1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

happili redirects

Discussion in 'Virus & Other Malware Removal' started by tonij1960, Apr 2, 2012.

Thread Status:
Not open for further replies.
Advertisement
  1. tonij1960

    tonij1960 Thread Starter

    Joined:
    Jun 27, 2008
    Messages:
    102
    Im getting redirects to happily with the following

    Warning: mysql_connect() [function.mysql-connect]: Too many connections in /home/happili.com/php/comm_includes/mysql.php on line 5

    Ran Malwarebytes after updating it, and still having the problem.

    Hijack this reported it was unable to access the hosts file, log follows:

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 12:05:54 AM, on 4/2/2012
    Platform: Unknown Windows (WinNT 6.02.0058)
    MSIE: Internet Explorer v10.0 (10.00.8250.0000)
    Boot mode: Normal

    Running processes:
    C:\Windows\SysWOW64\rundll32.exe
    C:\Program Files (x86)\Creative\Shared Files\CamTray.exe
    C:\Program Files (x86)\Tor\Tor Browser\App\vidalia.exe
    C:\Program Files (x86)\Java\jre7\bin\jusched.exe
    C:\Program Files (x86)\Common Files\ACD Systems\EN\DevDetect.exe
    C:\Program Files (x86)\CyberLink\Shared files\brs.exe
    C:\Program Files (x86)\Tor\tor.exe
    C:\Windows\P1370Mon.exe
    C:\Program Files (x86)\Azureus\Azureus.exe
    C:\Users\ToniJ\AppData\Roaming\svchost.exe
    C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
    C:\Windows\SysWOW64\DllHost.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    F3 - REG:win.ini: load=C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: Vuze Remote - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre7\bin\jusched.exe"
    O4 - HKLM\..\Run: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup
    O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
    O4 - HKLM\..\Run: [Device Detector] DevDetect.exe -autorun
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
    O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\CyberLink\MediaShow4\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\MediaShow4" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
    O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
    O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
    O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
    O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\1.0"
    O4 - HKLM\..\Run: [LGODDFU] "C:\Program Files (x86)\lg_fwupdate\fwupdate.exe" blrun
    O4 - HKLM\..\Run: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    O4 - HKLM\..\Run: [P1370Mon.exe] C:\Windows\P1370Mon.exe
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
    O4 - HKCU\..\Run: [Print Screen] "C:\Program Files (x86)\DevExtras\Print Screen\DevExtras.PrintScreen.exe"
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
    O4 - HKCU\..\Run: [RealJukeboxSystray] "C:\Program Files (x86)\Real\RealJukebox\tsystray.exe"
    O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    O4 - HKCU\..\Run: [halox] rundll32.exe "C:\Users\ToniJ\AppData\Local\Temp\halox.dll",CreateTextureFromFileInMemoryEx
    O4 - HKCU\..\Run: [SysVer] "C:\Users\ToniJ\AppData\Local\MSRebar\SysVer\SysVer.exe"
    O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files (x86)\Creative\Shared Files\CamTray.exe"
    O4 - HKCU\..\Run: [Mshost Manager] C:\Users\ToniJ\AppData\Roaming\svchost.exe
    O4 - HKCU\..\Run: [HKCU] C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    O4 - HKCU\..\RunOnce: [Server] C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    O4 - Startup: vidalia - Shortcut.lnk = C:\Program Files (x86)\Tor\Tor Browser\App\vidalia.exe
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O17 - HKLM\System\CCS\Services\Tcpip\..\{93031FC9-EFC2-4561-B859-4FC8CF60B687}: NameServer = 68.94.156.1,151.164.8.201
    O17 - HKLM\System\CS1\Services\Tcpip\..\{93031FC9-EFC2-4561-B859-4FC8CF60B687}: NameServer = 68.94.156.1,151.164.8.201
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
    O23 - Service: CyberLink Product - 2012/03/13 01:27:23 (CLKMSVC10_9EC60124) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
    O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    --
    End of file - 9171 bytes

    DDS complained about not running on my OS (windows 8 consumer preview)
     
  2. tonij1960

    tonij1960 Thread Starter

    Joined:
    Jun 27, 2008
    Messages:
    102
    DDS did run anyway heres the log

    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.10.8250.0
    Run by ToniJ at 0:11:46 on 2012-04-02
    Microsoft Windows 8 Consumer Preview 6.2.8250.0.1252.1.1033.18.4095.2764 [GMT -5:00]
    .
    AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\system32\dwm.exe
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\crypserv.exe
    C:\Windows\system32\dashost.exe
    C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files (x86)\DevExtras\Print Screen\DevExtras.PrintScreen.exe
    C:\Windows\System32\rundll32.exe
    C:\Windows\SysWOW64\rundll32.exe
    C:\Program Files (x86)\Creative\Shared Files\CamTray.exe
    C:\Program Files (x86)\Tor\Tor Browser\App\vidalia.exe
    C:\Program Files (x86)\Java\jre7\bin\jusched.exe
    C:\Program Files (x86)\Common Files\ACD Systems\EN\DevDetect.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files (x86)\CyberLink\Shared files\brs.exe
    C:\Program Files (x86)\Tor\tor.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\P1370Mon.exe
    C:\Windows\system32\taskhost.exe
    C:\Program Files (x86)\Azureus\Azureus.exe
    C:\Users\ToniJ\AppData\Roaming\svchost.exe -sysrun
    C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    C:\Windows\system32\taskhost.exe
    C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\Program Files (x86)\Everything\Everything.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com/
    uURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    mWinlogon: Userinit=userinit.exe,
    uWinlogon: Shell=explorer.exe C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    uWindows: Load=C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
    uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
    uRun: [Print Screen] "C:\Program Files (x86)\DevExtras\Print Screen\DevExtras.PrintScreen.exe"
    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
    uRun: [RealJukeboxSystray] "C:\Program Files (x86)\Real\RealJukebox\tsystray.exe"
    uRun: [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    uRun: [halox] rundll32.exe "C:\Users\ToniJ\AppData\Local\Temp\halox.dll",CreateTextureFromFileInMemoryEx
    uRun: [SysVer] "C:\Users\ToniJ\AppData\Local\MSRebar\SysVer\SysVer.exe"
    uRun: [Creative WebCam Tray] "C:\Program Files (x86)\Creative\Shared Files\CamTray.exe"
    uRun: [Mshost Manager] C:\Users\ToniJ\AppData\Roaming\svchost.exe
    uRun: [HKCU] C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    uRunOnce: [Server] C:\Users\ToniJ\AppData\Roaming\InstallDir\java.exe
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre7\bin\jusched.exe"
    mRun: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup
    mRun: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
    mRun: [Device Detector] DevDetect.exe -autorun
    mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRun: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
    mRun: [MDS_Menu] "C:\Program Files (x86)\CyberLink\MediaShow4\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\MediaShow4" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
    mRun: [RemoteControl9] "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
    mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
    mRun: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
    mRun: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\1.0"
    mRun: [LGODDFU] "C:\Program Files (x86)\lg_fwupdate\fwupdate.exe" blrun
    mRun: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun: [P1370Mon.exe] C:\Windows\P1370Mon.exe
    StartupFolder: C:\Users\ToniJ\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\VIDALI~1.LNK - C:\Program Files (x86)\Tor\Tor Browser\App\vidalia.exe
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
    mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    mPolicies-system: EnableCursorSuppression = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableLinkedConnections = 1 (0x1)
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
    DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
    TCP: Interfaces\{93031FC9-EFC2-4561-B859-4FC8CF60B687} : NameServer = 68.94.156.1,151.164.8.201
    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
    mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U %SystemRoot%\System32\shell32.dll
    BHO-X64: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO-X64: 0x1 - No File
    BHO-X64: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    BHO-X64: Vuze Remote - No File
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB-X64: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
    mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre7\bin\jusched.exe"
    mRun-x64: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup
    mRun-x64: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
    mRun-x64: [Device Detector] DevDetect.exe -autorun
    mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRun-x64: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
    mRun-x64: [MDS_Menu] "C:\Program Files (x86)\CyberLink\MediaShow4\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\MediaShow4" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
    mRun-x64: [RemoteControl9] "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
    mRun-x64: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
    mRun-x64: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
    mRun-x64: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\1.0"
    mRun-x64: [LGODDFU] "C:\Program Files (x86)\lg_fwupdate\fwupdate.exe" blrun
    mRun-x64: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun-x64: [P1370Mon.exe] C:\Windows\P1370Mon.exe
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\ToniJ\AppData\Roaming\Mozilla\Firefox\Profiles\bd4pltmn.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.ebay.com/
    FF - prefs.js: network.proxy.type - 0
    FF - component: C:\Users\ToniJ\AppData\Roaming\Mozilla\Firefox\Profiles\bd4pltmn.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
    FF - component: C:\Users\ToniJ\AppData\Roaming\Mozilla\Firefox\Profiles\bd4pltmn.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar-ff3.dll
    FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npdeploytk.dll
    FF - plugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll
    FF - plugin: C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nppl3260.dll
    FF - plugin: C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: Google Toolbar for Firefox: {3112ca9c-de6d-4884-a869-9855de68056c} - %profile%\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
    FF - Ext: Translate This!: {319F9542-7B77-11E1-826D-B8AC6F996F26} - C:\Users\ToniJ\AppData\Local\{319F9542-7B77-11E1-826D-B8AC6F996F26}
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 acpiex;Microsoft ACPIEx Driver;C:\Windows\system32\Drivers\acpiex.sys --> C:\Windows\system32\Drivers\acpiex.sys [?]
    R0 EhStorClass;Enhanced Storage Filter Driver;C:\Windows\system32\drivers\EhStorClass.sys --> C:\Windows\system32\drivers\EhStorClass.sys [?]
    R0 pdc;pdc;C:\Windows\system32\drivers\pdc.sys --> C:\Windows\system32\drivers\pdc.sys [?]
    R0 spaceport;Storage Spaces Driver;C:\Windows\system32\drivers\spaceport.sys --> C:\Windows\system32\drivers\spaceport.sys [?]
    R0 storahci;Microsoft Standard SATA AHCI Driver;C:\Windows\system32\drivers\storahci.sys --> C:\Windows\system32\drivers\storahci.sys [?]
    R0 WdFilter;Windows Defender Mini-Filter Driver;C:\Windows\system32\drivers\WdFilter.sys --> C:\Windows\system32\drivers\WdFilter.sys [?]
    R0 WFPLWFS;WFP LightWeight Filters;C:\Windows\system32\DRIVERS\wfplwfs.sys --> C:\Windows\system32\DRIVERS\wfplwfs.sys [?]
    R1 BasicDisplay;BasicDisplay;C:\Windows\system32\drivers\BasicDisplay.sys --> C:\Windows\system32\drivers\BasicDisplay.sys [?]
    R1 BasicRender;BasicRender;C:\Windows\system32\drivers\BasicRender.sys --> C:\Windows\system32\drivers\BasicRender.sys [?]
    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\drivers\dtsoftbus01.sys --> C:\Windows\system32\drivers\dtsoftbus01.sys [?]
    R1 npsvctrig;Named pipe service trigger provider;C:\Windows\system32\drivers\npsvctrig.sys --> C:\Windows\system32\drivers\npsvctrig.sys [?]
    R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-2-15 361984]
    R2 AODDriver4.1;AODDriver4.1;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-1-4 55936]
    R2 BrokerInfrastructure;Broker Infrastructure;C:\Windows\system32\svchost.exe -k DcomLaunch [2012-2-17 24064]
    R2 DeviceAssociationService;Device Association Service;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    R2 LSM;Local Session Manager;C:\Windows\system32\svchost.exe -k DcomLaunch [2012-2-17 24064]
    R2 Ndu;Windows Network Data Usage Monitoring Driver;C:\Windows\system32\drivers\Ndu.sys --> C:\Windows\system32\drivers\Ndu.sys [?]
    R2 Wcmsvc;Windows Connection Manager;C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted [2012-2-17 24064]
    R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
    R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
    R3 condrv;Console Driver;C:\Windows\system32\drivers\condrv.sys --> C:\Windows\system32\drivers\condrv.sys [?]
    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
    R3 MsLldp;Microsoft Link-Layer Discovery Protocol;C:\Windows\system32\DRIVERS\mslldp.sys --> C:\Windows\system32\DRIVERS\mslldp.sys [?]
    R3 NcdAutoSetup;Network Connected Devices Auto-Setup;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2012-2-17 24064]
    R3 P1370Afx;PD1370 Audio Effects Filter Driver;\??\C:\Windows\system32\Drivers\P1370Afx.sys --> C:\Windows\system32\Drivers\P1370Afx.sys [?]
    R3 P1370Aud;Creative WebCam Audio Control;\??\C:\Windows\system32\Drivers\P1370Aud.sys --> C:\Windows\system32\Drivers\P1370Aud.sys [?]
    R3 P1370Aul;PD1370 Lower Filter Driver;\??\C:\Windows\system32\Drivers\P1370Aul.sys --> C:\Windows\system32\Drivers\P1370Aul.sys [?]
    R3 P1370Vfx;P1370Vfx;C:\Windows\system32\DRIVERS\P1370Vfx.sys --> C:\Windows\system32\DRIVERS\P1370Vfx.sys [?]
    R3 P1370VID;Live! Cam Voice;C:\Windows\system32\DRIVERS\P1370Vid.sys --> C:\Windows\system32\DRIVERS\P1370Vid.sys [?]
    R3 SystemEventsBroker;System Events Broker;C:\Windows\system32\svchost.exe -k netsvcs [2012-2-17 24064]
    R3 TimeBroker;Time Broker;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2012-2-17 24064]
    R3 WSDPrintDevice;WSD Print Support;C:\Windows\system32\DRIVERS\WSDPrint.sys --> C:\Windows\system32\DRIVERS\WSDPrint.sys [?]
    S1 dam;Desktop Activity Moderator Driver;C:\Windows\system32\drivers\dam.sys --> C:\Windows\system32\drivers\dam.sys [?]
    S2 CLKMSVC10_9EC60124;CyberLink Product - 2012/03/13 01:27:23;C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-5-14 246256]
    S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-3-12 136176]
    S2 HitmanProScheduler;HitmanPro Scheduler;C:\Program Files\HitmanPro\hmpsched.exe [2012-4-1 96072]
    S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-3-19 652360]
    S3 3ware;3ware;C:\Windows\system32\drivers\3ware.sys --> C:\Windows\system32\drivers\3ware.sys [?]
    S3 acpipagr;ACPI Processor Aggregator Driver;C:\Windows\system32\drivers\acpipagr.sys --> C:\Windows\system32\drivers\acpipagr.sys [?]
    S3 acpitime;ACPI Wake Alarm Driver;C:\Windows\system32\drivers\acpitime.sys --> C:\Windows\system32\drivers\acpitime.sys [?]
    S3 AllUserInstallAgent;Windows All-User Install Agent;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 BthAvrcpTg;Bluetooth Audio/Video Remote Control HID;C:\Windows\system32\drivers\BthAvrcpTg.sys --> C:\Windows\system32\drivers\BthAvrcpTg.sys [?]
    S3 BthHFEnum;Bluetooth Hands-Free Audio and Call Control HID Enumerator;C:\Windows\system32\drivers\bthhfenum.sys --> C:\Windows\system32\drivers\bthhfenum.sys [?]
    S3 bthhfhid;Bluetooth Hands-Free Call Control HID;C:\Windows\system32\drivers\BthHFHid.sys --> C:\Windows\system32\drivers\BthHFHid.sys [?]
    S3 DeviceInstall;Device Install Service;C:\Windows\system32\svchost.exe -k DcomLaunch [2012-2-17 24064]
    S3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys --> C:\Windows\system32\drivers\dmvsc.sys [?]
    S3 DsmSvc;Device Setup Manager;C:\Windows\system32\svchost.exe -k netsvcs [2012-2-17 24064]
    S3 EhStorTcgDrv;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols;C:\Windows\system32\drivers\EhStorTcgDrv.sys --> C:\Windows\system32\drivers\EhStorTcgDrv.sys [?]
    S3 fcvsc;fcvsc;C:\Windows\system32\drivers\fcvsc.sys --> C:\Windows\system32\drivers\fcvsc.sys [?]
    S3 fhsvc;File History Service;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 fssfltr;Windows Family Safety Network Filter Driver;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]
    S3 FxPPM;Power Framework Processor Driver;C:\Windows\system32\drivers\fxppm.sys --> C:\Windows\system32\drivers\fxppm.sys [?]
    S3 gencounter;Microsoft Hyper-V Generation Counter;C:\Windows\system32\drivers\vmgencounter.sys --> C:\Windows\system32\drivers\vmgencounter.sys [?]
    S3 GPIOClx0101;Microsoft GPIO Class Extension Driver;C:\Windows\system32\Drivers\msgpioclx.sys --> C:\Windows\system32\Drivers\msgpioclx.sys [?]
    S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-3-12 136176]
    S3 hidi2c;Microsoft I2C HID Miniport Driver;C:\Windows\system32\drivers\hidi2c.sys --> C:\Windows\system32\drivers\hidi2c.sys [?]
    S3 hyperkbd;hyperkbd;C:\Windows\system32\drivers\hyperkbd.sys --> C:\Windows\system32\drivers\hyperkbd.sys [?]
    S3 HyperVideo;HyperVideo;C:\Windows\system32\DRIVERS\HyperVideo.sys --> C:\Windows\system32\DRIVERS\HyperVideo.sys [?]
    S3 iaStorSV;Intel(R) SATA RAID Controller Windows 8;C:\Windows\system32\drivers\iaStorSV.sys --> C:\Windows\system32\drivers\iaStorSV.sys [?]
    S3 kdnic;Microsoft Kernel Debug Network Miniport (NDIS 6.20);C:\Windows\system32\DRIVERS\kdnic.sys --> C:\Windows\system32\DRIVERS\kdnic.sys [?]
    S3 LSI_SSS;LSI_SSS;C:\Windows\system32\drivers\lsi_sss.sys --> C:\Windows\system32\drivers\lsi_sss.sys [?]
    S3 MsBridge;Microsoft MAC Bridge;C:\Windows\system32\DRIVERS\bridge.sys --> C:\Windows\system32\DRIVERS\bridge.sys [?]
    S3 msgpiowin32;GPIO Buttons Driver;C:\Windows\system32\drivers\msgpiowin32.sys --> C:\Windows\system32\drivers\msgpiowin32.sys [?]
    S3 mshidumdf;Pass-through HID to UMDF Driver;C:\Windows\system32\drivers\mshidumdf.sys --> C:\Windows\system32\drivers\mshidumdf.sys [?]
    S3 mvumis;mvumis;C:\Windows\system32\drivers\mvumis.sys --> C:\Windows\system32\drivers\mvumis.sys [?]
    S3 NcaSvc;Network Connectivity Assistant;C:\Windows\System32\svchost.exe -k NetSvcs [2012-2-17 24064]
    S3 NdisImPlatform;Microsoft Network Adapter Multiplexor Protocol;C:\Windows\system32\DRIVERS\NdisImPlatform.sys --> C:\Windows\system32\DRIVERS\NdisImPlatform.sys [?]
    S3 NDISWANLEGACY;Remote Access LEGACY NDIS WAN Driver;C:\Windows\system32\DRIVERS\ndiswan.sys --> C:\Windows\system32\DRIVERS\ndiswan.sys [?]
    S3 PrintNotify;Printer Extensions and Notifications;C:\Windows\system32\svchost.exe -k print [2012-2-17 24064]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]
    S3 sdstor;SD Storage Port Driver;C:\Windows\system32\drivers\sdstor.sys --> C:\Windows\system32\drivers\sdstor.sys [?]
    S3 SerCx;Serial UART Support Library;C:\Windows\system32\drivers\SerCx.sys --> C:\Windows\system32\drivers\SerCx.sys [?]
    S3 SpbCx;Simple Peripheral Bus Support Library;C:\Windows\system32\drivers\SpbCx.sys --> C:\Windows\system32\drivers\SpbCx.sys [?]
    S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 storvsp;storvsp;C:\Windows\system32\drivers\storvsp.sys --> C:\Windows\system32\drivers\storvsp.sys [?]
    S3 svsvc;Spot Verifier;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver;C:\Windows\system32\drivers\Synth3dVsc.sys --> C:\Windows\system32\drivers\Synth3dVsc.sys [?]
    S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\system32\drivers\terminpt.sys --> C:\Windows\system32\drivers\terminpt.sys [?]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
    S3 tsusbhub;tsusbhub;C:\Windows\system32\drivers\tsusbhub.sys --> C:\Windows\system32\drivers\tsusbhub.sys [?]
    S3 UASPStor;USB Attached SCSI (UAS) Driver;C:\Windows\system32\drivers\uaspstor.sys --> C:\Windows\system32\drivers\uaspstor.sys [?]
    S3 UCX01000;USB Controller Extension;C:\Windows\system32\drivers\ucx01000.sys --> C:\Windows\system32\drivers\ucx01000.sys [?]
    S3 USBHUB3;SuperSpeed Hub;C:\Windows\system32\drivers\UsbHub3.sys --> C:\Windows\system32\drivers\UsbHub3.sys [?]
    S3 USBXHCI;USB xHCI Compliant Host Controller;C:\Windows\system32\drivers\USBXHCI.SYS --> C:\Windows\system32\drivers\USBXHCI.SYS [?]
    S3 VerifierExt;VerifierExt;C:\Windows\system32\drivers\VerifierExt.sys --> C:\Windows\system32\drivers\VerifierExt.sys [?]
    S3 Vid;Vid;C:\Windows\system32\drivers\Vid.sys --> C:\Windows\system32\drivers\Vid.sys [?]
    S3 vmicheartbeat;Hyper-V Heartbeat Service;C:\Windows\system32\svchost.exe -k ICService [2012-2-17 24064]
    S3 vmickvpexchange;Hyper-V Data Exchange Service;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 vmicrdv;Hyper-V Remote Desktop Virtualization Service;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 vmicshutdown;Hyper-V Guest Shutdown Service;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 vmictimesync;Hyper-V Time Synchronization Service;C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted [2012-2-17 24064]
    S3 vmicvss;Hyper-V Volume Shadow Copy Requestor;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 vpci;Microsoft Hyper-V Virtual PCI Bus;C:\Windows\system32\drivers\vpci.sys --> C:\Windows\system32\drivers\vpci.sys [?]
    S3 vpcivsp;Microsoft Hyper-V PCI Server;C:\Windows\system32\drivers\vpcivsp.sys --> C:\Windows\system32\drivers\vpcivsp.sys [?]
    S3 VSTXRAID;VIA StorX Storage Controller Windows Driver;C:\Windows\system32\drivers\vstxraid.sys --> C:\Windows\system32\drivers\vstxraid.sys [?]
    S3 WdBoot;Windows Defender Boot Driver;C:\Windows\system32\drivers\WdBoot.sys --> C:\Windows\system32\drivers\WdBoot.sys [?]
    S3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\Windows\system32\Drivers\WdNisDrv.sys --> C:\Windows\system32\Drivers\WdNisDrv.sys [?]
    S3 WiaRpc;Still Image Acquisition Events;C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2012-2-17 24064]
    S3 WpdUpFltr;WPD Upper Class Filter Driver;C:\Windows\system32\drivers\WpdUpFltr.sys --> C:\Windows\system32\drivers\WpdUpFltr.sys [?]
    S3 WSService;Windows Store Service (WSService);C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2012-2-17 24064]
    S3 WUDFSensorLP;WUDFSensorLP;C:\Windows\system32\DRIVERS\WUDFRd.sys --> C:\Windows\system32\DRIVERS\WUDFRd.sys [?]
    S3 WUDFWpdFs;WUDFWpdFs;C:\Windows\system32\DRIVERS\WUDFRd.sys --> C:\Windows\system32\DRIVERS\WUDFRd.sys [?]
    S4 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]
    S4 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2012-2-17 281088]
    .
    =============== Created Last 30 ================
    .
    2012-04-02 05:03:54 388096 ----a-r- C:\Users\ToniJ\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2012-04-02 05:03:54 -------- d-----w- C:\Program Files (x86)\Trend Micro
    2012-04-02 04:45:37 -------- d-----w- C:\Users\ToniJ\AppData\Local\Halfbrick
    2012-04-02 04:43:40 -------- d-----w- C:\Users\ToniJ\AppData\Local\Intel
    2012-04-02 04:36:31 -------- d-----w- C:\Program Files (x86)\Fruit Ninja HD
    2012-04-02 04:36:25 -------- d-----w- C:\Extracted
    2012-04-01 21:12:37 -------- d-----w- C:\Program Files\HitmanPro
    2012-04-01 21:11:31 -------- d-----w- C:\ProgramData\HitmanPro
    2012-04-01 21:11:05 -------- d-----w- C:\ProgramData\Hitman Pro
    2012-04-01 06:47:47 7062 ----a-w- C:\Windows\SysWow64\audiopid.vxd
    2012-04-01 06:47:36 41984 ------w- C:\Windows\Ctregrun.exe
    2012-04-01 06:47:25 24576 ----a-r- C:\Windows\SysWow64\P1370Aor.dll
    2012-04-01 06:47:02 306688 ----a-w- C:\Windows\IsUninst.exe
    2012-04-01 06:46:50 24576 ------w- C:\Windows\SysWow64\CTWEBFUN.DLL
    2012-04-01 06:45:12 -------- d-----w- C:\Program Files (x86)\Creative
    2012-04-01 06:44:44 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
    2012-04-01 06:44:44 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
    2012-04-01 06:44:44 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
    2012-04-01 06:44:44 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
    2012-04-01 06:44:44 192512 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
    2012-04-01 06:44:43 729088 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
    2012-04-01 06:44:43 311428 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
    2012-04-01 06:44:43 188548 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
    2012-03-31 21:50:34 -------- d-----w- C:\Windows\pss
    2012-03-31 21:19:25 -------- d-----w- C:\Users\ToniJ\AppData\Local\{319F9542-7B77-11E1-826D-B8AC6F996F26}
    2012-03-31 21:18:59 -------- d-----w- C:\Users\ToniJ\AppData\Local\MSRebar
    2012-03-30 09:07:03 -------- d-----w- C:\Program Files (x86)\Foxy Games
    2012-03-30 09:07:00 -------- d-----w- C:\Downloads
    2012-03-30 01:57:53 328040 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10162.bin
    2012-03-24 08:14:07 -------- d-----w- C:\Program Files (x86)\Magical Jelly Bean
    2012-03-23 00:57:52 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\Foxit Software
    2012-03-21 21:58:38 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\SoftMaker
    2012-03-21 21:58:32 -------- d-----w- C:\Program Files (x86)\SoftMaker Viewer
    2012-03-21 21:58:16 98344 ----a-w- C:\Windows\unTMV.exe
    2012-03-21 08:48:30 8669240 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6233C0A3-7C9F-47F7-A439-374E31DBE292}\mpengine.dll
    2012-03-21 04:07:05 1282048 ----a-w- C:\Windows\System32\schedsvc.dll
    2012-03-19 23:36:59 -------- d-----w- C:\Program Files (x86)\Easy Icon Maker
    2012-03-19 23:27:11 -------- d-----w- C:\Program Files (x86)\Pic2Ico
    2012-03-19 05:25:13 23152 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2012-03-19 05:25:13 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2012-03-18 08:14:00 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-03-18 08:08:38 -------- d-----w- C:\Program Files (x86)\Yahoo!
    2012-03-17 05:15:30 -------- d-----w- C:\Program Files (x86)\ExpressPCB
    2012-03-17 05:15:15 -------- d-----w- C:\Users\ToniJ\AppData\Local\Downloaded Installations
    2012-03-17 00:10:06 -------- d-----w- C:\Program Files (x86)\Tor Browser
    2012-03-17 00:09:36 -------- d-----w- C:\Program Files (x86)\Tor
    2012-03-17 00:01:13 -------- d-----w- C:\Users\ToniJ\AppData\Local\Vidalia
    2012-03-16 23:50:41 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\tor
    2012-03-16 20:53:08 -------- d-----w- C:\Users\ToniJ\.swt
    2012-03-16 20:52:29 -------- d-----w- C:\Program Files (x86)\Conduit
    2012-03-16 20:52:28 -------- d-----w- C:\Users\ToniJ\AppData\Local\Conduit
    2012-03-16 20:52:28 -------- d-----w- C:\Program Files (x86)\Vuze_Remote
    2012-03-16 20:49:37 -------- d-----w- C:\ProgramData\Azureus
    2012-03-16 03:40:43 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\Azureus
    2012-03-15 04:56:38 -------- d-----w- C:\Program Files (x86)\Azureus
    2012-03-14 21:49:48 -------- d-----w- C:\Program Files (x86)\Tgp strip blackjack
    2012-03-14 20:47:57 -------- d-----w- C:\My Music
    2012-03-14 20:47:55 -------- d-----w- C:\Program Files (x86)\Common Files\xing shared
    2012-03-14 10:08:45 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\PDF Writer
    2012-03-14 10:08:45 -------- d-----w- C:\Users\ToniJ\AppData\Local\PDF Writer
    2012-03-14 10:08:45 -------- d-----w- C:\ProgramData\PDF Writer
    2012-03-14 10:05:48 227840 ----a-w- C:\Windows\SysWow64\bzFlRdr.dll
    2012-03-14 10:05:48 135168 ----a-w- C:\Windows\SysWow64\bzpdfc.dll
    2012-03-14 10:05:48 103424 ----a-w- C:\Windows\SysWow64\bzDCT.dll
    2012-03-14 10:05:48 -------- d-----w- C:\Program Files\Common Files\Bullzip
    2012-03-14 10:05:46 215040 ----a-w- C:\Windows\System32\bzpdf.dll
    2012-03-14 10:05:43 140288 ----a-w- C:\Windows\SysWow64\COMDLG32.OCX
    2012-03-14 10:05:43 1066176 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
    2012-03-14 10:05:43 -------- d-----w- C:\Program Files\Bullzip
    2012-03-14 09:34:17 8602168 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
    2012-03-14 09:21:17 -------- d-----w- C:\Program Files (x86)\Complitly Setup
    2012-03-14 09:10:56 -------- d-----w- C:\ProgramData\PEERNET
    2012-03-14 09:10:56 -------- d-----w- C:\Program Files (x86)\TIFF Image Printer 9.0
    2012-03-14 08:49:18 -------- d-----w- C:\Program Files (x86)\Ultra Image Printer
    2012-03-14 08:36:41 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\Zonora Technologies
    2012-03-14 08:34:53 -------- d-----w- C:\Program Files (x86)\Freecell Collection 7.0
    2012-03-14 08:23:05 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\BVS Solitaire Collection
    2012-03-14 08:23:05 -------- d-----w- C:\Program Files (x86)\BVS Solitaire Collection
    2012-03-14 08:17:25 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\Goodsol
    2012-03-14 08:17:19 -------- d-----w- C:\Program Files (x86)\FreeCell Wizard
    2012-03-14 08:08:23 -------- d-----w- C:\Program Files (x86)\directx
    2012-03-14 07:40:58 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\Malwarebytes
    2012-03-14 07:40:57 -------- d-----w- C:\ProgramData\Malwarebytes
    2012-03-13 22:33:03 -------- d-----w- C:\Program Files (x86)\FreeCell
    2012-03-13 22:25:16 -------- d-----w- C:\Program Files (x86)\Absolutist.com
    2012-03-13 18:56:45 68608 ----a-w- C:\Windows\System32\psmsrv.dll
    2012-03-13 18:56:34 9340416 ----a-w- C:\Windows\System32\twinui.dll
    2012-03-13 18:56:34 8273408 ----a-w- C:\Windows\SysWow64\twinui.dll
    2012-03-13 15:44:02 279656 ------w- C:\Windows\System32\MpSigStub.exe
    2012-03-13 15:36:06 94720 ----a-w- C:\Windows\System32\biwinrt.dll
    2012-03-13 15:36:06 72192 ----a-w- C:\Windows\SysWow64\biwinrt.dll
    2012-03-13 15:36:06 40960 ----a-w- C:\Windows\SysWow64\bgmhost.dll
    2012-03-13 08:18:52 48464 ----a-w- C:\Windows\System32\drivers\gligwhya.sys
    2012-03-13 08:10:47 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\ZapSpot
    2012-03-13 07:58:30 -------- d-----w- C:\Users\ToniJ\AppData\Local\Power2Go
    2012-03-13 07:25:31 -------- d-----w- C:\Program Files (x86)\SilverCreekCommonFiles
    2012-03-13 07:25:31 -------- d-----w- C:\Program Files (x86)\Ruckus Buck's Dangerous Mines
    2012-03-13 06:58:39 114 ----a-w- C:\Windows\Printdir.bat
    2012-03-13 06:44:59 -------- d-----w- C:\Amigaem
    2012-03-13 06:30:13 -------- d-----w- C:\Temp
    2012-03-13 06:29:37 59904 ----a-w- C:\Windows\SysWow64\wbemdisp.tlb
    2012-03-13 06:29:37 102912 ----a-w- C:\Windows\SysWow64\Vb6stkit.dll
    2012-03-13 06:29:37 102160 ----a-w- C:\Windows\SysWow64\VB6KO.DLL
    2012-03-13 06:29:36 16384 ----a-w- C:\Windows\SysWow64\lgfwunis.exe
    2012-03-13 06:29:36 115016 ----a-w- C:\Windows\SysWow64\MSINET.OCX
    2012-03-13 06:29:36 -------- d-----w- C:\Program Files (x86)\lg_fwupdate
    2012-03-13 06:27:21 -------- d-----w- C:\Program Files (x86)\Common Files\CyberLink
    2012-03-13 06:26:19 29480 ----a-w- C:\Windows\SysWow64\msxml3a.dll
    2012-03-13 06:25:02 -------- d-----w- C:\Users\ToniJ\AppData\Local\Cyberlink
    2012-03-13 06:22:50 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
    2012-03-13 06:22:50 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
    2012-03-13 06:22:50 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
    2012-03-13 06:22:50 225280 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
    2012-03-13 06:22:50 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
    2012-03-13 01:41:34 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
    2012-03-13 01:41:31 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
    2012-03-13 01:41:09 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\DAEMON Tools Lite
    2012-03-13 01:41:07 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
    2012-03-13 01:07:15 -------- d-----w- C:\Program Files (x86)\Foxit Software
    2012-03-13 00:57:33 -------- d-----w- C:\Program Files\PeerBlock
    2012-03-12 22:53:02 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
    2012-03-12 22:53:02 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
    2012-03-12 22:53:02 -------- d-----w- C:\Program Files (x86)\AMD APP
    2012-03-12 22:52:56 -------- d-----w- C:\ProgramData\AMD
    2012-03-12 22:52:54 -------- d-----w- C:\Program Files (x86)\ATI Technologies
    2012-03-12 22:52:46 -------- d-----w- C:\Program Files\ATI Technologies
    2012-03-12 22:52:41 -------- d-----w- C:\Program Files\ATI
    2012-03-12 22:52:04 -------- d-----w- C:\AMD
    2012-03-12 22:32:46 -------- d-----w- C:\Program Files (x86)\BeeThink IP_Blocker_1.2
    2012-03-12 22:22:57 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\ACD Systems
    2012-03-12 22:22:57 -------- d-----w- C:\Users\ToniJ\AppData\Local\ACDSee
    2012-03-12 22:15:23 -------- d-----w- C:\Users\ToniJ\AppData\Local\DevExtras
    2012-03-12 22:15:21 -------- d-----w- C:\Program Files (x86)\DevExtras
    2012-03-12 22:11:35 -------- d-----w- C:\Program Files (x86)\All in One Converter
    2012-03-12 22:04:59 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\WinAVI
    2012-03-12 22:04:59 -------- d-----w- C:\Users\ToniJ\AppData\Local\WinAVI
    2012-03-12 22:04:55 -------- d-----w- C:\Program Files (x86)\WinAVI
    2012-03-12 21:32:37 -------- d-----w- C:\Users\ToniJ\AppData\Local\Diagnostics
    2012-03-12 20:51:26 -------- d-----w- C:\ProgramData\ACD Systems
    2012-03-12 20:51:25 -------- d-----w- C:\Program Files (x86)\Common Files\ACD Systems
    2012-03-12 20:51:25 -------- d-----w- C:\Program Files (x86)\ACD Systems
    2012-03-12 20:51:04 -------- d-----w- C:\Windows\Downloaded Installations
    2012-03-12 13:04:38 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\uTorrent
    2012-03-12 12:54:36 -------- d-----w- C:\Program Files (x86)\Everything
    2012-03-12 12:15:35 -------- d-----w- C:\Log
    2012-03-12 12:14:31 28664 ----a-w- C:\Windows\System32\Ckldrv.sys
    2012-03-12 12:14:31 27648 ----a-r- C:\Windows\Setup_ck.exe
    2012-03-12 12:14:31 18432 ----a-w- C:\Windows\Setup_ck.dll
    2012-03-12 12:14:31 165888 ----a-w- C:\Windows\Ckconfig.exe
    2012-03-12 12:14:31 122880 ----a-w- C:\Windows\System32\Crypserv.exe
    2012-03-12 12:14:31 11776 ----a-w- C:\Windows\Ckrfresh.exe
    2012-03-12 12:14:28 -------- d-----w- C:\Program Files (x86)\Stellar Phoenix NTFS Data Recovery
    2012-03-12 12:06:32 -------- d-----w- C:\Program Files (x86)\GetData
    2012-03-12 12:00:53 -------- d-----w- C:\Windows\Panther
    2012-03-12 11:59:03 -------- d-----w- C:\ProgramData\Nero
    2012-03-12 11:58:39 -------- d-----w- C:\Program Files (x86)\Nero
    2012-03-12 11:52:44 779056 ----a-w- C:\Windows\SysWow64\PresentationNative_v0300.dll
    2012-03-12 11:52:44 35600 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
    2012-03-12 11:52:44 102728 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
    2012-03-12 11:52:42 35600 ----a-w- C:\Windows\System32\TsWpfWrp.exe
    2012-03-12 11:52:41 124232 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
    2012-03-12 11:52:41 1166640 ----a-w- C:\Windows\System32\PresentationNative_v0300.dll
    2012-03-12 11:50:49 1974616 ----a-w- C:\Windows\SysWow64\D3DCompiler_42.dll
    2012-03-12 11:50:48 1892184 ----a-w- C:\Windows\SysWow64\D3DX9_42.dll
    2012-03-12 11:50:46 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll
    2012-03-12 11:50:44 3727720 ----a-w- C:\Windows\SysWow64\d3dx9_35.dll
    2012-03-12 11:50:42 3497832 ----a-w- C:\Windows\SysWow64\d3dx9_34.dll
    2012-03-12 11:47:09 -------- d-----w- C:\Program Files (x86)\uTorrent
    2012-03-12 11:42:31 -------- d-----w- C:\Users\ToniJ\AppData\Local\Google
    2012-03-12 11:40:33 -------- d-----w- C:\Users\ToniJ\AppData\Local\Thunderbird
    2012-03-12 11:18:13 -------- d-----w- C:\Program Files (x86)\DAMN NFO Viewer
    2012-03-12 11:17:44 -------- d-----w- C:\Program Files (x86)\VideoLAN
    2012-03-12 11:17:28 -------- d-----w- C:\Users\ToniJ\AppData\Roaming\Win7codecs
    2012-03-12 11:17:23 -------- d-----w- C:\Program Files (x86)\Win7codecs
    2012-03-12 11:17:22 -------- d-----w- C:\ProgramData\Win7codecs
    2012-03-12 11:16:35 411368 ----a-w- C:\Windows\SysWow64\deploytk.dll
    2012-03-12 11:05:57 -------- d-sh--w- C:\Recovery
    2012-03-12 11:02:27 0 ----a-w- C:\Windows\ativpsrm.bin
    .
    ==================== Find3M ====================
    .
    2012-02-18 10:01:35 5120 ----a-w- C:\Windows\SysWow64\drivers\en-US\fwpkclnt.sys.mui
    2012-02-18 10:01:24 9728 ----a-w- C:\Windows\SysWow64\drivers\en-US\NdisImPlatform.sys.mui
    2012-02-18 10:01:24 5632 ----a-w- C:\Windows\SysWow64\drivers\en-US\ndiscap.sys.mui
    2012-02-18 09:07:13 170496 ----a-w- C:\Windows\SysWow64\msclmd.dll
    2012-02-18 09:07:12 23040 ----a-w- C:\Windows\System32\drivers\secdrv.sys
    2012-02-18 09:07:11 186368 ----a-w- C:\Windows\System32\msclmd.dll
    2012-02-18 07:51:22 122368 ----a-w- C:\Windows\System32\VmHostAI.dll
    2012-02-18 07:51:21 142848 ----a-w- C:\Windows\System32\tssdisai.dll
    2012-02-18 07:51:21 135680 ----a-w- C:\Windows\System32\appserverai.dll
    2012-02-18 07:51:21 127488 ----a-w- C:\Windows\System32\RDWebAI.dll
    2012-02-18 07:51:14 140800 ----a-w- C:\Windows\System32\poqexec.exe
    2012-02-18 07:51:11 125952 ----a-w- C:\Windows\SysWow64\poqexec.exe
    2012-02-18 07:47:13 28896 ----a-w- C:\Windows\System32\PrintDialogHost.exe
    2012-02-18 07:31:00 564520 ----a-w- C:\Windows\System32\drivers\cng.sys
    2012-02-18 07:31:00 369768 ----a-w- C:\Windows\System32\bcryptprimitives.dll
    2012-02-18 07:31:00 30976 ----a-w- C:\Windows\System32\LicensingUI.exe
    2012-02-18 07:31:00 284568 ----a-w- C:\Windows\System32\rsaenh.dll
    2012-02-18 07:31:00 172344 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
    2012-02-18 07:31:00 112440 ----a-w- C:\Windows\System32\consent.exe
    2012-02-18 07:31:00 103232 ----a-w- C:\Windows\System32\AuthHost.exe
    2012-02-18 07:30:59 189528 ----a-w- C:\Windows\System32\dssenh.dll
    2012-02-18 07:30:58 72776 ----a-w- C:\Windows\System32\appidapi.dll
    2012-02-18 07:30:46 180536 ----a-w- C:\Windows\System32\basecsp.dll
    2012-02-18 07:29:19 66360 ----a-w- C:\Windows\System32\drivers\vpci.sys
    2012-02-18 07:29:19 481080 ----a-w- C:\Windows\System32\drivers\vhdmp.sys
    2012-02-18 07:29:19 36152 ----a-w- C:\Windows\System32\drivers\vdrvroot.sys
    2012-02-18 07:29:19 19256 ----a-w- C:\Windows\System32\kdhvnet.dll
    2012-02-18 07:29:19 19256 ----a-w- C:\Windows\System32\kdhv1394.dll
    2012-02-18 07:29:06 83120 ----a-w- C:\Windows\System32\drivers\vmbkmcl.sys
    2012-02-18 07:29:06 31920 ----a-w- C:\Windows\System32\drivers\storvsc.sys
    2012-02-18 07:29:06 24752 ----a-w- C:\Windows\System32\kdvm.dll
    2012-02-18 07:29:06 132784 ----a-w- C:\Windows\System32\drivers\vmbus.sys
    2012-02-18 07:29:05 62640 ----a-w- C:\Windows\System32\drivers\winhv.sys
    2012-02-18 07:29:05 57008 ----a-w- C:\Windows\System32\drivers\Synth3dVsc.sys
    2012-02-18 07:29:05 40624 ----a-w- C:\Windows\System32\drivers\vmstorfl.sys
    2012-02-18 07:28:10 23552 ----a-w- C:\Windows\System32\dmvscres.dll
    2012-02-18 07:28:05 23040 ----a-w- C:\Windows\System32\vmbusres.dll
    2012-02-18 07:28:01 135168 ----a-w- C:\Windows\System32\vmicres.dll
    2012-02-18 07:27:53 36352 ----a-w- C:\Windows\System32\vmstorfltres.dll
    2012-02-18 07:23:52 41784 ----a-w- C:\Windows\System32\apisetschema.dll
    2012-02-18 07:23:36 290816 ----a-w- C:\Windows\System32\drivers\BrSerId.sys
    2012-02-18 07:21:55 73832 ----a-w- C:\Windows\System32\DevicePairingWizard.exe
    2012-02-18 07:21:55 52664 ----a-w- C:\Windows\System32\SystemSettingsRemoveDevice.exe
    2012-02-18 07:21:55 2355208 ----a-w- C:\Windows\explorer.exe
    2012-02-18 07:21:55 22168 ----a-w- C:\Windows\System32\PurchaseWindowsLicense.exe
    2012-02-18 07:21:55 1798928 ----a-w- C:\Windows\System32\DisplaySwitch.exe
    2012-02-18 07:21:54 87256 ----a-w- C:\Windows\System32\OpenWith.exe
    2012-02-18 07:21:54 33064 ----a-w- C:\Windows\System32\CredentialUIBroker.exe
    2012-02-18 07:21:54 27904 ----a-w- C:\Windows\System32\PickerHost.exe
    2012-02-18 07:19:15 36152 ----a-w- C:\Windows\System32\drivers\terminpt.sys
    2012-02-18 07:18:50 199840 ----a-w- C:\Windows\System32\wkspbroker.exe
    2012-02-18 07:17:43 32568 ----a-w- C:\Windows\System32\drivers\wimmount.sys
    2012-02-18 07:17:43 217912 ----a-w- C:\Windows\System32\drivers\rdyboost.sys
    2012-02-18 07:17:43 21304 ----a-w- C:\Windows\System32\drivers\tbs.sys
    2012-02-18 07:17:43 170296 ----a-w- C:\Windows\System32\drivers\sdbus.sys
    2012-02-18 07:17:43 142648 ----a-w- C:\Windows\System32\drivers\tpm.sys
    2012-02-18 07:17:37 62976 ----a-w- C:\Windows\System32\wwapi.dll
    2012-02-18 07:17:08 897536 ----a-w- C:\Windows\System32\fhuxpresentation.dll
    2012-02-18 07:17:08 81920 ----a-w- C:\Windows\System32\fhuxgraphics.dll
    2012-02-18 07:17:08 672768 ----a-w- C:\Windows\System32\FileHistory.exe
    2012-02-18 07:17:08 43008 ----a-w- C:\Windows\System32\fhuxcommon.dll
    2012-02-18 07:17:08 16896 ----a-w- C:\Windows\System32\fhuxapi.dll
    2012-02-18 07:17:08 124416 ----a-w- C:\Windows\System32\fhuxadapter.dll
    2012-02-18 07:16:32 236344 ----a-w- C:\Windows\System32\drivers\pcmcia.sys
    2012-02-18 07:16:11 26936 ----a-w- C:\Windows\System32\SysResetErr.exe
    2012-02-18 07:14:36 107832 ----a-w- C:\Windows\System32\drivers\sbp2port.sys
    2012-02-18 07:13:52 84280 ----a-w- C:\Windows\System32\drivers\volmgr.sys
    2012-02-18 07:13:52 375608 ----a-w- C:\Windows\System32\drivers\volmgrx.sys
    2012-02-18 07:13:52 336184 ----a-w- C:\Windows\System32\drivers\volsnap.sys
    2012-02-18 07:13:51 23352 ----a-w- C:\Windows\System32\drivers\wd.sys
    2012-02-18 07:13:16 984448 ----a-w- C:\Windows\System32\winresume.efi
    2012-02-18 07:13:16 865128 ----a-w- C:\Windows\System32\winresume.exe
    2012-02-18 07:13:16 1147128 ----a-w- C:\Windows\System32\winload.efi
    2012-02-18 07:13:16 1022144 ----a-w- C:\Windows\System32\winload.exe
    2012-02-18 07:10:29 1153200 ----a-w- C:\Windows\System32\drmv2clt.dll
    2012-02-18 07:10:14 156672 ----a-w- C:\Windows\System32\Windows.Help.Runtime.dll
    2012-02-18 07:06:31 295736 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
    2012-02-18 07:06:30 1420600 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
    2012-02-18 07:05:37 431160 ----a-w- C:\Windows\System32\WerFault.exe
    2012-02-18 07:05:03 198656 ----a-w- C:\Windows\System32\cdd.dll
    2012-02-18 07:02:17 51712 ----a-w- C:\Windows\System32\NAPCRYPT.DLL
    2012-02-18 07:02:17 128000 ----a-w- C:\Windows\System32\NAPHLPR.DLL
    2012-02-18 07:02:16 5125120 ----a-w- C:\Windows\System32\AuthFWSnapin.dll
    2012-02-18 07:02:15 134656 ----a-w- C:\Windows\System32\dnscmmc.dll
    2012-02-18 07:02:15 114176 ----a-w- C:\Windows\System32\AuthFWWizFwk.dll
    2012-02-18 07:01:20 99640 ----a-w- C:\Windows\System32\drivers\WdNisDrv.sys
    2012-02-18 07:01:20 232760 ----a-w- C:\Windows\System32\drivers\WdFilter.sys
    2012-02-18 07:01:10 34160 ----a-w- C:\Windows\System32\drivers\WdBoot.sys
    2012-02-18 07:00:10 91960 ----a-w- C:\Windows\System32\drivers\wfplwfs.sys
    2012-02-18 06:39:38 59704 ----a-w- C:\Windows\SysWow64\PSHED.DLL
    2012-02-18 06:39:38 5568312 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    2012-02-18 06:39:33 23864 ----a-w- C:\Windows\SysWow64\BOOTVID.DLL
    2012-02-18 06:38:58 1416736 ----a-w- C:\Windows\SysWow64\ntdll.dll
    2012-02-18 06:36:46 1667584 ----a-w- C:\Windows\SysWow64\PrintConfig.dll
    2012-02-18 06:34:23 210152 ----a-w- C:\Windows\SysWow64\wscapi.dll
    2012-02-18 06:29:21 379016 ----a-w- C:\Windows\SysWow64\WerFault.exe
    2012-02-18 06:25:13 154864 ----a-w- C:\Windows\SysWow64\dssenh.dll
    2012-02-18 06:25:12 62424 ----a-w- C:\Windows\SysWow64\appidapi.dll
    2012-02-18 06:25:12 330456 ----a-w- C:\Windows\SysWow64\bcryptprimitives.dll
    2012-02-18 06:25:12 248328 ----a-w- C:\Windows\SysWow64\rsaenh.dll
    .
    ============= FINISH: 0:12:59.23 ===============
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1047577