Good afternoon. I'm having the issues described in the subject, and have run the "8" steps.
Here are my logs:
Avira AntiVir Personal
Report file date: Sunday, April 24, 2011 14:27
Scanning for 2596233 virus strains and unwanted programs.
The program is running as an unrestricted full version.
Online services are available:
Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows 7 x64
Windows version : (Service Pack 1) [6.1.7601]
Boot mode : Normally booted
Username : SYSTEM
Computer name : KIRK3200MHZ
Version information:
BUILD.DAT : 10.0.0.635 31822 Bytes 3/7/2011 12:15:00
AVSCAN.EXE : 10.0.3.5 435368 Bytes 3/4/2011 18:36:52
AVSCAN.DLL : 10.0.3.0 46440 Bytes 4/1/2010 16:57:04
LUKE.DLL : 10.0.3.2 104296 Bytes 3/4/2011 18:36:59
LUKERES.DLL : 10.0.0.1 12648 Bytes 2/11/2010 03:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 11/6/2009 13:05:36
VBASE001.VDF : 7.11.0.0 13342208 Bytes 12/14/2010 18:37:07
VBASE002.VDF : 7.11.3.0 1950720 Bytes 2/9/2011 18:37:08
VBASE003.VDF : 7.11.5.225 1980416 Bytes 4/7/2011 18:26:26
VBASE004.VDF : 7.11.5.226 2048 Bytes 4/7/2011 18:26:26
VBASE005.VDF : 7.11.5.227 2048 Bytes 4/7/2011 18:26:26
VBASE006.VDF : 7.11.5.228 2048 Bytes 4/7/2011 18:26:27
VBASE007.VDF : 7.11.5.229 2048 Bytes 4/7/2011 18:26:27
VBASE008.VDF : 7.11.5.230 2048 Bytes 4/7/2011 18:26:27
VBASE009.VDF : 7.11.5.231 2048 Bytes 4/7/2011 18:26:27
VBASE010.VDF : 7.11.5.232 2048 Bytes 4/7/2011 18:26:27
VBASE011.VDF : 7.11.5.233 2048 Bytes 4/7/2011 18:26:27
VBASE012.VDF : 7.11.5.234 2048 Bytes 4/7/2011 18:26:27
VBASE013.VDF : 7.11.6.28 158208 Bytes 4/11/2011 18:26:28
VBASE014.VDF : 7.11.6.74 116224 Bytes 4/13/2011 18:26:29
VBASE015.VDF : 7.11.6.113 137728 Bytes 4/14/2011 18:26:30
VBASE016.VDF : 7.11.6.150 146944 Bytes 4/18/2011 18:26:31
VBASE017.VDF : 7.11.6.192 138240 Bytes 4/20/2011 18:26:32
VBASE018.VDF : 7.11.6.237 156160 Bytes 4/22/2011 18:26:33
VBASE019.VDF : 7.11.6.238 2048 Bytes 4/22/2011 18:26:34
VBASE020.VDF : 7.11.6.239 2048 Bytes 4/22/2011 18:26:34
VBASE021.VDF : 7.11.6.240 2048 Bytes 4/22/2011 18:26:34
VBASE022.VDF : 7.11.6.241 2048 Bytes 4/22/2011 18:26:34
VBASE023.VDF : 7.11.6.242 2048 Bytes 4/22/2011 18:26:34
VBASE024.VDF : 7.11.6.243 2048 Bytes 4/22/2011 18:26:34
VBASE025.VDF : 7.11.6.244 2048 Bytes 4/22/2011 18:26:35
VBASE026.VDF : 7.11.6.245 2048 Bytes 4/22/2011 18:26:35
VBASE027.VDF : 7.11.6.246 2048 Bytes 4/22/2011 18:26:35
VBASE028.VDF : 7.11.6.247 2048 Bytes 4/22/2011 18:26:35
VBASE029.VDF : 7.11.6.248 2048 Bytes 4/22/2011 18:26:35
VBASE030.VDF : 7.11.6.249 2048 Bytes 4/22/2011 18:26:35
VBASE031.VDF : 7.11.6.254 32768 Bytes 4/24/2011 18:26:36
Engineversion : 8.2.4.214
AEVDF.DLL : 8.1.2.1 106868 Bytes 3/4/2011 18:36:49
AESCRIPT.DLL : 8.1.3.59 1261947 Bytes 4/24/2011 18:26:45
AESCN.DLL : 8.1.7.2 127349 Bytes 3/4/2011 18:36:48
AESBX.DLL : 8.1.3.2 254324 Bytes 3/4/2011 18:36:48
AERDL.DLL : 8.1.9.9 639347 Bytes 4/24/2011 18:26:44
AEPACK.DLL : 8.2.6.0 549237 Bytes 4/24/2011 18:26:43
AEOFFICE.DLL : 8.1.1.20 205177 Bytes 4/24/2011 18:26:42
AEHEUR.DLL : 8.1.2.105 3453303 Bytes 4/24/2011 18:26:42
AEHELP.DLL : 8.1.16.1 246134 Bytes 3/4/2011 18:36:41
AEGEN.DLL : 8.1.5.4 397684 Bytes 4/24/2011 18:26:38
AEEMU.DLL : 8.1.3.0 393589 Bytes 3/4/2011 18:36:40
AECORE.DLL : 8.1.20.2 196982 Bytes 4/24/2011 18:26:37
AEBB.DLL : 8.1.1.0 53618 Bytes 3/4/2011 18:36:39
AVWINLL.DLL : 10.0.0.0 19304 Bytes 3/4/2011 18:36:53
AVPREF.DLL : 10.0.0.0 44904 Bytes 3/4/2011 18:36:52
AVREP.DLL : 10.0.0.8 62209 Bytes 6/17/2010 18:27:13
AVREG.DLL : 10.0.3.2 53096 Bytes 3/4/2011 18:36:52
AVSCPLR.DLL : 10.0.3.2 84328 Bytes 3/4/2011 18:36:53
AVARKT.DLL : 10.0.22.6 231784 Bytes 3/4/2011 18:36:50
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 3/4/2011 18:36:51
SQLITE3.DLL : 3.6.19.0 355688 Bytes 6/17/2010 18:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 3/4/2011 18:36:53
NETNT.DLL : 10.0.0.0 11624 Bytes 6/17/2010 18:27:21
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 3/4/2011 18:37:12
RCTEXT.DLL : 10.0.58.0 97128 Bytes 3/4/2011 18:37:12
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: E:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, E:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+PFS,+SPR,
Start of the scan: Sunday, April 24, 2011 14:27
Starting search for hidden objects.
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Applets\SysTray\BattMeter\Flyout\381b4222-f694-41f0-9685-ff5bb260df2e
[NOTE] The registry entry is invisible.
The scan of running processes will be started
Scan process 'avscan.exe' - '75' Module(s) have been scanned
Scan process 'avscan.exe' - '30' Module(s) have been scanned
Scan process 'avcenter.exe' - '74' Module(s) have been scanned
Scan process 'avgnt.exe' - '69' Module(s) have been scanned
Scan process 'sched.exe' - '48' Module(s) have been scanned
Scan process 'avguard.exe' - '67' Module(s) have been scanned
Scan process 'SteamService.exe' - '42' Module(s) have been scanned
Scan process 'jusched.exe' - '25' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '76' Module(s) have been scanned
Scan process 'nusb3mon.exe' - '32' Module(s) have been scanned
Scan process 'Steam.exe' - '122' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '41' Module(s) have been scanned
Scan process 'DAODx.exe' - '19' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '63' Module(s) have been scanned
Scan process 'rundll32.exe' - '46' Module(s) have been scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'E:\'
[INFO] No virus was found!
Starting to scan executable files (registry).
The registry was scanned ( '733' files ).
Starting the file scan:
Begin scan in 'C:\'
Begin scan in 'E:\' <Storage>
End of the scan: Sunday, April 24, 2011 14:49
Used time: 21:52 Minute(s)
The scan has been done completely.
31976 Scanned directories
451898 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
451898 Files not concerned
4412 Archives were scanned
0 Warnings
0 Notes
604224 Objects were scanned with rootkit scan
1 Hidden objects were found
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 6434
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
4/24/2011 3:08:19 PM
mbam-log-2011-04-24 (15-08-19).txt
Scan type: Full scan (C:\|E:\|)
Objects scanned: 310483
Time elapsed: 11 minute(s), 46 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
Gmer.log was blank - When I ran gmer it said no modifications were found.
dds.txt
.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by Kirk at 15:21:13.48 on Sun 04/24/2011
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_24
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.8190.6310 [GMT -4:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\system32\Dwm.exe
E:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\DAODx.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k imgsvc
E:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
E:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
E:\Program Files (x86)\iTunes\iTunesHelper.exe
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k SDRSVC
E:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
E:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
C:\Windows\system32\conhost.exe
E:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
E:\Downloads\Antivir\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe,
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - E:\Program Files (x86)\Java\bin\jp2ssv.dll
uRun: [Google Update] "C:\Users\Kirk\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Steam] "E:\Program Files (x86)\Steam\steam.exe" -silent
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [StartCCC] "E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [iTunesHelper] "E:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [avgnt] "E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Kirk\AppData\Roaming\Mozilla\Firefox\Profiles\ycvuyqp0.default\
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Users\Kirk\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Users\Kirk\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Kirk\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - plugin: E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
FF - plugin: E:\Program Files (x86)\Java\bin\new_plugin\npdeployJava1.dll
FF - plugin: E:\Program Files (x86)\Java\bin\new_plugin\npjp2.dll
FF - plugin: E:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-3-9 203776]
R2 AMD FUEL Service;AMD FUEL Service;E:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-3-9 365568]
R2 AMD Reservation Manager;AMD Reservation Manager;E:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-6-17 194496]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;E:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2011-4-24 135336]
R2 AntiVirService;Avira AntiVir Guard;E:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-4-24 269480]
R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2011-4-24 83120]
R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2011-4-14 46136]
R3 amdkmdag;amdkmdag;C:\Windows\System32\drivers\atikmdag.sys [2011-3-9 9258496]
R3 amdkmdap;amdkmdap;C:\Windows\System32\drivers\atikmpag.sys [2011-3-9 300544]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-4-26 83080]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-4-26 184968]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-1-24 333928]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-2-18 51712]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2011-1-24 1301504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-4-24 1153368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2011-4-14 20992]
S3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver;C:\Windows\System32\drivers\wg111v3.sys [2009-11-18 446976]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-4-14 59392]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-1-24 1255736]
.
=============== Created Last 30 ================
.
2011-04-24 18:27:45 -------- d-----w- C:\Users\Kirk\AppData\Roaming\Avira
2011-04-24 18:19:42 83120 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2011-04-24 18:19:42 -------- d-----w- C:\PROGRA~3\Avira
2011-04-24 18:11:48 -------- d-----w- C:\Windows\System32\appmgmt
2011-04-24 18:06:50 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2011-04-24 18:06:50 -------- d-----w- C:\PROGRA~3\Spybot - Search & Destroy
2011-04-24 18:00:59 -------- d-----w- C:\Program Files\iPod
2011-04-24 18:00:58 -------- d-----w- C:\Program Files\iTunes
2011-04-24 17:59:58 -------- d-----w- C:\Program Files\Bonjour
2011-04-24 17:59:58 -------- d-----w- C:\Program Files (x86)\Bonjour
2011-04-23 21:25:27 -------- d-----w- C:\Program Files (x86)\AMD APP
2011-04-23 21:25:25 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2011-04-23 21:25:25 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2011-04-23 21:24:59 -------- d-----w- C:\Program Files\ATI
2011-04-23 21:02:27 -------- d-----w- C:\PROGRA~3\SUPERAntiSpyware.com
2011-04-23 02:57:44 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2011-04-23 02:49:21 34152 ----a-r- C:\Windows\System32\drivers\GEARAspiWDM.sys
2011-04-23 02:49:21 126312 ----a-r- C:\Windows\System32\GEARAspi64.dll
2011-04-23 02:49:21 107368 ----a-r- C:\Windows\SysWow64\GEARAspi.dll
2011-04-23 02:48:51 -------- d-----w- C:\PROGRA~3\NortonInstaller
2011-04-23 02:47:51 -------- d-----w- C:\PROGRA~3\Norton
2011-04-23 02:10:57 -------- d-----w- C:\Users\Kirk\AppData\Roaming\Malwarebytes
2011-04-23 02:10:24 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-23 02:10:24 -------- d-----w- C:\PROGRA~3\Malwarebytes
2011-04-23 02:10:21 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-04-23 02:10:21 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-04-23 02:07:35 98304 --sha-r- C:\Windows\SysWow64\msscntrs6.dll
2011-04-22 07:48:08 8802128 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{EA59DB68-395F-4F80-8DF2-74862C9E08EE}\mpengine.dll
2011-04-17 03:44:14 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2011-04-17 03:44:14 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2011-04-16 19:55:08 -------- d-----w- C:\Users\Kirk\AppData\Local\My Games
2011-04-16 15:10:12 995328 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2011-04-15 13:14:02 -------- d-----w- C:\Users\Kirk\AppData\Local\AMD
2011-04-15 13:10:17 -------- d-----w- C:\PROGRA~3\AMD
2011-04-15 03:11:14 -------- d-----w- C:\Windows\System32\SPReview
2011-04-15 03:11:12 -------- d-----w- C:\Windows\System32\EventProviders
2011-04-15 03:07:59 95232 ----a-w- C:\Windows\System32\cca.dll
2011-04-15 03:02:56 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-04-15 02:58:34 46136 ----a-w- C:\Windows\System32\drivers\amdiox64.sys
2011-04-13 00:31:55 1208320 ----a-w- C:\Windows\System32\atiumd6v.dll
2011-04-13 00:31:51 1912832 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
2011-04-10 15:59:00 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2011-04-07 00:34:18 -------- d-----w- C:\Users\Kirk\AppData\Roaming\TS3Client
2011-04-06 20:26:58 96544 ----a-w- C:\Windows\System32\dnssd.dll
2011-04-06 20:26:58 69408 ----a-w- C:\Windows\System32\jdns_sd.dll
2011-04-06 20:26:58 237856 ----a-w- C:\Windows\System32\dnssdX.dll
2011-04-06 20:26:58 119584 ----a-w- C:\Windows\System32\dns-sd.exe
2011-04-06 20:20:16 91424 ----a-w- C:\Windows\SysWow64\dnssd.dll
2011-04-06 20:20:16 75040 ----a-w- C:\Windows\SysWow64\jdns_sd.dll
2011-04-06 20:20:16 197920 ----a-w- C:\Windows\SysWow64\dnssdX.dll
2011-04-06 20:20:16 107808 ----a-w- C:\Windows\SysWow64\dns-sd.exe
.
==================== Find3M ====================
.
2011-04-15 13:11:33 175616 ----a-w- C:\Windows\System32\msclmd.dll
2011-04-15 13:11:33 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2011-03-21 23:56:26 61952 ----a-w- C:\Windows\System32\OVDecode64.dll
2011-03-21 23:56:22 59904 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2011-03-21 23:56:10 53760 ----a-w- C:\Windows\System32\OpenCL.dll
2011-03-21 23:56:06 51712 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2011-03-21 23:55:58 16115712 ----a-w- C:\Windows\System32\amdocl64.dll
2011-03-21 23:55:46 12385792 ----a-w- C:\Windows\SysWow64\amdocl.dll
2011-03-11 06:34:51 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2011-03-11 06:34:50 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2011-03-11 05:33:59 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2011-03-11 05:33:59 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2011-03-09 09:22:42 9258496 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2011-03-09 05:41:52 22518272 ----a-w- C:\Windows\System32\atio6axx.dll
2011-03-09 05:19:22 17397248 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2011-03-09 04:57:04 143360 ----a-w- C:\Windows\System32\atiapfxx.exe
2011-03-09 04:56:54 679424 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2011-03-09 04:55:52 795136 ----a-w- C:\Windows\System32\aticfx64.dll
2011-03-09 04:53:44 462848 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2011-03-09 04:53:34 480256 ----a-w- C:\Windows\System32\atieclxx.exe
2011-03-09 04:53:04 203776 ----a-w- C:\Windows\System32\atiesrxx.exe
2011-03-09 04:52:04 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2011-03-09 04:51:48 423424 ----a-w- C:\Windows\System32\atipdl64.dll
2011-03-09 04:51:42 356352 ----a-w- C:\Windows\SysWow64\atipdlxx.dll
2011-03-09 04:51:34 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll
2011-03-09 04:51:28 16384 ----a-w- C:\Windows\System32\atimuixx.dll
2011-03-09 04:51:26 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2011-03-09 04:51:22 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2011-03-09 04:48:46 4277760 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2011-03-09 04:40:22 5044224 ----a-w- C:\Windows\System32\atidxx64.dll
2011-03-09 04:34:36 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2011-03-09 04:34:34 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2011-03-09 04:34:24 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2011-03-09 04:34:22 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2011-03-09 04:34:12 7025152 ----a-w- C:\Windows\System32\aticaldd64.dll
2011-03-09 04:32:32 5618688 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2011-03-09 04:30:30 4294656 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2011-03-09 04:24:48 5438976 ----a-w- C:\Windows\System32\atiumd64.dll
2011-03-09 04:18:16 360448 ----a-w- C:\Windows\System32\atiadlxx.dll
2011-03-09 04:18:10 258048 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2011-03-09 04:18:00 14848 ----a-w- C:\Windows\System32\atig6pxx.dll
2011-03-09 04:17:56 12800 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2011-03-09 04:17:56 12800 ----a-w- C:\Windows\System32\atiglpxx.dll
2011-03-09 04:17:54 39936 ----a-w- C:\Windows\System32\atig6txx.dll
2011-03-09 04:17:48 32768 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2011-03-09 04:17:42 300544 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2011-03-09 04:17:04 39936 ----a-w- C:\Windows\System32\atiuxp64.dll
2011-03-09 04:17:00 31232 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2011-03-09 04:16:54 38400 ----a-w- C:\Windows\System32\atiu9p64.dll
2011-03-09 04:16:48 28672 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2011-03-09 04:16:14 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2011-03-09 04:11:06 58880 ----a-w- C:\Windows\System32\coinst.dll
2011-03-09 03:41:52 3239936 ----a-w- C:\Windows\System32\atiumd6a.dll
2011-03-09 03:34:12 3471872 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2011-03-09 03:18:58 53760 ----a-w- C:\Windows\System32\atimpc64.dll
2011-03-09 03:18:58 53760 ----a-w- C:\Windows\System32\amdpcom64.dll
2011-03-09 03:18:52 52736 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2011-03-09 03:18:52 52736 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2011-03-08 06:29:32 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2011-03-08 05:28:29 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2011-03-03 06:24:16 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2011-03-03 06:21:57 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2011-03-03 05:36:16 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2011-03-03 03:52:08 3135488 ----a-w- C:\Windows\System32\win32k.sys
2011-02-24 05:38:54 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-02-23 04:56:31 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2011-02-23 04:56:27 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2011-02-23 04:56:03 411648 ----a-w- C:\Windows\System32\drivers\srv2.sys
2011-02-23 04:55:47 167936 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2011-02-23 04:55:12 287744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-02-23 04:55:12 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2011-02-23 04:55:04 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2011-02-19 12:05:15 1139200 ----a-w- C:\Windows\System32\FntCache.dll
2011-02-19 12:04:37 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2011-02-19 12:04:17 902656 ----a-w- C:\Windows\System32\d2d1.dll
2011-02-19 12:03:46 46080 ----a-w- C:\Windows\System32\atmlib.dll
2011-02-19 09:00:32 367616 ----a-w- C:\Windows\System32\atmfd.dll
2011-02-19 06:30:51 1076736 ----a-w- C:\Windows\SysWow64\DWrite.dll
2011-02-19 06:30:50 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-02-19 06:30:46 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2011-02-19 04:34:54 294912 ----a-w- C:\Windows\SysWow64\atmfd.dll
2011-02-18 20:36:58 51712 ----a-w- C:\Windows\System32\drivers\usbaapl64.sys
2011-02-18 20:36:58 4184352 ----a-w- C:\Windows\System32\usbaaplrc.dll
2011-02-12 11:34:16 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2011-02-05 17:10:16 642944 ----a-w- C:\Windows\System32\winload.efi
2011-02-05 17:10:08 20352 ----a-w- C:\Windows\System32\kdusb.dll
2011-02-05 17:10:08 19328 ----a-w- C:\Windows\System32\kd1394.dll
2011-02-05 17:10:08 17792 ----a-w- C:\Windows\System32\kdcom.dll
2011-02-05 17:06:41 605552 ----a-w- C:\Windows\System32\winload.exe
2011-02-05 17:06:41 566208 ----a-w- C:\Windows\System32\winresume.efi
2011-02-05 17:06:41 518672 ----a-w- C:\Windows\System32\winresume.exe
2011-02-03 02:40:23 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-02-02 22:11:20 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-01-24 21:28:41 0 ----a-w- C:\Windows\ativpsrm.bin
.
============= FINISH: 15:21:31.14 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 1/24/2011 4:15:40 PM
System Uptime: 4/24/2011 2:14:04 PM (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M4A87TD EVO
Processor: AMD Phenom(tm) II X4 955 Processor | AM3 | 3200/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 112 GiB total, 76.052 GiB free.
D: is CDROM (UDF)
E: is FIXED (NTFS) - 233 GiB total, 132.658 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Apple Application Support
Apple Software Update
Avira AntiVir Personal - Free Antivirus
BitTorrent
Bloodline Champions
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
CCC Help English
EverQuest II (US English)
FileZilla Client 3.3.5.1
GIMP 2.6.11
Google Talk Plugin
Java Auto Updater
Java(TM) 6 Update 24
JMicron JMB36X Driver
League of Legends
Malwarebytes' Anti-Malware
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft XNA Framework Redistributable 3.1
Mozilla Firefox 4.0 (x86 en-US)
Pando Media Booster
PC Probe II
PDFCreator
Platform
Python 2.7 numpy-1.5.1
Python 2.7 PIL-1.1.7
Python 2.7.1
QuickTime
Realtek Ethernet Controller Driver For Windows 7
Renesas Electronics USB 3.0 Host Controller Driver
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Sid Meier's Civilization V
Skype™ 5.1
Spybot - Search & Destroy
Steam
SumatraPDF
TightVNC 2.0.2
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
VIA Platform Device Manager
Xfire (remove only)
.
==== Event Viewer Messages From Past Week ========
.
4/24/2011 2:19:55 PM, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Start with the following error: Access is denied.
4/24/2011 2:14:16 PM, Error: Service Control Manager [7000] - The AODDriver4.0 service failed to start due to the following error: The system cannot find the path specified.
4/24/2011 2:14:14 PM, Error: Service Control Manager [7001] - The SBSD Security Center Service service depends on the Security Center service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
4/24/2011 2:12:55 PM, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
4/24/2011 2:03:21 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} and APPID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} to the user Kirk3200MHz\Kirk SID (S-1-5-21-353034316-21409312-3111263575-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
4/23/2011 5:25:17 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the AMD External Events Utility service to connect.
4/23/2011 5:25:17 PM, Error: Service Control Manager [7000] - The AMD External Events Utility service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
4/22/2011 11:03:48 PM, Error: Service Control Manager [7022] - The Background Intelligent Transfer Service service hung on starting.
.
==== End Of File ===========================
Here are my logs:
Avira AntiVir Personal
Report file date: Sunday, April 24, 2011 14:27
Scanning for 2596233 virus strains and unwanted programs.
The program is running as an unrestricted full version.
Online services are available:
Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows 7 x64
Windows version : (Service Pack 1) [6.1.7601]
Boot mode : Normally booted
Username : SYSTEM
Computer name : KIRK3200MHZ
Version information:
BUILD.DAT : 10.0.0.635 31822 Bytes 3/7/2011 12:15:00
AVSCAN.EXE : 10.0.3.5 435368 Bytes 3/4/2011 18:36:52
AVSCAN.DLL : 10.0.3.0 46440 Bytes 4/1/2010 16:57:04
LUKE.DLL : 10.0.3.2 104296 Bytes 3/4/2011 18:36:59
LUKERES.DLL : 10.0.0.1 12648 Bytes 2/11/2010 03:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 11/6/2009 13:05:36
VBASE001.VDF : 7.11.0.0 13342208 Bytes 12/14/2010 18:37:07
VBASE002.VDF : 7.11.3.0 1950720 Bytes 2/9/2011 18:37:08
VBASE003.VDF : 7.11.5.225 1980416 Bytes 4/7/2011 18:26:26
VBASE004.VDF : 7.11.5.226 2048 Bytes 4/7/2011 18:26:26
VBASE005.VDF : 7.11.5.227 2048 Bytes 4/7/2011 18:26:26
VBASE006.VDF : 7.11.5.228 2048 Bytes 4/7/2011 18:26:27
VBASE007.VDF : 7.11.5.229 2048 Bytes 4/7/2011 18:26:27
VBASE008.VDF : 7.11.5.230 2048 Bytes 4/7/2011 18:26:27
VBASE009.VDF : 7.11.5.231 2048 Bytes 4/7/2011 18:26:27
VBASE010.VDF : 7.11.5.232 2048 Bytes 4/7/2011 18:26:27
VBASE011.VDF : 7.11.5.233 2048 Bytes 4/7/2011 18:26:27
VBASE012.VDF : 7.11.5.234 2048 Bytes 4/7/2011 18:26:27
VBASE013.VDF : 7.11.6.28 158208 Bytes 4/11/2011 18:26:28
VBASE014.VDF : 7.11.6.74 116224 Bytes 4/13/2011 18:26:29
VBASE015.VDF : 7.11.6.113 137728 Bytes 4/14/2011 18:26:30
VBASE016.VDF : 7.11.6.150 146944 Bytes 4/18/2011 18:26:31
VBASE017.VDF : 7.11.6.192 138240 Bytes 4/20/2011 18:26:32
VBASE018.VDF : 7.11.6.237 156160 Bytes 4/22/2011 18:26:33
VBASE019.VDF : 7.11.6.238 2048 Bytes 4/22/2011 18:26:34
VBASE020.VDF : 7.11.6.239 2048 Bytes 4/22/2011 18:26:34
VBASE021.VDF : 7.11.6.240 2048 Bytes 4/22/2011 18:26:34
VBASE022.VDF : 7.11.6.241 2048 Bytes 4/22/2011 18:26:34
VBASE023.VDF : 7.11.6.242 2048 Bytes 4/22/2011 18:26:34
VBASE024.VDF : 7.11.6.243 2048 Bytes 4/22/2011 18:26:34
VBASE025.VDF : 7.11.6.244 2048 Bytes 4/22/2011 18:26:35
VBASE026.VDF : 7.11.6.245 2048 Bytes 4/22/2011 18:26:35
VBASE027.VDF : 7.11.6.246 2048 Bytes 4/22/2011 18:26:35
VBASE028.VDF : 7.11.6.247 2048 Bytes 4/22/2011 18:26:35
VBASE029.VDF : 7.11.6.248 2048 Bytes 4/22/2011 18:26:35
VBASE030.VDF : 7.11.6.249 2048 Bytes 4/22/2011 18:26:35
VBASE031.VDF : 7.11.6.254 32768 Bytes 4/24/2011 18:26:36
Engineversion : 8.2.4.214
AEVDF.DLL : 8.1.2.1 106868 Bytes 3/4/2011 18:36:49
AESCRIPT.DLL : 8.1.3.59 1261947 Bytes 4/24/2011 18:26:45
AESCN.DLL : 8.1.7.2 127349 Bytes 3/4/2011 18:36:48
AESBX.DLL : 8.1.3.2 254324 Bytes 3/4/2011 18:36:48
AERDL.DLL : 8.1.9.9 639347 Bytes 4/24/2011 18:26:44
AEPACK.DLL : 8.2.6.0 549237 Bytes 4/24/2011 18:26:43
AEOFFICE.DLL : 8.1.1.20 205177 Bytes 4/24/2011 18:26:42
AEHEUR.DLL : 8.1.2.105 3453303 Bytes 4/24/2011 18:26:42
AEHELP.DLL : 8.1.16.1 246134 Bytes 3/4/2011 18:36:41
AEGEN.DLL : 8.1.5.4 397684 Bytes 4/24/2011 18:26:38
AEEMU.DLL : 8.1.3.0 393589 Bytes 3/4/2011 18:36:40
AECORE.DLL : 8.1.20.2 196982 Bytes 4/24/2011 18:26:37
AEBB.DLL : 8.1.1.0 53618 Bytes 3/4/2011 18:36:39
AVWINLL.DLL : 10.0.0.0 19304 Bytes 3/4/2011 18:36:53
AVPREF.DLL : 10.0.0.0 44904 Bytes 3/4/2011 18:36:52
AVREP.DLL : 10.0.0.8 62209 Bytes 6/17/2010 18:27:13
AVREG.DLL : 10.0.3.2 53096 Bytes 3/4/2011 18:36:52
AVSCPLR.DLL : 10.0.3.2 84328 Bytes 3/4/2011 18:36:53
AVARKT.DLL : 10.0.22.6 231784 Bytes 3/4/2011 18:36:50
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 3/4/2011 18:36:51
SQLITE3.DLL : 3.6.19.0 355688 Bytes 6/17/2010 18:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 3/4/2011 18:36:53
NETNT.DLL : 10.0.0.0 11624 Bytes 6/17/2010 18:27:21
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 3/4/2011 18:37:12
RCTEXT.DLL : 10.0.58.0 97128 Bytes 3/4/2011 18:37:12
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: E:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, E:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+PFS,+SPR,
Start of the scan: Sunday, April 24, 2011 14:27
Starting search for hidden objects.
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Applets\SysTray\BattMeter\Flyout\381b4222-f694-41f0-9685-ff5bb260df2e
[NOTE] The registry entry is invisible.
The scan of running processes will be started
Scan process 'avscan.exe' - '75' Module(s) have been scanned
Scan process 'avscan.exe' - '30' Module(s) have been scanned
Scan process 'avcenter.exe' - '74' Module(s) have been scanned
Scan process 'avgnt.exe' - '69' Module(s) have been scanned
Scan process 'sched.exe' - '48' Module(s) have been scanned
Scan process 'avguard.exe' - '67' Module(s) have been scanned
Scan process 'SteamService.exe' - '42' Module(s) have been scanned
Scan process 'jusched.exe' - '25' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '76' Module(s) have been scanned
Scan process 'nusb3mon.exe' - '32' Module(s) have been scanned
Scan process 'Steam.exe' - '122' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '41' Module(s) have been scanned
Scan process 'DAODx.exe' - '19' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '63' Module(s) have been scanned
Scan process 'rundll32.exe' - '46' Module(s) have been scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'E:\'
[INFO] No virus was found!
Starting to scan executable files (registry).
The registry was scanned ( '733' files ).
Starting the file scan:
Begin scan in 'C:\'
Begin scan in 'E:\' <Storage>
End of the scan: Sunday, April 24, 2011 14:49
Used time: 21:52 Minute(s)
The scan has been done completely.
31976 Scanned directories
451898 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
451898 Files not concerned
4412 Archives were scanned
0 Warnings
0 Notes
604224 Objects were scanned with rootkit scan
1 Hidden objects were found
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 6434
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
4/24/2011 3:08:19 PM
mbam-log-2011-04-24 (15-08-19).txt
Scan type: Full scan (C:\|E:\|)
Objects scanned: 310483
Time elapsed: 11 minute(s), 46 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
Gmer.log was blank - When I ran gmer it said no modifications were found.
dds.txt
.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by Kirk at 15:21:13.48 on Sun 04/24/2011
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_24
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.8190.6310 [GMT -4:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\system32\Dwm.exe
E:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\DAODx.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k imgsvc
E:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
E:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
E:\Program Files (x86)\iTunes\iTunesHelper.exe
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k SDRSVC
E:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
E:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
C:\Windows\system32\conhost.exe
E:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
E:\Downloads\Antivir\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe,
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - E:\Program Files (x86)\Java\bin\jp2ssv.dll
uRun: [Google Update] "C:\Users\Kirk\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Steam] "E:\Program Files (x86)\Steam\steam.exe" -silent
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [StartCCC] "E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [iTunesHelper] "E:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [avgnt] "E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Kirk\AppData\Roaming\Mozilla\Firefox\Profiles\ycvuyqp0.default\
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Users\Kirk\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Users\Kirk\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Kirk\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - plugin: E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
FF - plugin: E:\Program Files (x86)\Java\bin\new_plugin\npdeployJava1.dll
FF - plugin: E:\Program Files (x86)\Java\bin\new_plugin\npjp2.dll
FF - plugin: E:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-3-9 203776]
R2 AMD FUEL Service;AMD FUEL Service;E:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-3-9 365568]
R2 AMD Reservation Manager;AMD Reservation Manager;E:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-6-17 194496]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;E:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2011-4-24 135336]
R2 AntiVirService;Avira AntiVir Guard;E:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-4-24 269480]
R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2011-4-24 83120]
R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2011-4-14 46136]
R3 amdkmdag;amdkmdag;C:\Windows\System32\drivers\atikmdag.sys [2011-3-9 9258496]
R3 amdkmdap;amdkmdap;C:\Windows\System32\drivers\atikmpag.sys [2011-3-9 300544]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-4-26 83080]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-4-26 184968]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-1-24 333928]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-2-18 51712]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2011-1-24 1301504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-4-24 1153368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2011-4-14 20992]
S3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver;C:\Windows\System32\drivers\wg111v3.sys [2009-11-18 446976]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-4-14 59392]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-1-24 1255736]
.
=============== Created Last 30 ================
.
2011-04-24 18:27:45 -------- d-----w- C:\Users\Kirk\AppData\Roaming\Avira
2011-04-24 18:19:42 83120 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2011-04-24 18:19:42 -------- d-----w- C:\PROGRA~3\Avira
2011-04-24 18:11:48 -------- d-----w- C:\Windows\System32\appmgmt
2011-04-24 18:06:50 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2011-04-24 18:06:50 -------- d-----w- C:\PROGRA~3\Spybot - Search & Destroy
2011-04-24 18:00:59 -------- d-----w- C:\Program Files\iPod
2011-04-24 18:00:58 -------- d-----w- C:\Program Files\iTunes
2011-04-24 17:59:58 -------- d-----w- C:\Program Files\Bonjour
2011-04-24 17:59:58 -------- d-----w- C:\Program Files (x86)\Bonjour
2011-04-23 21:25:27 -------- d-----w- C:\Program Files (x86)\AMD APP
2011-04-23 21:25:25 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2011-04-23 21:25:25 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2011-04-23 21:24:59 -------- d-----w- C:\Program Files\ATI
2011-04-23 21:02:27 -------- d-----w- C:\PROGRA~3\SUPERAntiSpyware.com
2011-04-23 02:57:44 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2011-04-23 02:49:21 34152 ----a-r- C:\Windows\System32\drivers\GEARAspiWDM.sys
2011-04-23 02:49:21 126312 ----a-r- C:\Windows\System32\GEARAspi64.dll
2011-04-23 02:49:21 107368 ----a-r- C:\Windows\SysWow64\GEARAspi.dll
2011-04-23 02:48:51 -------- d-----w- C:\PROGRA~3\NortonInstaller
2011-04-23 02:47:51 -------- d-----w- C:\PROGRA~3\Norton
2011-04-23 02:10:57 -------- d-----w- C:\Users\Kirk\AppData\Roaming\Malwarebytes
2011-04-23 02:10:24 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-23 02:10:24 -------- d-----w- C:\PROGRA~3\Malwarebytes
2011-04-23 02:10:21 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-04-23 02:10:21 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-04-23 02:07:35 98304 --sha-r- C:\Windows\SysWow64\msscntrs6.dll
2011-04-22 07:48:08 8802128 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{EA59DB68-395F-4F80-8DF2-74862C9E08EE}\mpengine.dll
2011-04-17 03:44:14 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2011-04-17 03:44:14 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2011-04-16 19:55:08 -------- d-----w- C:\Users\Kirk\AppData\Local\My Games
2011-04-16 15:10:12 995328 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2011-04-15 13:14:02 -------- d-----w- C:\Users\Kirk\AppData\Local\AMD
2011-04-15 13:10:17 -------- d-----w- C:\PROGRA~3\AMD
2011-04-15 03:11:14 -------- d-----w- C:\Windows\System32\SPReview
2011-04-15 03:11:12 -------- d-----w- C:\Windows\System32\EventProviders
2011-04-15 03:07:59 95232 ----a-w- C:\Windows\System32\cca.dll
2011-04-15 03:02:56 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-04-15 02:58:34 46136 ----a-w- C:\Windows\System32\drivers\amdiox64.sys
2011-04-13 00:31:55 1208320 ----a-w- C:\Windows\System32\atiumd6v.dll
2011-04-13 00:31:51 1912832 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
2011-04-10 15:59:00 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2011-04-07 00:34:18 -------- d-----w- C:\Users\Kirk\AppData\Roaming\TS3Client
2011-04-06 20:26:58 96544 ----a-w- C:\Windows\System32\dnssd.dll
2011-04-06 20:26:58 69408 ----a-w- C:\Windows\System32\jdns_sd.dll
2011-04-06 20:26:58 237856 ----a-w- C:\Windows\System32\dnssdX.dll
2011-04-06 20:26:58 119584 ----a-w- C:\Windows\System32\dns-sd.exe
2011-04-06 20:20:16 91424 ----a-w- C:\Windows\SysWow64\dnssd.dll
2011-04-06 20:20:16 75040 ----a-w- C:\Windows\SysWow64\jdns_sd.dll
2011-04-06 20:20:16 197920 ----a-w- C:\Windows\SysWow64\dnssdX.dll
2011-04-06 20:20:16 107808 ----a-w- C:\Windows\SysWow64\dns-sd.exe
.
==================== Find3M ====================
.
2011-04-15 13:11:33 175616 ----a-w- C:\Windows\System32\msclmd.dll
2011-04-15 13:11:33 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2011-03-21 23:56:26 61952 ----a-w- C:\Windows\System32\OVDecode64.dll
2011-03-21 23:56:22 59904 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2011-03-21 23:56:10 53760 ----a-w- C:\Windows\System32\OpenCL.dll
2011-03-21 23:56:06 51712 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2011-03-21 23:55:58 16115712 ----a-w- C:\Windows\System32\amdocl64.dll
2011-03-21 23:55:46 12385792 ----a-w- C:\Windows\SysWow64\amdocl.dll
2011-03-11 06:34:51 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2011-03-11 06:34:50 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2011-03-11 05:33:59 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2011-03-11 05:33:59 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2011-03-09 09:22:42 9258496 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2011-03-09 05:41:52 22518272 ----a-w- C:\Windows\System32\atio6axx.dll
2011-03-09 05:19:22 17397248 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2011-03-09 04:57:04 143360 ----a-w- C:\Windows\System32\atiapfxx.exe
2011-03-09 04:56:54 679424 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2011-03-09 04:55:52 795136 ----a-w- C:\Windows\System32\aticfx64.dll
2011-03-09 04:53:44 462848 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2011-03-09 04:53:34 480256 ----a-w- C:\Windows\System32\atieclxx.exe
2011-03-09 04:53:04 203776 ----a-w- C:\Windows\System32\atiesrxx.exe
2011-03-09 04:52:04 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2011-03-09 04:51:48 423424 ----a-w- C:\Windows\System32\atipdl64.dll
2011-03-09 04:51:42 356352 ----a-w- C:\Windows\SysWow64\atipdlxx.dll
2011-03-09 04:51:34 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll
2011-03-09 04:51:28 16384 ----a-w- C:\Windows\System32\atimuixx.dll
2011-03-09 04:51:26 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2011-03-09 04:51:22 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2011-03-09 04:48:46 4277760 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2011-03-09 04:40:22 5044224 ----a-w- C:\Windows\System32\atidxx64.dll
2011-03-09 04:34:36 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2011-03-09 04:34:34 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2011-03-09 04:34:24 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2011-03-09 04:34:22 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2011-03-09 04:34:12 7025152 ----a-w- C:\Windows\System32\aticaldd64.dll
2011-03-09 04:32:32 5618688 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2011-03-09 04:30:30 4294656 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2011-03-09 04:24:48 5438976 ----a-w- C:\Windows\System32\atiumd64.dll
2011-03-09 04:18:16 360448 ----a-w- C:\Windows\System32\atiadlxx.dll
2011-03-09 04:18:10 258048 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2011-03-09 04:18:00 14848 ----a-w- C:\Windows\System32\atig6pxx.dll
2011-03-09 04:17:56 12800 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2011-03-09 04:17:56 12800 ----a-w- C:\Windows\System32\atiglpxx.dll
2011-03-09 04:17:54 39936 ----a-w- C:\Windows\System32\atig6txx.dll
2011-03-09 04:17:48 32768 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2011-03-09 04:17:42 300544 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2011-03-09 04:17:04 39936 ----a-w- C:\Windows\System32\atiuxp64.dll
2011-03-09 04:17:00 31232 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2011-03-09 04:16:54 38400 ----a-w- C:\Windows\System32\atiu9p64.dll
2011-03-09 04:16:48 28672 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2011-03-09 04:16:14 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2011-03-09 04:11:06 58880 ----a-w- C:\Windows\System32\coinst.dll
2011-03-09 03:41:52 3239936 ----a-w- C:\Windows\System32\atiumd6a.dll
2011-03-09 03:34:12 3471872 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2011-03-09 03:18:58 53760 ----a-w- C:\Windows\System32\atimpc64.dll
2011-03-09 03:18:58 53760 ----a-w- C:\Windows\System32\amdpcom64.dll
2011-03-09 03:18:52 52736 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2011-03-09 03:18:52 52736 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2011-03-08 06:29:32 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2011-03-08 05:28:29 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2011-03-03 06:24:16 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2011-03-03 06:21:57 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2011-03-03 05:36:16 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2011-03-03 03:52:08 3135488 ----a-w- C:\Windows\System32\win32k.sys
2011-02-24 05:38:54 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-02-23 04:56:31 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2011-02-23 04:56:27 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2011-02-23 04:56:03 411648 ----a-w- C:\Windows\System32\drivers\srv2.sys
2011-02-23 04:55:47 167936 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2011-02-23 04:55:12 287744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-02-23 04:55:12 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2011-02-23 04:55:04 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2011-02-19 12:05:15 1139200 ----a-w- C:\Windows\System32\FntCache.dll
2011-02-19 12:04:37 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2011-02-19 12:04:17 902656 ----a-w- C:\Windows\System32\d2d1.dll
2011-02-19 12:03:46 46080 ----a-w- C:\Windows\System32\atmlib.dll
2011-02-19 09:00:32 367616 ----a-w- C:\Windows\System32\atmfd.dll
2011-02-19 06:30:51 1076736 ----a-w- C:\Windows\SysWow64\DWrite.dll
2011-02-19 06:30:50 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-02-19 06:30:46 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2011-02-19 04:34:54 294912 ----a-w- C:\Windows\SysWow64\atmfd.dll
2011-02-18 20:36:58 51712 ----a-w- C:\Windows\System32\drivers\usbaapl64.sys
2011-02-18 20:36:58 4184352 ----a-w- C:\Windows\System32\usbaaplrc.dll
2011-02-12 11:34:16 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2011-02-05 17:10:16 642944 ----a-w- C:\Windows\System32\winload.efi
2011-02-05 17:10:08 20352 ----a-w- C:\Windows\System32\kdusb.dll
2011-02-05 17:10:08 19328 ----a-w- C:\Windows\System32\kd1394.dll
2011-02-05 17:10:08 17792 ----a-w- C:\Windows\System32\kdcom.dll
2011-02-05 17:06:41 605552 ----a-w- C:\Windows\System32\winload.exe
2011-02-05 17:06:41 566208 ----a-w- C:\Windows\System32\winresume.efi
2011-02-05 17:06:41 518672 ----a-w- C:\Windows\System32\winresume.exe
2011-02-03 02:40:23 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-02-02 22:11:20 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-01-24 21:28:41 0 ----a-w- C:\Windows\ativpsrm.bin
.
============= FINISH: 15:21:31.14 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 1/24/2011 4:15:40 PM
System Uptime: 4/24/2011 2:14:04 PM (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M4A87TD EVO
Processor: AMD Phenom(tm) II X4 955 Processor | AM3 | 3200/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 112 GiB total, 76.052 GiB free.
D: is CDROM (UDF)
E: is FIXED (NTFS) - 233 GiB total, 132.658 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Apple Application Support
Apple Software Update
Avira AntiVir Personal - Free Antivirus
BitTorrent
Bloodline Champions
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
CCC Help English
EverQuest II (US English)
FileZilla Client 3.3.5.1
GIMP 2.6.11
Google Talk Plugin
Java Auto Updater
Java(TM) 6 Update 24
JMicron JMB36X Driver
League of Legends
Malwarebytes' Anti-Malware
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft XNA Framework Redistributable 3.1
Mozilla Firefox 4.0 (x86 en-US)
Pando Media Booster
PC Probe II
PDFCreator
Platform
Python 2.7 numpy-1.5.1
Python 2.7 PIL-1.1.7
Python 2.7.1
QuickTime
Realtek Ethernet Controller Driver For Windows 7
Renesas Electronics USB 3.0 Host Controller Driver
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Sid Meier's Civilization V
Skype™ 5.1
Spybot - Search & Destroy
Steam
SumatraPDF
TightVNC 2.0.2
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
VIA Platform Device Manager
Xfire (remove only)
.
==== Event Viewer Messages From Past Week ========
.
4/24/2011 2:19:55 PM, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Start with the following error: Access is denied.
4/24/2011 2:14:16 PM, Error: Service Control Manager [7000] - The AODDriver4.0 service failed to start due to the following error: The system cannot find the path specified.
4/24/2011 2:14:14 PM, Error: Service Control Manager [7001] - The SBSD Security Center Service service depends on the Security Center service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
4/24/2011 2:12:55 PM, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
4/24/2011 2:03:21 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} and APPID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} to the user Kirk3200MHz\Kirk SID (S-1-5-21-353034316-21409312-3111263575-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
4/23/2011 5:25:17 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the AMD External Events Utility service to connect.
4/23/2011 5:25:17 PM, Error: Service Control Manager [7000] - The AMD External Events Utility service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
4/22/2011 11:03:48 PM, Error: Service Control Manager [7022] - The Background Intelligent Transfer Service service hung on starting.
.
==== End Of File ===========================