(DDS Log)
.
DDS (Ver_2011-06-23.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Anthony II at 15:56:42 on 2011-07-11
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8190.6366 [GMT -5:00]
.
AV: Symantec Endpoint Protection *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Symantec Endpoint Protection *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Symantec Endpoint Protection *Enabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\PROGRAM FILES (X86)\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\SMC.EXE
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\PROGRAM FILES (X86)\DEVICEVM\BROWSER CONFIGURATION UTILITY\BCUSERVICE.EXE
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
C:\PROGRAM FILES (X86)\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\RTVSCAN.EXE
C:\Windows\system32\viakaraokesrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\SYSTEM32\SEARCHINDEXER.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\SYSTEM32\TASKHOST.EXE
C:\WINDOWS\SYSTEM32\DWM.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\DAODx.exe
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAM FILES\ASUS\TURBOV EVO\TURBOVHELP.EXE
C:\Windows\System32\rundll32.exe
C:\PROGRAM FILES (X86)\STEAM\STEAM.EXE
C:\PROGRAM FILES (X86)\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\SMCGUI.EXE
C:\PROGRAM FILES (X86)\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\PROTECTIONUTILSURROGATE.EXE
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\PROGRAM FILES (X86)\DEVICEVM\BROWSER CONFIGURATION UTILITY\BCU.EXE
C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe
C:\PROGRAM FILES (X86)\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\SYSTEM32\WBEM\WMIPRVSE.EXE
C:\Windows\system32\AMBSpiE.exe
C:\PROGRAM FILES (X86)\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE
C:\PROGRAM FILES\WINDOWS MEDIA PLAYER\WMPNETWK.EXE
C:\Windows\System32\svchost.exe -k secsvcs
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK64\V3.0\WPF\PRESENTATIONFONTCACHE.EXE
C:\Users\Anthony II\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anthony II\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Anthony II\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Anthony II\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Groove Folder Synchronization: {78151236-2eb6-5ccd-3e06-5abb6b4365a8} - C:\Windows\SysWow64\KBDTIPPRC.DLL
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
TB: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [Google Update] "C:\Users\Anthony II\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [VolPanel] "C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
mRun: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
mRun: [ccApp] "C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [AmazonGSDownloaderTray] C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderTray.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
LSP: mswsock.dll
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwar ... /CTPID.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{C7D44E9D-F26A-4653-9893-18FBA59D5A3A} : DhcpNameServer = 192.168.0.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 consrv:ConServerDllInitialization,2 sxssrv,4
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO-X64: Groove Folder Synchronization: {78151236-2EB6-5CCD-3E06-5ABB6B4365A8} - C:\Windows\SysWow64\KBDTIPPRC.DLL
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
TB-X64: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun-x64: [VolPanel] "C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r
mRun-x64: [UpdReg] C:\Windows\UpdReg.EXE
mRun-x64: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun-x64: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun-x64: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
mRun-x64: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
mRun-x64: [ccApp] "C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [AmazonGSDownloaderTray] C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderTray.exe
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-5-24 365568]
R2 BCUService;Browser Configuration Utility Service;C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-26 223464]
R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]
R2 RadeonPro Support Service;RadeonPro Support Service;C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [2011-5-21 12800]
R2 Symantec AntiVirus;Symantec Endpoint Protection;C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe [2009-11-10 2477304]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\system32\viakaraokesrv.exe --> C:\Windows\system32\viakaraokesrv.exe [?]
R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-6-29 136824]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\system32\DRIVERS\usbfilter.sys --> C:\Windows\system32\DRIVERS\usbfilter.sys [?]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]
R3 VMfilt;VMfilt;C:\Windows\system32\drivers\VMfilt64.sys --> C:\Windows\system32\drivers\VMfilt64.sys [?]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys --> C:\Windows\system32\DRIVERS\yk62x64.sys [?]
R4 sp_rsdrv2;Spyware Terminator Driver Filter;C:\Windows\system32\DRIVERS\stflt.sys --> C:\Windows\system32\DRIVERS\stflt.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 Amazon Download Agent;Amazon Download Agent;C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe [2011-7-2 401920]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2011-5-21 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-5-21 79360]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-3-25 51456888]
S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\system32\DRIVERS\MijXfilt.sys --> C:\Windows\system32\DRIVERS\MijXfilt.sys [?]
S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 AODService;AODService;C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [2010-7-1 136616]
.
=============== Created Last 30 ================
.
2011-07-09 02:01:11 -------- d-----w- C:\Users\Anthony II\AppData\Local\ElevatedDiagnostics
2011-07-06 18:28:56 8873296 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{822CFA26-5861-4F05-8D43-430FEEFDEE57}\mpengine.dll
2011-07-06 17:58:37 -------- d-----w- C:\Program Files (x86)\WinClamAVShield
2011-07-05 18:09:17 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2011-07-05 18:09:17 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2011-07-05 17:23:59 1700352 ----a-w- C:\Windows\SysWow64\gdiplus.dll
2011-07-05 17:21:12 -------- d-----we C:\Windows\system64
2011-07-05 04:24:18 406528 ----a-w- C:\Windows\SysWow64\ReWire.dll
2011-07-05 04:24:18 338432 ----a-w- C:\Windows\SysWow64\REX Shared Library.dll
2011-07-05 03:09:44 -------- d-----w- C:\Program Files (x86)\Rocket Division Software
2011-07-05 03:04:21 -------- d-----w- C:\ProgramData\Propellerhead Software
2011-07-05 03:04:16 -------- d-----w- C:\Users\Anthony II\AppData\Roaming\Propellerhead Software
2011-07-05 03:02:55 -------- d-----w- C:\Program Files (x86)\Propellerhead
2011-07-04 23:20:36 -------- d-----w- C:\Program Files (x86)\SpeedFan
2011-07-03 06:17:52 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll
2011-07-03 05:59:50 -------- d-----w- C:\Windows\pss
2011-07-03 05:34:07 -------- d-----w- C:\Program Files (x86)\Natural Mod
2011-07-02 14:26:23 -------- d-----w- C:\ProgramData\Amazon
2011-07-02 14:25:57 -------- d-----w- C:\Program Files (x86)\Amazon
2011-07-01 22:22:30 -------- d-----w- C:\Windows\SysWow64\2029
2011-06-29 20:21:31 -------- dc-h--w- C:\ProgramData\{1A677C8B-80B4-4F82-9993-B82FB9D8B903}
2011-06-29 18:12:06 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2011-06-29 18:12:06 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2011-06-29 18:12:06 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2011-06-29 18:12:06 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2011-06-29 18:12:06 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2011-06-23 21:06:44 -------- d-----w- C:\Windows\SysWow64\xlive
2011-06-23 17:24:40 -------- d-----w- C:\Users\Anthony II\AppData\Local\SKIDROW
2011-06-23 14:05:15 -------- d-----w- C:\Program Files (x86)\Bethesda Softworks
2011-06-23 13:36:10 -------- d-----w- C:\Users\Anthony II\AppData\Roaming\Philipp Winterberg
2011-06-23 13:36:07 -------- d-----w- C:\Program Files (x86)\RarZilla Free Unrar
2011-06-22 14:26:50 -------- d-----w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2011-06-22 12:44:16 255552 ----a-w- C:\Windows\SysWow64\drivers\mcdbus.sys
2011-06-22 12:44:16 255552 ----a-w- C:\Windows\System32\drivers\mcdbus.sys
2011-06-22 12:44:15 -------- d-----w- C:\Program Files (x86)\MagicDisc
2011-06-16 20:11:49 499200 ----a-w- C:\Windows\System32\drivers\afd.sys
2011-06-16 20:11:49 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2011-06-16 20:11:39 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-06-16 20:11:39 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2011-06-16 20:11:39 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2011-06-16 20:11:34 3135488 ----a-w- C:\Windows\System32\win32k.sys
2011-06-16 20:11:27 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2011-06-16 20:11:27 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2011-06-16 20:11:27 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2011-06-16 20:11:23 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2011-06-16 20:11:23 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2011-06-16 20:11:17 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2011-06-16 20:11:17 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2011-06-16 02:25:50 -------- d-----w- C:\Program Files (x86)\AMD APP
2011-06-16 02:21:49 6847488 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2011-06-16 02:21:49 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll
2011-06-16 02:21:48 52736 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2011-06-16 02:21:48 52736 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2011-06-16 02:21:47 309760 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2011-06-16 02:21:27 3810816 ----a-w- C:\Windows\System32\atiumd6a.dll
2011-06-16 02:21:18 688128 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2011-06-16 02:20:56 8489472 ----a-w- C:\Windows\System32\aticaldd64.dll
2011-06-16 02:20:29 5486592 ----a-w- C:\Windows\System32\atiumd64.dll
2011-06-16 02:20:10 485376 ----a-w- C:\Windows\System32\atieclxx.exe
2011-06-16 02:20:10 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2011-06-16 02:20:06 38912 ----a-w- C:\Windows\System32\atiu9p64.dll
2011-06-16 02:20:06 32768 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2011-06-16 02:20:01 16384 ----a-w- C:\Windows\System32\atimuixx.dll
2011-06-16 02:19:52 462848 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2011-06-16 02:19:48 12800 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2011-06-16 02:19:48 12800 ----a-w- C:\Windows\System32\atiglpxx.dll
2011-06-16 02:19:46 356352 ----a-w- C:\Windows\SysWow64\atipdlxx.dll
2011-06-16 02:19:41 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2011-06-16 02:19:38 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2011-06-16 02:19:18 4330496 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2011-06-16 02:19:09 204288 ----a-w- C:\Windows\System32\atiesrxx.exe
2011-06-16 02:18:41 423424 ----a-w- C:\Windows\System32\atipdl64.dll
2011-06-16 02:18:32 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2011-06-16 02:18:00 17940992 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2011-06-16 02:17:53 4219904 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2011-06-16 02:17:33 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2011-06-16 02:17:27 9359872 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2011-06-16 02:17:20 1113088 ----a-w- C:\Windows\System32\atiumd6v.dll
2011-06-16 02:17:18 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2011-06-16 02:17:17 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2011-06-16 02:17:11 1828864 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
2011-06-16 02:17:06 14848 ----a-w- C:\Windows\System32\atig6pxx.dll
2011-06-16 02:17:03 23336960 ----a-w- C:\Windows\System32\atio6axx.dll
2011-06-16 02:17:01 53760 ----a-w- C:\Windows\System32\atimpc64.dll
2011-06-16 02:17:01 53760 ----a-w- C:\Windows\System32\amdpcom64.dll
2011-06-16 02:16:54 31744 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2011-06-16 02:16:53 4017152 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2011-06-16 02:16:43 151552 ----a-w- C:\Windows\System32\atiapfxx.exe
2011-06-16 02:16:40 39936 ----a-w- C:\Windows\System32\atig6txx.dll
2011-06-16 02:16:33 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2011-06-15 21:31:10 2434856 ----a-w- C:\Windows\SysWow64\pbsvc_bc2.exe
2011-06-15 18:53:58 4005936 ----a-w- C:\Windows\SysWow64\GameMon.des
2011-06-15 18:53:38 5174 ----a-w- C:\Windows\SysWow64\nppt9x.vxd
2011-06-15 18:53:38 4682 ----a-w- C:\Windows\SysWow64\npptNT2.sys
2011-06-15 18:53:15 -------- d-----w- C:\Program Files\Common Files\INCA Shared
.
==================== Find3M ====================
.
2011-07-11 20:40:50 99384 ----a-w- C:\Users\Anthony II\AppData\Roaming\inst.exe
2011-07-11 20:40:50 82816 ----a-w- C:\Users\Anthony II\AppData\Roaming\pcouffin.sys
2011-07-03 03:33:29 103736 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2011-07-03 03:33:23 669184 ----a-w- C:\Windows\SysWow64\pbsvc.exe
2011-07-03 03:33:23 66872 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2011-07-02 02:00:03 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-06-22 00:46:05 280768 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2011-06-22 00:45:09 215128 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2011-06-16 02:22:04 811008 ----a-w- C:\Windows\System32\aticfx64.dll
2011-06-16 02:21:47 29184 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2011-06-16 02:20:20 40960 ----a-w- C:\Windows\System32\atiuxp64.dll
2011-06-16 02:17:15 5008384 ----a-w- C:\Windows\System32\atidxx64.dll
2011-06-16 02:17:05 262144 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2011-06-16 02:16:53 58880 ----a-w- C:\Windows\System32\coinst.dll
2011-06-16 02:16:38 366592 ----a-w- C:\Windows\System32\atiadlxx.dll
2011-05-30 13:42:51 240640 ----a-w- C:\Windows\SysWow64\xvidvfw.dll
2011-05-30 13:42:35 255488 ----a-w- C:\Windows\System32\xvidvfw.dll
2011-05-27 21:06:46 82816 ----a-w- C:\Windows\System32\drivers\pcouffin.sys
2011-05-25 04:44:30 61952 ----a-w- C:\Windows\System32\OVDecode64.dll
2011-05-25 04:44:26 59904 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2011-05-25 04:44:04 16672768 ----a-w- C:\Windows\System32\amdocl64.dll
2011-05-25 04:43:50 12798976 ----a-w- C:\Windows\SysWow64\amdocl.dll
2011-05-25 00:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-05-23 09:52:08 153088 ----a-w- C:\Windows\SysWow64\xvid.ax
2011-05-23 07:49:41 173568 ----a-w- C:\Windows\System32\xvid.ax
2011-05-23 07:46:31 645632 ----a-w- C:\Windows\SysWow64\xvidcore.dll
2011-05-23 07:45:39 696832 ----a-w- C:\Windows\System32\xvidcore.dll
2011-05-22 04:42:21 172592 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2011-05-22 03:50:01 0 ----a-w- C:\Windows\ativpsrm.bin
2011-05-22 02:08:19 466456 ----a-w- C:\Windows\System32\wrap_oal.dll
2011-05-22 02:08:19 444952 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
2011-05-22 02:08:19 122904 ----a-w- C:\Windows\System32\OpenAL32.dll
2011-05-22 02:08:19 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2011-05-05 06:27:58 51712 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2011-05-04 05:25:03 2315776 ----a-w- C:\Windows\System32\tquery.dll
2011-05-04 05:22:25 778752 ----a-w- C:\Windows\System32\mssvp.dll
2011-05-04 05:22:25 2223616 ----a-w- C:\Windows\System32\mssrch.dll
2011-05-04 05:22:24 75264 ----a-w- C:\Windows\System32\msscntrs.dll
2011-05-04 05:22:24 491520 ----a-w- C:\Windows\System32\mssph.dll
2011-05-04 05:22:24 288256 ----a-w- C:\Windows\System32\mssphtb.dll
2011-05-04 05:19:28 591872 ----a-w- C:\Windows\System32\SearchIndexer.exe
2011-05-04 05:19:28 249856 ----a-w- C:\Windows\System32\SearchProtocolHost.exe
2011-05-04 05:19:28 113664 ----a-w- C:\Windows\System32\SearchFilterHost.exe
2011-05-04 04:34:43 1549312 ----a-w- C:\Windows\SysWow64\tquery.dll
2011-05-04 04:32:02 666624 ----a-w- C:\Windows\SysWow64\mssvp.dll
2011-05-04 04:32:01 337408 ----a-w- C:\Windows\SysWow64\mssph.dll
2011-05-04 04:32:01 197120 ----a-w- C:\Windows\SysWow64\mssphtb.dll
2011-05-04 04:32:01 1401344 ----a-w- C:\Windows\SysWow64\mssrch.dll
2011-05-04 04:32:00 59392 ----a-w- C:\Windows\SysWow64\msscntrs.dll
2011-05-04 04:28:31 86528 ----a-w- C:\Windows\SysWow64\SearchFilterHost.exe
2011-05-04 04:28:31 427520 ----a-w- C:\Windows\SysWow64\SearchIndexer.exe
2011-05-04 04:28:31 164352 ----a-w- C:\Windows\SysWow64\SearchProtocolHost.exe
2011-04-23 01:29:25 2303488 ----a-w- C:\Windows\System32\jscript9.dll
2011-04-23 01:19:19 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2011-04-22 23:35:56 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll
2011-04-22 23:25:54 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-04-22 22:15:29 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2011-04-20 03:10:22 53760 ----a-w- C:\Windows\System32\OpenCL.dll
.
============= FINISH: 15:57:13.53 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-23.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 5/20/2011 10:34:07 PM
System Uptime: 7/11/2011 3:19:35 PM (0 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | Crosshair IV Formula
Processor: AMD Phenom(tm) II X6 1100T Processor | AM3 | 3863/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 1863 GiB total, 1597.766 GiB free.
D: is CDROM (CDFS)
E: is FIXED (NTFS) - 0 GiB total, 0.07 GiB free.
F: is Removable
G: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Windows Firewall Authorization Driver
Device ID: ROOT\LEGACY_MPSDRV\0000
Manufacturer:
Name: Windows Firewall Authorization Driver
PNP Device ID: ROOT\LEGACY_MPSDRV\0000
Service: mpsdrv
.
==== System Restore Points ===================
.
RP65: 7/5/2011 2:20:24 PM - Spyware Terminator - restore point
RP66: 7/6/2011 8:16:51 PM - Spyware Terminator - restore point
RP67: 7/8/2011 8:34:36 PM - Spyware Terminator - restore point
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader X (10.1.0)
Alliance of Valiant Arms
Amazon Games & Software Downloader
AMD OverDrive
AMD USB Filter Driver
AMD VISION Engine Control Center
America's Army 3
Application Profiles
ARMA 2 Operation Arrowhead Uninstall
ASIO4ALL
Battlefield: Bad Company™ 2
BioShock
BioShock 2
Browser Configuration Utility
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
CCC Help English
Crysis 2(R) Mod SDK 1.0
Crysis Warhead
Crysis Wars
Crysis(R)
Crysis® 2
EA Download Manager
EPU
Extreme Immersive Mod version 3.0.87
FL Studio 10
GameSpy Comrade
Google Chrome
Grab & Burn, Version 4.0.1 ( Build 2005-09-21, Win32, CSS )
Half-Life 2: Lost Coast
HandBrake 0.9.5
IL Download Manager
JMicron JMB36X Driver
Left 4 Dead 2
LiveUpdate 3.3 (Symantec Corporation)
MagicDisc 2.7.106
Marvell Miniport Driver
Microsoft .NET Framework 1.1
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Silverlight
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MSI Afterburner 2.2.0 Beta 4
MSI Kombustor 2.0.0
Natural Mod
NVIDIA PhysX
Platform
PoiZone
Portal 2
PunkBuster Services
RadeonPro 1.0 (Build 1.1.0.6)
RarZilla Free Unrar
Renesas Electronics USB 3.0 Host Controller Driver
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Sound Blaster X-Fi MB
SpeedFan (remove only)
Steam
Toxic Biohazard
TurboV EVO
Ultra-Res Nanosuit Configuration Utility
VIA Platform Device Manager
VLC media player 1.1.9
Xvid Video Codec
.
==== Event Viewer Messages From Past Week ========
.
7/8/2011 8:43:14 PM, Error: Microsoft-Windows-DNS-Client [1012] - There was an error while attempting to read the local hosts file.
7/6/2011 8:14:48 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
7/6/2011 8:14:37 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
7/6/2011 10:26:17 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0xfffff8a00fadc8e8, 0x0000000000000002, 0x0000000000000000, 0xfffff880010d5039). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 070611-37877-01.
7/4/2011 3:08:40 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000003b (0x00000000c0000005, 0xfffff960001248a2, 0xfffff8800dc8bcc0, 0x0000000000000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 070411-31059-01.
7/4/2011 2:33:31 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffffa80fffff890, 0x0000000000000000, 0xfffff88004d31236, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 070411-33181-01.
7/4/2011 10:20:02 PM, Error: cdrom [11] - The driver detected a controller error on \Device\CdRom1.
7/11/2011 3:20:15 PM, Error: Service Control Manager [7001] - The Windows Firewall service depends on the Windows Firewall Authorization Driver service which failed to start because of the following error: Cannot create a file when that file already exists.
7/11/2011 3:20:15 PM, Error: Service Control Manager [7000] - The Windows Firewall Authorization Driver service failed to start due to the following error: Cannot create a file when that file already exists.
7/11/2011 2:31:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
7/11/2011 2:30:17 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
7/11/2011 2:30:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
7/11/2011 2:30:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
7/11/2011 2:30:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
7/11/2011 2:30:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
7/11/2011 2:30:10 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
7/11/2011 2:30:05 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
7/11/2011 2:29:51 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AsIO DfsC discache eeCtrl NetBIOS NetBT nsiproxy Psched rdbss spldr SRTSP SRTSPX tdx Wanarpv6 WfpLwf WPS
7/11/2011 2:29:50 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
7/11/2011 2:29:50 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
7/11/2011 2:29:50 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
7/11/2011 2:29:50 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
7/11/2011 2:29:50 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
7/11/2011 2:29:50 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
7/11/2011 2:29:48 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
7/11/2011 2:29:48 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
7/11/2011 2:29:48 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
7/11/2011 2:29:48 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
7/11/2011 2:29:48 PM, Error: Service Control Manager [7001] - The Creative Audio Service service depends on the Windows Audio service which failed to start because of the following error: The dependency service or group failed to start.
7/11/2011 2:29:48 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0xfffff8a0060fdc38, 0x0000000000000002, 0x0000000000000000, 0xfffff880010e1039). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 071111-24882-01.
7/10/2011 9:06:03 PM, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for ImagePath with the following error: Access is denied.
7/10/2011 7:38:57 PM, Error: Service Control Manager [7031] - The Symantec Endpoint Protection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
.
==== End Of File ===========================