Edit: Adding the text from duplicate post which has been deleted:
Please see reports below
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-08-13 23:21:11
Windows 6.1.7601 Service Pack 1
Running: gmer.exe
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x60 0x7F 0xC2 0x15 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE0 0x55 0x4F 0x0E ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x73 0x0E 0xB1 0x4C ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x60 0x7F 0xC2 0x15 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE0 0x55 0x4F 0x0E ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x73 0x0E 0xB1 0x4C ...
---- Files - GMER 1.0.15 ----
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7MVLD1Y4\down[2] 0 bytes
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7MVLD1Y4\errorPageStrings[1] 0 bytes
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7MVLD1Y4\bullet[1] 0 bytes
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8I83OUC0\httpErrorPagesScripts[1] 0 bytes
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-06-23.01) - NTFSAMD64
Internet Explorer: 8.0.7601.17514
Run by ChrisKelly at 23:24:30 on 2011-08-13
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3828.1437 [GMT 1:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
C:\Windows\SysWOW64\svchost.exe -k Akamai
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\The Geek\AGT Pro\AGT Pro.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Users\ChrisKelly\Desktop\gmer.exe
C:\Program Files\mcafee.com\agent\mcagent.exe
C:\Users\ChrisKelly\Desktop\gmer.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20110509193654.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB: {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [AdobeBridge] "C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe" -stealth
uRun: [Google Update] "C:\Users\ChrisKelly\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
uRun: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [RemoteControl9] "c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
mRun: [PDVD9LanguageShortcut] "c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
mRun: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun: [<NO NAME>]
mRun: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\oem\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
StartupFolder: C:\Users\CHRISK~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK - C:\Program Files (x86)\Dell\DellDock\DellDock.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{234F1633-2877-42EC-819B-2D5A3BF1A546} : NameServer = 0.0.0.0
TCP: Interfaces\{55BC3730-3C7B-4ED4-9FE1-DB7438253DC9} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{55BC3730-3C7B-4ED4-9FE1-DB7438253DC9}\35B4952303031343 : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{B1321B63-E1DE-49CD-9F0C-C96DD716ECF2} : DhcpNameServer = 192.168.1.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO-X64: McAfee Phishing Filter - No File
BHO-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO-X64: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20110509193654.dll
BHO-X64: scriptproxy - No File
BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO-X64: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO-X64: SkypeIEPluginBHO - No File
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB-X64: {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
mRun-x64: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun-x64: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun-x64: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun-x64: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun-x64: [RemoteControl9] "c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
mRun-x64: [PDVD9LanguageShortcut] "c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
mRun-x64: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun-x64: [(Default)]
mRun-x64: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun-x64: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun-x64: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\oem\Roxio Burn\RoxioBurnLauncher.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\system32\drivers\mfehidk.sys --> C:\Windows\system32\drivers\mfehidk.sys [?]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\system32\drivers\mfewfpk.sys --> C:\Windows\system32\drivers\mfewfpk.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\system32\DRIVERS\stdcfltn.sys --> C:\Windows\system32\DRIVERS\stdcfltn.sys [?]
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 mfenlfk;McAfee NDIS Light Filter;C:\Windows\system32\DRIVERS\mfenlfk.sys --> C:\Windows\system32\DRIVERS\mfenlfk.sys [?]
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-9-18 169312]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2011-7-24 98208]
R2 Akamai;Akamai NetSession Interface;C:\Windows\System32\svchost.exe -k Akamai [2009-7-14 20992]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-8-11 42184]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-8-11 366640]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
R2 McShield;McShield;C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe [2011-1-3 200056]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2011-1-3 245352]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe [2011-1-3 149032]
R2 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-3-5 340240]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-1-3 2214504]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2011-1-3 705856]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-5-20 378472]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\system32\DRIVERS\TurboB.sys --> C:\Windows\system32\DRIVERS\TurboB.sys [?]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-1-3 2533400]
R3 Acceler;Accelerometer Service;C:\Windows\system32\DRIVERS\Accelern.sys --> C:\Windows\system32\DRIVERS\Accelern.sys [?]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\system32\drivers\cfwids.sys --> C:\Windows\system32\drivers\cfwids.sys [?]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 Impcd;Impcd;C:\Windows\system32\DRIVERS\Impcd.sys --> C:\Windows\system32\DRIVERS\Impcd.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\system32\drivers\mfeavfk.sys --> C:\Windows\system32\drivers\mfeavfk.sys [?]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\system32\drivers\mfefirek.sys --> C:\Windows\system32\drivers\mfefirek.sys [?]
R3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\NETw5s64.sys --> C:\Windows\system32\DRIVERS\NETw5s64.sys [?]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 qicflt;upper Device Filter Driver;C:\Windows\system32\DRIVERS\qicflt.sys --> C:\Windows\system32\DRIVERS\qicflt.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
R3 wdkmd;Intel WiDi KMD;C:\Windows\system32\DRIVERS\WDKMD.sys --> C:\Windows\system32\DRIVERS\WDKMD.sys [?]
S2 CLKMSVC10_9EC60124;CyberLink Product - 2011/01/03 15:47:59;C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-9-29 254448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 136176]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-9-4 219632]
S3 AllShare;SAMSUNG AllShare Service;C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [2010-7-16 6638080]
S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 136176]
S3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys --> C:\Windows\system32\DRIVERS\jmcr.sys [?]
S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\system32\drivers\mferkdet.sys --> C:\Windows\system32\drivers\mferkdet.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-3-25 51456888]
S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
S3 nmwcdnsucx64;Nokia USB Flashing Generic;C:\Windows\system32\drivers\nmwcdnsucx64.sys --> C:\Windows\system32\drivers\nmwcdnsucx64.sys [?]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent;C:\Windows\system32\drivers\nmwcdnsux64.sys --> C:\Windows\system32\drivers\nmwcdnsux64.sys [?]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-9-4 1116656]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TurboBoost;TurboBoost;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 McOobeSv;McAfee OOBE Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2011-08-13 17:45:41 -------- d-----w- C:\Program Files (x86)\ESET
2011-08-13 17:17:19 -------- d-----w- C:\_OTL
2011-08-13 16:22:43 98816 ----a-w- C:\Windows\sed.exe
2011-08-13 16:22:43 518144 ----a-w- C:\Windows\SWREG.exe
2011-08-13 16:22:43 256000 ----a-w- C:\Windows\PEV.exe
2011-08-13 16:22:43 208896 ----a-w- C:\Windows\MBR.exe
2011-08-13 16:22:31 -------- d-s---w- C:\ComboFix
2011-08-13 14:15:28 -------- d-----w- C:\Windows\SysWow64\syncdb
2011-08-13 13:29:53 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\com.adobe.bridge.PublishPanel
2011-08-13 11:02:22 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{A15869AB-370D-45E9-9BA4-830D0B60C46A}
2011-08-13 11:01:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{C3E3490B-45B7-44E4-8523-039C76E87E5F}
2011-08-12 23:01:34 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{11AF0D52-8B02-4665-A5FB-8DA6FEA8B457}
2011-08-12 23:01:05 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{BA96ADF2-2922-4FB1-B019-F0ED7CE519C7}
2011-08-12 11:34:56 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\CrashDumps
2011-08-12 11:00:22 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{F50A37C0-2B14-4A35-BC3D-184EE96DAAF8}
2011-08-12 11:00:08 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{058775DA-A44D-414E-A1C8-F657BAD5EA0F}
2011-08-12 10:14:19 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8DF63ECE-A14E-42F3-BE4B-491C1940DC54}
2011-08-12 07:09:30 834544 ----a-w- C:\Windows\System32\drivers\sptd.sys
2011-08-12 07:08:12 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2011-08-12 07:07:44 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\DAEMON Tools Lite
2011-08-12 07:07:38 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2011-08-11 22:02:09 600920 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2011-08-11 22:02:06 64856 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2011-08-11 22:01:39 40112 ----a-w- C:\Windows\avastSS.scr
2011-08-11 22:01:30 -------- d-----w- C:\ProgramData\AVAST Software
2011-08-11 22:01:30 -------- d-----w- C:\Program Files\AVAST Software
2011-08-11 21:54:33 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2011-08-11 21:51:18 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\Malwarebytes
2011-08-11 21:51:11 41272 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-08-11 21:51:11 -------- d-----w- C:\ProgramData\Malwarebytes
2011-08-11 21:51:08 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-08-11 21:51:08 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-08-11 21:19:07 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\NPE
2011-08-11 20:38:29 -------- d-----w- C:\ProgramData\STOPzilla!
2011-08-11 20:27:29 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-08-11 20:26:05 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{DCD268D2-D23B-4A1E-BF71-D61EEC627B53}
2011-08-11 20:25:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{C06AE9F9-51D0-4FBF-8F8C-415D2353D409}
2011-08-11 20:18:24 222080 ------w- C:\Windows\SysWow64\MpSigStub.exe
2011-08-11 20:06:05 -------- d-----w- C:\Windows\en
2011-08-11 19:59:28 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\2d6cb0f01cc586101\MeshBetaRemover.exe
2011-08-11 19:54:40 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{1CB8A32A-BE99-4F16-8BF2-DF49E94476EB}
2011-08-11 18:22:15 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{95A6671A-0076-445F-B877-B0AD61E0A68D}
2011-08-11 18:11:51 -------- d-----w- C:\Program Files\Microsoft Security Client
2011-08-11 17:16:55 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{2B3089BA-37B7-4CCF-823D-2451BED4B9D5}
2011-08-10 22:14:44 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{2910535B-769F-4983-A106-720C6BF7CA8D}
2011-08-10 21:49:12 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8F69AA20-3514-4C6A-82A3-6DC00B9B1D67}
2011-08-10 21:49:00 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{FC11D363-41B4-451A-85D2-5F2DC55BE50E}
2011-08-10 21:08:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{F3572E0C-3C18-4DF1-BF65-A7E75D661DCE}
2011-08-10 20:46:20 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{BDE58863-A108-497F-ADE5-F53D54DF4519}
2011-08-10 17:10:52 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\ElevatedDiagnostics
2011-08-09 21:39:06 107520 --sha-r- C:\Windows\SysWow64\usbperfv.dll
2011-08-09 21:19:52 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8260C918-81F5-466D-93AC-EC0B27AFC3C0}
2011-08-09 20:26:47 -------- d-----w- C:\Program Files (x86)\My Company Name
2011-08-09 19:12:11 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{031997CF-4C8C-468C-8B1A-3535D1A560E3}
2011-08-08 18:36:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{F4762BC0-C24E-4EC6-BA6E-662101B2EFA3}
2011-08-07 10:12:29 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\inkscape
2011-08-07 07:55:43 -------- d-----w- C:\Program Files (x86)\Inkscape
2011-08-05 21:03:56 2301208 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2011-08-05 21:03:37 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2011-08-05 21:03:34 710976 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-08-05 20:43:10 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{EC40DF01-6233-467F-81A3-64EF206BAE80}
2011-08-05 16:44:01 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{573D09D3-573F-45EC-8E17-A54572E714AA}
2011-08-04 18:07:41 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{3867CFF6-1BDB-4C22-9956-3A8067342375}
2011-08-03 20:54:14 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{9B7ABB8D-A7F6-44D8-8774-55F7004D701B}
2011-08-02 19:32:43 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{9CC13EE6-8B85-4D04-9056-0150E62BD62B}
2011-08-01 19:13:48 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{3BBC427C-0506-4E80-ADC9-884A8D63FA6A}
2011-07-31 09:30:58 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{21DCF44D-3906-4B72-9C41-7683DBBD14C6}
2011-07-30 20:00:22 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{190BA493-66CB-4D76-925C-B8E8E879DB28}
2011-07-30 06:26:57 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{EE159C3B-EE23-4288-B2E0-921D80FC5036}
2011-07-29 16:18:35 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{4596549E-028A-428C-B49C-7A62000B3DF3}
2011-07-28 17:30:37 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{1DD7E945-F00F-4BA5-AC59-F165C048340F}
2011-07-27 17:52:11 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{BC5D1014-1E7C-452B-892F-4A967DDD5CB3}
2011-07-26 18:51:31 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{55ACB40A-7B70-4E44-BAA1-F6A567B1FC04}
2011-07-25 05:51:35 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{440542D5-4BA3-4EA0-A62C-CA5397A369EE}
2011-07-24 18:21:46 -------- d-----w- C:\Windows\System32\SRSLabs
2011-07-24 18:21:40 -------- d-----w- C:\Windows\SysWow64\RTCOM
2011-07-24 18:20:13 2604376 ----a-w- C:\Windows\System32\WavesGUILib.dll
2011-07-24 18:20:09 155888 ----a-w- C:\Windows\System32\SRSWOW64.dll
2011-07-24 18:20:08 518896 ----a-w- C:\Windows\System32\SRSTSX64.dll
2011-07-24 18:20:08 211184 ----a-w- C:\Windows\System32\SRSTSH64.dll
2011-07-24 18:20:06 198896 ----a-w- C:\Windows\System32\SRSHP64.dll
2011-07-24 18:20:00 2432104 ----a-w- C:\Windows\System32\RtPgEx64.dll
2011-07-24 18:20:00 1560168 ----a-w- C:\Windows\System32\RTSnMg64.cpl
2011-07-24 18:18:21 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2011-07-24 18:15:40 -------- d-----w- C:\Program Files (x86)\Realtek
2011-07-24 17:30:06 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-07-24 17:21:08 29288 ----a-w- C:\Windows\System32\nvhdap64.dll
2011-07-24 17:21:08 174184 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys
2011-07-24 17:21:08 1426536 ----a-w- C:\Windows\System32\nvhdagenco642040.dll
2011-07-24 17:21:01 8863336 ----a-w- C:\Windows\System32\nvwgf2umx.dll
2011-07-24 17:21:01 833640 ----a-w- C:\Windows\System32\nvumdshimx.dll
2011-07-24 17:21:01 67176 ----a-w- C:\Windows\System32\OpenCL.dll
2011-07-24 17:21:01 6555240 ----a-w- C:\Windows\SysWow64\nvwgf2um.dll
2011-07-24 17:21:01 57960 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2011-07-24 17:21:01 366696 ----a-w- C:\Windows\System32\nvoptimusmft.dll
2011-07-24 17:21:01 326248 ----a-w- C:\Windows\SysWow64\nvoptimusmft.dll
2011-07-24 17:21:01 27240 ----a-w- C:\Windows\System32\drivers\nvpciflt.sys
2011-07-24 17:21:00 22286952 ----a-w- C:\Windows\System32\nvoglv64.dll
2011-07-24 17:14:04 -------- d-----w- C:\NVIDIA
2011-07-24 17:10:34 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab
2011-07-24 10:05:00 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{70EA3986-9B04-48ED-8AD8-8488D76A5D88}
2011-07-23 21:05:34 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{17C85D2B-FDFE-4DBF-8790-8128FA145E95}
2011-07-23 07:31:27 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{44B74C2B-C780-437E-A6D6-DD9198DFD3DE}
2011-07-21 18:25:43 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{D9511B11-DCF6-4CC1-917F-ECDA45BA0341}
2011-07-20 17:13:47 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8B35CB5F-281F-44AC-A83E-46426D124D60}
2011-07-18 18:22:10 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{5FA9C6BA-B19D-48CE-886C-B529079FA8AD}
2011-07-16 09:12:31 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{11C59351-71B3-4004-82A8-D4315162E730}
2011-07-15 14:38:29 -------- d-----w- C:\ProgramData\Nokia
2011-07-15 14:26:44 -------- d-----w- C:\Program Files (x86)\Common Files\PCSuite
2011-07-15 14:26:40 -------- d-----w- C:\Program Files (x86)\Common Files\Nokia
2011-07-15 14:26:15 25600 ----a-w- C:\Windows\System32\drivers\pccsmcfdx64.sys
2011-07-15 14:26:02 -------- d-----w- C:\Program Files (x86)\PC Connectivity Solution
2011-07-15 14:25:48 57856 ----a-w- C:\Windows\System32\nmwcdclsX64.dll
2011-07-15 14:25:48 -------- d-----w- C:\Program Files (x86)\Nokia
2011-07-15 06:11:20 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{14A73E04-A792-4A07-81C7-C8133B46FBB1}
.
==================== Find3M ====================
.
2011-07-22 05:22:26 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2011-07-22 04:54:18 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-07-16 05:41:50 362496 ----a-w- C:\Windows\System32\wow64win.dll
2011-07-16 05:41:49 243200 ----a-w- C:\Windows\System32\wow64.dll
2011-07-16 05:41:49 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2011-07-16 05:39:10 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2011-07-16 05:37:12 421888 ----a-w- C:\Windows\System32\KernelBase.dll
2011-07-16 04:29:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2011-07-16 04:26:00 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2011-07-16 04:25:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2011-07-16 04:24:23 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2011-07-16 04:24:22 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2011-07-16 02:21:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2011-07-16 02:21:41 2048 ----a-w- C:\Windows\SysWow64\user.exe
2011-07-16 02:17:19 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17:19 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17:19 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17:19 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2011-07-11 13:17:00 1698408 ----a-w- C:\Windows\RtlExUpd.dll
2011-07-09 02:46:28 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-07-07 16:39:06 2914408 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys
2011-07-07 14:50:08 1483264 ----a-w- C:\Windows\System32\RCORES64.dat
2011-07-06 20:42:46 3148904 ----a-w- C:\Windows\System32\RtkAPO64.dll
2011-07-06 12:27:00 92264 ----a-w- C:\Windows\System32\RCoInst64.dll
2011-07-01 13:27:46 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2011-07-01 13:27:45 175616 ----a-w- C:\Windows\System32\msclmd.dll
2011-07-01 13:05:42 1822824 ----a-w- C:\Windows\System32\RtkApi64.dll
2011-06-27 13:45:00 3768152 ----a-w- C:\Windows\System32\MaxxAudioRealtek.dll
2011-06-24 05:34:53 214528 ----a-w- C:\Windows\System32\winsrv.dll
2011-06-24 05:25:49 338432 ----a-w- C:\Windows\System32\conhost.exe
2011-06-23 05:43:12 5561216 ----a-w- C:\Windows\System32\ntoskrnl.exe
2011-06-23 04:33:57 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-06-23 04:33:57 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-06-21 06:34:00 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2011-06-21 06:20:53 1188864 ----a-w- C:\Windows\System32\wininet.dll
2011-06-21 05:28:33 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-06-15 10:02:23 212992 ----a-w- C:\Windows\System32\odbctrac.dll
2011-06-15 10:02:23 163840 ----a-w- C:\Windows\System32\odbccp32.dll
2011-06-15 10:02:23 106496 ----a-w- C:\Windows\System32\odbccu32.dll
2011-06-15 10:02:23 106496 ----a-w- C:\Windows\System32\odbccr32.dll
2011-06-15 08:55:19 86016 ----a-w- C:\Windows\SysWow64\odbccu32.dll
2011-06-15 08:55:19 81920 ----a-w- C:\Windows\SysWow64\odbccr32.dll
2011-06-15 08:55:19 319488 ----a-w- C:\Windows\SysWow64\odbcjt32.dll
2011-06-15 08:55:19 163840 ----a-w- C:\Windows\SysWow64\odbctrac.dll
2011-06-15 08:55:19 122880 ----a-w- C:\Windows\SysWow64\odbccp32.dll
2011-06-14 19:35:32 625752 ----a-w- C:\Windows\System32\MBTHX64.dll
2011-06-14 19:35:16 561240 ----a-w- C:\Windows\SysWow64\MBTHX32.dll
2011-06-11 03:07:25 3137536 ----a-w- C:\Windows\System32\win32k.sys
2011-05-31 08:42:06 728680 ----a-w- C:\Windows\System32\DTSBassEnhancementDLL64.dll
2011-05-31 08:42:06 712296 ----a-w- C:\Windows\System32\DTSSymmetryDLL64.dll
2011-05-31 08:42:06 693352 ----a-w- C:\Windows\System32\DTSVoiceClarityDLL64.dll
2011-05-31 08:42:06 491112 ----a-w- C:\Windows\System32\DTSNeoPCDLL64.dll
2011-05-31 08:42:06 432744 ----a-w- C:\Windows\System32\DTSLimiterDLL64.dll
2011-05-31 08:42:06 428648 ----a-w- C:\Windows\System32\DTSGainCompensatorDLL64.dll
2011-05-31 08:42:06 242792 ----a-w- C:\Windows\System32\DTSLFXAPO64.dll
2011-05-31 08:42:06 242792 ----a-w- C:\Windows\System32\DTSGFXAPO64.dll
2011-05-31 08:42:06 241768 ----a-w- C:\Windows\System32\DTSGFXAPONS64.dll
2011-05-31 08:42:06 1756264 ----a-w- C:\Windows\System32\DTSS2SpeakerDLL64.dll
2011-05-31 08:42:06 1568360 ----a-w- C:\Windows\System32\DTSS2HeadphoneDLL64.dll
2011-05-31 08:42:06 1486952 ----a-w- C:\Windows\System32\DTSBoostDLL64.dll
2011-05-24 11:42:55 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2011-05-24 10:40:05 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2011-05-24 10:40:05 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2011-05-24 10:39:38 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2011-05-24 10:37:54 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2011-05-23 16:12:36 1245288 ----a-w- C:\Windows\System32\RTCOM64.dll
2011-05-20 21:35:28 304744 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2011-05-18 09:15:26 166912 ----a-w- C:\Windows\System32\ccdcmbwux64.dll
2011-05-18 09:15:16 640000 ----a-w- C:\Windows\System32\nmwcdcoclsx64.dll
2011-05-18 09:14:22 9216 ----a-w- C:\Windows\System32\drivers\usbser_lowerfltjx64.sys
2011-05-18 09:14:20 9216 ----a-w- C:\Windows\System32\drivers\usbser_lowerfltx64.sys
2011-05-18 09:14:16 27136 ----a-w- C:\Windows\System32\drivers\ccdcmbox64.sys
2011-05-18 09:14:12 19968 ----a-w- C:\Windows\System32\drivers\ccdcmbx64.sys
2011-05-18 09:09:48 171008 ----a-w- C:\Windows\System32\drivers\nmwcdnsux64.sys
2011-05-18 09:09:48 12800 ----a-w- C:\Windows\System32\drivers\nmwcdnsucx64.sys
.
============= FINISH: 23:25:16.22 ===============
.
Hi,
I apologise that my 1st post is one looking for a fix but hey, I wouldn't have found the site if I wasn't in trouble!
I have a hidden virus of some kind that is causing pop up windows in Explorer (I use Chrome) and Windows security centre can't work message.
Help please !!
Please see reports below
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-08-13 23:21:11
Windows 6.1.7601 Service Pack 1
Running: gmer.exe
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x60 0x7F 0xC2 0x15 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE0 0x55 0x4F 0x0E ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x73 0x0E 0xB1 0x4C ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x60 0x7F 0xC2 0x15 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE0 0x55 0x4F 0x0E ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x73 0x0E 0xB1 0x4C ...
---- Files - GMER 1.0.15 ----
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7MVLD1Y4\down[2] 0 bytes
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7MVLD1Y4\errorPageStrings[1] 0 bytes
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7MVLD1Y4\bullet[1] 0 bytes
File C:\Users\ChrisKelly\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8I83OUC0\httpErrorPagesScripts[1] 0 bytes
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-06-23.01) - NTFSAMD64
Internet Explorer: 8.0.7601.17514
Run by ChrisKelly at 23:24:30 on 2011-08-13
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3828.1437 [GMT 1:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
C:\Windows\SysWOW64\svchost.exe -k Akamai
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\The Geek\AGT Pro\AGT Pro.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Users\ChrisKelly\Desktop\gmer.exe
C:\Program Files\mcafee.com\agent\mcagent.exe
C:\Users\ChrisKelly\Desktop\gmer.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\ChrisKelly\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20110509193654.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB: {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [AdobeBridge] "C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe" -stealth
uRun: [Google Update] "C:\Users\ChrisKelly\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
uRun: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [RemoteControl9] "c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
mRun: [PDVD9LanguageShortcut] "c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
mRun: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun: [<NO NAME>]
mRun: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\oem\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
StartupFolder: C:\Users\CHRISK~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK - C:\Program Files (x86)\Dell\DellDock\DellDock.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{234F1633-2877-42EC-819B-2D5A3BF1A546} : NameServer = 0.0.0.0
TCP: Interfaces\{55BC3730-3C7B-4ED4-9FE1-DB7438253DC9} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{55BC3730-3C7B-4ED4-9FE1-DB7438253DC9}\35B4952303031343 : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{B1321B63-E1DE-49CD-9F0C-C96DD716ECF2} : DhcpNameServer = 192.168.1.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO-X64: McAfee Phishing Filter - No File
BHO-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO-X64: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20110509193654.dll
BHO-X64: scriptproxy - No File
BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO-X64: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO-X64: SkypeIEPluginBHO - No File
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB-X64: {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
mRun-x64: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun-x64: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun-x64: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun-x64: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun-x64: [RemoteControl9] "c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
mRun-x64: [PDVD9LanguageShortcut] "c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
mRun-x64: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun-x64: [(Default)]
mRun-x64: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun-x64: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun-x64: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\oem\Roxio Burn\RoxioBurnLauncher.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\system32\drivers\mfehidk.sys --> C:\Windows\system32\drivers\mfehidk.sys [?]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\system32\drivers\mfewfpk.sys --> C:\Windows\system32\drivers\mfewfpk.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\system32\DRIVERS\stdcfltn.sys --> C:\Windows\system32\DRIVERS\stdcfltn.sys [?]
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 mfenlfk;McAfee NDIS Light Filter;C:\Windows\system32\DRIVERS\mfenlfk.sys --> C:\Windows\system32\DRIVERS\mfenlfk.sys [?]
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-9-18 169312]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2011-7-24 98208]
R2 Akamai;Akamai NetSession Interface;C:\Windows\System32\svchost.exe -k Akamai [2009-7-14 20992]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-8-11 42184]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-8-11 366640]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
R2 McShield;McShield;C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe [2011-1-3 200056]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2011-1-3 245352]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe [2011-1-3 149032]
R2 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-3-5 340240]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-1-3 2214504]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2011-1-3 705856]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-5-20 378472]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\system32\DRIVERS\TurboB.sys --> C:\Windows\system32\DRIVERS\TurboB.sys [?]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-1-3 2533400]
R3 Acceler;Accelerometer Service;C:\Windows\system32\DRIVERS\Accelern.sys --> C:\Windows\system32\DRIVERS\Accelern.sys [?]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\system32\drivers\cfwids.sys --> C:\Windows\system32\drivers\cfwids.sys [?]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 Impcd;Impcd;C:\Windows\system32\DRIVERS\Impcd.sys --> C:\Windows\system32\DRIVERS\Impcd.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\system32\drivers\mfeavfk.sys --> C:\Windows\system32\drivers\mfeavfk.sys [?]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\system32\drivers\mfefirek.sys --> C:\Windows\system32\drivers\mfefirek.sys [?]
R3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\NETw5s64.sys --> C:\Windows\system32\DRIVERS\NETw5s64.sys [?]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 qicflt;upper Device Filter Driver;C:\Windows\system32\DRIVERS\qicflt.sys --> C:\Windows\system32\DRIVERS\qicflt.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
R3 wdkmd;Intel WiDi KMD;C:\Windows\system32\DRIVERS\WDKMD.sys --> C:\Windows\system32\DRIVERS\WDKMD.sys [?]
S2 CLKMSVC10_9EC60124;CyberLink Product - 2011/01/03 15:47:59;C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-9-29 254448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 136176]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-9-4 219632]
S3 AllShare;SAMSUNG AllShare Service;C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [2010-7-16 6638080]
S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 136176]
S3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys --> C:\Windows\system32\DRIVERS\jmcr.sys [?]
S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\system32\drivers\mferkdet.sys --> C:\Windows\system32\drivers\mferkdet.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-3-25 51456888]
S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
S3 nmwcdnsucx64;Nokia USB Flashing Generic;C:\Windows\system32\drivers\nmwcdnsucx64.sys --> C:\Windows\system32\drivers\nmwcdnsucx64.sys [?]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent;C:\Windows\system32\drivers\nmwcdnsux64.sys --> C:\Windows\system32\drivers\nmwcdnsux64.sys [?]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-9-4 1116656]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TurboBoost;TurboBoost;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 McOobeSv;McAfee OOBE Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-1-6 355440]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2011-08-13 17:45:41 -------- d-----w- C:\Program Files (x86)\ESET
2011-08-13 17:17:19 -------- d-----w- C:\_OTL
2011-08-13 16:22:43 98816 ----a-w- C:\Windows\sed.exe
2011-08-13 16:22:43 518144 ----a-w- C:\Windows\SWREG.exe
2011-08-13 16:22:43 256000 ----a-w- C:\Windows\PEV.exe
2011-08-13 16:22:43 208896 ----a-w- C:\Windows\MBR.exe
2011-08-13 16:22:31 -------- d-s---w- C:\ComboFix
2011-08-13 14:15:28 -------- d-----w- C:\Windows\SysWow64\syncdb
2011-08-13 13:29:53 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\com.adobe.bridge.PublishPanel
2011-08-13 11:02:22 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{A15869AB-370D-45E9-9BA4-830D0B60C46A}
2011-08-13 11:01:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{C3E3490B-45B7-44E4-8523-039C76E87E5F}
2011-08-12 23:01:34 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{11AF0D52-8B02-4665-A5FB-8DA6FEA8B457}
2011-08-12 23:01:05 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{BA96ADF2-2922-4FB1-B019-F0ED7CE519C7}
2011-08-12 11:34:56 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\CrashDumps
2011-08-12 11:00:22 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{F50A37C0-2B14-4A35-BC3D-184EE96DAAF8}
2011-08-12 11:00:08 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{058775DA-A44D-414E-A1C8-F657BAD5EA0F}
2011-08-12 10:14:19 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8DF63ECE-A14E-42F3-BE4B-491C1940DC54}
2011-08-12 07:09:30 834544 ----a-w- C:\Windows\System32\drivers\sptd.sys
2011-08-12 07:08:12 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2011-08-12 07:07:44 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\DAEMON Tools Lite
2011-08-12 07:07:38 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2011-08-11 22:02:09 600920 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2011-08-11 22:02:06 64856 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2011-08-11 22:01:39 40112 ----a-w- C:\Windows\avastSS.scr
2011-08-11 22:01:30 -------- d-----w- C:\ProgramData\AVAST Software
2011-08-11 22:01:30 -------- d-----w- C:\Program Files\AVAST Software
2011-08-11 21:54:33 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2011-08-11 21:51:18 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\Malwarebytes
2011-08-11 21:51:11 41272 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-08-11 21:51:11 -------- d-----w- C:\ProgramData\Malwarebytes
2011-08-11 21:51:08 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-08-11 21:51:08 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-08-11 21:19:07 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\NPE
2011-08-11 20:38:29 -------- d-----w- C:\ProgramData\STOPzilla!
2011-08-11 20:27:29 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-08-11 20:26:05 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{DCD268D2-D23B-4A1E-BF71-D61EEC627B53}
2011-08-11 20:25:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{C06AE9F9-51D0-4FBF-8F8C-415D2353D409}
2011-08-11 20:18:24 222080 ------w- C:\Windows\SysWow64\MpSigStub.exe
2011-08-11 20:06:05 -------- d-----w- C:\Windows\en
2011-08-11 19:59:28 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\2d6cb0f01cc586101\MeshBetaRemover.exe
2011-08-11 19:54:40 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{1CB8A32A-BE99-4F16-8BF2-DF49E94476EB}
2011-08-11 18:22:15 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{95A6671A-0076-445F-B877-B0AD61E0A68D}
2011-08-11 18:11:51 -------- d-----w- C:\Program Files\Microsoft Security Client
2011-08-11 17:16:55 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{2B3089BA-37B7-4CCF-823D-2451BED4B9D5}
2011-08-10 22:14:44 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{2910535B-769F-4983-A106-720C6BF7CA8D}
2011-08-10 21:49:12 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8F69AA20-3514-4C6A-82A3-6DC00B9B1D67}
2011-08-10 21:49:00 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{FC11D363-41B4-451A-85D2-5F2DC55BE50E}
2011-08-10 21:08:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{F3572E0C-3C18-4DF1-BF65-A7E75D661DCE}
2011-08-10 20:46:20 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{BDE58863-A108-497F-ADE5-F53D54DF4519}
2011-08-10 17:10:52 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\ElevatedDiagnostics
2011-08-09 21:39:06 107520 --sha-r- C:\Windows\SysWow64\usbperfv.dll
2011-08-09 21:19:52 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8260C918-81F5-466D-93AC-EC0B27AFC3C0}
2011-08-09 20:26:47 -------- d-----w- C:\Program Files (x86)\My Company Name
2011-08-09 19:12:11 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{031997CF-4C8C-468C-8B1A-3535D1A560E3}
2011-08-08 18:36:54 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{F4762BC0-C24E-4EC6-BA6E-662101B2EFA3}
2011-08-07 10:12:29 -------- d-----w- C:\Users\ChrisKelly\AppData\Roaming\inkscape
2011-08-07 07:55:43 -------- d-----w- C:\Program Files (x86)\Inkscape
2011-08-05 21:03:56 2301208 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2011-08-05 21:03:37 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2011-08-05 21:03:34 710976 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-08-05 20:43:10 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{EC40DF01-6233-467F-81A3-64EF206BAE80}
2011-08-05 16:44:01 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{573D09D3-573F-45EC-8E17-A54572E714AA}
2011-08-04 18:07:41 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{3867CFF6-1BDB-4C22-9956-3A8067342375}
2011-08-03 20:54:14 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{9B7ABB8D-A7F6-44D8-8774-55F7004D701B}
2011-08-02 19:32:43 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{9CC13EE6-8B85-4D04-9056-0150E62BD62B}
2011-08-01 19:13:48 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{3BBC427C-0506-4E80-ADC9-884A8D63FA6A}
2011-07-31 09:30:58 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{21DCF44D-3906-4B72-9C41-7683DBBD14C6}
2011-07-30 20:00:22 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{190BA493-66CB-4D76-925C-B8E8E879DB28}
2011-07-30 06:26:57 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{EE159C3B-EE23-4288-B2E0-921D80FC5036}
2011-07-29 16:18:35 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{4596549E-028A-428C-B49C-7A62000B3DF3}
2011-07-28 17:30:37 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{1DD7E945-F00F-4BA5-AC59-F165C048340F}
2011-07-27 17:52:11 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{BC5D1014-1E7C-452B-892F-4A967DDD5CB3}
2011-07-26 18:51:31 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{55ACB40A-7B70-4E44-BAA1-F6A567B1FC04}
2011-07-25 05:51:35 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{440542D5-4BA3-4EA0-A62C-CA5397A369EE}
2011-07-24 18:21:46 -------- d-----w- C:\Windows\System32\SRSLabs
2011-07-24 18:21:40 -------- d-----w- C:\Windows\SysWow64\RTCOM
2011-07-24 18:20:13 2604376 ----a-w- C:\Windows\System32\WavesGUILib.dll
2011-07-24 18:20:09 155888 ----a-w- C:\Windows\System32\SRSWOW64.dll
2011-07-24 18:20:08 518896 ----a-w- C:\Windows\System32\SRSTSX64.dll
2011-07-24 18:20:08 211184 ----a-w- C:\Windows\System32\SRSTSH64.dll
2011-07-24 18:20:06 198896 ----a-w- C:\Windows\System32\SRSHP64.dll
2011-07-24 18:20:00 2432104 ----a-w- C:\Windows\System32\RtPgEx64.dll
2011-07-24 18:20:00 1560168 ----a-w- C:\Windows\System32\RTSnMg64.cpl
2011-07-24 18:18:21 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2011-07-24 18:15:40 -------- d-----w- C:\Program Files (x86)\Realtek
2011-07-24 17:30:06 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-07-24 17:21:08 29288 ----a-w- C:\Windows\System32\nvhdap64.dll
2011-07-24 17:21:08 174184 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys
2011-07-24 17:21:08 1426536 ----a-w- C:\Windows\System32\nvhdagenco642040.dll
2011-07-24 17:21:01 8863336 ----a-w- C:\Windows\System32\nvwgf2umx.dll
2011-07-24 17:21:01 833640 ----a-w- C:\Windows\System32\nvumdshimx.dll
2011-07-24 17:21:01 67176 ----a-w- C:\Windows\System32\OpenCL.dll
2011-07-24 17:21:01 6555240 ----a-w- C:\Windows\SysWow64\nvwgf2um.dll
2011-07-24 17:21:01 57960 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2011-07-24 17:21:01 366696 ----a-w- C:\Windows\System32\nvoptimusmft.dll
2011-07-24 17:21:01 326248 ----a-w- C:\Windows\SysWow64\nvoptimusmft.dll
2011-07-24 17:21:01 27240 ----a-w- C:\Windows\System32\drivers\nvpciflt.sys
2011-07-24 17:21:00 22286952 ----a-w- C:\Windows\System32\nvoglv64.dll
2011-07-24 17:14:04 -------- d-----w- C:\NVIDIA
2011-07-24 17:10:34 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab
2011-07-24 10:05:00 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{70EA3986-9B04-48ED-8AD8-8488D76A5D88}
2011-07-23 21:05:34 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{17C85D2B-FDFE-4DBF-8790-8128FA145E95}
2011-07-23 07:31:27 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{44B74C2B-C780-437E-A6D6-DD9198DFD3DE}
2011-07-21 18:25:43 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{D9511B11-DCF6-4CC1-917F-ECDA45BA0341}
2011-07-20 17:13:47 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{8B35CB5F-281F-44AC-A83E-46426D124D60}
2011-07-18 18:22:10 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{5FA9C6BA-B19D-48CE-886C-B529079FA8AD}
2011-07-16 09:12:31 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{11C59351-71B3-4004-82A8-D4315162E730}
2011-07-15 14:38:29 -------- d-----w- C:\ProgramData\Nokia
2011-07-15 14:26:44 -------- d-----w- C:\Program Files (x86)\Common Files\PCSuite
2011-07-15 14:26:40 -------- d-----w- C:\Program Files (x86)\Common Files\Nokia
2011-07-15 14:26:15 25600 ----a-w- C:\Windows\System32\drivers\pccsmcfdx64.sys
2011-07-15 14:26:02 -------- d-----w- C:\Program Files (x86)\PC Connectivity Solution
2011-07-15 14:25:48 57856 ----a-w- C:\Windows\System32\nmwcdclsX64.dll
2011-07-15 14:25:48 -------- d-----w- C:\Program Files (x86)\Nokia
2011-07-15 06:11:20 -------- d-----w- C:\Users\ChrisKelly\AppData\Local\{14A73E04-A792-4A07-81C7-C8133B46FBB1}
.
==================== Find3M ====================
.
2011-07-22 05:22:26 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2011-07-22 04:54:18 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-07-16 05:41:50 362496 ----a-w- C:\Windows\System32\wow64win.dll
2011-07-16 05:41:49 243200 ----a-w- C:\Windows\System32\wow64.dll
2011-07-16 05:41:49 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2011-07-16 05:39:10 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2011-07-16 05:37:12 421888 ----a-w- C:\Windows\System32\KernelBase.dll
2011-07-16 04:29:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2011-07-16 04:26:00 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2011-07-16 04:25:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2011-07-16 04:24:23 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2011-07-16 04:24:22 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2011-07-16 02:21:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2011-07-16 02:21:41 2048 ----a-w- C:\Windows\SysWow64\user.exe
2011-07-16 02:17:19 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17:19 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17:19 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17:19 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2011-07-11 13:17:00 1698408 ----a-w- C:\Windows\RtlExUpd.dll
2011-07-09 02:46:28 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-07-07 16:39:06 2914408 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys
2011-07-07 14:50:08 1483264 ----a-w- C:\Windows\System32\RCORES64.dat
2011-07-06 20:42:46 3148904 ----a-w- C:\Windows\System32\RtkAPO64.dll
2011-07-06 12:27:00 92264 ----a-w- C:\Windows\System32\RCoInst64.dll
2011-07-01 13:27:46 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2011-07-01 13:27:45 175616 ----a-w- C:\Windows\System32\msclmd.dll
2011-07-01 13:05:42 1822824 ----a-w- C:\Windows\System32\RtkApi64.dll
2011-06-27 13:45:00 3768152 ----a-w- C:\Windows\System32\MaxxAudioRealtek.dll
2011-06-24 05:34:53 214528 ----a-w- C:\Windows\System32\winsrv.dll
2011-06-24 05:25:49 338432 ----a-w- C:\Windows\System32\conhost.exe
2011-06-23 05:43:12 5561216 ----a-w- C:\Windows\System32\ntoskrnl.exe
2011-06-23 04:33:57 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-06-23 04:33:57 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-06-21 06:34:00 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2011-06-21 06:20:53 1188864 ----a-w- C:\Windows\System32\wininet.dll
2011-06-21 05:28:33 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-06-15 10:02:23 212992 ----a-w- C:\Windows\System32\odbctrac.dll
2011-06-15 10:02:23 163840 ----a-w- C:\Windows\System32\odbccp32.dll
2011-06-15 10:02:23 106496 ----a-w- C:\Windows\System32\odbccu32.dll
2011-06-15 10:02:23 106496 ----a-w- C:\Windows\System32\odbccr32.dll
2011-06-15 08:55:19 86016 ----a-w- C:\Windows\SysWow64\odbccu32.dll
2011-06-15 08:55:19 81920 ----a-w- C:\Windows\SysWow64\odbccr32.dll
2011-06-15 08:55:19 319488 ----a-w- C:\Windows\SysWow64\odbcjt32.dll
2011-06-15 08:55:19 163840 ----a-w- C:\Windows\SysWow64\odbctrac.dll
2011-06-15 08:55:19 122880 ----a-w- C:\Windows\SysWow64\odbccp32.dll
2011-06-14 19:35:32 625752 ----a-w- C:\Windows\System32\MBTHX64.dll
2011-06-14 19:35:16 561240 ----a-w- C:\Windows\SysWow64\MBTHX32.dll
2011-06-11 03:07:25 3137536 ----a-w- C:\Windows\System32\win32k.sys
2011-05-31 08:42:06 728680 ----a-w- C:\Windows\System32\DTSBassEnhancementDLL64.dll
2011-05-31 08:42:06 712296 ----a-w- C:\Windows\System32\DTSSymmetryDLL64.dll
2011-05-31 08:42:06 693352 ----a-w- C:\Windows\System32\DTSVoiceClarityDLL64.dll
2011-05-31 08:42:06 491112 ----a-w- C:\Windows\System32\DTSNeoPCDLL64.dll
2011-05-31 08:42:06 432744 ----a-w- C:\Windows\System32\DTSLimiterDLL64.dll
2011-05-31 08:42:06 428648 ----a-w- C:\Windows\System32\DTSGainCompensatorDLL64.dll
2011-05-31 08:42:06 242792 ----a-w- C:\Windows\System32\DTSLFXAPO64.dll
2011-05-31 08:42:06 242792 ----a-w- C:\Windows\System32\DTSGFXAPO64.dll
2011-05-31 08:42:06 241768 ----a-w- C:\Windows\System32\DTSGFXAPONS64.dll
2011-05-31 08:42:06 1756264 ----a-w- C:\Windows\System32\DTSS2SpeakerDLL64.dll
2011-05-31 08:42:06 1568360 ----a-w- C:\Windows\System32\DTSS2HeadphoneDLL64.dll
2011-05-31 08:42:06 1486952 ----a-w- C:\Windows\System32\DTSBoostDLL64.dll
2011-05-24 11:42:55 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2011-05-24 10:40:05 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2011-05-24 10:40:05 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2011-05-24 10:39:38 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2011-05-24 10:37:54 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2011-05-23 16:12:36 1245288 ----a-w- C:\Windows\System32\RTCOM64.dll
2011-05-20 21:35:28 304744 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2011-05-18 09:15:26 166912 ----a-w- C:\Windows\System32\ccdcmbwux64.dll
2011-05-18 09:15:16 640000 ----a-w- C:\Windows\System32\nmwcdcoclsx64.dll
2011-05-18 09:14:22 9216 ----a-w- C:\Windows\System32\drivers\usbser_lowerfltjx64.sys
2011-05-18 09:14:20 9216 ----a-w- C:\Windows\System32\drivers\usbser_lowerfltx64.sys
2011-05-18 09:14:16 27136 ----a-w- C:\Windows\System32\drivers\ccdcmbox64.sys
2011-05-18 09:14:12 19968 ----a-w- C:\Windows\System32\drivers\ccdcmbx64.sys
2011-05-18 09:09:48 171008 ----a-w- C:\Windows\System32\drivers\nmwcdnsux64.sys
2011-05-18 09:09:48 12800 ----a-w- C:\Windows\System32\drivers\nmwcdnsucx64.sys
.
============= FINISH: 23:25:16.22 ===============
.