{"id":8961,"date":"2021-11-30T11:18:39","date_gmt":"2021-11-30T11:18:39","guid":{"rendered":"https:\/\/lgildv5i97.onrocket.site\/answers\/?post_type=question&p=8961"},"modified":"2021-11-30T11:25:55","modified_gmt":"2021-11-30T11:25:55","slug":"can-anyone-help-me-with-this-replicating-virus","status":"publish","type":"question","link":"https:\/\/computing.net\/answers\/security\/can-anyone-help-me-with-this-replicating-virus\/39277.html","title":{"rendered":"Can Anyone Help Me With This REPLICATING VIRUS?"},"content":{"rendered":"

I also have the same problem. I am using windows 8. Here are the logs that came up after I ran the DDS. Please help. Thanks<\/p>\n

.
\nUNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
\nIF REQUESTED, ZIP IT UP & ATTACH IT
\n.
\nDDS (Ver_2012-11-20.01)
\n.
\nMicrosoft Windows 8 Pro
\nBoot Device: \\Device\\HarddiskVolume1
\nInstall Date: 12\/5\/2012 2:40:32 AM
\nSystem Uptime: 8\/1\/2013 10:14:59 PM (19 hours ago)
\n.
\nMotherboard: ASUSTeK COMPUTER INC. | | K55VD
\nProcessor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz | SOCKET 0 | 2301\/100mhz
\n.
\n==== Disk Partitions =========================
\n.
\nC: is FIXED (NTFS) – 279 GiB total, 0.001 GiB free.
\nD: is FIXED (NTFS) – 394 GiB total, 116.566 GiB free.
\nE: is CDROM ()
\nF: is CDROM ()
\nG: is FIXED (NTFS) – 932 GiB total, 764.43 GiB free.
\n.
\n==== Disabled Device Manager Items =============
\n.
\nClass GUID:
\nDescription:
\nDevice ID: USB\\VID_13D3&PID;_3362\\ALASKA_DAY_2006
\nManufacturer:
\nName:
\nPNP Device ID: USB\\VID_13D3&PID;_3362\\ALASKA_DAY_2006
\nService:
\n.
\n==== System Restore Points ===================
\n.
\nNo restore point in system.
\n.
\n==== Installed Programs ======================
\n.
\n???? ??? Windows Live
\n???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ???????
\n???? Windows Live
\n??????? Windows Live Mesh ActiveX ??(????)
\n??????? Windows Live Mesh ActiveX ???
\n????????? ActiveX ?? Windows Live Mesh ????????????????????????? (???)
\n\u00b5Torrent
\nAdobe Flash Player 10 Plugin
\nAdobe Reader X (10.1.7) MUI
\nAkamai NetSession Interface
\nApple Application Support
\nApple Mobile Device Support
\nApple Software Update
\nAsk Toolbar
\nAssassin’s Creed \u00ae III
\nASUS AI Recovery
\nASUS FaceLogon
\nASUS Instant Connect
\nASUS InstantOn
\nASUS LifeFrame3
\nASUS Live Update
\nASUS Power4Gear Hybrid
\nASUS Smart Gesture
\nASUS Splendid Video Enhancement Technology
\nASUS USB Charger Plus
\nASUS Virtual Camera
\nASUS Virtual Touch
\nASUS WebStorage
\nASUSDVD
\nAsusVibe2.0
\nATK Package
\nAutoCAD 2013 – English
\nAutoCAD 2013 Language Pack – English
\nAutodesk Content Service
\nAutodesk Content Service Language Pack
\nAutodesk Design Review 2013
\nAutodesk Inventor Fusion 2013
\nAutodesk Inventor Fusion plug-in for AutoCAD 2013
\nAutodesk Inventor Fusion plug-in language pack for AutoCAD 2013
\nAutodesk Material Library 2013
\nAutodesk Material Library Base Resolution Image Library 2013
\nAutodesk Sync
\nBattle Realms
\nBing Bar
\nBlueStacks Notification Center
\nBonjour
\nBubbletown
\nCall of Duty Black Ops II
\nCombined Community Codec Pack 2012-12-30
\nCompany of Heroes 2
\nContr\u00f4le ActiveX Windows Live Mesh pour connexions \u00e0 distance
\nControl ActiveX de Windows Live Mesh para conexiones remotas
\nControle ActiveX do Windows Live Mesh para Conex\u00f5es Remotas
\nCrysis\u00ae 2
\nCrysis\u00ae 3
\nCyberLink LabelPrint
\nCyberLink Media Suite
\nCyberLink Power2Go
\nD3DX10
\nDAEMON Tools Lite
\nDead Island Riptide 1.1.0
\nDead Space\u2122 3
\nDeadtime Stories
\nDefaultTab
\nDishonored
\nDream Day First Home
\nDream Vacation Solitaire
\nEVGA Precision X 4.0.0
\nFacebook Video Calling 1.2.0.287
\nFar Cry 3
\nFarm Frenzy 3 – Madagascar
\nFARO LS 1.1.406.58
\nFIFA 13 Crack
\nFront Mission Evolved
\nGalapago
\nGalerie de photos Windows Live
\nGaler\u00eda fotogr\u00e1fica de Windows Live
\nGame Park Console
\nGarena – Heroes of Newerth
\nGarena Plus
\nGo Go Gourmet Chef of the Year
\nGoogle Chrome
\nGoogle Update Helper
\nGrand Theft Auto IV
\nHitman Absolution
\nIntel(R) Manageability Engine Firmware Recovery Agent
\nIntel(R) Management Engine Components
\nIntel(R) Processor Graphics
\nIntel(R) PROSet\/Wireless Software for Bluetooth(R) Technology
\nIntel\u00ae Trusted Connect Service Client
\niTunes
\nJava 7 Update 25
\nJava Auto Updater
\nJunk Mail filter update
\nMahjong Memoirs
\nMass Effect 3
\nMesh Runtime
\nMetro: Last Light (c) Deep Silver version 1
\nMicrosoft Application Error Reporting
\nMicrosoft Games for Windows – LIVE Redistributable
\nMicrosoft Office 2010
\nMicrosoft Office Click-to-Run 2010
\nMicrosoft Office Starter 2010 – English
\nMicrosoft PowerPoint Viewer
\nMicrosoft Save as PDF Add-in for 2007 Microsoft Office programs
\nMicrosoft Silverlight
\nMicrosoft SQL Server 2005 Compact Edition [ENU]
\nMicrosoft Visual C++ 2005 Redistributable
\nMicrosoft Visual C++ 2005 Redistributable (x64)
\nMicrosoft Visual C++ 2008 Redistributable – x64 9.0.30729.17
\nMicrosoft Visual C++ 2008 Redistributable – x64 9.0.30729.4148
\nMicrosoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161
\nMicrosoft Visual C++ 2008 Redistributable – x86 9.0.21022
\nMicrosoft Visual C++ 2008 Redistributable – x86 9.0.30729.17
\nMicrosoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148
\nMicrosoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161
\nMicrosoft Visual C++ 2010 x64 Redistributable – 10.0.40219
\nMicrosoft Visual C++ 2010 x86 Redistributable – 10.0.40219
\nMicrosoft WSE 3.0 Runtime
\nMozilla Firefox 22.0 (x86 en-US)
\nMozilla Maintenance Service
\nMSVCRT
\nMSVCRT_amd64
\nmyBitCast 1.0.0.3
\nNBA 2K13
\nNBA 2K13 Crack
\nNeed for Speed\u2122 Carbon
\nNVIDIA Control Panel 326.19
\nNVIDIA GeForce Experience 1.6
\nNVIDIA Graphics Driver 326.19
\nNVIDIA Install Application
\nNVIDIA Optimus 7.2.17
\nNVIDIA PhysX
\nNVIDIA PhysX System Software 9.13.0604
\nNVIDIA Update 7.2.17
\nNVIDIA Update Components
\nNVIDIA Virtual Audio 1.2.1
\nOpenAL
\nPlants vs Zombies
\nPunkBuster Services
\nQualcomm Atheros Bluetooth Suite (64)
\nQualcomm Atheros Client Installation Program
\nQualcomm Atheros WiFi Driver Installation
\nRealtek Ethernet Controller Driver
\nRealtek High Definition Audio Driver
\nRealtek PCIE Card Reader
\nSceneSwitch
\nSecure Download Manager
\nSHIELD Streaming
\nSilent Hill Homecoming
\nSkype Click to Call
\nSkype\u2122 6.5
\nSniper: Ghost Warrior 2
\nSpec Ops The Line
\nSpeedFan (remove only)
\nStar Wars: The Force Unleashed 2
\nSteam
\nSystem Requirements Lab CYRI
\nThe Sims\u2122 3
\nTitanium Internet Security
\nTom Clancy’s H.A.W.X. 2
\nTomb Raider
\nTrend Micro Titanium
\nTurbo Fiesta
\nUplay
\nuTorrentControl_v2 Toolbar
\nUzak Baglantilar I\u00e7in Windows Live Mesh ActiveX Denetimi
\nViber
\nVirtualDJ Home FREE
\nVLC media player 2.0.5
\nWebCake 3.00
\nWindows Driver Package – ASUS (ATP) Mouse (10\/29\/2012 1.0.0.148)
\nWindows Live
\nWindows Live ???
\nWindows Live ????
\nWindows Live Communications Platform
\nWindows Live Essentials
\nWindows Live Family Safety
\nWindows Live Fotograf Galerisi
\nWindows Live Galeria de Fotos
\nWindows Live ID Sign-in Assistant
\nWindows Live Installer
\nWindows Live Language Selector
\nWindows Live Mail
\nWindows Live Mesh
\nWindows Live Mesh ActiveX Control for Remote Connections
\nWindows Live Messenger
\nWindows Live MIME IFilter
\nWindows Live Movie Maker
\nWindows Live Photo Common
\nWindows Live Photo Gallery
\nWindows Live PIMT Platform
\nWindows Live Remote Client
\nWindows Live Remote Client Resources
\nWindows Live Remote Service
\nWindows Live Remote Service Resources
\nWindows Live SOXE
\nWindows Live SOXE Definitions
\nWindows Live Temel Par\u00e7alar
\nWindows Live UX Platform
\nWindows Live UX Platform Language Pack
\nWindows Live Writer
\nWindows Live Writer Resources
\nWinFlash
\nWinRAR 4.20 (32-bit)
\nWinRAR 4.20 (64-bit)
\nWireless Console 3
\nWorld of Goo
\nYahoo! Messenger
\n.
\n==== Event Viewer Messages From Past Week ========
\n.
\n8\/2\/2013 3:02:27 AM, Error: Schannel [36888] – A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
\n8\/1\/2013 8:48:04 PM, Error: Service Control Manager [7022] – The Intel(R) Management and Security Application User Notification Service service hung on starting.
\n8\/1\/2013 10:18:18 PM, Error: Service Control Manager [7009] – A timeout was reached (30000 milliseconds) while waiting for the Trend Micro Solution Platform service to connect.
\n8\/1\/2013 10:18:18 PM, Error: Service Control Manager [7000] – The Trend Micro Solution Platform service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
\n8\/1\/2013 10:17:26 PM, Error: Service Control Manager [7024] – The HomeGroup Listener service terminated with the following service-specific error: There are no more endpoints available from the endpoint mapper.
\n8\/1\/2013 10:17:20 PM, Error: Service Control Manager [7034] – The DefaultTabSearch service terminated unexpectedly. It has done this 1 time(s).
\n8\/1\/2013 10:16:25 PM, Error: Service Control Manager [7000] – The Globe Tattoo Broadband. OUC service failed to start due to the following error: The system cannot find the file specified.
\n8\/1\/2013 10:14:30 PM, Error: Service Control Manager [7011] – A timeout (30000 milliseconds) was reached while waiting for a transaction response from the FontCache3.0.0.0 service.
\n7\/31\/2013 10:12:32 PM, Error: Microsoft-Windows-DistributedCOM [10016] – The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user NT AUTHORITY\\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
\n7\/30\/2013 8:26:40 PM, Error: Service Control Manager [7009] – A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
\n7\/30\/2013 8:26:40 PM, Error: Service Control Manager [7000] – The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
\n.
\n==== End Of File ===========================<\/p>\n

AND THIS IS THE OTHER===============<\/p>\n

DDS (Ver_2012-11-20.01) – NTFS_AMD64
\nInternet Explorer: 10.0.9200.16453 BrowserJavaVersion: 10.25.2
\nRun by john edmund at 17:07:11 on 2013-08-02
\nMicrosoft Windows 8 Pro 6.2.9200.0.1252.63.1033.18.3982.1259 [GMT 8:00]
\n.
\nAV: Titanium Internet Security *Enabled\/Updated* {B7599298-8445-728A-A5C7-A26A082C8BDA}
\nAV: Windows Defender *Disabled\/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
\nSP: Titanium Internet Security *Enabled\/Updated* {0C38737C-A27F-7D04-9F77-991873ABC167}
\nSP: Windows Defender *Disabled\/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
\n.
\n============== Running Processes ===============
\n.
\nC:\\WINDOWS\\system32\\svchost.exe -k DcomLaunch
\nC:\\WINDOWS\\system32\\nvvsvc.exe
\nC:\\WINDOWS\\system32\\svchost.exe -k RPCSS
\nC:\\WINDOWS\\System32\\svchost.exe -k LocalServiceNetworkRestricted
\nC:\\WINDOWS\\system32\\svchost.exe -k netsvcs
\nC:\\WINDOWS\\system32\\dwm.exe
\nC:\\WINDOWS\\system32\\svchost.exe -k LocalService
\nC:\\Program Files\\NVIDIA Corporation\\Display\\nvxdsync.exe
\nC:\\WINDOWS\\system32\\nvvsvc.exe
\nC:\\WINDOWS\\System32\\svchost.exe -k LocalSystemNetworkRestricted
\nC:\\WINDOWS\\system32\\svchost.exe -k NetworkService
\nC:\\WINDOWS\\system32\\svchost.exe -k LocalServiceNoNetwork
\nC:\\Program Files (x86)\\ASUS\\ATK Package\\ATK Hotkey\\ASLDRSrv.exe
\nC:\\Program Files (x86)\\ASUS\\ATK Package\\ATKGFNEX\\GFNEXSrv.exe
\nC:\\WINDOWS\\System32\\spoolsv.exe
\nC:\\WINDOWS\\system32\\svchost.exe -k LocalServiceAndNoImpersonation
\nC:\\WINDOWS\\SysWOW64\\rundll32.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS InstantOn\\InsOnCfg.exe
\nC:\\Program Files (x86)\\ASUS\\ATK Package\\ATK Hotkey\\HControl.exe
\nC:\\WINDOWS\\system32\\taskhostex.exe
\nC:\\WINDOWS\\system32\\taskeng.exe
\nC:\\WINDOWS\\Explorer.EXE
\nC:\\Program Files (x86)\\ASUS\\ATK Package\\ATK Hotkey\\KBFiltr.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS Virtual Touch\\QuickGesture\\x64\\QuickGesture64.exe
\nC:\\WINDOWS\\system32\\taskeng.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS Virtual Touch\\QuickGesture\\x86\\QuickGesture.exe
\nC:\\Program Files (x86)\\ASUS\\USBChargerPlus\\USBChargerPlus.exe
\nC:\\Program Files (x86)\\ASUS\\FaceLogon\\sensorsrv.exe
\nC:\\Program Files\\ASUS\\P4G\\BatteryLife.exe
\nC:\\Program Files (x86)\\ASUS\\ATK Package\\ATKOSD2\\ATKOSD2.exe
\nC:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\armsvc.exe
\nC:\\WINDOWS\\system32\\svchost.exe -k apphost
\nC:\\Program Files (x86)\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceService.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS InstantOn\\InsOnSrv.exe
\nC:\\Program Files (x86)\\Autodesk\\Content Service\\Connect.Service.ContentService.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS InstantOn\\InsOnWMI.exe
\nC:\\Program Files\\NVIDIA Corporation\\Display\\nvtray.exe
\nC:\\Program Files\\Bonjour\\mDNSResponder.exe
\nC:\\Program Files (x86)\\BlueStacks\\HD-LogRotatorService.exe
\nC:\\Users\\john edmund\\AppData\\Roaming\\DefaultTab\\DefaultTab\\DTUpdate.exe
\nC:\\ProgramData\\DatacardService\\HWDeviceService64.exe
\nC:\\WINDOWS\\system32\\dashost.exe
\nC:\\ProgramData\\DatacardService\\DCSHelper.exe
\nC:\\Program Files\\Intel\\iCLS Client\\HeciServer.exe
\nC:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\FWService\\IntelMeFWService.exe
\nC:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\DAL\\jhi_service.exe
\nC:\\WINDOWS\\system32\\mqsvc.exe
\nC:\\Program Files\\NVIDIA Corporation\\NvStreamSrv\\nvstreamsvc.exe
\nC:\\Program Files (x86)\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe
\nC:\\Program Files\\NVIDIA Corporation\\NvStreamSrv\\nvstreamsvc.exe
\nC:\\WINDOWS\\SysWOW64\\PnkBstrA.exe
\nC:\\Program Files (x86)\\Microsoft Application Virtualization Client\\sftvsa.exe
\nC:\\ProgramData\\Skype\\Toolbars\\Skype C2C Service\\c2c_service.exe
\nC:\\WINDOWS\\system32\\svchost.exe -k imgsvc
\nC:\\WINDOWS\\system32\\svchost.exe -k iissvcs
\nC:\\Program Files (x86)\\WebCake\\WebCakeDesktop.Updater.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS Live Update\\LiveUpdate.exe
\nC:\\WINDOWS\\Microsoft.NET\\Framework64\\v4.0.30319\\SMSvcHost.exe
\nC:\\WINDOWS\\system32\\wbem\\wmiprvse.exe
\nC:\\Program Files (x86)\\NVIDIA Corporation\\NVIDIA Update Core\\ComUpdatus.exe
\nC:\\WINDOWS\\Microsoft.NET\\Framework64\\v4.0.30319\\SMSvcHost.exe
\nC:\\Program Files (x86)\\Microsoft Application Virtualization Client\\sftlist.exe
\nC:\\Program Files (x86)\\Common Files\\Microsoft Shared\\Virtualization Handler\\CVHSVC.EXE
\nC:\\WINDOWS\\system32\\SearchIndexer.exe
\nC:\\WINDOWS\\system32\\svchost.exe -k NetworkServiceNetworkRestricted
\nC:\\WINDOWS\\System32\\svchost.exe -k LocalServicePeerNet
\nC:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe
\nC:\\Program Files (x86)\\Bluetooth Suite\\BtTray.exe
\nC:\\Program Files (x86)\\Bluetooth Suite\\BtvStack.exe
\nC:\\Program Files (x86)\\NVIDIA Corporation\\NVIDIA Update Core\\NvTmru.exe
\nC:\\Windows\\System32\\igfxtray.exe
\nC:\\Windows\\System32\\hkcmd.exe
\nC:\\Windows\\System32\\igfxpers.exe
\nC:\\Users\\john edmund\\AppData\\Local\\Akamai\\netsession_win.exe
\nD:\\uTorrent.exe
\nC:\\Users\\john edmund\\AppData\\Roaming\\WebCake\\WebCakeDesktop.exe
\nD:\\STEAM\\Steam.exe
\nC:\\Users\\john edmund\\AppData\\Local\\Akamai\\netsession_win.exe
\nC:\\WINDOWS\\SysWOW64\\WScript.exe
\nC:\\Program Files (x86)\\Ask.com\\Updater\\Updater.exe
\nC:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe
\nC:\\Program Files (x86)\\BlueStacks\\HD-Agent.exe
\nC:\\Program Files (x86)\\Intel\\Bluetooth\\devmonsrv.exe
\nC:\\Program Files (x86)\\Intel\\Bluetooth\\obexsrv.exe
\nC:\\Program Files (x86)\\Realtek\\Realtek PCIE Card Reader\\RIconMan.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS Smart Gesture\\AsTPCenter\\x64\\AsusTPLoader.exe
\nC:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\LMS\\LMS.exe
\nC:\\Program Files (x86)\\Common Files\\Steam\\SteamService.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS Smart Gesture\\AsTPCenter\\x64\\AsusTPCenter.exe
\nC:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\UNS\\UNS.exe
\nC:\\Program Files\\Windows Media Player\\wmpnetwk.exe
\nC:\\WINDOWS\\system32\\AdminService.exe
\nC:\\Program Files (x86)\\ASUS\\ASUS Smart Gesture\\AsTPCenter\\x64\\AsusTPHelper.exe
\nC:\\WINDOWS\\Microsoft.Net\\Framework64\\v3.0\\WPF\\PresentationFontCache.exe
\nC:\\Program Files (x86)\\Microsoft\\BingBar\\7.1.391.0\\SeaPort.exe
\nC:\\Program Files (x86)\\NVIDIA Corporation\\NVIDIA GeForce Experience\\GFExperience.exe
\nC:\\Program Files\\iPod\\bin\\iPodService.exe
\nC:\\Program Files (x86)\\Yahoo!\\Messenger\\ymsgr_tray.exe
\nC:\\Program Files (x86)\\BlueStacks\\HD-Frontend.exe
\nC:\\Program Files (x86)\\BlueStacks\\HD-Service.exe
\nC:\\Program Files (x86)\\BlueStacks\\HD-Network.exe
\nC:\\Program Files (x86)\\BlueStacks\\HD-BlockDevice.exe
\nC:\\Program Files (x86)\\BlueStacks\\HD-SharedFolder.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\CCleaner64.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\Program Files (x86)\\Java\\jre7\\bin\\jp2launcher.exe
\nC:\\Program Files (x86)\\Java\\jre7\\bin\\java.exe
\nC:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe
\nC:\\WINDOWS\\system32\\wbem\\wmiprvse.exe
\nC:\\WINDOWS\\System32\\cscript.exe
\n.
\n============== Pseudo HJT Report ===============
\n.
\nuStart Page = hxxp:\/\/www.delta-search.com\/?affID=119776&babsrc;=HP_ss&mntrId;=E0945E85DE320805
\nuDefault_Page_URL = hxxp:\/\/asus.msn.com
\nuProxyOverride = <local>;*.local
\nuURLSearchHooks: {c95a4e8e-816d-4655-8c79-d736da1adb6d} – <orphaned>
\nuURLSearchHooks: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} – C:\\Program Files (x86)\\uTorrentControl_v2\\prxtbuTor.dll
\nmURLSearchHooks: {c95a4e8e-816d-4655-8c79-d736da1adb6d} – <orphaned>
\nmWinlogon: Userinit = userinit.exe
\nBHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20004\\2.0.1361\\6.8.1078\\TmIEPlg32.dll
\nBHO: WebCake: {2A5A2A90-3B30-4E6E-A955-2F232C6EF517} – C:\\Program Files (x86)\\WebCake\\WebCakeIEClient.dll
\nBHO: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} – C:\\Program Files (x86)\\uTorrentControl_v2\\prxtbuTor.dll
\nBHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} – C:\\Program Files (x86)\\Java\\jre7\\bin\\ssv.dll
\nBHO: DefaultTab Browser Helper: {7F6AFBF1-E065-4627-A2FD-810366367D01} – C:\\Users\\john edmund\\AppData\\Roaming\\DefaultTab\\DefaultTab\\DefaultTabBHO.dll
\nBHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} – LocalServer32 – <no file>
\nBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} – C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer\\skypeieplugin.dll
\nBHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20002\\7.1.1104\\7.1.1104\\TmBpIe32.dll
\nBHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} – C:\\Program Files (x86)\\Microsoft\\BingBar\\7.1.391.0\\BingExt.dll
\nBHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} – C:\\Program Files (x86)\\Ask.com\\GenericAskToolbar.dll
\nBHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} – C:\\Program Files (x86)\\Java\\jre7\\bin\\jp2ssv.dll
\nTB: uTorrentControl_v2 Toolbar: {7473B6BD-4691-4744-A82B-7854EB3D70B6} – C:\\Program Files (x86)\\uTorrentControl_v2\\prxtbuTor.dll
\nTB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} – C:\\Program Files (x86)\\Ask.com\\GenericAskToolbar.dll
\nTB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} –
\nTB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} – LocalServer32 – <no file>
\nTB: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} – C:\\Program Files (x86)\\uTorrentControl_v2\\prxtbuTor.dll
\nTB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} – C:\\Program Files (x86)\\Ask.com\\GenericAskToolbar.dll
\nuRun: [Akamai NetSession Interface] “C:\\Users\\john edmund\\AppData\\Local\\Akamai\\netsession_win.exe”
\nuRun: [DAEMON Tools Lite] “C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe” -autorun
\nuRun: [GarenaPlus] “C:\\Program Files (x86)\\Garena Plus\\GarenaMessenger.exe” -autolaunch
\nuRun: [uTorrent] “D:\\uTorrent.exe” \/MINIMIZED
\nuRun: [Skype] “C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe” \/minimized \/regrun
\nuRun: [Viber] “C:\\Users\\john edmund\\AppData\\Local\\Viber\\Viber.exe” StartMinimized
\nuRun: [WebCake Desktop] “C:\\Users\\john edmund\\AppData\\Roaming\\WebCake\\WebCakeDesktop.exe”
\nuRun: [Steam] “D:\\STEAM\\Steam.exe” -silent
\nmRun: [APSDaemon] “C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe”
\nmRun: [Adobe] C:\\ProgramData\\Adobe\\97C3E8D.vbe
\nmRun: [Adobe ARM] “C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe”
\nmRun: [ApnUpdater] “C:\\Program Files (x86)\\Ask.com\\Updater\\Updater.exe”
\nmRun: [iTunesHelper] “D:\\iTunesHelper.exe”
\nmRun: [SunJavaUpdateSched] “C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe”
\nmRun: [BlueStacks Agent] C:\\Program Files (x86)\\BlueStacks\\HD-Agent.exe
\nStartupFolder: C:\\Users\\john edmund\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\PowerReg Scheduler.exe
\nuPolicies-Explorer: NoDriveTypeAutoRun = dword:145
\nmPolicies-Explorer: HideSCAHealth = dword:1
\nIE: Send to Bluetooth – C:\\Program Files (x86)\\Intel\\Bluetooth\\btSendToObject.htm
\nIE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} – {5F7B1267-94A9-47F5-98DB-E99415F33AEC} – C:\\Program Files (x86)\\Windows Live\\Writer\\WriterBrowserExtension.dll
\nIE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} – {898EA8C8-E7FF-479B-8935-AEC46303B9E5} – C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer\\skypeieplugin.dll
\nTCP: NameServer = 121.1.3.81 121.1.3.16 121.1.3.66
\nTCP: Interfaces\\{201133BC-8A28-40D4-971F-FCF0C071A237} : DHCPNameServer = 121.1.3.81 121.1.3.16 121.1.3.66
\nTCP: Interfaces\\{4DD3553D-20B8-4533-9519-84E946BA014C}\\05C44445D4974435C4 : DHCPNameServer = 192.168.1.1
\nTCP: Interfaces\\{4DD3553D-20B8-4533-9519-84E946BA014C}\\24F4747435 : DHCPNameServer = 192.168.1.1 192.168.1.1
\nTCP: Interfaces\\{4DD3553D-20B8-4533-9519-84E946BA014C}\\44D4050545F425255435 : DHCPNameServer = 192.168.0.1
\nTCP: Interfaces\\{4DD3553D-20B8-4533-9519-84E946BA014C}\\6796275737030373 : DHCPNameServer = 121.1.3.81 121.1.3.16 121.1.3.66
\nTCP: Interfaces\\{4DD3553D-20B8-4533-9519-84E946BA014C}\\C696E6B6379737 : DHCPNameServer = 192.168.1.1
\nTCP: Interfaces\\{4DD3553D-20B8-4533-9519-84E946BA014C}\\D4140555140264275656027596D26696 : DHCPNameServer = 8.8.8.8
\nTCP: Interfaces\\{4DD3553D-20B8-4533-9519-84E946BA014C}\\F40756E6752747 : DHCPNameServer = 192.168.1.1
\nHandler: skype-ie-addon-data – {91774881-D725-4E58-B298-07617B9B86A8} – C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer\\skypeieplugin.dll
\nHandler: skype4com – {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} – C:\\Program Files (x86)\\Common Files\\Skype\\Skype4COM.dll
\nHandler: tmbp – {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20002\\7.1.1104\\7.1.1104\\TmBpIe32.dll
\nHandler: tmpx – {0E526CB5-7446-41D1-A403-19BFE95E8C23} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20004\\2.0.1361\\6.8.1078\\TmIEPlg32.dll
\nHandler: wlpg – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} – C:\\Program Files (x86)\\Windows Live\\Photo Gallery\\AlbumDownloadProtocolHandler.dll
\nAppInit_DLLs= C:\\WINDOWS\\SysWOW64\\nvinit.dll, C:\\PROGRA~2\\NVIDIA~1\\NVSTRE~1\\rxinput.dll
\nSSODL: WebCheck – <orphaned>
\nmASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} – “C:\\Program Files (x86)\\Google\\Chrome\\Application\\28.0.1500.72\\Installer\\chrmstp.exe” –configure-user-settings –verbose-logging –system-level –multi-install –chrome
\nx64-mStart Page = hxxp:\/\/asus.msn.com
\nx64-BHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20004\\2.0.1361\\6.8.1078\\TmIEPlg.dll
\nx64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} – LocalServer32 – <no file>
\nx64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} – C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer x64\\skypeieplugin.dll
\nx64-BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20002\\7.1.1104\\7.1.1104\\TmBpIe64.dll
\nx64-BHO: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} – <orphaned>
\nx64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} – LocalServer32 – <no file>
\nx64-Run: [Trend Micro Client Framework] “C:\\Program Files\\Trend Micro\\UniClient\\UiFrmWrk\\UIWatchDog.exe”
\nx64-Run: [Trend Micro Titanium] “C:\\Program Files\\Trend Micro\\Titanium\\UIFramework\\uiWinMgr.exe” -set Silent “1” SplashURL “”
\nx64-Run: [Autodesk Sync] C:\\Program Files\\Autodesk\\Autodesk Sync\\AdSync.exe
\nx64-Run: [RTHDVCPL] C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s
\nx64-Run: [BtTray] “C:\\Program Files (x86)\\Bluetooth Suite\\BtTray.exe”
\nx64-Run: [BtvStack] “C:\\Program Files (x86)\\Bluetooth Suite\\BtvStack.exe”
\nx64-Run: [Nvtmru] “C:\\Program Files (x86)\\NVIDIA Corporation\\NVIDIA Update Core\\nvtmru.exe”
\nx64-Run: [IgfxTray] C:\\WINDOWS\\System32\\igfxtray.exe
\nx64-Run: [HotKeysCmds] C:\\WINDOWS\\System32\\hkcmd.exe
\nx64-Run: [Persistence] C:\\WINDOWS\\System32\\igfxpers.exe
\nx64-mPolicies-Explorer: HideSCAHealth = dword:1
\nx64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} – {898EA8C8-E7FF-479B-8935-AEC46303B9E5} – C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer x64\\skypeieplugin.dll
\nx64-Handler: skype-ie-addon-data – {91774881-D725-4E58-B298-07617B9B86A8} – C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer x64\\skypeieplugin.dll
\nx64-Handler: skype4com – {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} – <orphaned>
\nx64-Handler: tmbp – {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20002\\7.1.1104\\7.1.1104\\TmBpIe64.dll
\nx64-Handler: tmpx – {0E526CB5-7446-41D1-A403-19BFE95E8C23} – C:\\Program Files\\Trend Micro\\AMSP\\module\\20004\\2.0.1361\\6.8.1078\\TmIEPlg.dll
\nx64-Handler: wlpg – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} – <orphaned>
\nx64-Notify: igfxcui – igfxdev.dll
\nx64-SSODL: WebCheck – <orphaned>
\n.
\n================= FIREFOX ===================
\n.
\nFF – ProfilePath – C:\\Users\\john edmund\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\eu8al5sl.default\\
\nFF – prefs.js: browser.search.selectedEngine – Search Here
\nFF – plugin: C:\\PROGRA~2\\MICROS~1\\Office14\\NPSPWRAP.DLL
\nFF – plugin: C:\\Program Files (x86)\\Adobe\\Reader 10.0\\Reader\\AIR\\nppdf32.dll
\nFF – plugin: C:\\Program Files (x86)\\Garena Plus\\bbtalk\\plugins\\npPlugin\\npGarenaTalkPlugin.dll
\nFF – plugin: C:\\Program Files (x86)\\Google\\Update\\1.3.21.153\\npGoogleUpdate3.dll
\nFF – plugin: C:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\IPT\\npIntelWebAPIIPT.dll
\nFF – plugin: C:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\IPT\\npIntelWebAPIUpdater.dll
\nFF – plugin: C:\\Program Files (x86)\\Java\\jre7\\bin\\plugin2\\npjp2.dll
\nFF – plugin: C:\\Program Files (x86)\\Microsoft Silverlight\\4.1.10329.0\\npctrlui.dll
\nFF – plugin: C:\\Program Files (x86)\\Windows Live\\Photo Gallery\\NPWLPG.dll
\nFF – plugin: C:\\Users\\john edmund\\AppData\\Local\\Facebook\\Video\\Skype\\npFacebookVideoCalling.dll
\nFF – plugin: C:\\WINDOWS\\SysWOW64\\npDeployJava1.dll
\nFF – plugin: C:\\WINDOWS\\SysWOW64\\npmproxy.dll
\nFF – plugin: D:\\Mozilla Plugins\\npitunes.dll
\nFF – plugin: D:\\Tom Clancys HAWX 2\\orbitlauncher\\npuplaypc.dll
\nFF – plugin: D:\\Tom Clancys HAWX 2\\orbitlauncher\\npuplaypchub.dll
\nFF – plugin: D:\\VLC\\npvlc.dll
\nFF – ExtSQL: 2013-06-23 23:47; torntv2@torntv.com; C:\\Users\\john edmund\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\eu8al5sl.default\\extensions\\torntv2@torntv.com.xpi
\nFF – ExtSQL: 2013-06-23 23:48; plugin@getwebcake.com; C:\\Users\\john edmund\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\eu8al5sl.default\\extensions\\plugin@getwebcake.com
\n.
\n—- FIREFOX POLICIES —-
\nFF – user.js: extentions.webcake.installId – 095bfc2a-34c6-47ff-863d-35d78f8b2b24
\nFF – user.js: extentions.webcake.defaultEnableAppsList – layers,brain\/features,newOffers\/wc
\nFF – user.js: extensions.delta.tlbrSrchUrl –
\nFF – user.js: extensions.delta.id – e094a2d20000000000005e85de320805
\nFF – user.js: extensions.delta.appId – {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
\nFF – user.js: extensions.delta.instlDay – 15879
\nFF – user.js: extensions.delta.vrsn – 1.8.21.5
\nFF – user.js: extensions.delta.vrsni – 1.8.21.5
\nFF – user.js: extensions.delta.vrsnTs – 1.8.21.523:48:39
\nFF – user.js: extensions.delta.prtnrId – delta
\nFF – user.js: extensions.delta.prdct – delta
\nFF – user.js: extensions.delta.aflt – babsst
\nFF – user.js: extensions.delta.smplGrp – none
\nFF – user.js: extensions.delta.tlbrId – base
\nFF – user.js: extensions.delta.instlRef – sst
\nFF – user.js: extensions.delta.dfltLng – en
\nFF – user.js: extensions.delta.excTlbr – false
\nFF – user.js: extensions.delta.ffxUnstlRst – true
\nFF – user.js: extensions.delta.admin – false
\nFF – user.js: extensions.delta_i.babTrack – affID=119776
\nFF – user.js: extensions.delta_i.babExt –
\nFF – user.js: extensions.delta_i.srcExt – ss
\nFF – user.js: extensions.delta.autoRvrt – false
\nFF – user.js: extensions.delta.rvrt – false
\nFF – user.js: extensions.delta.newTab – false
\n.
\n============= SERVICES \/ DRIVERS ===============
\n.
\nR0 nvpciflt;nvpciflt;C:\\WINDOWS\\System32\\Drivers\\nvpciflt.sys [2013-7-19 30496]
\nR1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\\Program Files (x86)\\ASUS\\ATK Package\\ATK WMIACPI\\atkwmiacpi64.sys [2011-9-8 17536]
\nR1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\\WINDOWS\\System32\\Drivers\\dtsoftbus01.sys [2012-12-4 283200]
\nR1 tmevtmgr;tmevtmgr;C:\\WINDOWS\\System32\\Drivers\\tmevtmgr.sys [2012-3-10 77184]
\nR2 ASMMAP64;ASMMAP64;C:\\Program Files (x86)\\ASUS\\ATK Package\\ATKGFNEX\\ASMMAP64.sys [2009-7-3 15416]
\nR2 ASUS InstantOn;ASUS InstantOn Service;C:\\Program Files (x86)\\ASUS\\ASUS InstantOn\\InsOnSrv.exe [2012-4-13 277120]
\nR2 aswFsBlk;aswFsBlk;C:\\WINDOWS\\System32\\Drivers\\aswFsBlk.sys [2012-11-27 25232]
\nR2 aswMonFlt;aswMonFlt;C:\\WINDOWS\\System32\\Drivers\\aswMonFlt.sys [2012-11-27 71064]
\nR2 Autodesk Content Service;Autodesk Content Service;C:\\Program Files (x86)\\Autodesk\\Content Service\\Connect.Service.ContentService.exe [2012-1-31 19232]
\nR2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\\Program Files (x86)\\Intel\\Bluetooth\\devmonsrv.exe [2012-8-27 1112000]
\nR2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\\Program Files (x86)\\Intel\\Bluetooth\\obexsrv.exe [2012-9-6 1124288]
\nR2 BstHdAndroidSvc;BlueStacks Android Service;C:\\Program Files (x86)\\BlueStacks\\HD-Service.exe [2013-7-4 393032]
\nR2 BstHdDrv;BlueStacks Hypervisor;C:\\Program Files (x86)\\BlueStacks\\HD-Hypervisor-amd64.sys [2013-7-4 70984]
\nR2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;C:\\Program Files (x86)\\BlueStacks\\HD-LogRotatorService.exe [2013-7-4 384840]
\nR2 cvhsvc;Client Virtualization Handler;C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\Virtualization Handler\\CVHSVC.EXE [2012-1-4 822624]
\nR2 DefaultTabUpdate;DefaultTabUpdate;C:\\Users\\john edmund\\AppData\\Roaming\\DefaultTab\\DefaultTab\\DTUpdate.exe [2013-3-17 107520]
\nR2 HWDeviceService64.exe;HWDeviceService64.exe;C:\\ProgramData\\DatacardService\\HWDeviceService64.exe [2011-3-14 346976]
\nR2 IconMan_R;IconMan_R;C:\\Program Files (x86)\\Realtek\\Realtek PCIE Card Reader\\RIconMan.exe [2013-1-22 2451456]
\nR2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\\Program Files\\Intel\\iCLS Client\\HeciServer.exe [2011-12-9 607456]
\nR2 Intel(R) ME Service;Intel(R) ME Service;C:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\FWService\\IntelMeFWService.exe [2012-7-31 128280]
\nR2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\DAL\\Jhi_service.exe [2012-7-31 161560]
\nR2 NvStreamSvc;NVIDIA Streamer Service;C:\\Program Files\\NVIDIA Corporation\\NvStreamSrv\\nvstreamsvc.exe [2013-8-1 14984480]
\nR2 sftlist;Application Virtualization Client;C:\\Program Files (x86)\\Microsoft Application Virtualization Client\\sftlist.exe [2011-10-1 508776]
\nR2 Skype C2C Service;Skype C2C Service;C:\\ProgramData\\Skype\\Toolbars\\Skype C2C Service\\c2c_service.exe [2013-7-12 3289472]
\nR2 UNS;Intel(R) Management and Security Application User Notification Service;C:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\UNS\\UNS.exe [2012-7-31 363800]
\nR2 WebCake Desktop Updater;WebCake Desktop Updater;C:\\Program Files (x86)\\WebCake\\WebCakeDesktop.Updater.exe [2013-6-23 23552]
\nR3 AiCharger;ASUS Charger Driver;C:\\WINDOWS\\System32\\Drivers\\AiCharger.sys [2012-7-31 17152]
\nR3 ATP;ASUS PS\/2 Port Input Device;C:\\WINDOWS\\System32\\Drivers\\AsusTP.sys [2012-10-31 61824]
\nR3 BBUpdate;BBUpdate;C:\\Program Files (x86)\\Microsoft\\BingBar\\7.1.391.0\\SeaPort.EXE [2012-6-11 240208]
\nR3 huawei_enumerator;huawei_enumerator;C:\\WINDOWS\\System32\\Drivers\\ew_jubusenum.sys [2013-4-7 87040]
\nR3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\\WINDOWS\\System32\\Drivers\\nvvad64v.sys [2013-8-1 39712]
\nR3 RSBASTOR;Realtek PCIE CardReader Driver – BA;C:\\WINDOWS\\System32\\Drivers\\RtsBaStor.sys [2013-1-22 295056]
\nR3 RTL8168;Realtek 8168 NT Driver;C:\\WINDOWS\\System32\\Drivers\\Rt630x64.sys [2012-6-2 589824]
\nR3 Sftfs;Sftfs;C:\\WINDOWS\\System32\\Drivers\\Sftfslh.sys [2011-10-1 764264]
\nR3 Sftplay;Sftplay;C:\\WINDOWS\\System32\\Drivers\\Sftplaylh.sys [2011-10-1 268648]
\nR3 Sftredir;Sftredir;C:\\WINDOWS\\System32\\Drivers\\Sftredirlh.sys [2011-10-1 25960]
\nR3 Sftvol;Sftvol;C:\\WINDOWS\\System32\\Drivers\\Sftvollh.sys [2011-10-1 22376]
\nR3 sftvsa;Application Virtualization Service Agent;C:\\Program Files (x86)\\Microsoft Application Virtualization Client\\sftvsa.exe [2011-10-1 219496]
\nR4 AtherosSvc;AtherosSvc;C:\\WINDOWS\\System32\\AdminService.exe [2012-8-29 208384]
\nS1 aswSnx;aswSnx;C:\\WINDOWS\\System32\\Drivers\\aswSnx.sys [2012-11-27 958400]
\nS1 aswSP;aswSP;C:\\WINDOWS\\System32\\Drivers\\aswSP.sys [2012-11-27 355856]
\nS1 HssDRV6;Hotspot Shield Routing Driver 6;C:\\WINDOWS\\System32\\Drivers\\hssdrv6.sys [2012-11-15 42248]
\nS2 Amsp;Trend Micro Solution Platform;C:\\Program Files\\Trend Micro\\AMSP\\coreServiceShell.exe [2012-3-10 275912]
\nS2 BBSvc;BingBar Service;C:\\Program Files (x86)\\Microsoft\\BingBar\\7.1.391.0\\BBSvc.EXE [2012-6-11 193616]
\nS2 DefaultTabSearch;DefaultTabSearch;C:\\Program Files (x86)\\DefaultTab\\DefaultTabSearch.exe [2013-2-11 572928]
\nS2 Globe Tattoo Broadband. RunOuc;Globe Tattoo Broadband. OUC;D:\\Globe Tattoo Broadband\\UpdateDog\\ouc.exe –> D:\\Globe Tattoo Broadband\\UpdateDog\\ouc.exe [?]
\nS2 SkypeUpdate;Skype Updater;C:\\Program Files (x86)\\Skype\\Updater\\Updater.exe [2013-6-3 162408]
\nS3 BtFilter;BtFilter;C:\\WINDOWS\\System32\\Drivers\\btfilter.sys [2012-8-29 565760]
\nS3 BthLEEnum;Bluetooth Low Energy Driver;C:\\WINDOWS\\System32\\Drivers\\BthLEEnum.sys [2012-7-26 202752]
\nS3 btmaux;Intel Bluetooth Auxiliary Service;C:\\WINDOWS\\System32\\Drivers\\btmaux.sys [2012-8-27 121728]
\nS3 DrvAgent64;DrvAgent64;C:\\Windows\\SysWOW64\\drivers\\DrvAgent64.SYS [2013-1-22 21712]
\nS3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\\WINDOWS\\System32\\Drivers\\ewusbwwan.sys [2013-4-7 421888]
\nS3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\\Program Files\\Common Files\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService64.exe [2013-1-28 1432400]
\nS3 fssfltr;fssfltr;C:\\WINDOWS\\System32\\Drivers\\fssfltr.sys [2012-3-10 48488]
\nS3 fsssvc;Windows Live Family Safety Service;C:\\Program Files (x86)\\Windows Live\\Family Safety\\fsssvc.exe [2011-5-14 1492840]
\nS3 IntcDAud;Intel(R) Display Audio;C:\\WINDOWS\\System32\\Drivers\\IntcDAud.sys [2012-10-26 342528]
\nS3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\\WINDOWS\\System32\\Drivers\\iusb3hub.sys [2012-5-25 356120]
\nS3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\\WINDOWS\\System32\\Drivers\\iusb3xhc.sys [2012-5-25 787736]
\nS3 USBAAPL64;Apple Mobile USB Driver;C:\\WINDOWS\\System32\\Drivers\\usbaapl64.sys [2012-12-13 54784]
\nS3 vmbusr;Virtual Machine Bus Provider;C:\\WINDOWS\\System32\\Drivers\\vmbusr.sys [2012-7-26 117248]
\nS3 WDC_SAM;WD SCSI Pass Thru driver;C:\\WINDOWS\\System32\\Drivers\\wdcsam64.sys [2008-5-6 14464]
\nS3 WUDFWpdComp;WUDFWpdComp;C:\\WINDOWS\\System32\\Drivers\\WUDFRd.sys [2012-7-26 198656]
\nS3 WUDFWpdMtp;WUDFWpdMtp;C:\\WINDOWS\\System32\\Drivers\\WUDFRd.sys [2012-7-26 198656]
\nS4 wlcrasvc;Windows Live Mesh remote connections service;C:\\Program Files\\Windows Live\\Mesh\\wlcrasvc.exe [2010-9-23 57184]
\n.
\n=============== File Associations ===============
\n.
\nFileExt: .scr: AutoCADScriptFile=C:\\WINDOWS\\System32\\notepad.exe “%1”
\n.
\n=============== Created Last 30 ================
\n.
\n2013-08-01 14:14:34 0 —-a-w- C:\\WINDOWS\\SysWow64\\sho8D0B.tmp
\n2013-08-01 13:09:11 ——– d—–w- C:\\NvidiaLogging
\n2013-08-01 13:07:57 39712 —-a-w- C:\\WINDOWS\\System32\\drivers\\nvvad64v.sys
\n2013-08-01 13:07:57 29984 —-a-w- C:\\WINDOWS\\System32\\nvaudcap64v.dll
\n2013-08-01 13:07:57 28448 —-a-w- C:\\WINDOWS\\SysWow64\\nvaudcap32v.dll
\n2013-08-01 01:10:14 262832 —-a-w- C:\\ProgramData\\Microsoft\\Windows\\Sqm\\Manifest\\Sqm10212.bin
\n2013-07-27 14:16:23 ——– d—–w- C:\\Program Files (x86)\\Common Files\\Steam
\n2013-07-23 09:53:14 ——– d—–w- C:\\Users\\john edmund\\AppData\\Local\\EA Games
\n2013-07-23 07:10:43 ——– d—–w- C:\\ProgramData\\Origin
\n2013-07-22 23:22:29 ——– d–h–w- C:\\Program Files (x86)\\Common Files\\EAInstaller
\n2013-07-18 23:03:11 ——– d—–w- C:\\WINDOWS\\SysWow64\\NV
\n2013-07-18 23:03:11 ——– d—–w- C:\\WINDOWS\\System32\\NV
\n2013-07-16 16:44:40 ——– d—–w- C:\\Program Files (x86)\\BlueStacks
\n2013-07-16 16:44:22 ——– d—–w- C:\\ProgramData\\BlueStacksSetup
\n2013-07-16 16:44:21 ——– d—–w- C:\\ProgramData\\BlueStacks
\n2013-07-12 06:42:18 6129024 —-a-w- C:\\Program Files (x86)\\Mozilla Firefox\\extensions\\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\\components\\SkypeFfComponent.dll
\n2013-07-12 06:42:18 6129024 —-a-w- C:\\Program Files (x86)\\Mozilla Firefox\\browser\\extensions\\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\\components\\SkypeFfComponent.dll
\n2013-07-09 15:08:21 53248 —-a-r- C:\\Users\\john edmund\\AppData\\Roaming\\Microsoft\\Installer\\{9AA761E6-CA51-4FF2-A552-D51638BF0595}\\_F522ED7EA612_4117_B86D_78467DE01E30.exe
\n.
\n==================== Find3M ====================
\n.
\n2013-07-18 10:46:26 281688 —-a-w- C:\\WINDOWS\\SysWow64\\PnkBstrB.xtr
\n2013-07-18 10:46:26 281688 —-a-w- C:\\WINDOWS\\SysWow64\\PnkBstrB.exe
\n2013-07-13 19:49:00 6598432 —-a-w- C:\\WINDOWS\\System32\\nvcpl.dll
\n2013-07-13 19:49:00 3447072 —-a-w- C:\\WINDOWS\\System32\\nvsvc64.dll
\n2013-07-13 19:48:57 911136 —-a-w- C:\\WINDOWS\\System32\\nvvsvc.exe
\n2013-07-13 19:48:57 67072 —-a-w- C:\\WINDOWS\\System32\\nv3dappshextr.dll
\n2013-07-13 19:48:57 63776 —-a-w- C:\\WINDOWS\\System32\\nvshext.dll
\n2013-07-13 19:48:57 2559776 —-a-w- C:\\WINDOWS\\System32\\nvsvcr.dll
\n2013-07-13 19:48:57 219424 —-a-w- C:\\WINDOWS\\System32\\nvmctray.dll
\n2013-07-13 19:48:57 1042208 —-a-w- C:\\WINDOWS\\System32\\nv3dappshext.dll
\n2013-07-13 19:48:55 3274475 —-a-w- C:\\WINDOWS\\System32\\nvcoproc.bin
\n2013-07-09 03:47:12 281688 —-a-w- C:\\WINDOWS\\SysWow64\\PnkBstrB.ex0
\n2013-07-03 02:23:33 96168 —-a-w- C:\\WINDOWS\\SysWow64\\WindowsAccessBridge-32.dll
\n2013-07-03 02:23:32 867240 —-a-w- C:\\WINDOWS\\SysWow64\\npDeployJava1.dll
\n2013-07-03 02:23:32 789416 —-a-w- C:\\WINDOWS\\SysWow64\\deployJava1.dll
\n2013-06-21 17:11:43 76888 —-a-w- C:\\WINDOWS\\SysWow64\\PnkBstrA.exe
\n2013-05-12 21:42:27 1832224 —-a-w- C:\\WINDOWS\\System32\\nvdispco6432018.dll
\n2013-05-12 21:42:27 1511712 —-a-w- C:\\WINDOWS\\System32\\nvdispgenco6432018.dll
\n2013-05-09 02:47:13 0 —-a-w- C:\\WINDOWS\\SysWow64\\sho65C9.tmp
\n.
\n============= FINISH: 17:07:40.92 ===============<\/p>\n

PS: I hope you can help me with this. i will greatly appreciate it. Thank you<\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"iawp_total_views":49},"question-category":[56],"question_tags":[],"class_list":["post-8961","question","type-question","status-publish","hentry","question-category-security"],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/question\/8961","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/question"}],"about":[{"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/types\/question"}],"author":[{"embeddable":true,"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/comments?post=8961"}],"wp:attachment":[{"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/media?parent=8961"}],"wp:term":[{"taxonomy":"question-category","embeddable":true,"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/question-category?post=8961"},{"taxonomy":"question_tags","embeddable":true,"href":"https:\/\/computing.net\/answers\/wp-json\/wp\/v2\/question_tags?post=8961"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}