Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- DDS (Ver_2012-11-20.01) - NTFS_AMD64
- Internet Explorer: 10.0.9200.16720 BrowserJavaVersion: 10.25.2
- Run by User# at 20:10:09 on 2013-10-11
- Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.4023.2031 [GMT 1:00]
- .
- AV: avast! Internet Security *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
- SP: avast! Internet Security *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
- SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- FW: avast! Internet Security *Enabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
- .
- ============== Running Processes ===============
- .
- C:\Windows\system32\lsm.exe
- C:\Windows\system32\svchost.exe -k DcomLaunch
- C:\Windows\system32\nvvsvc.exe
- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
- C:\Windows\system32\svchost.exe -k RPCSS
- C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
- C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
- C:\Windows\system32\svchost.exe -k LocalService
- C:\Windows\system32\svchost.exe -k netsvcs
- C:\Program Files\Tablet\Pen\Pen_TouchService.exe
- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
- C:\Windows\system32\nvvsvc.exe
- C:\Windows\SYSTEM32\WISPTIS.EXE
- C:\Windows\system32\svchost.exe -k NetworkService
- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
- C:\Program Files\AVAST Software\Avast\afwServ.exe
- C:\Windows\System32\spoolsv.exe
- C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
- C:\Program Files\Bonjour\mDNSResponder.exe
- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
- C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe
- C:\Windows\system32\svchost.exe -k imgsvc
- C:\Program Files\Tablet\Pen\Pen_Tablet.exe
- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe
- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe
- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe
- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe
- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe
- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
- C:\OEM\USBDECTION\USBS3S4Detection.exe
- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
- C:\Windows\system32\SearchIndexer.exe
- C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
- C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
- C:\Windows\System32\WUDFHost.exe
- C:\Windows\system32\taskhost.exe
- C:\Windows\SYSTEM32\WISPTIS.EXE
- C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
- C:\Program Files\Tablet\Pen\Pen_Tablet.exe
- C:\Windows\system32\Dwm.exe
- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
- C:\Program Files\AVAST Software\Avast\AvastUI.exe
- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUI.exe
- C:\Program Files\Windows Media Player\wmpnetwk.exe
- C:\Windows\System32\svchost.exe -k LocalServicePeerNet
- C:\Windows\system32\svchost.exe -k SDRSVC
- C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
- C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
- C:\Program Files\iPod\bin\iPodService.exe
- C:\Program Files (x86)\iTunes\iTunesHelper.exe
- C:\Windows\system32\taskeng.exe
- C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
- C:\Windows\system32\notepad.exe
- C:\Windows\explorer.exe
- C:\Users\User#\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TAVQ0A30\AA_v3.exe
- C:\Windows\system32\SearchProtocolHost.exe
- C:\Windows\system32\SearchFilterHost.exe
- C:\Windows\system32\wbem\wmiprvse.exe
- C:\Windows\System32\cscript.exe
- .
- ============== Pseudo HJT Report ===============
- .
- uStart Page = hxxp://www.banbury-cross.co.uk/
- mURLSearchHooks: WiseConvert 2.1 Toolbar: {ecce0073-a837-45a2-95b9-600420505f7e} - C:\Program Files (x86)\WiseConvert_2.1\prxtbWiserror.dll
- BHO: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - <orphaned>
- BHO: DouwwnLoad keepeer: {31FAC9DC-0A03-CCC2-D028-703FA1B18F4D} - C:\ProgramData\DouwwnLoad keepeer\1p0mlbtfMe.dll
- BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
- BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
- BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
- BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
- BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
- BHO: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - <orphaned>
- BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
- BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
- BHO: WiseConvert 2.1 Toolbar: {ecce0073-a837-45a2-95b9-600420505f7e} - C:\Program Files (x86)\WiseConvert_2.1\prxtbWiserror.dll
- TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
- TB: WiseConvert 2.1 Toolbar: {ECCE0073-A837-45A2-95B9-600420505F7E} - C:\Program Files (x86)\WiseConvert_2.1\prxtbWiserror.dll
- TB: WiseConvert 2.1 Toolbar: {ecce0073-a837-45a2-95b9-600420505f7e} - C:\Program Files (x86)\WiseConvert_2.1\prxtbWiserror.dll
- TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
- TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
- TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
- uRun: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
- uRun: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
- mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
- mRun: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
- mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
- mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
- mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
- mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
- mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
- mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
- StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ADOBEG~1.LNK - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
- uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
- uPolicies-Explorer: NoDrives = dword:0
- mPolicies-Explorer: NoDrives = dword:0
- mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
- mPolicies-System: ConsentPromptBehaviorUser = dword:3
- mPolicies-System: EnableLUA = dword:0
- mPolicies-System: EnableUIADesktopToggle = dword:0
- mPolicies-System: PromptOnSecureDesktop = dword:0
- mPolicies-System: SoftwareSASGeneration = dword:3
- IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
- IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
- IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
- IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
- DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB
- DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} - hxxp://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20111026060252
- DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
- DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
- DPF: {52E87C77-C4CF-428C-93D2-B3401823F1B8} - hxxp://hosting.crm-uk.com/gold-visionshine/GoldVisionControl.CAB
- DPF: {BD3D7BEF-7B55-4B17-8FCE-00CD33770ADD} - hxxp://hosting.crm-uk.com/gold-visionshine/GoldVisionMailCtrl.CAB
- DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
- DPF: {E55B74AB-0B51-4BAE-A5B5-2531AB5EA4D9} - hxxp://assets.photobox.com/assets/v/Dp8wGnXTjsIAQtd7V5T0lFcde-o.cab
- TCP: NameServer = 192.168.0.1
- TCP: Interfaces\{6D5EF0F4-8716-4005-9421-95BC6F95CF28} : DHCPNameServer = 192.168.0.1
- Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
- Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
- Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - <orphaned>
- Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - <orphaned>
- Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
- SSODL: WebCheck - <orphaned>
- SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
- STS: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
- x64-BHO: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - <orphaned>
- x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
- x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
- x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
- x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
- x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
- x64-BHO: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - <orphaned>
- x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
- x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
- x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
- x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
- x64-Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
- x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
- x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
- x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
- x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
- x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
- x64-Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - <orphaned>
- x64-Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - <orphaned>
- x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
- x64-SSODL: WebCheck - <orphaned>
- x64-SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\System32\CbFsMntNtf3.dll
- x64-STS: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\System32\CbFsMntNtf3.dll
- .
- ============= SERVICES / DRIVERS ===============
- .
- R0 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2012-2-26 22600]
- R0 aswNdis;avast! Firewall NDIS Filter Service;C:\Windows\System32\drivers\aswNdis.sys [2011-8-1 12368]
- R0 aswNdis2;avast! Firewall Core Firewall Service;C:\Windows\System32\drivers\aswNdis2.sys [2011-8-1 270824]
- R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-14 65336]
- R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-3-14 204880]
- R1 aswFW;avast! TDI Firewall driver;C:\Windows\System32\drivers\aswFW.sys [2011-8-1 131232]
- R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2011-8-1 1030952]
- R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2011-8-1 378944]
- R1 cbfs3;cbfs3;C:\Windows\System32\drivers\cbfs3.sys [2013-2-21 352008]
- R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2009-6-3 22576]
- R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2009-6-3 20016]
- R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2009-6-3 60464]
- R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2011-8-1 33400]
- R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2011-8-1 80816]
- R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-9-14 46808]
- R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-9-14 137960]
- R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2013-4-22 822504]
- R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]
- R2 pgsql-8.3;PostgreSQL Database Server 8.3;C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe [2009-12-10 65536]
- R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-6-26 523944]
- R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-1-18 383264]
- R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2011-6-6 5790064]
- R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-1 5071712]
- R2 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2011-6-6 487280]
- R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-5-10 243232]
- R2 USBS3S4Detection;USBS3S4Detection;C:\OEM\USBDECTION\USBS3S4Detection.exe [2010-5-10 76320]
- R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-5-10 346144]
- R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2013-6-26 767144]
- R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2013-6-26 273576]
- R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2013-6-26 28840]
- R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2013-6-26 23208]
- R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-6-26 207528]
- R3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2011-6-6 18288]
- S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
- S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
- S2 CrossLoopService;CrossLoop Service;C:\Users\User#\AppData\Local\CrossLoop\CrossLoopService.exe [2011-10-5 569072]
- S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-7-25 162672]
- S3 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-2-1 305520]
- S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-7 59392]
- S3 tvnserver;TightVNC Server;C:\Users\User#\AppData\Local\CrossLoop\tvnserver.exe [2011-10-5 814080]
- S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
- S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-6-3 1255736]
- .
- =============== Created Last 30 ================
- .
- 2013-10-11 19:05:46 -------- d-----w- C:\ProgramData\AMMYY
- 2013-10-11 19:05:00 -------- d-sh--w- C:\$RECYCLE.BIN
- 2013-10-11 18:45:38 98816 ----a-w- C:\Windows\sed.exe
- 2013-10-11 18:45:38 256000 ----a-w- C:\Windows\PEV.exe
- 2013-10-11 18:45:38 208896 ----a-w- C:\Windows\MBR.exe
- 2013-10-11 18:22:34 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
- 2013-10-11 18:22:34 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
- 2013-10-11 09:49:04 -------- d-----w- C:\Program Files\iPod
- 2013-10-11 09:49:03 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
- 2013-10-11 09:49:03 -------- d-----w- C:\Program Files\iTunes
- 2013-10-11 09:49:03 -------- d-----w- C:\Program Files (x86)\iTunes
- 2013-10-09 09:38:56 633856 ----a-w- C:\Windows\System32\comctl32.dll
- 2013-10-09 09:38:56 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
- 2013-10-09 09:37:56 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
- 2013-10-09 09:37:56 46080 ----a-w- C:\Windows\System32\atmlib.dll
- 2013-10-09 09:37:56 41472 ----a-w- C:\Windows\System32\lpk.dll
- 2013-10-09 09:37:56 368128 ----a-w- C:\Windows\System32\atmfd.dll
- 2013-10-09 09:37:56 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
- 2013-10-09 09:37:56 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
- 2013-10-09 09:37:56 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
- 2013-10-09 09:37:56 14336 ----a-w- C:\Windows\System32\dciman32.dll
- 2013-10-09 09:37:56 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
- 2013-10-09 09:37:56 100864 ----a-w- C:\Windows\System32\fontsub.dll
- 2013-10-09 09:37:25 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
- 2013-10-09 09:36:55 185344 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
- 2013-10-09 09:36:55 109824 ----a-w- C:\Windows\System32\drivers\USBAUDIO.sys
- 2013-10-09 09:36:55 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
- 2013-10-09 09:36:24 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
- 2013-10-09 09:36:24 42496 ----a-w- C:\Windows\System32\drivers\usbscan.sys
- 2013-10-09 09:36:24 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
- 2013-10-09 09:35:54 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
- 2013-10-09 09:35:54 259584 ----a-w- C:\Windows\System32\WebClnt.dll
- 2013-10-09 09:35:54 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
- 2013-10-09 09:35:54 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
- 2013-10-09 09:35:54 102400 ----a-w- C:\Windows\System32\davclnt.dll
- 2013-10-09 09:35:24 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
- 2013-10-09 09:35:24 327168 ----a-w- C:\Windows\System32\mswsock.dll
- 2013-10-09 09:35:24 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
- 2013-10-09 09:35:23 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
- 2013-10-09 09:32:49 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
- 2013-10-09 09:32:49 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
- 2013-10-09 09:32:19 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
- 2013-10-09 09:31:49 461312 ----a-w- C:\Windows\System32\scavengeui.dll
- 2013-10-09 09:31:18 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
- 2013-10-09 09:31:18 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
- 2013-10-09 09:31:18 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
- 2013-10-09 09:31:18 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
- 2013-10-09 09:31:18 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
- 2013-10-09 09:31:18 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
- 2013-10-09 09:31:18 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
- 2013-10-08 19:23:27 -------- d-----w- C:\ProgramData\DouwwnLoad keepeer
- 2013-10-08 19:22:58 -------- d-----w- C:\ProgramData\InstallMate
- 2013-10-02 14:14:00 -------- d-----w- C:\Users\User#\AppData\Local\E81C8DE9-E381-4691-BE5F-307011700953.aplzod
- 2013-10-01 18:22:58 -------- d-----r- C:\Program Files (x86)\Skype
- 2013-10-01 13:23:13 -------- d-----w- C:\Users\User#\AppData\Roaming\TeamViewer
- 2013-10-01 12:21:28 -------- d-----w- C:\Program Files (x86)\TeamViewer
- 2013-09-27 11:51:04 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
- 2013-09-26 18:00:39 208760 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
- 2013-09-13 09:58:04 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
- 2013-09-13 09:58:00 424448 ----a-w- C:\Windows\System32\KernelBase.dll
- 2013-09-12 12:14:42 18612928 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSO.DLL
- .
- ==================== Find3M ====================
- .
- 2013-09-27 11:50:58 973736 ----a-w- C:\Windows\System32\deployJava1.dll
- 2013-09-27 11:50:58 1095080 ----a-w- C:\Windows\System32\npDeployJava1.dll
- 2013-09-22 23:28:06 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
- 2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll
- 2013-09-22 23:27:48 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
- 2013-09-22 23:27:48 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
- 2013-09-22 22:55:10 2241024 ----a-w- C:\Windows\System32\wininet.dll
- 2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll
- 2013-09-22 22:54:50 67072 ----a-w- C:\Windows\System32\iesetup.dll
- 2013-09-22 22:54:50 136704 ----a-w- C:\Windows\System32\iesysprep.dll
- 2013-09-21 03:38:39 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
- 2013-09-21 03:30:24 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
- 2013-09-21 02:48:36 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
- 2013-09-21 02:39:47 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
- 2013-08-30 07:48:10 72016 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
- 2013-08-30 07:48:10 65336 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
- 2013-08-30 07:48:10 204880 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
- 2013-08-30 07:48:10 1030952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
- 2013-08-30 07:48:09 80816 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
- 2013-08-30 07:48:09 270824 ----a-w- C:\Windows\System32\drivers\aswNdis2.sys
- 2013-08-30 07:48:09 22600 ----a-w- C:\Windows\System32\drivers\aswKbd.sys
- 2013-08-30 07:48:09 131232 ----a-w- C:\Windows\System32\drivers\aswFW.sys
- 2013-08-30 07:47:40 41664 ----a-w- C:\Windows\avastSS.scr
- 2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
- 2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll
- 2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll
- 2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll
- 2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll
- 2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
- 2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
- 2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
- 2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
- 2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
- 2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
- 2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
- 2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
- 2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
- 2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
- 2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe
- 2013-08-28 01:21:06 3155968 ----a-w- C:\Windows\System32\win32k.sys
- 2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
- 2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
- 2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
- 2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
- 2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
- 2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
- 2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
- 2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
- 2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
- 2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
- 2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll
- 2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
- .
- ============= FINISH: 20:10:29.54 ===============
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement