NoobNeedsHelp
New member
Hello again. I done what was asked and here's the update. First, the link to the original thread. At least I think that's it.
http://forums.spybot.info/showthread.php?69986-Suspected-Malware-please-advise
Here's the DDS.txt file's info.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.45.2
Run by User at 19:52:28 on 2014-01-09
Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.3980.2382 [GMT 10:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService64.exe
C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\ProgramData\MobiiBroadband 3G\OnlineUpdate\ouc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\viakaraokesrv.exe
C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files\Tablet\Pen\WacomHost.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\system32\igfxpers.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\MobiiBroadband 3G\MobiiBroadband 3G.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com.au/
uDefault_Page_URL = hxxp://asus13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: ASUS Browser Extension x86: {78234974-0C4B-4111-BDEB-D9A104418771} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x86\BrowserExtension.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
uRun: [myscriptstylus.exe] "C:\Program Files (x86)\Vision Objects\Bamboo Scribe\BambooScribe.exe" /i
uRun: [AdobeBridge] <no file>
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
mRun: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [KeyScrambler] C:\Program Files (x86)\KeyScrambler\keyscrambler.exe /a
StartupFolder: C:\Users\User\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
StartupFolder: C:\Users\User\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
StartupFolder: C:\Users\User\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ASUSVI~1.LNK - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
IE: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: Interfaces\{464DA456-C647-4C1B-B7D2-331A33B23734} : NameServer = 203.0.178.191 203.215.29.191
TCP: Interfaces\{D03222B0-A4AA-49EC-84BF-6C846FBE425B} : DHCPNameServer = 127.0.0.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll",CreateReaderUserSettings
x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: ASUS Browser Extension x64: {78234974-0C4B-4111-BDEB-D9A104418772} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x64\BrowserExtension64.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [ASUSQuickGesture(x86)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
x64-Run: [ASUSTPLoader(x64)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
x64-Run: [ASUSQuickGesture(x64)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
x64-Run: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\Drivers\aswRvrt.sys [2013-3-26 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\Drivers\aswVmm.sys [2013-3-26 207904]
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-7-6 645952]
R1 aswSnx;aswSnx;C:\Windows\System32\Drivers\aswSnx.sys [2013-2-21 1034464]
R1 aswSP;aswSP;C:\Windows\System32\Drivers\aswsp.sys [2013-2-21 422216]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-8 17536]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-3 15416]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\Drivers\aswMonFlt.sys [2013-2-21 78648]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-27 50344]
R2 HWDeviceService64.exe;HWDeviceService64.exe;C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-3-15 346976]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-21 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-9-18 166720]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-5 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-5 701512]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2013-6-7 1153368]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-9-18 365376]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2012-8-28 27792]
R2 WTabletServiceCon;Wacom Consumer Service;C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [2013-3-21 619904]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\Drivers\AiCharger.sys [2012-7-25 17152]
R3 aswStm;aswStm;C:\Windows\System32\Drivers\aswstm.sys [2013-12-27 79672]
R3 ATP;ASUS PS/2 Port Input Device;C:\Windows\System32\Drivers\AsusTP.sys [2012-8-6 50848]
R3 ew_usbenumfilter;huawei_CompositeFilter;C:\Windows\System32\Drivers\ew_usbenumfilter.sys [2013-3-21 13952]
R3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\Drivers\AsHIDSwitch64.sys [2012-8-28 21152]
R3 huawei_cdcacm;huawei_cdcacm;C:\Windows\System32\Drivers\ew_jucdcacm.sys [2013-3-21 104448]
R3 huawei_enumerator;huawei_enumerator;C:\Windows\System32\Drivers\ew_jubusenum.sys [2013-3-21 90112]
R3 huawei_ext_ctrl;huawei_ext_ctrl;C:\Windows\System32\Drivers\ew_juextctrl.sys [2013-3-21 30720]
R3 huawei_wwanecm;huawei_wwanecm;C:\Windows\System32\Drivers\ew_juwwanecm.sys [2013-3-21 238080]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-8-28 342528]
R3 KeyScrambler;KeyScrambler;C:\Windows\System32\Drivers\keyscrambler.sys [2014-1-5 222200]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\Drivers\L1C63x64.sys [2012-8-28 110744]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2014-1-5 25928]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\Drivers\netr28x.sys [2013-4-15 2482960]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\Drivers\viahduaa.sys [2012-8-28 2206352]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
S2 MobiiBroadband 3G. RunOuc;MobiiBroadband 3G. OUC;C:\Program Files (x86)\MobiiBroadband 3G\UpdateDog\ouc.exe [2013-3-21 655744]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-1-9 161536]
S3 BTCFilterService;USB Networking Driver Filter Service;C:\Windows\System32\Drivers\motfilt.sys [2009-1-29 6144]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\Windows\System32\Drivers\ew_hwusbdev.sys [2013-3-21 117248]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\Windows\System32\Drivers\ewusbwwan.sys [2013-3-21 450048]
S3 hidkmdf;KMDF Driver;C:\Windows\System32\Drivers\hidkmdf.sys [2013-3-21 13728]
S3 motccgp;Motorola USB Composite Device Driver;C:\Windows\System32\Drivers\motccgp.sys [2009-6-19 20992]
S3 motccgpfl;MotCcgpFlService;C:\Windows\System32\Drivers\motccgpfl.sys [2009-1-29 9216]
S3 Motousbnet;Motorola USB Networking Driver Service;C:\Windows\System32\Drivers\Motousbnet.sys [2010-4-1 26624]
S3 motusbdevice;Motorola USB Dev Driver;C:\Windows\System32\Drivers\motusbdevice.sys [2010-1-25 10240]
S3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2012-6-3 589824]
S3 WacHidRouter;Wacom Hid Router;C:\Windows\System32\Drivers\wachidrouter.sys [2013-3-21 81824]
S3 wacomrouterfilter;Wacom Router Filter Driver;C:\Windows\System32\Drivers\wacomrouterfilter.sys [2013-3-21 15776]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2014-01-05 03:27:50 -------- d-----w- C:\Windows\System32\MRT
2014-01-05 00:46:19 337752 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS
2014-01-05 00:46:19 213336 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS
2014-01-05 00:41:47 79192 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2014-01-05 00:41:47 623448 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2014-01-05 00:41:47 498008 ----a-w- C:\Windows\System32\drivers\usbport.sys
2014-01-05 00:41:47 32256 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2014-01-05 00:41:47 21848 ----a-w- C:\Windows\System32\drivers\usbd.sys
2014-01-05 00:41:47 120832 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2014-01-05 00:41:36 99328 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-01-05 00:41:36 210560 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2014-01-05 00:41:33 694272 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-01-05 00:41:33 1314816 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-01-05 00:41:06 1838080 ----a-w- C:\Windows\System32\DWrite.dll
2014-01-05 00:41:06 1421312 ----a-w- C:\Windows\SysWow64\DWrite.dll
2014-01-05 00:40:24 1184256 ----a-w- C:\Windows\System32\Display.dll
2014-01-05 00:40:23 7168 ----a-w- C:\Windows\System32\KBDKURD.DLL
2014-01-05 00:40:23 1164800 ----a-w- C:\Windows\SysWow64\Display.dll
2014-01-05 00:40:22 6656 ----a-w- C:\Windows\SysWow64\KBDKURD.DLL
2014-01-05 00:37:50 82944 ----a-w- C:\Windows\SysWow64\dskquota.dll
2014-01-05 00:37:39 109568 ----a-w- C:\Windows\System32\dskquota.dll
2014-01-05 00:37:00 59392 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-01-05 00:35:41 414720 ----a-w- C:\Windows\SysWow64\StructuredQuery.dll
2014-01-05 00:34:30 579584 ----a-w- C:\Windows\System32\StructuredQuery.dll
2014-01-05 00:33:59 7680 ----a-w- C:\Windows\System32\kbdhebl3.dll
2014-01-05 00:33:56 264704 ----a-w- C:\Windows\System32\ListSvc.dll
2014-01-05 00:33:54 2380944 ----a-w- C:\Windows\explorer.exe
2014-01-05 00:33:53 62976 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2014-01-05 00:33:53 331776 ----a-w- C:\Windows\System32\dhcpcore.dll
2014-01-05 00:33:53 244224 ----a-w- C:\Windows\System32\dhcpcore6.dll
2014-01-05 00:33:53 2206208 ----a-w- C:\Windows\System32\dwmcore.dll
2014-01-05 00:33:53 1280000 ----a-w- C:\Windows\System32\FntCache.dll
2014-01-05 00:33:43 118784 ----a-w- C:\Windows\System32\AppxSip.dll
2014-01-05 00:33:41 34816 ----a-w- C:\Windows\System32\microsoft-windows-pdc.dll
2014-01-05 00:33:28 33512 ----a-w- C:\Windows\System32\drivers\battc.sys
2014-01-05 00:32:39 893952 ----a-w- C:\Windows\SysWow64\msctf.dll
2014-01-05 00:32:34 356352 ----a-w- C:\Windows\SysWow64\SettingSync.dll
2014-01-05 00:32:18 941056 ----a-w- C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
2014-01-05 00:32:18 158208 ----a-w- C:\Windows\SysWow64\mbsmsapi.dll
2014-01-05 00:31:42 2233688 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2014-01-05 00:31:40 1125888 ----a-w- C:\Windows\System32\msctf.dll
2014-01-05 00:31:34 448512 ----a-w- C:\Windows\System32\SettingSync.dll
2014-01-05 00:31:34 128512 ----a-w- C:\Windows\System32\SettingSyncInfo.dll
2014-01-05 00:31:33 225280 ----a-w- C:\Windows\System32\mbsmsapi.dll
2014-01-05 00:31:33 1107968 ----a-w- C:\Program Files\Common Files\System\Ole DB\oledb32.dll
2014-01-05 00:31:26 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2014-01-05 00:31:26 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2014-01-05 00:29:16 1483776 ----a-w- C:\Windows\System32\VSSVC.exe
2014-01-05 00:28:55 437248 ----a-w- C:\Windows\SysWow64\wvc.dll
2014-01-05 00:27:50 247296 ----a-w- C:\Windows\SysWow64\ubpm.dll
2014-01-05 00:26:58 13661696 ----a-w- C:\Windows\System32\Windows.UI.Xaml.dll
2014-01-05 00:26:57 61784 ----a-w- C:\Windows\System32\drivers\crashdmp.sys
2014-01-04 18:36:53 1300992 ----a-w- C:\Windows\System32\gdi32.dll
2014-01-04 18:36:53 1022976 ----a-w- C:\Windows\SysWow64\gdi32.dll
2014-01-04 18:36:48 98304 ----a-w- C:\Windows\System32\apprepsync.dll
2014-01-04 18:36:48 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll
2014-01-04 18:36:48 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll
2014-01-04 18:36:48 68096 ----a-w- C:\Windows\System32\cryptsvc.dll
2014-01-04 18:36:48 337408 ----a-w- C:\Windows\System32\wintrust.dll
2014-01-04 18:36:48 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll
2014-01-04 18:36:48 124416 ----a-w- C:\Windows\System32\apprepapi.dll
2014-01-04 18:36:25 733184 ----a-w- C:\Windows\System32\win32spl.dll
2014-01-04 18:36:20 1890816 ----a-w- C:\Windows\System32\crypt32.dll
2014-01-04 18:36:20 1569280 ----a-w- C:\Windows\SysWow64\crypt32.dll
2014-01-04 18:34:45 222720 ----a-w- C:\Windows\System32\scrobj.dll
2014-01-04 18:34:44 143872 ----a-w- C:\Windows\System32\wshom.ocx
2014-01-04 18:34:43 194048 ----a-w- C:\Windows\System32\scrrun.dll
2014-01-04 18:34:43 162304 ----a-w- C:\Windows\SysWow64\scrobj.dll
2014-01-04 18:34:43 156160 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-01-04 18:34:43 146944 ----a-w- C:\Windows\System32\cscript.exe
2014-01-04 18:34:43 115712 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-01-04 18:34:40 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-01-04 18:34:40 25088 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-01-04 18:34:24 2062848 ----a-w- C:\Windows\System32\d3d11.dll
2014-01-04 18:34:24 1711616 ----a-w- C:\Windows\SysWow64\d3d11.dll
2014-01-04 18:34:19 420864 ----a-w- C:\Windows\System32\WMPhoto.dll
2014-01-04 18:34:19 368640 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2014-01-04 18:32:44 8858112 ----a-w- C:\Windows\SysWow64\twinui.dll
2014-01-04 18:32:43 2304512 ----a-w- C:\Windows\System32\authui.dll
2014-01-04 18:32:43 2035712 ----a-w- C:\Windows\SysWow64\authui.dll
2014-01-04 18:32:43 10116608 ----a-w- C:\Windows\System32\twinui.dll
2014-01-04 18:32:22 419328 ----a-w- C:\Windows\System32\schannel.dll
2014-01-04 18:32:22 323072 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-01-04 18:24:35 370176 ----a-w- C:\Windows\System32\SysFxUI.dll
2014-01-04 18:24:35 288768 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-01-04 18:24:35 1636672 ----a-w- C:\Windows\System32\WMALFXGFXDSP.dll
2014-01-04 18:24:34 5632 ----a-w- C:\Windows\System32\drivers\drmkaud.sys
2014-01-04 18:24:34 111616 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-01-04 18:24:26 312320 ----a-w- C:\Windows\System32\msieftp.dll
2014-01-04 18:24:25 273408 ----a-w- C:\Windows\SysWow64\msieftp.dll
2014-01-04 16:36:16 222200 ----a-w- C:\Windows\System32\drivers\keyscrambler.sys
2014-01-04 16:36:10 -------- d-----w- C:\Program Files (x86)\KeyScrambler
2014-01-04 14:13:10 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-01-04 14:13:10 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-27 09:35:47 79672 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2013-12-17 12:18:47 9013136 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8C1B848-6367-4A76-B114-4D63890D2BFE}\mpengine.dll
.
==================== Find3M ====================
.
2014-01-09 09:22:23 380 ----a-w- C:\Users\User\AppData\Roaming\sp_data.sys
2013-12-27 09:35:29 78648 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2013-12-27 09:35:29 207904 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2013-12-27 09:35:29 1034464 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2013-12-27 09:35:28 43152 ----a-w- C:\Windows\avastSS.scr
2013-11-06 23:18:57 4036608 ----a-w- C:\Windows\System32\win32k.sys
2013-10-22 12:36:45 92544 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2013-10-22 12:36:45 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2013-10-19 05:45:45 62976 ----a-w- C:\Windows\System32\imagehlp.dll
.
============= FINISH: 19:53:54.59 ===============
Now, the attached zip thingy if I've done it right...
View attachment attach.zip
On a side note, I was using Google Chrome, my usual browser, to access this website, but after downloading and running the programs asked to by this site, I suddenly could not access this website anymore. I loaded it from bookmark, typed in the address, etc and nothing worked. Google Chrome kept asking me "did I mean _____" (insert exactly the website address I typed or selected there) but nothing worked. I had to close Chrome and open IE to get back to this site. Google Chrome says either the page being down or malicious stuff causes this to happen. I didn't backup my registry entries or whatever they are with that program you guys advised because it is not supported by Windows 8. I noticed you guys asked us to let you know if you can't use that program so here's the notification.
Thanks for your time.
http://forums.spybot.info/showthread.php?69986-Suspected-Malware-please-advise
Here's the DDS.txt file's info.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.45.2
Run by User at 19:52:28 on 2014-01-09
Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.3980.2382 [GMT 10:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService64.exe
C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\ProgramData\MobiiBroadband 3G\OnlineUpdate\ouc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\viakaraokesrv.exe
C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files\Tablet\Pen\WacomHost.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\system32\igfxpers.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\MobiiBroadband 3G\MobiiBroadband 3G.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com.au/
uDefault_Page_URL = hxxp://asus13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: ASUS Browser Extension x86: {78234974-0C4B-4111-BDEB-D9A104418771} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x86\BrowserExtension.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
uRun: [myscriptstylus.exe] "C:\Program Files (x86)\Vision Objects\Bamboo Scribe\BambooScribe.exe" /i
uRun: [AdobeBridge] <no file>
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
mRun: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [KeyScrambler] C:\Program Files (x86)\KeyScrambler\keyscrambler.exe /a
StartupFolder: C:\Users\User\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
StartupFolder: C:\Users\User\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
StartupFolder: C:\Users\User\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ASUSVI~1.LNK - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
IE: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: Interfaces\{464DA456-C647-4C1B-B7D2-331A33B23734} : NameServer = 203.0.178.191 203.215.29.191
TCP: Interfaces\{D03222B0-A4AA-49EC-84BF-6C846FBE425B} : DHCPNameServer = 127.0.0.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll",CreateReaderUserSettings
x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: ASUS Browser Extension x64: {78234974-0C4B-4111-BDEB-D9A104418772} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x64\BrowserExtension64.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [ASUSQuickGesture(x86)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
x64-Run: [ASUSTPLoader(x64)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
x64-Run: [ASUSQuickGesture(x64)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
x64-Run: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\Drivers\aswRvrt.sys [2013-3-26 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\Drivers\aswVmm.sys [2013-3-26 207904]
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-7-6 645952]
R1 aswSnx;aswSnx;C:\Windows\System32\Drivers\aswSnx.sys [2013-2-21 1034464]
R1 aswSP;aswSP;C:\Windows\System32\Drivers\aswsp.sys [2013-2-21 422216]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-8 17536]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-3 15416]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\Drivers\aswMonFlt.sys [2013-2-21 78648]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-27 50344]
R2 HWDeviceService64.exe;HWDeviceService64.exe;C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-3-15 346976]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-21 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-9-18 166720]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-5 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-5 701512]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2013-6-7 1153368]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-9-18 365376]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2012-8-28 27792]
R2 WTabletServiceCon;Wacom Consumer Service;C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [2013-3-21 619904]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\Drivers\AiCharger.sys [2012-7-25 17152]
R3 aswStm;aswStm;C:\Windows\System32\Drivers\aswstm.sys [2013-12-27 79672]
R3 ATP;ASUS PS/2 Port Input Device;C:\Windows\System32\Drivers\AsusTP.sys [2012-8-6 50848]
R3 ew_usbenumfilter;huawei_CompositeFilter;C:\Windows\System32\Drivers\ew_usbenumfilter.sys [2013-3-21 13952]
R3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\Drivers\AsHIDSwitch64.sys [2012-8-28 21152]
R3 huawei_cdcacm;huawei_cdcacm;C:\Windows\System32\Drivers\ew_jucdcacm.sys [2013-3-21 104448]
R3 huawei_enumerator;huawei_enumerator;C:\Windows\System32\Drivers\ew_jubusenum.sys [2013-3-21 90112]
R3 huawei_ext_ctrl;huawei_ext_ctrl;C:\Windows\System32\Drivers\ew_juextctrl.sys [2013-3-21 30720]
R3 huawei_wwanecm;huawei_wwanecm;C:\Windows\System32\Drivers\ew_juwwanecm.sys [2013-3-21 238080]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-8-28 342528]
R3 KeyScrambler;KeyScrambler;C:\Windows\System32\Drivers\keyscrambler.sys [2014-1-5 222200]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\Drivers\L1C63x64.sys [2012-8-28 110744]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2014-1-5 25928]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\Drivers\netr28x.sys [2013-4-15 2482960]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\Drivers\viahduaa.sys [2012-8-28 2206352]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
S2 MobiiBroadband 3G. RunOuc;MobiiBroadband 3G. OUC;C:\Program Files (x86)\MobiiBroadband 3G\UpdateDog\ouc.exe [2013-3-21 655744]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-1-9 161536]
S3 BTCFilterService;USB Networking Driver Filter Service;C:\Windows\System32\Drivers\motfilt.sys [2009-1-29 6144]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\Windows\System32\Drivers\ew_hwusbdev.sys [2013-3-21 117248]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\Windows\System32\Drivers\ewusbwwan.sys [2013-3-21 450048]
S3 hidkmdf;KMDF Driver;C:\Windows\System32\Drivers\hidkmdf.sys [2013-3-21 13728]
S3 motccgp;Motorola USB Composite Device Driver;C:\Windows\System32\Drivers\motccgp.sys [2009-6-19 20992]
S3 motccgpfl;MotCcgpFlService;C:\Windows\System32\Drivers\motccgpfl.sys [2009-1-29 9216]
S3 Motousbnet;Motorola USB Networking Driver Service;C:\Windows\System32\Drivers\Motousbnet.sys [2010-4-1 26624]
S3 motusbdevice;Motorola USB Dev Driver;C:\Windows\System32\Drivers\motusbdevice.sys [2010-1-25 10240]
S3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2012-6-3 589824]
S3 WacHidRouter;Wacom Hid Router;C:\Windows\System32\Drivers\wachidrouter.sys [2013-3-21 81824]
S3 wacomrouterfilter;Wacom Router Filter Driver;C:\Windows\System32\Drivers\wacomrouterfilter.sys [2013-3-21 15776]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2014-01-05 03:27:50 -------- d-----w- C:\Windows\System32\MRT
2014-01-05 00:46:19 337752 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS
2014-01-05 00:46:19 213336 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS
2014-01-05 00:41:47 79192 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2014-01-05 00:41:47 623448 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2014-01-05 00:41:47 498008 ----a-w- C:\Windows\System32\drivers\usbport.sys
2014-01-05 00:41:47 32256 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2014-01-05 00:41:47 21848 ----a-w- C:\Windows\System32\drivers\usbd.sys
2014-01-05 00:41:47 120832 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2014-01-05 00:41:36 99328 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-01-05 00:41:36 210560 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2014-01-05 00:41:33 694272 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-01-05 00:41:33 1314816 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-01-05 00:41:06 1838080 ----a-w- C:\Windows\System32\DWrite.dll
2014-01-05 00:41:06 1421312 ----a-w- C:\Windows\SysWow64\DWrite.dll
2014-01-05 00:40:24 1184256 ----a-w- C:\Windows\System32\Display.dll
2014-01-05 00:40:23 7168 ----a-w- C:\Windows\System32\KBDKURD.DLL
2014-01-05 00:40:23 1164800 ----a-w- C:\Windows\SysWow64\Display.dll
2014-01-05 00:40:22 6656 ----a-w- C:\Windows\SysWow64\KBDKURD.DLL
2014-01-05 00:37:50 82944 ----a-w- C:\Windows\SysWow64\dskquota.dll
2014-01-05 00:37:39 109568 ----a-w- C:\Windows\System32\dskquota.dll
2014-01-05 00:37:00 59392 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-01-05 00:35:41 414720 ----a-w- C:\Windows\SysWow64\StructuredQuery.dll
2014-01-05 00:34:30 579584 ----a-w- C:\Windows\System32\StructuredQuery.dll
2014-01-05 00:33:59 7680 ----a-w- C:\Windows\System32\kbdhebl3.dll
2014-01-05 00:33:56 264704 ----a-w- C:\Windows\System32\ListSvc.dll
2014-01-05 00:33:54 2380944 ----a-w- C:\Windows\explorer.exe
2014-01-05 00:33:53 62976 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2014-01-05 00:33:53 331776 ----a-w- C:\Windows\System32\dhcpcore.dll
2014-01-05 00:33:53 244224 ----a-w- C:\Windows\System32\dhcpcore6.dll
2014-01-05 00:33:53 2206208 ----a-w- C:\Windows\System32\dwmcore.dll
2014-01-05 00:33:53 1280000 ----a-w- C:\Windows\System32\FntCache.dll
2014-01-05 00:33:43 118784 ----a-w- C:\Windows\System32\AppxSip.dll
2014-01-05 00:33:41 34816 ----a-w- C:\Windows\System32\microsoft-windows-pdc.dll
2014-01-05 00:33:28 33512 ----a-w- C:\Windows\System32\drivers\battc.sys
2014-01-05 00:32:39 893952 ----a-w- C:\Windows\SysWow64\msctf.dll
2014-01-05 00:32:34 356352 ----a-w- C:\Windows\SysWow64\SettingSync.dll
2014-01-05 00:32:18 941056 ----a-w- C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
2014-01-05 00:32:18 158208 ----a-w- C:\Windows\SysWow64\mbsmsapi.dll
2014-01-05 00:31:42 2233688 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2014-01-05 00:31:40 1125888 ----a-w- C:\Windows\System32\msctf.dll
2014-01-05 00:31:34 448512 ----a-w- C:\Windows\System32\SettingSync.dll
2014-01-05 00:31:34 128512 ----a-w- C:\Windows\System32\SettingSyncInfo.dll
2014-01-05 00:31:33 225280 ----a-w- C:\Windows\System32\mbsmsapi.dll
2014-01-05 00:31:33 1107968 ----a-w- C:\Program Files\Common Files\System\Ole DB\oledb32.dll
2014-01-05 00:31:26 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2014-01-05 00:31:26 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2014-01-05 00:29:16 1483776 ----a-w- C:\Windows\System32\VSSVC.exe
2014-01-05 00:28:55 437248 ----a-w- C:\Windows\SysWow64\wvc.dll
2014-01-05 00:27:50 247296 ----a-w- C:\Windows\SysWow64\ubpm.dll
2014-01-05 00:26:58 13661696 ----a-w- C:\Windows\System32\Windows.UI.Xaml.dll
2014-01-05 00:26:57 61784 ----a-w- C:\Windows\System32\drivers\crashdmp.sys
2014-01-04 18:36:53 1300992 ----a-w- C:\Windows\System32\gdi32.dll
2014-01-04 18:36:53 1022976 ----a-w- C:\Windows\SysWow64\gdi32.dll
2014-01-04 18:36:48 98304 ----a-w- C:\Windows\System32\apprepsync.dll
2014-01-04 18:36:48 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll
2014-01-04 18:36:48 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll
2014-01-04 18:36:48 68096 ----a-w- C:\Windows\System32\cryptsvc.dll
2014-01-04 18:36:48 337408 ----a-w- C:\Windows\System32\wintrust.dll
2014-01-04 18:36:48 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll
2014-01-04 18:36:48 124416 ----a-w- C:\Windows\System32\apprepapi.dll
2014-01-04 18:36:25 733184 ----a-w- C:\Windows\System32\win32spl.dll
2014-01-04 18:36:20 1890816 ----a-w- C:\Windows\System32\crypt32.dll
2014-01-04 18:36:20 1569280 ----a-w- C:\Windows\SysWow64\crypt32.dll
2014-01-04 18:34:45 222720 ----a-w- C:\Windows\System32\scrobj.dll
2014-01-04 18:34:44 143872 ----a-w- C:\Windows\System32\wshom.ocx
2014-01-04 18:34:43 194048 ----a-w- C:\Windows\System32\scrrun.dll
2014-01-04 18:34:43 162304 ----a-w- C:\Windows\SysWow64\scrobj.dll
2014-01-04 18:34:43 156160 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-01-04 18:34:43 146944 ----a-w- C:\Windows\System32\cscript.exe
2014-01-04 18:34:43 115712 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-01-04 18:34:40 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-01-04 18:34:40 25088 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-01-04 18:34:24 2062848 ----a-w- C:\Windows\System32\d3d11.dll
2014-01-04 18:34:24 1711616 ----a-w- C:\Windows\SysWow64\d3d11.dll
2014-01-04 18:34:19 420864 ----a-w- C:\Windows\System32\WMPhoto.dll
2014-01-04 18:34:19 368640 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2014-01-04 18:32:44 8858112 ----a-w- C:\Windows\SysWow64\twinui.dll
2014-01-04 18:32:43 2304512 ----a-w- C:\Windows\System32\authui.dll
2014-01-04 18:32:43 2035712 ----a-w- C:\Windows\SysWow64\authui.dll
2014-01-04 18:32:43 10116608 ----a-w- C:\Windows\System32\twinui.dll
2014-01-04 18:32:22 419328 ----a-w- C:\Windows\System32\schannel.dll
2014-01-04 18:32:22 323072 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-01-04 18:24:35 370176 ----a-w- C:\Windows\System32\SysFxUI.dll
2014-01-04 18:24:35 288768 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-01-04 18:24:35 1636672 ----a-w- C:\Windows\System32\WMALFXGFXDSP.dll
2014-01-04 18:24:34 5632 ----a-w- C:\Windows\System32\drivers\drmkaud.sys
2014-01-04 18:24:34 111616 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-01-04 18:24:26 312320 ----a-w- C:\Windows\System32\msieftp.dll
2014-01-04 18:24:25 273408 ----a-w- C:\Windows\SysWow64\msieftp.dll
2014-01-04 16:36:16 222200 ----a-w- C:\Windows\System32\drivers\keyscrambler.sys
2014-01-04 16:36:10 -------- d-----w- C:\Program Files (x86)\KeyScrambler
2014-01-04 14:13:10 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-01-04 14:13:10 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-27 09:35:47 79672 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2013-12-17 12:18:47 9013136 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8C1B848-6367-4A76-B114-4D63890D2BFE}\mpengine.dll
.
==================== Find3M ====================
.
2014-01-09 09:22:23 380 ----a-w- C:\Users\User\AppData\Roaming\sp_data.sys
2013-12-27 09:35:29 78648 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2013-12-27 09:35:29 207904 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2013-12-27 09:35:29 1034464 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2013-12-27 09:35:28 43152 ----a-w- C:\Windows\avastSS.scr
2013-11-06 23:18:57 4036608 ----a-w- C:\Windows\System32\win32k.sys
2013-10-22 12:36:45 92544 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2013-10-22 12:36:45 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2013-10-19 05:45:45 62976 ----a-w- C:\Windows\System32\imagehlp.dll
.
============= FINISH: 19:53:54.59 ===============
Now, the attached zip thingy if I've done it right...
View attachment attach.zip
On a side note, I was using Google Chrome, my usual browser, to access this website, but after downloading and running the programs asked to by this site, I suddenly could not access this website anymore. I loaded it from bookmark, typed in the address, etc and nothing worked. Google Chrome kept asking me "did I mean _____" (insert exactly the website address I typed or selected there) but nothing worked. I had to close Chrome and open IE to get back to this site. Google Chrome says either the page being down or malicious stuff causes this to happen. I didn't backup my registry entries or whatever they are with that program you guys advised because it is not supported by Windows 8. I noticed you guys asked us to let you know if you can't use that program so here's the notification.
Thanks for your time.