Hi there. I'm running Windows 7 on a Samsung laptop. I have AVG Internet Security 2013 which is updated automatically. I don't have access to an install disc or boot CD.
This laptop has been running very slowly for some months and seems to be geting worse. I have carried out some of the actions suggested by your Sticky in the Computer Running Slow section, but not all as I don't understand some of them.
Anything you can do to help much appreciated.
The attche file is attached and here is the dds output:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.18098
Run by Rob at 16:53:28 on 2015-11-29
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.4010.1856 [GMT 0:00]
.
AV: AVG Internet Security 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: AVG update module *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG update module *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
SP: AVG Internet Security 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG update module *Disabled* {757AB44A-78C2-7D1A-E37F-CA42A037B368}
FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\System32\spoolsv.exe
C:\windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Program Files (x86)\3 Mobile Broadband\3Connect\BecHelperService.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\GWX\GWX.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Users\Rob\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Rob\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\KNOWHOW\KNOWHOWAPPCENTRE\bin\serviceManager.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
C:\Program Files\Common Files\Motive\pcCMService.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\igfxext.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\AVG\AVG2013\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
C:\windows\servicing\TrustedInstaller.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\windows\system32\taskhost.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.raintoday.co.uk/
uDefault_Page_URL = hxxp://samsung.msn.com
mWinlogon: Userinit = userinit.exe,
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
uRun: [SRSHDAudioLab] "C:\Program Files\SRS Labs\SRS Audio Essentials\AudioEssentials.exe" auto
uRun: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
uRun: [Spotify Web Helper] "C:\Users\Rob\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
uRun: [Rainlendar2] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
uRun: [AmazonMP3DownloaderHelper] C:\Users\Rob\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
mRun: [KNOWHOW(TM) APP CENTRE] "C:\Program Files (x86)\KNOWHOW\KNOWHOWAPPCENTRE\bin\serviceManager.lnk"
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
StartupFolder: C:\Users\Rob\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\BIRTHD~1.LNK - C:\Program Files (x86)\Birthday Reminder\bday.exe
StartupFolder: C:\Users\Rob\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{30D7C833-E5FA-4C80-A89C-D88799B00E4D} : DHCPNameServer = 10.0.0.1
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\244584F6D6563507F647D2053383 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\84F6C6964616970294E6E60254163747C6569676860275966496 : DHCPNameServer = 10.0.0.1
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\D416272796F64747F57457563747 : DHCPNameServer = 172.16.2.5 8.8.8.8
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\F5642756560235F4550214962707F62747 : DHCPNameServer = 10.32.11.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Logitech Download Assistant] C:\windows\System32\rundll32.exe C:\windows\System32\LogiLDA.dll,LogiFetch
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Rob\AppData\Roaming\Mozilla\Firefox\Profiles\cxji3rts.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.co.uk/
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Motive\npMotive.dll
FF - plugin: C:\Program Files (x86)\Common Files\Motive\npMotiveRequest.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrlui.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
FF - plugin: C:\Users\Rob\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll
FF - plugin: C:\Users\Rob\AppData\Roaming\Mozilla\Firefox\Profiles\cxji3rts.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}\plugins\npGarmin.dll
FF - plugin: C:\Users\Rob\AppData\Roaming\Mozilla\plugins\npatgpc.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\windows\System32\drivers\avgidsha.sys [2015-5-21 158160]
R0 Avgloga;AVG Logging Driver;C:\windows\System32\drivers\avgloga.sys [2015-5-21 360400]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\windows\System32\drivers\avgmfx64.sys [2015-7-3 204704]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\windows\System32\drivers\avgrkx64.sys [2013-10-23 45880]
R0 nvpciflt;nvpciflt;C:\windows\System32\drivers\nvpciflt.sys [2011-10-11 25960]
R1 Avgfwfd;AVG network filter service;C:\windows\System32\drivers\avgfwd6a.sys [2011-5-23 73688]
R1 AVGIDSDriver;AVGIDSDriver;C:\windows\System32\drivers\avgidsdrivera.sys [2013-11-25 246072]
R1 Avgldx64;AVG AVI Loader Driver;C:\windows\System32\drivers\avgldx64.sys [2014-11-4 209720]
R1 Avgtdia;AVG TDI Driver;C:\windows\System32\drivers\avgtdia.sys [2015-5-26 249296]
R1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\windows\System32\drivers\SABI.sys [2011-10-11 13824]
R2 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-4-21 1136640]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-1-19 77128]
R2 avgfws;AVG Firewall;C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2015-10-5 1442344]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2015-10-5 4948456]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
R2 BecHelperService;BecHelperService;C:\Program Files (x86)\3 Mobile Broadband\3Connect\BecHelperService.exe [2011-11-30 1740696]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-3-30 923984]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-3-30 1001808]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-4-21 134928]
R2 DiagTrack;Diagnostics Tracking Service;C:\windows\System32\svchost.exe -k utcsvc [2011-10-11 27648]
R2 pcCMService;pcCMService;C:\Program Files (x86)\Common Files\Motive\pcCMService.exe [2014-1-30 375608]
R2 pcCMService64;pcCMService64;C:\Program Files\Common Files\Motive\pcCMService.exe [2014-1-30 467256]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-29 38608]
R2 RosettaStoneDaemon;RosettaStoneDaemon;C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe [2011-3-31 1646056]
R2 SGDrv;SGDrv;C:\windows\System32\drivers\SGDrv64.sys [2011-10-11 7680]
R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-12-5 92632]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-10-11 2656536]
R3 AMPPAL;Intel(R) Centrino(R) Bluetooth 3.0 + High Speed Virtual Adapter;C:\windows\System32\drivers\AmpPal.sys [2011-4-21 294912]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE [2014-3-11 247968]
R3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-3-30 1321296]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\drivers\btmaux.sys [2011-3-8 51712]
R3 btmhsf;btmhsf;C:\windows\System32\drivers\btmhsf.sys [2011-3-8 274944]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\System32\drivers\clwvd.sys [2011-8-17 31216]
R3 ETD;ELAN PS/2 Port Input Device;C:\windows\System32\drivers\ETD.sys [2011-10-11 186152]
R3 huawei_enumerator;huawei_enumerator;C:\windows\System32\drivers\ew_jubusenum.sys [2011-11-30 86016]
R3 iBtFltCoex;iBtFltCoex;C:\windows\System32\drivers\iBtFltCoex.sys [2011-3-22 59904]
R3 IntcDAud;Intel(R) Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2011-7-21 317440]
R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2015-1-17 25816]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2011-10-11 471144]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE [2014-3-11 193696]
S2 BT Help Wizard;BT Help Wizard;C:\Program Files (x86)\BT Broadband Desktop Help\btbb\MA\8.4.0.53.bt.0.5\ma\bin\MAHostService.exe [2014-1-21 321024]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-4-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-4-11 124088]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-1-17 1133880]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AMPPALP;Intel(R) Centrino(R) Bluetooth 3.0 + High Speed Protocol;C:\windows\System32\drivers\AmpPal.sys [2011-4-21 294912]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\windows\System32\drivers\ew_hwusbdev.sys [2011-11-30 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter;C:\windows\System32\drivers\ew_usbenumfilter.sys [2011-11-30 13952]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\windows\System32\drivers\ewusbwwan.sys [2011-11-30 421376]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2015-11-24 114688]
S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\windows\System32\drivers\mwac.sys [2015-1-17 63704]
S3 SRS_AE_Service;SRS Audio Essentials;C:\windows\System32\drivers\SRS_AE_amd64.sys [2011-8-1 513824]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2014-8-15 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2011-11-29 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2015-11-24 20:58:59 5570496 ----a-w- C:\windows\System32\ntoskrnl.exe
2015-11-24 20:53:56 3168768 ----a-w- C:\windows\System32\wucltux.dll
2015-11-24 20:37:04 497664 ----a-w- C:\windows\System32\drivers\afd.sys
2015-11-24 20:37:04 118272 ----a-w- C:\windows\System32\drivers\tdx.sys
2015-11-24 20:37:01 72192 ----a-w- C:\windows\System32\aelupsvc.dll
2015-11-24 20:37:01 342016 ----a-w- C:\windows\System32\apphelp.dll
2015-11-24 20:37:01 295936 ----a-w- C:\windows\SysWow64\apphelp.dll
2015-11-24 20:37:00 6656 ----a-w- C:\windows\System32\shimeng.dll
2015-11-24 20:37:00 5120 ----a-w- C:\windows\SysWow64\shimeng.dll
2015-11-24 20:37:00 23552 ----a-w- C:\windows\System32\sdbinst.exe
2015-11-24 20:37:00 20992 ----a-w- C:\windows\SysWow64\sdbinst.exe
2015-11-24 20:15:42 3211264 ----a-w- C:\windows\System32\win32k.sys
2015-11-24 20:15:17 950720 ----a-w- C:\windows\System32\drivers\ndis.sys
.
==================== Find3M ====================
.
2015-11-16 09:15:12 780488 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2015-11-16 09:15:12 142536 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-10-30 23:40:49 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2015-10-30 23:40:38 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2015-10-30 23:25:55 66560 ----a-w- C:\windows\System32\iesetup.dll
2015-10-30 23:25:15 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2015-10-30 23:25:08 417792 ----a-w- C:\windows\System32\html.iec
2015-10-30 23:24:50 585728 ----a-w- C:\windows\System32\vbscript.dll
2015-10-30 23:24:34 88064 ----a-w- C:\windows\System32\MshtmlDac.dll
2015-10-30 23:12:09 144384 ----a-w- C:\windows\System32\ieUnatt.exe
2015-10-30 23:12:09 114688 ----a-w- C:\windows\System32\ieetwcollector.exe
2015-10-30 23:11:58 814080 ----a-w- C:\windows\System32\jscript9diag.dll
2015-10-30 23:11:46 5990912 ----a-w- C:\windows\System32\jscript9.dll
2015-10-30 23:04:48 968704 ----a-w- C:\windows\System32\MsSpellCheckingFacility.exe
2015-10-30 22:58:29 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2015-10-30 22:53:49 77824 ----a-w- C:\windows\System32\JavaScriptCollectionAgent.dll
2015-10-30 22:47:08 504832 ----a-w- C:\windows\SysWow64\vbscript.dll
2015-10-30 22:46:27 62464 ----a-w- C:\windows\SysWow64\iesetup.dll
2015-10-30 22:45:51 47616 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2015-10-30 22:45:42 341504 ----a-w- C:\windows\SysWow64\html.iec
2015-10-30 22:44:57 64000 ----a-w- C:\windows\SysWow64\MshtmlDac.dll
2015-10-30 22:36:25 115712 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2015-10-30 22:36:06 620032 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2015-10-30 22:29:57 1359360 ----a-w- C:\windows\System32\mshtmlmedia.dll
2015-10-30 22:29:52 2126336 ----a-w- C:\windows\System32\inetcpl.cpl
2015-10-30 22:23:51 60416 ----a-w- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-10-30 22:17:06 2487808 ----a-w- C:\windows\System32\wininet.dll
2015-10-30 22:16:43 4527616 ----a-w- C:\windows\SysWow64\jscript9.dll
2015-10-30 22:09:23 1155072 ----a-w- C:\windows\SysWow64\mshtmlmedia.dll
2015-10-30 22:09:15 2052608 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2015-10-30 21:51:28 2011136 ----a-w- C:\windows\SysWow64\wininet.dll
2015-10-29 17:50:29 350208 ----a-w- C:\windows\apppatch\AppPatch64\AcLayers.dll
2015-10-29 17:50:29 309248 ----a-w- C:\windows\apppatch\AppPatch64\AcGenral.dll
2015-10-29 17:50:29 135168 ----a-w- C:\windows\apppatch\AppPatch64\AcXtrnal.dll
2015-10-29 17:50:29 103424 ----a-w- C:\windows\apppatch\AppPatch64\acspecfc.dll
2015-10-29 17:49:57 562176 ----a-w- C:\windows\apppatch\AcLayers.dll
2015-10-29 17:49:57 470528 ----a-w- C:\windows\apppatch\AcSpecfc.dll
2015-10-29 17:49:57 2178560 ----a-w- C:\windows\apppatch\AcGenral.dll
2015-10-29 17:49:57 211968 ----a-w- C:\windows\apppatch\AcXtrnal.dll
2015-10-29 17:39:57 2560 ----a-w- C:\windows\apppatch\AcRes.dll
2015-10-20 18:42:14 98816 ----a-w- C:\windows\System32\wudriver.dll
2015-10-20 18:42:14 192512 ----a-w- C:\windows\System32\wuwebv.dll
2015-10-20 18:41:36 91136 ----a-w- C:\windows\System32\WinSetupUI.dll
2015-10-20 18:41:25 12288 ----a-w- C:\windows\System32\wu.upgrade.ps.dll
2015-10-20 18:41:22 37888 ----a-w- C:\windows\System32\wuapp.exe
2015-10-20 17:46:02 93696 ----a-w- C:\windows\SysWow64\wudriver.dll
2015-10-20 17:46:02 174080 ----a-w- C:\windows\SysWow64\wuwebv.dll
2015-10-20 17:45:08 35328 ----a-w- C:\windows\SysWow64\wuapp.exe
2015-10-20 01:12:10 95680 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2015-10-20 01:12:10 154560 ----a-w- C:\windows\System32\drivers\ksecpkg.sys
2015-10-20 01:09:05 1730496 ----a-w- C:\windows\System32\ntdll.dll
2015-10-20 01:06:18 362496 ----a-w- C:\windows\System32\wow64win.dll
2015-10-20 01:06:18 243712 ----a-w- C:\windows\System32\wow64.dll
2015-10-20 01:06:18 215040 ----a-w- C:\windows\System32\winsrv.dll
2015-10-20 01:06:18 13312 ----a-w- C:\windows\System32\wow64cpu.dll
2015-10-20 01:04:53 31232 ----a-w- C:\windows\System32\lsass.exe
2015-10-20 01:04:40 338432 ----a-w- C:\windows\System32\conhost.exe
2015-10-20 01:04:35 64000 ----a-w- C:\windows\System32\auditpol.exe
2015-10-20 01:00:20 60416 ----a-w- C:\windows\System32\msobjs.dll
2015-10-20 00:59:20 146432 ----a-w- C:\windows\System32\msaudite.dll
2015-10-20 00:52:02 3991488 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe
2015-10-20 00:52:02 3935680 ----a-w- C:\windows\SysWow64\ntoskrnl.exe
2015-10-20 00:48:46 1311768 ----a-w- C:\windows\SysWow64\ntdll.dll
2015-10-20 00:44:35 50176 ----a-w- C:\windows\SysWow64\auditpol.exe
2015-10-20 00:44:19 5120 ----a-w- C:\windows\SysWow64\wow32.dll
2015-10-20 00:44:18 96768 ----a-w- C:\windows\SysWow64\sspicli.dll
2015-10-20 00:44:18 665088 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2015-10-20 00:44:18 274944 ----a-w- C:\windows\SysWow64\KernelBase.dll
2015-10-20 00:39:32 60416 ----a-w- C:\windows\SysWow64\msobjs.dll
2015-10-20 00:39:11 146432 ----a-w- C:\windows\SysWow64\msaudite.dll
2015-10-19 23:41:20 159232 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
2015-10-19 23:40:43 290816 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
2015-10-19 23:40:39 129024 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
2015-10-19 23:29:36 7680 ----a-w- C:\windows\SysWow64\instnm.exe
2015-10-19 23:29:34 2048 ----a-w- C:\windows\SysWow64\user.exe
2015-10-19 23:27:10 6144 ---ha-w- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2015-10-19 23:27:10 4608 ---ha-w- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-19 23:27:10 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2015-10-19 23:27:10 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2015-10-13 01:29:08 875720 ----a-w- C:\windows\SysWow64\msvcr120_clr0400.dll
2015-10-13 01:22:02 869568 ----a-w- C:\windows\System32\msvcr120_clr0400.dll
2015-10-01 18:06:49 692672 ----a-w- C:\windows\System32\winload.efi
2015-10-01 18:04:11 616360 ----a-w- C:\windows\System32\winresume.efi
2015-10-01 18:00:59 63488 ----a-w- C:\windows\System32\setbcdlocale.dll
2015-10-01 18:00:51 24576 ----a-w- C:\windows\System32\jnwmon.dll
2015-10-01 18:00:50 275456 ----a-w- C:\windows\System32\InkEd.dll
2015-10-01 18:00:43 59392 ----a-w- C:\windows\System32\appidapi.dll
2015-10-01 18:00:43 32768 ----a-w- C:\windows\System32\appidsvc.dll
2015-10-01 18:00:06 17920 ----a-w- C:\windows\System32\appidcertstorecheck.exe
2015-10-01 18:00:06 147456 ----a-w- C:\windows\System32\appidpolicyconverter.exe
2015-10-01 17:50:43 216064 ----a-w- C:\windows\SysWow64\InkEd.dll
2015-10-01 17:50:35 50688 ----a-w- C:\windows\SysWow64\appidapi.dll
2015-10-01 17:00:54 61440 ----a-w- C:\windows\System32\drivers\appid.sys
2015-09-23 13:15:25 460776 ----a-w- C:\windows\System32\drivers\cng.sys
2015-09-23 13:15:24 299632 ----a-w- C:\windows\System32\bcryptprimitives.dll
2015-09-23 13:09:57 251000 ----a-w- C:\windows\SysWow64\bcryptprimitives.dll
2015-09-18 19:22:39 25432 ----a-w- C:\windows\System32\CompatTelRunner.exe
2015-09-18 19:19:26 700416 ----a-w- C:\windows\System32\invagent.dll
2015-09-18 19:19:23 766464 ----a-w- C:\windows\System32\generaltel.dll
2015-09-18 19:19:20 503808 ----a-w- C:\windows\System32\devinv.dll
.
============= FINISH: 16:55:23.31 ===============
This laptop has been running very slowly for some months and seems to be geting worse. I have carried out some of the actions suggested by your Sticky in the Computer Running Slow section, but not all as I don't understand some of them.
Anything you can do to help much appreciated.
The attche file is attached and here is the dds output:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.18098
Run by Rob at 16:53:28 on 2015-11-29
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.4010.1856 [GMT 0:00]
.
AV: AVG Internet Security 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: AVG update module *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG update module *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
SP: AVG Internet Security 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG update module *Disabled* {757AB44A-78C2-7D1A-E37F-CA42A037B368}
FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\System32\spoolsv.exe
C:\windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Program Files (x86)\3 Mobile Broadband\3Connect\BecHelperService.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\GWX\GWX.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Users\Rob\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Rob\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\KNOWHOW\KNOWHOWAPPCENTRE\bin\serviceManager.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
C:\Program Files\Common Files\Motive\pcCMService.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\igfxext.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\AVG\AVG2013\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
C:\windows\servicing\TrustedInstaller.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\windows\system32\taskhost.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.raintoday.co.uk/
uDefault_Page_URL = hxxp://samsung.msn.com
mWinlogon: Userinit = userinit.exe,
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
uRun: [SRSHDAudioLab] "C:\Program Files\SRS Labs\SRS Audio Essentials\AudioEssentials.exe" auto
uRun: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
uRun: [Spotify Web Helper] "C:\Users\Rob\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
uRun: [Rainlendar2] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
uRun: [AmazonMP3DownloaderHelper] C:\Users\Rob\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
mRun: [KNOWHOW(TM) APP CENTRE] "C:\Program Files (x86)\KNOWHOW\KNOWHOWAPPCENTRE\bin\serviceManager.lnk"
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
StartupFolder: C:\Users\Rob\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\BIRTHD~1.LNK - C:\Program Files (x86)\Birthday Reminder\bday.exe
StartupFolder: C:\Users\Rob\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{30D7C833-E5FA-4C80-A89C-D88799B00E4D} : DHCPNameServer = 10.0.0.1
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\244584F6D6563507F647D2053383 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\84F6C6964616970294E6E60254163747C6569676860275966496 : DHCPNameServer = 10.0.0.1
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\D416272796F64747F57457563747 : DHCPNameServer = 172.16.2.5 8.8.8.8
TCP: Interfaces\{7BD26433-5FE5-4C93-A217-8307E48E672A}\F5642756560235F4550214962707F62747 : DHCPNameServer = 10.32.11.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Logitech Download Assistant] C:\windows\System32\rundll32.exe C:\windows\System32\LogiLDA.dll,LogiFetch
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Rob\AppData\Roaming\Mozilla\Firefox\Profiles\cxji3rts.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.co.uk/
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Motive\npMotive.dll
FF - plugin: C:\Program Files (x86)\Common Files\Motive\npMotiveRequest.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrlui.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
FF - plugin: C:\Users\Rob\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll
FF - plugin: C:\Users\Rob\AppData\Roaming\Mozilla\Firefox\Profiles\cxji3rts.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}\plugins\npGarmin.dll
FF - plugin: C:\Users\Rob\AppData\Roaming\Mozilla\plugins\npatgpc.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\windows\System32\drivers\avgidsha.sys [2015-5-21 158160]
R0 Avgloga;AVG Logging Driver;C:\windows\System32\drivers\avgloga.sys [2015-5-21 360400]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\windows\System32\drivers\avgmfx64.sys [2015-7-3 204704]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\windows\System32\drivers\avgrkx64.sys [2013-10-23 45880]
R0 nvpciflt;nvpciflt;C:\windows\System32\drivers\nvpciflt.sys [2011-10-11 25960]
R1 Avgfwfd;AVG network filter service;C:\windows\System32\drivers\avgfwd6a.sys [2011-5-23 73688]
R1 AVGIDSDriver;AVGIDSDriver;C:\windows\System32\drivers\avgidsdrivera.sys [2013-11-25 246072]
R1 Avgldx64;AVG AVI Loader Driver;C:\windows\System32\drivers\avgldx64.sys [2014-11-4 209720]
R1 Avgtdia;AVG TDI Driver;C:\windows\System32\drivers\avgtdia.sys [2015-5-26 249296]
R1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\windows\System32\drivers\SABI.sys [2011-10-11 13824]
R2 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-4-21 1136640]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-1-19 77128]
R2 avgfws;AVG Firewall;C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2015-10-5 1442344]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2015-10-5 4948456]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
R2 BecHelperService;BecHelperService;C:\Program Files (x86)\3 Mobile Broadband\3Connect\BecHelperService.exe [2011-11-30 1740696]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-3-30 923984]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-3-30 1001808]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-4-21 134928]
R2 DiagTrack;Diagnostics Tracking Service;C:\windows\System32\svchost.exe -k utcsvc [2011-10-11 27648]
R2 pcCMService;pcCMService;C:\Program Files (x86)\Common Files\Motive\pcCMService.exe [2014-1-30 375608]
R2 pcCMService64;pcCMService64;C:\Program Files\Common Files\Motive\pcCMService.exe [2014-1-30 467256]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-29 38608]
R2 RosettaStoneDaemon;RosettaStoneDaemon;C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe [2011-3-31 1646056]
R2 SGDrv;SGDrv;C:\windows\System32\drivers\SGDrv64.sys [2011-10-11 7680]
R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-12-5 92632]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-10-11 2656536]
R3 AMPPAL;Intel(R) Centrino(R) Bluetooth 3.0 + High Speed Virtual Adapter;C:\windows\System32\drivers\AmpPal.sys [2011-4-21 294912]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE [2014-3-11 247968]
R3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-3-30 1321296]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\drivers\btmaux.sys [2011-3-8 51712]
R3 btmhsf;btmhsf;C:\windows\System32\drivers\btmhsf.sys [2011-3-8 274944]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\System32\drivers\clwvd.sys [2011-8-17 31216]
R3 ETD;ELAN PS/2 Port Input Device;C:\windows\System32\drivers\ETD.sys [2011-10-11 186152]
R3 huawei_enumerator;huawei_enumerator;C:\windows\System32\drivers\ew_jubusenum.sys [2011-11-30 86016]
R3 iBtFltCoex;iBtFltCoex;C:\windows\System32\drivers\iBtFltCoex.sys [2011-3-22 59904]
R3 IntcDAud;Intel(R) Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2011-7-21 317440]
R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2015-1-17 25816]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2011-10-11 471144]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE [2014-3-11 193696]
S2 BT Help Wizard;BT Help Wizard;C:\Program Files (x86)\BT Broadband Desktop Help\btbb\MA\8.4.0.53.bt.0.5\ma\bin\MAHostService.exe [2014-1-21 321024]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-4-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-4-11 124088]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-1-17 1133880]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AMPPALP;Intel(R) Centrino(R) Bluetooth 3.0 + High Speed Protocol;C:\windows\System32\drivers\AmpPal.sys [2011-4-21 294912]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\windows\System32\drivers\ew_hwusbdev.sys [2011-11-30 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter;C:\windows\System32\drivers\ew_usbenumfilter.sys [2011-11-30 13952]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\windows\System32\drivers\ewusbwwan.sys [2011-11-30 421376]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2015-11-24 114688]
S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\windows\System32\drivers\mwac.sys [2015-1-17 63704]
S3 SRS_AE_Service;SRS Audio Essentials;C:\windows\System32\drivers\SRS_AE_amd64.sys [2011-8-1 513824]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2014-8-15 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2011-11-29 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2015-11-24 20:58:59 5570496 ----a-w- C:\windows\System32\ntoskrnl.exe
2015-11-24 20:53:56 3168768 ----a-w- C:\windows\System32\wucltux.dll
2015-11-24 20:37:04 497664 ----a-w- C:\windows\System32\drivers\afd.sys
2015-11-24 20:37:04 118272 ----a-w- C:\windows\System32\drivers\tdx.sys
2015-11-24 20:37:01 72192 ----a-w- C:\windows\System32\aelupsvc.dll
2015-11-24 20:37:01 342016 ----a-w- C:\windows\System32\apphelp.dll
2015-11-24 20:37:01 295936 ----a-w- C:\windows\SysWow64\apphelp.dll
2015-11-24 20:37:00 6656 ----a-w- C:\windows\System32\shimeng.dll
2015-11-24 20:37:00 5120 ----a-w- C:\windows\SysWow64\shimeng.dll
2015-11-24 20:37:00 23552 ----a-w- C:\windows\System32\sdbinst.exe
2015-11-24 20:37:00 20992 ----a-w- C:\windows\SysWow64\sdbinst.exe
2015-11-24 20:15:42 3211264 ----a-w- C:\windows\System32\win32k.sys
2015-11-24 20:15:17 950720 ----a-w- C:\windows\System32\drivers\ndis.sys
.
==================== Find3M ====================
.
2015-11-16 09:15:12 780488 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2015-11-16 09:15:12 142536 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-10-30 23:40:49 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2015-10-30 23:40:38 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2015-10-30 23:25:55 66560 ----a-w- C:\windows\System32\iesetup.dll
2015-10-30 23:25:15 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2015-10-30 23:25:08 417792 ----a-w- C:\windows\System32\html.iec
2015-10-30 23:24:50 585728 ----a-w- C:\windows\System32\vbscript.dll
2015-10-30 23:24:34 88064 ----a-w- C:\windows\System32\MshtmlDac.dll
2015-10-30 23:12:09 144384 ----a-w- C:\windows\System32\ieUnatt.exe
2015-10-30 23:12:09 114688 ----a-w- C:\windows\System32\ieetwcollector.exe
2015-10-30 23:11:58 814080 ----a-w- C:\windows\System32\jscript9diag.dll
2015-10-30 23:11:46 5990912 ----a-w- C:\windows\System32\jscript9.dll
2015-10-30 23:04:48 968704 ----a-w- C:\windows\System32\MsSpellCheckingFacility.exe
2015-10-30 22:58:29 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2015-10-30 22:53:49 77824 ----a-w- C:\windows\System32\JavaScriptCollectionAgent.dll
2015-10-30 22:47:08 504832 ----a-w- C:\windows\SysWow64\vbscript.dll
2015-10-30 22:46:27 62464 ----a-w- C:\windows\SysWow64\iesetup.dll
2015-10-30 22:45:51 47616 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2015-10-30 22:45:42 341504 ----a-w- C:\windows\SysWow64\html.iec
2015-10-30 22:44:57 64000 ----a-w- C:\windows\SysWow64\MshtmlDac.dll
2015-10-30 22:36:25 115712 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2015-10-30 22:36:06 620032 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2015-10-30 22:29:57 1359360 ----a-w- C:\windows\System32\mshtmlmedia.dll
2015-10-30 22:29:52 2126336 ----a-w- C:\windows\System32\inetcpl.cpl
2015-10-30 22:23:51 60416 ----a-w- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-10-30 22:17:06 2487808 ----a-w- C:\windows\System32\wininet.dll
2015-10-30 22:16:43 4527616 ----a-w- C:\windows\SysWow64\jscript9.dll
2015-10-30 22:09:23 1155072 ----a-w- C:\windows\SysWow64\mshtmlmedia.dll
2015-10-30 22:09:15 2052608 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2015-10-30 21:51:28 2011136 ----a-w- C:\windows\SysWow64\wininet.dll
2015-10-29 17:50:29 350208 ----a-w- C:\windows\apppatch\AppPatch64\AcLayers.dll
2015-10-29 17:50:29 309248 ----a-w- C:\windows\apppatch\AppPatch64\AcGenral.dll
2015-10-29 17:50:29 135168 ----a-w- C:\windows\apppatch\AppPatch64\AcXtrnal.dll
2015-10-29 17:50:29 103424 ----a-w- C:\windows\apppatch\AppPatch64\acspecfc.dll
2015-10-29 17:49:57 562176 ----a-w- C:\windows\apppatch\AcLayers.dll
2015-10-29 17:49:57 470528 ----a-w- C:\windows\apppatch\AcSpecfc.dll
2015-10-29 17:49:57 2178560 ----a-w- C:\windows\apppatch\AcGenral.dll
2015-10-29 17:49:57 211968 ----a-w- C:\windows\apppatch\AcXtrnal.dll
2015-10-29 17:39:57 2560 ----a-w- C:\windows\apppatch\AcRes.dll
2015-10-20 18:42:14 98816 ----a-w- C:\windows\System32\wudriver.dll
2015-10-20 18:42:14 192512 ----a-w- C:\windows\System32\wuwebv.dll
2015-10-20 18:41:36 91136 ----a-w- C:\windows\System32\WinSetupUI.dll
2015-10-20 18:41:25 12288 ----a-w- C:\windows\System32\wu.upgrade.ps.dll
2015-10-20 18:41:22 37888 ----a-w- C:\windows\System32\wuapp.exe
2015-10-20 17:46:02 93696 ----a-w- C:\windows\SysWow64\wudriver.dll
2015-10-20 17:46:02 174080 ----a-w- C:\windows\SysWow64\wuwebv.dll
2015-10-20 17:45:08 35328 ----a-w- C:\windows\SysWow64\wuapp.exe
2015-10-20 01:12:10 95680 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2015-10-20 01:12:10 154560 ----a-w- C:\windows\System32\drivers\ksecpkg.sys
2015-10-20 01:09:05 1730496 ----a-w- C:\windows\System32\ntdll.dll
2015-10-20 01:06:18 362496 ----a-w- C:\windows\System32\wow64win.dll
2015-10-20 01:06:18 243712 ----a-w- C:\windows\System32\wow64.dll
2015-10-20 01:06:18 215040 ----a-w- C:\windows\System32\winsrv.dll
2015-10-20 01:06:18 13312 ----a-w- C:\windows\System32\wow64cpu.dll
2015-10-20 01:04:53 31232 ----a-w- C:\windows\System32\lsass.exe
2015-10-20 01:04:40 338432 ----a-w- C:\windows\System32\conhost.exe
2015-10-20 01:04:35 64000 ----a-w- C:\windows\System32\auditpol.exe
2015-10-20 01:00:20 60416 ----a-w- C:\windows\System32\msobjs.dll
2015-10-20 00:59:20 146432 ----a-w- C:\windows\System32\msaudite.dll
2015-10-20 00:52:02 3991488 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe
2015-10-20 00:52:02 3935680 ----a-w- C:\windows\SysWow64\ntoskrnl.exe
2015-10-20 00:48:46 1311768 ----a-w- C:\windows\SysWow64\ntdll.dll
2015-10-20 00:44:35 50176 ----a-w- C:\windows\SysWow64\auditpol.exe
2015-10-20 00:44:19 5120 ----a-w- C:\windows\SysWow64\wow32.dll
2015-10-20 00:44:18 96768 ----a-w- C:\windows\SysWow64\sspicli.dll
2015-10-20 00:44:18 665088 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2015-10-20 00:44:18 274944 ----a-w- C:\windows\SysWow64\KernelBase.dll
2015-10-20 00:39:32 60416 ----a-w- C:\windows\SysWow64\msobjs.dll
2015-10-20 00:39:11 146432 ----a-w- C:\windows\SysWow64\msaudite.dll
2015-10-19 23:41:20 159232 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
2015-10-19 23:40:43 290816 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
2015-10-19 23:40:39 129024 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
2015-10-19 23:29:36 7680 ----a-w- C:\windows\SysWow64\instnm.exe
2015-10-19 23:29:34 2048 ----a-w- C:\windows\SysWow64\user.exe
2015-10-19 23:27:10 6144 ---ha-w- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2015-10-19 23:27:10 4608 ---ha-w- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-19 23:27:10 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2015-10-19 23:27:10 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2015-10-13 01:29:08 875720 ----a-w- C:\windows\SysWow64\msvcr120_clr0400.dll
2015-10-13 01:22:02 869568 ----a-w- C:\windows\System32\msvcr120_clr0400.dll
2015-10-01 18:06:49 692672 ----a-w- C:\windows\System32\winload.efi
2015-10-01 18:04:11 616360 ----a-w- C:\windows\System32\winresume.efi
2015-10-01 18:00:59 63488 ----a-w- C:\windows\System32\setbcdlocale.dll
2015-10-01 18:00:51 24576 ----a-w- C:\windows\System32\jnwmon.dll
2015-10-01 18:00:50 275456 ----a-w- C:\windows\System32\InkEd.dll
2015-10-01 18:00:43 59392 ----a-w- C:\windows\System32\appidapi.dll
2015-10-01 18:00:43 32768 ----a-w- C:\windows\System32\appidsvc.dll
2015-10-01 18:00:06 17920 ----a-w- C:\windows\System32\appidcertstorecheck.exe
2015-10-01 18:00:06 147456 ----a-w- C:\windows\System32\appidpolicyconverter.exe
2015-10-01 17:50:43 216064 ----a-w- C:\windows\SysWow64\InkEd.dll
2015-10-01 17:50:35 50688 ----a-w- C:\windows\SysWow64\appidapi.dll
2015-10-01 17:00:54 61440 ----a-w- C:\windows\System32\drivers\appid.sys
2015-09-23 13:15:25 460776 ----a-w- C:\windows\System32\drivers\cng.sys
2015-09-23 13:15:24 299632 ----a-w- C:\windows\System32\bcryptprimitives.dll
2015-09-23 13:09:57 251000 ----a-w- C:\windows\SysWow64\bcryptprimitives.dll
2015-09-18 19:22:39 25432 ----a-w- C:\windows\System32\CompatTelRunner.exe
2015-09-18 19:19:26 700416 ----a-w- C:\windows\System32\invagent.dll
2015-09-18 19:19:23 766464 ----a-w- C:\windows\System32\generaltel.dll
2015-09-18 19:19:20 503808 ----a-w- C:\windows\System32\devinv.dll
.
============= FINISH: 16:55:23.31 ===============