Hi, I hope ive followed your instructions correctly.
Issues are:
Not being able to uninstall bing, safe search and Mixi dj search. Im not sure how this rubbish creeps on to my computer. Im pretty careful with what i download for this reason. I downloaded skype last night, then spent an 3 hours uninstalling the crap that came with it. ie games, searches, pro optimizer etc. Im not sure if this is something im doing? I would be nice to know the general health of my laptop too.
I ran AVG scan, malware bytes, super anti spyware and cc cleaner before sending you the information you asked for. SAS found lots of threats (about 200) which have now been removed, but the rest were clear.
Thank again for your help. You do a great job x:smile:x
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16490
Run by user at 12:57:25 on 2013-06-13
Microsoft® Windows Vista Home Premium 6.0.6002.2.1252.44.1033.18.2038.1099 [GMT 1:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ================
.
C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
C:\Program Files\AVG\AVG2013\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\AVG\AVG2013\avgidsagent.exe
C:\Program Files\AVG\AVG2013\avgwdsvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\AVG\AVG2013\avgnsx.exe
C:\Program Files\AVG\AVG2013\avgemcx.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\LibreOffice 3.6\program\soffice.exe
C:\Program Files\LibreOffice 3.6\program\soffice.bin
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uWindow Title = Windows Internet Explorer provided by Verizon Yahoo!
uDefault_Page_URL = hxxp://www.safesearch.net/?utm_medium=ie&utm_campaign=31&utm_source=sm&utm_content=1&utm_term=5D97DDDC5F734671
mStart Page = hxxp://start.mysearchdial.com/?f=1&a=tugumsd&cd=2XzuyEtN2Y1L1QzutDtDtCtA0EzzyCtAyD0E0F0FtAyCyB0AtN0D0Tzu0CyDtBzztN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu2Z2Y1N2Y1H1B1Q&cr=1099260174&ir=
mDefault_Page_URL = hxxp://www.safesearch.net/?utm_medium=ie&utm_campaign=31&utm_source=sm&utm_content=1&utm_term=5D97DDDC5F734671
uURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - LocalServer32 - <no file>
TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
StartupFolder: c:\users\user\appdata\roaming\micros~1\windows\startm~1\programs\startup\libreo~1.lnk - c:\program files\libreoffice 3.6\program\quickstart.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{1AB02746-5B85-4DCF-9028-846F5597E9FF} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{A905D6E4-287F-4C1B-BA2C-66FB2C9E868E} : DHCPNameServer = 192.168.0.254
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2013-2-8 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-2-8 245048]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2013-2-8 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2013-2-8 39224]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2013-3-29 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2013-3-1 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2013-2-8 170808]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2013-3-21 182072]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2013-5-23 119056]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-5-14 4937264]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-4-18 283136]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2012-3-8 21504]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2012-2-6 6000640]
R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2012-2-6 51288]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\drivers\ManyCam.sys [2008-1-14 21632]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2013-06-13 10:45:17 -------- d-----w- c:\users\user\appdata\roaming\SUPERAntiSpyware.com
2013-06-13 10:45:06 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2013-06-13 10:45:06 -------- d-----w- c:\program files\SUPERAntiSpyware
2013-06-12 20:44:23 -------- d-----w- c:\users\user\appdata\roaming\Dealply
2013-06-12 20:42:52 -------- d-----w- c:\users\user\appdata\roaming\Fighters
2013-06-12 20:42:37 -------- d-----w- c:\programdata\Fighters
2013-06-12 20:39:42 -------- d-----w- c:\program files\MyPC Backup
2013-06-12 20:36:53 -------- d-----w- c:\programdata\BrowserDefender
2013-06-12 18:19:11 103680 ----a-w- C:\pwldqpoc.sys
2013-06-12 17:27:09 914792 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-06-12 17:27:09 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-06-12 17:27:03 443904 ----a-w- c:\windows\system32\win32spl.dll
2013-06-12 17:27:03 37376 ----a-w- c:\windows\system32\printcom.dll
2013-06-12 17:26:53 985600 ----a-w- c:\windows\system32\crypt32.dll
2013-06-12 17:26:53 812544 ----a-w- c:\windows\system32\certutil.exe
2013-06-12 17:26:52 98304 ----a-w- c:\windows\system32\cryptnet.dll
2013-06-12 17:26:52 41984 ----a-w- c:\windows\system32\certenc.dll
2013-06-12 17:26:52 133120 ----a-w- c:\windows\system32\cryptsvc.dll
2013-06-12 17:26:43 3603832 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-06-12 17:26:42 3551096 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-06-12 17:26:33 24576 ----a-w- c:\windows\system32\cryptdlg.dll
2013-06-11 11:44:15 -------- d-----w- c:\users\user\appdata\roaming\mysearchdial
2013-06-10 16:09:41 -------- d-----w- c:\program files\Uninstaller
2013-06-10 14:13:28 221568 ----a-w- c:\windows\system32\drivers\netio.sys
2013-06-10 13:20:22 -------- d-----w- c:\program files\MapsGalaxy_39EI
2013-06-10 12:30:45 -------- d-----w- c:\programdata\TuneUp Software
2013-06-04 10:47:51 -------- d-----w- c:\users\user\appdata\roaming\WindSolutions
2013-06-04 10:47:51 -------- d-----w- c:\programdata\WindSolutions
2013-05-16 11:40:27 638328 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-05-16 11:40:27 37376 ----a-w- c:\windows\system32\cdd.dll
2013-05-16 11:40:24 2049024 ----a-w- c:\windows\system32\win32k.sys
.
==================== Find3M ====================
.
2013-06-12 17:38:27 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-12 17:38:26 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-05-16 22:39:39 1800704 ----a-w- c:\windows\system32\jscript9.dll
2013-05-16 22:28:26 1129472 ----a-w- c:\windows\system32\wininet.dll
2013-05-16 22:27:30 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2013-05-16 22:21:37 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2013-05-16 22:20:30 420864 ----a-w- c:\windows\system32\vbscript.dll
2013-05-16 22:16:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-05-02 15:28:50 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-04-04 13:50:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-29 01:53:48 208184 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys
2013-03-21 02:08:24 182072 ----a-w- c:\windows\system32\drivers\avgtdix.sys
.
============= FINISH: 12:57:49.57 ===============
Issues are:
Not being able to uninstall bing, safe search and Mixi dj search. Im not sure how this rubbish creeps on to my computer. Im pretty careful with what i download for this reason. I downloaded skype last night, then spent an 3 hours uninstalling the crap that came with it. ie games, searches, pro optimizer etc. Im not sure if this is something im doing? I would be nice to know the general health of my laptop too.
I ran AVG scan, malware bytes, super anti spyware and cc cleaner before sending you the information you asked for. SAS found lots of threats (about 200) which have now been removed, but the rest were clear.
Thank again for your help. You do a great job x:smile:x
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16490
Run by user at 12:57:25 on 2013-06-13
Microsoft® Windows Vista Home Premium 6.0.6002.2.1252.44.1033.18.2038.1099 [GMT 1:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ================
.
C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
C:\Program Files\AVG\AVG2013\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\AVG\AVG2013\avgidsagent.exe
C:\Program Files\AVG\AVG2013\avgwdsvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\AVG\AVG2013\avgnsx.exe
C:\Program Files\AVG\AVG2013\avgemcx.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\LibreOffice 3.6\program\soffice.exe
C:\Program Files\LibreOffice 3.6\program\soffice.bin
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uWindow Title = Windows Internet Explorer provided by Verizon Yahoo!
uDefault_Page_URL = hxxp://www.safesearch.net/?utm_medium=ie&utm_campaign=31&utm_source=sm&utm_content=1&utm_term=5D97DDDC5F734671
mStart Page = hxxp://start.mysearchdial.com/?f=1&a=tugumsd&cd=2XzuyEtN2Y1L1QzutDtDtCtA0EzzyCtAyD0E0F0FtAyCyB0AtN0D0Tzu0CyDtBzztN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu2Z2Y1N2Y1H1B1Q&cr=1099260174&ir=
mDefault_Page_URL = hxxp://www.safesearch.net/?utm_medium=ie&utm_campaign=31&utm_source=sm&utm_content=1&utm_term=5D97DDDC5F734671
uURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - LocalServer32 - <no file>
TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
StartupFolder: c:\users\user\appdata\roaming\micros~1\windows\startm~1\programs\startup\libreo~1.lnk - c:\program files\libreoffice 3.6\program\quickstart.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{1AB02746-5B85-4DCF-9028-846F5597E9FF} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{A905D6E4-287F-4C1B-BA2C-66FB2C9E868E} : DHCPNameServer = 192.168.0.254
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2013-2-8 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-2-8 245048]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2013-2-8 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2013-2-8 39224]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2013-3-29 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2013-3-1 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2013-2-8 170808]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2013-3-21 182072]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2013-5-23 119056]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-5-14 4937264]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-4-18 283136]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2012-3-8 21504]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2012-2-6 6000640]
R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2012-2-6 51288]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\drivers\ManyCam.sys [2008-1-14 21632]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2013-06-13 10:45:17 -------- d-----w- c:\users\user\appdata\roaming\SUPERAntiSpyware.com
2013-06-13 10:45:06 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2013-06-13 10:45:06 -------- d-----w- c:\program files\SUPERAntiSpyware
2013-06-12 20:44:23 -------- d-----w- c:\users\user\appdata\roaming\Dealply
2013-06-12 20:42:52 -------- d-----w- c:\users\user\appdata\roaming\Fighters
2013-06-12 20:42:37 -------- d-----w- c:\programdata\Fighters
2013-06-12 20:39:42 -------- d-----w- c:\program files\MyPC Backup
2013-06-12 20:36:53 -------- d-----w- c:\programdata\BrowserDefender
2013-06-12 18:19:11 103680 ----a-w- C:\pwldqpoc.sys
2013-06-12 17:27:09 914792 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-06-12 17:27:09 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-06-12 17:27:03 443904 ----a-w- c:\windows\system32\win32spl.dll
2013-06-12 17:27:03 37376 ----a-w- c:\windows\system32\printcom.dll
2013-06-12 17:26:53 985600 ----a-w- c:\windows\system32\crypt32.dll
2013-06-12 17:26:53 812544 ----a-w- c:\windows\system32\certutil.exe
2013-06-12 17:26:52 98304 ----a-w- c:\windows\system32\cryptnet.dll
2013-06-12 17:26:52 41984 ----a-w- c:\windows\system32\certenc.dll
2013-06-12 17:26:52 133120 ----a-w- c:\windows\system32\cryptsvc.dll
2013-06-12 17:26:43 3603832 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-06-12 17:26:42 3551096 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-06-12 17:26:33 24576 ----a-w- c:\windows\system32\cryptdlg.dll
2013-06-11 11:44:15 -------- d-----w- c:\users\user\appdata\roaming\mysearchdial
2013-06-10 16:09:41 -------- d-----w- c:\program files\Uninstaller
2013-06-10 14:13:28 221568 ----a-w- c:\windows\system32\drivers\netio.sys
2013-06-10 13:20:22 -------- d-----w- c:\program files\MapsGalaxy_39EI
2013-06-10 12:30:45 -------- d-----w- c:\programdata\TuneUp Software
2013-06-04 10:47:51 -------- d-----w- c:\users\user\appdata\roaming\WindSolutions
2013-06-04 10:47:51 -------- d-----w- c:\programdata\WindSolutions
2013-05-16 11:40:27 638328 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-05-16 11:40:27 37376 ----a-w- c:\windows\system32\cdd.dll
2013-05-16 11:40:24 2049024 ----a-w- c:\windows\system32\win32k.sys
.
==================== Find3M ====================
.
2013-06-12 17:38:27 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-12 17:38:26 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-05-16 22:39:39 1800704 ----a-w- c:\windows\system32\jscript9.dll
2013-05-16 22:28:26 1129472 ----a-w- c:\windows\system32\wininet.dll
2013-05-16 22:27:30 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2013-05-16 22:21:37 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2013-05-16 22:20:30 420864 ----a-w- c:\windows\system32\vbscript.dll
2013-05-16 22:16:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-05-02 15:28:50 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-04-04 13:50:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-29 01:53:48 208184 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys
2013-03-21 02:08:24 182072 ----a-w- c:\windows\system32\drivers\avgtdix.sys
.
============= FINISH: 12:57:49.57 ===============