I have a windows & computer (32 bit) on a home network, running on an Airport Express for WiFi, which is wired to my satellite modem.
Connection to the internet is not a problem, but I cannot connect to the printer, wired to the Airport Express, nor can I even see the Airport Extreme that i am using as a music bridge. Note: I have 2 laptops which connect to everything just fine.
When I run Airport Utility, it tells me ithat "airport utility was unable to find any airport devices."
Not sure I have a virus or trojan, but I was directed here. I have followed the posting instructions, and run all the scans.
Below are the contents of the contents of the DDS.txt file.
I DO have a windows install disc.
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16526 BrowserJavaVersion: 1.6.0_23
Run by User at 11:18:39 on 2014-03-09
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.2046.1262 [GMT -4:00]
.
AV: Webroot SecureAnywhere *Enabled/Updated* {66A6FE14-08CB-F415-3742-517201416109}
SP: Webroot SecureAnywhere *Enabled/Updated* {DDC71FF0-2EF1-FB9B-0DF2-6A007AC62BB4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\PCPitstop\PCPitstopScheduleService.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\loggingserver.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe
C:\Program Files\Webroot\WRSA.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Webroot\WRSA.exe
C:\Windows\Explorer.EXE
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\AirPort\APAgent.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG SafeGuard toolbar\vprot.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\PCPitstop\Download Nitro\pcpitstop-nitro.exe
C:\Program Files\Garmin\Express Tray\ExpressTray.exe
C:\Users\User\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
C:\Program Files\Driver Restore\Driver Restore\DriverRestore.exe
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Audible\Bin\AudibleDownloadHelper.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\System32\svchost.exe -k WerSvcGroup
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.mysearchdial.com/?f=1&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
uSearch Page = hxxp://www.google.com
mStart Page = hxxp://start.mysearchdial.com/?f=1&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=71&bd=Pavilion&pf=desktop
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
BHO: Yahoo! Toolbar Helper: {02478D38-C3F9-4EFB-9B51-7695ECA05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.141\McAfeeMSS_IE.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\HPNetworkCheckPlugin.dll
TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file>
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [Download Nitro] "c:\program files\pcpitstop\download nitro\pcpitstop-nitro.exe" -autorun
uRun: [GarminExpressTrayApp] "c:\program files\garmin\express tray\ExpressTray.exe"
uRun: [Amazon Cloud Player] "c:\users\user\appdata\local\amazon cloud player\Amazon Music Helper.exe"
uRun: [Driver Restore] c:\program files\driver restore\driver restore\DriverRestore.exe /applicationMode:systemTray /showWelcome:false
mRun: [WRSVC] "c:\program files\webroot\WRSA.exe" -ul
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [EEventManager] c:\progra~1\epsons~1\eventm~1\EEventManager.exe
mRun: [AirPort Base Station Agent] "c:\program files\airport\APAgent.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Nvtmru] "c:\program files\nvidia corporation\nvidia update core\nvtmru.exe"
mRun: [ShadowPlay] c:\windows\system32\rundll32.exe c:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
mRun: [NvBackend] "c:\program files\nvidia corporation\update core\NvBackend.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [vptray] c:\progra~1\symant~1\VPTray.exe
mRunOnce: [NCPluginUpdater] "c:\program files\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\athome~1.lnk - c:\program files\athomeconnect\AtHomeConnect.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.8.141\SSScheduler.exe
uPolicies-Explorer: NoViewOnDrive = dword:0
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: NoDevMgrUpdate = dword:0
uPolicies-Explorer: NoWindowsUpdate = dword:0
uPolicies-System: NoDispAppearancePage = dword:0
uPolicies-System: NoDispSettingsPage = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\NCLauncherFromIE.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
DPF: {6824D897-F7E1-4E41-B84B-B1D3FA4BF1BD} - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstopAntiVirus.dll
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
TCP: NameServer = 10.0.1.1
TCP: Interfaces\{2EB22870-F8C0-49F2-9B74-58BE31950D36} : DHCPNameServer = 10.0.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\18.0.0\ViProtocol.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\33.0.1750.146\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\
FF - prefs.js: browser.search.selectedEngine - Mysearchdial
FF - prefs.js: browser.startup.homepage - hxxp://search.yahoo.com/?fr=altavista
FF - prefs.js: keyword.URL -
FF - prefs.js: network.proxy.type - 0
FF - component: c:\program files\pcpitstop\download nitro\firefox\extension\components\vmsfdmff.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin.dll
FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\18.0.0\npsitesafety.dll
FF - plugin: c:\program files\common files\motive\npMotive.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mcafee security scan\3.8.141\npMcAfeeMSS.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\programdata\visan\plugins\npRLSecurePluginLayer.dll
FF - plugin: c:\users\user\appdata\local\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npAclmPlugin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npIdfPlugin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npPitPlugin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npProductDetectPlugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_70.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.mysearchdial.hmpg - true
FF - user.js: extensions.mysearchdial.hmpgUrl - hxxp://start.mysearchdial.com/?f=1&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
FF - user.js: extensions.mysearchdial.dfltSrch - true
FF - user.js: extensions.mysearchdial.srchPrvdr - Mysearchdial
FF - user.js: extensions.mysearchdial.dnsErr - true
FF - user.js: extensions.mysearchdial_i.newTab - false
FF - user.js: extensions.mysearchdial.newTabUrl - hxxp://start.mysearchdial.com/?f=2&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
FF - user.js: extensions.mysearchdial.tlbrSrchUrl - hxxp://start.mysearchdial.com/?f=3&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=&q=
FF - user.js: extensions.mysearchdial.id - 204E7FF1FD291001
FF - user.js: extensions.mysearchdial.instlDay - 16134
FF - user.js: extensions.mysearchdial.vrsn - 1.8.29.0
FF - user.js: extensions.mysearchdial.vrsni - 1.8.29.0
FF - user.js: extensions.mysearchdial_i.vrsnTs - 1.8.29.022:12:10
FF - user.js: extensions.mysearchdial.prtnrId - mysearchdial
FF - user.js: extensions.mysearchdial.prdct - mysearchdial
FF - user.js: extensions.mysearchdial.aflt - dsites
FF - user.js: extensions.mysearchdial_i.smplGrp - none
FF - user.js: extensions.mysearchdial.tlbrId - base
FF - user.js: extensions.mysearchdial.instlRef - 0211_b
FF - user.js: extensions.mysearchdial.dfltLng -
FF - user.js: extensions.mysearchdial.appId - {CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
FF - user.js: extensions.mysearchdial.excTlbr - false
FF - user.js: extensions.mysearchdial_i.hmpg - true
FF - user.js: extensions.mysearchdial.cr - 1488403295
FF - user.js: extensions.mysearchdial.cd - 2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q
FF - user.js: extensions.mysearchdial.AL - 2
FF - user.js: extensions.irmysearch.aflt - dsites
FF - user.js: extensions.irmysearch.instlRef - 0211_b
FF - user.js: extensions.irmysearch.cr - 1488403295
FF - user.js: extensions.irmysearch.cd - 2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q
.
============= SERVICES / DRIVERS ===============
.
R0 SCMNdisP;General NDIS Protocol Driver;c:\windows\system32\drivers\SCMNdisP.sys [2012-8-7 21728]
R0 WRkrn;WRkrn;c:\windows\system32\drivers\WRkrn.sys [2011-12-6 116736]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2014-2-11 42784]
R2 Garmin Core Update Service;Garmin Core Update Service;c:\program files\garmin\core update service\Garmin.Cartography.MapUpdate.CoreService.exe [2013-11-8 250712]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\hewlett-packard\hp support framework\HPSA_Service.exe [2012-9-27 86528]
R2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files\common files\intuit\update service v4\IntuitUpdateService.exe [2011-8-25 13672]
R2 NvNetworkService;NVIDIA Network Service;c:\program files\nvidia corporation\netservice\NvNetworkService.exe [2013-12-19 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe [2013-11-25 14658848]
R2 PCPitstop Scheduling;PCPitstop Scheduling;c:\program files\pcpitstop\PCPitstopScheduleService.exe [2011-2-27 86216]
R2 ReimageRealTimeProtection;Reimage Real Time Protection;c:\program files\reimage\reimage repair\ReiGuard.exe [2014-1-15 4030824]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2014-3-6 411936]
R2 Symantec AntiVirus;Symantec AntiVirus;c:\program files\symantec antivirus\Rtvscan.exe [2006-11-28 1962136]
R2 vToolbarUpdater18.0.0;vToolbarUpdater18.0.0;c:\program files\common files\avg secure search\vtoolbarupdater\18.0.0\ToolbarUpdater.exe [2014-3-2 1759768]
R2 WRSVC;WRSVC;c:\program files\webroot\WRSA.exe [2011-12-6 763000]
R3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;c:\windows\system32\drivers\bcmwlhigh6.sys [2011-4-19 1092160]
R3 hcw18bda;Hauppauge WinTV 418 Driver;c:\windows\system32\drivers\hcw18bda.sys [2009-5-28 391296]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-12-19 34080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys [2014-2-12 43368]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;"c:\program files\google\google desktop search\googledesktop.exe" --> c:\program files\google\google desktop search\GoogleDesktop.exe [?]
S3 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe -k HsfXAudioService [2009-7-13 20992]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.141\McCHSvc.exe [2014-1-15 235696]
S3 SavRoam;SavRoam;c:\program files\symantec antivirus\SavRoam.exe [2006-11-28 122008]
S3 SCR131C;SCRx31 Serial Smart Card Reader;c:\windows\system32\drivers\SCR131C.sys [2002-11-7 181875]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [2004-4-6 64088]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-20 52224]
S3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-11-19 1343400]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]
S4 accoca;ActivClient Middleware Service;c:\program files\actividentity\activclient\accoca.exe [2007-5-3 182576]
S4 AutoSyncService;Memeo AutoSync ;c:\program files\memeo\autosync\MemeoService.exe [2007-7-6 31768]
S4 DQLWinService;DQLWinService;c:\program files\common files\intel\inteldh\nms\adpplugins\DQLWinService.exe [2006-9-3 208896]
S4 IHA_MessageCenter;IHA_MessageCenter;c:\program files\verizon\iha_messagecenter\bin\Verizon_IHAMessageCenter.exe [2010-10-13 98304]
S4 IntelDHSvcConf;Intel DH Service;c:\program files\intel\inteldh\intel media server\tools\IntelDHSvcConf.exe [2006-5-10 29696]
S4 MCLServiceATL;Intel(R) Application Tracker;c:\program files\intel\inteldh\intel media server\shells\MCLServiceATL.exe [2006-9-11 167936]
S4 SeagateDashboardService;Seagate Dashboard Service;c:\program files\seagate\seagate dashboard\SeagateDashboardService.exe [2011-6-1 14088]
S4 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S4 WSWNA3100;WSWNA3100;c:\program files\netgear\wna3100\WifiSvc.exe [2012-8-7 285152]
.
=============== Created Last 30 ================
.
2014-03-09 01:40:03 109744 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2014-03-09 01:36:00 -------- d-----w- c:\program files\Symantec
2014-03-09 01:35:44 -------- d-----w- c:\program files\Symantec AntiVirus
2014-03-08 02:00:42 -------- d-----w- c:\programdata\CDB
2014-03-08 01:59:34 -------- d-----w- c:\program files\Reimage
2014-03-08 01:59:24 -------- d-----w- C:\rei
2014-03-08 01:45:44 -------- d-----w- C:\HiJack This
2014-03-06 17:29:09 599840 ----a-w- c:\windows\system32\nvStreaming.exe
2014-03-06 17:24:57 0 ----a-w- c:\windows\system32\SETE25A.tmp
2014-03-06 17:22:49 9690424 ----a-w- c:\windows\system32\nvopencl.dll
2014-03-06 17:22:49 23683360 ----a-w- c:\windows\system32\nvoglv32.dll
2014-03-06 17:22:48 10180896 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2014-03-06 17:22:47 895264 ----a-w- c:\windows\system32\nvdispgenco3233489.dll
2014-03-06 17:22:47 863520 ----a-w- c:\windows\system32\NvIFR.dll
2014-03-06 17:22:47 844576 ----a-w- c:\windows\system32\NvFBC.dll
2014-03-06 17:22:46 1049888 ----a-w- c:\windows\system32\nvdispco3233489.dll
2014-03-06 17:22:45 2956576 ----a-w- c:\windows\system32\nvcuvid.dll
2014-03-06 17:22:44 9728064 ----a-w- c:\windows\system32\nvcuda.dll
2014-03-06 17:22:44 2410784 ----a-w- c:\windows\system32\nvcuvenc.dll
2014-03-06 17:22:42 2713728 ----a-w- c:\windows\system32\nvapi.dll
2014-03-06 17:22:42 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2014-03-06 03:18:32 -------- d-----w- c:\program files\Xirrus
2014-03-06 03:16:51 -------- d-----w- c:\users\user\appdata\local\Downloaded Installations
2014-03-06 03:12:19 -------- d-----w- c:\users\user\appdata\roaming\0D0S1L2Z1P1B
2014-03-06 03:12:11 -------- d-----w- c:\users\user\appdata\roaming\DigitalSites
2014-03-02 21:06:10 -------- d-----w- c:\programdata\AVG Secure Search
2014-03-02 06:36:07 -------- d-----w- c:\program files\iPod
2014-03-02 06:35:44 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin5.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin4.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin3.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin2.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2014-02-18 01:14:17 -------- d-----w- c:\program files\HRBlock2013
2014-02-17 01:11:44 -------- d-----w- c:\users\user\appdata\local\CrashDumps
2014-02-17 00:46:37 -------- d-----w- c:\program files\McAfee Security Scan
2014-02-13 04:06:56 -------- d-----w- c:\users\user\appdata\local\AVG SafeGuard toolbar
2014-02-13 03:35:28 43368 ----a-w- c:\windows\system32\drivers\gfiark.sys
2014-02-13 03:20:15 -------- d-----w- c:\programdata\UAB
2014-02-13 03:19:44 -------- d-----w- c:\users\user\appdata\local\PC_Drivers_Headquarters
2014-02-12 03:37:40 42784 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2014-02-12 03:31:08 -------- d-----w- c:\program files\common files\AVG Secure Search
2014-02-12 03:28:48 -------- d-----w- c:\programdata\AVG SafeGuard toolbar
2014-02-12 03:28:37 -------- d-----w- c:\program files\AVG SafeGuard toolbar
2014-02-12 03:25:24 -------- d--h--w- c:\programdata\Common Files
2014-02-11 01:35:15 -------- d-----w- c:\program files\iTunes
.
==================== Find3M ====================
.
2014-03-08 21:18:37 152744 ----a-w- c:\windows\system32\WRusr.dll
2014-03-08 21:18:37 116736 ----a-w- c:\windows\system32\drivers\WRkrn.sys
2014-03-04 02:30:03 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-04 02:30:03 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-02-08 18:27:20 15740232 ----a-w- c:\windows\system32\nvwgf2um.dll
2014-02-08 18:27:20 14669032 ----a-w- c:\windows\system32\nvd3dum.dll
2014-02-08 17:11:47 4348704 ----a-w- c:\windows\system32\nvcpl.dll
2014-02-08 17:11:47 3045664 ----a-w- c:\windows\system32\nvsvc.dll
2014-02-08 17:11:44 664864 ----a-w- c:\windows\system32\nvvsvc.exe
2014-02-08 17:11:44 62752 ----a-w- c:\windows\system32\nvshext.dll
2014-02-08 17:11:44 376096 ----a-w- c:\windows\system32\nvmctray.dll
2014-01-17 21:24:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2014-01-17 21:24:12 69632 ----a-w- c:\windows\system32\QuickTime.qts
2013-12-28 05:09:08 0 ----a-w- c:\windows\system32\SET17FD.tmp
2013-12-10 02:13:11 982232 ----a-w- c:\windows\system32\nvspcap.dll
.
============= FINISH: 11:20:05.28 ===============
Connection to the internet is not a problem, but I cannot connect to the printer, wired to the Airport Express, nor can I even see the Airport Extreme that i am using as a music bridge. Note: I have 2 laptops which connect to everything just fine.
When I run Airport Utility, it tells me ithat "airport utility was unable to find any airport devices."
Not sure I have a virus or trojan, but I was directed here. I have followed the posting instructions, and run all the scans.
Below are the contents of the contents of the DDS.txt file.
I DO have a windows install disc.
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16526 BrowserJavaVersion: 1.6.0_23
Run by User at 11:18:39 on 2014-03-09
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.2046.1262 [GMT -4:00]
.
AV: Webroot SecureAnywhere *Enabled/Updated* {66A6FE14-08CB-F415-3742-517201416109}
SP: Webroot SecureAnywhere *Enabled/Updated* {DDC71FF0-2EF1-FB9B-0DF2-6A007AC62BB4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\PCPitstop\PCPitstopScheduleService.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\loggingserver.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe
C:\Program Files\Webroot\WRSA.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Webroot\WRSA.exe
C:\Windows\Explorer.EXE
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\AirPort\APAgent.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG SafeGuard toolbar\vprot.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\PCPitstop\Download Nitro\pcpitstop-nitro.exe
C:\Program Files\Garmin\Express Tray\ExpressTray.exe
C:\Users\User\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
C:\Program Files\Driver Restore\Driver Restore\DriverRestore.exe
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Audible\Bin\AudibleDownloadHelper.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\System32\svchost.exe -k WerSvcGroup
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.mysearchdial.com/?f=1&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
uSearch Page = hxxp://www.google.com
mStart Page = hxxp://start.mysearchdial.com/?f=1&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=71&bd=Pavilion&pf=desktop
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
BHO: Yahoo! Toolbar Helper: {02478D38-C3F9-4EFB-9B51-7695ECA05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.141\McAfeeMSS_IE.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\HPNetworkCheckPlugin.dll
TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file>
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [Download Nitro] "c:\program files\pcpitstop\download nitro\pcpitstop-nitro.exe" -autorun
uRun: [GarminExpressTrayApp] "c:\program files\garmin\express tray\ExpressTray.exe"
uRun: [Amazon Cloud Player] "c:\users\user\appdata\local\amazon cloud player\Amazon Music Helper.exe"
uRun: [Driver Restore] c:\program files\driver restore\driver restore\DriverRestore.exe /applicationMode:systemTray /showWelcome:false
mRun: [WRSVC] "c:\program files\webroot\WRSA.exe" -ul
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [EEventManager] c:\progra~1\epsons~1\eventm~1\EEventManager.exe
mRun: [AirPort Base Station Agent] "c:\program files\airport\APAgent.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Nvtmru] "c:\program files\nvidia corporation\nvidia update core\nvtmru.exe"
mRun: [ShadowPlay] c:\windows\system32\rundll32.exe c:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
mRun: [NvBackend] "c:\program files\nvidia corporation\update core\NvBackend.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [vptray] c:\progra~1\symant~1\VPTray.exe
mRunOnce: [NCPluginUpdater] "c:\program files\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\athome~1.lnk - c:\program files\athomeconnect\AtHomeConnect.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.8.141\SSScheduler.exe
uPolicies-Explorer: NoViewOnDrive = dword:0
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: NoDevMgrUpdate = dword:0
uPolicies-Explorer: NoWindowsUpdate = dword:0
uPolicies-System: NoDispAppearancePage = dword:0
uPolicies-System: NoDispSettingsPage = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\NCLauncherFromIE.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
DPF: {6824D897-F7E1-4E41-B84B-B1D3FA4BF1BD} - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstopAntiVirus.dll
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
TCP: NameServer = 10.0.1.1
TCP: Interfaces\{2EB22870-F8C0-49F2-9B74-58BE31950D36} : DHCPNameServer = 10.0.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\18.0.0\ViProtocol.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\33.0.1750.146\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\
FF - prefs.js: browser.search.selectedEngine - Mysearchdial
FF - prefs.js: browser.startup.homepage - hxxp://search.yahoo.com/?fr=altavista
FF - prefs.js: keyword.URL -
FF - prefs.js: network.proxy.type - 0
FF - component: c:\program files\pcpitstop\download nitro\firefox\extension\components\vmsfdmff.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin.dll
FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\18.0.0\npsitesafety.dll
FF - plugin: c:\program files\common files\motive\npMotive.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mcafee security scan\3.8.141\npMcAfeeMSS.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\programdata\visan\plugins\npRLSecurePluginLayer.dll
FF - plugin: c:\users\user\appdata\local\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npAclmPlugin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npIdfPlugin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npPitPlugin.dll
FF - plugin: c:\users\user\appdata\roaming\mozilla\firefox\profiles\xri9jorf.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npProductDetectPlugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_70.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.mysearchdial.hmpg - true
FF - user.js: extensions.mysearchdial.hmpgUrl - hxxp://start.mysearchdial.com/?f=1&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
FF - user.js: extensions.mysearchdial.dfltSrch - true
FF - user.js: extensions.mysearchdial.srchPrvdr - Mysearchdial
FF - user.js: extensions.mysearchdial.dnsErr - true
FF - user.js: extensions.mysearchdial_i.newTab - false
FF - user.js: extensions.mysearchdial.newTabUrl - hxxp://start.mysearchdial.com/?f=2&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=
FF - user.js: extensions.mysearchdial.tlbrSrchUrl - hxxp://start.mysearchdial.com/?f=3&a=dsites&cd=2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q&cr=1488403295&ir=&q=
FF - user.js: extensions.mysearchdial.id - 204E7FF1FD291001
FF - user.js: extensions.mysearchdial.instlDay - 16134
FF - user.js: extensions.mysearchdial.vrsn - 1.8.29.0
FF - user.js: extensions.mysearchdial.vrsni - 1.8.29.0
FF - user.js: extensions.mysearchdial_i.vrsnTs - 1.8.29.022:12:10
FF - user.js: extensions.mysearchdial.prtnrId - mysearchdial
FF - user.js: extensions.mysearchdial.prdct - mysearchdial
FF - user.js: extensions.mysearchdial.aflt - dsites
FF - user.js: extensions.mysearchdial_i.smplGrp - none
FF - user.js: extensions.mysearchdial.tlbrId - base
FF - user.js: extensions.mysearchdial.instlRef - 0211_b
FF - user.js: extensions.mysearchdial.dfltLng -
FF - user.js: extensions.mysearchdial.appId - {CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
FF - user.js: extensions.mysearchdial.excTlbr - false
FF - user.js: extensions.mysearchdial_i.hmpg - true
FF - user.js: extensions.mysearchdial.cr - 1488403295
FF - user.js: extensions.mysearchdial.cd - 2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q
FF - user.js: extensions.mysearchdial.AL - 2
FF - user.js: extensions.irmysearch.aflt - dsites
FF - user.js: extensions.irmysearch.instlRef - 0211_b
FF - user.js: extensions.irmysearch.cr - 1488403295
FF - user.js: extensions.irmysearch.cd - 2XzuyEtN2Y1L1QzutBtDyE0EyB0F0FtC0F0DtBzytCtDtDtCtN0D0Tzu0SyBzyyDtN1L2XzutBtFtCyBtFtDtFtCtN1L1CzutDtBtCtC1V1StN1L1G1B1V1N2Y1L1Qzu2SyByD0BtCzz0AyBtDtGyCyC0CtAtG0EyDtBtCtGtByE0FtBtGtB0DyE0D0F0AtB0E0CtC0F0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDyEyEtDzzzyzytG0DyDtByCtG0BtCzzyDtGtC0A0CyEtGtBtAzy0EyE0CyEyB0EyByDzz2Q
.
============= SERVICES / DRIVERS ===============
.
R0 SCMNdisP;General NDIS Protocol Driver;c:\windows\system32\drivers\SCMNdisP.sys [2012-8-7 21728]
R0 WRkrn;WRkrn;c:\windows\system32\drivers\WRkrn.sys [2011-12-6 116736]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2014-2-11 42784]
R2 Garmin Core Update Service;Garmin Core Update Service;c:\program files\garmin\core update service\Garmin.Cartography.MapUpdate.CoreService.exe [2013-11-8 250712]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\hewlett-packard\hp support framework\HPSA_Service.exe [2012-9-27 86528]
R2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files\common files\intuit\update service v4\IntuitUpdateService.exe [2011-8-25 13672]
R2 NvNetworkService;NVIDIA Network Service;c:\program files\nvidia corporation\netservice\NvNetworkService.exe [2013-12-19 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe [2013-11-25 14658848]
R2 PCPitstop Scheduling;PCPitstop Scheduling;c:\program files\pcpitstop\PCPitstopScheduleService.exe [2011-2-27 86216]
R2 ReimageRealTimeProtection;Reimage Real Time Protection;c:\program files\reimage\reimage repair\ReiGuard.exe [2014-1-15 4030824]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2014-3-6 411936]
R2 Symantec AntiVirus;Symantec AntiVirus;c:\program files\symantec antivirus\Rtvscan.exe [2006-11-28 1962136]
R2 vToolbarUpdater18.0.0;vToolbarUpdater18.0.0;c:\program files\common files\avg secure search\vtoolbarupdater\18.0.0\ToolbarUpdater.exe [2014-3-2 1759768]
R2 WRSVC;WRSVC;c:\program files\webroot\WRSA.exe [2011-12-6 763000]
R3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;c:\windows\system32\drivers\bcmwlhigh6.sys [2011-4-19 1092160]
R3 hcw18bda;Hauppauge WinTV 418 Driver;c:\windows\system32\drivers\hcw18bda.sys [2009-5-28 391296]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-12-19 34080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys [2014-2-12 43368]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;"c:\program files\google\google desktop search\googledesktop.exe" --> c:\program files\google\google desktop search\GoogleDesktop.exe [?]
S3 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe -k HsfXAudioService [2009-7-13 20992]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.141\McCHSvc.exe [2014-1-15 235696]
S3 SavRoam;SavRoam;c:\program files\symantec antivirus\SavRoam.exe [2006-11-28 122008]
S3 SCR131C;SCRx31 Serial Smart Card Reader;c:\windows\system32\drivers\SCR131C.sys [2002-11-7 181875]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [2004-4-6 64088]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-20 52224]
S3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-11-19 1343400]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]
S4 accoca;ActivClient Middleware Service;c:\program files\actividentity\activclient\accoca.exe [2007-5-3 182576]
S4 AutoSyncService;Memeo AutoSync ;c:\program files\memeo\autosync\MemeoService.exe [2007-7-6 31768]
S4 DQLWinService;DQLWinService;c:\program files\common files\intel\inteldh\nms\adpplugins\DQLWinService.exe [2006-9-3 208896]
S4 IHA_MessageCenter;IHA_MessageCenter;c:\program files\verizon\iha_messagecenter\bin\Verizon_IHAMessageCenter.exe [2010-10-13 98304]
S4 IntelDHSvcConf;Intel DH Service;c:\program files\intel\inteldh\intel media server\tools\IntelDHSvcConf.exe [2006-5-10 29696]
S4 MCLServiceATL;Intel(R) Application Tracker;c:\program files\intel\inteldh\intel media server\shells\MCLServiceATL.exe [2006-9-11 167936]
S4 SeagateDashboardService;Seagate Dashboard Service;c:\program files\seagate\seagate dashboard\SeagateDashboardService.exe [2011-6-1 14088]
S4 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S4 WSWNA3100;WSWNA3100;c:\program files\netgear\wna3100\WifiSvc.exe [2012-8-7 285152]
.
=============== Created Last 30 ================
.
2014-03-09 01:40:03 109744 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2014-03-09 01:36:00 -------- d-----w- c:\program files\Symantec
2014-03-09 01:35:44 -------- d-----w- c:\program files\Symantec AntiVirus
2014-03-08 02:00:42 -------- d-----w- c:\programdata\CDB
2014-03-08 01:59:34 -------- d-----w- c:\program files\Reimage
2014-03-08 01:59:24 -------- d-----w- C:\rei
2014-03-08 01:45:44 -------- d-----w- C:\HiJack This
2014-03-06 17:29:09 599840 ----a-w- c:\windows\system32\nvStreaming.exe
2014-03-06 17:24:57 0 ----a-w- c:\windows\system32\SETE25A.tmp
2014-03-06 17:22:49 9690424 ----a-w- c:\windows\system32\nvopencl.dll
2014-03-06 17:22:49 23683360 ----a-w- c:\windows\system32\nvoglv32.dll
2014-03-06 17:22:48 10180896 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2014-03-06 17:22:47 895264 ----a-w- c:\windows\system32\nvdispgenco3233489.dll
2014-03-06 17:22:47 863520 ----a-w- c:\windows\system32\NvIFR.dll
2014-03-06 17:22:47 844576 ----a-w- c:\windows\system32\NvFBC.dll
2014-03-06 17:22:46 1049888 ----a-w- c:\windows\system32\nvdispco3233489.dll
2014-03-06 17:22:45 2956576 ----a-w- c:\windows\system32\nvcuvid.dll
2014-03-06 17:22:44 9728064 ----a-w- c:\windows\system32\nvcuda.dll
2014-03-06 17:22:44 2410784 ----a-w- c:\windows\system32\nvcuvenc.dll
2014-03-06 17:22:42 2713728 ----a-w- c:\windows\system32\nvapi.dll
2014-03-06 17:22:42 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2014-03-06 03:18:32 -------- d-----w- c:\program files\Xirrus
2014-03-06 03:16:51 -------- d-----w- c:\users\user\appdata\local\Downloaded Installations
2014-03-06 03:12:19 -------- d-----w- c:\users\user\appdata\roaming\0D0S1L2Z1P1B
2014-03-06 03:12:11 -------- d-----w- c:\users\user\appdata\roaming\DigitalSites
2014-03-02 21:06:10 -------- d-----w- c:\programdata\AVG Secure Search
2014-03-02 06:36:07 -------- d-----w- c:\program files\iPod
2014-03-02 06:35:44 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin5.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin4.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin3.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin2.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2014-03-02 05:53:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2014-02-18 01:14:17 -------- d-----w- c:\program files\HRBlock2013
2014-02-17 01:11:44 -------- d-----w- c:\users\user\appdata\local\CrashDumps
2014-02-17 00:46:37 -------- d-----w- c:\program files\McAfee Security Scan
2014-02-13 04:06:56 -------- d-----w- c:\users\user\appdata\local\AVG SafeGuard toolbar
2014-02-13 03:35:28 43368 ----a-w- c:\windows\system32\drivers\gfiark.sys
2014-02-13 03:20:15 -------- d-----w- c:\programdata\UAB
2014-02-13 03:19:44 -------- d-----w- c:\users\user\appdata\local\PC_Drivers_Headquarters
2014-02-12 03:37:40 42784 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2014-02-12 03:31:08 -------- d-----w- c:\program files\common files\AVG Secure Search
2014-02-12 03:28:48 -------- d-----w- c:\programdata\AVG SafeGuard toolbar
2014-02-12 03:28:37 -------- d-----w- c:\program files\AVG SafeGuard toolbar
2014-02-12 03:25:24 -------- d--h--w- c:\programdata\Common Files
2014-02-11 01:35:15 -------- d-----w- c:\program files\iTunes
.
==================== Find3M ====================
.
2014-03-08 21:18:37 152744 ----a-w- c:\windows\system32\WRusr.dll
2014-03-08 21:18:37 116736 ----a-w- c:\windows\system32\drivers\WRkrn.sys
2014-03-04 02:30:03 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-04 02:30:03 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-02-08 18:27:20 15740232 ----a-w- c:\windows\system32\nvwgf2um.dll
2014-02-08 18:27:20 14669032 ----a-w- c:\windows\system32\nvd3dum.dll
2014-02-08 17:11:47 4348704 ----a-w- c:\windows\system32\nvcpl.dll
2014-02-08 17:11:47 3045664 ----a-w- c:\windows\system32\nvsvc.dll
2014-02-08 17:11:44 664864 ----a-w- c:\windows\system32\nvvsvc.exe
2014-02-08 17:11:44 62752 ----a-w- c:\windows\system32\nvshext.dll
2014-02-08 17:11:44 376096 ----a-w- c:\windows\system32\nvmctray.dll
2014-01-17 21:24:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2014-01-17 21:24:12 69632 ----a-w- c:\windows\system32\QuickTime.qts
2013-12-28 05:09:08 0 ----a-w- c:\windows\system32\SET17FD.tmp
2013-12-10 02:13:11 982232 ----a-w- c:\windows\system32\nvspcap.dll
.
============= FINISH: 11:20:05.28 ===============