At first, whenever I opened a browser (Internet Explorer or Google Chrome) I got the never seen before search engine with the URL searching.com. I removed Chrome using the uninstall feature in Control Panel. When I saw it made no difference, I downloaded and installed Chrome again. Now when I open Chrome I get search.yahoo.com and when I open IE I still get searching.com.
I made an Avast rescue disk and ran it. It didn't find anythiing. I changed the default browser setting to Chrome and changed the home page to newyorktimes.com. These settings remain undisturbed but the problem didn't go away. There are no suspicious listings in the uninstall page in Control Panel.
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7601.17514
Run by mugerdich at 7:38:49 on 2016-01-03
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3543.2186 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\Program Files\Fitbit Connect\FitbitConnectService.exe
C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
C:\Program Files\REALTEK\USB Wireless LAN Utility\RtlService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\REALTEK\USB Wireless LAN Utility\RtWlan.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Fitbit Connect\Fitbit Connect.exe
C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\LogonUI.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggbdw9dUVgQQBgWeAoOTA1JRw0OIgkKVRQURwASeQoNUg5BEFcFIk0FA1ADB0VXfVBdFElXTwhwJVhKAlElTlpoLlZP
mStart Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggbdw9dUVgQQBgWeAoOTA1JRw0OIgkKVRQURwASeQoNUg5BEFcFIk0FA1ADB0VXfVBdFElXTwhwJVhKAlElTlpoLlZP
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [Fitbit Connect] "c:\program files\fitbit connect\Fitbit Connect.exe" /autorun
uRun: [CCleaner Monitoring] "c:\program files\ccleaner\CCleaner.exe" /MONITOR
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mRun: [Fitbit Connect] "c:\program files\fitbit connect\Fitbit Connect.exe" /autorun
mRun: [ProductUpdater] c:\program files\common files\freemake shared\productupdater\ProductUpdater.exe
dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{7B932D55-383F-4B7E-80B2-8E818BE25179} : DHCPNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{FE0CB924-6E89-4368-93A0-20DBC4E88523} : DHCPNameServer = 75.75.75.75 75.75.76.76
SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\drivers\aswNdisFlt.sys [2015-12-30 283584]
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2015-12-30 49776]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2015-12-30 209432]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2015-12-30 26096]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2015-12-30 794952]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2015-12-30 436360]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2015-12-30 24016]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2015-12-30 81168]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2015-12-30 117712]
R2 avast! Antivirus;Avast Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2015-12-30 226440]
R2 avast! Firewall;Avast Firewall;c:\program files\avast software\avast\afwServ.exe [2015-12-30 109520]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 Fitbit Connect;Fitbit Connect Service;c:\program files\fitbit connect\FitbitConnectService.exe [2015-10-28 5906088]
R2 Freemake Improver;Freemake Improver;c:\programdata\freemake\freemakeutilsservice\FreemakeUtilsService.exe [2016-1-2 108032]
R2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files\freemake\capturelib\CaptureLibService.exe [2016-1-2 9216]
R2 RealtekCU;RealtekCU;c:\program files\realtek\usb wireless lan utility\RtlService.exe [2015-12-30 36864]
R3 AX88772B;ASIX AX88772B USB2.0 to Fast Ethernet Adapter;c:\windows\system32\drivers\ax88772b.sys [2015-5-27 105480]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\drivers\e1k6032.sys [2009-7-13 164864]
R3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTWlanU.sys [2015-12-30 1345168]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2016-1-2 52224]
.
=============== File Associations ===============
.
ShellExec: AvastSZB.exe: open="c:\program files\avast software\szbrowser\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2016-01-03 03:12:01 -------- d-----w- c:\windows\system32\SPReview
2016-01-03 03:11:41 -------- d-----w- c:\windows\system32\EventProviders
2016-01-02 23:36:06 1130824 ----a-w- c:\windows\system32\dfshim.dll
2016-01-02 23:36:04 52224 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2016-01-02 23:36:04 11776 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-01-02 23:36:03 3215872 ----a-w- c:\windows\system32\mstscax.dll
2016-01-02 23:36:01 954752 ----a-w- c:\windows\system32\mfc40.dll
2016-01-02 23:36:01 954288 ----a-w- c:\windows\system32\mfc40u.dll
2016-01-02 23:36:01 1171456 ----a-w- c:\windows\system32\d3d10warp.dll
2016-01-02 23:36:00 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2016-01-02 23:36:00 739840 ----a-w- c:\windows\system32\d2d1.dll
2016-01-02 23:36:00 423936 ----a-w- c:\windows\system32\secproc_isv.dll
2016-01-02 23:36:00 1159168 ----a-w- c:\windows\system32\sysmain.dll
2016-01-02 23:34:52 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2016-01-02 23:34:52 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2016-01-02 18:40:48 -------- d-----w- c:\program files\WinPcap
2016-01-02 18:40:04 -------- d-----w- c:\programdata\Freemake
2016-01-02 18:40:04 -------- d-----w- c:\program files\common files\Freemake Shared
2016-01-02 18:40:03 -------- d-----w- c:\program files\Search Too Know
2016-01-02 18:39:55 -------- d-----w- c:\users\mugerdich\appdata\roaming\RPEng
2016-01-02 18:39:55 -------- d-----w- c:\program files\Freemake
2016-01-02 14:33:39 -------- d-----w- c:\program files\Windows Kits
2016-01-02 12:42:17 -------- d-----w- c:\users\mugerdich\appdata\local\Programs
2016-01-02 12:09:21 -------- d-----w- c:\program files\CCleaner
2016-01-02 02:35:40 -------- d-s---w- c:\windows\system32\CompatTel
2016-01-02 02:35:40 -------- d-----w- c:\windows\system32\appraiser
2016-01-02 02:35:40 -------- d-----w- c:\windows\Migration
2016-01-01 23:18:12 9014120 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2016-01-01 23:18:09 9014120 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{978dd716-44f7-4306-88c1-74112259ab73}\mpengine.dll
2016-01-01 23:11:48 -------- d-----w- c:\windows\system32\MRT
2016-01-01 23:10:26 62976 ----a-w- c:\windows\system32\acmigration.dll
2016-01-01 23:10:26 615936 ----a-w- c:\windows\system32\generaltel.dll
2016-01-01 23:10:26 587776 ----a-w- c:\windows\system32\invagent.dll
2016-01-01 23:10:26 423936 ----a-w- c:\windows\system32\devinv.dll
2016-01-01 23:10:26 23384 ----a-w- c:\windows\system32\CompatTelRunner.exe
2016-01-01 23:10:26 1167520 ----a-w- c:\windows\system32\aitstatic.exe
2016-01-01 23:10:26 1120768 ----a-w- c:\windows\system32\appraiser.dll
2016-01-01 23:10:20 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2016-01-01 23:10:20 123904 ----a-w- c:\windows\system32\poqexec.exe
2016-01-01 23:10:19 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-01-01 23:10:18 542208 ----a-w- c:\windows\system32\kerberos.dll
2016-01-01 23:07:25 2422272 ----a-w- c:\windows\system32\wucltux.dll
2016-01-01 23:07:20 88576 ----a-w- c:\windows\system32\wudriver.dll
2016-01-01 23:07:15 33792 ----a-w- c:\windows\system32\wuapp.exe
2016-01-01 23:07:15 171904 ----a-w- c:\windows\system32\wuwebv.dll
2015-12-31 01:43:53 -------- d-----w- c:\programdata\boost_interprocess
2015-12-31 01:43:52 -------- d-----w- c:\programdata\FitbitConnect
2015-12-31 01:43:52 -------- d-----w- c:\program files\Fitbit Connect
2015-12-30 23:10:13 -------- d-----w- c:\users\mugerdich\appdata\roaming\enchant
2015-12-30 23:06:06 -------- d-----w- c:\users\mugerdich\AbiSuite
2015-12-30 23:05:16 -------- d-----w- c:\program files\AbiWord
2015-12-30 15:09:48 -------- d-----w- c:\program files\AVAST Software
2015-12-30 15:08:54 -------- d-----w- c:\programdata\AVAST Software
2015-12-30 15:02:53 -------- d-----w- c:\program files\Cisco
2015-12-30 15:02:23 -------- d-sh--w- c:\windows\Installer
2015-12-30 15:02:04 1345168 ----a-w- c:\windows\system32\drivers\RTWlanU.sys
2015-12-30 15:02:03 535040 ----a-w- c:\windows\system32\Rtlihvs.dll
2015-12-30 15:02:03 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
2015-12-30 15:02:03 405504 ----a-w- c:\windows\SwUSB.exe
2015-12-30 15:02:03 380928 ----a-w- c:\windows\RtlUI2.exe
2015-12-30 15:02:03 36864 ----a-w- c:\windows\runSW.exe
2015-12-30 15:02:03 12981 ----a-w- c:\windows\system32\REALPKT.VXD
2015-12-30 15:02:03 100000 ----a-w- c:\windows\system32\EAPPkt9x.VXD
2015-12-30 15:01:50 -------- d-----w- c:\program files\REALTEK
2015-12-30 12:22:38 247976 ------w- c:\windows\system32\MpSigStub.exe
2015-12-30 12:17:35 -------- d-----w- c:\users\mugerdich\appdata\local\Google
2015-12-30 12:17:28 26096 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2015-12-30 12:13:27 -------- d-----w- c:\users\mugerdich\appdata\roaming\AVAST Software
2015-12-30 12:12:39 -------- d-----w- c:\program files\common files\AV
2015-12-30 12:12:31 209432 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-12-30 12:12:31 117712 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-12-30 12:12:30 81728 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-12-30 12:12:30 81168 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-12-30 12:12:30 49776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-12-30 12:12:30 24016 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-12-30 12:12:29 794952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-12-30 12:12:20 43112 ----a-w- c:\windows\avastSS.scr
2015-12-30 12:12:18 283584 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2015-12-30 05:22:05 -------- d-----w- c:\windows\system32\wbem\Performance
2015-12-30 05:12:12 -------- d-----w- c:\windows\Panther
.
==================== Find3M ====================
.
2016-01-03 03:15:51 152576 ----a-w- c:\windows\system32\msclmd.dll
.
============= FINISH: 7:39:22.46 ===============
I made an Avast rescue disk and ran it. It didn't find anythiing. I changed the default browser setting to Chrome and changed the home page to newyorktimes.com. These settings remain undisturbed but the problem didn't go away. There are no suspicious listings in the uninstall page in Control Panel.
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7601.17514
Run by mugerdich at 7:38:49 on 2016-01-03
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3543.2186 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\Program Files\Fitbit Connect\FitbitConnectService.exe
C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
C:\Program Files\REALTEK\USB Wireless LAN Utility\RtlService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\REALTEK\USB Wireless LAN Utility\RtWlan.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Fitbit Connect\Fitbit Connect.exe
C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\LogonUI.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggbdw9dUVgQQBgWeAoOTA1JRw0OIgkKVRQURwASeQoNUg5BEFcFIk0FA1ADB0VXfVBdFElXTwhwJVhKAlElTlpoLlZP
mStart Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggbdw9dUVgQQBgWeAoOTA1JRw0OIgkKVRQURwASeQoNUg5BEFcFIk0FA1ADB0VXfVBdFElXTwhwJVhKAlElTlpoLlZP
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [Fitbit Connect] "c:\program files\fitbit connect\Fitbit Connect.exe" /autorun
uRun: [CCleaner Monitoring] "c:\program files\ccleaner\CCleaner.exe" /MONITOR
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mRun: [Fitbit Connect] "c:\program files\fitbit connect\Fitbit Connect.exe" /autorun
mRun: [ProductUpdater] c:\program files\common files\freemake shared\productupdater\ProductUpdater.exe
dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{7B932D55-383F-4B7E-80B2-8E818BE25179} : DHCPNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{FE0CB924-6E89-4368-93A0-20DBC4E88523} : DHCPNameServer = 75.75.75.75 75.75.76.76
SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\drivers\aswNdisFlt.sys [2015-12-30 283584]
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2015-12-30 49776]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2015-12-30 209432]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2015-12-30 26096]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2015-12-30 794952]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2015-12-30 436360]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2015-12-30 24016]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2015-12-30 81168]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2015-12-30 117712]
R2 avast! Antivirus;Avast Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2015-12-30 226440]
R2 avast! Firewall;Avast Firewall;c:\program files\avast software\avast\afwServ.exe [2015-12-30 109520]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 Fitbit Connect;Fitbit Connect Service;c:\program files\fitbit connect\FitbitConnectService.exe [2015-10-28 5906088]
R2 Freemake Improver;Freemake Improver;c:\programdata\freemake\freemakeutilsservice\FreemakeUtilsService.exe [2016-1-2 108032]
R2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files\freemake\capturelib\CaptureLibService.exe [2016-1-2 9216]
R2 RealtekCU;RealtekCU;c:\program files\realtek\usb wireless lan utility\RtlService.exe [2015-12-30 36864]
R3 AX88772B;ASIX AX88772B USB2.0 to Fast Ethernet Adapter;c:\windows\system32\drivers\ax88772b.sys [2015-5-27 105480]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\drivers\e1k6032.sys [2009-7-13 164864]
R3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTWlanU.sys [2015-12-30 1345168]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2016-1-2 52224]
.
=============== File Associations ===============
.
ShellExec: AvastSZB.exe: open="c:\program files\avast software\szbrowser\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2016-01-03 03:12:01 -------- d-----w- c:\windows\system32\SPReview
2016-01-03 03:11:41 -------- d-----w- c:\windows\system32\EventProviders
2016-01-02 23:36:06 1130824 ----a-w- c:\windows\system32\dfshim.dll
2016-01-02 23:36:04 52224 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2016-01-02 23:36:04 11776 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-01-02 23:36:03 3215872 ----a-w- c:\windows\system32\mstscax.dll
2016-01-02 23:36:01 954752 ----a-w- c:\windows\system32\mfc40.dll
2016-01-02 23:36:01 954288 ----a-w- c:\windows\system32\mfc40u.dll
2016-01-02 23:36:01 1171456 ----a-w- c:\windows\system32\d3d10warp.dll
2016-01-02 23:36:00 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2016-01-02 23:36:00 739840 ----a-w- c:\windows\system32\d2d1.dll
2016-01-02 23:36:00 423936 ----a-w- c:\windows\system32\secproc_isv.dll
2016-01-02 23:36:00 1159168 ----a-w- c:\windows\system32\sysmain.dll
2016-01-02 23:34:52 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2016-01-02 23:34:52 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2016-01-02 18:40:48 -------- d-----w- c:\program files\WinPcap
2016-01-02 18:40:04 -------- d-----w- c:\programdata\Freemake
2016-01-02 18:40:04 -------- d-----w- c:\program files\common files\Freemake Shared
2016-01-02 18:40:03 -------- d-----w- c:\program files\Search Too Know
2016-01-02 18:39:55 -------- d-----w- c:\users\mugerdich\appdata\roaming\RPEng
2016-01-02 18:39:55 -------- d-----w- c:\program files\Freemake
2016-01-02 14:33:39 -------- d-----w- c:\program files\Windows Kits
2016-01-02 12:42:17 -------- d-----w- c:\users\mugerdich\appdata\local\Programs
2016-01-02 12:09:21 -------- d-----w- c:\program files\CCleaner
2016-01-02 02:35:40 -------- d-s---w- c:\windows\system32\CompatTel
2016-01-02 02:35:40 -------- d-----w- c:\windows\system32\appraiser
2016-01-02 02:35:40 -------- d-----w- c:\windows\Migration
2016-01-01 23:18:12 9014120 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2016-01-01 23:18:09 9014120 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{978dd716-44f7-4306-88c1-74112259ab73}\mpengine.dll
2016-01-01 23:11:48 -------- d-----w- c:\windows\system32\MRT
2016-01-01 23:10:26 62976 ----a-w- c:\windows\system32\acmigration.dll
2016-01-01 23:10:26 615936 ----a-w- c:\windows\system32\generaltel.dll
2016-01-01 23:10:26 587776 ----a-w- c:\windows\system32\invagent.dll
2016-01-01 23:10:26 423936 ----a-w- c:\windows\system32\devinv.dll
2016-01-01 23:10:26 23384 ----a-w- c:\windows\system32\CompatTelRunner.exe
2016-01-01 23:10:26 1167520 ----a-w- c:\windows\system32\aitstatic.exe
2016-01-01 23:10:26 1120768 ----a-w- c:\windows\system32\appraiser.dll
2016-01-01 23:10:20 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2016-01-01 23:10:20 123904 ----a-w- c:\windows\system32\poqexec.exe
2016-01-01 23:10:19 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-01-01 23:10:18 542208 ----a-w- c:\windows\system32\kerberos.dll
2016-01-01 23:07:25 2422272 ----a-w- c:\windows\system32\wucltux.dll
2016-01-01 23:07:20 88576 ----a-w- c:\windows\system32\wudriver.dll
2016-01-01 23:07:15 33792 ----a-w- c:\windows\system32\wuapp.exe
2016-01-01 23:07:15 171904 ----a-w- c:\windows\system32\wuwebv.dll
2015-12-31 01:43:53 -------- d-----w- c:\programdata\boost_interprocess
2015-12-31 01:43:52 -------- d-----w- c:\programdata\FitbitConnect
2015-12-31 01:43:52 -------- d-----w- c:\program files\Fitbit Connect
2015-12-30 23:10:13 -------- d-----w- c:\users\mugerdich\appdata\roaming\enchant
2015-12-30 23:06:06 -------- d-----w- c:\users\mugerdich\AbiSuite
2015-12-30 23:05:16 -------- d-----w- c:\program files\AbiWord
2015-12-30 15:09:48 -------- d-----w- c:\program files\AVAST Software
2015-12-30 15:08:54 -------- d-----w- c:\programdata\AVAST Software
2015-12-30 15:02:53 -------- d-----w- c:\program files\Cisco
2015-12-30 15:02:23 -------- d-sh--w- c:\windows\Installer
2015-12-30 15:02:04 1345168 ----a-w- c:\windows\system32\drivers\RTWlanU.sys
2015-12-30 15:02:03 535040 ----a-w- c:\windows\system32\Rtlihvs.dll
2015-12-30 15:02:03 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
2015-12-30 15:02:03 405504 ----a-w- c:\windows\SwUSB.exe
2015-12-30 15:02:03 380928 ----a-w- c:\windows\RtlUI2.exe
2015-12-30 15:02:03 36864 ----a-w- c:\windows\runSW.exe
2015-12-30 15:02:03 12981 ----a-w- c:\windows\system32\REALPKT.VXD
2015-12-30 15:02:03 100000 ----a-w- c:\windows\system32\EAPPkt9x.VXD
2015-12-30 15:01:50 -------- d-----w- c:\program files\REALTEK
2015-12-30 12:22:38 247976 ------w- c:\windows\system32\MpSigStub.exe
2015-12-30 12:17:35 -------- d-----w- c:\users\mugerdich\appdata\local\Google
2015-12-30 12:17:28 26096 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2015-12-30 12:13:27 -------- d-----w- c:\users\mugerdich\appdata\roaming\AVAST Software
2015-12-30 12:12:39 -------- d-----w- c:\program files\common files\AV
2015-12-30 12:12:31 209432 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-12-30 12:12:31 117712 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-12-30 12:12:30 81728 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-12-30 12:12:30 81168 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-12-30 12:12:30 49776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-12-30 12:12:30 24016 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-12-30 12:12:29 794952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-12-30 12:12:20 43112 ----a-w- c:\windows\avastSS.scr
2015-12-30 12:12:18 283584 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2015-12-30 05:22:05 -------- d-----w- c:\windows\system32\wbem\Performance
2015-12-30 05:12:12 -------- d-----w- c:\windows\Panther
.
==================== Find3M ====================
.
2016-01-03 03:15:51 152576 ----a-w- c:\windows\system32\msclmd.dll
.
============= FINISH: 7:39:22.46 ===============