Here is DDS
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.9.2
Run by Administrator at 0:48:27 on 1980-01-04
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.630 [GMT -6:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Internet Security *Enabled*
.
============== Running Processes ================
.
C:\Program Files\Tablet\Pen\Pen_TouchService.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Documents and Settings\Administrator\Application Data\DefaultTab\DefaultTab\DTUpdate.exe
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\PDF Complete\pdfsty.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\PDF Complete\pdfsvc.exe
C:\WINDOWS\SMINST\Scheduler.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Bamboo Dock\BambooCore.exe
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://
www.hp.com
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: GetSavin 5.0: {74011C48-5DBF-4065-9CDC-353F10C9BC3D} - c:\documents and settings\administrator\local settings\application data\getsavin\ie\getsavin_1363111201.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: DefaultTab Browser Helper: {7F6AFBF1-E065-4627-A2FD-810366367D01} - c:\documents and settings\administrator\application data\defaulttab\defaulttab\DefaultTabBHO.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: DVDVideoSoft WebPageAdjuster Class: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files\common files\dvdvideosoft\bin\IEDownloadMenuAndBtns.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [GoogleDriveSync] "c:\program files\google\drive\googledrivesync.exe" /autostart
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [High Definition Audio Property Page Shortcut] HDAShCut.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [PTHOSTTR] c:\program files\hpq\hp protecttools security manager\PTHOSTTR.EXE /Start
mRun: [PDF Complete] "c:\program files\pdf complete\pdfsty.exe"
mRun: [SetRefresh] c:\program files\compaq\setrefresh\SetRefresh.exe
mRun: [Recguard] c:\windows\sminst\Recguard.exe
mRun: [Reminder] c:\windows\creator\Remind_XP.exe
mRun: [Scheduler] c:\windows\sminst\Scheduler.exe
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [BambooCore] c:\program files\bamboo dock\BambooCore.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\admini~1\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDriveAutoRun = dword:16
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: Free YouTube Download - c:\program files\common files\dvdvideosoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\program files\common files\dvdvideosoft\plugins\freeytmp3downloader.htm
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files\common files\dvdvideosoft\bin\IEDownloadMenuAndBtns.dll
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://
www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1294667170437
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\25.0.1364.172\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\administrator\application data\mozilla\firefox\profiles\y8rnjkuy.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.aol.com/search/search?q={searchTerms}&s_it=adknowledgeaol-ff&s_qt=sb&tb_uuid=20130312140407004&tb_oid=12-03-2013&tb_mrud=13-03-2013
FF - prefs.js: browser.startup.homepage - hxxp://
www.aol.com/?mtmhp=hyplogusaolp00000023
FF - prefs.js: keyword.URL -
FF - plugin: c:\documents and settings\all users\application data\nexonus\ngm\npNxGameUS.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\program files\tabletplugins\npwacom.dll
FF - plugin: c:\program files\tabletplugins\npWacomTabletPlugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_180.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: 2012-02-03 14:34; getsavin@jetpack; c:\documents and settings\administrator\application data\mozilla\firefox\profiles\y8rnjkuy.default\extensions\getsavin@jetpack
FF - ExtSQL: 2012-04-20 11:33; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\documents and settings\administrator\application data\mozilla\firefox\profiles\y8rnjkuy.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2012-04-20 11:55;
wrc@avast.com; c:\program files\avast software\avast\webrep\FF
FF - ExtSQL: 2012-05-26 18:10;
uss-button@uploadscreenshot.com; c:\documents and settings\administrator\application data\mozilla\firefox\profiles\y8rnjkuy.default\extensions\
uss-button@uploadscreenshot.com.xpi
FF - ExtSQL: 2012-11-26 20:02; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - ExtSQL: 2013-01-30 19:56; {ACAA314B-EEBA-48e4-AD47-84E31C44796C}; c:\program files\common files\dvdvideosoft\plugins\ff
FF - ExtSQL: 2013-02-01 03:03; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - ExtSQL: 2013-03-12 14:07;
addon@defaulttab.com; c:\documents and settings\administrator\application data\mozilla\firefox\profiles\y8rnjkuy.default\extensions\
addon@defaulttab.com.xpi
FF - ExtSQL: 1969-12-31 18:00; {7affbfae-c4e2-4915-8c0f-00fa3ec610a1}; c:\documents and settings\administrator\application data\mozilla\firefox\profiles\y8rnjkuy.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6R8rCBQose&loc=IB_TB&I=26&search=
FF - user.js: extensions.incredibar_i.id - e02019e70000000000000019bb59d86f
FF - user.js: extensions.incredibar_i.instlDay - 15461
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1413:57:53
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6R8rCBQose
FF - user.js: extensions.incredibar_i.upn2n - 92824286769050342
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10643
FF - user.js: extensions.incredibar_i.ppd - 453
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
FF - user.js: browser.sessionstore.resume_from_crash - false
.
============= SERVICES / DRIVERS ===============
.
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2012-5-15 24408]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-4-20 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-4-20 361032]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-4-20 21256]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-4-20 44808]
R2 DefaultTabUpdate;DefaultTabUpdate;c:\documents and settings\administrator\application data\defaulttab\defaulttab\DTUpdate.exe [2013-3-12 107520]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-10-2 398184]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-10-2 682344]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\pdf complete\pdfsvc.exe [2011-1-6 476160]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\application data\skype\toolbars\skype c2c service\c2c_service.exe [2013-1-31 3289208]
R2 TabletServicePen;TabletServicePen;c:\program files\tablet\pen\Pen_Tablet.exe [2012-6-18 5554552]
R2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\tablet\pen\Pen_TouchService.exe [2012-6-18 451960]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-10-2 21104]
R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [2012-6-18 10752]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-1-8 161536]
S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\eaglexnt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2013-03-17 06:48:53 -------- d-----w- c:\program files\CCleaner
2013-03-16 08:28:29 12928 ------w- c:\windows\system32\dllcache\usb8023x.sys
2013-03-16 08:28:29 12928 ------w- c:\windows\system32\dllcache\usb8023.sys
2013-03-13 05:12:33 -------- d-----w- c:\documents and settings\administrator\application data\com.adobe.downloadassistant.AdobeDownloadAssistant
2013-03-13 04:48:24 -------- d-----w- c:\documents and settings\administrator\application data\OpenOffice.org
2013-03-12 19:06:11 -------- d-----w- c:\documents and settings\administrator\application data\DefaultTab
2013-03-12 19:05:26 -------- d-----w- c:\documents and settings\administrator\local settings\application data\getsavin
2013-03-12 19:05:07 -------- d-----w- c:\program files\common files\Software Update Utility
2013-02-15 22:04:52 208448 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
2013-02-01 23:19:33 -------- d-----w- c:\program files\surgeon
2013-02-01 09:02:41 -------- d-----w- c:\windows\system32\XPSViewer
2013-02-01 09:02:11 89088 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2013-02-01 09:01:52 89088 ------w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2013-02-01 09:01:52 597504 ------w- c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2013-02-01 09:01:52 597504 ------w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2013-02-01 09:01:52 117760 ------w- c:\windows\system32\prntvpt.dll
2013-02-01 09:01:51 575488 ------w- c:\windows\system32\xpsshhdr.dll
2013-02-01 09:01:51 575488 ------w- c:\windows\system32\dllcache\xpsshhdr.dll
2013-02-01 09:01:51 1676288 ------w- c:\windows\system32\xpssvcs.dll
2013-02-01 09:01:51 1676288 ------w- c:\windows\system32\dllcache\xpssvcs.dll
2013-02-01 09:01:51 -------- d-----w- C:\6b1fa9f1df1ce269e10a278f
2013-01-31 02:01:17 -------- d-----w- c:\documents and settings\administrator\application data\DVDVideoSoftIEHelpers
2013-01-31 01:55:39 -------- d-----w- c:\program files\common files\DVDVideoSoft
2013-01-31 01:55:39 -------- d-----w- c:\documents and settings\administrator\application data\DVDVideoSoft
2013-01-31 01:55:38 -------- d-----w- c:\program files\DVDVideoSoft
2013-01-09 01:36:49 -------- d-sh--w- c:\documents and settings\administrator\IECompatCache
2012-12-09 23:03:33 -------- d-----w- c:\program files\Hero Editor
2012-12-09 23:03:30 249856 ------w- c:\windows\Setup1.exe
2012-12-09 23:03:28 73216 ----a-w- c:\windows\ST6UNST.EXE
2012-11-27 01:59:14 -------- d-----r- c:\program files\Skype
2012-11-27 01:53:59 60032 ----a-w- c:\windows\system32\drivers\USBAUDIO.sys
2012-11-27 01:53:59 60032 ----a-w- c:\windows\system32\dllcache\usbaudio.sys
2012-11-04 17:32:19 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-11-02 02:02:42 375296 ------w- c:\windows\system32\dllcache\dpnet.dll
2012-10-07 05:22:26 -------- d-----w- c:\documents and settings\all users\application data\Nexon
2012-10-02 18:04:21 58368 ------w- c:\windows\system32\dllcache\synceng.dll
2012-10-02 12:25:25 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-02 12:25:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-20 23:10:03 -------- d-----w- C:\Romsandemulators
2012-08-20 22:49:19 -------- d-----w- C:\Westwood
2012-08-20 22:32:09 7552 ----a-w- c:\windows\system32\drivers\SONYPVU1.SYS
2012-08-20 22:32:09 7552 ----a-w- c:\windows\system32\dllcache\sonypvu1.sys
2012-08-03 06:35:56 -------- d-----w- c:\windows\system32\wbem\repository\FS
2012-08-03 06:35:56 -------- d-----w- c:\windows\system32\wbem\Repository
2012-08-03 06:35:39 -------- d-----w- C:\Nexon
2012-08-03 06:35:39 -------- d-----w- c:\documents and settings\all users\application data\NexonUS
2012-08-03 06:35:38 -------- d-----w- c:\documents and settings\all users\application data\PMB Files
2012-08-02 14:27:33 -------- d-----w- c:\documents and settings\administrator\local settings\application data\PMB Files
2012-08-02 14:26:54 -------- d-----w- c:\program files\Pando Networks
2012-08-02 14:12:17 -------- d-----w- c:\documents and settings\administrator\application data\Malwarebytes
2012-08-02 14:12:11 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-07-06 13:58:51 78336 ------w- c:\windows\system32\dllcache\browser.dll
2012-06-21 02:56:12 -------- d-----w- c:\windows\system32\Adobe
2012-06-19 04:00:23 -------- d-----w- c:\documents and settings\administrator\application data\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1
2012-06-19 04:00:07 -------- d-----w- c:\documents and settings\administrator\application data\Wacom
2012-06-19 03:59:59 -------- d-----w- c:\documents and settings\all users\application data\Wacom
2012-06-19 03:59:37 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Adobe
2012-06-19 03:59:25 -------- d-----w- c:\program files\Bamboo Dock
2012-06-19 03:57:04 -------- d-----w- c:\documents and settings\administrator\application data\WTablet
2012-06-19 03:57:02 1107832 ----a-w- c:\windows\system32\Pen_Touch_Tablet.dll
2012-06-19 03:56:54 -------- d-----w- c:\program files\TabletPlugins
2012-06-19 03:56:51 10752 ----a-w- c:\windows\system32\drivers\wacmoumonitor.sys
2012-06-19 03:56:36 11312 ----a-w- c:\windows\system32\drivers\wacommousefilter.sys
2012-06-19 03:56:28 14120 ----a-w- c:\windows\system32\drivers\wacomvhid.sys
2012-06-19 03:56:25 1369464 ----a-w- c:\windows\system32\Pen_Tablet.dll
2012-06-19 03:56:25 1156472 ----a-w- c:\windows\system32\Wintab32.dll
2012-06-19 03:56:25 1152888 ----a-w- c:\windows\system32\WacomMT.dll
2012-06-19 03:56:21 -------- d-----w- c:\program files\Tablet
2012-06-16 07:05:01 38160 ----a-w- c:\windows\system32\LMRTREND.dll
2012-06-16 07:05:01 140800 ----a-w- c:\windows\system32\tm20dec.ax
2012-06-16 07:05:00 182032 ----a-w- c:\windows\system32\dxtmsft3.dll
2012-06-16 07:04:54 63488 ----a-w- c:\windows\system32\unam4ie.exe
2012-06-16 07:04:52 5672 ----a-w- c:\windows\system32\quartz.vxd
2012-06-16 07:04:52 11776 ----a-w- c:\windows\system32\mciqtz.drv
2012-06-16 07:04:52 10240 ----a-w- c:\windows\system32\vidx16.dll
2012-06-16 07:04:51 194320 ----a-w- c:\windows\system32\qcut.dll
2012-06-16 07:04:50 4608 ----a-w- c:\windows\system32\w95inf32.dll
2012-06-16 07:04:50 2272 ----a-w- c:\windows\system32\w95inf16.dll
2012-06-16 06:56:01 -------- d-----w- c:\program files\directx
2012-06-16 06:29:27 -------- d-----w- c:\program files\Eidos Interactive
2012-06-16 04:50:09 967 ----a-w- c:\windows\ScUnin.pif
2012-06-16 04:50:09 94208 ----a-w- c:\windows\ScUnin.exe
2012-06-16 04:49:44 -------- d-----w- c:\program files\Starcraft
2012-06-16 04:39:24 -------- d-----w- c:\program files\Warcraft II BNE
2012-06-16 04:31:31 86528 ----a-w- c:\windows\bnetunin.exe
2012-06-13 23:40:22 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Deployment
2012-06-13 23:23:58 440760 ----a-w- C:\setup.exe
2012-06-13 23:23:58 -------- d-----w- C:\Application Files
2012-06-13 08:37:18 -------- d-----w- C:\ZomPirate's RotMG DPS Calculator v(1.0)
2012-06-13 04:04:53 522240 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-06-12 08:24:39 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Identities
2012-06-12 00:47:14 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Google
2012-06-10 07:15:46 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Sun
2012-06-10 07:02:10 -------- d-----w- c:\program files\Oracle
2012-06-10 07:01:54 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-05-15 23:20:49 24408 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2012-05-02 19:40:30 -------- d-----w- c:\windows\pss
2012-04-26 04:25:14 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-04-21 21:52:44 -------- d-----w- c:\program files\iPod
2012-04-21 21:52:37 -------- d-----w- c:\program files\iTunes
2012-04-21 08:29:32 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Apple Computer
2012-04-21 08:29:14 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-04-21 08:29:14 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2012-04-21 08:28:20 -------- d-----w- c:\documents and settings\all users\application data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2012-04-21 08:28:04 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Apple
2012-04-21 08:27:51 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-04-21 08:27:51 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2012-04-20 18:58:39 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-20 18:58:39 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-04-20 17:55:00 -------- d-----w- c:\windows\SxsCaPendDel
2012-04-20 17:54:24 -------- d--h--w- c:\windows\system32\GroupPolicy
2012-04-20 16:56:16 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-04-20 16:55:07 41224 ----a-w- c:\windows\avastSS.scr
2012-04-20 16:54:35 -------- d-----w- c:\program files\AVAST Software
2012-04-20 16:54:35 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2012-04-20 16:45:24 21840 ----a-w- c:\windows\system32\SIntfNT.dll
2012-04-20 16:45:24 17212 ----a-w- c:\windows\system32\SIntf32.dll
2012-04-20 16:45:24 12067 ----a-w- c:\windows\system32\SIntf16.dll
2012-04-20 16:40:03 94208 ----a-w- c:\windows\DIIUnin.exe
2012-04-20 16:40:03 2829 ----a-w- c:\windows\DIIUnin.pif
2012-04-20 16:36:09 -------- d-----w- c:\program files\Diablo II
2012-04-20 16:31:10 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Mozilla
2012-04-20 16:25:20 105472 ------w- c:\windows\system32\dllcache\mup.sys
2012-04-20 16:16:54 -------- d-----w- c:\windows\system32\appmgmt
2012-04-20 16:07:26 10496 ------w- c:\windows\system32\dllcache\ndistapi.sys
2012-04-20 16:07:24 3072 ------w- c:\windows\system32\iacenc.dll
2012-04-20 16:07:24 3072 ------w- c:\windows\system32\dllcache\iacenc.dll
2012-04-20 16:06:32 139784 ------w- c:\windows\system32\dllcache\rdpwd.sys
2012-04-20 14:58:36 -------- d-----w- c:\windows\i386
2012-04-20 13:03:23 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-04-20 13:03:23 17136 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-02-29 14:10:16 148480 ------w- c:\windows\system32\dllcache\imagehlp.dll
2011-11-18 12:35:08 60416 ------w- c:\windows\system32\dllcache\packager.exe
2011-11-03 15:28:36 386048 ------w- c:\windows\system32\dllcache\qdvd.dll
2011-10-18 11:13:22 186880 ------w- c:\windows\system32\dllcache\encdec.dll
2011-10-14 14:47:29 23040 ------w- c:\windows\system32\dllcache\mciseq.dll
2011-10-14 14:47:29 176128 ------w- c:\windows\system32\dllcache\winmm.dll
2011-09-28 07:06:50 601088 ------w- c:\windows\system32\dllcache\crypt32.dll
2011-09-26 18:41:20 611328 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 18:41:20 220160 ------w- c:\windows\system32\dllcache\oleacc.dll
2011-09-26 18:41:14 20480 ------w- c:\windows\system32\dllcache\oleaccrc.dll
2011-04-19 09:47:04 670032 ----a-w- c:\program files\common files\microsoft shared\vc\msdia90.dll
2011-02-20 05:03:12 421200 ----a-w- c:\windows\system32\msvcp100.dll
2011-02-19 06:40:50 773968 ----a-w- c:\windows\system32\msvcr100.dll
2011-02-09 13:53:52 270848 ------w- c:\windows\system32\dllcache\sbe.dll
2011-02-02 07:58:35 2067456 ------w- c:\windows\system32\dllcache\lhmstscx.dll
2011-01-27 11:57:06 677888 ------w- c:\windows\system32\dllcache\lhmstsc.exe
2011-01-21 14:44:37 439296 ------w- c:\windows\system32\dllcache\shimgvw.dll
2011-01-10 14:19:21 -------- d-----w- c:\windows\DRIVERS
2011-01-10 14:17:12 266240 ----a-w- c:\windows\system32\ShellvRTF64.dll
2011-01-10 14:17:12 122880 ----a-w- c:\windows\system32\ShellvRTF.dll
2011-01-10 14:17:03 -------- d-----w- c:\windows\SMINST
2011-01-10 14:17:03 -------- d-----w- c:\windows\CREATOR
2011-01-10 14:16:52 733184 ----a-w- c:\program files\common files\installshield\professional\runtime\10\01\intel32\iKernel.dll
2011-01-10 14:16:52 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\10\01\intel32\ctor.dll
2011-01-10 14:16:52 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\10\01\intel32\DotNetInstaller.exe
2011-01-10 14:16:52 266240 ----a-w- c:\program files\common files\installshield\professional\runtime\10\01\intel32\iscript.dll
2011-01-10 14:16:52 172032 ----a-w- c:\program files\common files\installshield\professional\runtime\10\01\intel32\iuser.dll
2011-01-10 14:16:46 180356 ----a-w- c:\program files\common files\installshield\professional\runtime\10\01\intel32\iGdi.dll
2011-01-10 14:16:45 303236 ----a-w- c:\program files\common files\installshield\professional\runtime\10\01\intel32\setup.dll
2011-01-10 14:09:28 -------- d-sh--w- C:\System Recovery
2011-01-10 13:54:00 -------- d-----w- c:\program files\OpenOffice.org 3
2011-01-10 13:53:37 746984 ----a-w- c:\windows\system32\deployJava1.dll
2011-01-10 13:53:37 143872 ----a-w- c:\windows\system32\javacpl.cpl
2011-01-10 13:33:04 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-01-10 13:32:31 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-01-10 13:31:42 978944 ------w- c:\windows\system32\dllcache\mfc42.dll
2011-01-10 13:31:42 954368 -c----w- c:\windows\system32\dllcache\mfc40.dll
2011-01-10 13:31:42 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-01-10 13:31:08 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-01-10 13:29:01 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-01-10 13:25:43 -------- d-sh--w- c:\documents and settings\administrator\PrivacIE
2011-01-10 13:15:10 -------- d-----w- c:\windows\system32\scripting
2011-01-10 13:15:09 -------- d-----w- c:\windows\system32\en
2011-01-10 13:15:09 -------- d-----w- c:\windows\system32\bits
2011-01-10 13:15:09 -------- d-----w- c:\windows\l2schemas
2011-01-10 13:12:29 -------- d-----w- c:\windows\network diagnostic
2011-01-10 13:04:42 -------- d-sh--w- c:\documents and settings\administrator\IETldCache
2011-01-07 22:06:16 -------- d-----w- c:\windows\ie8updates
2011-01-07 22:06:11 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2011-01-07 22:06:11 630272 ------w- c:\windows\system32\dllcache\msfeeds.dll
2011-01-07 22:06:11 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-01-07 22:06:11 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2011-01-07 22:06:11 2004992 ------w- c:\windows\system32\dllcache\iertutil.dll
2011-01-07 22:06:11 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2011-01-07 22:06:11 11111424 ------w- c:\windows\system32\dllcache\ieframe.dll
2011-01-07 22:05:12 -------- dc-h--w- c:\windows\ie8
2011-01-07 21:58:35 -------- d-----w- c:\windows\ServicePackFiles
2011-01-07 21:54:17 421888 ----a-w- c:\windows\Nero PhotoShow.scr
2011-01-07 21:54:17 -------- d-----w- c:\documents and settings\administrator\application data\Simple Star
2011-01-07 21:54:17 -------- d-----w- C:\Demo Album
2011-01-07 21:52:25 24064 ------w- c:\windows\system32\msxml3a.dll
2011-01-07 12:09:52 73216 ------w- c:\windows\system32\drivers\atintuxx.sys
2011-01-07 12:03:47 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-01-07 12:03:47 272128 ------w- c:\windows\system32\drivers\bthport.sys
2011-01-07 12:03:44 357888 ------w- c:\windows\system32\dllcache\srv.sys
2011-01-07 12:03:37 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-01-07 12:03:37 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-01-07 12:03:36 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-01-07 12:03:29 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-01-07 12:03:28 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-01-07 12:02:53 1172480 ------w- c:\windows\system32\dllcache\msxml3.dll
2011-01-07 12:02:33 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-01-07 12:02:07 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-01-07 12:00:58 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-01-07 11:59:39 337920 ------w- c:\windows\system32\dllcache\netapi32.dll
2011-01-07 11:58:42 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2011-01-07 11:58:41 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-01-07 11:25:55 -------- d-----w- c:\windows\system32\PreInstall
2011-01-07 11:25:47 -------- d--h--w- c:\windows\$hf_mig$
.
==================== Find3M ====================
.
2013-02-12 00:32:23 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-12 00:32:23 12928 ------w- c:\windows\system32\drivers\usb8023x.sys
2013-02-05 20:05:47 916480 ----a-w- c:\windows\system32\wininet.dll
2013-02-05 20:05:46 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-02-05 20:05:46 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-02-05 05:53:57 385024 ----a-w- c:\windows\system32\html.iec
2013-01-26 03:55:44 552448 ------w- c:\windows\system32\oleaut32.dll
2013-01-07 01:19:45 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-07 00:37:01 2027520 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-01-04 01:20:00 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-01-02 06:49:10 148992 ----a-w- c:\windows\system32\mpg2splt.ax
2013-01-02 06:49:10 1292288 ----a-w- c:\windows\system32\quartz.dll
2012-12-16 12:23:59 290560 ----a-w- c:\windows\system32\atmfd.dll
2012-11-06 02:01:39 1371648 ------w- c:\windows\system32\msxml6.dll
2012-11-02 02:02:42 375296 ----a-w- c:\windows\system32\dpnet.dll
2012-10-02 18:04:21 58368 ----a-w- c:\windows\system32\synceng.dll
2012-08-24 13:53:22 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-07-06 13:58:51 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05:18 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-06-05 15:50:25 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32:08 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 22:19:44 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 22:19:38 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 22:19:38 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 22:19:34 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 22:19:30 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 22:18:58 214256 ----a-w- c:\windows\system32\muweb.dll
2012-06-01 16:50:06 601088 ----a-w- c:\windows\system32\crypt32.dll
2012-05-14 09:22:41 345600 ----a-w- c:\windows\system32\localspl.dll
2012-02-29 14:10:16 148480 ----a-w- c:\windows\system32\imagehlp.dll
2011-11-25 21:57:19 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-18 12:35:08 60416 ----a-w- c:\windows\system32\packager.exe
2011-11-16 14:21:44 354816 ----a-w- c:\windows\system32\winhttp.dll
2011-11-03 15:28:36 386048 ----a-w- c:\windows\system32\qdvd.dll
2011-11-01 16:07:10 1288704 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:31:48 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-18 11:13:22 186880 ----a-w- c:\windows\system32\encdec.dll
2011-10-14 14:47:29 23040 ----a-w- c:\windows\system32\mciseq.dll
2011-10-14 14:47:29 176128 ----a-w- c:\windows\system32\winmm.dll
2011-10-10 14:22:41 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-09-26 18:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 18:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-08-17 13:49:54 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-04-21 13:37:43 105472 ----a-w- c:\windows\system32\drivers\mup.sys
2011-03-04 06:37:06 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-02-17 13:18:03 357888 ----a-w- c:\windows\system32\drivers\srv.sys
2011-02-09 13:53:52 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-08 13:33:55 978944 ----a-w- c:\windows\system32\mfc42.dll
2011-02-08 13:33:55 974848 ----a-w- c:\windows\system32\mfc42u.dll
2011-02-02 07:58:35 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57:06 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44:37 439296 ----a-w- c:\windows\system32\shimgvw.dll
2010-12-22 12:34:28 301568 ----a-w- c:\windows\system32\kerberos.dll
2010-12-20 17:26:00 730112 ----a-w- c:\windows\system32\lsasrv.dll
2010-12-09 15:15:09 718336 ----a-w- c:\windows\system32\ntdll.dll
2010-11-18 18:12:44 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-09 14:52:35 249856 ----a-w- c:\windows\system32\odbc32.dll
2010-11-02 15:17:02 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-09-18 06:53:25 954368 ----a-w- c:\windows\system32\mfc40.dll
2010-09-18 06:53:25 953856 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-27 08:02:29 119808 ----a-w- c:\windows\system32\t2embed.dll
2010-08-27 05:57:43 99840 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-23 16:12:04 617472 ----a-w- c:\windows\system32\comctl32.dll
2010-08-17 13:17:06 58880 ----a-w- c:\windows\system32\spoolsv.exe
2010-08-16 08:45:00 590848 ----a-w- c:\windows\system32\rpcrt4.dll
2010-06-17 14:03:00 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-15 16:17:24 143422 ----a-w- c:\windows\system32\l3codecx.ax
2010-06-14 14:31:20 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-04-16 15:36:56 406016 ----a-w- c:\windows\system32\usp10.dll
2010-04-05 19:54:04 384512 ----a-w- c:\windows\system32\mp4sdmod.dll
2010-03-30 08:52:26 262416 ----a-w- c:\windows\system32\mpg4ds32.ax
2010-03-18 23:47:22 17760 ----a-w- c:\windows\system32\aspnet_counters.dll
2010-03-18 20:16:28 771424 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2010-03-18 20:16:28 70472 ----a-w- c:\windows\system32\dxva2.dll
2010-03-18 20:16:28 486216 ----a-w- c:\windows\system32\evr.dll
2010-03-18 17:09:00 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-03-18 17:09:00 49488 ----a-w- c:\windows\system32\netfxperf.dll
2010-03-18 17:09:00 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-03-05 14:37:40 65536 ----a-w- c:\windows\system32\asycfilt.dll
2010-02-12 04:33:11 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02:15 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2010-01-29 14:43:39 307260 ----a-w- c:\windows\system32\l3codeca.acm
2010-01-13 14:01:25 86016 ----a-w- c:\windows\system32\cabview.dll
2009-12-16 18:43:27 343040 ----a-w- c:\windows\system32\mspaint.exe
2009-11-27 17:11:44 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:07:35 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:07:35 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:07:34 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-11-27 16:07:34 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-27 16:07:34 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-21 15:51:04 471552 ----a-w- c:\windows\apppatch\aclayers.dll
2009-11-12 03:06:20 1130824 ----a-w- c:\windows\system32\dfshim.dll
2009-11-06 06:17:22 297808 ----a-w- c:\windows\system32\mscoree.dll
2009-10-21 05:38:36 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:38:36 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-20 16:20:16 265728 ----a-w- c:\windows\system32\drivers\http.sys
2009-10-15 16:28:26 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-10-13 10:30:16 270336 ----a-w- c:\windows\system32\oakley.dll
.
============= FINISH: 0:49:17.82 ===============