Due to some issues at the moment, I am seeking some assistance. HDD keeps filling to capacity for unknown reason. All internet related things are exceptionally sluggish as well.
Checklist
DDS.txt - copy/pasted directly into Reply box
Attach.zip (contains Attach.txt and ARK.txt) - attached to post
Rootkits that alter critical/legit Windows files are becoming more commonplace. To facilitate a more rapid cleaning of your system, also tell us whether or not you have/have access to a Windows Install disc, or a Boot CD
DDS.txt
======================================================
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2
Run by User at 16:15:03 on 2013-08-06
Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.16156.13398 [GMT -4:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\Hpservice.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k apphost
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\valWBFPolicyService.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\HP SimplePass\TouchControl.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Common Files\AuthenTec\TrueService.exe
C:\Program Files\Common Files\AuthenTec\TrueService.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ips\ipsbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll
mRun: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
mRun: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ISCTSY~1.LNK - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 66.189.0.100 24.159.64.23 24.247.24.53
TCP: Interfaces\{9D3D428A-6D84-43EE-BCBA-722045DB75E0} : DHCPNameServer = 66.189.0.100 24.159.64.23 24.247.24.53
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\aenerypa.default\
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-07-19 19:11; {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
FF - ExtSQL: 2013-07-19 19:11; {BBDA0591-3099-440a-AA10-41764D9DB4DB}; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
FF - ExtSQL: 2013-08-03 00:57; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\aenerypa.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2013-4-5 653808]
R0 nvpciflt;nvpciflt;C:\Windows\System32\Drivers\nvpciflt.sys [2013-7-10 30496]
R1 CLVirtualDrive;CLVirtualDrive;C:\Windows\System32\Drivers\CLVirtualDrive.sys [2013-7-10 92536]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-11-6 1120192]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-11-6 1140672]
R2 BrcmSetSecurity;BrcmSetSecurity;C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [2013-4-16 101536]
R2 FPLService;TrueSuiteService;C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [2013-2-7 1641768]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]
R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2013-3-1 43320]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2013-2-1 1039160]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-4-10 15344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-7-10 129848]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent;C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-2-13 180200]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-7-10 167736]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe [2013-7-21 144368]
R2 valWBFPolicyService;Validity WBF Policy Service;C:\Windows\System32\valWBFPolicyService.exe [2013-3-19 28160]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-2-8 3386608]
R3 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [2013-7-15 1393240]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\Drivers\btmaux.sys [2012-10-30 131968]
R3 btmhsf;btmhsf;C:\Windows\System32\Drivers\btmhsf.sys [2012-11-6 1345920]
R3 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\System32\Drivers\NISx64\1404000.028\ccsetx64.sys [2013-7-21 169048]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-7-24 138912]
R3 ibtfltcoex;ibtfltcoex;C:\Windows\System32\Drivers\iBtFltCoex.sys [2012-8-6 68136]
R3 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130804.001\IDSviA64.sys [2013-8-5 513184]
R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\Drivers\ikbevent.sys [2013-2-13 21048]
R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\Drivers\imsevent.sys [2013-2-13 21048]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;C:\Windows\System32\Drivers\ISCTD64.sys [2013-2-13 46568]
R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\Drivers\iwdbus.sys [2013-4-16 25568]
R3 NETwNe64;@oem11.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\Windows\System32\Drivers\NETwew00.sys [2013-2-21 3311072]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-7-10 760032]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\Drivers\Smb_driver_Intel.sys [2013-4-24 33008]
R3 SymDS;Symantec Data Store;C:\Windows\System32\Drivers\NISx64\1404000.028\symds64.sys [2013-7-21 493656]
R3 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\Drivers\NISx64\1404000.028\symefa64.sys [2013-7-21 1139800]
R3 SymIRON;Symantec Iron Driver;C:\Windows\System32\Drivers\NISx64\1404000.028\ironx64.sys [2013-7-21 224416]
R3 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\Drivers\NISx64\1404000.028\symnets.sys [2013-7-21 433752]
R3 TrueService;TrueAPI Service component;C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-1-8 401856]
R3 usb3Hub;UoIP Hub;C:\Windows\System32\Drivers\usb3Hub.sys [2013-4-16 207768]
R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\Windows\System32\Drivers\WirelessButtonDriver64.sys [2012-8-31 20800]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\Drivers\WPRO_41_2001.sys [2013-7-10 34752]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
S0 SymELAM;Symantec ELAM Driver;C:\Windows\System32\Drivers\NISx64\1404000.028\symelam.sys [2013-7-21 23448]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2013/07/10 07:00:45;C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [2013-1-28 241264]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-7-25 162672]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\Drivers\intelaud.sys [2013-4-16 35296]
S3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2013-3-20 442368]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-2-8 273136]
S3 RTSPER;Realtek PCIE Card Reader - PER;C:\Windows\System32\Drivers\RtsPer.sys [2013-7-10 450632]
S3 SmbDrv;SmbDrv;C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [2013-4-24 29424]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2013-08-06 18:37:20 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp
2013-08-06 18:29:30 -------- d-sh--w- C:\AI_RecycleBin
2013-08-03 16:10:57 -------- d-----w- C:\ProgramData\Acunetix WVS 8
2013-08-02 04:33:52 -------- d-----w- C:\Program Files (x86)\HMA! Pro VPN
2013-08-02 04:15:13 216064 ----a-w- C:\Windows\SysWow64\gcapi_dll.dll
2013-08-02 04:15:07 -------- d-----w- C:\Users\User\AppData\Roaming\Foxit Software
2013-08-02 04:15:06 -------- d-----w- C:\Program Files (x86)\Foxit Software
2013-08-02 04:00:45 -------- d-----r- C:\Program Files (x86)\Skype
2013-08-02 03:23:25 -------- d-----w- C:\Users\User\AppData\Local\Eclipse
2013-08-02 03:23:18 -------- d-----w- C:\Users\User\workspace
2013-08-02 03:11:34 972712 ----a-w- C:\Windows\System32\deployJava1.dll
2013-08-02 03:11:34 1093032 ----a-w- C:\Windows\System32\npDeployJava1.dll
2013-08-02 03:11:30 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2013-08-01 19:06:32 -------- d-----w- C:\Users\User\AppData\Roaming\LolClient
2013-08-01 13:54:09 467984 ----a-w- C:\Windows\SysWow64\d3dx10_39.dll
2013-08-01 13:54:09 1493528 ----a-w- C:\Windows\SysWow64\D3DCompiler_39.dll
2013-08-01 13:54:08 3851784 ----a-w- C:\Windows\SysWow64\D3DX9_39.dll
2013-08-01 13:54:04 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin
2013-08-01 13:54:00 -------- d-----w- C:\Riot Games
2013-08-01 13:52:35 -------- d-----w- C:\Users\User\AppData\Local\PMB Files
2013-08-01 13:52:33 -------- d-----w- C:\ProgramData\PMB Files
2013-08-01 13:52:31 -------- d-----w- C:\Program Files (x86)\Pando Networks
2013-08-01 13:52:00 -------- d-----w- C:\Users\User\AppData\Roaming\Riot Games
2013-07-29 19:14:50 367104 ----a-w- C:\Windows\System32\CNC410L.dll
2013-07-29 19:14:50 315392 ----a-w- C:\Windows\SysWow64\CNC410L.dll
2013-07-29 19:14:50 17920 ----a-w- C:\Windows\System32\CNHMCA6.dll
2013-07-29 19:14:50 15872 ----a-w- C:\Windows\SysWow64\CNHMCA.dll
2013-07-29 19:14:50 1368064 ----a-w- C:\Windows\System32\CNC410C.dll
2013-07-29 19:14:50 112128 ----a-w- C:\Windows\System32\CNC410I.dll
2013-07-29 19:14:50 106496 ----a-w- C:\Windows\SysWow64\CNC410U.dll
2013-07-29 19:14:36 -------- d--h--w- C:\ProgramData\CanonIJFAX
2013-07-29 19:14:34 302080 ----a-w- C:\Windows\System32\CNCALAL.DLL
2013-07-29 19:13:58 88576 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPPAL.DLL
2013-07-29 19:13:58 29696 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPDAL.DLL
2013-07-29 19:13:50 374784 ----a-w- C:\Windows\System32\CNMLMAL.DLL
2013-07-28 13:42:03 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-07-28 13:41:47 -------- d-----w- C:\Users\User\AppData\Local\Microsoft Help
2013-07-28 13:30:47 -------- d-----w- C:\Users\User\AppData\Local\Microsoft Toolkit
2013-07-24 20:28:04 997632 ----a-w- C:\Windows\System32\drivers\ndis.sys
2013-07-24 20:28:00 2219520 ----a-w- C:\Windows\System32\dwmcore.dll
2013-07-24 20:24:43 144384 ----a-w- C:\Windows\System32\tssdisai.dll
2013-07-24 20:24:41 -------- d-----w- C:\Users\User\AppData\Local\Intel_Corporation
2013-07-24 20:13:57 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-24 20:13:57 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-07-24 01:26:13 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-07-24 01:26:12 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-07-23 18:05:54 1161728 ----a-w- C:\Windows\System32\sppobjs.dll
2013-07-23 18:04:18 135680 ----a-w- C:\Windows\System32\appserverai.dll
2013-07-23 18:04:18 126976 ----a-w- C:\Windows\System32\RDWebAI.dll
2013-07-23 18:04:18 122880 ----a-w- C:\Windows\System32\VmHostAI.dll
2013-07-23 18:04:16 148480 ----a-w- C:\Windows\System32\poqexec.exe
2013-07-23 18:04:16 132608 ----a-w- C:\Windows\SysWow64\poqexec.exe
2013-07-23 18:04:08 1889280 ----a-w- C:\Windows\System32\crypt32.dll
2013-07-23 18:04:08 1569792 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-07-23 18:04:08 1255936 ----a-w- C:\Windows\System32\certutil.exe
2013-07-23 18:04:07 68096 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-07-23 18:04:07 141312 ----a-w- C:\Windows\System32\cryptnet.dll
2013-07-23 18:04:07 109056 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-07-23 18:04:07 1013248 ----a-w- C:\Windows\SysWow64\certutil.exe
2013-07-23 18:03:50 595968 ----a-w- C:\Windows\System32\qedit.dll
2013-07-23 18:03:50 496640 ----a-w- C:\Windows\SysWow64\qedit.dll
2013-07-23 18:03:50 4036096 ----a-w- C:\Windows\System32\win32k.sys
2013-07-23 18:03:35 411880 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2013-07-23 18:03:35 26624 ----a-w- C:\Windows\System32\ReAgentc.exe
2013-07-23 18:03:35 24064 ----a-w- C:\Windows\SysWow64\ReAgentc.exe
2013-07-23 17:16:50 1690624 ----a-w- C:\Windows\System32\GdiPlus.dll
2013-07-23 17:16:50 1437184 ----a-w- C:\Windows\SysWow64\GdiPlus.dll
2013-07-23 15:49:13 1838080 ----a-w- C:\Windows\System32\DWrite.dll
2013-07-23 15:49:13 1421312 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-07-23 14:54:15 -------- d-----w- C:\Users\User\AppData\Local\My Games
2013-07-23 14:51:57 -------- d--h--w- C:\Windows\msdownld.tmp
2013-07-23 14:51:47 -------- d-----w- C:\Windows\SysWow64\directx
2013-07-23 14:42:20 -------- d-----w- C:\Users\User\AppData\Roaming\Sid Meier's Civilization 5
2013-07-23 14:32:09 -------- d-----w- C:\Program Files (x86)\R.G. Mechanics
2013-07-23 04:59:53 -------- d-----w- C:\Users\User\AppData\Roaming\uTorrent
2013-07-23 02:12:04 20992 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2013-07-23 01:15:56 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-07-23 01:15:56 112872 ----a-w- C:\Windows\System32\consent.exe
2013-07-22 22:33:57 733184 ----a-w- C:\Windows\System32\win32spl.dll
2013-07-22 20:47:57 2842112 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-22 20:47:57 2620928 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-22 08:54:37 861184 ----a-w- C:\Windows\System32\drivers\http.sys
2013-07-22 08:47:26 -------- d-----w- C:\Users\User\AppData\Local\CrashDumps
2013-07-21 17:30:08 2382336 ----a-w- C:\Windows\SysWow64\esent.dll
2013-07-21 17:30:07 2851840 ----a-w- C:\Windows\System32\esent.dll
2013-07-21 15:58:55 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-07-21 15:58:55 25088 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-07-21 15:31:19 796760 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\srtsp64.sys
2013-07-21 15:31:19 493656 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\symds64.sys
2013-07-21 15:31:19 433752 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\symnets.sys
2013-07-21 15:31:19 36952 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\srtspx64.sys
2013-07-21 15:31:19 23448 ----a-r- C:\Windows\System32\drivers\NISx64\1404000.028\symelam.sys
2013-07-21 15:31:19 224416 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\ironx64.sys
2013-07-21 15:31:19 169048 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\ccsetx64.sys
2013-07-21 15:31:19 1139800 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\symefa64.sys
2013-07-21 15:31:10 -------- d-----w- C:\Windows\System32\drivers\NISx64\1404000.028
2013-07-21 03:26:10 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2013-07-20 22:23:47 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-07-20 22:21:13 -------- d-----w- C:\Users\User\AppData\Roaming\hpqlog
2013-07-20 18:36:03 -------- d-----w- C:\Users\User\AppData\Local\Apple Computer
2013-07-20 18:35:47 33240 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2013-07-20 18:35:29 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-07-20 18:35:29 -------- d-----w- C:\Program Files\iTunes
2013-07-20 18:35:29 -------- d-----w- C:\Program Files\iPod
2013-07-20 18:35:29 -------- d-----w- C:\Program Files (x86)\iTunes
2013-07-20 18:35:20 -------- d-----w- C:\Users\User\AppData\Local\Apple
2013-07-20 17:09:15 -------- d-----w- C:\Users\User\AppData\Roaming\WildTangent
2013-07-20 17:03:16 -------- d-----w- C:\Users\User\AppData\Local\Google
2013-07-20 16:41:20 -------- d-----w- C:\Users\User\AppData\Roaming\NVIDIA
2013-07-20 00:45:00 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-07-20 00:45:00 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-07-20 00:44:58 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-20 00:34:46 -------- d-----w- C:\Users\User\AppData\Local\HP Quick Start
2013-07-20 00:34:17 -------- d-----w- C:\Users\User\AppData\Local\CyberLink
2013-07-20 00:08:10 -------- d-----w- C:\Users\User\AppData\Local\HP
2013-07-20 00:08:06 -------- d-----w- C:\Users\User\AppData\Local\AuthenTec
2013-07-20 00:06:26 -------- d-----w- C:\Users\User\AppData\Local\Macromedia
2013-07-19 23:21:53 -------- d-----w- C:\ProgramData\TrueSuite
2013-07-19 23:20:35 -------- d-----w- C:\Users\User\AppData\Local\Diagnostics
2013-07-19 23:15:26 -------- d-----w- C:\Users\User\AppData\Local\Hewlett-Packard
2013-07-19 23:14:54 -------- d-----r- C:\Users\User\Searches
2013-07-19 23:14:54 -------- d-----r- C:\Users\User\Contacts
2013-07-19 23:12:25 -------- d-----w- C:\Users\User\AppData\Local\Power2Go8
2013-07-19 23:12:07 -------- d-----w- C:\Users\User\AppData\Roaming\Synaptics
2013-07-10 14:14:34 775216 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2013-07-10 14:14:34 770608 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2013-07-10 14:14:34 701952 ----a-w- C:\Program Files\Internet Explorer\ieproxy.dll
2013-07-10 14:14:34 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-10 14:14:34 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2013-07-10 14:14:34 257536 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2013-07-10 14:14:34 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-10 14:14:34 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-10 14:08:32 -------- d-----w- C:\Program Files (x86)\SymSilent
2013-07-10 14:08:25 177312 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2013-07-10 14:08:25 -------- d-----w- C:\Program Files\Symantec
2013-07-10 14:08:25 -------- d-----w- C:\Program Files\Common Files\Symantec Shared
2013-07-10 14:07:24 -------- d-----w- C:\Windows\System32\drivers\NISx64
2013-07-10 14:07:22 -------- d-----w- C:\ProgramData\Norton
2013-07-10 14:07:22 -------- d-----w- C:\Program Files (x86)\Norton Internet Security
2013-07-10 14:06:41 -------- d-----w- C:\ProgramData\NortonInstaller
2013-07-10 14:06:41 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2013-07-10 14:06:08 -------- d-----w- C:\Program Files (x86)\Common Files\Nikon
2013-07-10 13:58:13 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2013-07-10 13:58:13 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2013-07-10 13:58:13 29480 ----a-w- C:\Windows\SysWow64\msxml3a.dll
2013-07-10 13:56:34 -------- d-----w- C:\Program Files (x86)\HP SimplePass
2013-07-10 13:56:27 -------- d-----w- C:\Program Files (x86)\Common Files\AuthenTec
2013-07-10 13:56:26 -------- d-----w- C:\ProgramData\HP SimplePass 2011
2013-07-10 13:56:26 -------- d-----w- C:\ProgramData\Downloaded Installations
2013-07-10 13:56:26 -------- d-----w- C:\Program Files\Common Files\AuthenTec
2013-07-10 13:55:45 -------- d-----w- C:\ProgramData\Intel(R) Update Manager
2013-07-10 13:55:14 -------- d-----w- C:\Program Files\Intel Corporation
2013-07-10 13:52:03 92536 ----a-w- C:\Windows\System32\drivers\CLVirtualDrive.sys
2013-07-10 13:52:01 -------- d-----w- C:\Program Files (x86)\Common Files\CyberLink
2013-07-10 13:44:44 -------- d-----w- C:\ProgramData\install_clap
2013-07-10 13:44:34 -------- d-----r- C:\Program Files\Online Services
2013-07-10 13:39:29 -------- d-----w- C:\ProgramData\Synaptics
2013-07-10 13:39:21 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys
2013-07-10 13:39:06 -------- d-----w- C:\Windows\SysWow64\NV
2013-07-10 13:39:06 -------- d-----w- C:\Windows\System32\NV
2013-07-10 13:37:27 -------- d-----w- C:\Windows\SysWow64\sda
2013-07-10 13:37:25 450632 ----a-w- C:\Windows\System32\drivers\RtsPer.sys
2013-07-10 13:37:25 11866696 ----a-w- C:\Windows\SysWow64\RtsPerIcon.dll
2013-07-10 13:36:40 -------- d-----w- C:\ProgramData\Validity
2013-07-10 13:36:39 -------- d-----w- C:\Program Files\Validity Sensors
2013-07-10 13:36:01 760032 ----a-w- C:\Windows\System32\drivers\Rt630x64.sys
2013-07-10 13:36:01 74344 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-07-10 13:35:58 -------- d-----w- C:\Program Files (x86)\Realtek
2013-07-10 13:31:50 -------- d-----w- C:\Program Files\IDT
2013-07-10 13:31:20 -------- d-----w- C:\Windows\Hewlett-Packard
2013-07-10 13:30:17 390144 ----a-w- C:\Windows\System32\hpbrprtmon.dll
2013-07-10 13:30:17 365568 ----a-w- C:\Windows\System32\hpbprtmon.dll
2013-07-10 13:30:17 189440 ----a-w- C:\Windows\System32\hpbprtmonui.dll
2013-07-10 13:30:17 -------- d-----w- C:\Program Files\Bonjour
2013-07-10 13:30:17 -------- d-----w- C:\Program Files (x86)\Bonjour
2013-07-10 13:29:45 -------- d--h--w- C:\Windows\System32\WLANProfiles
2013-07-10 13:29:23 -------- d-----w- C:\ProgramData\Roaming
2013-07-10 13:29:07 -------- d-----w- C:\Program Files\Common Files\Intel
2013-07-10 13:29:07 -------- d-----w- C:\Program Files (x86)\Cisco
2013-07-10 13:29:06 -------- d-----w- C:\ProgramData\Intel.sav
2013-07-10 13:28:35 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
2013-07-10 13:28:33 -------- d-----w- C:\ProgramData\Package Cache
2013-07-10 13:27:48 16344 ----a-w- C:\Windows\System32\drivers\IntelMEFWVer.dll
2013-07-10 13:27:14 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
2013-07-10 13:25:55 961192 ----a-w- C:\Windows\SysWow64\nvumdshim.dll
2013-07-10 13:24:23 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2013-07-10 13:24:01 -------- d-----w- C:\Intel
.
==================== Find3M ====================
.
2013-07-10 14:13:38 443392 ----a-w- C:\Windows\System32\ReAgent.dll
2013-07-10 14:13:38 375808 ----a-w- C:\Windows\SysWow64\ReAgent.dll
2013-07-10 14:13:38 1011200 ----a-w- C:\Windows\System32\reseteng.dll
2013-07-10 14:13:20 35232 ----a-w- C:\Windows\System32\drivers\WdBoot.sys
2013-07-10 14:13:20 230904 ----a-w- C:\Windows\System32\drivers\WdFilter.sys
2013-06-11 23:43:37 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-06-11 23:43:00 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-06-11 23:26:20 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-06-11 23:25:16 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-06-01 11:54:16 194816 ----a-w- C:\Windows\System32\drivers\sdbus.sys
2013-06-01 11:54:10 125184 ----a-w- C:\Windows\System32\drivers\dumpsd.sys
2013-06-01 11:34:21 2391280 ----a-w- C:\Windows\explorer.exe
2013-06-01 11:33:13 2233600 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-06-01 11:29:35 337152 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS
2013-06-01 11:29:35 213248 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS
2013-06-01 11:26:33 327936 ----a-w- C:\Windows\System32\drivers\volsnap.sys
2013-06-01 11:26:31 6987008 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-06-01 10:24:46 2106176 ----a-w- C:\Windows\SysWow64\explorer.exe
2013-06-01 09:25:52 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2013-06-01 09:25:05 67584 ----a-w- C:\Windows\SysWow64\samlib.dll
2013-06-01 09:24:19 493056 ----a-w- C:\Windows\SysWow64\mscms.dll
2013-06-01 09:24:09 850944 ----a-w- C:\Windows\SysWow64\mfasfsrcsnk.dll
2013-06-01 09:24:09 1453568 ----a-w- C:\Windows\SysWow64\mfcore.dll
2013-06-01 09:23:46 1842176 ----a-w- C:\Windows\SysWow64\dwmcore.dll
2013-06-01 09:23:06 680960 ----a-w- C:\Windows\System32\vds.exe
2013-06-01 09:22:47 80896 ----a-w- C:\Windows\System32\MbaeParserTask.exe
2013-06-01 09:22:33 523264 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2013-06-01 09:22:33 446976 ----a-w- C:\Windows\System32\wwansvc.dll
2013-06-01 09:22:09 190976 ----a-w- C:\Windows\System32\vdsutil.dll
2013-06-01 09:21:39 729600 ----a-w- C:\Windows\System32\samsrv.dll
2013-06-01 09:21:39 106496 ----a-w- C:\Windows\System32\samlib.dll
2013-06-01 09:20:45 583168 ----a-w- C:\Windows\System32\mscms.dll
2013-06-01 09:20:34 1527808 ----a-w- C:\Windows\System32\mfcore.dll
2013-06-01 09:20:34 1048576 ----a-w- C:\Windows\System32\mfasfsrcsnk.dll
2013-06-01 09:19:58 207872 ----a-w- C:\Windows\System32\DeviceSetupManager.dll
2013-06-01 09:19:42 785408 ----a-w- C:\Windows\System32\audiosrv.dll
2013-06-01 03:08:57 37632 ----a-w- C:\Windows\System32\drivers\BthAvrcpTg.sys
2013-05-24 22:09:20 1403296 ----a-w- C:\Windows\System32\winload.efi
2013-05-24 22:09:20 1271584 ----a-w- C:\Windows\System32\winload.exe
2013-05-24 22:09:20 1217352 ----a-w- C:\Windows\System32\winresume.efi
2013-05-24 22:09:20 1093904 ----a-w- C:\Windows\System32\winresume.exe
2013-05-24 21:40:41 83688 ----a-w- C:\Windows\System32\mcupdate_AuthenticAMD.dll
2013-05-24 21:37:27 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-05-24 21:37:27 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-05-24 21:35:34 368640 ----a-w- C:\Windows\System32\sppwinob.dll
2013-05-24 21:34:28 86016 ----a-w- C:\Windows\System32\ncryptsslp.dll
2013-05-24 21:34:28 71168 ----a-w- C:\Windows\SysWow64\ncryptsslp.dll
2013-05-24 21:32:29 945152 ----a-w- C:\Windows\System32\resetengmig.dll
2013-05-24 21:32:29 132096 ----a-w- C:\Windows\System32\sysreset.exe
2013-05-24 21:27:34 405504 ----a-w- C:\Windows\System32\pcasvc.dll
2013-05-24 21:27:34 31232 ----a-w- C:\Windows\System32\pcadm.dll
2013-05-24 21:27:34 13312 ----a-w- C:\Windows\System32\pcalua.exe
2013-05-24 21:27:34 11776 ----a-w- C:\Windows\System32\pcaevts.dll
2013-05-24 21:26:47 929792 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll
2013-05-24 21:26:47 677888 ----a-w- C:\Windows\System32\mfnetcore.dll
2013-05-24 21:26:47 673280 ----a-w- C:\Windows\System32\mfmpeg2srcsnk.dll
2013-05-24 21:26:47 568832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll
2013-05-24 21:26:47 513024 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2013-05-24 21:26:47 1172992 ----a-w- C:\Windows\System32\mfnetsrc.dll
2013-05-24 21:23:27 9216 ----a-w- C:\Windows\System32\dpnhupnp.dll
2013-05-24 21:20:42 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll
2013-05-24 21:20:42 17888 ----a-w- C:\Windows\System32\msvcr100_clr0400.dll
2013-05-24 21:15:37 2893824 ----a-w- C:\Windows\System32\msmpeg2vdec.dll
2013-05-24 21:15:37 2400256 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2013-05-24 21:15:27 68608 ----a-w- C:\Windows\System32\wwanprotdim.dll
2013-05-24 21:15:14 310784 ----a-w- C:\Windows\apppatch\AcRes.dll
2013-05-24 21:14:53 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-05-24 21:14:07 76288 ----a-w- C:\Windows\System32\newdev.exe
2013-05-24 21:14:07 75264 ----a-w- C:\Windows\System32\ndadmin.exe
2013-05-24 21:14:07 74240 ----a-w- C:\Windows\SysWow64\newdev.exe
2013-05-24 21:14:07 73728 ----a-w- C:\Windows\SysWow64\ndadmin.exe
2013-05-24 21:14:07 301568 ----a-w- C:\Windows\System32\newdev.dll
2013-05-24 21:14:07 275968 ----a-w- C:\Windows\SysWow64\newdev.dll
2013-05-24 21:12:19 80896 ----a-w- C:\Windows\System32\mmcss.dll
2013-05-24 21:08:50 23552 ----a-w- C:\Windows\System32\vdsldr.exe
2013-05-24 21:08:50 120832 ----a-w- C:\Windows\System32\vds_ps.dll
2013-05-24 21:08:26 96256 ----a-w- C:\Windows\System32\fontsub.dll
2013-05-24 21:08:26 75776 ----a-w- C:\Windows\SysWow64\fontsub.dll
2013-05-24 21:08:26 46080 ----a-w- C:\Windows\System32\atmlib.dll
2013-05-24 21:08:26 362496 ----a-w- C:\Windows\System32\atmfd.dll
2013-05-24 21:08:26 35328 ----a-w- C:\Windows\SysWow64\atmlib.dll
2013-05-24 21:08:26 3072 ----a-w- C:\Windows\SysWow64\lpk.dll
2013-05-24 21:08:26 3072 ----a-w- C:\Windows\System32\lpk.dll
2013-05-24 21:08:26 300032 ----a-w- C:\Windows\SysWow64\atmfd.dll
2013-05-24 21:08:26 14336 ----a-w- C:\Windows\System32\dciman32.dll
2013-05-24 21:08:26 10752 ----a-w- C:\Windows\SysWow64\dciman32.dll
2013-05-24 21:05:44 94208 ----a-w- C:\Windows\System32\synceng.dll
2013-05-24 21:05:44 72192 ----a-w- C:\Windows\SysWow64\synceng.dll
2013-05-23 23:01:46 1300992 ----a-w- C:\Windows\System32\gdi32.dll
2013-05-23 22:27:05 1022464 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-05-15 22:37:03 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll
2013-05-15 22:35:49 53760 ----a-w- C:\Windows\System32\UXInit.dll
2013-05-15 02:25:59 888320 ----a-w- C:\Windows\System32\autochk.exe
2013-05-15 02:25:44 542208 ----a-w- C:\Windows\System32\untfs.dll
2013-05-15 02:24:10 793088 ----a-w- C:\Windows\SysWow64\autochk.exe
2013-05-15 02:24:01 482816 ----a-w- C:\Windows\SysWow64\untfs.dll
2013-05-14 13:14:01 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-05-14 09:23:31 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
.
============= FINISH: 16:15:21.69 ===============
Checklist
DDS.txt - copy/pasted directly into Reply box
Attach.zip (contains Attach.txt and ARK.txt) - attached to post
Rootkits that alter critical/legit Windows files are becoming more commonplace. To facilitate a more rapid cleaning of your system, also tell us whether or not you have/have access to a Windows Install disc, or a Boot CD
DDS.txt
======================================================
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2
Run by User at 16:15:03 on 2013-08-06
Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.16156.13398 [GMT -4:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\Hpservice.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k apphost
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\valWBFPolicyService.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\HP SimplePass\TouchControl.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Common Files\AuthenTec\TrueService.exe
C:\Program Files\Common Files\AuthenTec\TrueService.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ips\ipsbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll
mRun: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
mRun: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ISCTSY~1.LNK - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 66.189.0.100 24.159.64.23 24.247.24.53
TCP: Interfaces\{9D3D428A-6D84-43EE-BCBA-722045DB75E0} : DHCPNameServer = 66.189.0.100 24.159.64.23 24.247.24.53
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\aenerypa.default\
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-07-19 19:11; {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
FF - ExtSQL: 2013-07-19 19:11; {BBDA0591-3099-440a-AA10-41764D9DB4DB}; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
FF - ExtSQL: 2013-08-03 00:57; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\aenerypa.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2013-4-5 653808]
R0 nvpciflt;nvpciflt;C:\Windows\System32\Drivers\nvpciflt.sys [2013-7-10 30496]
R1 CLVirtualDrive;CLVirtualDrive;C:\Windows\System32\Drivers\CLVirtualDrive.sys [2013-7-10 92536]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-11-6 1120192]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-11-6 1140672]
R2 BrcmSetSecurity;BrcmSetSecurity;C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [2013-4-16 101536]
R2 FPLService;TrueSuiteService;C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [2013-2-7 1641768]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]
R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2013-3-1 43320]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2013-2-1 1039160]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-4-10 15344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-7-10 129848]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent;C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-2-13 180200]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-7-10 167736]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe [2013-7-21 144368]
R2 valWBFPolicyService;Validity WBF Policy Service;C:\Windows\System32\valWBFPolicyService.exe [2013-3-19 28160]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-2-8 3386608]
R3 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [2013-7-15 1393240]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\Drivers\btmaux.sys [2012-10-30 131968]
R3 btmhsf;btmhsf;C:\Windows\System32\Drivers\btmhsf.sys [2012-11-6 1345920]
R3 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\System32\Drivers\NISx64\1404000.028\ccsetx64.sys [2013-7-21 169048]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-7-24 138912]
R3 ibtfltcoex;ibtfltcoex;C:\Windows\System32\Drivers\iBtFltCoex.sys [2012-8-6 68136]
R3 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130804.001\IDSviA64.sys [2013-8-5 513184]
R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\Drivers\ikbevent.sys [2013-2-13 21048]
R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\Drivers\imsevent.sys [2013-2-13 21048]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;C:\Windows\System32\Drivers\ISCTD64.sys [2013-2-13 46568]
R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\Drivers\iwdbus.sys [2013-4-16 25568]
R3 NETwNe64;@oem11.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\Windows\System32\Drivers\NETwew00.sys [2013-2-21 3311072]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-7-10 760032]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\Drivers\Smb_driver_Intel.sys [2013-4-24 33008]
R3 SymDS;Symantec Data Store;C:\Windows\System32\Drivers\NISx64\1404000.028\symds64.sys [2013-7-21 493656]
R3 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\Drivers\NISx64\1404000.028\symefa64.sys [2013-7-21 1139800]
R3 SymIRON;Symantec Iron Driver;C:\Windows\System32\Drivers\NISx64\1404000.028\ironx64.sys [2013-7-21 224416]
R3 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\Drivers\NISx64\1404000.028\symnets.sys [2013-7-21 433752]
R3 TrueService;TrueAPI Service component;C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-1-8 401856]
R3 usb3Hub;UoIP Hub;C:\Windows\System32\Drivers\usb3Hub.sys [2013-4-16 207768]
R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\Windows\System32\Drivers\WirelessButtonDriver64.sys [2012-8-31 20800]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\Drivers\WPRO_41_2001.sys [2013-7-10 34752]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
S0 SymELAM;Symantec ELAM Driver;C:\Windows\System32\Drivers\NISx64\1404000.028\symelam.sys [2013-7-21 23448]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2013/07/10 07:00:45;C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [2013-1-28 241264]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-7-25 162672]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\Drivers\intelaud.sys [2013-4-16 35296]
S3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2013-3-20 442368]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-2-8 273136]
S3 RTSPER;Realtek PCIE Card Reader - PER;C:\Windows\System32\Drivers\RtsPer.sys [2013-7-10 450632]
S3 SmbDrv;SmbDrv;C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [2013-4-24 29424]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2013-08-06 18:37:20 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp
2013-08-06 18:29:30 -------- d-sh--w- C:\AI_RecycleBin
2013-08-03 16:10:57 -------- d-----w- C:\ProgramData\Acunetix WVS 8
2013-08-02 04:33:52 -------- d-----w- C:\Program Files (x86)\HMA! Pro VPN
2013-08-02 04:15:13 216064 ----a-w- C:\Windows\SysWow64\gcapi_dll.dll
2013-08-02 04:15:07 -------- d-----w- C:\Users\User\AppData\Roaming\Foxit Software
2013-08-02 04:15:06 -------- d-----w- C:\Program Files (x86)\Foxit Software
2013-08-02 04:00:45 -------- d-----r- C:\Program Files (x86)\Skype
2013-08-02 03:23:25 -------- d-----w- C:\Users\User\AppData\Local\Eclipse
2013-08-02 03:23:18 -------- d-----w- C:\Users\User\workspace
2013-08-02 03:11:34 972712 ----a-w- C:\Windows\System32\deployJava1.dll
2013-08-02 03:11:34 1093032 ----a-w- C:\Windows\System32\npDeployJava1.dll
2013-08-02 03:11:30 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2013-08-01 19:06:32 -------- d-----w- C:\Users\User\AppData\Roaming\LolClient
2013-08-01 13:54:09 467984 ----a-w- C:\Windows\SysWow64\d3dx10_39.dll
2013-08-01 13:54:09 1493528 ----a-w- C:\Windows\SysWow64\D3DCompiler_39.dll
2013-08-01 13:54:08 3851784 ----a-w- C:\Windows\SysWow64\D3DX9_39.dll
2013-08-01 13:54:04 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin
2013-08-01 13:54:00 -------- d-----w- C:\Riot Games
2013-08-01 13:52:35 -------- d-----w- C:\Users\User\AppData\Local\PMB Files
2013-08-01 13:52:33 -------- d-----w- C:\ProgramData\PMB Files
2013-08-01 13:52:31 -------- d-----w- C:\Program Files (x86)\Pando Networks
2013-08-01 13:52:00 -------- d-----w- C:\Users\User\AppData\Roaming\Riot Games
2013-07-29 19:14:50 367104 ----a-w- C:\Windows\System32\CNC410L.dll
2013-07-29 19:14:50 315392 ----a-w- C:\Windows\SysWow64\CNC410L.dll
2013-07-29 19:14:50 17920 ----a-w- C:\Windows\System32\CNHMCA6.dll
2013-07-29 19:14:50 15872 ----a-w- C:\Windows\SysWow64\CNHMCA.dll
2013-07-29 19:14:50 1368064 ----a-w- C:\Windows\System32\CNC410C.dll
2013-07-29 19:14:50 112128 ----a-w- C:\Windows\System32\CNC410I.dll
2013-07-29 19:14:50 106496 ----a-w- C:\Windows\SysWow64\CNC410U.dll
2013-07-29 19:14:36 -------- d--h--w- C:\ProgramData\CanonIJFAX
2013-07-29 19:14:34 302080 ----a-w- C:\Windows\System32\CNCALAL.DLL
2013-07-29 19:13:58 88576 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPPAL.DLL
2013-07-29 19:13:58 29696 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPDAL.DLL
2013-07-29 19:13:50 374784 ----a-w- C:\Windows\System32\CNMLMAL.DLL
2013-07-28 13:42:03 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-07-28 13:41:47 -------- d-----w- C:\Users\User\AppData\Local\Microsoft Help
2013-07-28 13:30:47 -------- d-----w- C:\Users\User\AppData\Local\Microsoft Toolkit
2013-07-24 20:28:04 997632 ----a-w- C:\Windows\System32\drivers\ndis.sys
2013-07-24 20:28:00 2219520 ----a-w- C:\Windows\System32\dwmcore.dll
2013-07-24 20:24:43 144384 ----a-w- C:\Windows\System32\tssdisai.dll
2013-07-24 20:24:41 -------- d-----w- C:\Users\User\AppData\Local\Intel_Corporation
2013-07-24 20:13:57 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-24 20:13:57 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-07-24 01:26:13 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-07-24 01:26:12 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-07-23 18:05:54 1161728 ----a-w- C:\Windows\System32\sppobjs.dll
2013-07-23 18:04:18 135680 ----a-w- C:\Windows\System32\appserverai.dll
2013-07-23 18:04:18 126976 ----a-w- C:\Windows\System32\RDWebAI.dll
2013-07-23 18:04:18 122880 ----a-w- C:\Windows\System32\VmHostAI.dll
2013-07-23 18:04:16 148480 ----a-w- C:\Windows\System32\poqexec.exe
2013-07-23 18:04:16 132608 ----a-w- C:\Windows\SysWow64\poqexec.exe
2013-07-23 18:04:08 1889280 ----a-w- C:\Windows\System32\crypt32.dll
2013-07-23 18:04:08 1569792 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-07-23 18:04:08 1255936 ----a-w- C:\Windows\System32\certutil.exe
2013-07-23 18:04:07 68096 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-07-23 18:04:07 141312 ----a-w- C:\Windows\System32\cryptnet.dll
2013-07-23 18:04:07 109056 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-07-23 18:04:07 1013248 ----a-w- C:\Windows\SysWow64\certutil.exe
2013-07-23 18:03:50 595968 ----a-w- C:\Windows\System32\qedit.dll
2013-07-23 18:03:50 496640 ----a-w- C:\Windows\SysWow64\qedit.dll
2013-07-23 18:03:50 4036096 ----a-w- C:\Windows\System32\win32k.sys
2013-07-23 18:03:35 411880 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2013-07-23 18:03:35 26624 ----a-w- C:\Windows\System32\ReAgentc.exe
2013-07-23 18:03:35 24064 ----a-w- C:\Windows\SysWow64\ReAgentc.exe
2013-07-23 17:16:50 1690624 ----a-w- C:\Windows\System32\GdiPlus.dll
2013-07-23 17:16:50 1437184 ----a-w- C:\Windows\SysWow64\GdiPlus.dll
2013-07-23 15:49:13 1838080 ----a-w- C:\Windows\System32\DWrite.dll
2013-07-23 15:49:13 1421312 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-07-23 14:54:15 -------- d-----w- C:\Users\User\AppData\Local\My Games
2013-07-23 14:51:57 -------- d--h--w- C:\Windows\msdownld.tmp
2013-07-23 14:51:47 -------- d-----w- C:\Windows\SysWow64\directx
2013-07-23 14:42:20 -------- d-----w- C:\Users\User\AppData\Roaming\Sid Meier's Civilization 5
2013-07-23 14:32:09 -------- d-----w- C:\Program Files (x86)\R.G. Mechanics
2013-07-23 04:59:53 -------- d-----w- C:\Users\User\AppData\Roaming\uTorrent
2013-07-23 02:12:04 20992 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2013-07-23 01:15:56 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-07-23 01:15:56 112872 ----a-w- C:\Windows\System32\consent.exe
2013-07-22 22:33:57 733184 ----a-w- C:\Windows\System32\win32spl.dll
2013-07-22 20:47:57 2842112 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-22 20:47:57 2620928 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-22 08:54:37 861184 ----a-w- C:\Windows\System32\drivers\http.sys
2013-07-22 08:47:26 -------- d-----w- C:\Users\User\AppData\Local\CrashDumps
2013-07-21 17:30:08 2382336 ----a-w- C:\Windows\SysWow64\esent.dll
2013-07-21 17:30:07 2851840 ----a-w- C:\Windows\System32\esent.dll
2013-07-21 15:58:55 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-07-21 15:58:55 25088 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-07-21 15:31:19 796760 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\srtsp64.sys
2013-07-21 15:31:19 493656 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\symds64.sys
2013-07-21 15:31:19 433752 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\symnets.sys
2013-07-21 15:31:19 36952 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\srtspx64.sys
2013-07-21 15:31:19 23448 ----a-r- C:\Windows\System32\drivers\NISx64\1404000.028\symelam.sys
2013-07-21 15:31:19 224416 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\ironx64.sys
2013-07-21 15:31:19 169048 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\ccsetx64.sys
2013-07-21 15:31:19 1139800 ----a-w- C:\Windows\System32\drivers\NISx64\1404000.028\symefa64.sys
2013-07-21 15:31:10 -------- d-----w- C:\Windows\System32\drivers\NISx64\1404000.028
2013-07-21 03:26:10 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2013-07-20 22:23:47 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-07-20 22:21:13 -------- d-----w- C:\Users\User\AppData\Roaming\hpqlog
2013-07-20 18:36:03 -------- d-----w- C:\Users\User\AppData\Local\Apple Computer
2013-07-20 18:35:47 33240 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2013-07-20 18:35:29 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-07-20 18:35:29 -------- d-----w- C:\Program Files\iTunes
2013-07-20 18:35:29 -------- d-----w- C:\Program Files\iPod
2013-07-20 18:35:29 -------- d-----w- C:\Program Files (x86)\iTunes
2013-07-20 18:35:20 -------- d-----w- C:\Users\User\AppData\Local\Apple
2013-07-20 17:09:15 -------- d-----w- C:\Users\User\AppData\Roaming\WildTangent
2013-07-20 17:03:16 -------- d-----w- C:\Users\User\AppData\Local\Google
2013-07-20 16:41:20 -------- d-----w- C:\Users\User\AppData\Roaming\NVIDIA
2013-07-20 00:45:00 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-07-20 00:45:00 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-07-20 00:44:58 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-20 00:34:46 -------- d-----w- C:\Users\User\AppData\Local\HP Quick Start
2013-07-20 00:34:17 -------- d-----w- C:\Users\User\AppData\Local\CyberLink
2013-07-20 00:08:10 -------- d-----w- C:\Users\User\AppData\Local\HP
2013-07-20 00:08:06 -------- d-----w- C:\Users\User\AppData\Local\AuthenTec
2013-07-20 00:06:26 -------- d-----w- C:\Users\User\AppData\Local\Macromedia
2013-07-19 23:21:53 -------- d-----w- C:\ProgramData\TrueSuite
2013-07-19 23:20:35 -------- d-----w- C:\Users\User\AppData\Local\Diagnostics
2013-07-19 23:15:26 -------- d-----w- C:\Users\User\AppData\Local\Hewlett-Packard
2013-07-19 23:14:54 -------- d-----r- C:\Users\User\Searches
2013-07-19 23:14:54 -------- d-----r- C:\Users\User\Contacts
2013-07-19 23:12:25 -------- d-----w- C:\Users\User\AppData\Local\Power2Go8
2013-07-19 23:12:07 -------- d-----w- C:\Users\User\AppData\Roaming\Synaptics
2013-07-10 14:14:34 775216 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2013-07-10 14:14:34 770608 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2013-07-10 14:14:34 701952 ----a-w- C:\Program Files\Internet Explorer\ieproxy.dll
2013-07-10 14:14:34 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-10 14:14:34 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2013-07-10 14:14:34 257536 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2013-07-10 14:14:34 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-10 14:14:34 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-10 14:08:32 -------- d-----w- C:\Program Files (x86)\SymSilent
2013-07-10 14:08:25 177312 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2013-07-10 14:08:25 -------- d-----w- C:\Program Files\Symantec
2013-07-10 14:08:25 -------- d-----w- C:\Program Files\Common Files\Symantec Shared
2013-07-10 14:07:24 -------- d-----w- C:\Windows\System32\drivers\NISx64
2013-07-10 14:07:22 -------- d-----w- C:\ProgramData\Norton
2013-07-10 14:07:22 -------- d-----w- C:\Program Files (x86)\Norton Internet Security
2013-07-10 14:06:41 -------- d-----w- C:\ProgramData\NortonInstaller
2013-07-10 14:06:41 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2013-07-10 14:06:08 -------- d-----w- C:\Program Files (x86)\Common Files\Nikon
2013-07-10 13:58:13 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2013-07-10 13:58:13 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2013-07-10 13:58:13 29480 ----a-w- C:\Windows\SysWow64\msxml3a.dll
2013-07-10 13:56:34 -------- d-----w- C:\Program Files (x86)\HP SimplePass
2013-07-10 13:56:27 -------- d-----w- C:\Program Files (x86)\Common Files\AuthenTec
2013-07-10 13:56:26 -------- d-----w- C:\ProgramData\HP SimplePass 2011
2013-07-10 13:56:26 -------- d-----w- C:\ProgramData\Downloaded Installations
2013-07-10 13:56:26 -------- d-----w- C:\Program Files\Common Files\AuthenTec
2013-07-10 13:55:45 -------- d-----w- C:\ProgramData\Intel(R) Update Manager
2013-07-10 13:55:14 -------- d-----w- C:\Program Files\Intel Corporation
2013-07-10 13:52:03 92536 ----a-w- C:\Windows\System32\drivers\CLVirtualDrive.sys
2013-07-10 13:52:01 -------- d-----w- C:\Program Files (x86)\Common Files\CyberLink
2013-07-10 13:44:44 -------- d-----w- C:\ProgramData\install_clap
2013-07-10 13:44:34 -------- d-----r- C:\Program Files\Online Services
2013-07-10 13:39:29 -------- d-----w- C:\ProgramData\Synaptics
2013-07-10 13:39:21 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys
2013-07-10 13:39:06 -------- d-----w- C:\Windows\SysWow64\NV
2013-07-10 13:39:06 -------- d-----w- C:\Windows\System32\NV
2013-07-10 13:37:27 -------- d-----w- C:\Windows\SysWow64\sda
2013-07-10 13:37:25 450632 ----a-w- C:\Windows\System32\drivers\RtsPer.sys
2013-07-10 13:37:25 11866696 ----a-w- C:\Windows\SysWow64\RtsPerIcon.dll
2013-07-10 13:36:40 -------- d-----w- C:\ProgramData\Validity
2013-07-10 13:36:39 -------- d-----w- C:\Program Files\Validity Sensors
2013-07-10 13:36:01 760032 ----a-w- C:\Windows\System32\drivers\Rt630x64.sys
2013-07-10 13:36:01 74344 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-07-10 13:35:58 -------- d-----w- C:\Program Files (x86)\Realtek
2013-07-10 13:31:50 -------- d-----w- C:\Program Files\IDT
2013-07-10 13:31:20 -------- d-----w- C:\Windows\Hewlett-Packard
2013-07-10 13:30:17 390144 ----a-w- C:\Windows\System32\hpbrprtmon.dll
2013-07-10 13:30:17 365568 ----a-w- C:\Windows\System32\hpbprtmon.dll
2013-07-10 13:30:17 189440 ----a-w- C:\Windows\System32\hpbprtmonui.dll
2013-07-10 13:30:17 -------- d-----w- C:\Program Files\Bonjour
2013-07-10 13:30:17 -------- d-----w- C:\Program Files (x86)\Bonjour
2013-07-10 13:29:45 -------- d--h--w- C:\Windows\System32\WLANProfiles
2013-07-10 13:29:23 -------- d-----w- C:\ProgramData\Roaming
2013-07-10 13:29:07 -------- d-----w- C:\Program Files\Common Files\Intel
2013-07-10 13:29:07 -------- d-----w- C:\Program Files (x86)\Cisco
2013-07-10 13:29:06 -------- d-----w- C:\ProgramData\Intel.sav
2013-07-10 13:28:35 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
2013-07-10 13:28:33 -------- d-----w- C:\ProgramData\Package Cache
2013-07-10 13:27:48 16344 ----a-w- C:\Windows\System32\drivers\IntelMEFWVer.dll
2013-07-10 13:27:14 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
2013-07-10 13:25:55 961192 ----a-w- C:\Windows\SysWow64\nvumdshim.dll
2013-07-10 13:24:23 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2013-07-10 13:24:01 -------- d-----w- C:\Intel
.
==================== Find3M ====================
.
2013-07-10 14:13:38 443392 ----a-w- C:\Windows\System32\ReAgent.dll
2013-07-10 14:13:38 375808 ----a-w- C:\Windows\SysWow64\ReAgent.dll
2013-07-10 14:13:38 1011200 ----a-w- C:\Windows\System32\reseteng.dll
2013-07-10 14:13:20 35232 ----a-w- C:\Windows\System32\drivers\WdBoot.sys
2013-07-10 14:13:20 230904 ----a-w- C:\Windows\System32\drivers\WdFilter.sys
2013-06-11 23:43:37 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-06-11 23:43:00 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-06-11 23:26:20 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-06-11 23:25:16 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-06-01 11:54:16 194816 ----a-w- C:\Windows\System32\drivers\sdbus.sys
2013-06-01 11:54:10 125184 ----a-w- C:\Windows\System32\drivers\dumpsd.sys
2013-06-01 11:34:21 2391280 ----a-w- C:\Windows\explorer.exe
2013-06-01 11:33:13 2233600 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-06-01 11:29:35 337152 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS
2013-06-01 11:29:35 213248 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS
2013-06-01 11:26:33 327936 ----a-w- C:\Windows\System32\drivers\volsnap.sys
2013-06-01 11:26:31 6987008 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-06-01 10:24:46 2106176 ----a-w- C:\Windows\SysWow64\explorer.exe
2013-06-01 09:25:52 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2013-06-01 09:25:05 67584 ----a-w- C:\Windows\SysWow64\samlib.dll
2013-06-01 09:24:19 493056 ----a-w- C:\Windows\SysWow64\mscms.dll
2013-06-01 09:24:09 850944 ----a-w- C:\Windows\SysWow64\mfasfsrcsnk.dll
2013-06-01 09:24:09 1453568 ----a-w- C:\Windows\SysWow64\mfcore.dll
2013-06-01 09:23:46 1842176 ----a-w- C:\Windows\SysWow64\dwmcore.dll
2013-06-01 09:23:06 680960 ----a-w- C:\Windows\System32\vds.exe
2013-06-01 09:22:47 80896 ----a-w- C:\Windows\System32\MbaeParserTask.exe
2013-06-01 09:22:33 523264 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2013-06-01 09:22:33 446976 ----a-w- C:\Windows\System32\wwansvc.dll
2013-06-01 09:22:09 190976 ----a-w- C:\Windows\System32\vdsutil.dll
2013-06-01 09:21:39 729600 ----a-w- C:\Windows\System32\samsrv.dll
2013-06-01 09:21:39 106496 ----a-w- C:\Windows\System32\samlib.dll
2013-06-01 09:20:45 583168 ----a-w- C:\Windows\System32\mscms.dll
2013-06-01 09:20:34 1527808 ----a-w- C:\Windows\System32\mfcore.dll
2013-06-01 09:20:34 1048576 ----a-w- C:\Windows\System32\mfasfsrcsnk.dll
2013-06-01 09:19:58 207872 ----a-w- C:\Windows\System32\DeviceSetupManager.dll
2013-06-01 09:19:42 785408 ----a-w- C:\Windows\System32\audiosrv.dll
2013-06-01 03:08:57 37632 ----a-w- C:\Windows\System32\drivers\BthAvrcpTg.sys
2013-05-24 22:09:20 1403296 ----a-w- C:\Windows\System32\winload.efi
2013-05-24 22:09:20 1271584 ----a-w- C:\Windows\System32\winload.exe
2013-05-24 22:09:20 1217352 ----a-w- C:\Windows\System32\winresume.efi
2013-05-24 22:09:20 1093904 ----a-w- C:\Windows\System32\winresume.exe
2013-05-24 21:40:41 83688 ----a-w- C:\Windows\System32\mcupdate_AuthenticAMD.dll
2013-05-24 21:37:27 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-05-24 21:37:27 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-05-24 21:35:34 368640 ----a-w- C:\Windows\System32\sppwinob.dll
2013-05-24 21:34:28 86016 ----a-w- C:\Windows\System32\ncryptsslp.dll
2013-05-24 21:34:28 71168 ----a-w- C:\Windows\SysWow64\ncryptsslp.dll
2013-05-24 21:32:29 945152 ----a-w- C:\Windows\System32\resetengmig.dll
2013-05-24 21:32:29 132096 ----a-w- C:\Windows\System32\sysreset.exe
2013-05-24 21:27:34 405504 ----a-w- C:\Windows\System32\pcasvc.dll
2013-05-24 21:27:34 31232 ----a-w- C:\Windows\System32\pcadm.dll
2013-05-24 21:27:34 13312 ----a-w- C:\Windows\System32\pcalua.exe
2013-05-24 21:27:34 11776 ----a-w- C:\Windows\System32\pcaevts.dll
2013-05-24 21:26:47 929792 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll
2013-05-24 21:26:47 677888 ----a-w- C:\Windows\System32\mfnetcore.dll
2013-05-24 21:26:47 673280 ----a-w- C:\Windows\System32\mfmpeg2srcsnk.dll
2013-05-24 21:26:47 568832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll
2013-05-24 21:26:47 513024 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2013-05-24 21:26:47 1172992 ----a-w- C:\Windows\System32\mfnetsrc.dll
2013-05-24 21:23:27 9216 ----a-w- C:\Windows\System32\dpnhupnp.dll
2013-05-24 21:20:42 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll
2013-05-24 21:20:42 17888 ----a-w- C:\Windows\System32\msvcr100_clr0400.dll
2013-05-24 21:15:37 2893824 ----a-w- C:\Windows\System32\msmpeg2vdec.dll
2013-05-24 21:15:37 2400256 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2013-05-24 21:15:27 68608 ----a-w- C:\Windows\System32\wwanprotdim.dll
2013-05-24 21:15:14 310784 ----a-w- C:\Windows\apppatch\AcRes.dll
2013-05-24 21:14:53 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-05-24 21:14:07 76288 ----a-w- C:\Windows\System32\newdev.exe
2013-05-24 21:14:07 75264 ----a-w- C:\Windows\System32\ndadmin.exe
2013-05-24 21:14:07 74240 ----a-w- C:\Windows\SysWow64\newdev.exe
2013-05-24 21:14:07 73728 ----a-w- C:\Windows\SysWow64\ndadmin.exe
2013-05-24 21:14:07 301568 ----a-w- C:\Windows\System32\newdev.dll
2013-05-24 21:14:07 275968 ----a-w- C:\Windows\SysWow64\newdev.dll
2013-05-24 21:12:19 80896 ----a-w- C:\Windows\System32\mmcss.dll
2013-05-24 21:08:50 23552 ----a-w- C:\Windows\System32\vdsldr.exe
2013-05-24 21:08:50 120832 ----a-w- C:\Windows\System32\vds_ps.dll
2013-05-24 21:08:26 96256 ----a-w- C:\Windows\System32\fontsub.dll
2013-05-24 21:08:26 75776 ----a-w- C:\Windows\SysWow64\fontsub.dll
2013-05-24 21:08:26 46080 ----a-w- C:\Windows\System32\atmlib.dll
2013-05-24 21:08:26 362496 ----a-w- C:\Windows\System32\atmfd.dll
2013-05-24 21:08:26 35328 ----a-w- C:\Windows\SysWow64\atmlib.dll
2013-05-24 21:08:26 3072 ----a-w- C:\Windows\SysWow64\lpk.dll
2013-05-24 21:08:26 3072 ----a-w- C:\Windows\System32\lpk.dll
2013-05-24 21:08:26 300032 ----a-w- C:\Windows\SysWow64\atmfd.dll
2013-05-24 21:08:26 14336 ----a-w- C:\Windows\System32\dciman32.dll
2013-05-24 21:08:26 10752 ----a-w- C:\Windows\SysWow64\dciman32.dll
2013-05-24 21:05:44 94208 ----a-w- C:\Windows\System32\synceng.dll
2013-05-24 21:05:44 72192 ----a-w- C:\Windows\SysWow64\synceng.dll
2013-05-23 23:01:46 1300992 ----a-w- C:\Windows\System32\gdi32.dll
2013-05-23 22:27:05 1022464 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-05-15 22:37:03 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll
2013-05-15 22:35:49 53760 ----a-w- C:\Windows\System32\UXInit.dll
2013-05-15 02:25:59 888320 ----a-w- C:\Windows\System32\autochk.exe
2013-05-15 02:25:44 542208 ----a-w- C:\Windows\System32\untfs.dll
2013-05-15 02:24:10 793088 ----a-w- C:\Windows\SysWow64\autochk.exe
2013-05-15 02:24:01 482816 ----a-w- C:\Windows\SysWow64\untfs.dll
2013-05-14 13:14:01 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-05-14 09:23:31 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
.
============= FINISH: 16:15:21.69 ===============