)\ASUS[/FONT]
[FONT=mceinline]2012-12-18 05:28:5632600----a-w-C:\Windows\System32\SmartDefragBootTime.exe[/FONT]
[FONT=mceinline]2012-12-18 05:28:4617720----a-w-C:\Windows\System32\drivers\SmartDefragDriver.sys[/FONT]
[FONT=mceinline]2012-12-17 17:07:23--------d-----w-C:\ProgramData\AVAST Software[/FONT]
[FONT=mceinline]2012-12-17 17:07:23--------d-----w-C:\Program Files\AVAST Software[/FONT]
[FONT=mceinline]2012-12-16 06:33:15--------dc----w-C:\Users\Justin Sidwell\AppData\Local\MigWiz[/FONT]
[FONT=mceinline]2012-12-12 05:02:492048----a-w-C:\Windows\SysWow64\tzres.dll[/FONT]
[FONT=mceinline]2012-12-12 05:01:587680----a-w-C:\Windows\SysWow64\instnm.exe[/FONT]
[FONT=mceinline]2012-12-10 16:42:4995208----a-w-C:\Windows\SysWow64\WindowsAccessBridge-32.dll[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]==================== Find3M ====================[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]2013-01-07 05:04:18123704----a-w-C:\Windows\System32\drivers\jraid.sys[/FONT]
[FONT=mceinline]2013-01-01 15:45:1973656----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl[/FONT]
[FONT=mceinline]2013-01-01 15:45:19697272----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe[/FONT]
[FONT=mceinline]2012-12-10 16:42:35821736----a-w-C:\Windows\SysWow64\npdeployJava1.dll[/FONT]
[FONT=mceinline]2012-12-10 16:42:35746984----a-w-C:\Windows\SysWow64\deployJava1.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:50222720----a-w-C:\Windows\System32\clinfo.exe[/FONT]
[FONT=mceinline]2012-12-02 09:26:3276288----a-w-C:\Windows\System32\OpenVideo64.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:2865536----a-w-C:\Windows\SysWow64\OpenVideo.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:2464512----a-w-C:\Windows\System32\OVDecode64.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:2056320----a-w-C:\Windows\SysWow64\OVDecode.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:1034523136----a-w-C:\Windows\System32\amdocl64.dll[/FONT]
[FONT=mceinline]2012-12-02 09:21:2228738048----a-w-C:\Windows\SysWow64\amdocl.dll[/FONT]
[FONT=mceinline]2012-12-02 09:17:0254784----a-w-C:\Windows\System32\OpenCL.dll[/FONT]
[FONT=mceinline]2012-12-02 09:16:5850176----a-w-C:\Windows\SysWow64\OpenCL.dll[/FONT]
[FONT=mceinline]2012-12-02 08:31:345626536----a-w-C:\Windows\SysWow64\atiumdag.dll[/FONT]
[FONT=mceinline]2012-12-02 08:29:4811270656----a-w-C:\Windows\System32\drivers\atikmdag.sys[/FONT]
[FONT=mceinline]2012-12-02 08:17:1223455744----a-w-C:\Windows\System32\atio6axx.dll[/FONT]
[FONT=mceinline]2012-12-02 08:00:18163840----a-w-C:\Windows\System32\atiapfxx.exe[/FONT]
[FONT=mceinline]2012-12-02 07:59:5670144----a-w-C:\Windows\System32\coinst_9.01.8.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:4451200----a-w-C:\Windows\System32\aticalrt64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:4246080----a-w-C:\Windows\SysWow64\aticalrt.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:3644544----a-w-C:\Windows\System32\aticalcl64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:3444032----a-w-C:\Windows\SysWow64\aticalcl.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:2416082944----a-w-C:\Windows\System32\aticaldd64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:57:5418979328----a-w-C:\Windows\SysWow64\atioglxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:54:0813703168----a-w-C:\Windows\SysWow64\aticaldd.dll[/FONT]
[FONT=mceinline]2012-12-02 07:50:46949248----a-w-C:\Windows\SysWow64\aticfx32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:48:521137664----a-w-C:\Windows\System32\aticfx64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:46:466684672----a-w-C:\Windows\SysWow64\atidxx32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:41:444674048----a-w-C:\Windows\System32\atiumd6a.dll[/FONT]
[FONT=mceinline]2012-12-02 07:37:46442368----a-w-C:\Windows\System32\atidemgy.dll[/FONT]
[FONT=mceinline]2012-12-02 07:37:36548864----a-w-C:\Windows\System32\atieclxx.exe[/FONT]
[FONT=mceinline]2012-12-02 07:36:50240640----a-w-C:\Windows\System32\atiesrxx.exe[/FONT]
[FONT=mceinline]2012-12-02 07:35:26120320----a-w-C:\Windows\System32\atitmm64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:35:1021504----a-w-C:\Windows\System32\atimuixx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:35:0459392----a-w-C:\Windows\System32\atiedu64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:35:0043520----a-w-C:\Windows\SysWow64\ati2edxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:29:303862528----a-w-C:\Windows\SysWow64\atiumdva.dll[/FONT]
[FONT=mceinline]2012-12-02 07:29:047378944----a-w-C:\Windows\System32\atidxx64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:24:506781440----a-w-C:\Windows\System32\atiumd64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:5456320----a-w-C:\Windows\System32\atimpc64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:5456320----a-w-C:\Windows\System32\amdpcom64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:4456832----a-w-C:\Windows\SysWow64\atimpc32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:4456832----a-w-C:\Windows\SysWow64\amdpcom32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:14:2853248----a-w-C:\Windows\System32\drivers\ati2erec.dll[/FONT]
[FONT=mceinline]2012-12-02 07:14:10619008----a-w-C:\Windows\System32\atiadlxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:14:00421888----a-w-C:\Windows\SysWow64\atiadlxy.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:4417920----a-w-C:\Windows\System32\atig6pxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:4214848----a-w-C:\Windows\SysWow64\atiglpxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:4214848----a-w-C:\Windows\System32\atiglpxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:3841984----a-w-C:\Windows\System32\atig6txx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:3033280----a-w-C:\Windows\SysWow64\atigktxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:20546816----a-w-C:\Windows\System32\drivers\atikmpag.sys[/FONT]
[FONT=mceinline]2012-12-02 07:11:28130048----a-w-C:\Windows\System32\atiuxp64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:11:20109568----a-w-C:\Windows\SysWow64\atiuxpag.dll[/FONT]
[FONT=mceinline]2012-12-02 07:11:14104448----a-w-C:\Windows\System32\atiu9p64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:11:0483968----a-w-C:\Windows\SysWow64\atiu9pag.dll[/FONT]
[FONT=mceinline]2012-11-29 17:50:0673552----a-w-C:\Windows\System32\drivers\RAMDiskVE.sys[/FONT]
[FONT=mceinline]2012-11-22 03:26:403149824----a-w-C:\Windows\System32\win32k.sys[/FONT]
[FONT=mceinline]2012-11-14 06:11:442312704----a-w-C:\Windows\System32\jscript9.dll[/FONT]
[FONT=mceinline]2012-11-14 06:04:111392128----a-w-C:\Windows\System32\wininet.dll[/FONT]
[FONT=mceinline]2012-11-14 06:02:491494528----a-w-C:\Windows\System32\inetcpl.cpl[/FONT]
[FONT=mceinline]2012-11-14 05:57:46599040----a-w-C:\Windows\System32\vbscript.dll[/FONT]
[FONT=mceinline]2012-11-14 05:57:35173056----a-w-C:\Windows\System32\ieUnatt.exe[/FONT]
[FONT=mceinline]2012-11-14 05:52:402382848----a-w-C:\Windows\System32\mshtml.tlb[/FONT]
[FONT=mceinline]2012-11-14 02:09:221800704----a-w-C:\Windows\SysWow64\jscript9.dll[/FONT]
[FONT=mceinline]2012-11-14 01:58:151427968----a-w-C:\Windows\SysWow64\inetcpl.cpl[/FONT]
[FONT=mceinline]2012-11-14 01:57:371129472----a-w-C:\Windows\SysWow64\wininet.dll[/FONT]
[FONT=mceinline]2012-11-14 01:49:25142848----a-w-C:\Windows\SysWow64\ieUnatt.exe[/FONT]
[FONT=mceinline]2012-11-14 01:48:27420864----a-w-C:\Windows\SysWow64\vbscript.dll[/FONT]
[FONT=mceinline]2012-11-14 01:44:422382848----a-w-C:\Windows\SysWow64\mshtml.tlb[/FONT]
[FONT=mceinline]2012-11-09 05:45:092048----a-w-C:\Windows\System32\tzres.dll[/FONT]
[FONT=mceinline]2012-11-02 05:59:11478208----a-w-C:\Windows\System32\dpnet.dll[/FONT]
[FONT=mceinline]2012-11-02 05:11:31376832----a-w-C:\Windows\SysWow64\dpnet.dll[/FONT]
[FONT=mceinline]2012-10-29 18:10:024659712----a-w-C:\Windows\SysWow64\Redemption.dll[/FONT]
[FONT=mceinline]2012-10-29 18:09:2890112----a-w-C:\Windows\MAMCityDownload.ocx[/FONT]
[FONT=mceinline]2012-10-29 18:09:28330240----a-w-C:\Windows\MASetupCaller.dll[/FONT]
[FONT=mceinline]2012-10-29 18:09:2830568----a-w-C:\Windows\MusiccityDownload.exe[/FONT]
[FONT=mceinline]2012-10-29 18:09:26821824----a-w-C:\Windows\SysWow64\dgderapi.dll[/FONT]
[FONT=mceinline]2012-10-16 08:38:37135168----a-w-C:\Windows\apppatch\AppPatch64\AcXtrnal.dll[/FONT]
[FONT=mceinline]2012-10-16 08:38:34350208----a-w-C:\Windows\apppatch\AppPatch64\AcLayers.dll[/FONT]
[FONT=mceinline]2012-10-16 07:39:52561664----a-w-C:\Windows\apppatch\AcLayers.dll[/FONT]
[FONT=mceinline]2012-10-15 16:54:0025472----a-w-C:\Windows\System32\RegistryDefragBootTime.exe[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============= FINISH: 11:07:09.58 ===============[/FONT]
Malwarebytes Anti-Malware (PRO) 1.70.0.1100
www.malwarebytes.org
Database version: v2013.01.08.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Justin Sidwell :: TOWEROFPOWER10 [administrator]
Protection: Enabled
1/8/2013 10:49:25 AM
mbam-log-2013-01-08 (10-49-25).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 229765
Time elapsed: 4 minute(s), 56 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
DDS (attach.txt)
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 7/23/2010 1:15:33 AM
System Uptime: 1/8/2013 10:44:17 AM (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M4A87TD EVO
Processor: AMD Phenom(tm) II X6 1055T Processor | AM3 | 784/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 343.545 GiB free.
D: is CDROM ()
E: is FIXED (FAT32) - 1 GiB total, 0.656 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP466: 1/5/2013 4:53:03 AM - IObit Uninstaller restore point
RP467: 1/5/2013 4:54:23 AM - IObit Uninstaller restore point
RP468: 1/5/2013 9:48:29 AM - Windows Update
RP470: 1/5/2013 5:28:50 PM - Windows Update
RP471: 1/5/2013 7:20:03 PM - Windows Update
RP472: 1/6/2013 12:32:32 AM - Installed Microsoft Fix it 50897
RP473: 1/6/2013 1:41:10 AM - xml bullshit
RP474: 1/6/2013 6:01:09 AM - Restore Operation
RP475: 1/6/2013 7:23:05 AM - Windows Update
RP476: 1/6/2013 12:45:55 PM - stable
RP477: 1/6/2013 1:09:02 PM - stable
RP478: 1/6/2013 10:35:36 PM - IObit Uninstaller restore point
RP479: 1/6/2013 10:38:05 PM - IObit Uninstaller restore point
RP480: 1/6/2013 10:41:16 PM - Removed TurboV EVO
RP481: 1/6/2013 10:42:19 PM - IObit Uninstaller restore point
RP482: 1/6/2013 10:42:35 PM - Removed TurboV EVO
RP483: 1/6/2013 11:19:26 PM - IObit Uninstaller restore point
RP484: 1/6/2013 11:23:33 PM - IObit Uninstaller restore point
RP485: 1/6/2013 11:24:29 PM - IObit Uninstaller restore point
RP486: 1/6/2013 11:24:53 PM - Removed JMicron JMB36X Driver
RP487: 1/7/2013 4:27:22 PM - reg assassin
RP488: 1/7/2013 6:10:17 PM - IObit Uninstaller restore point
RP489: 1/7/2013 7:30:17 PM - Removed Java 7 Update 9
RP490: 1/8/2013 3:15:35 AM - Restore Operation
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
64 Bit HP CIO Components Installer
7-Zip 9.20 (x64 edition)
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI
Akamai NetSession Interface
AMD Accelerated Video Transcoding
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Fuel
AMD Media Foundation Decoders
AMD System Monitor
AMD VISION Engine Control Center
Call of Duty(R) 4 - Modern Warfare(TM) Demo
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
DocProc
Doom 3
Dropbox
eReg
Geekbench 2.4
Google Chrome
Google Update Helper
Half-Life 2
Half-Life 2: Episode One
Half-Life 2: Episode Two
Half-Life 2: Lost Coast
Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)
HPPhotoSmartDiscLabelContent1
HPPhotosmartEssential
Java 7 Update 9
Java Auto Updater
Logitech Harmony Remote Software 7
Logitech SetPoint 6.30
Malwarebytes Anti-Malware version 1.70.0.1100
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Music Manager
MyFreeCodec
NEC Electronics USB 3.0 Host Controller Driver
neroxml
NETGEAR GA311 Gigabit Adapter
Platform
Portal
Portal 2
Radeon RAMDisk
Realtek Ethernet Controller Driver For Windows 7
Remote Control USB Driver
Samsung Kies
SAMSUNG USB Driver for Mobile Phones
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Smart Defrag 2
SmartPack 1.21.0
SmartWebPrinting
Steam
Team Fortress 2
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760573) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VCRedistSetup
VIA Platform Device Manager
VLC media player 2.0.5
Windows 7 Logon Background Changer
.
==== Event Viewer Messages From Past Week ========
.
1/8/2013 3:53:30 AM, Error: Microsoft-Windows-HttpEvent [15006] - Owner of the log file or directory \SystemRoot\System32\LogFiles\HTTPERR\httperr1.log is invalid. This could be because another user has already created the log file or the directory.
1/8/2013 3:21:29 AM, Error: Microsoft Antimalware [2004] - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x80070002 Error description: The system cannot find the file specified. Signature version: 1.141.3310.0;1.141.3310.0 Engine version: 1.1.9002.0
1/8/2013 12:54:52 AM, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{F9E98BE2-3828-45B7-A2B7-D61FD2EF7F5B} because another computer on the network has the same name. The server could not start.
1/8/2013 11:04:22 AM, Error: Microsoft-Windows-WMPNSS-Service [14365] - Proximity detection failed due to unknown error '0x80004004'. The best proximity time detected was -1 milliseconds.
1/8/2013 10:44:26 AM, Error: volmgr [46] - Crash dump initialization failed!
1/8/2013 1:49:37 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
1/7/2013 4:24:57 PM, Error: Schannel [36888] - The following fatal alert was generated: 70. The internal error state is 105.
1/7/2013 11:54:19 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
1/7/2013 10:27:24 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.
1/6/2013 6:12:20 AM, Error: Microsoft Antimalware [2004] - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x80070002 Error description: The system cannot find the file specified. Signature version: 1.141.3214.0;1.141.3214.0 Engine version: 1.1.9002.0
1/6/2013 4:30:05 AM, Error: Service Control Manager [7003] - The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.
1/6/2013 4:30:05 AM, Error: Service Control Manager [7003] - The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.
1/6/2013 4:30:05 AM, Error: Service Control Manager [7003] - The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.
1/6/2013 11:28:06 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cdrom
1/6/2013 1:57:57 PM, Error: Service Control Manager [7024] - The Background Intelligent Transfer Service service terminated with service-specific error %%-2147024864.
1/6/2013 1:57:57 PM, Error: Microsoft-Windows-Bits-Client [16392] - The BITS service failed to start. Error 0x80070020.
1/5/2013 3:16:48 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
.
==== End Of File ===========================
DDS (DDS.txt)
DDS (Ver_2012-11-20.01) - NTFS_AMD64
[FONT=mceinline]Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2[/FONT]
[FONT=mceinline]Run by Justin Sidwell at 11:04:34 on 2013-01-08[/FONT]
[FONT=mceinline]Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.4094.1623 [GMT -6:00][/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}[/FONT]
[FONT=mceinline]SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}[/FONT]
[FONT=mceinline]SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============== Running Processes ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]C:\Windows\system32\lsm.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k DcomLaunch[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k RPCSS[/FONT]
[FONT=mceinline]c:\Program Files\Microsoft Security Client\MsMpEng.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\atiesrxx.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k netsvcs[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k GPSvcGroup[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k LocalService[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k NetworkService[/FONT]
[FONT=mceinline]C:\Windows\system32\atieclxx.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\spoolsv.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork[/FONT]
[FONT=mceinline]C:\Windows\system32\taskhost.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\Dwm.exe[/FONT]
[FONT=mceinline]C:\Windows\Explorer.EXE[/FONT]
[FONT=mceinline]C:\Windows\system32\taskeng.exe[/FONT]
[FONT=mceinline]C:\Windows\DAODx.exe[/FONT]
[FONT=mceinline]C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Netgear\WIN7_GA311\GA311.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Netgear\WIN7_GA311\GA311.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k HPZ12[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k PeerDist[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k HPZ12[/FONT]
[FONT=mceinline]C:\Windows\System32\snmptrap.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k WerSvcGroup[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe[/FONT]
[FONT=mceinline]c:\Program Files\Microsoft Security Client\NisSrv.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\rundll32.exe[/FONT]
[FONT=mceinline]C:\Program Files\Logitech\SetPointP\SetPoint.exe[/FONT]
[FONT=mceinline]C:\Program Files\Microsoft Security Client\msseces.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe[/FONT]
[FONT=mceinline]C:\Users\Justin Sidwell\AppData\Roaming\Dropbox\bin\Dropbox.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\svchost.exe -k LocalServicePeerNet[/FONT]
[FONT=mceinline]C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe[/FONT]
[FONT=mceinline]C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[/FONT]
[FONT=mceinline]C:\Program Files\Logitech\SetPointG\SetPointII.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\SearchIndexer.exe[/FONT]
[FONT=mceinline]C:\Program Files\Windows Media Player\wmpnetwk.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\SearchProtocolHost.exe[/FONT]
[FONT=mceinline]C:\Program Files\Common Files\LogiShrd\sp6\LU\LULnchr.exe[/FONT]
[FONT=mceinline]C:\Program Files\Common Files\LogiShrd\sp6\LU\LogitechUpdate.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\AUDIODG.EXE[/FONT]
[FONT=mceinline]C:\Windows\system32\taskeng.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\SearchFilterHost.exe[/FONT]
[FONT=mceinline]C:\Windows\system32\wbem\wmiprvse.exe[/FONT]
[FONT=mceinline]C:\Windows\System32\cscript.exe[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============== Pseudo HJT Report ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]uStart Page = hxxps://www.google.com/[/FONT]
[FONT=mceinline]uProxyOverride = <local>[/FONT]
[FONT=mceinline]mWinlogon: Userinit = userinit.exe[/FONT]
[FONT=mceinline]BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>[/FONT]
[FONT=mceinline]BHO: {0347C33E-8762-4905-BF09-768834316C61} - <orphaned>[/FONT]
[FONT=mceinline]BHO: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - <orphaned>[/FONT]
[FONT=mceinline]BHO: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - <orphaned>[/FONT]
[FONT=mceinline]BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll[/FONT]
[FONT=mceinline]BHO: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - <orphaned>[/FONT]
[FONT=mceinline]BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll[/FONT]
[FONT=mceinline]BHO: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - <orphaned>[/FONT]
[FONT=mceinline]EB: {555D4D79-4BD2-4094-A395-CFC534424A05} - <orphaned>[/FONT]
[FONT=mceinline]uRun: [Google Update] "C:\Users\Justin Sidwell\AppData\Local\Google\Update\GoogleUpdate.exe" /c[/FONT]
[FONT=mceinline]mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r[/FONT]
[FONT=mceinline]mRun: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"[/FONT]
[FONT=mceinline]mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun[/FONT]
[FONT=mceinline]mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"[/FONT]
[FONT=mceinline]mRun: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b[/FONT]
[FONT=mceinline]mRun: [QFan Help] "C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe"[/FONT]
[FONT=mceinline]mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe[/FONT]
[FONT=mceinline]mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"[/FONT]
[FONT=mceinline]StartupFolder: C:\Users\JUSTIN~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Justin Sidwell\AppData\Roaming\Dropbox\bin\Dropbox.exe[/FONT]
[FONT=mceinline]uPolicies-Explorer: NoDriveTypeAutoRun = dword:0[/FONT]
[FONT=mceinline]mPolicies-Explorer: NoActiveDesktop = dword:1[/FONT]
[FONT=mceinline]mPolicies-Explorer: NoActiveDesktopChanges = dword:1[/FONT]
[FONT=mceinline]mPolicies-System: ConsentPromptBehaviorAdmin = dword:5[/FONT]
[FONT=mceinline]mPolicies-System: ConsentPromptBehaviorUser = dword:3[/FONT]
[FONT=mceinline]mPolicies-System: EnableUIADesktopToggle = dword:0[/FONT]
[FONT=mceinline]mPolicies-Windows\System: UseOEMBackground = dword:1[/FONT]
[FONT=mceinline]IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]INFO: HKCU has more than 50 listed domains.[/FONT]
[FONT=mceinline]If you wish to scan all of them, select the 'Force scan all domains' option.[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} - hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab[/FONT]
[FONT=mceinline]DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlcdnet.asus.com/pub/ASUS/misc/dlm-activex-2.2.5.0.cab[/FONT]
[FONT=mceinline]DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab[/FONT]
[FONT=mceinline]DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab[/FONT]
[FONT=mceinline]DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab[/FONT]
[FONT=mceinline]DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab[/FONT]
[FONT=mceinline]TCP: NameServer = 192.168.1.1[/FONT]
[FONT=mceinline]TCP: Interfaces\{07C7AB6D-61BF-417C-8263-713ADE83B628} : DHCPNameServer = 192.168.1.1[/FONT]
[FONT=mceinline]TCP: Interfaces\{F9E98BE2-3828-45B7-A2B7-D61FD2EF7F5B} : DHCPNameServer = 192.168.1.1[/FONT]
[FONT=mceinline]Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll[/FONT]
[FONT=mceinline]SSODL: WebCheck - <orphaned>[/FONT]
[FONT=mceinline]SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - [/FONT]
[FONT=mceinline]x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming[/FONT]
[FONT=mceinline]x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey[/FONT]
[FONT=mceinline]x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>[/FONT]
[FONT=mceinline]x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll[/FONT]
[FONT=mceinline]x64-SSODL: WebCheck - <orphaned>[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============= SERVICES / DRIVERS ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2012-8-30 228768][/FONT]
[FONT=mceinline]R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2012-12-17 17720][/FONT]
[FONT=mceinline]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-2 240640][/FONT]
[FONT=mceinline]R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-12-2 361984][/FONT]
[FONT=mceinline]R2 AODDriver4.2;AODDriver4.2;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-4-9 57472][/FONT]
[FONT=mceinline]R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [2012-12-23 109056][/FONT]
[FONT=mceinline]R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-1-7 398184][/FONT]
[FONT=mceinline]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-1-7 682344][/FONT]
[FONT=mceinline]R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-8-30 128456][/FONT]
[FONT=mceinline]R2 RtNdPt60;Realtek NDIS Protocol Driver;C:\Windows\System32\drivers\RtNdPt60.sys [2011-7-5 27136][/FONT]
[FONT=mceinline]R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-5-14 96896][/FONT]
[FONT=mceinline]R3 Lycosa;Lycosa Keyboard;C:\Windows\System32\drivers\Lycosa.sys [2008-1-17 18816][/FONT]
[FONT=mceinline]R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-1-7 24176][/FONT]
[FONT=mceinline]R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-9-12 368896][/FONT]
[FONT=mceinline]R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-1-22 77824][/FONT]
[FONT=mceinline]R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-1-22 180224][/FONT]
[FONT=mceinline]R3 RAMDiskVE;RAMDiskVE;C:\Windows\System32\drivers\RAMDiskVE.sys [2012-11-29 73552][/FONT]
[FONT=mceinline]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240][/FONT]
[FONT=mceinline]R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2010-3-2 1301504][/FONT]
[FONT=mceinline]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384][/FONT]
[FONT=mceinline]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576][/FONT]
[FONT=mceinline]S3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2010-12-26 46136][/FONT]
[FONT=mceinline]S3 AODDriver4.0;AODDriver4.0;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-4-9 57472][/FONT]
[FONT=mceinline]S3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver;C:\Windows\System32\drivers\BVRPMPR5a64.SYS [2011-7-5 35840][/FONT]
[FONT=mceinline]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-12-24 102368][/FONT]
[FONT=mceinline]S3 G311N6;NETGEAR GA311 Gigabit Driver;C:\Windows\System32\drivers\G311N6.sys [2011-7-5 347680][/FONT]
[FONT=mceinline]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-6 19456][/FONT]
[FONT=mceinline]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-12-24 203104][/FONT]
[FONT=mceinline]S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136][/FONT]
[FONT=mceinline]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-6 57856][/FONT]
[FONT=mceinline]S3 VKbms;Virtual HID Minidriver;C:\Windows\System32\drivers\VKbms.sys [2012-3-4 13312][/FONT]
[FONT=mceinline]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-7-23 1255736][/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]=============== File Associations ===============[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]FileExt: .txt: textfile="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [UserChoice][/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]=============== Created Last 30 ================[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]2013-01-08 13:42:199125352----a-w-C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{ED7B033D-3272-452F-8282-8326EA4A0269}\mpengine.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\OLEPRO32.DLL[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\atiumdva.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\atiumdag.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\atiu9pag.dll[/FONT]
[FONT=mceinline]2013-01-08 12:39:250----a-w-C:\Windows\System32\aticfx32.dll[/FONT]
[FONT=mceinline]2013-01-08 10:04:469125352----a-w-C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll[/FONT]
[FONT=mceinline]2013-01-08 01:24:49--------d-----w-C:\MATS[/FONT]
[FONT=mceinline]2013-01-07 17:37:2624176----a-w-C:\Windows\System32\drivers\mbam.sys[/FONT]
[FONT=mceinline]2013-01-07 17:37:26--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware[/FONT]
[FONT=mceinline]2013-01-07 05:25:15315904----a-w-C:\Windows\SysWow64\Difx9cda.rra[/FONT]
[FONT=mceinline]2013-01-07 03:50:20--------d-----w-C:\ProgramData\Spybot - Search & Destroy[/FONT]
[FONT=mceinline]2013-01-07 03:50:20--------d-----w-C:\Program Files (x86)\Spybot - Search & Destroy[/FONT]
[FONT=mceinline]2013-01-06 22:50:22--------d-----w-C:\Users\Justin Sidwell\AppData\Roaming\start[/FONT]
[FONT=mceinline]2013-01-06 08:31:17--------d-----w-C:\Users\Justin Sidwell\AppData\Roaming\Malwarebytes[/FONT]
[FONT=mceinline]2013-01-06 08:30:53--------d-----w-C:\ProgramData\Malwarebytes[/FONT]
[FONT=mceinline]2013-01-06 01:45:41--------d-----w-C:\ProgramData\Kaspersky Lab[/FONT]
[FONT=mceinline]2013-01-06 01:45:41--------d-----w-C:\Program Files (x86)\Kaspersky Lab[/FONT]
[FONT=mceinline]2013-01-05 12:38:12--------d-----w-C:\Program Files (x86)\Resource Hacker[/FONT]
[FONT=mceinline]2013-01-05 06:23:15--------d-----w-C:\Program Files (x86)\AMD AVT[/FONT]
[FONT=mceinline]2013-01-05 06:23:09--------d-----w-C:\Program Files (x86)\AMD APP[/FONT]
[FONT=mceinline]2013-01-05 06:22:54--------d-----w-C:\Program Files\Common Files\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-05 06:22:54--------d-----w-C:\Program Files (x86)\Common Files\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-05 06:18:27--------d-----w-C:\Program Files (x86)\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-05 06:18:19--------d-----w-C:\Program Files\ATI[/FONT]
[FONT=mceinline]2013-01-05 06:17:39--------d-----w-C:\Program Files\ATI Technologies[/FONT]
[FONT=mceinline]2013-01-04 20:30:17--------d--h--w-C:\Program Files (x86)\Zero G Registry[/FONT]
[FONT=mceinline]2013-01-04 20:30:17--------d-----w-C:\Program Files (x86)\Skifta[/FONT]
[FONT=mceinline]2013-01-04 20:27:58--------d--h--w-C:\Users\Justin Sidwell\InstallAnywhere[/FONT]
[FONT=mceinline]2013-01-04 20:27:57--------d-----w-C:\tmp[/FONT]
[FONT=mceinline]2013-01-02 23:33:3153248----a-r-C:\Users\Justin Sidwell\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe[/FONT]
[FONT=mceinline]2013-01-01 15:45:0916363960----a-w-C:\Windows\SysWow64\FlashPlayerInstaller.exe[/FONT]
[FONT=mceinline]2013-01-01 10:08:34--------d-----w-C:\Users\Justin Sidwell\AppData\Local\Logishrd[/FONT]
[FONT=mceinline]2012-12-28 07:12:47--------d-----w-C:\Windows\pss[/FONT]
[FONT=mceinline]2012-12-27 18:53:20--------d-----w-C:\Program Files (x86)\Radeon RAMDisk[/FONT]
[FONT=mceinline]2012-12-27 07:59:26--------d-----w-C:\Program Files\LockHunter[/FONT]
[FONT=mceinline]2012-12-27 01:31:2318960----a-w-C:\Windows\System32\drivers\LNonPnP.sys[/FONT]
[FONT=mceinline]2012-12-27 01:25:58--------d-----w-C:\Users\Justin Sidwell\AppData\Roaming\Logishrd[/FONT]
[FONT=mceinline]2012-12-26 08:24:3613368----a-w-C:\Windows\SysWow64\drivers\AsUpIO.sys[/FONT]
[FONT=mceinline]2012-12-26 04:51:33972264------w-C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DF887FDD-C14B-4F5D-9DCF-6ABC14527719}\gapaengine.dll[/FONT]
[FONT=mceinline]2012-12-25 09:28:059125352----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A8E69ADD-41CB-4D51-B163-46B0F9208C22}\mpengine.dll[/FONT]
[FONT=mceinline]2012-12-25 00:00:48--------d-----w-C:\Windows\System32\catroot2[/FONT]
[FONT=mceinline]2012-12-24 15:15:51--------d-----w-C:\Users\Justin Sidwell\AppData\Local\ElevatedDiagnostics[/FONT]
[FONT=mceinline]2012-12-24 07:27:09203104----a-w-C:\Windows\System32\drivers\ssudmdm.sys[/FONT]
[FONT=mceinline]2012-12-24 07:27:08102368----a-w-C:\Windows\System32\drivers\ssudbus.sys[/FONT]
[FONT=mceinline]2012-12-24 07:24:44--------d-----w-C:\Program Files (x86)\MarkAny[/FONT]
[FONT=mceinline]2012-12-23 15:40:09--------d-----w-C:\ProgramData\ASUS OC Profiles[/FONT]
[FONT=mceinline]2012-12-23 15:34:5824576----a-w-C:\Windows\SysWow64\AsIO.dll[/FONT]
[FONT=mceinline]2012-12-23 15:34:5813440----a-w-C:\Windows\SysWow64\drivers\AsIO.sys[/FONT]
[FONT=mceinline]2012-12-23 15:33:05225280----a-w-C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll[/FONT]
[FONT=mceinline]2012-12-23 12:26:52--------d-sh--w-C:\$RECYCLE.BIN[/FONT]
[FONT=mceinline]2012-12-23 11:15:38--------d-----w-C:\Program Files (x86)\AMD[/FONT]
[FONT=mceinline]2012-12-23 11:15:0416896----a-w-C:\Windows\AsTaskSched.dll[/FONT]
[FONT=mceinline]2012-12-23 10:44:40--------d-----w-C:\Users\Justin Sidwell\AppData\Local\Akamai[/FONT]
[FONT=mceinline]2012-12-21 20:35:3546080----a-w-C:\Windows\System32\atmlib.dll[/FONT]
[FONT=mceinline]2012-12-21 20:35:3534304----a-w-C:\Windows\SysWow64\atmlib.dll[/FONT]
[FONT=mceinline]2012-12-21 20:35:34367616----a-w-C:\Windows\System32\atmfd.dll[/FONT]
[FONT=mceinline]2012-12-21 20:35:33295424----a-w-C:\Windows\SysWow64\atmfd.dll[/FONT]
[FONT=mceinline]2012-12-21 04:13:33--------d-----w-C:\Program Files (x86)\ASUS[/FONT]
[FONT=mceinline]2012-12-18 05:28:5632600----a-w-C:\Windows\System32\SmartDefragBootTime.exe[/FONT]
[FONT=mceinline]2012-12-18 05:28:4617720----a-w-C:\Windows\System32\drivers\SmartDefragDriver.sys[/FONT]
[FONT=mceinline]2012-12-17 17:07:23--------d-----w-C:\ProgramData\AVAST Software[/FONT]
[FONT=mceinline]2012-12-17 17:07:23--------d-----w-C:\Program Files\AVAST Software[/FONT]
[FONT=mceinline]2012-12-16 06:33:15--------dc----w-C:\Users\Justin Sidwell\AppData\Local\MigWiz[/FONT]
[FONT=mceinline]2012-12-12 05:02:492048----a-w-C:\Windows\SysWow64\tzres.dll[/FONT]
[FONT=mceinline]2012-12-12 05:01:587680----a-w-C:\Windows\SysWow64\instnm.exe[/FONT]
[FONT=mceinline]2012-12-10 16:42:4995208----a-w-C:\Windows\SysWow64\WindowsAccessBridge-32.dll[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]==================== Find3M ====================[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]2013-01-07 05:04:18123704----a-w-C:\Windows\System32\drivers\jraid.sys[/FONT]
[FONT=mceinline]2013-01-01 15:45:1973656----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl[/FONT]
[FONT=mceinline]2013-01-01 15:45:19697272----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe[/FONT]
[FONT=mceinline]2012-12-10 16:42:35821736----a-w-C:\Windows\SysWow64\npdeployJava1.dll[/FONT]
[FONT=mceinline]2012-12-10 16:42:35746984----a-w-C:\Windows\SysWow64\deployJava1.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:50222720----a-w-C:\Windows\System32\clinfo.exe[/FONT]
[FONT=mceinline]2012-12-02 09:26:3276288----a-w-C:\Windows\System32\OpenVideo64.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:2865536----a-w-C:\Windows\SysWow64\OpenVideo.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:2464512----a-w-C:\Windows\System32\OVDecode64.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:2056320----a-w-C:\Windows\SysWow64\OVDecode.dll[/FONT]
[FONT=mceinline]2012-12-02 09:26:1034523136----a-w-C:\Windows\System32\amdocl64.dll[/FONT]
[FONT=mceinline]2012-12-02 09:21:2228738048----a-w-C:\Windows\SysWow64\amdocl.dll[/FONT]
[FONT=mceinline]2012-12-02 09:17:0254784----a-w-C:\Windows\System32\OpenCL.dll[/FONT]
[FONT=mceinline]2012-12-02 09:16:5850176----a-w-C:\Windows\SysWow64\OpenCL.dll[/FONT]
[FONT=mceinline]2012-12-02 08:31:345626536----a-w-C:\Windows\SysWow64\atiumdag.dll[/FONT]
[FONT=mceinline]2012-12-02 08:29:4811270656----a-w-C:\Windows\System32\drivers\atikmdag.sys[/FONT]
[FONT=mceinline]2012-12-02 08:17:1223455744----a-w-C:\Windows\System32\atio6axx.dll[/FONT]
[FONT=mceinline]2012-12-02 08:00:18163840----a-w-C:\Windows\System32\atiapfxx.exe[/FONT]
[FONT=mceinline]2012-12-02 07:59:5670144----a-w-C:\Windows\System32\coinst_9.01.8.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:4451200----a-w-C:\Windows\System32\aticalrt64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:4246080----a-w-C:\Windows\SysWow64\aticalrt.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:3644544----a-w-C:\Windows\System32\aticalcl64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:3444032----a-w-C:\Windows\SysWow64\aticalcl.dll[/FONT]
[FONT=mceinline]2012-12-02 07:58:2416082944----a-w-C:\Windows\System32\aticaldd64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:57:5418979328----a-w-C:\Windows\SysWow64\atioglxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:54:0813703168----a-w-C:\Windows\SysWow64\aticaldd.dll[/FONT]
[FONT=mceinline]2012-12-02 07:50:46949248----a-w-C:\Windows\SysWow64\aticfx32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:48:521137664----a-w-C:\Windows\System32\aticfx64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:46:466684672----a-w-C:\Windows\SysWow64\atidxx32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:41:444674048----a-w-C:\Windows\System32\atiumd6a.dll[/FONT]
[FONT=mceinline]2012-12-02 07:37:46442368----a-w-C:\Windows\System32\atidemgy.dll[/FONT]
[FONT=mceinline]2012-12-02 07:37:36548864----a-w-C:\Windows\System32\atieclxx.exe[/FONT]
[FONT=mceinline]2012-12-02 07:36:50240640----a-w-C:\Windows\System32\atiesrxx.exe[/FONT]
[FONT=mceinline]2012-12-02 07:35:26120320----a-w-C:\Windows\System32\atitmm64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:35:1021504----a-w-C:\Windows\System32\atimuixx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:35:0459392----a-w-C:\Windows\System32\atiedu64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:35:0043520----a-w-C:\Windows\SysWow64\ati2edxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:29:303862528----a-w-C:\Windows\SysWow64\atiumdva.dll[/FONT]
[FONT=mceinline]2012-12-02 07:29:047378944----a-w-C:\Windows\System32\atidxx64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:24:506781440----a-w-C:\Windows\System32\atiumd64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:5456320----a-w-C:\Windows\System32\atimpc64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:5456320----a-w-C:\Windows\System32\amdpcom64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:4456832----a-w-C:\Windows\SysWow64\atimpc32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:17:4456832----a-w-C:\Windows\SysWow64\amdpcom32.dll[/FONT]
[FONT=mceinline]2012-12-02 07:14:2853248----a-w-C:\Windows\System32\drivers\ati2erec.dll[/FONT]
[FONT=mceinline]2012-12-02 07:14:10619008----a-w-C:\Windows\System32\atiadlxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:14:00421888----a-w-C:\Windows\SysWow64\atiadlxy.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:4417920----a-w-C:\Windows\System32\atig6pxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:4214848----a-w-C:\Windows\SysWow64\atiglpxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:4214848----a-w-C:\Windows\System32\atiglpxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:3841984----a-w-C:\Windows\System32\atig6txx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:3033280----a-w-C:\Windows\SysWow64\atigktxx.dll[/FONT]
[FONT=mceinline]2012-12-02 07:13:20546816----a-w-C:\Windows\System32\drivers\atikmpag.sys[/FONT]
[FONT=mceinline]2012-12-02 07:11:28130048----a-w-C:\Windows\System32\atiuxp64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:11:20109568----a-w-C:\Windows\SysWow64\atiuxpag.dll[/FONT]
[FONT=mceinline]2012-12-02 07:11:14104448----a-w-C:\Windows\System32\atiu9p64.dll[/FONT]
[FONT=mceinline]2012-12-02 07:11:0483968----a-w-C:\Windows\SysWow64\atiu9pag.dll[/FONT]
[FONT=mceinline]2012-11-29 17:50:0673552----a-w-C:\Windows\System32\drivers\RAMDiskVE.sys[/FONT]
[FONT=mceinline]2012-11-22 03:26:403149824----a-w-C:\Windows\System32\win32k.sys[/FONT]
[FONT=mceinline]2012-11-14 06:11:442312704----a-w-C:\Windows\System32\jscript9.dll[/FONT]
[FONT=mceinline]2012-11-14 06:04:111392128----a-w-C:\Windows\System32\wininet.dll[/FONT]
[FONT=mceinline]2012-11-14 06:02:491494528----a-w-C:\Windows\System32\inetcpl.cpl[/FONT]
[FONT=mceinline]2012-11-14 05:57:46599040----a-w-C:\Windows\System32\vbscript.dll[/FONT]
[FONT=mceinline]2012-11-14 05:57:35173056----a-w-C:\Windows\System32\ieUnatt.exe[/FONT]
[FONT=mceinline]2012-11-14 05:52:402382848----a-w-C:\Windows\System32\mshtml.tlb[/FONT]
[FONT=mceinline]2012-11-14 02:09:221800704----a-w-C:\Windows\SysWow64\jscript9.dll[/FONT]
[FONT=mceinline]2012-11-14 01:58:151427968----a-w-C:\Windows\SysWow64\inetcpl.cpl[/FONT]
[FONT=mceinline]2012-11-14 01:57:371129472----a-w-C:\Windows\SysWow64\wininet.dll[/FONT]
[FONT=mceinline]2012-11-14 01:49:25142848----a-w-C:\Windows\SysWow64\ieUnatt.exe[/FONT]
[FONT=mceinline]2012-11-14 01:48:27420864----a-w-C:\Windows\SysWow64\vbscript.dll[/FONT]
[FONT=mceinline]2012-11-14 01:44:422382848----a-w-C:\Windows\SysWow64\mshtml.tlb[/FONT]
[FONT=mceinline]2012-11-09 05:45:092048----a-w-C:\Windows\System32\tzres.dll[/FONT]
[FONT=mceinline]2012-11-02 05:59:11478208----a-w-C:\Windows\System32\dpnet.dll[/FONT]
[FONT=mceinline]2012-11-02 05:11:31376832----a-w-C:\Windows\SysWow64\dpnet.dll[/FONT]
[FONT=mceinline]2012-10-29 18:10:024659712----a-w-C:\Windows\SysWow64\Redemption.dll[/FONT]
[FONT=mceinline]2012-10-29 18:09:2890112----a-w-C:\Windows\MAMCityDownload.ocx[/FONT]
[FONT=mceinline]2012-10-29 18:09:28330240----a-w-C:\Windows\MASetupCaller.dll[/FONT]
[FONT=mceinline]2012-10-29 18:09:2830568----a-w-C:\Windows\MusiccityDownload.exe[/FONT]
[FONT=mceinline]2012-10-29 18:09:26821824----a-w-C:\Windows\SysWow64\dgderapi.dll[/FONT]
[FONT=mceinline]2012-10-16 08:38:37135168----a-w-C:\Windows\apppatch\AppPatch64\AcXtrnal.dll[/FONT]
[FONT=mceinline]2012-10-16 08:38:34350208----a-w-C:\Windows\apppatch\AppPatch64\AcLayers.dll[/FONT]
[FONT=mceinline]2012-10-16 07:39:52561664----a-w-C:\Windows\apppatch\AcLayers.dll[/FONT]
[FONT=mceinline]2012-10-15 16:54:0025472----a-w-C:\Windows\System32\RegistryDefragBootTime.exe[/FONT]
[FONT=mceinline].[/FONT]
[FONT=mceinline]============= FINISH: 11:07:09.58 ===============[/FONT]