.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1
Run by Skilz at 19:14:45 on 2012-06-22
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.16346.13595 [GMT -7:00]
.
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
C:\Windows\SysWOW64\nlssrv32.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRSOOBE.exe
C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
C:\Windows\system32\viakaraokesrv.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.2.97\AsusWSPanel.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\sysWOW64\wbem\wmiprvse.exe
C:\Program Files (x86)\lg_fwupdate\fwupdate.exe
G:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.2.97\AsusWSService.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\SysWoW64\svchost.exe
C:\Windows\SysWoW64\svchost.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Rainmeter\Rainmeter.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\Skilz\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\Skilz\Desktop\v0el481k.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: Splashtop Connect SearchHook: {0f3dc9e0-c459-4a40-bcf8-747bd9322e10} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\AddressBarSearch.dll
mURLSearchHooks: Splashtop Connect SearchHook: {0f3dc9e0-c459-4a40-bcf8-747bd9322e10} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\AddressBarSearch.dll
BHO: Splashtop Connect VisualBookmark: {0e5680d1-bf44-4929-94af-fd30d784ad1d} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
BHO: Norton Identity Protection: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\coIEPlg.dll
BHO: Norton Vulnerability Protection: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\IPS\IPSBHO.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\coIEPlg.dll
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
mRun: [ZyngaGamesAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
mRun: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.2.97\AsusWSPanel.exe /S
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
mRun: [LGODDFU] "C:\Program Files (x86)\lg_fwupdate\fwupdate.exe" blrun
mRun: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun: [PWRISOVM.EXE] g:\Program Files (x86)\PowerISO\PWRISOVM.EXE
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
StartupFolder: C:\Users\Skilz\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\RAINME~1.LNK - C:\Program Files\Rainmeter\Rainmeter.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: &D&ownload &with BitComet - C:\Program Files\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload all with BitComet - C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{A953ED16-64DE-4BB6-954D-50DE044C0253} : DhcpNameServer = 192.168.1.1
AppInit_DLLs: C:\Windows\SysWOW64\appinit_dll.dll
BHO-X64: Splashtop Connect VisualBookmark: {0E5680D1-BF44-4929-94AF-FD30D784AD1D} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
BHO-X64: BitComet ClickCapture - No File
BHO-X64: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\coIEPlg.dll
BHO-X64: Norton Identity Protection - No File
BHO-X64: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\IPS\IPSBHO.DLL
BHO-X64: Norton Vulnerability Protection - No File
BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\coIEPlg.dll
mRun-x64: [ZyngaGamesAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
mRun-x64: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.2.97\AsusWSPanel.exe /S
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
mRun-x64: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun-x64: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun-x64: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
mRun-x64: [LGODDFU] "C:\Program Files (x86)\lg_fwupdate\fwupdate.exe" blrun
mRun-x64: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun-x64: [PWRISOVM.EXE] g:\Program Files (x86)\PowerISO\PWRISOVM.EXE
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
IE-X64: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE-X64: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206
AppInit_DLLs-X64: C:\Windows\SysWOW64\appinit_dll.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Skilz\AppData\Roaming\Mozilla\Firefox\Profiles\ex5f8rp2.TonyGotSkilz-home\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://insite.bridgepoint.local/dept/bts/Applications/Engineering%20Dashboard.aspx
FF - prefs.js: keyword.URL - hxxp://
www.google.com/search?q=
.
============= SERVICES / DRIVERS ===============
.
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\system32\DRIVERS\iusb3hcs.sys --> C:\Windows\system32\DRIVERS\iusb3hcs.sys [?]
R0 SymDS;Symantec Data Store;C:\Windows\system32\drivers\NISx64\1301000.01C\SYMDS64.SYS --> C:\Windows\system32\drivers\NISx64\1301000.01C\SYMDS64.SYS [?]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\NISx64\1301000.01C\SYMEFA64.SYS --> C:\Windows\system32\drivers\NISx64\1301000.01C\SYMEFA64.SYS [?]
R1 AppleCharger;AppleCharger;C:\Windows\system32\DRIVERS\AppleCharger.sys --> C:\Windows\system32\DRIVERS\AppleCharger.sys [?]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120619.001\BHDrvx64.sys [2012-6-19 1161376]
R1 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\system32\drivers\NISx64\1301000.01C\ccSetx64.sys --> C:\Windows\system32\drivers\NISx64\1301000.01C\ccSetx64.sys [?]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120622.001\IDSviA64.sys [2012-6-22 509088]
R1 SymIRON;Symantec Iron Driver;C:\Windows\system32\drivers\NISx64\1301000.01C\Ironx64.SYS --> C:\Windows\system32\drivers\NISx64\1301000.01C\Ironx64.SYS [?]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\system32\drivers\NISx64\1301000.01C\SYMNETS.SYS --> C:\Windows\system32\drivers\NISx64\1301000.01C\SYMNETS.SYS [?]
R1 VirtDiskBus;3TB+ Unlock;C:\Windows\system32\DRIVERS\VirtDiskBus64.sys --> C:\Windows\system32\DRIVERS\VirtDiskBus64.sys [?]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-6-20 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-6-20 161560]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-6-22 654408]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe [2012-6-22 138760]
R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\System32\nlssrv32.exe [2011-1-21 64512]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-6-20 1262400]
R2 SCBackService;Splashtop Connect Service;C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
R2 SplashtopRemoteService;Splashtop® Remote Service;C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [2012-2-21 531328]
R2 SSUService;Splashtop Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2012-3-14 370504]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-6-20 363800]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\system32\viakaraokesrv.exe --> C:\Windows\system32\viakaraokesrv.exe [?]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-6-22 138912]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\iusb3hub.sys --> C:\Windows\system32\DRIVERS\iusb3hub.sys [?]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\system32\DRIVERS\iusb3xhc.sys --> C:\Windows\system32\DRIVERS\iusb3xhc.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]
R3 VirtuWDDM;VirtuWDDM;C:\Windows\system32\DRIVERS\VirtuWDDM.sys --> C:\Windows\system32\DRIVERS\VirtuWDDM.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-6-20 257696]
S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files\BitComet\tools\BitCometService.exe -service --> C:\Program Files\BitComet\tools\BitCometService.exe -service [?]
S3 cphs;Intel(R) Content Protection HECI Service;C:\Windows\SysWOW64\IntelCpHeciSvc.exe [2012-6-20 274200]
S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2012-6-20 30528]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-6-20 160256]
S3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-6-21 113120]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-06-23 01:41:19--------d-----w-C:\Users\Skilz\AppData\Roaming\Rainmeter
2012-06-23 01:39:33--------d-sh--w-C:\$RECYCLE.BIN
2012-06-23 01:39:19--------d-----w-C:\_OTL
2012-06-23 01:35:01--------d-----w-C:\Program Files\Rainmeter
2012-06-23 01:18:46--------d-----w-C:\ComboFix
2012-06-23 01:13:04--------d-----w-C:\Users\Skilz\AppData\Local\CrashDumps
2012-06-23 00:56:5198816----a-w-C:\Windows\sed.exe
2012-06-23 00:56:51518144----a-w-C:\Windows\SWREG.exe
2012-06-23 00:56:51256000----a-w-C:\Windows\PEV.exe
2012-06-23 00:56:51208896----a-w-C:\Windows\MBR.exe
2012-06-23 00:02:54--------d-----w-C:\Users\Skilz\AppData\Roaming\Malwarebytes
2012-06-23 00:02:3724904----a-w-C:\Windows\System32\drivers\mbam.sys
2012-06-23 00:02:37--------d-----w-C:\ProgramData\Malwarebytes
2012-06-23 00:02:37--------d-----w-C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-06-22 23:58:27--------d-----w-C:\Program Files (x86)\Foxit Software
2012-06-22 23:33:40--------d-----w-C:\Users\Skilz\AppData\Local\ElevatedDiagnostics
2012-06-22 21:41:559013136----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-06-22 21:41:549013136----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F4FCF840-2E30-48EE-9EF4-550C0C991BFF}\mpengine.dll
2012-06-22 21:25:1590544----a-w-C:\Windows\System32\drivers\scdemu.sys
2012-06-22 21:19:31--------d-----w-C:\Windows\System32\wbem\Framework\root\OpenHardwareMonitor
2012-06-22 21:19:31--------d-----w-C:\Windows\System32\wbem\Framework\root
2012-06-22 21:19:31--------d-----w-C:\Windows\System32\wbem\Framework
2012-06-22 21:19:17--------d-----w-C:\CPU Monitor
2012-06-22 21:14:32--------d-----w-C:\Program Files (x86)\Vertus Fluid Mask 3
2012-06-22 21:11:54--------d-----w-C:\ProgramData\VertusTech
2012-06-22 20:57:03--------d-----w-C:\ProgramData\GlobalSCAPE
2012-06-22 20:56:07--------d-----w-C:\Program Files (x86)\GlobalSCAPE
2012-06-22 05:32:28--------d-----w-C:\ProgramData\ALM
2012-06-22 05:27:50--------d-----w-C:\Users\Skilz\AppData\Local\Adobe
2012-06-22 05:05:05--------d-----w-C:\Users\Skilz\AppData\Local\Skyrim
2012-06-22 04:56:13--------d-----w-C:\Users\Skilz\AppData\Roaming\NVIDIA
2012-06-22 04:56:10--------d-----w-C:\ProgramData\EA Core
2012-06-22 04:55:42--------d-----w-C:\ProgramData\EA Logs
2012-06-22 04:22:07--------d-----w-C:\Program Files\BitComet
2012-06-22 04:17:00--------d-----w-C:\Downloads
2012-06-22 04:07:32--------d-----w-C:\Users\Skilz\AppData\Roaming\BitComet
2012-06-22 03:56:09--------d-----w-C:\Users\Skilz\AppData\Local\Power2Go
2012-06-22 03:31:32514560----a-w-C:\Windows\SysWow64\qdvd.dll
2012-06-22 03:31:32366592----a-w-C:\Windows\System32\qdvd.dll
2012-06-22 03:19:32--------d-----w-C:\Temp
2012-06-22 03:18:5959904----a-w-C:\Windows\SysWow64\wbemdisp.tlb
2012-06-22 03:18:5916384----a-w-C:\Windows\SysWow64\lgfwunis.exe
2012-06-22 03:18:59115016----a-w-C:\Windows\SysWow64\MSINET.OCX
2012-06-22 03:18:59102912----a-w-C:\Windows\SysWow64\Vb6stkit.dll
2012-06-22 03:18:59102160----a-w-C:\Windows\SysWow64\VB6KO.DLL
2012-06-22 03:18:58--------d-----w-C:\Program Files (x86)\lg_fwupdate
2012-06-22 03:18:0977824----a-w-C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2012-06-22 03:18:0932768----a-w-C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2012-06-22 03:18:09225280----a-w-C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-06-22 03:18:09176128----a-w-C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2012-06-22 03:15:402622464----a-w-C:\Windows\System32\wucltux.dll
2012-06-22 03:15:3899840----a-w-C:\Windows\System32\wudriver.dll
2012-06-22 03:15:3836864----a-w-C:\Windows\System32\wuapp.exe
2012-06-22 03:15:38186752----a-w-C:\Windows\System32\wuwebv.dll
2012-06-21 07:11:25--------d-----w-C:\aws
2012-06-21 07:11:18--------d-----w-C:\Asus WebStorage
2012-06-21 07:06:45--------d-----w-C:\Program Files (x86)\Git
2012-06-21 07:06:14--------d-----w-C:\Users\Skilz\AppData\Local\Apple Computer
2012-06-21 07:06:1234152----a-w-C:\Windows\System32\drivers\GEARAspiWDM.sys
2012-06-21 07:06:12126312----a-w-C:\Windows\System32\GEARAspi64.dll
2012-06-21 07:06:12107368----a-w-C:\Windows\SysWow64\GEARAspi.dll
2012-06-21 07:06:01--------d-----w-C:\Program Files\iPod
2012-06-21 07:06:00--------d-----w-C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-06-21 07:06:00--------d-----w-C:\Program Files\iTunes
2012-06-21 07:06:00--------d-----w-C:\Program Files (x86)\iTunes
2012-06-21 07:05:51--------d-----w-C:\Users\Skilz\AppData\Local\Apple
2012-06-21 07:05:44--------d-----w-C:\Program Files\Bonjour
2012-06-21 07:05:44--------d-----w-C:\Program Files (x86)\Bonjour
2012-06-21 07:04:10--------d-----w-C:\Users\Skilz\AppData\Roaming\ASUS WebStorage
2012-06-21 07:04:08--------d-----w-C:\ProgramData\ASUS WebStorage
2012-06-21 07:04:04--------d-----w-C:\Program Files (x86)\ASUS
2012-06-21 06:58:43--------d-----w-C:\ProgramData\Blizzard Entertainment
2012-06-21 06:58:43--------d-----w-C:\Program Files (x86)\Diablo III
2012-06-21 06:58:43--------d-----w-C:\Program Files (x86)\Common Files\Blizzard Entertainment
2012-06-21 06:57:53--------d-----w-C:\ProgramData\Battle.net
2012-06-21 06:54:18--------d-----w-C:\Users\Skilz\AppData\Local\Spotify
2012-06-21 06:52:20--------d-----w-C:\Users\Skilz\AppData\Roaming\Spotify
2012-06-21 06:51:17--------d--h--w-C:\Program Files (x86)\Common Files\EAInstaller
2012-06-21 06:31:01--------d-----w-C:\Program Files (x86)\Origin Games
2012-06-21 06:31:00--------d-----w-C:\Users\Skilz\AppData\Roaming\Origin
2012-06-21 06:31:00--------d-----w-C:\Users\Skilz\AppData\Local\Origin
2012-06-21 06:30:53--------d-----w-C:\ProgramData\Origin
2012-06-21 06:30:53--------d-----w-C:\ProgramData\Electronic Arts
2012-06-21 06:30:47--------d-----w-C:\Program Files (x86)\Origin
2012-06-21 06:29:48--------d-----w-C:\Program Files (x86)\Steam
2012-06-21 06:29:48--------d-----w-C:\Program Files (x86)\Common Files\Steam
2012-06-21 06:26:35--------d-----w-C:\Users\Skilz\AppData\Local\GlobalSCAPE
2012-06-21 06:00:11--------d-----w-C:\Program Files (x86)\Oracle
2012-06-21 05:58:42--------d-----w-C:\Program Files\NVIDIA Corporation
2012-06-21 02:07:19--------d-----w-C:\Windows\System32\SPReview
2012-06-21 02:07:11--------d-----w-C:\Windows\System32\EventProviders
2012-06-21 02:02:594583424----a-w-C:\Program Files\Windows NT\Accessories\wordpad.exe
2012-06-21 01:56:4298816----a-w-C:\Windows\System32\drivers\usbccgp.sys
2012-06-20 08:53:43--------d-----w-C:\Program Files\Microsoft IntelliPoint
2012-06-20 08:53:42--------d-----w-C:\Windows\PCHEALTH
2012-06-20 08:52:45902656----a-w-C:\Windows\System32\d2d1.dll
2012-06-20 08:52:45739840----a-w-C:\Windows\SysWow64\d2d1.dll
2012-06-20 08:52:451139200----a-w-C:\Windows\System32\FntCache.dll
2012-06-20 08:47:07--------d-----w-C:\Windows\Panther
2012-06-20 08:43:34--------d-----w-C:\Program Files (x86)\Common Files\Intel Corporation
2012-06-20 08:38:5030528----a-w-C:\Windows\GVTDrv64.sys
2012-06-20 08:38:43--------d-----w-C:\Users\Skilz\AppData\Roaming\Intel Corporation
2012-06-20 08:37:30--------d-----w-C:\Windows\SysWow64\Wat
2012-06-20 08:37:30--------d-----w-C:\Windows\System32\Wat
2012-06-20 08:34:0870304----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-06-20 08:34:08419488----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe
2012-06-20 08:31:42--------d-----w-C:\Users\Skilz\AppData\Local\Opera
2012-06-20 08:25:33--------d-----w-C:\Users\Skilz\AppData\Local\Google
2012-06-20 08:25:30--------d-----w-C:\Users\Skilz\AppData\Local\Deployment
2012-06-20 08:25:30--------d-----w-C:\Users\Skilz\AppData\Local\Apps
2012-06-20 08:25:23--------d-----w-C:\Windows\SysWow64\directx
2012-06-20 08:11:2281408----a-w-C:\Windows\System32\imagehlp.dll
2012-06-20 08:11:225120----a-w-C:\Windows\SysWow64\wmi.dll
2012-06-20 08:11:225120----a-w-C:\Windows\System32\wmi.dll
2012-06-20 08:11:2223408----a-w-C:\Windows\System32\drivers\fs_rec.sys
2012-06-20 08:11:22220672----a-w-C:\Windows\System32\wintrust.dll
2012-06-20 08:11:22172544----a-w-C:\Windows\SysWow64\wintrust.dll
2012-06-20 08:11:22159232----a-w-C:\Windows\SysWow64\imagehlp.dll
2012-06-20 08:09:59870912----a-w-C:\Windows\SysWow64\XpsPrint.dll
2012-06-20 08:08:575559664----a-w-C:\Windows\System32\ntoskrnl.exe
2012-06-20 08:07:5664512----a-w-C:\Windows\SysWow64\devobj.dll
2012-06-20 08:06:59--------d-----w-C:\Users\Skilz\AppData\Roaming\Splashtop Remote Client
2012-06-20 08:06:54--------d-----w-C:\ProgramData\Downloaded Installations
2012-06-20 08:06:43--------d-----w-C:\Users\Skilz\AppData\Local\{E0EE56A0-0D7C-4595-B400-919A3BA48EC1}
2012-06-20 08:05:40--------d-----w-C:\Users\Skilz\AppData\Local\WinZip
2012-06-20 08:05:0366336----a-w-C:\Windows\System32\drivers\VirtuWDDM.sys
2012-06-20 08:05:02475424----a-w-C:\Windows\System32\appinit_dll.dll
2012-06-20 08:05:02429856----a-w-C:\Windows\SysWow64\appinit_dll.dll
2012-06-20 08:05:02--------d-----w-C:\Users\Skilz\Lucidlogix
2012-06-20 08:05:02--------d-----w-C:\Program Files\Lucidlogix Technologies
2012-06-20 08:04:52--------d-----w-C:\Program Files (x86)\Atheros ASAV
2012-06-20 08:04:1866160----a-w-C:\Windows\System32\drivers\VirtDiskBus64.sys
2012-06-20 08:04:13--------d-----w-C:\Program Files (x86)\My Company Name
2012-06-20 08:03:07279656------w-C:\Windows\System32\MpSigStub.exe
2012-06-20 08:01:47--------d-----w-C:\Users\Skilz\AppData\Local\Evernote
2012-06-20 08:01:29--------d-----w-C:\Program Files (x86)\Evernote
2012-06-20 08:00:17826880----a-w-C:\Windows\SysWow64\rdpcore.dll
2012-06-20 08:00:1723552----a-w-C:\Windows\System32\drivers\tdtcp.sys
2012-06-20 08:00:171031680----a-w-C:\Windows\System32\rdpcore.dll
2012-06-20 07:58:58104560----a-w-C:\Windows\System32\drivers\L1C62x64.sys
2012-06-20 07:56:4753248----a-r-C:\Windows\SysWow64\CSVer.dll
2012-06-20 07:56:44--------d-----w-C:\Program Files (x86)\Common Files\postureAgent
2012-06-20 07:56:3960184----a-w-C:\Windows\System32\drivers\HECIx64.sys
2012-06-20 07:56:24--------d--h--w-C:\ProgramData\{8533ADFA-85F0-4dc1-946A-2A0BA58E78E3}
2012-06-20 07:56:11--------d-----w-C:\ProgramData\Splashtop
2012-06-20 07:56:09--------d-----w-C:\Users\Skilz\AppData\Roaming\Splashtop
2012-06-20 07:56:07--------d-----w-C:\Program Files (x86)\Splashtop
2012-06-20 07:56:02--------d-sh--w-C:\Windows\Installer
2012-06-20 07:54:20--------d-----w-C:\Windows\pss
2012-06-20 07:31:21--------d-----w-C:\Intel
2012-06-20 07:27:27--------d-----w-C:\NVIDIA
2012-06-20 07:24:07--------d-----w-C:\Recovery
.
==================== Find3M ====================
.
2012-06-22 23:40:31174200----a-w-C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2012-06-22 21:11:561024----a-w-C:\Windows\SysWow64\obfci80.dll
2012-06-22 21:11:561024----a-w-C:\Windows\SysWow64\grcauth2.dll
2012-06-22 21:11:561024----a-w-C:\Windows\SysWow64\grcauth1.dll
2012-06-22 21:11:561024----a-w-C:\Windows\SysWow64\clauth2.dll
2012-06-22 21:11:561024----a-w-C:\Windows\SysWow64\clauth1.dll
2012-06-21 02:21:50175616----a-w-C:\Windows\System32\msclmd.dll
2012-06-21 02:21:50152576----a-w-C:\Windows\SysWow64\msclmd.dll
2012-05-15 10:48:00949056----a-w-C:\Windows\System32\nvumdshimx.dll
2012-05-15 09:29:47889664----a-w-C:\Windows\System32\nvvsvc.exe
2012-05-15 09:29:4663296----a-w-C:\Windows\System32\nvshext.dll
2012-05-15 09:29:46118080----a-w-C:\Windows\System32\nvmctray.dll
2012-05-15 09:29:452621723----a-w-C:\Windows\System32\nvcoproc.bin
2012-05-15 09:29:253149632----a-w-C:\Windows\System32\nvsvc64.dll
2012-05-15 09:28:426151488----a-w-C:\Windows\System32\nvcpl.dll
2012-05-15 09:21:50423744----a-w-C:\Windows\SysWow64\nvStreaming.exe
2012-05-15 01:32:333146752----a-w-C:\Windows\System32\win32k.sys
2012-05-05 02:29:22772504----a-w-C:\Windows\SysWow64\npDeployJava1.dll
2012-05-05 02:29:16687504----a-w-C:\Windows\SysWow64\deployJava1.dll
2012-05-04 10:03:533968368----a-w-C:\Windows\SysWow64\ntkrnlpa.exe
2012-05-04 10:03:503913072----a-w-C:\Windows\SysWow64\ntoskrnl.exe
2012-05-01 05:40:20209920----a-w-C:\Windows\System32\profsvc.dll
2012-04-28 03:55:21210944----a-w-C:\Windows\System32\drivers\rdpwd.sys
2012-04-26 05:41:5677312----a-w-C:\Windows\System32\rdpwsx.dll
2012-04-26 05:41:55149504----a-w-C:\Windows\System32\rdpcorekmts.dll
2012-04-26 05:34:279216----a-w-C:\Windows\System32\rdrmemptylst.exe
2012-04-25 19:11:3652736----a-w-C:\Windows\System32\drivers\usbaapl64.sys
2012-04-25 19:11:364547944----a-w-C:\Windows\System32\usbaaplrc.dll
2012-04-24 05:37:37184320----a-w-C:\Windows\System32\cryptsvc.dll
2012-04-24 05:37:37140288----a-w-C:\Windows\System32\cryptnet.dll
2012-04-24 05:37:361462272----a-w-C:\Windows\System32\crypt32.dll
2012-04-24 04:36:42140288----a-w-C:\Windows\SysWow64\cryptsvc.dll
2012-04-24 04:36:421158656----a-w-C:\Windows\SysWow64\crypt32.dll
2012-04-24 04:36:42103936----a-w-C:\Windows\SysWow64\cryptnet.dll
2012-04-18 17:08:0831040----a-w-C:\Windows\System32\nvhdap64.dll
2012-04-18 17:08:03188736----a-w-C:\Windows\System32\drivers\nvhda64v.sys
2012-04-18 17:08:021451840----a-w-C:\Windows\System32\nvhdagenco6420103.dll
2012-04-07 12:31:403216384----a-w-C:\Windows\System32\msi.dll
2012-04-07 11:26:292342400----a-w-C:\Windows\SysWow64\msi.dll
2012-03-30 11:35:471918320----a-w-C:\Windows\System32\drivers\tcpip.sys
.
============= FINISH: 19:15:08.64 ===============