Inactive I NEED UR HELP RIGHT AWAY.
- Thread starter IfIeIaIrI
- Start date
- Status
C:\$Recycle.Bin\S-1-5-21-3073701067-1518990160-3154203008-1000\$RZ3M89M.exeWin32/Amonetize applicationcleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exea variant of Win32/Toolbar.Widgi applicationcleaned by deleting - quarantined
C:\Program Files (x86)\FreeRIP Toolbar\IE\6.2\freeripToolbarIE.dlla variant of Win32/Toolbar.Widgi applicationcleaned by deleting - quarantined
C:\Users\Dennis\AppData\Local\Temp\BestVideoDownloader-S-Setup_Suite1_20120416.exeprobably a variant of Win32/Adware.IBQBNUU applicationcleaned by deleting - quarantined
C:\Users\Dennis\AppData\Local\Temp\VidSaver6_20120718.exeWin32/Toolbar.CrossRider applicationcleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exea variant of Win32/Toolbar.Widgi applicationcleaned by deleting - quarantined
C:\Program Files (x86)\FreeRIP Toolbar\IE\6.2\freeripToolbarIE.dlla variant of Win32/Toolbar.Widgi applicationcleaned by deleting - quarantined
C:\Users\Dennis\AppData\Local\Temp\BestVideoDownloader-S-Setup_Suite1_20120416.exeprobably a variant of Win32/Adware.IBQBNUU applicationcleaned by deleting - quarantined
C:\Users\Dennis\AppData\Local\Temp\VidSaver6_20120718.exeWin32/Toolbar.CrossRider applicationcleaned by deleting - quarantined
Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.23.07
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Dennis :: DENNIS-PC [administrator]
Protection: Enabled
8/24/2012 12:57:16 PM
virus2
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 372078
Time elapsed: 1 hour(s), 21 minute(s), 28 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 2
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> No action taken.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe (Packer.ModifiedUPX) -> No action taken.
C:\Users\Dennis\AppData\Local\Temp\VidSaver6_20120718.exe (Adware.GamePlayLabs) -> No action taken.
(end)
www.malwarebytes.org
Database version: v2012.08.23.07
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Dennis :: DENNIS-PC [administrator]
Protection: Enabled
8/24/2012 12:57:16 PM
virus2
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 372078
Time elapsed: 1 hour(s), 21 minute(s), 28 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 2
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> No action taken.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe (Packer.ModifiedUPX) -> No action taken.
C:\Users\Dennis\AppData\Local\Temp\VidSaver6_20120718.exe (Adware.GamePlayLabs) -> No action taken.
(end)
Broni
Posts: 56,041 +516
Welcome aboard
Please, complete all steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.
Please, observe following rules:
======================================
No swearing please.
Your MBAM log says "No action taken".
Re-run it, fix all issues and post new log.
Please, complete all steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.
Please, observe following rules:
- Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
- If you're stuck, or you're not sure about certain step, always ask before doing anything else.
- Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
- Never run more than one scan at a time.
- Keep updating me regarding your computer behavior, good, or bad.
- The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
- If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
- I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
======================================
No swearing please.
Your MBAM log says "No action taken".
Re-run it, fix all issues and post new log.
here is the DDS rescanning the MBAM and waiting for gamer brb
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1
Run by Dennis at 16:24:36 on 2012-08-24
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.8145.4844 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\dinotify.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Dennis\Downloads\myo1mccs.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: FreeRIP Toolbar: {e634228a-03cf-4bc8-b0ab-668257f1fd8c} -
mWinlogon: Userinit=userinit.exe,
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB: FreeRIP Toolbar: {e634228a-03cf-4bc8-b0ab-668257f1fd8c} -
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [Spotify Web Helper] "C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [Spotify] "C:\Users\Dennis\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
uRun: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun: [<NO NAME>]
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mRunOnce: [aswAhAScr.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\AhAScr.dll"
mRunOnce: [aswasOutExt.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\asOutExt.dll"
mRunOnce: [aswasOutExt64.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr64.exe" "C:\Program Files\AVAST Software\Avast\asOutExt64.dll"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
Trusted Zone: line6.net
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{0E793A53-B9D0-48E8-B4BC-8A41DA9B2840} : DhcpNameServer = 75.75.75.75 75.75.76.76
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB-X64: FreeRIP Toolbar: {E634228A-03CF-4BC8-B0AB-668257F1FD8C} -
TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
mRun-x64: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun-x64: [(Default)]
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce-x64: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mRunOnce-x64: [aswAhAScr.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\AhAScr.dll"
mRunOnce-x64: [aswasOutExt.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\asOutExt.dll"
mRunOnce-x64: [aswasOutExt64.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr64.exe" "C:\Program Files\AVAST Software\Avast\asOutExt64.dll"
.
============= SERVICES / DRIVERS ===============
.
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\system32\DRIVERS\iusb3hcs.sys --> C:\Windows\system32\DRIVERS\iusb3hcs.sys [?]
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-7-27 63960]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 Application Updater;Application Updater;C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2012-7-26 794560]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-8-5 44808]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-8-5 162648]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-24 655944]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-8-5 362840]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\iusb3hub.sys --> C:\Windows\system32\DRIVERS\iusb3hub.sys [?]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\system32\DRIVERS\iusb3xhc.sys --> C:\Windows\system32\DRIVERS\iusb3xhc.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MBfilt;MBfilt;C:\Windows\system32\drivers\MBfilt64.sys --> C:\Windows\system32\drivers\MBfilt64.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-8-5 136176]
S3 GPWADrv;Service for L6 GuitarPort Driver (WDM);C:\Windows\system32\Drivers\GPWADrv64.sys --> C:\Windows\system32\Drivers\GPWADrv64.sys [?]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-8-5 136176]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-08-24 18:01:24--------d-----w-C:\Program Files (x86)\ESET
2012-08-24 17:56:53--------d-----w-C:\Users\Dennis\AppData\Roaming\Malwarebytes
2012-08-24 17:56:51--------d-----w-C:\ProgramData\Malwarebytes
2012-08-24 17:56:5024904----a-w-C:\Windows\System32\drivers\mbam.sys
2012-08-24 17:56:50--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-24 09:19:4469000----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41D937A1-8B86-4047-9A8A-D70A6EA69D54}\offreg.dll
2012-08-24 04:14:55--------d-----w-C:\Users\Dennis\AppData\Local\Rockstar Games
2012-08-24 04:05:23178800----a-w-C:\Windows\SysWow64\CmdLineExt_x64.dll
2012-08-24 04:03:52--------d-----w-C:\Windows\SysWow64\xlive
2012-08-24 04:03:51--------d-----w-C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2012-08-24 03:50:12--------d-----w-C:\Program Files (x86)\Rockstar Games
2012-08-23 00:10:37--------d-----w-C:\Games
2012-08-23 00:04:52--------d-----w-C:\Users\Dennis\AppData\Local\Black_Tree_Gaming
2012-08-23 00:04:38--------d-----w-C:\Program Files\Nexus Mod Manager
2012-08-22 23:35:38--------d-----w-C:\Users\Dennis\AppData\Local\Adobe
2012-08-22 19:05:129309624----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41D937A1-8B86-4047-9A8A-D70A6EA69D54}\mpengine.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2012-08-19 20:42:13--------d--h--w-C:\Windows\msdownld.tmp
2012-08-19 20:42:12--------d-----w-C:\Windows\SysWow64\directx
2012-08-18 17:00:51--------d-----w-C:\Program Files (x86)\ASIO4ALL v2
2012-08-18 16:58:30--------d-----w-C:\Users\Dennis\AppData\Roaming\REAPER
2012-08-18 16:53:41--------d-----w-C:\Program Files\Common Files\Propellerhead Software
2012-08-18 16:53:38--------d-----w-C:\Program Files\REAPER (x64)
2012-08-18 16:20:21--------d-----w-C:\ProgramData\Line 6
2012-08-18 16:20:21--------d-----w-C:\Program Files (x86)\Common Files\Digidesign
2012-08-18 16:20:16--------d-----w-C:\Users\Dennis\AppData\Roaming\Line 6
2012-08-18 16:20:12--------d-----w-C:\Program Files (x86)\Line6
2012-08-17 18:34:48--------d-----w-C:\Program Files (x86)\FreeRIP Toolbar
2012-08-17 18:34:48--------d-----w-C:\Program Files (x86)\Common Files\Spigot
2012-08-17 18:34:48--------d-----w-C:\Program Files (x86)\Application Updater
2012-08-17 18:34:34--------d-----w-C:\ProgramData\FreeRIP
2012-08-17 18:34:33--------d-----w-C:\Program Files (x86)\FreeRIP
2012-08-16 18:49:52--------d-----w-C:\Windows\en
2012-08-16 18:49:38--------d-----w-C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-08-16 18:48:56--------d-----w-C:\Windows\PCHEALTH
2012-08-16 08:05:00503808----a-w-C:\Windows\System32\srcore.dll
2012-08-16 08:05:0043008----a-w-C:\Windows\SysWow64\srclient.dll
2012-08-16 03:53:2958880----a-w-C:\Windows\System32\browcli.dll
2012-08-16 03:53:2941472----a-w-C:\Windows\SysWow64\browcli.dll
2012-08-16 03:53:29136704----a-w-C:\Windows\System32\browser.dll
2012-08-16 03:53:253146752----a-w-C:\Windows\System32\win32k.sys
2012-08-16 03:53:24956416----a-w-C:\Windows\System32\localspl.dll
2012-08-15 13:30:54--------d-----w-C:\Program Files (x86)\SystemRequirementsLab
2012-08-15 08:47:11367104----a-w-C:\Windows\System32\wcncsvc.dll
2012-08-15 08:47:11276992----a-w-C:\Windows\SysWow64\wcncsvc.dll
2012-08-15 08:35:02311808----a-w-C:\Windows\System32\msv1_0.dll
2012-08-15 08:35:02257024----a-w-C:\Windows\SysWow64\msv1_0.dll
2012-08-15 04:10:541572864----a-w-C:\Windows\System32\quartz.dll
2012-08-15 04:09:5843520----a-w-C:\Windows\System32\csrsrv.dll
2012-08-15 04:08:319216----a-w-C:\Windows\System32\rdrmemptylst.exe
2012-08-15 04:07:5491648----a-w-C:\Windows\SysWow64\avifil32.dll
2012-08-15 03:56:28640896----a-w-C:\Windows\System32\winload.efi
2012-08-15 03:56:28603976----a-w-C:\Windows\System32\winload.exe
2012-08-15 03:56:28556928----a-w-C:\Windows\System32\winresume.efi
2012-08-15 03:56:28518160----a-w-C:\Windows\System32\winresume.exe
2012-08-15 03:56:2820352----a-w-C:\Windows\System32\kdusb.dll
2012-08-15 03:56:2819328----a-w-C:\Windows\System32\kd1394.dll
2012-08-15 03:56:2817792----a-w-C:\Windows\System32\kdcom.dll
2012-08-15 03:55:46954752----a-w-C:\Windows\SysWow64\mfc40.dll
2012-08-15 03:55:46954288----a-w-C:\Windows\SysWow64\mfc40u.dll
2012-08-15 03:55:3646592----a-w-C:\Windows\System32\msasn1.dll
2012-08-15 03:55:3634816----a-w-C:\Windows\SysWow64\msasn1.dll
2012-08-15 03:55:32182272----a-w-C:\Windows\System32\cryptsvc.dll
2012-08-15 03:55:321460224----a-w-C:\Windows\System32\crypt32.dll
2012-08-15 03:55:32140288----a-w-C:\Windows\System32\cryptnet.dll
2012-08-15 03:55:32139264----a-w-C:\Windows\SysWow64\cryptsvc.dll
2012-08-15 03:55:321156608----a-w-C:\Windows\SysWow64\crypt32.dll
2012-08-15 03:55:32103936----a-w-C:\Windows\SysWow64\cryptnet.dll
2012-08-15 03:53:562048----a-w-C:\Windows\SysWow64\tzres.dll
2012-08-15 03:53:562048----a-w-C:\Windows\System32\tzres.dll
2012-08-15 03:51:571739160----a-w-C:\Windows\System32\ntdll.dll
2012-08-15 03:51:571292592----a-w-C:\Windows\SysWow64\ntdll.dll
2012-08-15 03:51:49236032----a-w-C:\Windows\System32\srvsvc.dll
2012-08-15 03:51:489728----a-w-C:\Windows\SysWow64\sscore.dll
2012-08-15 03:49:1877312----a-w-C:\Windows\System32\packager.dll
2012-08-15 03:49:1867072----a-w-C:\Windows\SysWow64\packager.dll
2012-08-15 03:49:149133488----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-08-15 03:09:1680896----a-w-C:\Windows\System32\imagehlp.dll
2012-08-15 03:09:1622896----a-w-C:\Windows\System32\drivers\fs_rec.sys
2012-08-15 03:09:16158720----a-w-C:\Windows\SysWow64\imagehlp.dll
2012-08-15 03:09:065120----a-w-C:\Windows\SysWow64\wmi.dll
2012-08-15 03:09:065120----a-w-C:\Windows\System32\wmi.dll
2012-08-15 03:09:06220672----a-w-C:\Windows\System32\wintrust.dll
2012-08-15 03:09:06172544----a-w-C:\Windows\SysWow64\wintrust.dll
2012-08-15 03:08:46243712----a-w-C:\Windows\System32\drivers\ks.sys
2012-08-15 03:07:00139264----a-w-C:\Windows\System32\cabview.dll
2012-08-15 03:07:00132608----a-w-C:\Windows\SysWow64\cabview.dll
2012-08-15 03:06:42826368----a-w-C:\Windows\SysWow64\rdpcore.dll
2012-08-15 03:06:4223552----a-w-C:\Windows\System32\drivers\tdtcp.sys
2012-08-15 03:06:421031680----a-w-C:\Windows\System32\rdpcore.dll
2012-08-15 03:03:172622464----a-w-C:\Windows\System32\wucltux.dll
2012-08-15 03:02:4799840----a-w-C:\Windows\System32\wudriver.dll
2012-08-15 03:02:32186752----a-w-C:\Windows\System32\wuwebv.dll
2012-08-15 03:02:3136864----a-w-C:\Windows\System32\wuapp.exe
2012-08-15 02:59:47--------d-----w-C:\Users\Dennis\AppData\Local\ATI
2012-08-15 02:58:490----a-w-C:\Windows\ativpsrm.bin
2012-08-15 02:56:23--------d-----w-C:\ProgramData\AMD
2012-08-15 02:56:23--------d-----w-C:\Program Files (x86)\AMD AVT
2012-08-15 02:56:21--------d-----w-C:\Program Files (x86)\AMD APP
2012-08-15 02:56:19--------d-----w-C:\Program Files\Common Files\ATI Technologies
2012-08-15 02:56:19--------d-----w-C:\Program Files (x86)\Common Files\ATI Technologies
2012-08-15 02:55:41--------d-----w-C:\Program Files (x86)\ATI.ACE
2012-08-15 02:55:39--------d-----w-C:\Program Files\ATI
2012-08-15 02:53:22--------d-----w-C:\AMD
2012-08-12 03:31:47--------d-----w-C:\Program Files (x86)\Oracle
2012-08-12 03:30:51772544----a-w-C:\Windows\SysWow64\npDeployJava1.dll
2012-08-12 03:30:51687544----a-w-C:\Windows\SysWow64\deployJava1.dll
2012-08-12 02:36:5377656----a-w-C:\Windows\System32\XAPOFX1_5.dll
2012-08-12 02:36:5374072----a-w-C:\Windows\SysWow64\XAPOFX1_5.dll
2012-08-12 02:36:53527192----a-w-C:\Windows\SysWow64\XAudio2_7.dll
2012-08-12 02:36:53518488----a-w-C:\Windows\System32\XAudio2_7.dll
2012-08-12 02:36:312526056----a-w-C:\Windows\System32\D3DCompiler_43.dll
2012-08-12 02:36:312106216----a-w-C:\Windows\SysWow64\D3DCompiler_43.dll
2012-08-12 02:36:20276832----a-w-C:\Windows\System32\d3dx11_43.dll
2012-08-12 02:36:20248672----a-w-C:\Windows\SysWow64\d3dx11_43.dll
2012-08-12 02:31:1949472----a-w-C:\Windows\SysWow64\netfxperf.dll
2012-08-12 02:31:1948960----a-w-C:\Windows\System32\netfxperf.dll
2012-08-12 02:31:1899176----a-w-C:\Windows\SysWow64\PresentationHostProxy.dll
2012-08-12 02:31:18444752----a-w-C:\Windows\System32\mscoree.dll
2012-08-12 02:31:18320352----a-w-C:\Windows\System32\PresentationHost.exe
2012-08-12 02:31:18297808----a-w-C:\Windows\SysWow64\mscoree.dll
2012-08-12 02:31:18295264----a-w-C:\Windows\SysWow64\PresentationHost.exe
2012-08-12 02:31:181942856----a-w-C:\Windows\System32\dfshim.dll
2012-08-12 02:31:181130824----a-w-C:\Windows\SysWow64\dfshim.dll
2012-08-12 02:31:18109912----a-w-C:\Windows\System32\PresentationHostProxy.dll
2012-08-12 02:30:203860992----a-w-C:\Windows\System32\UIRibbon.dll
2012-08-12 02:30:202983424----a-w-C:\Windows\SysWow64\UIRibbon.dll
2012-08-12 02:30:201164800----a-w-C:\Windows\SysWow64\UIRibbonRes.dll
2012-08-12 02:30:201164800----a-w-C:\Windows\System32\UIRibbonRes.dll
2012-08-12 02:28:58537432-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\396104111cd783203\DXSETUP.exe
2012-08-12 02:28:581801048-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\396104111cd783203\dsetup32.dll
2012-08-12 02:28:5789944-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\396104111cd783203\DSETUP.dll
2012-08-12 02:28:54889416-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\373a72811cd783201\dotNetFx40_Full_setup.exe
2012-08-12 02:26:48--------d-----w-C:\Users\Dennis\AppData\Local\Windows Live
2012-08-11 19:32:17--------d-----w-C:\Program Files (x86)\Common Files\Windows Live
2012-08-11 19:29:43737072----a-w-C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2012-08-11 19:29:304283672----a-w-C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-08-11 19:29:2042776----a-w-C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-08-11 19:29:12539984----a-w-C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-08-10 22:08:21--------d-----w-C:\Users\Dennis\AppData\Local\Spotify
2012-08-10 22:08:03--------d-----w-C:\Users\Dennis\AppData\Roaming\Spotify
2012-08-10 05:05:47--------d-----w-C:\Users\Dennis\AppData\Local\Apple Computer
2012-08-10 05:05:4434152----a-w-C:\Windows\System32\drivers\GEARAspiWDM.sys
2012-08-10 05:05:44126312----a-w-C:\Windows\System32\GEARAspi64.dll
2012-08-10 05:05:44107368----a-w-C:\Windows\SysWow64\GEARAspi.dll
2012-08-10 05:05:35--------d-----w-C:\Program Files\iPod
2012-08-10 05:05:34--------d-----w-C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-08-10 05:05:34--------d-----w-C:\Program Files\iTunes
2012-08-10 05:05:34--------d-----w-C:\Program Files (x86)\iTunes
2012-08-10 05:04:50--------d-----w-C:\Users\Dennis\AppData\Local\Apple
2012-08-10 05:04:25--------d-----w-C:\Program Files\Bonjour
2012-08-10 05:04:25--------d-----w-C:\Program Files (x86)\Bonjour
2012-08-09 01:10:41406528----a-w-C:\Windows\SysWow64\ReWire.dll
2012-08-09 01:10:41338432----a-w-C:\Windows\SysWow64\REX Shared Library.dll
2012-08-09 01:05:54--------d-----w-C:\Users\Dennis\AppData\Roaming\Propellerhead Software
2012-08-09 01:05:54--------d-----w-C:\ProgramData\Propellerhead Software
2012-08-09 01:03:38--------d-----w-C:\Program Files (x86)\Propellerhead
2012-08-08 02:39:41--------d-----w-C:\Program Files (x86)\Common Files\Steam
2012-08-08 02:39:40--------d-----w-C:\Program Files (x86)\Steam
2012-08-07 16:12:10--------d-----w-C:\Users\Dennis\AppData\Roaming\LolClient
2012-08-07 15:38:54467984----a-w-C:\Windows\SysWow64\d3dx10_39.dll
2012-08-07 15:38:543851784----a-w-C:\Windows\SysWow64\D3DX9_39.dll
2012-08-07 15:38:541493528----a-w-C:\Windows\SysWow64\D3DCompiler_39.dll
2012-08-07 15:35:27--------d-----w-C:\Riot Games
2012-08-07 05:39:29--------d-----w-C:\Users\Dennis\AppData\Local\Skyrim
2012-08-07 05:27:31--------d-----w-C:\Program Files (x86)\The Elder Scrolls V Skyrim
2012-08-07 02:13:42--------d-----w-C:\ProgramData\Nexon
2012-08-07 01:34:58--------d-----w-C:\Nexon
2012-08-07 01:34:57--------d-----w-C:\ProgramData\NexonUS
2012-08-07 00:47:00--------d-----w-C:\Program Files (x86)\Pando Networks
2012-08-06 22:44:46--------d-----w-C:\Users\Dennis\AppData\Roaming\NVIDIA
2012-08-06 22:41:27--------d-----w-C:\Program Files (x86)\Amnesia - The Dark Descent
2012-08-06 22:39:19283200----a-w-C:\Windows\System32\drivers\dtsoftbus01.sys
2012-08-06 22:39:16--------d-----w-C:\Users\Dennis\AppData\Roaming\DAEMON Tools Pro
2012-08-06 22:39:14--------d-----w-C:\Program Files (x86)\DAEMON Tools Pro
2012-08-06 22:38:19--------d-----w-C:\ProgramData\DAEMON Tools Pro
2012-08-06 22:31:26279656------w-C:\Windows\System32\MpSigStub.exe
2012-08-06 22:17:39--------d-----w-C:\Users\Dennis\.swt
2012-08-06 22:17:38--------d-----w-C:\Users\Dennis\AppData\Roaming\Azureus
2012-08-06 22:17:19--------d-----w-C:\Program Files (x86)\Vuze
2012-08-06 21:43:13--------d-----w-C:\Users\Dennis\AppData\Local\Diagnostics
2012-08-06 06:50:38--------d-----w-C:\Windows\Panther
2012-08-06 04:39:15--------d-----w-C:\Program Files (x86)\NVIDIA Corporation
2012-08-06 04:38:10--------d-----w-C:\Program Files\NVIDIA Corporation
2012-08-06 04:37:56--------d-----w-C:\NVIDIA
2012-08-06 04:31:3154072----a-w-C:\Windows\System32\drivers\aswRdr2.sys
2012-08-06 04:31:30969200----a-w-C:\Windows\System32\drivers\aswSnx.sys
2012-08-06 04:31:3071600----a-w-C:\Windows\System32\drivers\aswMonFlt.sys
2012-08-06 04:31:09--------d-----w-C:\Users\Dennis\AppData\Local\Google
2012-08-06 04:30:2841224----a-w-C:\Windows\avastSS.scr
2012-08-06 04:30:26--------d-----w-C:\Users\Dennis\AppData\Local\Deployment
2012-08-06 04:30:26--------d-----w-C:\Users\Dennis\AppData\Local\Apps
2012-08-06 04:30:19--------d-----w-C:\ProgramData\AVAST Software
2012-08-06 04:30:19--------d-----w-C:\Program Files\AVAST Software
2012-08-06 04:25:5715128----a-r-C:\Windows\System32\drivers\IntelMEFWVer.dll
2012-08-06 04:25:12--------d-sh--w-C:\Windows\Installer
2012-08-06 04:25:05--------d-----w-C:\Program Files (x86)\Common Files\postureAgent
2012-08-06 04:24:3516152----a-w-C:\Windows\System32\drivers\iusb3hcs.sys
2012-08-06 04:24:28788760----a-w-C:\Windows\System32\drivers\iusb3xhc.sys
2012-08-06 04:24:27356120----a-w-C:\Windows\System32\drivers\iusb3hub.sys
2012-08-06 04:20:0874344----a-w-C:\Windows\System32\RtNicProp64.dll
2012-08-06 04:20:08676968----a-w-C:\Windows\System32\drivers\Rt64win7.sys
2012-08-06 04:20:08107624----a-w-C:\Windows\System32\RTNUninst64.dll
2012-08-06 04:20:03--------d-----w-C:\Program Files (x86)\Realtek
2012-08-06 04:19:2253248----a-w-C:\Windows\SysWow64\CSVer.dll
2012-08-06 04:19:17--------d-----w-C:\Intel
2012-08-06 04:18:41--------d-----w-C:\MSI
2012-08-06 04:04:15--------d-----w-C:\Windows\SysWow64\Wat
2012-08-06 04:04:15--------d-----w-C:\Windows\System32\Wat
2012-08-06 03:59:35--------d-sh--w-C:\Recovery
2012-07-28 07:54:00321472----a-w-C:\Windows\WLXPGSS.SCR
2012-07-27 20:51:30184248----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2012-07-27 00:08:06862664----a-w-C:\Windows\SysWow64\msvcr110.dll
2012-07-27 00:08:06534480----a-w-C:\Windows\SysWow64\msvcp110.dll
2012-07-27 00:08:06251864----a-w-C:\Windows\SysWow64\vccorlib110.dll
2012-07-27 00:08:06153536----a-w-C:\Windows\SysWow64\atl110.dll
2012-07-27 00:08:06115656----a-w-C:\Windows\SysWow64\vcomp110.dll
2012-07-26 20:22:10828872----a-w-C:\Windows\System32\msvcr110.dll
2012-07-26 20:22:10661448----a-w-C:\Windows\System32\msvcp110.dll
2012-07-26 20:22:10354264----a-w-C:\Windows\System32\vccorlib110.dll
2012-07-26 20:22:10177096----a-w-C:\Windows\System32\atl110.dll
2012-07-26 20:22:10124360----a-w-C:\Windows\System32\vcomp110.dll
.
==================== Find3M ====================
.
2012-08-06 04:05:32419840----a-w-C:\Windows\System32\systemcpl.dll
2012-08-06 04:05:31833024----a-w-C:\Windows\SysWow64\user32.dll
2012-08-06 04:05:311008640----a-w-C:\Windows\System32\user32.dll
2012-07-17 20:14:44253184----a-w-C:\Windows\System32\LIVESSP.DLL
2012-07-17 19:49:00209648----a-w-C:\Windows\SysWow64\LIVESSP.DLL
2012-06-29 03:56:342312704----a-w-C:\Windows\System32\jscript9.dll
2012-06-29 03:49:111392128----a-w-C:\Windows\System32\wininet.dll
2012-06-29 03:48:071494528----a-w-C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49173056----a-w-C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:482382848----a-w-C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:581800704----a-w-C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:011129472----a-w-C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:591427968----a-w-C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43142848----a-w-C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:452382848----a-w-C:\Windows\SysWow64\mshtml.tlb
2012-06-11 18:59:3810248192----a-w-C:\Windows\System32\drivers\atikmdag.sys
2012-06-11 18:50:46187392----a-w-C:\Windows\System32\clinfo.exe
2012-06-11 18:50:3075264----a-w-C:\Windows\System32\OpenVideo64.dll
2012-06-11 18:50:2465024----a-w-C:\Windows\SysWow64\OpenVideo.dll
2012-06-11 18:50:1863488----a-w-C:\Windows\System32\OVDecode64.dll
2012-06-11 18:50:1456320----a-w-C:\Windows\SysWow64\OVDecode.dll
2012-06-11 18:50:0616457728----a-w-C:\Windows\System32\amdocl64.dll
2012-06-11 18:49:2213008896----a-w-C:\Windows\SysWow64\amdocl.dll
2012-06-11 18:48:3454784----a-w-C:\Windows\System32\OpenCL.dll
2012-06-11 18:48:3050176----a-w-C:\Windows\SysWow64\OpenCL.dll
2012-06-11 18:35:4870144----a-w-C:\Windows\System32\coinst_8.98.dll
2012-06-11 18:29:3424826368----a-w-C:\Windows\System32\atio6axx.dll
2012-06-11 18:00:3220467712----a-w-C:\Windows\SysWow64\atioglxx.dll
2012-06-11 17:25:06163840----a-w-C:\Windows\System32\atiapfxx.exe
2012-06-11 17:24:58924160----a-w-C:\Windows\SysWow64\aticfx32.dll
2012-06-11 17:23:121090560----a-w-C:\Windows\System32\aticfx64.dll
2012-06-11 17:20:02442368----a-w-C:\Windows\System32\ATIDEMGX.dll
2012-06-11 17:19:58532992----a-w-C:\Windows\System32\atieclxx.exe
2012-06-11 17:19:14239616----a-w-C:\Windows\System32\atiesrxx.exe
2012-06-11 17:17:56120320----a-w-C:\Windows\System32\atitmm64.dll
2012-06-11 17:17:4221504----a-w-C:\Windows\System32\atimuixx.dll
2012-06-11 17:17:3859392----a-w-C:\Windows\System32\atiedu64.dll
2012-06-11 17:17:3243520----a-w-C:\Windows\SysWow64\ati2edxx.dll
2012-06-11 17:16:486301696----a-w-C:\Windows\SysWow64\atidxx32.dll
2012-06-11 17:01:566914560----a-w-C:\Windows\System32\atidxx64.dll
2012-06-11 16:51:544246528----a-w-C:\Windows\System32\atiumd6a.dll
2012-06-11 16:45:4851200----a-w-C:\Windows\System32\aticalrt64.dll
2012-06-11 16:45:4646080----a-w-C:\Windows\SysWow64\aticalrt.dll
2012-06-11 16:45:445480448----a-w-C:\Windows\SysWow64\atiumdag.dll
2012-06-11 16:45:4044544----a-w-C:\Windows\System32\aticalcl64.dll
2012-06-11 16:45:3844032----a-w-C:\Windows\SysWow64\aticalcl.dll
2012-06-11 16:45:2615703040----a-w-C:\Windows\System32\aticaldd64.dll
2012-06-11 16:43:184729344----a-w-C:\Windows\SysWow64\atiumdva.dll
2012-06-11 16:40:5813277696----a-w-C:\Windows\SysWow64\aticaldd.dll
2012-06-11 16:36:566605824----a-w-C:\Windows\System32\atiumd64.dll
2012-06-11 16:34:4477312----a-w-C:\Windows\System32\amdave64.dll
2012-06-11 16:34:3877312----a-w-C:\Windows\SysWow64\amdave32.dll
2012-06-11 16:34:2874240----a-w-C:\Windows\System32\atisamu64.dll
2012-06-11 16:34:2271168----a-w-C:\Windows\atisamu32.dll
2012-06-11 16:27:02539136----a-w-C:\Windows\System32\atiadlxx.dll
2012-06-11 16:26:52368640----a-w-C:\Windows\SysWow64\atiadlxy.dll
2012-06-11 16:26:4017920----a-w-C:\Windows\System32\atig6pxx.dll
2012-06-11 16:26:3614848----a-w-C:\Windows\SysWow64\atiglpxx.dll
2012-06-11 16:26:3614848----a-w-C:\Windows\System32\atiglpxx.dll
2012-06-11 16:26:3041984----a-w-C:\Windows\System32\atig6txx.dll
2012-06-11 16:26:2233280----a-w-C:\Windows\SysWow64\atigktxx.dll
2012-06-11 16:26:14367616----a-w-C:\Windows\System32\drivers\atikmpag.sys
2012-06-11 16:25:2054784----a-w-C:\Windows\System32\atiuxp64.dll
2012-06-11 16:25:1242496----a-w-C:\Windows\SysWow64\atiuxpag.dll
2012-06-11 16:25:0645056----a-w-C:\Windows\System32\atiu9p64.dll
2012-06-11 16:24:5832768----a-w-C:\Windows\SysWow64\atiu9pag.dll
2012-06-11 16:24:2453248----a-w-C:\Windows\System32\drivers\ati2erec.dll
2012-06-11 16:23:1856320----a-w-C:\Windows\System32\atimpc64.dll
2012-06-11 16:23:1856320----a-w-C:\Windows\System32\amdpcom64.dll
2012-06-11 16:23:1056832----a-w-C:\Windows\SysWow64\atimpc32.dll
2012-06-11 16:23:1056832----a-w-C:\Windows\SysWow64\amdpcom32.dll
2012-06-06 05:50:502003968----a-w-C:\Windows\System32\msxml6.dll
2012-06-06 05:50:501880064----a-w-C:\Windows\System32\msxml3.dll
2012-06-06 05:09:461389568----a-w-C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:09:461236992----a-w-C:\Windows\SysWow64\msxml3.dll
2012-06-02 05:38:2695088----a-w-C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:38:24152432----a-w-C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:37:45459216----a-w-C:\Windows\System32\drivers\cng.sys
2012-06-02 05:27:02340992----a-w-C:\Windows\System32\schannel.dll
2012-06-02 05:27:00307200----a-w-C:\Windows\System32\ncrypt.dll
2012-06-02 04:48:3922016----a-w-C:\Windows\SysWow64\secur32.dll
2012-06-02 04:48:35225280----a-w-C:\Windows\SysWow64\schannel.dll
2012-06-02 04:47:31219136----a-w-C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:42:5196768----a-w-C:\Windows\SysWow64\sspicli.dll
.
============= FINISH: 16:25:34.18 ===============
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1
Run by Dennis at 16:24:36 on 2012-08-24
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.8145.4844 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\dinotify.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Dennis\Downloads\myo1mccs.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: FreeRIP Toolbar: {e634228a-03cf-4bc8-b0ab-668257f1fd8c} -
mWinlogon: Userinit=userinit.exe,
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB: FreeRIP Toolbar: {e634228a-03cf-4bc8-b0ab-668257f1fd8c} -
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [Spotify Web Helper] "C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [Spotify] "C:\Users\Dennis\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
uRun: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun: [<NO NAME>]
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mRunOnce: [aswAhAScr.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\AhAScr.dll"
mRunOnce: [aswasOutExt.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\asOutExt.dll"
mRunOnce: [aswasOutExt64.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr64.exe" "C:\Program Files\AVAST Software\Avast\asOutExt64.dll"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
Trusted Zone: line6.net
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{0E793A53-B9D0-48E8-B4BC-8A41DA9B2840} : DhcpNameServer = 75.75.75.75 75.75.76.76
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB-X64: FreeRIP Toolbar: {E634228A-03CF-4BC8-B0AB-668257F1FD8C} -
TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
mRun-x64: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun-x64: [(Default)]
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce-x64: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mRunOnce-x64: [aswAhAScr.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\AhAScr.dll"
mRunOnce-x64: [aswasOutExt.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\asOutExt.dll"
mRunOnce-x64: [aswasOutExt64.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr64.exe" "C:\Program Files\AVAST Software\Avast\asOutExt64.dll"
.
============= SERVICES / DRIVERS ===============
.
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\system32\DRIVERS\iusb3hcs.sys --> C:\Windows\system32\DRIVERS\iusb3hcs.sys [?]
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-7-27 63960]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 Application Updater;Application Updater;C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2012-7-26 794560]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-8-5 44808]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-8-5 162648]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-24 655944]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-8-5 362840]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\iusb3hub.sys --> C:\Windows\system32\DRIVERS\iusb3hub.sys [?]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\system32\DRIVERS\iusb3xhc.sys --> C:\Windows\system32\DRIVERS\iusb3xhc.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MBfilt;MBfilt;C:\Windows\system32\drivers\MBfilt64.sys --> C:\Windows\system32\drivers\MBfilt64.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-8-5 136176]
S3 GPWADrv;Service for L6 GuitarPort Driver (WDM);C:\Windows\system32\Drivers\GPWADrv64.sys --> C:\Windows\system32\Drivers\GPWADrv64.sys [?]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-8-5 136176]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-08-24 18:01:24--------d-----w-C:\Program Files (x86)\ESET
2012-08-24 17:56:53--------d-----w-C:\Users\Dennis\AppData\Roaming\Malwarebytes
2012-08-24 17:56:51--------d-----w-C:\ProgramData\Malwarebytes
2012-08-24 17:56:5024904----a-w-C:\Windows\System32\drivers\mbam.sys
2012-08-24 17:56:50--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-24 09:19:4469000----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41D937A1-8B86-4047-9A8A-D70A6EA69D54}\offreg.dll
2012-08-24 04:14:55--------d-----w-C:\Users\Dennis\AppData\Local\Rockstar Games
2012-08-24 04:05:23178800----a-w-C:\Windows\SysWow64\CmdLineExt_x64.dll
2012-08-24 04:03:52--------d-----w-C:\Windows\SysWow64\xlive
2012-08-24 04:03:51--------d-----w-C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2012-08-24 03:50:12--------d-----w-C:\Program Files (x86)\Rockstar Games
2012-08-23 00:10:37--------d-----w-C:\Games
2012-08-23 00:04:52--------d-----w-C:\Users\Dennis\AppData\Local\Black_Tree_Gaming
2012-08-23 00:04:38--------d-----w-C:\Program Files\Nexus Mod Manager
2012-08-22 23:35:38--------d-----w-C:\Users\Dennis\AppData\Local\Adobe
2012-08-22 19:05:129309624----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41D937A1-8B86-4047-9A8A-D70A6EA69D54}\mpengine.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2012-08-20 02:19:27159744----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2012-08-19 20:42:13--------d--h--w-C:\Windows\msdownld.tmp
2012-08-19 20:42:12--------d-----w-C:\Windows\SysWow64\directx
2012-08-18 17:00:51--------d-----w-C:\Program Files (x86)\ASIO4ALL v2
2012-08-18 16:58:30--------d-----w-C:\Users\Dennis\AppData\Roaming\REAPER
2012-08-18 16:53:41--------d-----w-C:\Program Files\Common Files\Propellerhead Software
2012-08-18 16:53:38--------d-----w-C:\Program Files\REAPER (x64)
2012-08-18 16:20:21--------d-----w-C:\ProgramData\Line 6
2012-08-18 16:20:21--------d-----w-C:\Program Files (x86)\Common Files\Digidesign
2012-08-18 16:20:16--------d-----w-C:\Users\Dennis\AppData\Roaming\Line 6
2012-08-18 16:20:12--------d-----w-C:\Program Files (x86)\Line6
2012-08-17 18:34:48--------d-----w-C:\Program Files (x86)\FreeRIP Toolbar
2012-08-17 18:34:48--------d-----w-C:\Program Files (x86)\Common Files\Spigot
2012-08-17 18:34:48--------d-----w-C:\Program Files (x86)\Application Updater
2012-08-17 18:34:34--------d-----w-C:\ProgramData\FreeRIP
2012-08-17 18:34:33--------d-----w-C:\Program Files (x86)\FreeRIP
2012-08-16 18:49:52--------d-----w-C:\Windows\en
2012-08-16 18:49:38--------d-----w-C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-08-16 18:48:56--------d-----w-C:\Windows\PCHEALTH
2012-08-16 08:05:00503808----a-w-C:\Windows\System32\srcore.dll
2012-08-16 08:05:0043008----a-w-C:\Windows\SysWow64\srclient.dll
2012-08-16 03:53:2958880----a-w-C:\Windows\System32\browcli.dll
2012-08-16 03:53:2941472----a-w-C:\Windows\SysWow64\browcli.dll
2012-08-16 03:53:29136704----a-w-C:\Windows\System32\browser.dll
2012-08-16 03:53:253146752----a-w-C:\Windows\System32\win32k.sys
2012-08-16 03:53:24956416----a-w-C:\Windows\System32\localspl.dll
2012-08-15 13:30:54--------d-----w-C:\Program Files (x86)\SystemRequirementsLab
2012-08-15 08:47:11367104----a-w-C:\Windows\System32\wcncsvc.dll
2012-08-15 08:47:11276992----a-w-C:\Windows\SysWow64\wcncsvc.dll
2012-08-15 08:35:02311808----a-w-C:\Windows\System32\msv1_0.dll
2012-08-15 08:35:02257024----a-w-C:\Windows\SysWow64\msv1_0.dll
2012-08-15 04:10:541572864----a-w-C:\Windows\System32\quartz.dll
2012-08-15 04:09:5843520----a-w-C:\Windows\System32\csrsrv.dll
2012-08-15 04:08:319216----a-w-C:\Windows\System32\rdrmemptylst.exe
2012-08-15 04:07:5491648----a-w-C:\Windows\SysWow64\avifil32.dll
2012-08-15 03:56:28640896----a-w-C:\Windows\System32\winload.efi
2012-08-15 03:56:28603976----a-w-C:\Windows\System32\winload.exe
2012-08-15 03:56:28556928----a-w-C:\Windows\System32\winresume.efi
2012-08-15 03:56:28518160----a-w-C:\Windows\System32\winresume.exe
2012-08-15 03:56:2820352----a-w-C:\Windows\System32\kdusb.dll
2012-08-15 03:56:2819328----a-w-C:\Windows\System32\kd1394.dll
2012-08-15 03:56:2817792----a-w-C:\Windows\System32\kdcom.dll
2012-08-15 03:55:46954752----a-w-C:\Windows\SysWow64\mfc40.dll
2012-08-15 03:55:46954288----a-w-C:\Windows\SysWow64\mfc40u.dll
2012-08-15 03:55:3646592----a-w-C:\Windows\System32\msasn1.dll
2012-08-15 03:55:3634816----a-w-C:\Windows\SysWow64\msasn1.dll
2012-08-15 03:55:32182272----a-w-C:\Windows\System32\cryptsvc.dll
2012-08-15 03:55:321460224----a-w-C:\Windows\System32\crypt32.dll
2012-08-15 03:55:32140288----a-w-C:\Windows\System32\cryptnet.dll
2012-08-15 03:55:32139264----a-w-C:\Windows\SysWow64\cryptsvc.dll
2012-08-15 03:55:321156608----a-w-C:\Windows\SysWow64\crypt32.dll
2012-08-15 03:55:32103936----a-w-C:\Windows\SysWow64\cryptnet.dll
2012-08-15 03:53:562048----a-w-C:\Windows\SysWow64\tzres.dll
2012-08-15 03:53:562048----a-w-C:\Windows\System32\tzres.dll
2012-08-15 03:51:571739160----a-w-C:\Windows\System32\ntdll.dll
2012-08-15 03:51:571292592----a-w-C:\Windows\SysWow64\ntdll.dll
2012-08-15 03:51:49236032----a-w-C:\Windows\System32\srvsvc.dll
2012-08-15 03:51:489728----a-w-C:\Windows\SysWow64\sscore.dll
2012-08-15 03:49:1877312----a-w-C:\Windows\System32\packager.dll
2012-08-15 03:49:1867072----a-w-C:\Windows\SysWow64\packager.dll
2012-08-15 03:49:149133488----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-08-15 03:09:1680896----a-w-C:\Windows\System32\imagehlp.dll
2012-08-15 03:09:1622896----a-w-C:\Windows\System32\drivers\fs_rec.sys
2012-08-15 03:09:16158720----a-w-C:\Windows\SysWow64\imagehlp.dll
2012-08-15 03:09:065120----a-w-C:\Windows\SysWow64\wmi.dll
2012-08-15 03:09:065120----a-w-C:\Windows\System32\wmi.dll
2012-08-15 03:09:06220672----a-w-C:\Windows\System32\wintrust.dll
2012-08-15 03:09:06172544----a-w-C:\Windows\SysWow64\wintrust.dll
2012-08-15 03:08:46243712----a-w-C:\Windows\System32\drivers\ks.sys
2012-08-15 03:07:00139264----a-w-C:\Windows\System32\cabview.dll
2012-08-15 03:07:00132608----a-w-C:\Windows\SysWow64\cabview.dll
2012-08-15 03:06:42826368----a-w-C:\Windows\SysWow64\rdpcore.dll
2012-08-15 03:06:4223552----a-w-C:\Windows\System32\drivers\tdtcp.sys
2012-08-15 03:06:421031680----a-w-C:\Windows\System32\rdpcore.dll
2012-08-15 03:03:172622464----a-w-C:\Windows\System32\wucltux.dll
2012-08-15 03:02:4799840----a-w-C:\Windows\System32\wudriver.dll
2012-08-15 03:02:32186752----a-w-C:\Windows\System32\wuwebv.dll
2012-08-15 03:02:3136864----a-w-C:\Windows\System32\wuapp.exe
2012-08-15 02:59:47--------d-----w-C:\Users\Dennis\AppData\Local\ATI
2012-08-15 02:58:490----a-w-C:\Windows\ativpsrm.bin
2012-08-15 02:56:23--------d-----w-C:\ProgramData\AMD
2012-08-15 02:56:23--------d-----w-C:\Program Files (x86)\AMD AVT
2012-08-15 02:56:21--------d-----w-C:\Program Files (x86)\AMD APP
2012-08-15 02:56:19--------d-----w-C:\Program Files\Common Files\ATI Technologies
2012-08-15 02:56:19--------d-----w-C:\Program Files (x86)\Common Files\ATI Technologies
2012-08-15 02:55:41--------d-----w-C:\Program Files (x86)\ATI.ACE
2012-08-15 02:55:39--------d-----w-C:\Program Files\ATI
2012-08-15 02:53:22--------d-----w-C:\AMD
2012-08-12 03:31:47--------d-----w-C:\Program Files (x86)\Oracle
2012-08-12 03:30:51772544----a-w-C:\Windows\SysWow64\npDeployJava1.dll
2012-08-12 03:30:51687544----a-w-C:\Windows\SysWow64\deployJava1.dll
2012-08-12 02:36:5377656----a-w-C:\Windows\System32\XAPOFX1_5.dll
2012-08-12 02:36:5374072----a-w-C:\Windows\SysWow64\XAPOFX1_5.dll
2012-08-12 02:36:53527192----a-w-C:\Windows\SysWow64\XAudio2_7.dll
2012-08-12 02:36:53518488----a-w-C:\Windows\System32\XAudio2_7.dll
2012-08-12 02:36:312526056----a-w-C:\Windows\System32\D3DCompiler_43.dll
2012-08-12 02:36:312106216----a-w-C:\Windows\SysWow64\D3DCompiler_43.dll
2012-08-12 02:36:20276832----a-w-C:\Windows\System32\d3dx11_43.dll
2012-08-12 02:36:20248672----a-w-C:\Windows\SysWow64\d3dx11_43.dll
2012-08-12 02:31:1949472----a-w-C:\Windows\SysWow64\netfxperf.dll
2012-08-12 02:31:1948960----a-w-C:\Windows\System32\netfxperf.dll
2012-08-12 02:31:1899176----a-w-C:\Windows\SysWow64\PresentationHostProxy.dll
2012-08-12 02:31:18444752----a-w-C:\Windows\System32\mscoree.dll
2012-08-12 02:31:18320352----a-w-C:\Windows\System32\PresentationHost.exe
2012-08-12 02:31:18297808----a-w-C:\Windows\SysWow64\mscoree.dll
2012-08-12 02:31:18295264----a-w-C:\Windows\SysWow64\PresentationHost.exe
2012-08-12 02:31:181942856----a-w-C:\Windows\System32\dfshim.dll
2012-08-12 02:31:181130824----a-w-C:\Windows\SysWow64\dfshim.dll
2012-08-12 02:31:18109912----a-w-C:\Windows\System32\PresentationHostProxy.dll
2012-08-12 02:30:203860992----a-w-C:\Windows\System32\UIRibbon.dll
2012-08-12 02:30:202983424----a-w-C:\Windows\SysWow64\UIRibbon.dll
2012-08-12 02:30:201164800----a-w-C:\Windows\SysWow64\UIRibbonRes.dll
2012-08-12 02:30:201164800----a-w-C:\Windows\System32\UIRibbonRes.dll
2012-08-12 02:28:58537432-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\396104111cd783203\DXSETUP.exe
2012-08-12 02:28:581801048-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\396104111cd783203\dsetup32.dll
2012-08-12 02:28:5789944-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\396104111cd783203\DSETUP.dll
2012-08-12 02:28:54889416-c--a-w-C:\Program Files (x86)\Common Files\Windows Live\.cache\373a72811cd783201\dotNetFx40_Full_setup.exe
2012-08-12 02:26:48--------d-----w-C:\Users\Dennis\AppData\Local\Windows Live
2012-08-11 19:32:17--------d-----w-C:\Program Files (x86)\Common Files\Windows Live
2012-08-11 19:29:43737072----a-w-C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2012-08-11 19:29:304283672----a-w-C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-08-11 19:29:2042776----a-w-C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-08-11 19:29:12539984----a-w-C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-08-10 22:08:21--------d-----w-C:\Users\Dennis\AppData\Local\Spotify
2012-08-10 22:08:03--------d-----w-C:\Users\Dennis\AppData\Roaming\Spotify
2012-08-10 05:05:47--------d-----w-C:\Users\Dennis\AppData\Local\Apple Computer
2012-08-10 05:05:4434152----a-w-C:\Windows\System32\drivers\GEARAspiWDM.sys
2012-08-10 05:05:44126312----a-w-C:\Windows\System32\GEARAspi64.dll
2012-08-10 05:05:44107368----a-w-C:\Windows\SysWow64\GEARAspi.dll
2012-08-10 05:05:35--------d-----w-C:\Program Files\iPod
2012-08-10 05:05:34--------d-----w-C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-08-10 05:05:34--------d-----w-C:\Program Files\iTunes
2012-08-10 05:05:34--------d-----w-C:\Program Files (x86)\iTunes
2012-08-10 05:04:50--------d-----w-C:\Users\Dennis\AppData\Local\Apple
2012-08-10 05:04:25--------d-----w-C:\Program Files\Bonjour
2012-08-10 05:04:25--------d-----w-C:\Program Files (x86)\Bonjour
2012-08-09 01:10:41406528----a-w-C:\Windows\SysWow64\ReWire.dll
2012-08-09 01:10:41338432----a-w-C:\Windows\SysWow64\REX Shared Library.dll
2012-08-09 01:05:54--------d-----w-C:\Users\Dennis\AppData\Roaming\Propellerhead Software
2012-08-09 01:05:54--------d-----w-C:\ProgramData\Propellerhead Software
2012-08-09 01:03:38--------d-----w-C:\Program Files (x86)\Propellerhead
2012-08-08 02:39:41--------d-----w-C:\Program Files (x86)\Common Files\Steam
2012-08-08 02:39:40--------d-----w-C:\Program Files (x86)\Steam
2012-08-07 16:12:10--------d-----w-C:\Users\Dennis\AppData\Roaming\LolClient
2012-08-07 15:38:54467984----a-w-C:\Windows\SysWow64\d3dx10_39.dll
2012-08-07 15:38:543851784----a-w-C:\Windows\SysWow64\D3DX9_39.dll
2012-08-07 15:38:541493528----a-w-C:\Windows\SysWow64\D3DCompiler_39.dll
2012-08-07 15:35:27--------d-----w-C:\Riot Games
2012-08-07 05:39:29--------d-----w-C:\Users\Dennis\AppData\Local\Skyrim
2012-08-07 05:27:31--------d-----w-C:\Program Files (x86)\The Elder Scrolls V Skyrim
2012-08-07 02:13:42--------d-----w-C:\ProgramData\Nexon
2012-08-07 01:34:58--------d-----w-C:\Nexon
2012-08-07 01:34:57--------d-----w-C:\ProgramData\NexonUS
2012-08-07 00:47:00--------d-----w-C:\Program Files (x86)\Pando Networks
2012-08-06 22:44:46--------d-----w-C:\Users\Dennis\AppData\Roaming\NVIDIA
2012-08-06 22:41:27--------d-----w-C:\Program Files (x86)\Amnesia - The Dark Descent
2012-08-06 22:39:19283200----a-w-C:\Windows\System32\drivers\dtsoftbus01.sys
2012-08-06 22:39:16--------d-----w-C:\Users\Dennis\AppData\Roaming\DAEMON Tools Pro
2012-08-06 22:39:14--------d-----w-C:\Program Files (x86)\DAEMON Tools Pro
2012-08-06 22:38:19--------d-----w-C:\ProgramData\DAEMON Tools Pro
2012-08-06 22:31:26279656------w-C:\Windows\System32\MpSigStub.exe
2012-08-06 22:17:39--------d-----w-C:\Users\Dennis\.swt
2012-08-06 22:17:38--------d-----w-C:\Users\Dennis\AppData\Roaming\Azureus
2012-08-06 22:17:19--------d-----w-C:\Program Files (x86)\Vuze
2012-08-06 21:43:13--------d-----w-C:\Users\Dennis\AppData\Local\Diagnostics
2012-08-06 06:50:38--------d-----w-C:\Windows\Panther
2012-08-06 04:39:15--------d-----w-C:\Program Files (x86)\NVIDIA Corporation
2012-08-06 04:38:10--------d-----w-C:\Program Files\NVIDIA Corporation
2012-08-06 04:37:56--------d-----w-C:\NVIDIA
2012-08-06 04:31:3154072----a-w-C:\Windows\System32\drivers\aswRdr2.sys
2012-08-06 04:31:30969200----a-w-C:\Windows\System32\drivers\aswSnx.sys
2012-08-06 04:31:3071600----a-w-C:\Windows\System32\drivers\aswMonFlt.sys
2012-08-06 04:31:09--------d-----w-C:\Users\Dennis\AppData\Local\Google
2012-08-06 04:30:2841224----a-w-C:\Windows\avastSS.scr
2012-08-06 04:30:26--------d-----w-C:\Users\Dennis\AppData\Local\Deployment
2012-08-06 04:30:26--------d-----w-C:\Users\Dennis\AppData\Local\Apps
2012-08-06 04:30:19--------d-----w-C:\ProgramData\AVAST Software
2012-08-06 04:30:19--------d-----w-C:\Program Files\AVAST Software
2012-08-06 04:25:5715128----a-r-C:\Windows\System32\drivers\IntelMEFWVer.dll
2012-08-06 04:25:12--------d-sh--w-C:\Windows\Installer
2012-08-06 04:25:05--------d-----w-C:\Program Files (x86)\Common Files\postureAgent
2012-08-06 04:24:3516152----a-w-C:\Windows\System32\drivers\iusb3hcs.sys
2012-08-06 04:24:28788760----a-w-C:\Windows\System32\drivers\iusb3xhc.sys
2012-08-06 04:24:27356120----a-w-C:\Windows\System32\drivers\iusb3hub.sys
2012-08-06 04:20:0874344----a-w-C:\Windows\System32\RtNicProp64.dll
2012-08-06 04:20:08676968----a-w-C:\Windows\System32\drivers\Rt64win7.sys
2012-08-06 04:20:08107624----a-w-C:\Windows\System32\RTNUninst64.dll
2012-08-06 04:20:03--------d-----w-C:\Program Files (x86)\Realtek
2012-08-06 04:19:2253248----a-w-C:\Windows\SysWow64\CSVer.dll
2012-08-06 04:19:17--------d-----w-C:\Intel
2012-08-06 04:18:41--------d-----w-C:\MSI
2012-08-06 04:04:15--------d-----w-C:\Windows\SysWow64\Wat
2012-08-06 04:04:15--------d-----w-C:\Windows\System32\Wat
2012-08-06 03:59:35--------d-sh--w-C:\Recovery
2012-07-28 07:54:00321472----a-w-C:\Windows\WLXPGSS.SCR
2012-07-27 20:51:30184248----a-w-C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2012-07-27 00:08:06862664----a-w-C:\Windows\SysWow64\msvcr110.dll
2012-07-27 00:08:06534480----a-w-C:\Windows\SysWow64\msvcp110.dll
2012-07-27 00:08:06251864----a-w-C:\Windows\SysWow64\vccorlib110.dll
2012-07-27 00:08:06153536----a-w-C:\Windows\SysWow64\atl110.dll
2012-07-27 00:08:06115656----a-w-C:\Windows\SysWow64\vcomp110.dll
2012-07-26 20:22:10828872----a-w-C:\Windows\System32\msvcr110.dll
2012-07-26 20:22:10661448----a-w-C:\Windows\System32\msvcp110.dll
2012-07-26 20:22:10354264----a-w-C:\Windows\System32\vccorlib110.dll
2012-07-26 20:22:10177096----a-w-C:\Windows\System32\atl110.dll
2012-07-26 20:22:10124360----a-w-C:\Windows\System32\vcomp110.dll
.
==================== Find3M ====================
.
2012-08-06 04:05:32419840----a-w-C:\Windows\System32\systemcpl.dll
2012-08-06 04:05:31833024----a-w-C:\Windows\SysWow64\user32.dll
2012-08-06 04:05:311008640----a-w-C:\Windows\System32\user32.dll
2012-07-17 20:14:44253184----a-w-C:\Windows\System32\LIVESSP.DLL
2012-07-17 19:49:00209648----a-w-C:\Windows\SysWow64\LIVESSP.DLL
2012-06-29 03:56:342312704----a-w-C:\Windows\System32\jscript9.dll
2012-06-29 03:49:111392128----a-w-C:\Windows\System32\wininet.dll
2012-06-29 03:48:071494528----a-w-C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49173056----a-w-C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:482382848----a-w-C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:581800704----a-w-C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:011129472----a-w-C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:591427968----a-w-C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43142848----a-w-C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:452382848----a-w-C:\Windows\SysWow64\mshtml.tlb
2012-06-11 18:59:3810248192----a-w-C:\Windows\System32\drivers\atikmdag.sys
2012-06-11 18:50:46187392----a-w-C:\Windows\System32\clinfo.exe
2012-06-11 18:50:3075264----a-w-C:\Windows\System32\OpenVideo64.dll
2012-06-11 18:50:2465024----a-w-C:\Windows\SysWow64\OpenVideo.dll
2012-06-11 18:50:1863488----a-w-C:\Windows\System32\OVDecode64.dll
2012-06-11 18:50:1456320----a-w-C:\Windows\SysWow64\OVDecode.dll
2012-06-11 18:50:0616457728----a-w-C:\Windows\System32\amdocl64.dll
2012-06-11 18:49:2213008896----a-w-C:\Windows\SysWow64\amdocl.dll
2012-06-11 18:48:3454784----a-w-C:\Windows\System32\OpenCL.dll
2012-06-11 18:48:3050176----a-w-C:\Windows\SysWow64\OpenCL.dll
2012-06-11 18:35:4870144----a-w-C:\Windows\System32\coinst_8.98.dll
2012-06-11 18:29:3424826368----a-w-C:\Windows\System32\atio6axx.dll
2012-06-11 18:00:3220467712----a-w-C:\Windows\SysWow64\atioglxx.dll
2012-06-11 17:25:06163840----a-w-C:\Windows\System32\atiapfxx.exe
2012-06-11 17:24:58924160----a-w-C:\Windows\SysWow64\aticfx32.dll
2012-06-11 17:23:121090560----a-w-C:\Windows\System32\aticfx64.dll
2012-06-11 17:20:02442368----a-w-C:\Windows\System32\ATIDEMGX.dll
2012-06-11 17:19:58532992----a-w-C:\Windows\System32\atieclxx.exe
2012-06-11 17:19:14239616----a-w-C:\Windows\System32\atiesrxx.exe
2012-06-11 17:17:56120320----a-w-C:\Windows\System32\atitmm64.dll
2012-06-11 17:17:4221504----a-w-C:\Windows\System32\atimuixx.dll
2012-06-11 17:17:3859392----a-w-C:\Windows\System32\atiedu64.dll
2012-06-11 17:17:3243520----a-w-C:\Windows\SysWow64\ati2edxx.dll
2012-06-11 17:16:486301696----a-w-C:\Windows\SysWow64\atidxx32.dll
2012-06-11 17:01:566914560----a-w-C:\Windows\System32\atidxx64.dll
2012-06-11 16:51:544246528----a-w-C:\Windows\System32\atiumd6a.dll
2012-06-11 16:45:4851200----a-w-C:\Windows\System32\aticalrt64.dll
2012-06-11 16:45:4646080----a-w-C:\Windows\SysWow64\aticalrt.dll
2012-06-11 16:45:445480448----a-w-C:\Windows\SysWow64\atiumdag.dll
2012-06-11 16:45:4044544----a-w-C:\Windows\System32\aticalcl64.dll
2012-06-11 16:45:3844032----a-w-C:\Windows\SysWow64\aticalcl.dll
2012-06-11 16:45:2615703040----a-w-C:\Windows\System32\aticaldd64.dll
2012-06-11 16:43:184729344----a-w-C:\Windows\SysWow64\atiumdva.dll
2012-06-11 16:40:5813277696----a-w-C:\Windows\SysWow64\aticaldd.dll
2012-06-11 16:36:566605824----a-w-C:\Windows\System32\atiumd64.dll
2012-06-11 16:34:4477312----a-w-C:\Windows\System32\amdave64.dll
2012-06-11 16:34:3877312----a-w-C:\Windows\SysWow64\amdave32.dll
2012-06-11 16:34:2874240----a-w-C:\Windows\System32\atisamu64.dll
2012-06-11 16:34:2271168----a-w-C:\Windows\atisamu32.dll
2012-06-11 16:27:02539136----a-w-C:\Windows\System32\atiadlxx.dll
2012-06-11 16:26:52368640----a-w-C:\Windows\SysWow64\atiadlxy.dll
2012-06-11 16:26:4017920----a-w-C:\Windows\System32\atig6pxx.dll
2012-06-11 16:26:3614848----a-w-C:\Windows\SysWow64\atiglpxx.dll
2012-06-11 16:26:3614848----a-w-C:\Windows\System32\atiglpxx.dll
2012-06-11 16:26:3041984----a-w-C:\Windows\System32\atig6txx.dll
2012-06-11 16:26:2233280----a-w-C:\Windows\SysWow64\atigktxx.dll
2012-06-11 16:26:14367616----a-w-C:\Windows\System32\drivers\atikmpag.sys
2012-06-11 16:25:2054784----a-w-C:\Windows\System32\atiuxp64.dll
2012-06-11 16:25:1242496----a-w-C:\Windows\SysWow64\atiuxpag.dll
2012-06-11 16:25:0645056----a-w-C:\Windows\System32\atiu9p64.dll
2012-06-11 16:24:5832768----a-w-C:\Windows\SysWow64\atiu9pag.dll
2012-06-11 16:24:2453248----a-w-C:\Windows\System32\drivers\ati2erec.dll
2012-06-11 16:23:1856320----a-w-C:\Windows\System32\atimpc64.dll
2012-06-11 16:23:1856320----a-w-C:\Windows\System32\amdpcom64.dll
2012-06-11 16:23:1056832----a-w-C:\Windows\SysWow64\atimpc32.dll
2012-06-11 16:23:1056832----a-w-C:\Windows\SysWow64\amdpcom32.dll
2012-06-06 05:50:502003968----a-w-C:\Windows\System32\msxml6.dll
2012-06-06 05:50:501880064----a-w-C:\Windows\System32\msxml3.dll
2012-06-06 05:09:461389568----a-w-C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:09:461236992----a-w-C:\Windows\SysWow64\msxml3.dll
2012-06-02 05:38:2695088----a-w-C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:38:24152432----a-w-C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:37:45459216----a-w-C:\Windows\System32\drivers\cng.sys
2012-06-02 05:27:02340992----a-w-C:\Windows\System32\schannel.dll
2012-06-02 05:27:00307200----a-w-C:\Windows\System32\ncrypt.dll
2012-06-02 04:48:3922016----a-w-C:\Windows\SysWow64\secur32.dll
2012-06-02 04:48:35225280----a-w-C:\Windows\SysWow64\schannel.dll
2012-06-02 04:47:31219136----a-w-C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:42:5196768----a-w-C:\Windows\SysWow64\sspicli.dll
.
============= FINISH: 16:25:34.18 ===============
- Status
