DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16635 BrowserJavaVersion: 10.25.2
Run by user at 22:23:16 on 2013-08-05
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3562.1466 [GMT -4:00]
.
AV: AVG Internet Security 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Internet Security 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\Hpservice.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\24x7Help\App24x7Svc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Program Files (x86)\MyPC Backup\BackupStack.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\user\AppData\Roaming\Search Protection\SearchProtection.exe
C:\Users\user\AppData\Local\FilesFrog Update Checker\update_checker.exe
C:\Users\user\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\24x7Help\App24x7Help.exe
C:\Program Files (x86)\24x7Help\App24x7Hook.exe
C:\Program Files (x86)\24x7Help\App24x7Hook64.exe
C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
C:\Users\user\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://
www.google.com
uProxyOverride = <local>
uURLSearchHooks: Somoto V.1 Toolbar: {e306aaa2-3b4f-4802-9faf-0c10ab78b589} -
mURLSearchHooks: Somoto V.1 Toolbar: {e306aaa2-3b4f-4802-9faf-0c10ab78b589} -
mWinlogon: Userinit = userinit.exe,
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\IPS\IPSBHO.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: TrueSuite Website Log On: {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2012\IEBHO.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: Somoto V.1 Toolbar: {e306aaa2-3b4f-4802-9faf-0c10ab78b589} -
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\CoIEPlg.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: Somoto V.1 Toolbar: {e306aaa2-3b4f-4802-9faf-0c10ab78b589} -
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [SearchProtection] "C:\Users\user\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
uRun: [SDP] C:\Users\user\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto
uRun: [Akamai NetSession Interface] "C:\Users\user\AppData\Local\Akamai\netsession_win.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [24x7HELP] "C:\Program Files (x86)\24x7Help\App24x7Help.exe" /STARTUP
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Aeria Ignite] "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
Trusted Zone: aeriagames.com
Trusted Zone: aeriagames.com
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{84479487-AA4A-4788-BC5F-9E0E7E91FF32} : DHCPNameServer = 65.32.5.111 65.32.5.112
TCP: Interfaces\{8FC41F59-9965-49A0-9191-315A50C9C9B4} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{8FC41F59-9965-49A0-9191-315A50C9C9B4}\3547F6275644 : DHCPNameServer = 204.215.43.3 209.26.88.31
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
mASetup: {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} - msiexec /fu {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} /qn
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: TrueSuite Website Log On: {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2012\x64\IEBHO.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [SetDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {6032497A-4479-462B-ADB8-A0A372BB9A23} - msiexec /fu {6032497A-4479-462B-ADB8-A0A372BB9A23} /qn
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\s9uc69uc.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282812&CUI=UN22473897826981254&UM=2&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Somoto V.1 Customized Web Search
FF - prefs.js: browser.startup.homepage -
www.google.com
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=293224&p=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-07-10 18:46; {BBDA0591-3099-440a-AA10-41764D9DB4DB}; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn
FF - ExtSQL: 2013-07-23 18:05; {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn
FF - ExtSQL: 2013-08-04 21:35;
gencrawler@some.com; C:\Users\user\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\
gencrawler@some.com
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2011-4-16 79488]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2011-4-16 40064]
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2013-7-20 71480]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2013-7-20 311608]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2013-7-1 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2013-7-10 45880]
R1 Avgfwfd;AVG network filter service;C:\Windows\System32\drivers\avgfwd6a.sys [2012-9-4 50296]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2013-7-20 246072]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2013-7-20 206648]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-3-21 240952]
R2 24x7HelpSvc;24x7HelpService;C:\Program Files (x86)\24x7Help\App24x7Svc.exe [2013-7-23 342608]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2013-7-22 89600]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-9-28 204288]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-9-28 361984]
R2 avgfws;AVG Firewall;C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2013-7-25 1432080]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-7-4 4939312]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-7-23 283136]
R2 BackupStack;Computer Backup (MyPC Backup);C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-7-1 32808]
R2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE [2012-6-11 193616]
R2 FPLService;TrueSuiteService;C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe [2011-8-26 260424]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]
R2 HPAuto;HP Auto;C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-2-17 682040]
R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-11-5 197536]
R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2011-5-27 30520]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-2-15 34872]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-6-12 2413056]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe [2012-6-12 138760]
R3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2011-7-16 96896]
R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2012-6-12 46136]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2011-7-16 214144]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20110819.004\BHDrvx64.sys [2012-6-12 1151096]
R3 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\System32\drivers\NISx64\1301000.01C\ccSetx64.sys [2012-6-12 167048]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2010-7-28 31088]
R3 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20110726.001\IDSviA64.sys [2012-6-12 488568]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\drivers\RtsPStor.sys [2012-6-12 338536]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-6-12 428136]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\Windows\System32\drivers\rtl8192ce.sys [2012-6-12 1145448]
R3 SymDS;Symantec Data Store;C:\Windows\System32\drivers\NISx64\1301000.01C\SymDS64.sys [2012-6-12 451192]
R3 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\NISx64\1301000.01C\SymEFA64.sys [2012-6-12 1084536]
R3 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NISx64\1301000.01C\Ironx64.sys [2012-6-12 189560]
R3 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NISx64\1301000.01C\symnets.sys [2012-6-12 401016]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408]
S3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE [2012-6-11 240208]
S3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver;C:\Windows\System32\drivers\BVRPMPR5a64.SYS [2013-7-23 35840]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-7-15 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2013-08-06 02:07:31--------d-----w-C:\Users\user\AppData\Roaming\Malwarebytes
2013-08-06 02:06:29--------d-----w-C:\ProgramData\Malwarebytes
2013-08-06 02:06:2825928----a-w-C:\Windows\System32\drivers\mbam.sys
2013-08-06 02:06:28--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-05 02:47:22--------d-----w-C:\Users\user\AppData\Local\Anvisoft
2013-08-05 02:47:22--------d-----w-C:\Program Files (x86)\Anvisoft
2013-08-05 01:36:56--------d-----w-C:\Windows\SysWow64\WNLT
2013-08-05 01:35:46--------d-----w-C:\Users\user\AppData\Local\DownloadTerms
2013-08-05 01:35:28--------d-----w-C:\Users\user\AppData\Roaming\Media Finder
2013-08-05 00:51:34--------d-----w-C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
2013-08-04 15:43:22--------d-----w-C:\Windows\pss
2013-08-03 22:23:08--------d-----w-C:\Users\user\AppData\Roaming\OpenCandy
2013-08-03 19:15:52--------d-----w-C:\Users\user\AppData\Roaming\VSRevoGroup
2013-08-03 18:55:04--------d-----w-C:\Program Files (x86)\VS Revo Group
2013-08-03 18:21:44--------d-----w-C:\Users\user\AppData\Local\Bundled software uninstaller
2013-08-03 18:21:14--------d-----w-C:\Users\user\AppData\Local\Programs
2013-08-03 07:35:2249110----a-w-C:\Windows\SysWow64\bypass.xem
2013-08-03 07:35:2232768----a-w-C:\Windows\SysWow64\OGHcham.dat
2013-08-03 07:31:42875472----a-w-C:\Windows\SysWow64\msvcr110.dll
2013-08-03 07:31:42535008----a-w-C:\Windows\SysWow64\msvcp110.dll
2013-08-03 07:31:42147968----a-w-C:\Windows\SysWow64\k1.dat
2013-08-03 07:31:42108336----a-w-C:\Windows\SysWow64\MSWINSCK.OCX
2013-08-01 23:51:23--------d-----w-C:\Users\user\AppData\Roaming\Awesomium
2013-07-29 07:02:46--------d-----w-C:\Users\user\AppData\Local\Aeria Games
2013-07-29 07:02:19--------d-----w-C:\ProgramData\Aeria Games
2013-07-29 06:34:09--------d-sh--w-C:\Windows\SysWow64\AI_RecycleBin
2013-07-29 06:34:06--------d-----w-C:\Program Files (x86)\Aeria Games
2013-07-29 05:47:41--------d-----w-C:\Users\user\AppData\Local\Akamai
2013-07-29 05:47:39--------d-----w-C:\AeriaGames
2013-07-28 21:27:20789416----a-w-C:\Windows\SysWow64\deployJava1.dll
2013-07-28 21:27:19867240----a-w-C:\Windows\SysWow64\npDeployJava1.dll
2013-07-28 21:27:0396168----a-w-C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-28 20:33:06--------d-----w-C:\ProgramData\InterAction studios
2013-07-28 20:31:56--------d-----w-C:\Program Files (x86)\WildGames
2013-07-28 20:19:58--------d-----w-C:\Users\user\AppData\Roaming\WildTangent
2013-07-27 22:33:56--------d-----w-C:\Users\user\AppData\Local\Microsoft Games
2013-07-25 23:48:57--------d-----w-C:\Users\user\AppData\Local\Conduit
2013-07-25 23:48:26--------d-----w-C:\Users\user\AppData\Local\CRE
2013-07-25 23:46:34--------d-----w-C:\Users\user\AppData\Local\FilesFrog Update Checker
2013-07-24 23:56:37--------d-----w-C:\Users\user\AppData\Local\Diagnostics
2013-07-24 20:56:50--------d-----w-C:\Users\user\AppData\Roaming\IDT
2013-07-24 20:53:13--------d-----w-C:\Users\user\AppData\Local\SCE
2013-07-24 20:52:1878680----a-w-C:\Windows\System32\XAPOFX1_4.dll
2013-07-24 20:52:1874072----a-w-C:\Windows\SysWow64\XAPOFX1_4.dll
2013-07-24 20:52:18530776----a-w-C:\Windows\System32\XAudio2_6.dll
2013-07-24 20:52:18528216----a-w-C:\Windows\SysWow64\XAudio2_6.dll
2013-07-24 20:52:16238936----a-w-C:\Windows\SysWow64\xactengine3_6.dll
2013-07-24 20:52:16176984----a-w-C:\Windows\System32\xactengine3_6.dll
2013-07-24 20:52:1524920----a-w-C:\Windows\System32\X3DAudio1_7.dll
2013-07-24 20:52:1522360----a-w-C:\Windows\SysWow64\X3DAudio1_7.dll
2013-07-24 16:41:16--------d-----w-C:\Users\user\AppData\Roaming\Search Protection
2013-07-24 16:39:04--------d-----w-C:\Users\user\AppData\Roaming\uTorrent
2013-07-24 02:10:32--------d-----w-C:\Program Files (x86)\dumps
2013-07-24 02:08:38--------d-----w-C:\Program Files (x86)\Common Files\Steam
2013-07-24 02:08:36--------d-----w-C:\Program Files (x86)\Steam
2013-07-24 01:22:32--------d-----w-C:\Users\user\AppData\Local\HP
2013-07-24 00:29:48--------d-----w-C:\Users\user\AppData\Local\CyberLink
2013-07-24 00:29:09--------d-----r-C:\Program Files (x86)\Skype
2013-07-24 00:27:04--------d-----w-C:\Users\user\AppData\Local\CrashDumps
2013-07-23 23:24:34--------d-----w-C:\Program Files\CCleaner
2013-07-23 23:23:40--------d-----w-C:\Users\user\AppData\Roaming\24x7 Help
2013-07-23 23:23:34--------d-----w-C:\Program Files (x86)\24x7Help
2013-07-23 23:23:32--------d-----w-C:\Users\user\AppData\Roaming\PCFixSpeed
2013-07-23 23:23:32--------d-----w-C:\ProgramData\PCFixSpeed
2013-07-23 23:22:26--------d-----w-C:\Users\user\AppData\Local\SwvUpdater
2013-07-23 23:01:04--------d-----w-C:\Users\user\AppData\Local\Google
2013-07-23 22:59:00--------d-----w-C:\Users\user\AppData\Local\Macromedia
2013-07-23 22:58:47692104----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe
2013-07-23 22:58:01--------d-----w-C:\Users\user\AppData\Local\Adobe
2013-07-23 22:43:57--------d-----w-C:\Users\user\AppData\Roaming\AVG2013
2013-07-23 22:43:19--------d-----w-C:\Users\user\AppData\Roaming\TuneUp Software
2013-07-23 22:42:43--------d--h--w-C:\$AVG
2013-07-23 22:42:42--------d-----w-C:\ProgramData\AVG2013
2013-07-23 22:41:54--------d-----w-C:\Program Files (x86)\AVG
2013-07-23 22:38:22--------d--h--w-C:\ProgramData\Common Files
2013-07-23 22:38:22--------d-----w-C:\Users\user\AppData\Local\MFAData
2013-07-23 22:38:22--------d-----w-C:\Users\user\AppData\Local\Avg2013
2013-07-23 22:38:22--------d-----w-C:\ProgramData\MFAData
2013-07-23 22:34:43--------d-----w-C:\Program Files (x86)\MyPC Backup
2013-07-23 22:23:4535840----a-r-C:\Windows\System32\drivers\BVRPMPR5a64.SYS
2013-07-23 22:23:07--------d-----w-C:\Netgear
2013-07-23 13:31:579460976----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{04E4CA21-CC66-4776-9188-1C5A73B6A61A}\mpengine.dll
2013-07-22 16:40:55535552----a-w-C:\Windows\System32\drivers\stwrt64.sys
2013-07-22 16:40:50654336------w-C:\Windows\System32\stapi64.dll
2013-07-22 16:40:50448512----a-w-C:\Windows\System32\stcplx64.dll
2013-07-22 16:40:501987072----a-w-C:\Windows\System32\stapo64.dll
2013-07-22 16:40:42--------d-----w-C:\Program Files\IDT
2013-07-20 05:51:00311608----a-w-C:\Windows\System32\drivers\avgloga.sys
2013-07-20 05:50:5671480----a-w-C:\Windows\System32\drivers\avgidsha.sys
2013-07-20 05:50:56246072----a-w-C:\Windows\System32\drivers\avgidsdrivera.sys
2013-07-20 05:50:50206648----a-w-C:\Windows\System32\drivers\avgldx64.sys
2013-07-16 14:13:26--------d-----w-C:\Program Files (x86)\MSXML 4.0
2013-07-15 13:16:11--------d-----w-C:\Windows\SysWow64\Wat
2013-07-15 13:16:11--------d-----w-C:\Windows\System32\Wat
2013-07-15 13:05:271424384----a-w-C:\Windows\System32\WindowsCodecs.dll
2013-07-15 13:05:271230336----a-w-C:\Windows\SysWow64\WindowsCodecs.dll
2013-07-15 13:00:041643520----a-w-C:\Windows\System32\DWrite.dll
2013-07-15 13:00:041247744----a-w-C:\Windows\SysWow64\DWrite.dll
2013-07-13 14:59:109728----a-w-C:\Windows\System32\Wdfres.dll
2013-07-13 14:59:10785512----a-w-C:\Windows\System32\drivers\Wdf01000.sys
2013-07-13 14:59:1054376----a-w-C:\Windows\System32\drivers\WdfLdr.sys
2013-07-13 14:59:102560----a-w-C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2013-07-13 14:43:599728---ha-w-C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-13 14:13:4046080----a-w-C:\Windows\System32\atmlib.dll
2013-07-13 14:13:40367616----a-w-C:\Windows\System32\atmfd.dll
2013-07-13 14:13:4034304----a-w-C:\Windows\SysWow64\atmlib.dll
2013-07-13 14:13:40295424----a-w-C:\Windows\SysWow64\atmfd.dll
2013-07-13 14:12:2187040----a-w-C:\Windows\System32\drivers\WUDFPf.sys
2013-07-13 14:12:2184992----a-w-C:\Windows\System32\WUDFSvc.dll
2013-07-13 14:12:2145056----a-w-C:\Windows\System32\WUDFCoinstaller.dll
2013-07-13 14:12:21229888----a-w-C:\Windows\System32\WUDFHost.exe
2013-07-13 14:12:21198656----a-w-C:\Windows\System32\drivers\WUDFRd.sys
2013-07-13 14:12:21194048----a-w-C:\Windows\System32\WUDFPlatform.dll
2013-07-13 14:12:20744448----a-w-C:\Windows\System32\WUDFx.dll
2013-07-13 13:58:3381408----a-w-C:\Windows\System32\imagehlp.dll
2013-07-13 13:58:3323408----a-w-C:\Windows\System32\drivers\fs_rec.sys
2013-07-13 13:58:33159232----a-w-C:\Windows\SysWow64\imagehlp.dll
2013-07-13 13:58:325120----a-w-C:\Windows\SysWow64\wmi.dll
2013-07-13 13:58:325120----a-w-C:\Windows\System32\wmi.dll
2013-07-12 23:33:598795216----a-w-C:\ProgramData\Microsoft\BingBar\BBSvc\7.1.391.0oemBingBarSetup-Partner.EXE
2013-07-12 14:05:04983912----a-w-C:\Windows\System32\drivers\dxgkrnl.sys
2013-07-12 14:05:04265064----a-w-C:\Windows\System32\drivers\dxgmms1.sys
2013-07-12 14:03:59509952----a-w-C:\Windows\System32\ntshrui.dll
2013-07-12 14:02:50478208----a-w-C:\Windows\System32\dpnet.dll
2013-07-12 14:01:40498688----a-w-C:\Windows\System32\drivers\afd.sys
2013-07-12 14:00:4095744----a-w-C:\Windows\System32\synceng.dll
2013-07-12 13:59:58634880----a-w-C:\Windows\System32\msvcrt.dll
2013-07-12 13:59:57690688----a-w-C:\Windows\SysWow64\msvcrt.dll
2013-07-12 13:59:44903168----a-w-C:\Windows\SysWow64\certutil.exe
2013-07-12 13:59:441464320----a-w-C:\Windows\System32\crypt32.dll
2013-07-12 13:59:441192448----a-w-C:\Windows\System32\certutil.exe
2013-07-12 13:59:4352224----a-w-C:\Windows\System32\certenc.dll
2013-07-12 13:59:4343008----a-w-C:\Windows\SysWow64\certenc.dll
2013-07-12 13:59:43184320----a-w-C:\Windows\System32\cryptsvc.dll
2013-07-12 13:59:43140288----a-w-C:\Windows\SysWow64\cryptsvc.dll
2013-07-12 13:59:43139776----a-w-C:\Windows\System32\cryptnet.dll
2013-07-12 13:59:431160192----a-w-C:\Windows\SysWow64\crypt32.dll
2013-07-12 13:59:43103936----a-w-C:\Windows\SysWow64\cryptnet.dll
2013-07-12 13:59:109460976----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-07-11 13:53:45--------d-----w-C:\Users\user\AppData\Local\AMD
2013-07-11 13:53:35--------d-----w-C:\Users\user\AppData\Local\ATI
2013-07-11 13:52:33--------d-----w-C:\Users\user\AppData\Roaming\Synaptics
2013-07-11 13:43:05--------d-----w-C:\Users\user\AppData\Roaming\hpqlog
2013-07-11 13:43:03--------d-----w-C:\Users\user\AppData\Local\Hewlett-Packard
2013-07-10 22:49:18826880----a-w-C:\Windows\SysWow64\rdpcore.dll
2013-07-10 22:49:1823552----a-w-C:\Windows\System32\drivers\tdtcp.sys
2013-07-10 22:49:181031680----a-w-C:\Windows\System32\rdpcore.dll
2013-07-10 22:45:38--------d-----w-C:\Users\user\AppData\Local\RemEngine
2013-07-10 22:45:31--------d-----w-C:\Users\user\AppData\Local\Hewlett-Packard_Company
2013-07-10 22:45:25--------d-----w-C:\Users\user\AppData\Local\AuthenTec
2013-07-10 05:32:3845880----a-w-C:\Windows\System32\drivers\avgrkx64.sys
.
==================== Find3M ====================
.
2013-07-23 23:09:5271048----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-13 14:47:231054720----a-w-C:\Windows\System32\MsSpellCheckingFacility.exe
2013-07-13 14:43:599728---ha-w-C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-01 05:45:28116536----a-w-C:\Windows\System32\drivers\avgmfx64.sys
2013-06-11 23:43:371767936----a-w-C:\Windows\SysWow64\wininet.dll
2013-06-11 23:43:002877440----a-w-C:\Windows\SysWow64\jscript9.dll
2013-06-11 23:42:5861440----a-w-C:\Windows\SysWow64\iesetup.dll
2013-06-11 23:42:58109056----a-w-C:\Windows\SysWow64\iesysprep.dll
2013-06-11 23:26:202241024----a-w-C:\Windows\System32\wininet.dll
2013-06-11 23:25:163958784----a-w-C:\Windows\System32\jscript9.dll
2013-06-11 23:25:1367072----a-w-C:\Windows\System32\iesetup.dll
2013-06-11 23:25:13136704----a-w-C:\Windows\System32\iesysprep.dll
2013-06-11 22:51:4571680----a-w-C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-06-11 22:50:5889600----a-w-C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-07 03:22:182706432----a-w-C:\Windows\System32\mshtml.tlb
2013-06-07 02:37:522706432----a-w-C:\Windows\SysWow64\mshtml.tlb
2013-06-05 03:34:273153920----a-w-C:\Windows\System32\win32k.sys
2013-06-04 06:00:13624128----a-w-C:\Windows\System32\qedit.dll
2013-06-04 04:53:07509440----a-w-C:\Windows\SysWow64\qedit.dll
2013-05-10 05:49:2730720----a-w-C:\Windows\System32\cryptdlg.dll
2013-05-10 03:20:5424576----a-w-C:\Windows\SysWow64\cryptdlg.dll
2013-05-08 06:39:011910632----a-w-C:\Windows\System32\drivers\tcpip.sys
.
============= FINISH: 22:24:38.95 ===============