I just purchased a new Windows 8 computer. But I'm being flooded with popups. Can someone please help?
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2
Run by Karen at 20:14:41 on 2013-11-15
Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.6027.2721 [GMT -5:00]
.
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
c:\progra~2\optimi~1\OptProCrash.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
C:\Program Files (x86)\MyPC Backup\BackupStack.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
C:\Windows\SysWOW64\CtrlPanel.exe
C:\Program Files (x86)\Disk Speedup\DSUDefragSrv64.exe
C:\Windows\system32\dashost.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files\acerIR\IRSrv.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\LinkSwift\updateLinkSwift.exe
C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
C:\Windows\system32\dwm.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\TidyNetwork.com\tidy2start.exe
C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe
C:\Program Files (x86)\Free Ride Games\GPlayer.exe
C:\Users\Karen\AppData\Local\Smartbar\Application\SnapDo.exe
C:\Windows\SysWOW64\CtrlPanel.exe
C:\Program Files\acerIR\IRListenApp.exe
C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGPanel.exe
C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
C:\Program Files (x86)\ITE\ITE Infrared Transceiver\CIRAP.exe
C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGenius.exe
C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGeniusAgent.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtTray.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files\EgisTec IPS\PMMUpdate.exe
C:\Program Files\EgisTec IPS\EgisUpdate.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\PointGrab\Hand Gesture Control\PG.exe
C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGLFMenu.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\program files (x86)\plus-hd-4.7\plus-hd-4.7-bg.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Windows Defender\MpCmdRun.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=hp&installDate=10/11/2013
uSearch Bar = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=ds&q={searchTerms}&installDate=10/11/2013
uSearch Page = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=ds&q={searchTerms}&installDate=10/11/2013
uDefault_Page_URL = hxxp://acer13.msn.com
uSearchAssistant = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=ds&q={searchTerms}&installDate=10/11/2013
mWinlogon: Userinit = userinit.exe
BHO: Plus-HD-4.7: {11111111-1111-1111-1111-110311961182} - C:\Program Files (x86)\Plus-HD-4.7\Plus-HD-4.7-bho.dll
BHO: SySaver: {2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} -
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Snap.DoEngine: {31ad400d-1b06-4e33-a59a-90c2c140cba0} -
BHO: LinkSwift: {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files (x86)\LinkSwift\LinkSwiftbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: TidyNetwork.com: {7736C7FA-512D-11E2-B871-DEC36088709B} - C:\Users\Karen\AppData\Local\TidyNetwork.com\tidy2ie.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL
BHO: Word: {B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} - C:\Users\Karen\AppData\Local\WordLayers\temp.dat
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Snap.Do: {ae07101b-46d4-4a98-af68-0333ea26e113} -
uRun: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
uRun: [Exetender] "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
uRun: [Browser Infrastructure Helper] C:\Users\Karen\AppData\Local\Smartbar\Application\SnapDo.exe startup
mRun: [WCtrlPanel] C:\Windows\SysWOW64\CtrlPanel.exe
mRun: [IRApp] C:\Program Files\acerIR\IRListenApp.exe
mRun: [CIRAP] C:\Program Files (x86)\ITE\ITE Infrared Transceiver\CIRAP.exe
mRun: [BingDesktop] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
dRun: [Exetender] "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MYPCBA~1.LNK - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SENDTO~1.LNK - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SEVERE~2.LNK - C:\Users\Karen\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsApp.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SEVERE~1.LNK - C:\Users\Karen\AppData\Local\SevereWeatherAlerts\SevereWeatherAlerts.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\TRENDS~1.LNK - C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGenius.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\TRENDS~2.LNK - C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGeniusAgent.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\HANDGE~1.LNK - C:\Windows\Installer\{4B145183-E986-4585-ADDF-0C73DB575112}\NewShortcut2_B6E756492E054C52892B86CE7391EFC9.exe
mPolicies-System: DisableCAD = dword:1
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{011C6220-8AA2-4549-A97E-5DF5795C5B06} : DHCPNameServer = 192.0.2.3
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\353484D29453435364333313 : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\644363536464 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\7556374756C6C6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\E4334574331425 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\F4074774561627 : DHCPNameServer = 192.168.1.1
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL
AppInit_DLLs= c:\progra~2\optimi~1\optpro~1.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Plus-HD-4.7: {11111111-1111-1111-1111-110311961182} - C:\Program Files (x86)\Plus-HD-4.7\Plus-HD-4.7-bho64.dll
x64-BHO: Snap.DoEngine: {31ad400d-1b06-4e33-a59a-90c2c140cba0} -
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
x64-TB: Snap.Do: {ae07101b-46d4-4a98-af68-0333ea26e113} -
x64-Run: [BtPreLoad] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe"
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-mPolicies-System: DisableCAD = dword:1
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2013-4-24 645952]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\Drivers\mwlPSDFilter.sys [2012-12-3 22648]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\Drivers\mwlPSDNserv.sys [2012-12-3 20520]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\Drivers\mwlPSDVDisk.sys [2012-12-3 62776]
R2 70e6ca8c;Optimizer Pro Crash Monitor;C:\progra~2\optimi~1\OptProCrash.exe [2013-10-6 143488]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe [2012-11-9 231040]
R2 BackupStack;Computer Backup (MyPC Backup);C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-9-19 38440]
R2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2013-6-27 173192]
R2 CCDMonitorService;CCDMonitorService;C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-10-9 2449552]
R2 CtrlPanel;CtrlPanel;C:\Windows\SysWOW64\CtrlPanel.exe [2013-4-24 229376]
R2 DSUDiskOptimizer;DSUDiskOptimizer;C:\Program Files (x86)\Disk Speedup\DSUDefragSrv64.exe [2013-11-10 692008]
R2 GamesAppIntegrationService;GamesAppIntegrationService;C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2013-9-5 240736]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2013-4-24 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-4-24 128896]
R2 IRSrv;IRSrv;C:\Program Files\acerIR\IRSrv.exe [2013-4-24 179712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-4-24 165760]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 OfficeSvc;Microsoft Office Service;C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-9-10 1907896]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-8-9 38608]
R2 RtkIOAC60;Realtek Support IOAC Protocol Driver;C:\Windows\System32\Drivers\RtkIOAC60.sys [2013-4-24 38504]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-4-24 364416]
R2 Update LinkSwift;Update LinkSwift;C:\Program Files (x86)\LinkSwift\updateLinkSwift.exe [2013-10-4 66336]
R2 Util LinkSwift;Util LinkSwift;C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe [2013-10-10 66336]
R2 X5XSEx_Pr143;X5XSEx_Pr143;C:\Program Files (x86)\Free Ride Games\X5XSEx_Pr143.sys [2013-10-6 56584]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;C:\Windows\System32\Drivers\btath_flt.sys [2013-4-24 88728]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\System32\Drivers\btath_a2dp.sys [2013-4-24 344216]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;C:\Windows\System32\Drivers\btath_avdt.sys [2013-4-24 114840]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\Windows\System32\Drivers\btath_bus.sys [2013-4-24 33944]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\Drivers\btath_hcrp.sys [2013-4-24 178840]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\Drivers\btath_lwflt.sys [2013-4-24 76952]
R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\System32\Drivers\btath_rcp.sys [2013-4-24 135832]
R3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2013-4-24 576152]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]
R3 ePowerSvc;ePower Service;C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-8-22 658576]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-10-25 342528]
R3 ITECIRfilter;ITECIR Filter Driver;C:\Windows\System32\Drivers\ITECIRfilter.sys [2013-4-24 18064]
R3 PQAWRwa;PQAWRwa;C:\Program Files\acerIR\PQAWDrv.sys [2013-4-24 12384]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\Drivers\RtsUStor.sys [2013-4-24 252048]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-4-24 683664]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe --> c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [?]
S2 PGService;PGService;C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe [2012-8-22 53616]
S3 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-7-11 174160]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
S3 xusb22;Xbox 360 Wireless Receiver Driver Service 22;C:\Windows\System32\Drivers\xusb22.sys [2012-7-25 89088]
.
=============== Created Last 30 ================
.
2013-11-15 23:24:47 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{133C7C08-6952-4225-8A4A-AB6DA6122FEF}\offreg.dll
2013-11-15 23:18:56 10280728 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{133C7C08-6952-4225-8A4A-AB6DA6122FEF}\mpengine.dll
2013-11-12 08:00:01 10280728 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-11-11 04:38:11 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2013-11-11 04:34:13 -------- d-----w- C:\Windows\System32\drivers\NSSx64\0400030.01B
2013-11-11 04:34:13 -------- d-----w- C:\Windows\System32\drivers\NSSx64
2013-11-11 04:34:13 -------- d-----w- C:\Program Files (x86)\Norton Security Scan
2013-11-11 04:34:10 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2013-11-11 02:41:41 -------- d-----w- C:\Program Files (x86)\Plus-HD-4.7
2013-11-11 02:41:01 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin
2013-11-11 02:40:59 -------- d-----w- C:\Users\Karen\AppData\Local\Google
2013-11-11 02:40:46 -------- d-----w- C:\Users\Karen\AppData\Roaming\TGF Interactive LLC
2013-11-11 02:40:02 -------- d-----w- C:\Users\Karen\AppData\Local\Smartbar
2013-11-11 02:36:36 -------- d-----w- C:\Users\Karen\AppData\Roaming\.minecraft
2013-11-11 02:33:45 -------- d-----w- C:\Program Files (x86)\RealNetworks
2013-11-11 02:33:43 -------- d-----w- C:\Users\Karen\AppData\Roaming\Uniblue
2013-11-11 02:33:43 -------- d-----w- C:\Program Files (x86)\Uniblue
2013-11-11 02:33:22 -------- d-----w- C:\ProgramData\Systweak
2013-11-11 02:33:13 16896 ----a-w- C:\Windows\System32\sasnative64.exe
2013-11-11 02:33:13 -------- d-----w- C:\Program Files (x86)\Advanced System Protector
2013-11-11 02:33:00 -------- d-----w- C:\Users\Karen\AppData\Roaming\RealNetworks
2013-11-11 02:33:00 -------- d-----w- C:\Users\Karen\AppData\Local\Real
2013-11-11 02:33:00 -------- d-----w- C:\Program Files (x86)\Disk Speedup
2013-11-11 02:32:40 -------- d-----w- C:\Users\Karen\AppData\Roaming\Systweak
2013-11-11 02:32:40 -------- d-----w- C:\ProgramData\RealNetworks
2013-11-11 02:32:39 19368 ----a-w- C:\Windows\System32\roboot64.exe
2013-11-11 02:32:30 -------- d-----w- C:\Program Files (x86)\RegClean Pro
2013-11-06 23:34:59 342704 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10224.bin
2013-11-06 15:45:32 5402832 ----a-w- C:\ProgramData\pclunst.exe
2013-11-06 15:45:31 -------- d-----w- C:\ProgramData\PC1Data
2013-10-29 17:19:05 -------- d-----w- C:\Program Files (x86)\MapsGalaxy_39EI
2013-10-27 14:45:27 -------- d-----w- C:\Program Files (x86)\LyricsParty-16
2013-10-27 14:43:15 -------- d-----w- C:\Program Files (x86)\MyPC Backup
2013-10-27 14:34:49 -------- d--h--w- C:\ProgramData\Common Files
2013-10-20 03:55:12 -------- d-----w- C:\Users\Karen\AppData\Local\Weather_Notifications,_LL
2013-10-20 03:54:59 -------- d-----w- C:\Users\Karen\AppData\Local\SevereWeatherAlerts
.
==================== Find3M ====================
.
2013-10-02 01:38:13 78296 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-02 01:38:13 694232 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-22 23:28:06 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-09-22 22:55:10 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll
2013-09-07 02:14:24 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-09-07 02:14:22 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-09-07 02:14:22 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-08-23 05:11:57 4040192 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 20:15:20.83 ===============
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2
Run by Karen at 20:14:41 on 2013-11-15
Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.6027.2721 [GMT -5:00]
.
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
c:\progra~2\optimi~1\OptProCrash.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
C:\Program Files (x86)\MyPC Backup\BackupStack.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
C:\Windows\SysWOW64\CtrlPanel.exe
C:\Program Files (x86)\Disk Speedup\DSUDefragSrv64.exe
C:\Windows\system32\dashost.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files\acerIR\IRSrv.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\LinkSwift\updateLinkSwift.exe
C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
C:\Windows\system32\dwm.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\TidyNetwork.com\tidy2start.exe
C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe
C:\Program Files (x86)\Free Ride Games\GPlayer.exe
C:\Users\Karen\AppData\Local\Smartbar\Application\SnapDo.exe
C:\Windows\SysWOW64\CtrlPanel.exe
C:\Program Files\acerIR\IRListenApp.exe
C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGPanel.exe
C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
C:\Program Files (x86)\ITE\ITE Infrared Transceiver\CIRAP.exe
C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGenius.exe
C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGeniusAgent.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtTray.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files\EgisTec IPS\PMMUpdate.exe
C:\Program Files\EgisTec IPS\EgisUpdate.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\PointGrab\Hand Gesture Control\PG.exe
C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGLFMenu.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\program files (x86)\plus-hd-4.7\plus-hd-4.7-bg.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Windows Defender\MpCmdRun.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=hp&installDate=10/11/2013
uSearch Bar = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=ds&q={searchTerms}&installDate=10/11/2013
uSearch Page = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=ds&q={searchTerms}&installDate=10/11/2013
uDefault_Page_URL = hxxp://acer13.msn.com
uSearchAssistant = hxxp://feed.snapdo.com/?publisher=Ybrant&dpid=Sien&co=US&userid=65492df5-ad9a-59d5-d470-d3df492f6c74&searchtype=ds&q={searchTerms}&installDate=10/11/2013
mWinlogon: Userinit = userinit.exe
BHO: Plus-HD-4.7: {11111111-1111-1111-1111-110311961182} - C:\Program Files (x86)\Plus-HD-4.7\Plus-HD-4.7-bho.dll
BHO: SySaver: {2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} -
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Snap.DoEngine: {31ad400d-1b06-4e33-a59a-90c2c140cba0} -
BHO: LinkSwift: {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files (x86)\LinkSwift\LinkSwiftbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: TidyNetwork.com: {7736C7FA-512D-11E2-B871-DEC36088709B} - C:\Users\Karen\AppData\Local\TidyNetwork.com\tidy2ie.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL
BHO: Word: {B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} - C:\Users\Karen\AppData\Local\WordLayers\temp.dat
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Snap.Do: {ae07101b-46d4-4a98-af68-0333ea26e113} -
uRun: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
uRun: [Exetender] "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
uRun: [Browser Infrastructure Helper] C:\Users\Karen\AppData\Local\Smartbar\Application\SnapDo.exe startup
mRun: [WCtrlPanel] C:\Windows\SysWOW64\CtrlPanel.exe
mRun: [IRApp] C:\Program Files\acerIR\IRListenApp.exe
mRun: [CIRAP] C:\Program Files (x86)\ITE\ITE Infrared Transceiver\CIRAP.exe
mRun: [BingDesktop] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
dRun: [Exetender] "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MYPCBA~1.LNK - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SENDTO~1.LNK - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SEVERE~2.LNK - C:\Users\Karen\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsApp.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SEVERE~1.LNK - C:\Users\Karen\AppData\Local\SevereWeatherAlerts\SevereWeatherAlerts.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\TRENDS~1.LNK - C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGenius.exe
StartupFolder: C:\Users\Karen\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\TRENDS~2.LNK - C:\Users\Karen\AppData\Roaming\TGF Interactive LLC\Trends Genius\TrendsGeniusAgent.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\HANDGE~1.LNK - C:\Windows\Installer\{4B145183-E986-4585-ADDF-0C73DB575112}\NewShortcut2_B6E756492E054C52892B86CE7391EFC9.exe
mPolicies-System: DisableCAD = dword:1
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{011C6220-8AA2-4549-A97E-5DF5795C5B06} : DHCPNameServer = 192.0.2.3
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\353484D29453435364333313 : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\644363536464 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\7556374756C6C6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\E4334574331425 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5AAEF88F-BCFD-465B-BC17-784566D6D0FD}\F4074774561627 : DHCPNameServer = 192.168.1.1
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL
AppInit_DLLs= c:\progra~2\optimi~1\optpro~1.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Plus-HD-4.7: {11111111-1111-1111-1111-110311961182} - C:\Program Files (x86)\Plus-HD-4.7\Plus-HD-4.7-bho64.dll
x64-BHO: Snap.DoEngine: {31ad400d-1b06-4e33-a59a-90c2c140cba0} -
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
x64-TB: Snap.Do: {ae07101b-46d4-4a98-af68-0333ea26e113} -
x64-Run: [BtPreLoad] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe"
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-mPolicies-System: DisableCAD = dword:1
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2013-4-24 645952]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\Drivers\mwlPSDFilter.sys [2012-12-3 22648]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\Drivers\mwlPSDNserv.sys [2012-12-3 20520]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\Drivers\mwlPSDVDisk.sys [2012-12-3 62776]
R2 70e6ca8c;Optimizer Pro Crash Monitor;C:\progra~2\optimi~1\OptProCrash.exe [2013-10-6 143488]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe [2012-11-9 231040]
R2 BackupStack;Computer Backup (MyPC Backup);C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-9-19 38440]
R2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2013-6-27 173192]
R2 CCDMonitorService;CCDMonitorService;C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-10-9 2449552]
R2 CtrlPanel;CtrlPanel;C:\Windows\SysWOW64\CtrlPanel.exe [2013-4-24 229376]
R2 DSUDiskOptimizer;DSUDiskOptimizer;C:\Program Files (x86)\Disk Speedup\DSUDefragSrv64.exe [2013-11-10 692008]
R2 GamesAppIntegrationService;GamesAppIntegrationService;C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2013-9-5 240736]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2013-4-24 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-4-24 128896]
R2 IRSrv;IRSrv;C:\Program Files\acerIR\IRSrv.exe [2013-4-24 179712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-4-24 165760]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 OfficeSvc;Microsoft Office Service;C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-9-10 1907896]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-8-9 38608]
R2 RtkIOAC60;Realtek Support IOAC Protocol Driver;C:\Windows\System32\Drivers\RtkIOAC60.sys [2013-4-24 38504]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-4-24 364416]
R2 Update LinkSwift;Update LinkSwift;C:\Program Files (x86)\LinkSwift\updateLinkSwift.exe [2013-10-4 66336]
R2 Util LinkSwift;Util LinkSwift;C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe [2013-10-10 66336]
R2 X5XSEx_Pr143;X5XSEx_Pr143;C:\Program Files (x86)\Free Ride Games\X5XSEx_Pr143.sys [2013-10-6 56584]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;C:\Windows\System32\Drivers\btath_flt.sys [2013-4-24 88728]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\System32\Drivers\btath_a2dp.sys [2013-4-24 344216]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;C:\Windows\System32\Drivers\btath_avdt.sys [2013-4-24 114840]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\Windows\System32\Drivers\btath_bus.sys [2013-4-24 33944]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\Drivers\btath_hcrp.sys [2013-4-24 178840]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\Drivers\btath_lwflt.sys [2013-4-24 76952]
R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\System32\Drivers\btath_rcp.sys [2013-4-24 135832]
R3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2013-4-24 576152]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]
R3 ePowerSvc;ePower Service;C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-8-22 658576]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-10-25 342528]
R3 ITECIRfilter;ITECIR Filter Driver;C:\Windows\System32\Drivers\ITECIRfilter.sys [2013-4-24 18064]
R3 PQAWRwa;PQAWRwa;C:\Program Files\acerIR\PQAWDrv.sys [2013-4-24 12384]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\Drivers\RtsUStor.sys [2013-4-24 252048]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-4-24 683664]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe --> c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [?]
S2 PGService;PGService;C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe [2012-8-22 53616]
S3 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-7-11 174160]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
S3 xusb22;Xbox 360 Wireless Receiver Driver Service 22;C:\Windows\System32\Drivers\xusb22.sys [2012-7-25 89088]
.
=============== Created Last 30 ================
.
2013-11-15 23:24:47 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{133C7C08-6952-4225-8A4A-AB6DA6122FEF}\offreg.dll
2013-11-15 23:18:56 10280728 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{133C7C08-6952-4225-8A4A-AB6DA6122FEF}\mpengine.dll
2013-11-12 08:00:01 10280728 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-11-11 04:38:11 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2013-11-11 04:34:13 -------- d-----w- C:\Windows\System32\drivers\NSSx64\0400030.01B
2013-11-11 04:34:13 -------- d-----w- C:\Windows\System32\drivers\NSSx64
2013-11-11 04:34:13 -------- d-----w- C:\Program Files (x86)\Norton Security Scan
2013-11-11 04:34:10 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2013-11-11 02:41:41 -------- d-----w- C:\Program Files (x86)\Plus-HD-4.7
2013-11-11 02:41:01 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin
2013-11-11 02:40:59 -------- d-----w- C:\Users\Karen\AppData\Local\Google
2013-11-11 02:40:46 -------- d-----w- C:\Users\Karen\AppData\Roaming\TGF Interactive LLC
2013-11-11 02:40:02 -------- d-----w- C:\Users\Karen\AppData\Local\Smartbar
2013-11-11 02:36:36 -------- d-----w- C:\Users\Karen\AppData\Roaming\.minecraft
2013-11-11 02:33:45 -------- d-----w- C:\Program Files (x86)\RealNetworks
2013-11-11 02:33:43 -------- d-----w- C:\Users\Karen\AppData\Roaming\Uniblue
2013-11-11 02:33:43 -------- d-----w- C:\Program Files (x86)\Uniblue
2013-11-11 02:33:22 -------- d-----w- C:\ProgramData\Systweak
2013-11-11 02:33:13 16896 ----a-w- C:\Windows\System32\sasnative64.exe
2013-11-11 02:33:13 -------- d-----w- C:\Program Files (x86)\Advanced System Protector
2013-11-11 02:33:00 -------- d-----w- C:\Users\Karen\AppData\Roaming\RealNetworks
2013-11-11 02:33:00 -------- d-----w- C:\Users\Karen\AppData\Local\Real
2013-11-11 02:33:00 -------- d-----w- C:\Program Files (x86)\Disk Speedup
2013-11-11 02:32:40 -------- d-----w- C:\Users\Karen\AppData\Roaming\Systweak
2013-11-11 02:32:40 -------- d-----w- C:\ProgramData\RealNetworks
2013-11-11 02:32:39 19368 ----a-w- C:\Windows\System32\roboot64.exe
2013-11-11 02:32:30 -------- d-----w- C:\Program Files (x86)\RegClean Pro
2013-11-06 23:34:59 342704 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10224.bin
2013-11-06 15:45:32 5402832 ----a-w- C:\ProgramData\pclunst.exe
2013-11-06 15:45:31 -------- d-----w- C:\ProgramData\PC1Data
2013-10-29 17:19:05 -------- d-----w- C:\Program Files (x86)\MapsGalaxy_39EI
2013-10-27 14:45:27 -------- d-----w- C:\Program Files (x86)\LyricsParty-16
2013-10-27 14:43:15 -------- d-----w- C:\Program Files (x86)\MyPC Backup
2013-10-27 14:34:49 -------- d--h--w- C:\ProgramData\Common Files
2013-10-20 03:55:12 -------- d-----w- C:\Users\Karen\AppData\Local\Weather_Notifications,_LL
2013-10-20 03:54:59 -------- d-----w- C:\Users\Karen\AppData\Local\SevereWeatherAlerts
.
==================== Find3M ====================
.
2013-10-02 01:38:13 78296 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-02 01:38:13 694232 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-22 23:28:06 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-09-22 22:55:10 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll
2013-09-07 02:14:24 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-09-07 02:14:22 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-09-07 02:14:22 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-08-23 05:11:57 4040192 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 20:15:20.83 ===============