spiritofcat
Posts: 15 +0
I've got multiple instances of iexplore.exe showing up in Task Manager, and Avast has been notifying me of a URL:Mal infection.
I've followed the 4-step preliminary process from the sticky.
Here are the log files:
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
Database version: v2013.01.06.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Fuzzy :: FUZZY-GAMING [administrator]
6/01/2013 9:36:05 PM
mbam-log-2013-01-06 (21-36-05).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 238167
Time elapsed: 3 minute(s), 28 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
Folders Detected: 0
(No malicious items detected)
Files Detected: 3
C:\$Recycle.Bin\S-1-5-18\$08204302ef32a5c67d4af74b48984541\n (Trojan.0Access) -> Delete on reboot.
C:\$Recycle.Bin\S-1-5-21-1889637222-3990988376-3780661619-1001\$08204302ef32a5c67d4af74b48984541\n (Trojan.0Access) -> Delete on reboot.
C:\Users\Fuzzy\wgsdgsdgdsgsd.exe (Exploit.Drop.GS) -> Quarantined and deleted successfully.
(end)
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_31
Run by Fuzzy at 21:49:09 on 2013-01-06
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.61.1033.18.12279.9901 [GMT 11:00]
.
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\WUDFHost.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\WTablet\Wacom_TabletUser.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Hotkey\Hotkey.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Games\JoyToKey\JoyToKey.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = my.daemon-search.com
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [Google Update] "C:\Users\Fuzzy\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
StartupFolder: C:\Users\Fuzzy\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\JOYTOK~1.LNK - C:\Games\JoyToKey\JoyToKey.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\Hotkey.lnk - C:\Program Files (x86)\Hotkey\Hotkey.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
TCP: NameServer = 61.9.195.193 61.9.194.49
TCP: Interfaces\{438F0973-48F2-49D8-B25C-F03EB14D3F2A} : DHCPNameServer = 61.9.195.193 61.9.194.49
TCP: Interfaces\{4FADF293-0B2D-4600-A80A-03F3654DEEC7} : DHCPNameServer = 61.9.195.193 61.9.194.49
TCP: Interfaces\{94CFC2E5-4AC5-4926-9894-AFADFFC161C0} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{AB9D532E-3EF6-4FC5-87B5-A69F5CC33E86} : DHCPNameServer = 192.168.42.129
Notify: humbira - C:\Users\Fuzzy\AppData\Local\humbira.dll
SSODL: WebCheck - <orphaned>
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [lgndrs] "C:\Windows\System32\rundll32.exe" "C:\Users\Fuzzy\AppData\Roaming\lgndrs.dll",Restore
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Fuzzy\AppData\Roaming\Mozilla\Firefox\Profiles\ys5rmymg.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
FF - plugin: C:\Users\Fuzzy\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
FF - ExtSQL: !HIDDEN! 2013-01-06 21:45; {09408b6d-2ecc-4063-a16b-7257413b74b8}; C:\Users\Fuzzy\AppData\Roaming\Mozilla\Firefox\Profiles\ys5rmymg.default\extensions\{09408b6d-2ecc-4063-a16b-7257413b74b8}.xpi
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-1-6 984144]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-1-6 370288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-9-11 270912]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-1-6 25232]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-1-6 71600]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-1-6 44808]
R2 PowerBiosServer;PowerBiosServer;C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [2011-1-18 33280]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-11-30 382824]
R2 TabletServiceWacom;TabletServiceWacom;C:\Windows\System32\Wacom_Tablet.exe [2012-4-15 6245744]
R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2011-6-30 169048]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);C:\Windows\System32\drivers\JME.sys [2011-6-30 127984]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-11 5434368]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-1-22 77824]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-1-22 180224]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2011-12-17 16776]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2011-12-17 9096]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-6-25 135584]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-8-31 59392]
S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2012-4-15 18216]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-8-31 1255736]
.
=============== Created Last 30 ================
.
2013-01-06 10:27:0154072----a-w-C:\Windows\System32\drivers\aswRdr2.sys
2013-01-06 10:26:56984144----a-w-C:\Windows\System32\drivers\aswSnx.sys
2013-01-06 10:26:4671600----a-w-C:\Windows\System32\drivers\aswMonFlt.sys
2013-01-06 10:26:2541224----a-w-C:\Windows\avastSS.scr
2013-01-06 10:26:16--------d-----w-C:\ProgramData\AVAST Software
2013-01-06 10:26:16--------d-----w-C:\Program Files\AVAST Software
2013-01-06 10:24:15--------d-----w-C:\Users\Fuzzy\AppData\Roaming\Malwarebytes
2013-01-06 10:24:03--------d-----w-C:\ProgramData\Malwarebytes
2013-01-06 10:24:0124176----a-w-C:\Windows\System32\drivers\mbam.sys
2013-01-06 10:24:01--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-01-06 10:23:42--------d-----w-C:\Users\Fuzzy\AppData\Local\Programs
2013-01-06 09:29:35--------d-----w-C:\Windows\pss
2013-01-06 09:27:4546080----a-w-C:\Windows\System32\atmlib.dll
2013-01-06 09:27:4534304----a-w-C:\Windows\SysWow64\atmlib.dll
2013-01-06 09:27:44367616----a-w-C:\Windows\System32\atmfd.dll
2013-01-06 09:27:42295424----a-w-C:\Windows\SysWow64\atmfd.dll
2013-01-02 03:28:01--------d-----w-C:\Users\Fuzzy\AppData\Local\NBGI
2012-12-31 15:07:30602112----a-w-C:\Users\Fuzzy\AppData\Roaming\lgndrs.dll
2012-12-29 20:18:26--------d-----w-C:\Users\Fuzzy\AppData\Roaming\WB Games
2012-12-29 19:40:36--------d-----w-C:\Program Files (x86)\CapsuleGames
2012-12-28 23:54:11--------d-----w-C:\Users\Fuzzy\AppData\Local\Green Man Gaming
2012-12-28 23:52:19--------d-----w-C:\Program Files (x86)\Capsule
2012-12-27 18:46:21--------d-sh--w-C:\Windows\System32\%APPDATA%
2012-12-26 03:04:39--------d-----w-C:\Users\Fuzzy\AppData\Roaming\Zeyqme
2012-12-26 03:04:39--------d-----w-C:\Users\Fuzzy\AppData\Roaming\Kudylu
2012-12-25 22:58:04--------d-----w-C:\Users\Fuzzy\AppData\Local\Modio4
2012-12-25 15:54:449125352----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{747802F5-2BEF-4024-B68E-66B6D43C9057}\mpengine.dll
2012-12-14 20:34:17--------d-----w-C:\Program Files (x86)\Memecode
2012-12-11 00:12:12--------d-----w-C:\Program Files\Microsoft Xbox 360 Accessories
2012-12-10 21:56:58--------d-----w-C:\Users\Fuzzy\AppData\Local\Transcripted
.
==================== Find3M ====================
.
2012-12-12 13:55:2773656----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-12 13:55:27697272----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe
2012-12-01 05:49:262557800----a-w-C:\Windows\System32\nvsvcr.dll
2012-12-01 05:49:2563336----a-w-C:\Windows\System32\nvshext.dll
2012-12-01 05:49:25118120----a-w-C:\Windows\System32\nvmctray.dll
2012-12-01 05:49:24890216----a-w-C:\Windows\System32\nvvsvc.exe
2012-12-01 05:48:416223208----a-w-C:\Windows\System32\nvcpl.dll
2012-12-01 05:48:373311464----a-w-C:\Windows\System32\nvsvc64.dll
2012-11-30 11:43:52438632----a-w-C:\Windows\SysWow64\nvStreaming.exe
2012-11-22 03:26:403149824----a-w-C:\Windows\System32\win32k.sys
2012-11-12 12:28:371638912----a-w-C:\Windows\System32\mshtml.tlb
2012-11-12 11:52:181638912----a-w-C:\Windows\SysWow64\mshtml.tlb
2012-11-09 05:45:092048----a-w-C:\Windows\System32\tzres.dll
2012-11-09 04:42:492048----a-w-C:\Windows\SysWow64\tzres.dll
2012-11-02 05:59:11478208----a-w-C:\Windows\System32\dpnet.dll
2012-11-02 05:11:31376832----a-w-C:\Windows\SysWow64\dpnet.dll
2012-10-27 06:26:55981504----a-w-C:\Windows\SysWow64\wininet.dll
2012-10-27 05:51:211188864----a-w-C:\Windows\System32\wininet.dll
2012-10-22 03:37:09466456----a-w-C:\Windows\System32\wrap_oal.dll
2012-10-22 03:37:09444952----a-w-C:\Windows\SysWow64\wrap_oal.dll
2012-10-22 03:37:09122904----a-w-C:\Windows\System32\OpenAL32.dll
2012-10-22 03:37:09109080----a-w-C:\Windows\SysWow64\OpenAL32.dll
2012-10-16 08:38:37135168----a-w-C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38:34350208----a-w-C:\Windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39:52561664----a-w-C:\Windows\apppatch\AcLayers.dll
2012-10-09 18:17:1355296----a-w-C:\Windows\System32\dhcpcsvc6.dll
2012-10-09 18:17:13226816----a-w-C:\Windows\System32\dhcpcore6.dll
2012-10-09 17:40:3144032----a-w-C:\Windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40:31193536----a-w-C:\Windows\SysWow64\dhcpcore6.dll
.
============= FINISH: 21:50:45.42 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 29/08/2011 3:40:24 PM
System Uptime: 6/01/2013 9:42:48 PM (0 hours ago)
.
Motherboard: CLEVO CO. | | X7200
Processor: Intel(R) Core(TM) i7 CPU 960 @ 3.20GHz | 1366-pin LGA | 1564/mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 466 GiB total, 42.604 GiB free.
D: is CDROM (CDFS)
E: is CDROM ()
Y: is NetworkDisk (NTFS) - 932 GiB total, 244.189 GiB free.
Z: is NetworkDisk (NTFS) - 466 GiB total, 6.395 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP286: 2/01/2013 2:26:13 PM - Installed DirectX
RP287: 6/01/2013 8:26:45 PM - Windows Update
RP288: 6/01/2013 9:26:00 PM - avast! Free Antivirus Setup
.
==== Installed Programs ======================
.
1000 Amps
3DMark 11
7-Zip 9.20 (x64 edition)
A.R.E.S.
AaAaAA!!! - A Reckless Disregard for Gravity
AaaaaAAaaaAAAaaAAAAaAAAAA!!! for the Awesome
Adobe Digital Editions
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.4)
Adventures of Shuggy
Alien Flux (remove only)
Alien Zombie Megadeath
Amnesia - The Dark Descent
Analogue: A Hate Story
Anomaly Warzone Earth
Aquaria
Astro Tripper
Audiosurf
Avadon: The Black Fortress
avast! Free Antivirus
Avernum: Escape From the Pit
AVSEQ
Awesomenauts
Ballistic version 1.01
Bastion
Beat Hazard
Ben There, Dan That!
Beyond Good & Evil
BisonCam
BIT.TRIP BEAT
BIT.TRIP RUNNER
Borderlands
Borderlands 2
Breath of Death VII
Canon Utilities Digital Photo Professional 3.10
Canon Utilities EOS Utility
Capsized
Capsule
Cargo Commander
Caster
Cave Story+
CDisplay 1.8
Character Builder
Chime
Closure
Commander Keen Complete Pack
Cortex Command
Costume Quest
Crayon Physics Deluxe
Creation Kit
Cthulhu Saves the World
Cubemen
DAEMON Tools Lite
DAEMON Tools Toolbar
Dangerous High School Girls in Trouble!
Dark Souls: Prepare to Die Edition
DDS Converter 2.1
Dead Pixels
Delve Deeper
Depths of Peril
Din's Curse
Divinity II: Dragon Knight Saga - Demo
Don't Starve
Droplitz
Dungeon Defenders
Dungeons of Dredmor
Dustforce
EASEUS Partition Master 9.1.0 Home Edition
Easy2Convert DDS to JPG 1.1
Eversion
Everyday Shooter
Fieldrunners
FileZilla Client 3.5.1
FMS File Date Changer 2.2
Foldit
Fowl Space
Fraps
Frozen Synapse
FTL: Faster Than Light
Futuremark SystemInfo
GameSpy Comrade
Gateways
Gemini Rue
Giana Sisters: Twisted Dreams
GIMP 2.8.2
Gish
Google Chrome
Google Earth Plug-in
Google Update Helper
GPGNet
Grand Theft Auto
Grand Theft Auto 2
Hack, Slash, Loot
Hamlet or the last game without MMORPG features, shaders and product placement
Hammerfight
Harvest: Massive Encounter
Heaven DX11 Benchmark version 3.0
Hector: Ep 1
HOARD
Home
Hotkey 3.3020
Hotline Miami
Hydrophobia: Prophecy
Indie Game: The Movie
Inferno+ version 1.11
Insanely Twisted Shadow Planet
Inside a Star-filled Sky
Intel® Matrix Storage Manager
Intrusion 2
ITE Infrared Transceiver
Jamestown
Java Auto Updater
Java(TM) 6 Update 31
JMicron Ethernet Adapter NDIS Driver
JMicron Flash Media Controller Driver
Jolly Rover
Just Cause 2
Katawa Shoujo
Killing Floor
Kingdoms of Amalur Reckoning
Krater
Lara Croft and the Guardian of Light
LEGO Batman 2
LEGO Batman: The Videogame
LEGO Lord of the Rings
LIMBO
Livestream Procaster
Lone Survivor
Lume
Machinarium
Magicka
Malwarebytes Anti-Malware version 1.70.0.1100
Mark of the Ninja
Martial Arts Capoeira
Miasmata
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Windows Media Video 9 VCM
Microsoft Xbox 360 Accessories 1.2
Microsoft XNA Framework Redistributable 3.1
Microsoft XNA Framework Redistributable 4.0
Microsoft XNA Framework Redistributable 4.0 Refresh
Mini Ninjas
Monkey Island 2: Special Edition
Mozilla Firefox 17.0.1 (x86 en-GB)
Mozilla Maintenance Service
Mp3tag v2.43
NEC Electronics USB 3.0 Host Controller Driver
NightSky
Nitronic Rush (2011-12-25) version 20111225.0
Noitu Love 2 Devolution
NVIDIA 3D Vision Controller Driver
NVIDIA 3D Vision Controller Driver 310.70
NVIDIA 3D Vision Driver 310.70
NVIDIA Control Panel 310.70
NVIDIA Graphics Driver 310.70
NVIDIA HD Audio Driver 1.3.18.0
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.12.1031
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 1.11.3
NVIDIA Update Components
Oddworld: Munch's Oddysee
Oddworld: Stranger's Wrath
Offspring Fling!
On the Rain-Slick Precipice of Darkness, Episode One
On the Rain-Slick Precipice of Darkness, Episode Two
OpenAL
Osmos
Path of Exile
Penny Arcade's On the Rain-Slick Precipice of Darkness 3
Penumbra: Overture
Pineapple Smash Crew
PixelJunk Eden
Plants vs. Zombies: Game of the Year
Portal
Portal 2
Portal 2 - The Final Hours
Pound of Ground
Power Tab Editor 1.7
Psychonauts
PunkBuster Services
Really Big Sky
Realm of the Mad God
Realtek High Definition Audio Driver
Recettear: An Item Shop's Tale
Red Faction
Red Faction: Guerrilla
Renegade Ops
Retro City Rampage
RGF HotSpot version 0.6b
Rochard
Rocksmith
Roller Coaster Rampage
Samorost 2
Scribblenauts Unlimited
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Shank
Shatter
Shattered Horizon
SkyDrift
Slydris version 1.01
Snapshot
Snuggle Truck
SOL: Exodus
Solar 2
Songsheet Generator 2.9
Space Pirates and Zombies
SpaceChem
Spirits
Stacking
Stalker Complete 2009
Star Wars: Knights of the Old Republic
Steam
Steel Storm: Burning Retribution
Super Amazing Wagon Adventure
Super Crate Box
Super Meat Boy
Superbrothers: Sword & Sworcery EP
Swords and Soldiers HD
Symphony
Synaptics Pointing Device Driver
Terraria
The Basement Collection
The Binding Of Isaac
The Elder Scrolls V: Skyrim
The Network
The Secret of Monkey Island: Special Edition
The Tiny Bang Story
The Walking Dead
The Witcher: Enhanced Edition
They Bleed Pixels
Tidalis
Time Gentlemen, Please!
Tiny and Big: Grandpa's Leftovers
Titan Attacks
Tobe's Vertical Adventure
Toki Tori
Torchlight
Torchlight Editor
Transcripted
TRAUMA
Trine
Trino
TSLRCM 1.8
Turba
Ubisoft Game Launcher
Unreal Tournament 3: Black Edition
Unstoppable Gorg
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Uplink
Vessel
VLC media player 1.0.5
Voxatron 0.1.4
VVVVVV
Wacom Tablet
Wanderlust: Rebirth
Warhammer 40,000 Space Marine
Waves
WebTablet IE Plugin
WebTablet Netscape Plugin
Windows Live ID Sign-in Assistant
Wizorb
World of Goo
Worms Armageddon
Worms Revolution
XCOM: Enemy Unknown
Your Doodles Are Bugged!
Zen Bound® 2
.
==== Event Viewer Messages From Past Week ========
.
6/01/2013 9:46:12 PM, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: %%-2147024891
6/01/2013 9:46:12 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: %%-2147024891
6/01/2013 9:43:16 PM, Error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service.
6/01/2013 9:43:16 PM, Error: Service Control Manager [7003] - The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.
6/01/2013 9:43:16 PM, Error: Service Control Manager [7003] - The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.
6/01/2013 8:41:05 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
6/01/2013 8:38:25 PM, Error: Service Control Manager [7022] - The NVIDIA Update Service Daemon service hung on starting.
2/01/2013 9:21:51 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
.
==== End Of File ===========================
I've followed the 4-step preliminary process from the sticky.
Here are the log files:
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
Database version: v2013.01.06.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Fuzzy :: FUZZY-GAMING [administrator]
6/01/2013 9:36:05 PM
mbam-log-2013-01-06 (21-36-05).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 238167
Time elapsed: 3 minute(s), 28 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
Folders Detected: 0
(No malicious items detected)
Files Detected: 3
C:\$Recycle.Bin\S-1-5-18\$08204302ef32a5c67d4af74b48984541\n (Trojan.0Access) -> Delete on reboot.
C:\$Recycle.Bin\S-1-5-21-1889637222-3990988376-3780661619-1001\$08204302ef32a5c67d4af74b48984541\n (Trojan.0Access) -> Delete on reboot.
C:\Users\Fuzzy\wgsdgsdgdsgsd.exe (Exploit.Drop.GS) -> Quarantined and deleted successfully.
(end)
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_31
Run by Fuzzy at 21:49:09 on 2013-01-06
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.61.1033.18.12279.9901 [GMT 11:00]
.
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\WUDFHost.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\WTablet\Wacom_TabletUser.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Hotkey\Hotkey.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Games\JoyToKey\JoyToKey.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fuzzy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = my.daemon-search.com
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [Google Update] "C:\Users\Fuzzy\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
StartupFolder: C:\Users\Fuzzy\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\JOYTOK~1.LNK - C:\Games\JoyToKey\JoyToKey.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\Hotkey.lnk - C:\Program Files (x86)\Hotkey\Hotkey.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
TCP: NameServer = 61.9.195.193 61.9.194.49
TCP: Interfaces\{438F0973-48F2-49D8-B25C-F03EB14D3F2A} : DHCPNameServer = 61.9.195.193 61.9.194.49
TCP: Interfaces\{4FADF293-0B2D-4600-A80A-03F3654DEEC7} : DHCPNameServer = 61.9.195.193 61.9.194.49
TCP: Interfaces\{94CFC2E5-4AC5-4926-9894-AFADFFC161C0} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{AB9D532E-3EF6-4FC5-87B5-A69F5CC33E86} : DHCPNameServer = 192.168.42.129
Notify: humbira - C:\Users\Fuzzy\AppData\Local\humbira.dll
SSODL: WebCheck - <orphaned>
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [lgndrs] "C:\Windows\System32\rundll32.exe" "C:\Users\Fuzzy\AppData\Roaming\lgndrs.dll",Restore
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Fuzzy\AppData\Roaming\Mozilla\Firefox\Profiles\ys5rmymg.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
FF - plugin: C:\Users\Fuzzy\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
FF - ExtSQL: !HIDDEN! 2013-01-06 21:45; {09408b6d-2ecc-4063-a16b-7257413b74b8}; C:\Users\Fuzzy\AppData\Roaming\Mozilla\Firefox\Profiles\ys5rmymg.default\extensions\{09408b6d-2ecc-4063-a16b-7257413b74b8}.xpi
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-1-6 984144]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-1-6 370288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-9-11 270912]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-1-6 25232]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-1-6 71600]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-1-6 44808]
R2 PowerBiosServer;PowerBiosServer;C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [2011-1-18 33280]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-11-30 382824]
R2 TabletServiceWacom;TabletServiceWacom;C:\Windows\System32\Wacom_Tablet.exe [2012-4-15 6245744]
R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2011-6-30 169048]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);C:\Windows\System32\drivers\JME.sys [2011-6-30 127984]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-11 5434368]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-1-22 77824]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-1-22 180224]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2011-12-17 16776]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2011-12-17 9096]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-6-25 135584]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-8-31 59392]
S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2012-4-15 18216]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-8-31 1255736]
.
=============== Created Last 30 ================
.
2013-01-06 10:27:0154072----a-w-C:\Windows\System32\drivers\aswRdr2.sys
2013-01-06 10:26:56984144----a-w-C:\Windows\System32\drivers\aswSnx.sys
2013-01-06 10:26:4671600----a-w-C:\Windows\System32\drivers\aswMonFlt.sys
2013-01-06 10:26:2541224----a-w-C:\Windows\avastSS.scr
2013-01-06 10:26:16--------d-----w-C:\ProgramData\AVAST Software
2013-01-06 10:26:16--------d-----w-C:\Program Files\AVAST Software
2013-01-06 10:24:15--------d-----w-C:\Users\Fuzzy\AppData\Roaming\Malwarebytes
2013-01-06 10:24:03--------d-----w-C:\ProgramData\Malwarebytes
2013-01-06 10:24:0124176----a-w-C:\Windows\System32\drivers\mbam.sys
2013-01-06 10:24:01--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-01-06 10:23:42--------d-----w-C:\Users\Fuzzy\AppData\Local\Programs
2013-01-06 09:29:35--------d-----w-C:\Windows\pss
2013-01-06 09:27:4546080----a-w-C:\Windows\System32\atmlib.dll
2013-01-06 09:27:4534304----a-w-C:\Windows\SysWow64\atmlib.dll
2013-01-06 09:27:44367616----a-w-C:\Windows\System32\atmfd.dll
2013-01-06 09:27:42295424----a-w-C:\Windows\SysWow64\atmfd.dll
2013-01-02 03:28:01--------d-----w-C:\Users\Fuzzy\AppData\Local\NBGI
2012-12-31 15:07:30602112----a-w-C:\Users\Fuzzy\AppData\Roaming\lgndrs.dll
2012-12-29 20:18:26--------d-----w-C:\Users\Fuzzy\AppData\Roaming\WB Games
2012-12-29 19:40:36--------d-----w-C:\Program Files (x86)\CapsuleGames
2012-12-28 23:54:11--------d-----w-C:\Users\Fuzzy\AppData\Local\Green Man Gaming
2012-12-28 23:52:19--------d-----w-C:\Program Files (x86)\Capsule
2012-12-27 18:46:21--------d-sh--w-C:\Windows\System32\%APPDATA%
2012-12-26 03:04:39--------d-----w-C:\Users\Fuzzy\AppData\Roaming\Zeyqme
2012-12-26 03:04:39--------d-----w-C:\Users\Fuzzy\AppData\Roaming\Kudylu
2012-12-25 22:58:04--------d-----w-C:\Users\Fuzzy\AppData\Local\Modio4
2012-12-25 15:54:449125352----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{747802F5-2BEF-4024-B68E-66B6D43C9057}\mpengine.dll
2012-12-14 20:34:17--------d-----w-C:\Program Files (x86)\Memecode
2012-12-11 00:12:12--------d-----w-C:\Program Files\Microsoft Xbox 360 Accessories
2012-12-10 21:56:58--------d-----w-C:\Users\Fuzzy\AppData\Local\Transcripted
.
==================== Find3M ====================
.
2012-12-12 13:55:2773656----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-12 13:55:27697272----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe
2012-12-01 05:49:262557800----a-w-C:\Windows\System32\nvsvcr.dll
2012-12-01 05:49:2563336----a-w-C:\Windows\System32\nvshext.dll
2012-12-01 05:49:25118120----a-w-C:\Windows\System32\nvmctray.dll
2012-12-01 05:49:24890216----a-w-C:\Windows\System32\nvvsvc.exe
2012-12-01 05:48:416223208----a-w-C:\Windows\System32\nvcpl.dll
2012-12-01 05:48:373311464----a-w-C:\Windows\System32\nvsvc64.dll
2012-11-30 11:43:52438632----a-w-C:\Windows\SysWow64\nvStreaming.exe
2012-11-22 03:26:403149824----a-w-C:\Windows\System32\win32k.sys
2012-11-12 12:28:371638912----a-w-C:\Windows\System32\mshtml.tlb
2012-11-12 11:52:181638912----a-w-C:\Windows\SysWow64\mshtml.tlb
2012-11-09 05:45:092048----a-w-C:\Windows\System32\tzres.dll
2012-11-09 04:42:492048----a-w-C:\Windows\SysWow64\tzres.dll
2012-11-02 05:59:11478208----a-w-C:\Windows\System32\dpnet.dll
2012-11-02 05:11:31376832----a-w-C:\Windows\SysWow64\dpnet.dll
2012-10-27 06:26:55981504----a-w-C:\Windows\SysWow64\wininet.dll
2012-10-27 05:51:211188864----a-w-C:\Windows\System32\wininet.dll
2012-10-22 03:37:09466456----a-w-C:\Windows\System32\wrap_oal.dll
2012-10-22 03:37:09444952----a-w-C:\Windows\SysWow64\wrap_oal.dll
2012-10-22 03:37:09122904----a-w-C:\Windows\System32\OpenAL32.dll
2012-10-22 03:37:09109080----a-w-C:\Windows\SysWow64\OpenAL32.dll
2012-10-16 08:38:37135168----a-w-C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38:34350208----a-w-C:\Windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39:52561664----a-w-C:\Windows\apppatch\AcLayers.dll
2012-10-09 18:17:1355296----a-w-C:\Windows\System32\dhcpcsvc6.dll
2012-10-09 18:17:13226816----a-w-C:\Windows\System32\dhcpcore6.dll
2012-10-09 17:40:3144032----a-w-C:\Windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40:31193536----a-w-C:\Windows\SysWow64\dhcpcore6.dll
.
============= FINISH: 21:50:45.42 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 29/08/2011 3:40:24 PM
System Uptime: 6/01/2013 9:42:48 PM (0 hours ago)
.
Motherboard: CLEVO CO. | | X7200
Processor: Intel(R) Core(TM) i7 CPU 960 @ 3.20GHz | 1366-pin LGA | 1564/mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 466 GiB total, 42.604 GiB free.
D: is CDROM (CDFS)
E: is CDROM ()
Y: is NetworkDisk (NTFS) - 932 GiB total, 244.189 GiB free.
Z: is NetworkDisk (NTFS) - 466 GiB total, 6.395 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP286: 2/01/2013 2:26:13 PM - Installed DirectX
RP287: 6/01/2013 8:26:45 PM - Windows Update
RP288: 6/01/2013 9:26:00 PM - avast! Free Antivirus Setup
.
==== Installed Programs ======================
.
1000 Amps
3DMark 11
7-Zip 9.20 (x64 edition)
A.R.E.S.
AaAaAA!!! - A Reckless Disregard for Gravity
AaaaaAAaaaAAAaaAAAAaAAAAA!!! for the Awesome
Adobe Digital Editions
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.4)
Adventures of Shuggy
Alien Flux (remove only)
Alien Zombie Megadeath
Amnesia - The Dark Descent
Analogue: A Hate Story
Anomaly Warzone Earth
Aquaria
Astro Tripper
Audiosurf
Avadon: The Black Fortress
avast! Free Antivirus
Avernum: Escape From the Pit
AVSEQ
Awesomenauts
Ballistic version 1.01
Bastion
Beat Hazard
Ben There, Dan That!
Beyond Good & Evil
BisonCam
BIT.TRIP BEAT
BIT.TRIP RUNNER
Borderlands
Borderlands 2
Breath of Death VII
Canon Utilities Digital Photo Professional 3.10
Canon Utilities EOS Utility
Capsized
Capsule
Cargo Commander
Caster
Cave Story+
CDisplay 1.8
Character Builder
Chime
Closure
Commander Keen Complete Pack
Cortex Command
Costume Quest
Crayon Physics Deluxe
Creation Kit
Cthulhu Saves the World
Cubemen
DAEMON Tools Lite
DAEMON Tools Toolbar
Dangerous High School Girls in Trouble!
Dark Souls: Prepare to Die Edition
DDS Converter 2.1
Dead Pixels
Delve Deeper
Depths of Peril
Din's Curse
Divinity II: Dragon Knight Saga - Demo
Don't Starve
Droplitz
Dungeon Defenders
Dungeons of Dredmor
Dustforce
EASEUS Partition Master 9.1.0 Home Edition
Easy2Convert DDS to JPG 1.1
Eversion
Everyday Shooter
Fieldrunners
FileZilla Client 3.5.1
FMS File Date Changer 2.2
Foldit
Fowl Space
Fraps
Frozen Synapse
FTL: Faster Than Light
Futuremark SystemInfo
GameSpy Comrade
Gateways
Gemini Rue
Giana Sisters: Twisted Dreams
GIMP 2.8.2
Gish
Google Chrome
Google Earth Plug-in
Google Update Helper
GPGNet
Grand Theft Auto
Grand Theft Auto 2
Hack, Slash, Loot
Hamlet or the last game without MMORPG features, shaders and product placement
Hammerfight
Harvest: Massive Encounter
Heaven DX11 Benchmark version 3.0
Hector: Ep 1
HOARD
Home
Hotkey 3.3020
Hotline Miami
Hydrophobia: Prophecy
Indie Game: The Movie
Inferno+ version 1.11
Insanely Twisted Shadow Planet
Inside a Star-filled Sky
Intel® Matrix Storage Manager
Intrusion 2
ITE Infrared Transceiver
Jamestown
Java Auto Updater
Java(TM) 6 Update 31
JMicron Ethernet Adapter NDIS Driver
JMicron Flash Media Controller Driver
Jolly Rover
Just Cause 2
Katawa Shoujo
Killing Floor
Kingdoms of Amalur Reckoning
Krater
Lara Croft and the Guardian of Light
LEGO Batman 2
LEGO Batman: The Videogame
LEGO Lord of the Rings
LIMBO
Livestream Procaster
Lone Survivor
Lume
Machinarium
Magicka
Malwarebytes Anti-Malware version 1.70.0.1100
Mark of the Ninja
Martial Arts Capoeira
Miasmata
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Windows Media Video 9 VCM
Microsoft Xbox 360 Accessories 1.2
Microsoft XNA Framework Redistributable 3.1
Microsoft XNA Framework Redistributable 4.0
Microsoft XNA Framework Redistributable 4.0 Refresh
Mini Ninjas
Monkey Island 2: Special Edition
Mozilla Firefox 17.0.1 (x86 en-GB)
Mozilla Maintenance Service
Mp3tag v2.43
NEC Electronics USB 3.0 Host Controller Driver
NightSky
Nitronic Rush (2011-12-25) version 20111225.0
Noitu Love 2 Devolution
NVIDIA 3D Vision Controller Driver
NVIDIA 3D Vision Controller Driver 310.70
NVIDIA 3D Vision Driver 310.70
NVIDIA Control Panel 310.70
NVIDIA Graphics Driver 310.70
NVIDIA HD Audio Driver 1.3.18.0
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.12.1031
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 1.11.3
NVIDIA Update Components
Oddworld: Munch's Oddysee
Oddworld: Stranger's Wrath
Offspring Fling!
On the Rain-Slick Precipice of Darkness, Episode One
On the Rain-Slick Precipice of Darkness, Episode Two
OpenAL
Osmos
Path of Exile
Penny Arcade's On the Rain-Slick Precipice of Darkness 3
Penumbra: Overture
Pineapple Smash Crew
PixelJunk Eden
Plants vs. Zombies: Game of the Year
Portal
Portal 2
Portal 2 - The Final Hours
Pound of Ground
Power Tab Editor 1.7
Psychonauts
PunkBuster Services
Really Big Sky
Realm of the Mad God
Realtek High Definition Audio Driver
Recettear: An Item Shop's Tale
Red Faction
Red Faction: Guerrilla
Renegade Ops
Retro City Rampage
RGF HotSpot version 0.6b
Rochard
Rocksmith
Roller Coaster Rampage
Samorost 2
Scribblenauts Unlimited
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Shank
Shatter
Shattered Horizon
SkyDrift
Slydris version 1.01
Snapshot
Snuggle Truck
SOL: Exodus
Solar 2
Songsheet Generator 2.9
Space Pirates and Zombies
SpaceChem
Spirits
Stacking
Stalker Complete 2009
Star Wars: Knights of the Old Republic
Steam
Steel Storm: Burning Retribution
Super Amazing Wagon Adventure
Super Crate Box
Super Meat Boy
Superbrothers: Sword & Sworcery EP
Swords and Soldiers HD
Symphony
Synaptics Pointing Device Driver
Terraria
The Basement Collection
The Binding Of Isaac
The Elder Scrolls V: Skyrim
The Network
The Secret of Monkey Island: Special Edition
The Tiny Bang Story
The Walking Dead
The Witcher: Enhanced Edition
They Bleed Pixels
Tidalis
Time Gentlemen, Please!
Tiny and Big: Grandpa's Leftovers
Titan Attacks
Tobe's Vertical Adventure
Toki Tori
Torchlight
Torchlight Editor
Transcripted
TRAUMA
Trine
Trino
TSLRCM 1.8
Turba
Ubisoft Game Launcher
Unreal Tournament 3: Black Edition
Unstoppable Gorg
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Uplink
Vessel
VLC media player 1.0.5
Voxatron 0.1.4
VVVVVV
Wacom Tablet
Wanderlust: Rebirth
Warhammer 40,000 Space Marine
Waves
WebTablet IE Plugin
WebTablet Netscape Plugin
Windows Live ID Sign-in Assistant
Wizorb
World of Goo
Worms Armageddon
Worms Revolution
XCOM: Enemy Unknown
Your Doodles Are Bugged!
Zen Bound® 2
.
==== Event Viewer Messages From Past Week ========
.
6/01/2013 9:46:12 PM, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: %%-2147024891
6/01/2013 9:46:12 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: %%-2147024891
6/01/2013 9:43:16 PM, Error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service.
6/01/2013 9:43:16 PM, Error: Service Control Manager [7003] - The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.
6/01/2013 9:43:16 PM, Error: Service Control Manager [7003] - The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.
6/01/2013 8:41:05 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
6/01/2013 8:38:25 PM, Error: Service Control Manager [7022] - The NVIDIA Update Service Daemon service hung on starting.
2/01/2013 9:21:51 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
.
==== End Of File ===========================