Guest User

Untitled

a guest
Apr 19th, 2012
116
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. DDS.txt
  2. .
  3. DDS (Ver_2011-08-26.01) - NTFSAMD64
  4. Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_31
  5. Run by Aurum at 22:36:14 on 2012-04-19
  6. Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.6038.1734 [GMT 5.5:30]
  7. .
  8. AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
  9. SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
  10. SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  11. .
  12. ============== Running Processes ===============
  13. .
  14. C:\Windows\system32\wininit.exe
  15. C:\Windows\system32\lsm.exe
  16. C:\Windows\system32\svchost.exe -k DcomLaunch
  17. C:\Windows\system32\nvvsvc.exe
  18. C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  19. C:\Windows\system32\svchost.exe -k RPCSS
  20. C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
  21. C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
  22. C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
  23. C:\Windows\system32\svchost.exe -k netsvcs
  24. C:\Windows\system32\svchost.exe -k LocalService
  25. C:\Windows\system32\svchost.exe -k NetworkService
  26. C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  27. C:\Windows\system32\nvvsvc.exe
  28. C:\Windows\system32\WLANExt.exe
  29. C:\Windows\system32\conhost.exe
  30. C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
  31. C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
  32. C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
  33. C:\Windows\system32\Dwm.exe
  34. C:\Windows\Explorer.EXE
  35. C:\Windows\system32\taskhost.exe
  36. C:\Windows\system32\svchost.exe -k bthsvcs
  37. C:\Program Files\Intel\WiFi\bin\EvtEng.exe
  38. C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
  39. C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
  40. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
  41. C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
  42. C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
  43. C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
  44. C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
  45. C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
  46. C:\Windows\system32\SearchIndexer.exe
  47. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
  48. C:\Windows\system32\wbem\unsecapp.exe
  49. C:\Windows\system32\wbem\wmiprvse.exe
  50. C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
  51. C:\Windows\System32\hkcmd.exe
  52. C:\Windows\System32\igfxpers.exe
  53. C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
  54. C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  55. C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  56. C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
  57. C:\Program Files\Microsoft Security Client\msseces.exe
  58. C:\Program Files\Dell\QuickSet\quickset.exe
  59. C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
  60. C:\Program Files (x86)\Internet Download Manager\IDMan.exe
  61. C:\Program Files (x86)\Launchy\Launchy.exe
  62. C:\Program Files\Windows Media Player\wmpnetwk.exe
  63. D:\Downloads\Firefox\DotaToolKit v3.3c\DotaToolKit.exe
  64. C:\Users\Aurum\AppData\Roaming\Dropbox\bin\Dropbox.exe
  65. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  66. C:\Program Files\Rainmeter\Rainmeter.exe
  67. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  68. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  69. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  70. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  71. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  72. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  73. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  74. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  75. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  76. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  77. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  78. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  79. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  80. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  81. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  82. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  83. C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe
  84. C:\Program Files (x86)\Stardock\ObjectDockPlus2\Dock64.exe
  85. C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDockTray.exe
  86. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  87. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  88. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  89. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  90. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  91. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  92. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  93. C:\Windows\SysWOW64\rundll32.exe
  94. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  95. C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
  96. C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
  97. C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
  98. C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  99. C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
  100. C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  101. C:\Program Files (x86)\Pidgin\pidgin.exe
  102. C:\Program Files (x86)\Skype\Phone\Skype.exe
  103. C:\Program Files (x86)\uTorrent\uTorrent.exe
  104. C:\Program Files (x86)\Vidalia Bundle\Vidalia\vidalia.exe
  105. C:\Program Files\ApexDC++\ApexDC-x64.exe
  106. C:\Program Files (x86)\Vidalia Bundle\Tor\tor.exe
  107. C:\Windows\system32\conhost.exe
  108. C:\Windows\system32\svchost.exe -k SDRSVC
  109. C:\Windows\notepad.exe
  110. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
  111. C:\Windows\system32\conhost.exe
  112. C:\Windows\system32\ipconfig.exe
  113. C:\Windows\system32\wbem\wmiprvse.exe
  114. C:\Windows\SysWOW64\NOTEPAD.EXE
  115. C:\Windows\system32\DllHost.exe
  116. C:\Windows\SysWOW64\cmd.exe
  117. C:\Windows\system32\conhost.exe
  118. C:\Windows\SysWOW64\cscript.exe
  119. .
  120. ============== Pseudo HJT Report ===============
  121. .
  122. mWinlogon: Userinit=userinit.exe,
  123. BHO: IDM integration (IDMIEHlprObj Class): {0055c089-8582-441b-a0bf-17b458c2a3a8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
  124. BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
  125. BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
  126. BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  127. BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
  128. BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
  129. uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
  130. mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
  131. mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
  132. mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
  133. StartupFolder: C:\Users\Aurum\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DOTATO~1.LNK - D:\Downloads\Firefox\DotaToolKit v3.3c\DotaToolKit.exe
  134. StartupFolder: C:\Users\Aurum\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Aurum\AppData\Roaming\Dropbox\bin\Dropbox.exe
  135. StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\Launchy.lnk - C:\Program Files (x86)\Launchy\Launchy.exe
  136. mPolicies-explorer: NoActiveDesktop = 1 (0x1)
  137. mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
  138. mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
  139. mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
  140. mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
  141. mPolicies-system: EnableLUA = 0 (0x0)
  142. mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
  143. IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
  144. IE: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
  145. IE: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
  146. IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
  147. LSP: %SystemRoot%\system32\PrxerDrv.dll
  148. DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
  149. DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
  150. DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
  151. Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
  152. Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
  153. AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
  154. SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
  155. BHO-X64: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
  156. BHO-X64: IDM Helper - No File
  157. BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
  158. BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
  159. BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  160. BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
  161. BHO-X64: URLRedirectionBHO - No File
  162. BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
  163. mRun-x64: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
  164. mRun-x64: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
  165. mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
  166. AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
  167. SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
  168. .
  169. ================= FIREFOX ===================
  170. .
  171. FF - ProfilePath - C:\Users\Aurum\AppData\Roaming\Mozilla\Firefox\Profiles\52b3xazk.default\
  172. FF - prefs.js: browser.search.selectedEngine - Google
  173. FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
  174. FF - prefs.js: network.proxy.socks - 127.0.0.1
  175. FF - prefs.js: network.proxy.socks_port - 9050
  176. FF - prefs.js: network.proxy.type - 0
  177. FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
  178. FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
  179. FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
  180. FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
  181. FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
  182. FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
  183. FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
  184. FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npRLCT4Player.dll
  185. FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
  186. FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
  187. FF - plugin: C:\Users\Aurum\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
  188. FF - plugin: C:\Users\Aurum\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
  189. FF - plugin: C:\Users\Aurum\AppData\Roaming\Mozilla\Firefox\Profiles\52b3xazk.default\extensions\coralietab@mozdev.org\plugins\npCoralIETab.dll
  190. FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll
  191. .
  192. ---- FIREFOX POLICIES ----
  193. FF - user.js: network.http.max-persistent-connections-per-server - 4
  194. FF - user.js: nglayout.initialpaint.delay - 600
  195. FF - user.js: content.notify.interval - 600000
  196. FF - user.js: content.max.tokenizing.time - 1800000
  197. FF - user.js: content.switch.threshold - 600000
  198. .
  199. ============= SERVICES / DRIVERS ===============
  200. .
  201. R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
  202. R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\system32\DRIVERS\stdcfltn.sys --> C:\Windows\system32\DRIVERS\stdcfltn.sys [?]
  203. R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]
  204. R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
  205. R1 nvkflt;nvkflt;C:\Windows\system32\DRIVERS\nvkflt.sys --> C:\Windows\system32\DRIVERS\nvkflt.sys [?]
  206. R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
  207. R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2012-3-15 98208]
  208. R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-10-19 661504]
  209. R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
  210. R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
  211. R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-10-20 135440]
  212. R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-12-31 13336]
  213. R2 IDMWFP;IDMWFP;C:\Windows\system32\DRIVERS\idmwfp.sys --> C:\Windows\system32\DRIVERS\idmwfp.sys [?]
  214. R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-4-19 654408]
  215. R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-3-13 1262912]
  216. R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-4-3 382272]
  217. R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\system32\DRIVERS\TurboB.sys --> C:\Windows\system32\DRIVERS\TurboB.sys [?]
  218. R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-31 2656280]
  219. R3 Acceler;Accelerometer Service;C:\Windows\system32\DRIVERS\Accelern.sys --> C:\Windows\system32\DRIVERS\Accelern.sys [?]
  220. R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?]
  221. R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
  222. R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
  223. R3 MEIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
  224. R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
  225. R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\NETwNs64.sys --> C:\Windows\system32\DRIVERS\NETwNs64.sys [?]
  226. R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
  227. R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
  228. R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
  229. R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
  230. R3 nvoclk64;NVIDIA Enthusiasts Platform KDM;C:\Windows\system32\DRIVERS\nvoclk64.sys --> C:\Windows\system32\DRIVERS\nvoclk64.sys [?]
  231. R3 qicflt;upper Device Filter Driver;C:\Windows\system32\DRIVERS\qicflt.sys --> C:\Windows\system32\DRIVERS\qicflt.sys [?]
  232. R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
  233. S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
  234. S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
  235. S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-1-31 158856]
  236. S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-1-30 253088]
  237. S3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
  238. S3 btmhsf;btmhsf;C:\Windows\system32\DRIVERS\btmhsf.sys --> C:\Windows\system32\DRIVERS\btmhsf.sys [?]
  239. S3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys --> C:\Windows\system32\drivers\dmvsc.sys [?]
  240. S3 iBtFltCoex;iBtFltCoex;C:\Windows\system32\DRIVERS\iBtFltCoex.sys --> C:\Windows\system32\DRIVERS\iBtFltCoex.sys [?]
  241. S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]
  242. S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-3-31 129976]
  243. S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
  244. S3 pwdrvio;pwdrvio;\??\C:\Windows\system32\pwdrvio.sys --> C:\Windows\system32\pwdrvio.sys [?]
  245. S3 pwdspio;pwdspio;\??\C:\Windows\system32\pwdspio.sys --> C:\Windows\system32\pwdspio.sys [?]
  246. S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]
  247. S3 Synth3dVsc;Synth3dVsc;C:\Windows\system32\drivers\synth3dvsc.sys --> C:\Windows\system32\drivers\synth3dvsc.sys [?]
  248. S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\system32\drivers\terminpt.sys --> C:\Windows\system32\drivers\terminpt.sys [?]
  249. S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
  250. S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
  251. S3 tsusbhub;tsusbhub;C:\Windows\system32\drivers\tsusbhub.sys --> C:\Windows\system32\drivers\tsusbhub.sys [?]
  252. S3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
  253. S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
  254. S3 ztemtusbser;ZTEMT Legacy Serial Communication;C:\Windows\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys --> C:\Windows\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys [?]
  255. .
  256. =============== Created Last 30 ================
  257. .
  258. 2012-04-19 14:43:47 -------- d-----w- C:\Users\Aurum\AppData\Local\ApexDC++
  259. 2012-04-19 13:39:49 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
  260. 2012-04-19 13:39:49 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
  261. 2012-04-18 17:52:01 8669240 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AFCC645-FBBB-4A9A-B017-06891C294974}\mpengine.dll
  262. 2012-04-18 12:06:05 162664 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10140.bin
  263. 2012-04-18 06:20:17 902656 ----a-w- C:\Windows\System32\d2d1.dll
  264. 2012-04-18 06:20:17 1139200 ----a-w- C:\Windows\System32\FntCache.dll
  265. 2012-04-18 06:20:16 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
  266. 2012-04-18 00:53:32 224768 ----a-w- C:\Windows\System32\drivers\CtAudDrv.sys
  267. 2012-04-18 00:53:32 172704 ----a-w- C:\Windows\System32\drivers\CtClsFlt.sys
  268. 2012-04-18 00:53:30 -------- d-----w- C:\Program Files (x86)\Creative Live! Cam
  269. 2012-04-18 00:50:03 5559152 ----a-w- C:\Windows\System32\ntoskrnl.exe
  270. 2012-04-18 00:50:03 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
  271. 2012-04-18 00:50:02 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
  272. 2012-04-18 00:45:27 81408 ----a-w- C:\Windows\System32\imagehlp.dll
  273. 2012-04-18 00:45:27 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
  274. 2012-04-18 00:45:27 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
  275. 2012-04-18 00:45:26 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
  276. 2012-04-18 00:45:26 5120 ----a-w- C:\Windows\System32\wmi.dll
  277. 2012-04-18 00:45:26 220672 ----a-w- C:\Windows\System32\wintrust.dll
  278. 2012-04-18 00:45:26 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
  279. 2012-04-18 00:03:51 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
  280. 2012-04-18 00:03:51 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
  281. 2012-04-18 00:03:47 605552 ----a-w- C:\Windows\System32\winload.exe
  282. 2012-04-18 00:03:47 566208 ----a-w- C:\Windows\System32\winresume.efi
  283. 2012-04-18 00:03:47 518672 ----a-w- C:\Windows\System32\winresume.exe
  284. 2012-04-18 00:03:46 642944 ----a-w- C:\Windows\System32\winload.efi
  285. 2012-04-18 00:03:46 20352 ----a-w- C:\Windows\System32\kdusb.dll
  286. 2012-04-18 00:03:46 19328 ----a-w- C:\Windows\System32\kd1394.dll
  287. 2012-04-18 00:03:46 17792 ----a-w- C:\Windows\System32\kdcom.dll
  288. 2012-04-17 23:59:51 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
  289. 2012-04-17 23:59:31 976896 ----a-w- C:\Windows\System32\inetcomm.dll
  290. 2012-04-17 23:59:30 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
  291. 2012-04-17 23:59:10 142336 ----a-w- C:\Windows\System32\poqexec.exe
  292. 2012-04-17 23:59:10 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
  293. 2012-04-17 23:58:43 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
  294. 2012-04-17 23:58:43 634880 ----a-w- C:\Windows\System32\msvcrt.dll
  295. 2012-04-17 23:58:38 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
  296. 2012-04-17 23:58:37 861696 ----a-w- C:\Windows\System32\oleaut32.dll
  297. 2012-04-17 23:58:37 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
  298. 2012-04-17 23:58:37 331776 ----a-w- C:\Windows\System32\oleacc.dll
  299. 2012-04-17 23:58:37 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
  300. 2012-04-17 23:58:31 723456 ----a-w- C:\Windows\System32\EncDec.dll
  301. 2012-04-17 23:58:31 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
  302. 2012-04-17 23:58:10 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
  303. 2012-04-17 23:58:10 2048 ----a-w- C:\Windows\System32\tzres.dll
  304. 2012-04-17 23:56:51 1731920 ----a-w- C:\Windows\System32\ntdll.dll
  305. 2012-04-17 23:56:51 1292080 ----a-w- C:\Windows\SysWow64\ntdll.dll
  306. 2012-04-17 23:55:45 77312 ----a-w- C:\Windows\System32\packager.dll
  307. 2012-04-17 23:55:45 67072 ----a-w- C:\Windows\SysWow64\packager.dll
  308. 2012-04-17 23:55:34 2871808 ----a-w- C:\Windows\explorer.exe
  309. 2012-04-17 23:55:33 2616320 ----a-w- C:\Windows\SysWow64\explorer.exe
  310. 2012-04-17 23:55:07 961024 ----a-w- C:\Windows\System32\CPFilters.dll
  311. 2012-04-17 23:55:07 850944 ----a-w- C:\Windows\SysWow64\sbe.dll
  312. 2012-04-17 23:55:07 642048 ----a-w- C:\Windows\SysWow64\CPFilters.dll
  313. 2012-04-17 23:55:07 259072 ----a-w- C:\Windows\System32\mpg2splt.ax
  314. 2012-04-17 23:55:07 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
  315. 2012-04-17 23:55:07 1118720 ----a-w- C:\Windows\System32\sbe.dll
  316. 2012-04-17 23:52:37 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
  317. 2012-04-17 23:51:38 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
  318. 2012-04-17 23:51:38 613888 ----a-w- C:\Windows\System32\psisdecd.dll
  319. 2012-04-17 23:51:38 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
  320. 2012-04-17 23:51:36 108032 ----a-w- C:\Windows\System32\psisrndr.ax
  321. 2012-04-17 23:51:35 498688 ----a-w- C:\Windows\System32\drivers\afd.sys
  322. 2012-04-17 20:38:33 -------- d-----w- C:\Program Files (x86)\Microsoft Synchronization Services
  323. 2012-04-17 20:38:21 -------- d-----w- C:\Windows\PCHEALTH
  324. 2012-04-17 20:38:21 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
  325. 2012-04-17 20:36:11 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
  326. 2012-04-17 18:51:37 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
  327. 2012-04-17 18:51:37 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
  328. 2012-04-17 18:51:37 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
  329. 2012-04-17 18:51:37 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
  330. 2012-04-17 18:51:37 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
  331. 2012-04-17 18:51:37 1112064 ----a-w- C:\Windows\System32\rdpcorets.dll
  332. 2012-04-17 18:51:37 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
  333. 2012-04-17 18:51:36 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
  334. 2012-04-17 18:15:20 889664 ----a-w- C:\Windows\System32\nvvsvc.exe
  335. 2012-04-17 18:15:20 858432 ----a-w- C:\Windows\System32\nv3dappshext.dll
  336. 2012-04-17 18:15:20 63296 ----a-w- C:\Windows\System32\nvshext.dll
  337. 2012-04-17 18:15:20 6122816 ----a-w- C:\Windows\System32\nvcpl.dll
  338. 2012-04-17 18:15:20 55616 ----a-w- C:\Windows\System32\nv3dappshextr.dll
  339. 2012-04-17 18:15:20 3149632 ----a-w- C:\Windows\System32\nvsvc64.dll
  340. 2012-04-17 18:15:20 2561856 ----a-w- C:\Windows\System32\nvsvcr.dll
  341. 2012-04-17 18:15:20 2553991 ----a-w- C:\Windows\System32\nvcoproc.bin
  342. 2012-04-17 18:15:20 118080 ----a-w- C:\Windows\System32\nvmctray.dll
  343. 2012-04-17 18:15:00 -------- d-----w- C:\ProgramData\NVIDIA Corporation
  344. 2012-04-17 18:14:55 -------- d-----w- C:\Program Files\NVIDIA Corporation
  345. 2012-04-17 18:14:55 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
  346. 2012-04-17 18:14:41 -------- d-----w- C:\Program Files\Synaptics
  347. 2012-04-17 18:14:12 -------- d-----w- C:\Windows\System32\SRSLabs
  348. 2012-04-17 18:14:10 -------- d-----w- C:\Windows\SysWow64\RTCOM
  349. 2012-04-17 18:14:10 -------- d-----w- C:\Program Files\Realtek
  350. 2012-04-17 18:14:08 21616 ----a-w- C:\Windows\System32\drivers\stdcfltn.sys
  351. 2012-04-17 18:14:05 -------- d-----w- C:\Program Files\STMicroelectronics
  352. 2012-04-15 21:07:57 -------- d-----w- C:\Program Files (x86)\Xpadder [5.7]
  353. 2012-04-14 22:17:29 24408 ----a-w- C:\Windows\System32\RegistryDefragBootTime.exe
  354. 2012-04-14 22:05:34 -------- d-----w- C:\Users\Aurum\AppData\Roaming\IObit
  355. 2012-04-14 17:08:46 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
  356. 2012-04-14 17:08:39 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
  357. 2012-04-13 12:44:25 -------- d-----w- C:\ProgramData\Pendulo Studios
  358. 2012-04-13 07:37:58 466456 ----a-w- C:\Windows\System32\wrap_oal.dll
  359. 2012-04-13 07:37:58 444952 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
  360. 2012-04-13 07:37:58 122904 ----a-w- C:\Windows\System32\OpenAL32.dll
  361. 2012-04-13 07:37:58 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
  362. 2012-04-13 07:37:58 -------- d-----w- C:\Program Files (x86)\OpenAL
  363. 2012-04-12 14:36:55 476904 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
  364. 2012-04-12 13:48:21 -------- d-----w- C:\Users\Aurum\AppData\Roaming\driveridentifier
  365. 2012-04-10 19:14:02 -------- d-----w- C:\Users\Aurum\AppData\Roaming\Flamebrain Technologies Inc
  366. 2012-04-10 07:47:28 -------- d-----w- C:\Users\Aurum\AppData\Roaming\TuneUp Software
  367. 2012-04-10 07:46:58 -------- d-sh--w- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
  368. 2012-04-09 17:03:42 -------- d-----w- C:\Users\Aurum\AppData\Local\Microsoft Help
  369. 2012-04-05 10:15:11 81008 ----a-w- C:\Windows\System32\accelernco01.dll
  370. 2012-04-05 10:15:11 27760 ----a-w- C:\Windows\System32\drivers\Accelern.sys
  371. 2012-04-05 10:15:11 -------- d-----w- C:\Program Files (x86)\STMicroelectronics
  372. 2012-04-04 19:46:50 1490656 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01007.dll
  373. 2012-04-04 19:46:08 -------- d-----w- C:\ProgramData\DatacardService
  374. 2012-04-03 01:46:04 423744 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
  375. 2012-03-31 19:12:38 -------- d-----w- C:\Users\Aurum\AppData\Roaming\Launchy
  376. 2012-03-31 19:12:21 -------- d-----w- C:\Program Files (x86)\Launchy
  377. 2012-03-31 17:46:16 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
  378. 2012-03-31 17:46:14 157352 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
  379. 2012-03-31 17:46:14 129976 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe
  380. 2012-03-31 16:58:46 -------- d-----w- C:\Users\Aurum\AppData\Roaming\NavNet Solutions
  381. 2012-03-30 10:49:34 8741536 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
  382. 2012-03-24 08:45:00 703352 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\LocalCopy\{39A1A0FA-537D-4CCD-8FAA-45E95A639C93}-autoruns.exe
  383. 2012-03-24 08:44:59 585080 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\LocalCopy\{2A02B0BA-6A5A-4E73-A7C4-3B1D340CE2FA}-autorunsc.exe
  384. 2012-03-23 06:54:24 31344 ----a-w- C:\Windows\System32\drivers\cnnctfy2.sys
  385. 2012-03-22 19:12:12 4435968 ----a-w- C:\Windows\SysWow64\GPhotos.scr
  386. .
  387. ==================== Find3M ====================
  388. .
  389. 2012-04-14 09:55:53 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  390. 2012-04-14 09:55:53 418464 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
  391. 2012-04-12 14:41:15 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
  392. 2012-03-14 12:53:00 147248 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys
  393. 2012-03-14 12:52:56 130864 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys
  394. 2012-03-14 12:52:54 224048 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys
  395. 2012-03-14 12:52:42 320816 ----a-w- C:\Windows\System32\VBoxNetFltNobj.dll
  396. 2012-02-23 08:48:24 750488 ----a-w- C:\Windows\System32\npdeployJava1.dll
  397. 2012-02-23 08:48:24 660368 ----a-w- C:\Windows\System32\deployJava1.dll
  398. 2012-02-14 06:39:44 1070352 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
  399. 2012-02-10 06:36:07 1544192 ----a-w- C:\Windows\System32\DWrite.dll
  400. 2012-02-10 05:38:43 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll
  401. 2012-02-08 01:13:32 149640 ----a-w- C:\Windows\System32\drivers\idmwfp.sys
  402. 2012-02-03 04:34:34 3145728 ----a-w- C:\Windows\System32\win32k.sys
  403. 2012-01-31 12:44:20 279656 ------w- C:\Windows\System32\MpSigStub.exe
  404. .
  405. ============= FINISH: 22:36:47.02 ===============
RAW Paste Data