xDarkGemini

Okay I have updated Adobe Flash Player and Adobe Reader. Before I couldn't update Adobe Reader because it said "Error 1935" but apparently that's fixed now too, thank you! I uninstalled ComboFix with no problems Also I ran OTC as administrator and everything's working fine still. Thank you very much for your time, effort, and help. You've fixed my problem with my computer, thank you again MrCharlie!!

checkup.txt: Results of screen317's Security Check version 0.99.79 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Bitdefender Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.75.0.1300 TuneUp Utilities 2014 TuneUp Utilities 2014 (en-US) TuneUp Utilities 2014 Java 7 Update 51 Adobe Flash Player 12.0.0.70 Flash Player out of Date! Adobe Reader 9 Adobe Reader out of Date! Google Chrome 32.0.1700.107 Google Chrome 33.0.1750.117 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes' Anti-Malware mbamscheduler.exe Bitdefender Bitdefender vsserv.exe Bitdefender Bitdefender updatesrv.exe Bitdefender Bitdefender bdagent.exe Bitdefender Bitdefender antispam32 bdapppassmgr.exe Bitdefender Bitdefender pmbxag.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 2% ````````````````````End of Log``````````````````````

Yes so far for these past few days the problem hasn't occurred and seems fixed. Thank you so much MrCharlie for your time and help!

AdwCleaner[s0].txt: # AdwCleaner v3.019 - Report created 20/02/2014 at 11:58:29# Updated 17/02/2014 by Xplode# Operating System : Windows 7 Professional (64 bits)# Username : Lam - LAM-PC# Running from : C:\Users\Lam\Desktop\AdwCleaner.exe# Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** [x] Not Deleted : C:\Program Files (x86)\GreenTree Applications ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}Key Deleted : HKCU\Software\AVG SafeGuard toolbarKey Deleted : HKLM\Software\systweak ***** [ Browsers ] ***** -\\ Internet Explorer v8.0.7600.17267 -\\ Google Chrome v32.0.1700.107 [ File : C:\Users\Lam\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2208 octets] - [20/02/2014 11:54:57]AdwCleaner[s0].txt - [2093 octets] - [20/02/2014 11:58:29] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2153 octets] ########## mbam-log-2014-02-20 (12-07-57).txt: Malwarebytes Anti-Malware (Trial) 1.75.0.1300www.malwarebytes.org Database version: v2014.02.20.09 Windows 7 x64 NTFSInternet Explorer 8.0.7600.16385Lam :: LAM-PC [administrator] Protection: Disabled 2/20/2014 12:07:57 PMmbam-log-2014-02-20 (12-07-57).txt Scan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 212681Time elapsed: 3 minute(s), 30 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected) (end) So far my computer is running fine but I'll use my computer for 2 days to check if the problem still occurs I'll post back. If the problem is gone thank you so much for your time and help!

ComboFix.txt: ComboFix 14-02-19.01 - Lam 02/19/2014 20:09:51.2.6 - x64Microsoft Windows 7 Professional 6.1.7600.0.1252.1.1033.18.4078.2625 [GMT -8:00]Running from: c:\users\Lam\Desktop\ComboFix.exeCommand switches used :: c:\users\Lam\Desktop\CFScript.txtAV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))...--------------- FCopy ---------------.c:\windows\winsxs\amd64_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.1.7600.16385_none_c5bfcda3579104e3\rpcss.dll --> c:\windows\system32\rpcss.dll.((((((((((((((((((((((((( Files Created from 2014-01-20 to 2014-02-20 )))))))))))))))))))))))))))))))..2014-02-20 04:15 . 2014-02-20 04:15 -------- d-----w- c:\users\Default\AppData\Local\temp2014-02-20 03:44 . 2014-02-20 03:44 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5E9A73D0-F9B7-4C3E-8E44-2692825FE29D}\offreg.dll2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\users\Lam\AppData\Roaming\Malwarebytes2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\programdata\Malwarebytes2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware2014-02-20 00:37 . 2013-04-04 22:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\users\Lam\AppData\Local\Programs2014-02-18 20:34 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5E9A73D0-F9B7-4C3E-8E44-2692825FE29D}\mpengine.dll2014-02-18 09:11 . 2014-02-18 09:11 -------- d-----w- c:\users\Lam\AppData\Local\Kakao2014-02-18 09:11 . 2014-02-18 09:11 -------- d-----w- c:\program files (x86)\Kakao2014-02-17 23:58 . 2014-02-17 23:58 -------- d-----w- c:\users\Lam\AppData\Local\Diagnostics2014-02-11 01:55 . 2014-02-11 01:55 -------- d-----w- C:\MATS2014-02-11 01:54 . 2014-02-17 23:58 -------- d-----w- c:\users\Lam\AppData\Local\ElevatedDiagnostics2014-02-10 07:34 . 2014-02-10 07:34 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2014-02-10 07:34 . 2014-02-10 07:34 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2014-02-10 07:34 . 2014-02-10 07:34 -------- d-----w- c:\windows\system32\Macromed2014-02-10 02:24 . 2014-02-10 02:24 -------- d-----w- C:\Nexon2014-02-07 08:25 . 2014-02-17 20:22 -------- d-----w- c:\users\Lam\AppData\Roaming\TeamViewer2014-02-06 02:53 . 2014-02-06 02:53 -------- d-----w- c:\programdata\Elder Scrolls Online2014-02-02 23:12 . 2014-02-02 23:12 -------- d-----w- C:\.jagex_cache_322014-02-02 22:18 . 2014-02-02 22:18 -------- d-----w- C:\Down2014-02-02 22:18 . 2014-02-02 22:18 -------- d-----w- C:\Perfect World Entertainment2014-02-02 22:17 . 2014-02-02 22:17 -------- d-----w- C:\Windyzone2014-01-31 02:45 . 2014-02-15 23:27 -------- d-----w- c:\users\Lam\AppData\Roaming\.minecraft2014-01-28 04:37 . 2014-01-28 04:37 -------- d-----w- c:\programdata\Nexon2014-01-28 01:18 . 2014-02-06 01:56 -------- d-----w- c:\users\Lam\AppData\Local\Warframe2014-01-28 00:37 . 2014-01-28 00:37 -------- d-----w- c:\windows\Hewlett-Packard2014-01-27 02:18 . 2014-01-27 02:18 -------- d-----w- c:\users\Lam\AppData\Roaming\LibrariIcon2014-01-27 00:43 . 2014-01-27 00:43 -------- d-----w- c:\programdata\YTD Video Downloader2014-01-27 00:42 . 2014-01-27 00:42 -------- d-----w- c:\program files (x86)\GreenTree Applications2014-01-26 23:11 . 2014-02-02 23:02 -------- d-----w- c:\users\Lam\jagexcache2014-01-25 22:43 . 2014-01-25 22:43 -------- d-----w- c:\users\Lam\AppData\Roaming\puush2014-01-25 22:43 . 2014-01-25 22:44 -------- d-----w- c:\program files (x86)\puush2014-01-23 01:44 . 2014-01-23 01:44 -------- d-----w- c:\users\Lam\AppData\Local\EdgeOfReality2014-01-22 23:53 . 2014-01-22 23:53 -------- d-----w- c:\users\Lam\AppData\Local\ESN2014-01-22 23:53 . 2014-01-22 23:53 -------- d-----w- c:\program files (x86)\Battlelog Web Plugins2014-01-22 23:25 . 2014-01-22 23:25 25640 ----a-w- c:\windows\gdrv.sys2014-01-22 13:50 . 2014-01-22 13:50 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller2014-01-21 04:30 . 2014-01-21 04:30 -------- d-----w- c:\users\Lam\AppData\Local\Apple...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2014-02-16 04:26 . 2014-01-14 09:03 88567024 ----a-w- c:\windows\system32\MRT.exe2014-02-07 01:19 . 2014-01-15 01:52 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr2014-02-07 01:19 . 2014-01-15 01:14 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.exe2014-02-07 01:16 . 2014-01-15 01:14 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe2014-02-07 01:16 . 2014-01-15 01:14 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.ex02014-02-04 01:24 . 2014-01-17 02:12 893440 ----a-w- c:\windows\system32\drivers\avc3.sys2014-02-04 01:24 . 2014-01-17 02:12 635392 ----a-w- c:\windows\system32\drivers\avckf.sys2014-01-23 00:31 . 2014-01-14 04:30 25640 ----a-w- c:\windows\etdrv.sys2014-01-22 23:25 . 2014-01-14 04:02 30528 ----a-w- c:\windows\GVTDrv64.sys2014-01-18 09:59 . 2014-01-18 09:59 76944 ----a-w- c:\windows\system32\drivers\bdvedisk.sys2014-01-18 09:59 . 2014-01-18 09:59 261056 ----a-w- c:\windows\system32\drivers\avchv.sys2014-01-18 09:59 . 2014-01-18 09:59 74512 ----a-w- c:\windows\system32\bdsandboxuiskin32.dll2014-01-18 09:59 . 2014-01-17 02:12 74512 ----a-w- c:\windows\SysWow64\bdsandboxuiskin32.dll2014-01-14 04:31 . 2014-01-14 04:31 627600 ----a-w- c:\windows\system32\deployJava1.dll2014-01-14 04:31 . 2014-01-14 04:31 252296 ----a-w- c:\windows\system32\javaws.exe2014-01-14 04:31 . 2014-01-14 04:31 188808 ----a-w- c:\windows\system32\javaw.exe2014-01-14 04:31 . 2014-01-14 04:31 188808 ----a-w- c:\windows\system32\java.exe2014-01-14 04:24 . 2014-01-14 04:24 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys2014-01-14 03:44 . 2014-01-14 03:44 1186161 ----a-w- c:\windows\unins000.exe2014-01-09 10:13 . 2014-01-15 01:14 3130440 ----a-w- c:\windows\SysWow64\pbsvc_blr.exe2013-12-19 05:09 . 2014-01-20 19:39 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll2013-12-18 18:01 . 2014-01-14 05:19 40760 ----a-w- c:\windows\system32\TURegOpt.exe2013-12-18 18:01 . 2014-01-14 05:19 29496 ----a-w- c:\windows\system32\authuitu.dll2013-12-18 18:01 . 2014-01-14 05:19 25400 ----a-w- c:\windows\SysWow64\authuitu.dll2013-12-18 14:13 . 2014-01-14 03:53 270496 ------w- c:\windows\system32\MpSigStub.exe2013-12-07 00:49 . 2013-12-07 00:49 51200 ----a-w- c:\windows\system32\kdbsdk64.dll2013-12-07 00:44 . 2013-12-07 00:44 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll2013-12-06 22:07 . 2013-12-06 22:07 78432 ----a-w- c:\windows\system32\atimpc64.dll2013-12-06 22:07 . 2013-12-06 22:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll2013-12-06 22:07 . 2013-12-06 22:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll2013-12-06 22:07 . 2013-12-06 22:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll2013-12-06 22:04 . 2013-12-06 22:04 143304 ----a-w- c:\windows\system32\atiuxp64.dll2013-12-06 22:03 . 2013-12-06 22:03 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll2013-12-06 22:03 . 2013-12-06 22:03 115512 ----a-w- c:\windows\system32\atiu9p64.dll2013-12-06 22:02 . 2013-12-06 22:02 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll2013-12-06 22:01 . 2013-12-06 22:01 1318552 ----a-w- c:\windows\system32\aticfx64.dll2013-12-06 22:01 . 2013-12-06 22:01 1100216 ----a-w- c:\windows\SysWow64\aticfx32.dll2013-12-06 22:00 . 2013-12-06 22:00 9753752 ----a-w- c:\windows\system32\atidxx64.dll2013-12-06 21:59 . 2013-12-06 21:59 8406024 ----a-w- c:\windows\SysWow64\atidxx32.dll2013-12-06 21:59 . 2013-12-06 21:59 8287008 ----a-w- c:\windows\SysWow64\atiumdva.dll2013-12-06 21:58 . 2013-12-06 21:58 6630232 ----a-w- c:\windows\SysWow64\atiumdag.dll2013-12-06 21:57 . 2013-12-06 21:57 8927704 ----a-w- c:\windows\system32\atiumd6a.dll2013-12-06 21:56 . 2013-12-06 21:56 7751920 ----a-w- c:\windows\system32\atiumd64.dll2013-12-06 21:52 . 2013-12-06 21:52 13207552 ----a-w- c:\windows\system32\drivers\atikmdag.sys2013-12-06 21:38 . 2013-12-06 21:38 230912 ----a-w- c:\windows\system32\clinfo.exe2013-12-06 21:38 . 2013-12-06 21:38 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe2013-12-06 21:38 . 2013-12-06 21:38 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe2013-12-06 21:38 . 2013-12-06 21:38 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe2013-12-06 21:38 . 2013-12-06 21:38 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe2013-12-06 21:38 . 2013-12-06 21:38 99840 ----a-w- c:\windows\system32\OpenVideo64.dll2013-12-06 21:38 . 2013-12-06 21:38 83968 ----a-w- c:\windows\SysWow64\OpenVideo.dll2013-12-06 21:38 . 2013-12-06 21:38 86528 ----a-w- c:\windows\system32\OVDecode64.dll2013-12-06 21:38 . 2013-12-06 21:38 73728 ----a-w- c:\windows\SysWow64\OVDecode.dll2013-12-06 21:37 . 2013-12-06 21:37 29382144 ----a-w- c:\windows\system32\amdocl64.dll2013-12-06 21:35 . 2013-12-06 21:35 24860160 ----a-w- c:\windows\SysWow64\amdocl.dll2013-12-06 21:33 . 2013-12-06 21:33 63488 ----a-w- c:\windows\system32\OpenCL.dll2013-12-06 21:33 . 2013-12-06 21:33 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll2013-12-06 21:26 . 2013-12-06 21:26 129536 ----a-w- c:\windows\system32\coinst_13.251.dll2013-12-06 21:16 . 2013-12-06 21:16 26352128 ----a-w- c:\windows\system32\atio6axx.dll2013-12-06 21:13 . 2013-12-06 21:13 368640 ----a-w- c:\windows\system32\atiapfxx.exe2013-12-06 21:12 . 2013-12-06 21:12 62464 ----a-w- c:\windows\system32\aticalrt64.dll2013-12-06 21:12 . 2013-12-06 21:12 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll2013-12-06 21:12 . 2013-12-06 21:12 55808 ----a-w- c:\windows\system32\aticalcl64.dll2013-12-06 21:12 . 2013-12-06 21:12 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll2013-12-06 21:12 . 2013-12-06 21:12 15716352 ----a-w- c:\windows\system32\aticaldd64.dll2013-12-06 21:09 . 2013-12-06 21:09 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll2013-12-06 20:58 . 2013-12-06 20:58 22157824 ----a-w- c:\windows\SysWow64\atioglxx.dll2013-12-06 20:53 . 2013-12-06 20:53 442368 ----a-w- c:\windows\system32\atidemgy.dll2013-12-06 20:53 . 2013-12-06 20:53 31232 ----a-w- c:\windows\system32\atimuixx.dll2013-12-06 20:53 . 2013-12-06 20:53 588288 ----a-w- c:\windows\system32\atieclxx.exe2013-12-06 20:52 . 2013-12-06 20:52 239616 ----a-w- c:\windows\system32\atiesrxx.exe2013-12-06 20:50 . 2013-12-06 20:50 190976 ----a-w- c:\windows\system32\atitmm64.dll2013-12-06 20:22 . 2013-12-06 20:22 1144320 ----a-w- c:\windows\system32\atiadlxx.dll2013-12-06 20:22 . 2013-12-06 20:22 825344 ----a-w- c:\windows\SysWow64\atiadlxy.dll2013-12-06 20:22 . 2013-12-06 20:22 74752 ----a-w- c:\windows\system32\atig6pxx.dll2013-12-06 20:22 . 2013-12-06 20:22 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll2013-12-06 20:22 . 2013-12-06 20:22 69632 ----a-w- c:\windows\system32\atiglpxx.dll2013-12-06 20:22 . 2013-12-06 20:22 100352 ----a-w- c:\windows\system32\atig6txx.dll2013-12-06 20:21 . 2013-12-06 20:21 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll2013-12-06 20:21 . 2013-12-06 20:21 626176 ----a-w- c:\windows\system32\drivers\atikmpag.sys2013-12-06 20:18 . 2013-12-06 20:18 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll2013-11-28 00:24 . 2013-12-15 09:43 175480 ----a-w- c:\windows\system32\drivers\idmwfp.sys..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{F72C8153-7140-4FEE-8F69-CA4579D71195}]2013-04-01 02:22 73728 ----a-w- c:\program files (x86)\Tongbu\Addin\tbIEAddin.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]2013-09-13 14:05 1724616 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]2013-09-13 14:05 1724616 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]2013-09-13 14:05 1724616 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2013-12-16 3821136]"Spotify Web Helper"="c:\users\Lam\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2014-01-14 1171968]"Spotify"="c:\users\Lam\AppData\Roaming\Spotify\spotify.exe" [2014-01-14 6118400]"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-10-02 20472992]"puush"="c:\program files (x86)\puush\puush.exe" [2014-01-25 567880]"HP Deskjet 3510 series (NET)"="c:\program files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" [2014-02-10 614232]"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-02-10 567888]"Akamai NetSession Interface"="c:\users\Lam\AppData\Local\Akamai\netsession_win.exe" [2013-06-05 4489472]"KakaoTalk"="c:\program files (x86)\Kakao\KakaoTalk\KakaoTalk.exe" [2014-02-18 5029064].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"Tt eSPORTS THERON Gaming Mouse"="c:\program files (x86)\Tt eSPORTS\Tt eSPORTS THERON\THERON.exe" [2013-08-02 21323080]"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-12-07 766208]"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2012-08-09 5263504]"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-14 59720]"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-10 1073312].[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-02-10 567888]"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2014-02-10 1001536]"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" [2014-02-10 614232].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 5 (0x5)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0)"PromptOnSecureDesktop"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]"aux2"=wdmaud.drv.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]"HP Software Update"=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe""iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe""Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe""Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe".R1 EIO64;EIO Driver;c:\windows\system32\DRIVERS\EIO64.sys;c:\windows\SYSNATIVE\DRIVERS\EIO64.sys [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys;c:\windows\SYSNATIVE\DRIVERS\avckf.sys [x]R3 BDSandBox;BDSandBox;c:\windows\system32\drivers\bdsandbox.sys;c:\windows\SYSNATIVE\drivers\bdsandbox.sys [x]R3 cpuz136;cpuz136;c:\program files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys;c:\program files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys [x]R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]R3 etdrv;etdrv;c:\windows\etdrv.sys;c:\windows\etdrv.sys [x]R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]R3 hxsyol;hxsyol;d:\games\AeriaGames\AuraKingdom\avital\hxsy64.sys;d:\games\AeriaGames\AuraKingdom\avital\hxsy64.sys [x]R3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]R3 X6va015;X6va015;c:\windows\SysWOW64\Drivers\X6va015;c:\windows\SysWOW64\Drivers\X6va015 [x]S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys;c:\windows\SYSNATIVE\DRIVERS\avc3.sys [x]S0 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys;c:\windows\SYSNATIVE\DRIVERS\gzflt.sys [x]S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [x]S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]S1 VirtDiskBus;3TB+ Unlock;c:\windows\system32\DRIVERS\VirtDiskBus64.sys;c:\windows\SYSNATIVE\DRIVERS\VirtDiskBus64.sys [x]S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]S2 AODDriver4.2.0;AODDriver4.2.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [x]S2 UPDATESRV;Bitdefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender\updatesrv.exe;c:\program files\Bitdefender\Bitdefender\updatesrv.exe [x]S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe;c:\windows\SYSNATIVE\viakaraokesrv.exe [x]S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]S3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]S3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]S3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x]S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]S3 Thermnaltake MS6 Filter;Thermnaltake MS6 Filter;c:\windows\system32\Drivers\MS6Filter.sys;c:\windows\SYSNATIVE\Drivers\MS6Filter.sys [x]S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [x]S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]S3 VUSB3HUB;VIA USB 3 Root Hub Service;c:\windows\system32\DRIVERS\ViaHub3.sys;c:\windows\SYSNATIVE\DRIVERS\ViaHub3.sys [x]S3 xhcdrv;VIA USB eXtensible Host Controller Service;c:\windows\system32\DRIVERS\xhcdrv.sys;c:\windows\SYSNATIVE\DRIVERS\xhcdrv.sys [x]..--- Other Services/Drivers In Memory ---.*NewlyCreated* - WS2IFSL.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]2014-02-04 23:38 1211720 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe.Contents of the 'Scheduled Tasks' folder.2014-02-20 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-10 07:34].2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-15 03:38].2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-15 03:38]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]2013-09-13 14:02 2328264 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]2013-09-13 14:02 2328264 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]2013-09-13 14:02 2328264 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]2012-11-15 23:07 23496 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2013-11-14 8292120]"Bdagent"="c:\program files\Bitdefender\Bitdefender\bdagent.exe" [2014-02-04 1737920]"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmuStart Page = about:blankmStart Page = about:blankmLocal Page = c:\windows\SysWOW64\blank.htmuInternet Settings,ProxyOverride = *.local;<local>IE: Download all links with IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htmIE: Download with IDM - c:\program files (x86)\Internet Download Manager\IEExt.htmIE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105TCP: DhcpNameServer = 192.168.1.254Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL.- - - - ORPHANS REMOVED - - - -.Wow6432Node-HKLM-Run-<NO NAME> - (no file)...[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va015]"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va015".--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).Completion time: 2014-02-19 20:16:42ComboFix-quarantined-files.txt 2014-02-20 04:16ComboFix2.txt 2014-02-20 03:28.Pre-Run: 172,162,297,856 bytes freePost-Run: 171,859,959,808 bytes free.- - End Of File - - 3A5D310BEFF720162BE9D2D4C810382BA36C5E4F47E84449FF07ED3517B43A31

ComboFix.txt: ComboFix 14-02-19.01 - Lam 02/19/2014 19:15:24.1.6 - x64Microsoft Windows 7 Professional 6.1.7600.0.1252.1.1033.18.4078.2178 [GMT -8:00]Running from: c:\users\Lam\Desktop\ComboFix.exeAV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\programdata\1389924483.bdinstall.binc:\users\Lam\AppData\Roaming\Localc:\users\Lam\AppData\Roaming\Local\FalloutNV\Fallout.inic:\users\Lam\AppData\Roaming\Local\FalloutNV\FalloutPrefs.inic:\users\Lam\AppData\Roaming\Local\FalloutNV\NVDLCList.txtc:\users\Lam\AppData\Roaming\Local\FalloutNV\plugins.txtc:\users\Lam\AppData\Roaming\Local\FalloutNV\RendererInfo.txtc:\windows\SysWow64\frapsvid.dll..((((((((((((((((((((((((( Files Created from 2014-01-20 to 2014-02-20 )))))))))))))))))))))))))))))))..2014-02-20 03:22 . 2014-02-20 03:22 -------- d-----w- c:\users\Default\AppData\Local\temp2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\users\Lam\AppData\Roaming\Malwarebytes2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\programdata\Malwarebytes2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware2014-02-20 00:37 . 2013-04-04 22:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys2014-02-20 00:37 . 2014-02-20 00:37 -------- d-----w- c:\users\Lam\AppData\Local\Programs2014-02-18 20:34 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5E9A73D0-F9B7-4C3E-8E44-2692825FE29D}\mpengine.dll2014-02-18 09:11 . 2014-02-18 09:11 -------- d-----w- c:\users\Lam\AppData\Local\Kakao2014-02-18 09:11 . 2014-02-18 09:11 -------- d-----w- c:\program files (x86)\Kakao2014-02-17 23:58 . 2014-02-17 23:58 -------- d-----w- c:\users\Lam\AppData\Local\Diagnostics2014-02-11 01:55 . 2014-02-11 01:55 -------- d-----w- C:\MATS2014-02-11 01:54 . 2014-02-17 23:58 -------- d-----w- c:\users\Lam\AppData\Local\ElevatedDiagnostics2014-02-10 07:34 . 2014-02-10 07:34 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2014-02-10 07:34 . 2014-02-10 07:34 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2014-02-10 07:34 . 2014-02-10 07:34 -------- d-----w- c:\windows\system32\Macromed2014-02-10 02:24 . 2014-02-10 02:24 -------- d-----w- C:\Nexon2014-02-07 08:25 . 2014-02-17 20:22 -------- d-----w- c:\users\Lam\AppData\Roaming\TeamViewer2014-02-06 02:53 . 2014-02-06 02:53 -------- d-----w- c:\programdata\Elder Scrolls Online2014-02-02 23:12 . 2014-02-02 23:12 -------- d-----w- C:\.jagex_cache_322014-02-02 22:18 . 2014-02-02 22:18 -------- d-----w- C:\Down2014-02-02 22:18 . 2014-02-02 22:18 -------- d-----w- C:\Perfect World Entertainment2014-02-02 22:17 . 2014-02-02 22:17 -------- d-----w- C:\Windyzone2014-01-31 02:45 . 2014-02-15 23:27 -------- d-----w- c:\users\Lam\AppData\Roaming\.minecraft2014-01-28 04:37 . 2014-01-28 04:37 -------- d-----w- c:\programdata\Nexon2014-01-28 01:18 . 2014-02-06 01:56 -------- d-----w- c:\users\Lam\AppData\Local\Warframe2014-01-28 00:37 . 2014-01-28 00:37 -------- d-----w- c:\windows\Hewlett-Packard2014-01-27 02:18 . 2014-01-27 02:18 -------- d-----w- c:\users\Lam\AppData\Roaming\LibrariIcon2014-01-27 00:43 . 2014-01-27 00:43 -------- d-----w- c:\programdata\YTD Video Downloader2014-01-27 00:42 . 2014-01-27 00:42 -------- d-----w- c:\program files (x86)\GreenTree Applications2014-01-26 23:11 . 2014-02-02 23:02 -------- d-----w- c:\users\Lam\jagexcache2014-01-25 22:43 . 2014-01-25 22:43 -------- d-----w- c:\users\Lam\AppData\Roaming\puush2014-01-25 22:43 . 2014-01-25 22:44 -------- d-----w- c:\program files (x86)\puush2014-01-23 01:44 . 2014-01-23 01:44 -------- d-----w- c:\users\Lam\AppData\Local\EdgeOfReality2014-01-22 23:53 . 2014-01-22 23:53 -------- d-----w- c:\users\Lam\AppData\Local\ESN2014-01-22 23:53 . 2014-01-22 23:53 -------- d-----w- c:\program files (x86)\Battlelog Web Plugins2014-01-22 23:25 . 2014-01-22 23:25 25640 ----a-w- c:\windows\gdrv.sys2014-01-22 13:50 . 2014-01-22 13:50 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller2014-01-21 04:30 . 2014-01-21 04:30 -------- d-----w- c:\users\Lam\AppData\Local\Apple...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2014-02-16 04:26 . 2014-01-14 09:03 88567024 ----a-w- c:\windows\system32\MRT.exe2014-02-07 01:19 . 2014-01-15 01:52 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr2014-02-07 01:19 . 2014-01-15 01:14 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.exe2014-02-07 01:16 . 2014-01-15 01:14 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe2014-02-07 01:16 . 2014-01-15 01:14 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.ex02014-02-04 01:24 . 2014-01-17 02:12 893440 ----a-w- c:\windows\system32\drivers\avc3.sys2014-02-04 01:24 . 2014-01-17 02:12 635392 ----a-w- c:\windows\system32\drivers\avckf.sys2014-01-23 00:31 . 2014-01-14 04:30 25640 ----a-w- c:\windows\etdrv.sys2014-01-22 23:25 . 2014-01-14 04:02 30528 ----a-w- c:\windows\GVTDrv64.sys2014-01-18 09:59 . 2014-01-18 09:59 76944 ----a-w- c:\windows\system32\drivers\bdvedisk.sys2014-01-18 09:59 . 2014-01-18 09:59 261056 ----a-w- c:\windows\system32\drivers\avchv.sys2014-01-18 09:59 . 2014-01-18 09:59 74512 ----a-w- c:\windows\system32\bdsandboxuiskin32.dll2014-01-18 09:59 . 2014-01-17 02:12 74512 ----a-w- c:\windows\SysWow64\bdsandboxuiskin32.dll2014-01-14 04:31 . 2014-01-14 04:31 627600 ----a-w- c:\windows\system32\deployJava1.dll2014-01-14 04:31 . 2014-01-14 04:31 252296 ----a-w- c:\windows\system32\javaws.exe2014-01-14 04:31 . 2014-01-14 04:31 188808 ----a-w- c:\windows\system32\javaw.exe2014-01-14 04:31 . 2014-01-14 04:31 188808 ----a-w- c:\windows\system32\java.exe2014-01-14 04:24 . 2014-01-14 04:24 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys2014-01-14 03:44 . 2014-01-14 03:44 1186161 ----a-w- c:\windows\unins000.exe2014-01-09 10:13 . 2014-01-15 01:14 3130440 ----a-w- c:\windows\SysWow64\pbsvc_blr.exe2013-12-19 05:09 . 2014-01-20 19:39 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll2013-12-18 18:01 . 2014-01-14 05:19 40760 ----a-w- c:\windows\system32\TURegOpt.exe2013-12-18 18:01 . 2014-01-14 05:19 29496 ----a-w- c:\windows\system32\authuitu.dll2013-12-18 18:01 . 2014-01-14 05:19 25400 ----a-w- c:\windows\SysWow64\authuitu.dll2013-12-18 14:13 . 2014-01-14 03:53 270496 ------w- c:\windows\system32\MpSigStub.exe2013-12-07 00:49 . 2013-12-07 00:49 51200 ----a-w- c:\windows\system32\kdbsdk64.dll2013-12-07 00:44 . 2013-12-07 00:44 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll2013-12-06 22:07 . 2013-12-06 22:07 78432 ----a-w- c:\windows\system32\atimpc64.dll2013-12-06 22:07 . 2013-12-06 22:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll2013-12-06 22:07 . 2013-12-06 22:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll2013-12-06 22:07 . 2013-12-06 22:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll2013-12-06 22:04 . 2013-12-06 22:04 143304 ----a-w- c:\windows\system32\atiuxp64.dll2013-12-06 22:03 . 2013-12-06 22:03 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll2013-12-06 22:03 . 2013-12-06 22:03 115512 ----a-w- c:\windows\system32\atiu9p64.dll2013-12-06 22:02 . 2013-12-06 22:02 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll2013-12-06 22:01 . 2013-12-06 22:01 1318552 ----a-w- c:\windows\system32\aticfx64.dll2013-12-06 22:01 . 2013-12-06 22:01 1100216 ----a-w- c:\windows\SysWow64\aticfx32.dll2013-12-06 22:00 . 2013-12-06 22:00 9753752 ----a-w- c:\windows\system32\atidxx64.dll2013-12-06 21:59 . 2013-12-06 21:59 8406024 ----a-w- c:\windows\SysWow64\atidxx32.dll2013-12-06 21:59 . 2013-12-06 21:59 8287008 ----a-w- c:\windows\SysWow64\atiumdva.dll2013-12-06 21:58 . 2013-12-06 21:58 6630232 ----a-w- c:\windows\SysWow64\atiumdag.dll2013-12-06 21:57 . 2013-12-06 21:57 8927704 ----a-w- c:\windows\system32\atiumd6a.dll2013-12-06 21:56 . 2013-12-06 21:56 7751920 ----a-w- c:\windows\system32\atiumd64.dll2013-12-06 21:52 . 2013-12-06 21:52 13207552 ----a-w- c:\windows\system32\drivers\atikmdag.sys2013-12-06 21:38 . 2013-12-06 21:38 230912 ----a-w- c:\windows\system32\clinfo.exe2013-12-06 21:38 . 2013-12-06 21:38 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe2013-12-06 21:38 . 2013-12-06 21:38 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe2013-12-06 21:38 . 2013-12-06 21:38 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe2013-12-06 21:38 . 2013-12-06 21:38 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe2013-12-06 21:38 . 2013-12-06 21:38 99840 ----a-w- c:\windows\system32\OpenVideo64.dll2013-12-06 21:38 . 2013-12-06 21:38 83968 ----a-w- c:\windows\SysWow64\OpenVideo.dll2013-12-06 21:38 . 2013-12-06 21:38 86528 ----a-w- c:\windows\system32\OVDecode64.dll2013-12-06 21:38 . 2013-12-06 21:38 73728 ----a-w- c:\windows\SysWow64\OVDecode.dll2013-12-06 21:37 . 2013-12-06 21:37 29382144 ----a-w- c:\windows\system32\amdocl64.dll2013-12-06 21:35 . 2013-12-06 21:35 24860160 ----a-w- c:\windows\SysWow64\amdocl.dll2013-12-06 21:33 . 2013-12-06 21:33 63488 ----a-w- c:\windows\system32\OpenCL.dll2013-12-06 21:33 . 2013-12-06 21:33 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll2013-12-06 21:26 . 2013-12-06 21:26 129536 ----a-w- c:\windows\system32\coinst_13.251.dll2013-12-06 21:16 . 2013-12-06 21:16 26352128 ----a-w- c:\windows\system32\atio6axx.dll2013-12-06 21:13 . 2013-12-06 21:13 368640 ----a-w- c:\windows\system32\atiapfxx.exe2013-12-06 21:12 . 2013-12-06 21:12 62464 ----a-w- c:\windows\system32\aticalrt64.dll2013-12-06 21:12 . 2013-12-06 21:12 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll2013-12-06 21:12 . 2013-12-06 21:12 55808 ----a-w- c:\windows\system32\aticalcl64.dll2013-12-06 21:12 . 2013-12-06 21:12 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll2013-12-06 21:12 . 2013-12-06 21:12 15716352 ----a-w- c:\windows\system32\aticaldd64.dll2013-12-06 21:09 . 2013-12-06 21:09 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll2013-12-06 20:58 . 2013-12-06 20:58 22157824 ----a-w- c:\windows\SysWow64\atioglxx.dll2013-12-06 20:53 . 2013-12-06 20:53 442368 ----a-w- c:\windows\system32\atidemgy.dll2013-12-06 20:53 . 2013-12-06 20:53 31232 ----a-w- c:\windows\system32\atimuixx.dll2013-12-06 20:53 . 2013-12-06 20:53 588288 ----a-w- c:\windows\system32\atieclxx.exe2013-12-06 20:52 . 2013-12-06 20:52 239616 ----a-w- c:\windows\system32\atiesrxx.exe2013-12-06 20:50 . 2013-12-06 20:50 190976 ----a-w- c:\windows\system32\atitmm64.dll2013-12-06 20:22 . 2013-12-06 20:22 1144320 ----a-w- c:\windows\system32\atiadlxx.dll2013-12-06 20:22 . 2013-12-06 20:22 825344 ----a-w- c:\windows\SysWow64\atiadlxy.dll2013-12-06 20:22 . 2013-12-06 20:22 74752 ----a-w- c:\windows\system32\atig6pxx.dll2013-12-06 20:22 . 2013-12-06 20:22 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll2013-12-06 20:22 . 2013-12-06 20:22 69632 ----a-w- c:\windows\system32\atiglpxx.dll2013-12-06 20:22 . 2013-12-06 20:22 100352 ----a-w- c:\windows\system32\atig6txx.dll2013-12-06 20:21 . 2013-12-06 20:21 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll2013-12-06 20:21 . 2013-12-06 20:21 626176 ----a-w- c:\windows\system32\drivers\atikmpag.sys2013-12-06 20:18 . 2013-12-06 20:18 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll2013-11-28 00:24 . 2013-12-15 09:43 175480 ----a-w- c:\windows\system32\drivers\idmwfp.sys..------- Sigcheck -------Note: Unsigned files aren't necessarily malware..[7] 2009-07-14 . 7266972E86890E2B30C0C322E906B027 . 509440 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.1.7600.16385_none_c5bfcda3579104e3\rpcss.dll[-] 2009-07-14 . 6A5081F758F8D585401F76EC2BC0025A . 509952 . . [6.1.7600.16385] .. c:\windows\system32\rpcss.dll.((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{F72C8153-7140-4FEE-8F69-CA4579D71195}]2013-04-01 02:22 73728 ----a-w- c:\program files (x86)\Tongbu\Addin\tbIEAddin.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]2013-09-13 14:05 1724616 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]2013-09-13 14:05 1724616 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]2013-09-13 14:05 1724616 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2013-12-16 3821136]"Spotify Web Helper"="c:\users\Lam\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2014-01-14 1171968]"Spotify"="c:\users\Lam\AppData\Roaming\Spotify\spotify.exe" [2014-01-14 6118400]"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-10-02 20472992]"puush"="c:\program files (x86)\puush\puush.exe" [2014-01-25 567880]"HP Deskjet 3510 series (NET)"="c:\program files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" [2014-02-10 614232]"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-02-10 567888]"Akamai NetSession Interface"="c:\users\Lam\AppData\Local\Akamai\netsession_win.exe" [2013-06-05 4489472]"KakaoTalk"="c:\program files (x86)\Kakao\KakaoTalk\KakaoTalk.exe" [2014-02-18 5029064].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"Tt eSPORTS THERON Gaming Mouse"="c:\program files (x86)\Tt eSPORTS\Tt eSPORTS THERON\THERON.exe" [2013-08-02 21323080]"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-12-07 766208]"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2012-08-09 5263504]"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-14 59720]"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-10 1073312].[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-02-10 567888]"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2014-02-10 1001536]"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" [2014-02-10 614232].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 5 (0x5)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0)"PromptOnSecureDesktop"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]"aux2"=wdmaud.drv.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]"HP Software Update"=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe""iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe""Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe""Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe".R1 EIO64;EIO Driver;c:\windows\system32\DRIVERS\EIO64.sys;c:\windows\SYSNATIVE\DRIVERS\EIO64.sys [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys;c:\windows\SYSNATIVE\DRIVERS\avckf.sys [x]R3 BDSandBox;BDSandBox;c:\windows\system32\drivers\bdsandbox.sys;c:\windows\SYSNATIVE\drivers\bdsandbox.sys [x]R3 cpuz136;cpuz136;c:\program files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys;c:\program files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys [x]R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]R3 etdrv;etdrv;c:\windows\etdrv.sys;c:\windows\etdrv.sys [x]R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]R3 hxsyol;hxsyol;d:\games\AeriaGames\AuraKingdom\avital\hxsy64.sys;d:\games\AeriaGames\AuraKingdom\avital\hxsy64.sys [x]R3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]R3 X6va015;X6va015;c:\windows\SysWOW64\Drivers\X6va015;c:\windows\SysWOW64\Drivers\X6va015 [x]S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys;c:\windows\SYSNATIVE\DRIVERS\avc3.sys [x]S0 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys;c:\windows\SYSNATIVE\DRIVERS\gzflt.sys [x]S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [x]S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]S1 VirtDiskBus;3TB+ Unlock;c:\windows\system32\DRIVERS\VirtDiskBus64.sys;c:\windows\SYSNATIVE\DRIVERS\VirtDiskBus64.sys [x]S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]S2 AODDriver4.2.0;AODDriver4.2.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [x]S2 UPDATESRV;Bitdefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender\updatesrv.exe;c:\program files\Bitdefender\Bitdefender\updatesrv.exe [x]S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe;c:\windows\SYSNATIVE\viakaraokesrv.exe [x]S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]S3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]S3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]S3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x]S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]S3 Thermnaltake MS6 Filter;Thermnaltake MS6 Filter;c:\windows\system32\Drivers\MS6Filter.sys;c:\windows\SYSNATIVE\Drivers\MS6Filter.sys [x]S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [x]S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]S3 VUSB3HUB;VIA USB 3 Root Hub Service;c:\windows\system32\DRIVERS\ViaHub3.sys;c:\windows\SYSNATIVE\DRIVERS\ViaHub3.sys [x]S3 xhcdrv;VIA USB eXtensible Host Controller Service;c:\windows\system32\DRIVERS\xhcdrv.sys;c:\windows\SYSNATIVE\DRIVERS\xhcdrv.sys [x]..--- Other Services/Drivers In Memory ---.*NewlyCreated* - WS2IFSL.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]2014-02-04 23:38 1211720 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe.Contents of the 'Scheduled Tasks' folder.2014-02-20 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-10 07:34].2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-15 03:38].2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-15 03:38]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]2013-09-13 14:02 2328264 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]2013-09-13 14:02 2328264 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]2013-09-13 14:02 2328264 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]2012-11-15 23:07 23496 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2013-11-14 8292120]"Bdagent"="c:\program files\Bitdefender\Bitdefender\bdagent.exe" [2014-02-04 1737920]"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmuStart Page = about:blankmStart Page = about:blankmLocal Page = c:\windows\SysWOW64\blank.htmuInternet Settings,ProxyOverride = *.local;<local>IE: Download all links with IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htmIE: Download with IDM - c:\program files (x86)\Internet Download Manager\IEExt.htmIE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105TCP: DhcpNameServer = 192.168.1.254Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL.- - - - ORPHANS REMOVED - - - -.Wow6432Node-HKLM-Run-<NO NAME> - (no file)AddRemove-Akamai - c:\users\Lam\AppData\Local\Akamai\uninstall.exe...[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va015]"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va015".--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).------------------------ Other Running Processes ------------------------.c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exec:\program files (x86)\MSI Afterburner\MSIAfterburner.exec:\windows\SysWOW64\PnkBstrA.exec:\program files (x86)\Internet Download Manager\IEMonitor.exe.**************************************************************************.Completion time: 2014-02-19 19:28:45 - machine was rebootedComboFix-quarantined-files.txt 2014-02-20 03:28.Pre-Run: 169,869,467,648 bytes freePost-Run: 172,101,984,256 bytes free.- - End Of File - - 6E60A668331DF9691882B5DD3FBE23CBA36C5E4F47E84449FF07ED3517B43A31

RKreport[0]_S_02192014_183308.txt: RogueKiller V8.8.8 _x64_ [Feb 19 2014] by Tigzymail : tigzyRK<at>gmail<dot>comFeedback : http://forum.adlice.comWebsite : http://www.adlice.com/softwares/roguekiller/Blog : http://www.adlice.com Operating System : Windows 7 (6.1.7600 ) 64 bits versionStarted in : Normal modeUser : Lam [Admin rights]Mode : Scan -- Date : 02/19/2014 18:33:08| ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 5 ¤¤¤[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Scheduled tasks : 0 ¤¤¤ ¤¤¤ Startup Entries : 0 ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ Browser Addons : 0 ¤¤¤ ¤¤¤ Particular Files / Folders: ¤¤¤[Root.Zekos][File] rpcss.dll : C:\Windows\System32\rpcss.dll [-] --> FOUND ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤ ¤¤¤ External Hives: ¤¤¤ ¤¤¤ Infection : Root.Zekos ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤--> %SystemRoot%\System32\drivers\etc\hosts ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD3200AAKS-75L9A0 ATA Device +++++--- User ---[MBR] 4a4c7391dbcb327508f0823f87e4fb24[bSP] 65392c6b522ee3015665563a17e69a8f : Windows 7/8 MBR CodePartition table:0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 47 Mo1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 98304 | Size: 13118 Mo2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 26963968 | Size: 292078 MoUser = LL1 ... OK!User = LL2 ... OK! +++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) ST2000DM001-1CH164 ATA Device +++++--- User ---[MBR] fd564ffc3ba95d52e29a26660c907aeb[bSP] f0130ab919a9e7af1ea340151bd11d6f : Windows 7/8 MBR CodePartition table:0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MoUser = LL1 ... OK!User = LL2 ... OK! +++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Generic- SD/MMC USB Device +++++Error reading User MBR! ([0x15] The device is not ready. )User = LL1 ... OK!Error reading LL2 MBR! ([0x32] The request is not supported. ) +++++ PhysicalDrive3: (\\.\PHYSICALDRIVE3 @ USB) Generic- Compact Flash USB Device +++++Error reading User MBR! ([0x15] The device is not ready. )User = LL1 ... OK!Error reading LL2 MBR! ([0x32] The request is not supported. ) +++++ PhysicalDrive4: (\\.\PHYSICALDRIVE4 @ USB) Generic- SM/xD Picture USB Device +++++Error reading User MBR! ([0x15] The device is not ready. )User = LL1 ... OK!Error reading LL2 MBR! ([0x32] The request is not supported. ) Finished : << RKreport[0]_S_02192014_183308.txt >>

Hello, my computer is currently experiencing problems after running about 1-5 hours it randomly restarts with a popup window saying DCOM or Plug & Play has been terminated and windows will now restart. Also Malwarebytes didn't detect anything when I finished scanning. Here's my DDS logs: dds.txt: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 8.0.7600.17267 BrowserJavaVersion: 10.51.2Run by Lam at 16:49:35 on 2014-02-19Microsoft Windows 7 Professional 6.1.7600.0.1252.1.1033.18.4078.1455 [GMT -8:00].AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Program Files\Bitdefender\Bitdefender\vsserv.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\system32\atieclxx.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Windows\system32\Dwm.exeC:\Windows\system32\taskhost.exeC:\Windows\Explorer.EXEC:\Windows\system32\taskeng.exeC:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exeC:\Windows\system32\CISVC.EXEC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\SysWOW64\PnkBstrA.exeC:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exeC:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exeC:\Program Files\Bitdefender\Bitdefender\updatesrv.exeC:\Windows\system32\viakaraokesrv.exeC:\Windows\system32\SearchIndexer.exeC:\Program Files\Logitech Gaming Software\LCore.exeC:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exeC:\Program Files\Bitdefender\Bitdefender\bdagent.exeC:\Program Files (x86)\Internet Download Manager\IDMan.exeC:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exeC:\Users\Lam\AppData\Roaming\Spotify\spotify.exeC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\puush\puush.exeC:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exeC:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exeC:\Program Files\Bitdefender\Bitdefender\pmbxag.exeC:\Users\Lam\AppData\Local\Akamai\netsession_win.exeC:\Program Files (x86)\Kakao\KakaoTalk\KakaoTalk.exeC:\Program Files (x86)\Tt eSPORTS\Tt eSPORTS THERON\Theron.exeC:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeC:\Program Files (x86)\Internet Download Manager\IEMonitor.exeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\Users\Lam\AppData\Local\Akamai\netsession_win.exeC:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exeC:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyHelper.exeC:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyHelper.exeC:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyHelper.exeC:\Program Files (x86)\Google\Update\GoogleUpdate.exeC:\Windows\System32\svchost.exe -k secsvcsC:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyHelper.exeD:\Games\Steam\Steam.exeC:\Program Files (x86)\Common Files\Steam\SteamService.exeC:\Windows\system32\taskhost.exeC:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyHelper.exeC:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyHelper.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files\Bitdefender\Bitdefender\seccenter.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = about:blankmStart Page = about:blankmWinlogon: Userinit = userinit.exeBHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dllBHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllBHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dllBHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLLBHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLLBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllBHO: ͬ²½Ò»¼ü°²×°Ö§³Ö: {F72C8153-7140-4FEE-8F69-CA4579D71195} - C:\Program Files (x86)\Tongbu\Addin\tbIEAddin.dlluRun: [iDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onbootuRun: [spotify Web Helper] "C:\Users\Lam\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"uRun: [spotify] "C:\Users\Lam\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostartuRun: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrunuRun: [puush] C:\Program Files (x86)\puush\puush.exeuRun: [HP Deskjet 3510 series (NET)] "C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN37B1NHRG05Y7:NW" -scfn "HP Deskjet 3510 series (NET)" -AutoStart 1uRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"uRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"uRun: [Akamai NetSession Interface] "C:\Users\Lam\AppData\Local\Akamai\netsession_win.exe"uRun: [KakaoTalk] "C:\Program Files (x86)\Kakao\KakaoTalk\KakaoTalk.exe" -bystartupmRun: [Tt eSPORTS THERON Gaming Mouse] "C:\Program Files (x86)\Tt eSPORTS\Tt eSPORTS THERON\THERON.exe" /Automation mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exemRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRunmRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -rmRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbyloginmRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silentdRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"dRun: [bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizarddRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"mPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htmIE: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htmIE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dllIE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dllTCP: NameServer = 192.168.1.254TCP: Interfaces\{33CE3A95-C698-4619-A291-A85FBCA35BC2} : DHCPNameServer = 192.168.1.254Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLLHandler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLLHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-mStart Page = about:blankx64-BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dllx64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dllx64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLLx64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLLx64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\Program Files\Java\jre7\bin\jp2ssv.dllx64-Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimizedx64-Run: [bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dllx64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dllx64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLLx64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLLx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>x64-SSODL: WebCheck - <orphaned>.============= SERVICES / DRIVERS ===============.R0 avc3;avc3;C:\Windows\System32\drivers\avc3.sys [2014-1-16 893440]R0 gzflt;gzflt;C:\Windows\System32\drivers\gzflt.sys [2014-1-16 150256]R1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2014-1-13 22680]R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2014-1-16 103504]R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2014-1-13 283064]R1 VirtDiskBus;3TB+ Unlock;C:\Windows\System32\drivers\VirtDiskBus64.sys [2014-1-13 66160]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-12-6 239616]R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-6 344064]R2 AODDriver4.2.0;AODDriver4.2.0;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2013-9-19 59648]R2 IDMWFP;IDMWFP;C:\Windows\System32\drivers\idmwfp.sys [2013-12-15 175480]R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-2-19 418376]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-2-19 701512]R2 TeamViewer9;TeamViewer 9;C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-1-13 4915040]R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2013-12-18 2103096]R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2014-1-16 67320]R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2014-1-13 27792]R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-9-24 94208]R3 LADF_CaptureOnly;LADF Capture Filter Driver;C:\Windows\System32\drivers\ladfGSCamd64.sys [2013-4-15 410008]R3 LADF_RenderOnly;LADF Render Filter Driver;C:\Windows\System32\drivers\ladfGSRamd64.sys [2013-4-15 102808]R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408]R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008]R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-2-19 25928]R3 RTCore64;RTCore64;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2013-1-22 13368]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-1-13 565352]R3 Thermnaltake MS6 Filter;Thermnaltake MS6 Filter;C:\Windows\System32\drivers\MS6Filter.sys [2014-1-13 57200]R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [2013-12-16 14112]R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2014-1-13 2206352]R3 VUSB3HUB;VIA USB 3 Root Hub Service;C:\Windows\System32\drivers\ViaHub3.sys [2014-1-13 231112]R3 xhcdrv;VIA USB eXtensible Host Controller Service;C:\Windows\System32\drivers\xhcdrv.sys [2014-1-13 301256]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]S3 avckf;avckf;C:\Windows\System32\drivers\avckf.sys [2014-1-16 635392]S3 BDSandBox;BDSandBox;C:\Windows\System32\drivers\bdsandbox.sys [2014-1-16 82824]S3 cpuz136;cpuz136;C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys [2014-1-13 25320]S3 etdrv;etdrv;C:\Windows\etdrv.sys [2014-1-13 25640]S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2014-1-13 30528]S3 hxsyol;hxsyol;D:\Games\AeriaGames\AuraKingdom\avital\hxsy64.sys [2014-1-2 86352]S3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [2014-1-13 160256]S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-1 178824]S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096].=============== Created Last 30 ================.2014-02-20 00:37:47 -------- d-----w- C:\Users\Lam\AppData\Roaming\Malwarebytes2014-02-20 00:37:36 -------- d-----w- C:\ProgramData\Malwarebytes2014-02-20 00:37:34 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys2014-02-20 00:37:34 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware2014-02-20 00:37:27 -------- d-----w- C:\Users\Lam\AppData\Local\Programs2014-02-19 02:26:35 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E9A73D0-F9B7-4C3E-8E44-2692825FE29D}\offreg.dll2014-02-18 20:34:02 10536864 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E9A73D0-F9B7-4C3E-8E44-2692825FE29D}\mpengine.dll2014-02-18 09:11:17 -------- d-----w- C:\Users\Lam\AppData\Local\Kakao2014-02-18 09:11:07 -------- d-----w- C:\Program Files (x86)\Kakao2014-02-17 23:58:34 -------- d-----w- C:\Users\Lam\AppData\Local\Diagnostics2014-02-11 01:55:49 -------- d-----w- C:\MATS2014-02-11 01:54:10 -------- d-----w- C:\Users\Lam\AppData\Local\ElevatedDiagnostics2014-02-10 07:34:45 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2014-02-10 07:34:45 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2014-02-10 02:24:58 -------- d-----w- C:\Nexon2014-02-07 08:25:58 -------- d-----w- C:\Users\Lam\AppData\Roaming\TeamViewer2014-02-06 02:53:33 -------- d-----w- C:\ProgramData\Elder Scrolls Online2014-02-02 23:12:46 -------- d-----w- C:\.jagex_cache_322014-02-02 22:18:27 -------- d-----w- C:\Down2014-02-02 22:18:05 -------- d-----w- C:\Perfect World Entertainment2014-02-02 22:17:55 -------- d-----w- C:\Windyzone2014-02-01 06:53:56 -------- d-----w- C:\Users\Lam\AppData\Local\SKIDROW2014-01-31 02:45:24 -------- d-----w- C:\Users\Lam\AppData\Roaming\.minecraft2014-01-28 04:37:16 -------- d-----w- C:\ProgramData\Nexon2014-01-28 02:39:14 -------- d-----w- C:\ProgramData\NexonUS2014-01-28 01:18:15 -------- d-----w- C:\Users\Lam\AppData\Local\Warframe2014-01-28 00:37:21 -------- d-----w- C:\Windows\Hewlett-Packard2014-01-27 02:18:13 -------- d-----w- C:\Users\Lam\AppData\Roaming\LibrariIcon2014-01-27 00:43:50 -------- d-----w- C:\ProgramData\YTD Video Downloader2014-01-27 00:42:59 -------- d-----w- C:\Program Files (x86)\GreenTree Applications2014-01-26 23:11:52 -------- d-----w- C:\Users\Lam\jagexcache2014-01-25 22:43:19 -------- d-----w- C:\Users\Lam\AppData\Roaming\puush2014-01-25 22:43:05 -------- d-----w- C:\Program Files (x86)\puush2014-01-23 01:44:03 -------- d-----w- C:\Users\Lam\AppData\Local\EdgeOfReality2014-01-22 23:53:12 -------- d-----w- C:\Users\Lam\AppData\Local\ESN2014-01-22 23:53:02 -------- d-----w- C:\Program Files (x86)\Battlelog Web Plugins2014-01-22 23:25:31 25640 ----a-w- C:\Windows\gdrv.sys2014-01-22 13:50:06 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller2014-01-21 04:30:14 -------- d-----w- C:\Users\Lam\AppData\Local\Apple.==================== Find3M ====================.2014-02-07 01:19:04 283032 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2014-02-07 01:19:04 283032 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2014-02-07 01:16:50 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe2014-02-07 01:16:18 283032 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex02014-02-04 01:24:29 893440 ----a-w- C:\Windows\System32\drivers\avc3.sys2014-02-04 01:24:04 635392 ----a-w- C:\Windows\System32\drivers\avckf.sys2014-01-23 00:31:26 25640 ----a-w- C:\Windows\etdrv.sys2014-01-22 23:25:51 30528 ----a-w- C:\Windows\GVTDrv64.sys2014-01-18 09:59:21 76944 ----a-w- C:\Windows\System32\drivers\bdvedisk.sys2014-01-18 09:59:07 261056 ----a-w- C:\Windows\System32\drivers\avchv.sys2014-01-18 09:59:06 74512 ----a-w- C:\Windows\SysWow64\bdsandboxuiskin32.dll2014-01-18 09:59:06 74512 ----a-w- C:\Windows\System32\bdsandboxuiskin32.dll2014-01-17 02:15:12 479606 ----a-w- C:\ProgramData\1389924483.bdinstall.bin2014-01-14 04:31:17 627600 ----a-w- C:\Windows\System32\deployJava1.dll2014-01-14 04:24:06 283064 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys2014-01-14 04:01:54 0 ----a-w- C:\Windows\ativpsrm.bin2014-01-14 03:44:10 1186161 ----a-w- C:\Windows\unins000.exe2014-01-09 10:13:20 3130440 ----a-w- C:\Windows\SysWow64\pbsvc_blr.exe2013-12-19 05:09:39 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2013-12-18 18:01:08 40760 ----a-w- C:\Windows\System32\TURegOpt.exe2013-12-18 18:01:02 29496 ----a-w- C:\Windows\System32\authuitu.dll2013-12-18 18:01:02 25400 ----a-w- C:\Windows\SysWow64\authuitu.dll2013-12-18 14:13:56 270496 ------w- C:\Windows\System32\MpSigStub.exe2013-12-07 00:49:18 51200 ----a-w- C:\Windows\System32\kdbsdk64.dll2013-12-07 00:44:26 38912 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll2013-12-06 22:07:36 78432 ----a-w- C:\Windows\System32\atimpc64.dll2013-12-06 22:07:36 78432 ----a-w- C:\Windows\System32\amdpcom64.dll2013-12-06 22:07:14 71704 ----a-w- C:\Windows\SysWow64\atimpc32.dll2013-12-06 22:07:14 71704 ----a-w- C:\Windows\SysWow64\amdpcom32.dll2013-12-06 22:04:10 143304 ----a-w- C:\Windows\System32\atiuxp64.dll2013-12-06 22:03:46 126336 ----a-w- C:\Windows\SysWow64\atiuxpag.dll2013-12-06 22:03:00 115512 ----a-w- C:\Windows\System32\atiu9p64.dll2013-12-06 22:02:38 98496 ----a-w- C:\Windows\SysWow64\atiu9pag.dll2013-12-06 22:01:52 1318552 ----a-w- C:\Windows\System32\aticfx64.dll2013-12-06 22:01:04 1100216 ----a-w- C:\Windows\SysWow64\aticfx32.dll2013-12-06 22:00:16 9753752 ----a-w- C:\Windows\System32\atidxx64.dll2013-12-06 21:59:50 8406024 ----a-w- C:\Windows\SysWow64\atidxx32.dll2013-12-06 21:59:00 8287008 ----a-w- C:\Windows\SysWow64\atiumdva.dll2013-12-06 21:58:10 6630232 ----a-w- C:\Windows\SysWow64\atiumdag.dll2013-12-06 21:57:20 8927704 ----a-w- C:\Windows\System32\atiumd6a.dll2013-12-06 21:56:54 7751920 ----a-w- C:\Windows\System32\atiumd64.dll2013-12-06 21:52:14 13207552 ----a-w- C:\Windows\System32\drivers\atikmdag.sys2013-12-06 21:38:52 230912 ----a-w- C:\Windows\System32\clinfo.exe2013-12-06 21:38:40 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe2013-12-06 21:38:40 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe2013-12-06 21:38:38 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe2013-12-06 21:38:38 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe2013-12-06 21:38:34 99840 ----a-w- C:\Windows\System32\OpenVideo64.dll2013-12-06 21:38:28 83968 ----a-w- C:\Windows\SysWow64\OpenVideo.dll2013-12-06 21:38:22 86528 ----a-w- C:\Windows\System32\OVDecode64.dll2013-12-06 21:38:18 73728 ----a-w- C:\Windows\SysWow64\OVDecode.dll2013-12-06 21:37:58 29382144 ----a-w- C:\Windows\System32\amdocl64.dll2013-12-06 21:35:36 24860160 ----a-w- C:\Windows\SysWow64\amdocl.dll2013-12-06 21:33:28 63488 ----a-w- C:\Windows\System32\OpenCL.dll2013-12-06 21:33:24 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll2013-12-06 21:26:44 129536 ----a-w- C:\Windows\System32\coinst_13.251.dll2013-12-06 21:16:40 26352128 ----a-w- C:\Windows\System32\atio6axx.dll2013-12-06 21:13:02 368640 ----a-w- C:\Windows\System32\atiapfxx.exe2013-12-06 21:12:52 62464 ----a-w- C:\Windows\System32\aticalrt64.dll2013-12-06 21:12:50 52224 ----a-w- C:\Windows\SysWow64\aticalrt.dll2013-12-06 21:12:42 55808 ----a-w- C:\Windows\System32\aticalcl64.dll2013-12-06 21:12:40 49152 ----a-w- C:\Windows\SysWow64\aticalcl.dll2013-12-06 21:12:26 15716352 ----a-w- C:\Windows\System32\aticaldd64.dll2013-12-06 21:09:18 14302208 ----a-w- C:\Windows\SysWow64\aticaldd.dll2013-12-06 20:58:50 22157824 ----a-w- C:\Windows\SysWow64\atioglxx.dll2013-12-06 20:53:18 442368 ----a-w- C:\Windows\System32\atidemgy.dll2013-12-06 20:53:10 31232 ----a-w- C:\Windows\System32\atimuixx.dll2013-12-06 20:53:04 588288 ----a-w- C:\Windows\System32\atieclxx.exe2013-12-06 20:52:10 239616 ----a-w- C:\Windows\System32\atiesrxx.exe2013-12-06 20:50:36 190976 ----a-w- C:\Windows\System32\atitmm64.dll2013-12-06 20:22:42 1144320 ----a-w- C:\Windows\System32\atiadlxx.dll2013-12-06 20:22:28 825344 ----a-w- C:\Windows\SysWow64\atiadlxy.dll2013-12-06 20:22:12 74752 ----a-w- C:\Windows\System32\atig6pxx.dll2013-12-06 20:22:08 69632 ----a-w- C:\Windows\SysWow64\atiglpxx.dll2013-12-06 20:22:08 69632 ----a-w- C:\Windows\System32\atiglpxx.dll2013-12-06 20:22:04 100352 ----a-w- C:\Windows\System32\atig6txx.dll2013-12-06 20:21:54 96768 ----a-w- C:\Windows\SysWow64\atigktxx.dll2013-12-06 20:21:44 626176 ----a-w- C:\Windows\System32\drivers\atikmpag.sys2013-12-06 20:18:12 43520 ----a-w- C:\Windows\System32\drivers\ati2erec.dll2013-11-28 00:24:18 175480 ----a-w- C:\Windows\System32\drivers\idmwfp.sys.============= FINISH: 16:50:19.81 =============== attach.txt:.UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Professional Boot Device: \Device\HarddiskVolume2Install Date: 1/14/2014 7:36:23 PMSystem Uptime: 2/19/2014 2:00:53 PM (2 hours ago).Motherboard: Gigabyte Technology Co., Ltd. | | GA-78LMT-USB3Processor: AMD FX-6300 Six-Core Processor | Socket M2 | 3500/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 285 GiB total, 157.809 GiB free.D: is FIXED (NTFS) - 1863 GiB total, 322.629 GiB free.E: is CDROM ()G: is RemovableH: is RemovableI: is RemovableJ: is RemovableK: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP84: 2/10/2014 6:05:36 PM - Windows UpdateRP85: 2/10/2014 6:07:45 PM - DCInstallRestorePointRP86: 2/10/2014 10:04:58 PM - Installed Adobe Reader XI.RP87: 2/12/2014 6:36:59 PM - Installed Adobe Reader XI.RP88: 2/12/2014 7:11:07 PM - Installed Adobe Reader XI.RP89: 2/12/2014 7:33:30 PM - Installed Adobe Reader XI.RP90: 2/12/2014 7:45:12 PM - Installed Adobe Reader XI.RP91: 2/12/2014 7:47:51 PM - Installed Adobe Reader 9.5.0.RP92: 2/14/2014 7:12:05 PM - Windows UpdateRP93: 2/15/2014 8:26:42 PM - Windows Update.==== Installed Programs ======================.@BIOS3TB+Unlock B12.1102.1Adobe AIRAdobe Flash Player 12 PluginAdobe Reader 9.5.0Adobe Support AdvisorAkamai NetSession InterfaceAMD Accelerated Video TranscodingAMD Catalyst Control CenterAMD Catalyst Install ManagerAMD Drag and Drop TranscodingAMD FuelAMD Media Foundation DecodersAMD Wireless Display v3.0Apple Application SupportApple Mobile Device SupportApple Software UpdateAuslogics DiskDefragAutoGreen B12.1220.1Battle.netBattlefield 3™Battlelog Web PluginsBitdefender Antivirus PlusBonjourBorderlands 2Catalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyCatalyst Control Center Localization Allccc-utility64CCC Help Chinese StandardCCC Help Chinese TraditionalCCC Help CzechCCC Help DanishCCC Help DutchCCC Help EnglishCCC Help FinnishCCC Help FrenchCCC Help GermanCCC Help GreekCCC Help HungarianCCC Help ItalianCCC Help JapaneseCCC Help KoreanCCC Help NorwegianCCC Help PolishCCC Help PortugueseCCC Help RussianCCC Help SpanishCCC Help SwedishCCC Help ThaiCCC Help TurkishCCleanerCPUID CPU-Z 1.67.1DAEMON Tools LiteDefinition Update for Microsoft Office 2013 (KB2760587) 64-Bit EditionDyad version 1.00Easy Tune 6 B13.0323.1ESN SonarFallout New VegasFraps (remove only)Google ChromeGoogle Update HelperGunZ 2: The Second DuelHearthstoneHP Deskjet 3510 series Basic Device SoftwareHP UpdateInternet Download ManageriTunesJava 7 Update 51Java Auto UpdaterJava 7 (64-bit)KakaoTalkLoadoutLogitech Gaming SoftwareLogitech Gaming Software 8.51Malwarebytes Anti-Malware version 1.75.0.1300Microsoft .NET Framework 4.5Microsoft Access MUI (English) 2013Microsoft Access Setup Metadata MUI (English) 2013Microsoft DCF MUI (English) 2013Microsoft Excel MUI (English) 2013Microsoft Groove MUI (English) 2013Microsoft InfoPath MUI (English) 2013Microsoft Lync MUI (English) 2013Microsoft Office 32-bit Components 2013Microsoft Office OSM MUI (English) 2013Microsoft Office OSM UX MUI (English) 2013Microsoft Office Professional Plus 2013Microsoft Office Proofing (English) 2013Microsoft Office Proofing Tools 2013 - EnglishMicrosoft Office Proofing Tools 2013 - EspañolMicrosoft Office Shared 32-bit MUI (English) 2013Microsoft Office Shared MUI (English) 2013Microsoft Office Shared Setup Metadata MUI (English) 2013Microsoft OneNote MUI (English) 2013Microsoft Outlook MUI (English) 2013Microsoft PowerPoint MUI (English) 2013Microsoft Publisher MUI (English) 2013Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727Microsoft Word MUI (English) 2013Microsoft_VC80_CRT_x86Microsoft_VC90_CRT_x86ModifyRegistry version 0.1MSI Afterburner 2.3.1Need for Speed Most WantedNexon Game ManagerNexus Mod ManagerNVIDIA PhysXOGPlanet Game LauncherON_OFF Charge B12.1025.1OriginOutils de vérification linguistique 2013 de Microsoft Office - FrançaisPC Wizard 2013.2.12PDF Settings CS6PlatformPowerISOPunkBuster ServicespuushRealtek Ethernet Controller DriverRumble FighterRuneScape Launcher 1.2.3RustRusty HeartsSecurity Update for Microsoft Excel 2013 (KB2827238) 64-Bit EditionSecurity Update for Microsoft Office 2013 (KB2810009) 64-Bit EditionSecurity Update for Microsoft Office 2013 (KB2817623) 64-Bit EditionSkype™ 6.9Sleeping DogsSpotifyStarCraft II: Heart of the Swarm © Blizzard Entertainment version 1TeamViewer 9Tongbu Assistant 2.1.1.0Tt eSPORTS THERONTuneUp Utilities 2014TuneUp Utilities 2014 (en-US)Update for Microsoft Access 2013 (KB2768008) 64-Bit EditionUpdate for Microsoft InfoPath 2013 (KB2752078) 64-Bit EditionUpdate for Microsoft Lync 2013 (KB2817621) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2726954) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2726996) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2737954) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2738038) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2760224) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2760242) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2760257) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2760267) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2760539) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2760553) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2760610) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2767845) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2768016) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817309) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817311) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817314) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817316) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817490) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817493) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817624) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817626) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2817640) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2827225) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2827228) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2827230) 64-Bit EditionUpdate for Microsoft Office 2013 (KB2827235) 64-Bit EditionUpdate for Microsoft OneNote 2013 (KB2810016) 64-Bit EditionUpdate for Microsoft Outlook 2013 (KB2825632) 64-Bit EditionUpdate for Microsoft PowerPoint 2013 (KB2726947) 64-Bit EditionUpdate for Microsoft PowerPoint 2013 (KB2817625) 64-Bit EditionUpdate for Microsoft Project 2013 (KB2767859) 64-Bit EditionUpdate for Microsoft Publisher 2013 (KB2752097) 64-Bit EditionUpdate for Microsoft SkyDrive Pro (KB2825633) 64-Bit EditionUpdate for Microsoft Visio 2013 (KB2752018) 64-Bit EditionUpdate for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit EditionUpdate for Microsoft Word 2013 (KB2817631) 64-Bit EditionUpdate for Microsoft Word 2013 (KB2827218) 64-Bit EditionVIA Platform Device ManagerVLC media player 2.1.2WarframeWarhammer 40000 Dawn of War II - RetributionWinRAR 5.01 (64-bit)YTD Video Downloader 4.7.1.==== Event Viewer Messages From Past Week ========.2/19/2014 3:26:20 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.2/19/2014 3:26:20 PM, Error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.2/19/2014 2:22:59 PM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80070422'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.2/19/2014 2:01:51 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.2/19/2014 2:01:38 PM, Error: Service Control Manager [7023] - The Power service terminated with the following error: The WMI request could not be completed and should be retried.2/18/2014 1:53:29 AM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Reboot the machine) after the unexpected termination of the DCOM Server Process Launcher service, but this action failed with the following error: A system shutdown has already been scheduled.2/18/2014 1:53:28 AM, Error: Service Control Manager [7031] - The Plug and Play service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.2/18/2014 1:53:28 AM, Error: Service Control Manager [7031] - The DCOM Server Process Launcher service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.2/17/2014 9:12:51 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xffffffffffffffc1, 0x0000000000000000, 0xfffff880012f60b9, 0x0000000000000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 021714-17378-01.2/17/2014 4:23:03 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the VSSERV service.2/17/2014 3:50:30 PM, Error: Microsoft-Windows-DistributedCOM [10000] - Unable to start a DCOM Server: {1F87137D-0E7C-44D5-8C73-4EFFB68962F2}. The error: "1450" Happened while starting this command: C:\Windows\system32\wbem\wmiprvse.exe -secured -Embedding2/17/2014 3:41:11 PM, Error: Microsoft-Windows-Kernel-General [6] - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file): '\SystemRoot\System32\Config\SOFTWARE'.2/16/2014 1:55:29 AM, Error: Service Control Manager [7001] - The Windows Image Acquisition (WIA) service depends on the Shell Hardware Detection service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.2/16/2014 1:55:25 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service stisvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}2/12/2014 6:26:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service BITS with arguments "" in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}2/12/2014 6:23:04 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}2/12/2014 6:22:43 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.2/12/2014 6:20:47 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}2/12/2014 6:20:47 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}2/12/2014 6:20:41 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}2/12/2014 6:20:32 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AppleCharger avc3 discache gzflt SCDEmu spldr trufos VirtDiskBus Wanarpv62/12/2014 6:18:48 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.2/12/2014 6:18:25 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}2/12/2014 6:18:25 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}2/12/2014 6:18:13 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AppleCharger avc3 bdfwfpf CSC DfsC discache gzflt NetBIOS NetBT nsiproxy Psched rdbss SCDEmu spldr tdx trufos VirtDiskBus Wanarpv6 WfpLwf2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.2/12/2014 6:18:11 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning..==== End Of File ===========================