Here is my Combofix log. I'll note it didn't restart my computer (implying no malware?:
ComboFix 13-04-25.01 - Eden State 04/25/2013 18:11:40.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6051.4234 [GMT -8:00]
Running from: c:\users\Eden State\Desktop\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\DRM\6CF6.tmp
c:\programdata\Microsoft\Windows\DRM\7658.tmp
c:\users\Eden State\AppData\Local\common_functions.dll
c:\users\Eden State\AppData\Local\ie_runner_app.exe
F:\Autorun.inf
.
.
((((((((((((((((((((((((( Files Created from 2013-03-26 to 2013-04-26 )))))))))))))))))))))))))))))))
.
.
2013-04-25 23:47 . 2013-04-25 23:47 -------- d-----w- c:\programdata\boost_interprocess
2013-04-25 22:39 . 2013-04-25 22:39 -------- d-----w- c:\windows\ERUNT
2013-04-25 22:39 . 2013-04-25 22:39 -------- d-----w- C:\JRT
2013-04-25 20:25 . 2013-04-25 20:25 -------- d-----w- c:\users\Eden State\AppData\Roaming\ParetoLogic
2013-04-23 18:43 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-22 08:08 . 2013-04-22 08:08 -------- d-----w- c:\users\Eden State\AppData\Roaming\ArcSoft
2013-04-22 08:08 . 2013-04-22 08:08 -------- d-----w- c:\programdata\ArcSoft
2013-04-22 08:08 . 2013-04-22 08:08 -------- d-----w- c:\program files (x86)\Common Files\ArcSoft
2013-04-22 08:08 . 2013-04-22 08:08 -------- d-----w- c:\users\Eden State\AppData\Local\ArcSoft
2013-04-22 08:07 . 2013-04-22 08:07 -------- d-----w- c:\program files (x86)\ArcSoft
2013-04-17 01:43 . 2013-04-25 22:41 -------- d-----w- c:\users\Eden State\AppData\Roaming\FixCleaner
2013-04-17 01:43 . 2013-04-25 22:41 -------- d-----w- c:\program files (x86)\FixCleaner
2013-04-17 00:47 . 2013-04-17 00:47 -------- d-----w- c:\users\Eden State\AppData\Local\PACE Anti-Piracy
2013-04-14 20:06 . 2013-04-14 20:06 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2013-04-14 20:06 . 2013-04-14 20:06 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2013-04-14 20:06 . 2013-04-14 20:06 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2013-04-14 20:06 . 2013-04-14 20:06 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2013-04-14 20:06 . 2013-04-14 20:06 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2013-04-14 20:06 . 2013-04-14 20:06 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2013-04-14 20:06 . 2013-04-14 20:06 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2013-04-14 20:06 . 2013-04-14 20:06 -------- d-----w- c:\program files (x86)\QuickTime
2013-04-14 18:47 . 2013-04-17 01:53 -------- d-----w- c:\users\Eden State\Tracing
2013-04-10 09:34 . 2013-02-21 10:14 19230208 ----a-w- c:\windows\system32\mshtml.dll
2013-04-09 07:43 . 2013-04-09 07:43 -------- d-----w- c:\programdata\Caphyon
2013-04-09 07:42 . 2013-04-09 07:44 -------- d-----w- c:\users\Eden State\AppData\Roaming\Ambient Design
2013-04-09 02:18 . 2013-04-09 02:18 -------- d-----w- c:\program files\iPod
2013-04-09 02:18 . 2013-04-09 02:19 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-04-09 02:18 . 2013-04-09 02:19 -------- d-----w- c:\program files\iTunes
2013-04-09 01:43 . 2013-04-17 01:51 -------- d-----w- c:\program files\CCleaner
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-11 19:25 . 2013-03-13 15:27 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-11 19:25 . 2013-03-13 15:27 691592 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-04-10 09:36 . 2013-01-25 21:06 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-04-04 22:50 . 2013-03-13 05:36 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-13 16:07 . 2013-03-13 16:07 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-13 16:07 . 2013-03-13 16:07 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-13 16:07 . 2013-03-13 16:07 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-13 16:07 . 2013-03-13 16:07 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-13 16:07 . 2013-03-13 16:07 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-13 16:07 . 2013-03-13 16:07 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-13 16:07 . 2013-03-13 16:07 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-13 16:07 . 2013-03-13 16:07 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-13 16:07 . 2013-03-13 16:07 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-13 16:07 . 2013-03-13 16:07 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-13 16:07 . 2013-03-13 16:07 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-13 16:07 . 2013-03-13 16:07 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-13 16:07 . 2013-03-13 16:07 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-13 16:07 . 2013-03-13 16:07 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-13 16:07 . 2013-03-13 16:07 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-13 16:07 . 2013-03-13 16:07 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-13 16:07 . 2013-03-13 16:07 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-13 16:07 . 2013-03-13 16:07 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-13 16:07 . 2013-03-13 16:07 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-13 16:07 . 2013-03-13 16:07 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-13 16:07 . 2013-03-13 16:07 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-13 16:07 . 2013-03-13 16:07 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-13 16:07 . 2013-03-13 16:07 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-13 16:07 . 2013-03-13 16:07 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-13 16:07 . 2013-03-13 16:07 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-13 16:07 . 2013-03-13 16:07 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-13 16:07 . 2013-03-13 16:07 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-13 16:07 . 2013-03-13 16:07 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-13 16:07 . 2013-03-13 16:07 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-13 16:07 . 2013-03-13 16:07 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-13 16:07 . 2013-03-13 16:07 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-13 16:07 . 2013-03-13 16:07 441856 ----a-w- c:\windows\system32\html.iec
2013-03-13 16:07 . 2013-03-13 16:07 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-13 16:07 . 2013-03-13 16:07 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-13 16:07 . 2013-03-13 16:07 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-13 16:07 . 2013-03-13 16:07 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-13 16:07 . 2013-03-13 16:07 235008 ----a-w- c:\windows\system32\url.dll
2013-03-13 16:07 . 2013-03-13 16:07 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-13 16:07 . 2013-03-13 16:07 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-13 16:07 . 2013-03-13 16:07 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-13 16:07 . 2013-03-13 16:07 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-13 16:07 . 2013-03-13 16:07 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-13 16:07 . 2013-03-13 16:07 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-13 16:07 . 2013-03-13 16:07 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-13 16:07 . 2013-03-13 16:07 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-13 16:07 . 2013-03-13 16:07 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-13 16:07 . 2013-03-13 16:07 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-13 16:07 . 2013-03-13 16:07 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-13 16:07 . 2013-03-13 16:07 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-12 20:59 . 2013-03-12 20:59 16486616 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-02-17 09:40 . 2013-03-13 16:09 28672 ----a-w- c:\windows\system32\IEUDINIT.EXE
2013-02-12 05:45 . 2013-03-13 02:58 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 02:58 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-13 02:58 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 02:58 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-13 02:58 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 02:58 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-12 04:12 . 2013-03-26 00:43 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-08 19:22 . 2012-06-13 04:37 1975096 ----a-w- c:\windows\system32\Wacom_Touch_Tablet.dll
2013-02-08 19:22 . 2012-06-13 04:36 1843512 ----a-w- c:\windows\system32\Wintab32.dll
2013-02-08 19:22 . 2012-06-13 04:36 1982264 ----a-w- c:\windows\system32\Wacom_Tablet.dll
2013-02-08 19:22 . 2012-06-13 04:36 1840440 ----a-w- c:\windows\system32\WacomMT.dll
2013-02-08 19:22 . 2012-06-13 04:37 1622328 ----a-w- c:\windows\SysWow64\Wacom_Touch_Tablet.dll
2013-02-08 19:22 . 2012-06-13 04:36 1505592 ----a-w- c:\windows\SysWow64\WacomMT.dll
2013-02-08 19:22 . 2012-06-13 04:36 1509176 ----a-w- c:\windows\SysWow64\Wintab32.dll
2013-02-08 19:22 . 2012-06-13 04:36 1628984 ----a-w- c:\windows\SysWow64\Wacom_Tablet.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2013-03-13 39408]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 mi-raysat_3dsmax2012_64;mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit;c:\program files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [2011-02-23 86016]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver;c:\windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
R3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys [2011-05-18 47616]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-01-05 1431888]
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2011-05-03 175192]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2011-07-12 57216]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2011-06-10 138152]
R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [2011-07-01 828856]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-12-13 54784]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-29 1255736]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2008-05-07 14464]
R3 WsAudio_Device(1);WsAudio_Device(1);c:\windows\system32\drivers\VirtualAudio1.sys [2013-01-26 31080]
R3 WsAudio_Device(2);WsAudio_Device(2);c:\windows\system32\drivers\VirtualAudio2.sys [2013-01-26 31080]
R3 WsAudio_Device(3);WsAudio_Device(3);c:\windows\system32\drivers\VirtualAudio3.sys [2013-01-26 31080]
R3 WsAudio_Device(4);WsAudio_Device(4);c:\windows\system32\drivers\VirtualAudio4.sys [2013-01-26 31080]
R3 WsAudio_Device(5);WsAudio_Device(5);c:\windows\system32\drivers\VirtualAudio5.sys [2013-01-26 31080]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2011-06-07 25960]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1300000.080\SYMDS64.SYS [2011-05-16 451192]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1300000.080\SYMEFA64.SYS [2011-05-16 1083512]
S0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\DRIVERS\thpdrv.sys [2011-03-24 36992]
S0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\DRIVERS\Thpevm.SYS [2009-06-30 14784]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys [2011-06-10 482384]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20130412.001\BHDrvx64.sys [2013-04-12 1390680]
S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1300000.080\ccSetx64.sys [2011-05-23 165512]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20130424.001\IDSvia64.sys [2012-09-28 513184]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1300000.080\Ironx64.SYS [2011-05-16 189560]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1300000.080\SYMNETS.SYS [2011-05-09 396408]
S2 ADExchange;ArcSoft Exchange Service;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [2012-02-16 43112]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe [2011-05-24 138760]
S2 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;c:\program files (x86)\PC Checkup\SymcPCCULaunchSvc.exe [2012-11-22 132056]
S2 NTI BackupNowEZSvr;NTI BackupNowEZSvr;c:\program files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe [2011-09-24 45592]
S2 PCCUJobMgr;Common Client Job Manager Service;c:\program files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe [2011-07-19 126392]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe [2011-05-24 294848]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-20 14472]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 288768]
S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1066896]
S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 491920]
S2 WTabletServicePro;Wacom Professional Service;c:\program files\Tablet\Wacom\WTabletServicePro.exe [2013-02-08 613688]
S3 CeKbFilter;CeKbFilter;c:\windows\system32\DRIVERS\CeKbFilter.sys [2011-11-23 20592]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-10-11 138912]
S3 hidkmdf;KMDF Driver;c:\windows\system32\DRIVERS\hidkmdf.sys [2012-12-19 14320]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-16 317440]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2011-02-10 82432]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2011-02-10 181760]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-01-14 413800]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 WacHidRouter;Wacom Hid Router;c:\windows\system32\DRIVERS\wachidrouter.sys [2012-12-19 82416]
S3 wacomrouterfilter;Wacom Router Filter Driver;c:\windows\system32\DRIVERS\wacomrouterfilter.sys [2012-12-20 15344]
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-04-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-13 19:25]
.
2013-04-25 c:\windows\Tasks\FixCleaner Scan.job
- c:\program files (x86)\FixCleaner\FixCleaner.exe [2012-10-15 01:42]
.
2013-04-25 c:\windows\Tasks\FixCleaner Startup.job
- c:\program files (x86)\FixCleaner\FixCleaner.exe [2012-10-15 01:42]
.
2013-04-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-11-23 16:13]
.
2013-04-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-11-23 16:13]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page =
https://mycampus.aionline.edu/portal/server.pt?mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride =
;*.local
TCP: DhcpNameServer = 209.165.131.12 209.165.131.13 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run- - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
AddRemove-Upromise TurboSaver - c:\program files (x86)\Upromise\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\diMaster.dll\" /prefetch:1"
--
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCCUJobMgr]
"ImagePath"="\"c:\program files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe\" /s \"PCCUJobMgr\" /m \"c:\program files (x86)\Norton PC Checkup\Engine\2.0.13.11\diMaster.dll\" /prefetch:1"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-04-25 18:18:09
ComboFix-quarantined-files.txt 2013-04-26 02:18
.
Pre-Run: 553,938,980,864 bytes free
Post-Run: 553,577,549,824 bytes free
.
- - End Of File - - BB802DAC0B58DEA8E38B9CADCE95878A