DDS File:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.17280 BrowserJavaVersion: 10.51.2
Run by admin at 10:26:49 on 2014-11-04
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.2038.760 [GMT -6:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\atiesrxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
c:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
c:\Program Files\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\CyberPower PowerPanel Personal Edition\ppped.exe
C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Program Files\Pwrchute\ups.exe
C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\CyberPower PowerPanel Personal Edition\pppeuser.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Windows\system\HsMgr.exe
C:\Program Files\Brownie\BrStsWnd.exe
C:\Program Files\ASUS Xonar DG Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Brownie\Brnipmon.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microtek\ScanWizard 5\ScannerFinder.exe
C:\Users\clay\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\UI0Detect.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy 2\SDHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: AcroIEToolbarHelper Class: {AE7CD045-E861-484f-8273-0445EE161910} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
uRun: [updateMgr] c:\program files\adobe\acrobat 7.0\acrobat\AdobeUpdateManager.exe AcPro7_0_0
uRun: [WinPatrol] c:\program files\billp studios\winpatrol\winpatrol.exe -expressboot
uRun: [Spybot-S&D Cleaning] "c:\program files\spybot - search & destroy 2\SDCleaner.exe" /autoclean
mRun: [PowerPanel Personal Edition User Interaction] c:\program files\cyberpower powerpanel personal edition\pppeuser.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [ContentTransferWMDetector.exe] c:\program files\sony\content transfer\ContentTransferWMDetector.exe
mRun: [Cmaudio8788] RunDll32 cmicnfgp.cpl,CMICtrlWnd
mRun: [Cmaudio8788GX] c:\windows\system\HsMgr.exe Envoke
mRun: [BrStsWnd] c:\program files\brownie\BrstsWnd.exe Autorun
mRun: [Brdefprn] c:\program files\brother\brhl3070\Brdefprn.exe -d
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Adobe Version Cue CS2] c:\program files\adobe\adobe version cue cs2\controlpanel\VersionCueCS2Tray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobea~1.lnk - c:\windows\installer\{ac76ba86-1033-f400-7760-100000000002}\SC_Acrobat.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\microt~1.lnk - c:\program files\microtek\scanwizard 5\ScannerFinder.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy 2\SDHelper.dll
TCP: NameServer = 192.168.0.1 205.171.3.66
TCP: Interfaces\{33515D04-C487-4948-88A3-747F31F757B8} : DHCPNameServer = 192.168.0.1 205.171.3.66
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\admin\appdata\roaming\mozilla\firefox\profiles\xnpoh7le.default\
FF - prefs.js: browser.startup.homepage - about:home
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.25.5\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_15_0_0_189.dll
FF - plugin: c:\windows\system32\wat\npWatWeb.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.irmysearch.aflt - dnldstr_14_14_ff
FF - user.js: extensions.irmysearch.instlRef - 140305_a
FF - user.js: extensions.irmysearch.cr - 984936944
FF - user.js: extensions.irmysearch.cd - 2XzuyEtN2Y1L1QzutDtDtAtDyCyBtA0E0AtB0C0FtCyEyD0FtN0D0Tzu0SzztBtBtN1L2XzutBtFtCzztFzztFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyEzztA0ByByDtBtCtGzyyDtA0DtGyByDtCtAtGtCtCtC0BtGtC0ByCyE0CyEyE0FyEtCyCtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBtAtCyB0E0D0DtBtGtCzyyCtDtGyB0DzzyEtGtCyE0BtAtGyB0CyCzztA0CyBtDtAtCyByC2Q
FF - user.js: extensions.mysearchdial.hmpg - true
FF - user.js: extensions.mysearchdial.hmpgUrl - hxxp://start.mysearchdial.com/?f=1&a=dn ... 936944&ir=
FF - user.js: extensions.mysearchdial.dfltSrch - true
FF - user.js: extensions.mysearchdial.srchPrvdr - Mysearchdial
FF - user.js: extensions.mysearchdial.dnsErr - true
FF - user.js: extensions.mysearchdial_i.newTab - false
FF - user.js: extensions.mysearchdial.newTabUrl - hxxp://start.mysearchdial.com/?f=2&a=dn ... 936944&ir=
FF - user.js: extensions.mysearchdial.tlbrSrchUrl - hxxp://start.mysearchdial.com/?f=3&a=dn ... 944&ir=&q=
FF - user.js: extensions.mysearchdial.id - 0030673EA2CF145F
FF - user.js: extensions.mysearchdial.instlDay - 16161
FF - user.js: extensions.mysearchdial.vrsn - 1.8.29.0
FF - user.js: extensions.mysearchdial.vrsni - 1.8.29.0
FF - user.js: extensions.mysearchdial_i.vrsnTs - 1.8.29.011:26:28
FF - user.js: extensions.mysearchdial.prtnrId - mysearchdial
FF - user.js: extensions.mysearchdial.prdct - mysearchdial
FF - user.js: extensions.mysearchdial.aflt - dnldstr_14_14_ff
FF - user.js: extensions.mysearchdial_i.smplGrp - none
FF - user.js: extensions.mysearchdial.tlbrId - base
FF - user.js: extensions.mysearchdial.instlRef - 140305_a
FF - user.js: extensions.mysearchdial.dfltLng -
FF - user.js: extensions.mysearchdial.appId - {CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
FF - user.js: extensions.mysearchdial.excTlbr - false
FF - user.js: extensions.mysearchdial.cr - 984936944
FF - user.js: extensions.mysearchdial.cd - 2XzuyEtN2Y1L1QzutDtDtAtDyCyBtA0E0AtB0C0FtCyEyD0FtN0D0Tzu0SzztBtBtN1L2XzutBtFtCzztFzztFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyEzztA0ByByDtBtCtGzyyDtA0DtGyByDtCtAtGtCtCtC0BtGtC0ByCyE0CyEyE0FyEtCyCtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBtAtCyB0E0D0DtBtGtCzyyCtDtGyB0DzzyEtGtCyE0BtAtGyB0CyCzztA0CyBtDtAtCyByC2Q
FF - user.js: extensions.mysearchdial.AL - 2
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2013-3-19 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2013-3-19 192352]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-1-31 779536]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2013-1-31 414520]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-12-6 209408]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-10-3 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-1-31 67824]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-10-3 71944]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-10-3 50344]
R2 Freemake Improver;Freemake Improver;c:\programdata\freemake\freemakeutilsservice\FreemakeUtilsService.exe [2014-1-8 108032]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-1-31 418376]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-1-31 701512]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\spybot - search & destroy 2\SDFSSvc.exe [2013-2-27 1103392]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\spybot - search & destroy 2\SDUpdSvc.exe [2013-2-27 1369624]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\spybot - search & destroy 2\SDWSCSvc.exe [2013-2-27 168384]
R3 cmudaxp;ASUS Xonar DG Audio Interface;c:\windows\system32\drivers\cmudaxp.sys [2014-2-7 1760256]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-1-31 22856]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-3-1 139776]
R3 SCTDriverV1011;SCTDriverV1011;c:\windows\system32\drivers\sctdriverv1011.sys [2011-12-12 202800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [2013-2-11 32896]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-9-12 108032]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-10-19 32928]
S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [2014-4-1 13464]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2013-1-31 1343400]
.
=============== Created Last 30 ================
.
2014-11-02 20:09:50 398336 ----a-w- c:\windows\system32\TVWizudlg.exe
2014-11-02 20:09:50 140288 ----a-w- c:\windows\system32\igfxtvcx.dll
2014-11-02 20:09:50 -------- d-----w- c:\windows\system32\Lang
2014-11-02 19:59:27 1002008 ----a-w- c:\windows\system32\igxpun.exe
2014-11-02 19:40:40 -------- d-----w- c:\program files\Microsoft ASP.NET
2014-10-31 16:58:18 8901368 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{9c39e8f8-65c3-4478-a50c-e838bae280ba}\mpengine.dll
2014-10-20 16:55:55 -------- d-----w- c:\program files\coolpro2
2014-10-20 04:04:19 -------- d-----w- c:\users\admin\appdata\local\ATI
2014-10-20 04:02:46 0 ----a-w- c:\windows\ativpsrm.bin
2014-10-20 03:59:23 -------- d-----w- c:\programdata\AMD
2014-10-20 03:56:43 -------- d-----w- c:\program files\AMD
2014-10-20 03:56:35 995342 ----a-w- c:\windows\system32\amdocl_as32.exe
2014-10-20 03:56:35 83968 ----a-w- c:\windows\system32\OpenVideo.dll
2014-10-20 03:56:35 798734 ----a-w- c:\windows\system32\amdocl_ld32.exe
2014-10-20 03:56:35 57344 ----a-w- c:\windows\system32\OpenCL.dll
2014-10-20 03:56:35 24860160 ----a-w- c:\windows\system32\amdocl.dll
2014-10-20 03:56:35 200704 ----a-w- c:\windows\system32\clinfo.exe
2014-10-20 03:56:35 114688 ----a-w- c:\windows\system32\coinst_13.251.dll
2014-10-20 03:56:34 73728 ----a-w- c:\windows\system32\OVDecode.dll
2014-10-20 03:56:00 -------- d-----w- c:\program files\common files\ATI Technologies
2014-10-20 03:54:32 -------- d-----w- c:\programdata\Package Cache
2014-10-19 22:17:01 -------- d-----w- c:\programdata\NVIDIA Corporation
2014-10-19 22:16:21 32928 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2014-10-19 22:16:21 32416 ----a-w- c:\windows\system32\nvaudcap32v.dll
2014-10-19 22:14:47 -------- d-----w- C:\NVIDIA
2014-10-11 21:13:45 -------- d-----w- c:\windows\Downloaded Installations
2014-10-08 00:03:35 -------- d-----w- C:\rei
2014-10-07 23:57:10 835584 ----a-w- c:\windows\system32\NCTAudioCDGrabber2.dll
2014-10-07 23:57:10 450560 ----a-w- c:\windows\system32\NCTAudioTransform2.dll
2014-10-07 23:57:10 335872 ----a-w- c:\windows\system32\NCTAudioVisualization2.dll
2014-10-07 23:57:10 315392 ----a-w- c:\windows\system32\NCTAudioPlayer2.dll
2014-10-07 23:57:10 270336 ----a-w- c:\windows\system32\NCTAudioDisplay2.dll
2014-10-07 23:57:10 237568 ----a-w- c:\windows\system32\lame_enc.dll
2014-10-07 23:57:10 196608 ----a-w- c:\windows\system32\NCTWMAFile2.dll
2014-10-07 23:57:10 1843200 ----a-w- c:\windows\system32\NCTAudioFile2.dll
2014-10-07 23:57:10 1040384 ----a-w- c:\windows\system32\NCTAudioInformation2.dll
2014-10-07 23:57:09 4057200 ----a-w- c:\windows\system32\wmfdist.exe
2014-10-07 23:57:09 -------- d-----w- c:\program files\FreeCDRipper
2014-10-07 19:29:22 -------- d-----w- c:\users\admin\appdata\roaming\AVAST Software
.
==================== Find3M ====================
.
2014-11-03 16:42:10 13464 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2014-10-28 11:35:00 229000 ------w- c:\windows\system32\MpSigStub.exe
2014-10-18 23:12:40 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-10-18 23:12:40 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-10-03 14:45:01 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-10-03 14:45:01 779536 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-10-03 14:45:01 71944 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-10-03 14:45:01 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-10-03 14:45:01 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-10-03 14:45:01 43152 ----a-w- c:\windows\avastSS.scr
2014-10-03 14:45:01 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-10-03 14:45:01 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-09-25 01:40:50 519680 ----a-w- c:\windows\system32\qdvd.dll
2014-09-13 21:17:43 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2014-09-13 21:17:43 102400 ----a-w- c:\windows\system32\OpenAL32.dll
2014-09-09 21:47:10 2048 ----a-w- c:\windows\system32\tzres.dll
2014-09-05 01:52:10 445952 ----a-w- c:\windows\system32\aepdu.dll
2014-09-05 01:47:39 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-08-23 01:46:55 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-08-23 00:42:53 2352640 ----a-w- c:\windows\system32\win32k.sys
2014-08-18 22:08:55 4232704 ----a-w- c:\windows\system32\jscript9.dll
2014-08-18 21:57:44 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-08-18 21:57:30 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-08-18 21:46:26 454656 ----a-w- c:\windows\system32\vbscript.dll
2014-08-18 21:45:23 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-08-18 21:44:44 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-08-18 21:44:09 61952 ----a-w- c:\windows\system32\MshtmlDac.dll
2014-08-18 21:36:07 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-08-18 21:36:05 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-08-18 21:35:24 597504 ----a-w- c:\windows\system32\jscript9diag.dll
2014-08-18 21:30:29 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-08-18 21:22:48 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2014-08-18 21:08:54 2014208 ----a-w- c:\windows\system32\inetcpl.cpl
2014-08-18 21:07:44 1068032 ----a-w- c:\windows\system32\mshtmlmedia.dll
2014-08-18 20:46:48 1812992 ----a-w- c:\windows\system32\wininet.dll
.
============= FINISH: 10:28:47.78 ===============
Attach File:
NLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume4
Install Date: 1/31/2013 1:15:42 PM
System Uptime: 11/4/2014 9:37:59 AM (1 hours ago)
.
Motherboard: BIOSTAR Group | | G31-M7 TE
Processor: Pentium(R) Dual-Core CPU E5300 @ 2.60GHz | CPU 1 | 2615/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 466 GiB total, 65.729 GiB free.
D: is FIXED (NTFS) - 112 GiB total, 49.428 GiB free.
E: is FIXED (NTFS) - 932 GiB total, 492.653 GiB free.
F: is FIXED (NTFS) - 56 GiB total, 30.529 GiB free.
H: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e96c-e325-11ce-bfc1-08002be10318}
Description: AnvSoft Virtual Sound Device
Device ID: ROOT\MEDIA\0000
Manufacturer: AnvSoft Inc.
Name: AnvSoft Virtual Sound Device
PNP Device ID: ROOT\MEDIA\0000
Service: anvsnddrv
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
7-Zip 9.20
ABBYY FineReader 4.0 Sprint
Adobe Acrobat 4.0, 5.0
Adobe Acrobat 7.0 Professional - English, Français, Deutsch
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Creative Suite 2
Adobe Flash Player 15 ActiveX
Adobe Flash Player 15 Plugin
Adobe Help Center 1.0
Adobe Illustrator CS2
Adobe InDesign CS2
Adobe Photoshop CS2
Adobe Reader XI (11.0.09)
Adobe Stock Photos 1.0
Adobe SVG Viewer 3.0
Adobe Version Cue CS2
AMD Catalyst Install Manager
AMD Wireless Display v3.0
AnswerWorks 5.0 English Runtime
Any Video Recorder version 1.0.2
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ASUS Xonar DG Audio Driver
AutoUpdate
avast! Free Antivirus
Binreader
Brother HL-3070CW
calibre
Catalyst Control Center InstallProxy
Common
Content Transfer
Contents
Cool Edit Pro 2.0
Corel VideoStudio Essentials X4
CyberPower PowerPanel Personal Edition 1.3.3
Data Lifeguard Diagnostic for Windows 1.24
Detroit Iron Information Systems
DeviceIO
DiskCheckup v3.2
DivX
Driver Support
DriverUpdate
DVD Identifier
Easycalculationnew
eCalc Calculator
Extended Update
Free CD Ripper 3.1
Freemake Video Converter version 4.1.4
GIMP 2.8.4
Google Earth
Google Update Helper
HandBrake 0.9.8
ICA
Intel(R) Graphics Media Accelerator Driver
Intel(R) TV Wizard
Internet Explorer Toolbar 4.7 by SweetPacks
IPM_VS_Pro
ISCOM
iTunes
Java 7 Update 13
Java 7 Update 51
Java Auto Updater
Malwarebytes Anti-Malware version 1.75.0.1300
MediaFACE
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4.5.1
Microsoft ASP.NET MVC 4 Runtime
Microsoft Calculator Plus
Microsoft PowerPoint Viewer 97
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
Mozilla Firefox 33.0.2 (x86 en-US)
Mozilla Maintenance Service
Mp4 to Mpeg Converter 1.0
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MyDVD-VR Recorder
NWZ-E350 WALKMAN Guide
OpenAL
OpenOffice.org 3.4.1
Password Safe
PC Wizard 2013.2.12
PowerChute plus 5.2
PureHD
Quicken 2008
QuickTime 7
Replay Video Capture 6
Roxio Drag-to-Disc
Roxio Easy Media Creator 9 Suite
ScanWizard 5
SCT Device Updater
SCTDriversV1011x86
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Setup
Share
SightSpeed (remove only)
Sonic MyDVD-VR
Spybot - Search & Destroy
Suite Specific
System Requirements Lab Detection
ViewSonic Monitor Drivers
VIO
Visioneer PaperPort Viewer 5.0
VLC media player 2.0.5
VSClassic
VSPro
Windows 7 Codec Pack 4.0.7
Windows Media Encoder 9 Series
WinPatrol
Xingtone Ringtone Maker
Yahoo Browser Settings
.
==== Event Viewer Messages From Past Week ========
.
11/4/2014 9:38:55 AM, Error: atapi [11] - The driver detected a controller error on \Device\Ide\IdePort3.
11/4/2014 9:38:37 AM, Error: Service Control Manager [7000] - The ASPI32 service failed to start due to the following error: The system cannot find the file specified.
11/4/2014 9:38:05 AM, Error: Application Popup [876] - Driver DLACDBHM.SYS has been blocked from loading.
11/4/2014 9:30:16 AM, Error: Service Control Manager [7023] - The Windows Modules Installer service terminated with the following error: The request could not be performed because of an I/O device error.
11/3/2014 8:53:23 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the RasMan service.
11/3/2014 8:52:53 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MMCSS service.
11/3/2014 8:52:44 AM, Error: Microsoft-Windows-Kernel-General [6] - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file): '\??\C:\Users\clay\AppData\Local\Microsoft\Windows\UsrClass.dat'.
11/3/2014 8:52:23 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service.
11/3/2014 8:51:53 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Appinfo service.
11/3/2014 8:21:11 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Security Update for Windows 7 (KB2984972).
11/3/2014 8:21:11 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2968294).
11/3/2014 8:21:11 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Cumulative Security Update for Internet Explorer 11 for Windows 7 (KB2987107).
11/3/2014 8:21:10 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Update for Windows 7 (KB2952664).
11/3/2014 8:21:10 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Security Update for Windows 7 (KB3000061).
11/3/2014 8:21:10 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Security Update for Windows 7 (KB2977292).
11/3/2014 8:21:10 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2979570).
11/3/2014 8:21:10 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2972100).
11/3/2014 7:58:06 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Update for Windows 7 (KB3000988).
11/3/2014 7:56:33 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8007045d: Security Update for Windows 7 (KB3000869).
11/3/2014 7:41:49 AM, Error: Service Control Manager [7023] -
11/3/2014 5:58:59 PM, Error: Microsoft-Windows-Kernel-General [6] - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file): ''.
11/3/2014 11:18:39 AM, Error: volsnap [14] - The shadow copies of volume C: were aborted because of an IO failure on volume C:.
11/3/2014 10:30:35 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avast! Antivirus service.
11/3/2014 10:29:44 AM, Error: Service Control Manager [7043] - The Windows Update service did not shut down properly after receiving a preshutdown control.
11/3/2014 10:18:49 AM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {7D1933CB-86F6-4A98-8628-01BE94C9A575} and APPID {F290BFB2-1864-45B1-8804-2654194A87E7} to the user ottersea\clay SID (S-1-5-21-3128821885-2795174726-813518338-1007) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
11/2/2014 8:12:20 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
11/2/2014 2:33:37 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Freemake Improver service to connect.
11/2/2014 2:33:37 PM, Error: Service Control Manager [7000] - The Freemake Improver service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/2/2014 2:03:28 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Security Update for Windows 7 (KB3000061).
11/2/2014 2:00:30 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2979570).
11/2/2014 11:55:44 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
11/2/2014 1:50:07 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2972100).
11/2/2014 1:49:48 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Security Update for Windows 7 (KB2977292).
11/2/2014 1:49:37 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Cumulative Security Update for Internet Explorer 11 for Windows 7 (KB2987107).
11/2/2014 1:44:00 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2968294).
11/2/2014 1:43:53 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Security Update for Windows 7 (KB2984972).
11/2/2014 1:41:11 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070bc9: Security Update for Windows 7 (KB3000869).
11/1/2014 3:17:48 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Software Protection service to connect.
11/1/2014 3:17:48 PM, Error: Service Control Manager [7000] - The Software Protection service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/1/2014 3:17:04 PM, Error: Schannel [36887] - The following fatal alert was received: 40.
11/1/2014 3:11:22 PM, Error: volsnap [25] - The shadow copies of volume C: were deleted because the shadow copy storage could not grow in time. Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.
.
==== End Of File ===========================