1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

HiJack this results for Review Please

Discussion in 'Virus & Other Malware Removal' started by kenmart, Dec 20, 2011.

Thread Status:
Not open for further replies.
  1. kenmart

    kenmart Thread Starter

    Joined:
    Jan 1, 2006
    Messages:
    3
    Hello, I periodically have some issues with my computer that I attribute to some of the files I download. I am double checking to see if there is anything in my system I may not have addressed that could affect my system. I am running a Gateway 64 bit system running Windows 7 Home Edition. I have two 1 T internation hard drives and 1 2T external hard drive I use as a back up.
    I have run the HiJack This Program and the DDS program and do not have a clue as to what I am looking at. Could someone please review these results and let me know if there is anything that I need to address? I appreciate any and all help I may receive.:rolleyes::eek:

    Problem 1, I can not get the results to write into notepad and I can not copy them to post here for HiJack This. I am running a 64bit system.
    Below is the DDS results.

    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29
    Run by Ken at 5:08:11 on 2011-12-20
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8157.5247 [GMT -6:00]
    .
    AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
    AV: Sunbelt VIPRE *Enabled/Updated* {BE5DD172-7F42-7948-1A60-E6A720288F81}
    SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
    SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Sunbelt VIPRE *Enabled/Updated* {053C3096-5978-76C6-20D0-DDD55BAFC53C}
    FW: Sunbelt VIPRE *Disabled* {86665057-352D-7810-313F-4F92DEFBC8FA}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files\LSI SoftModem\agr64svc.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Windows\SysWOW64\NLSSRV32.EXE
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe
    C:\Program Files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe
    C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
    C:\Windows\system32\svchost.exe -k HPService
    C:\Windows\system32\WUDFHost.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files (x86)\Nero\Update\NASvc.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files\Microsoft Security Client\msseces.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTuner.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files (x86)\ArcSoft\TotalMedia Backup\uBBMonitor.exe
    C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
    C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe
    C:\Program Files (x86)\Winamp\winampa.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\system32\DllHost.exe
    C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    c:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe
    C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    c:\program files (x86)\winamp toolbar\winamptbServer.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uSearch Page =
    uStart Page = hxxp://www.google.com/
    uSearch Bar =
    uDefault_Page_URL = hxxp://google.dospop.com
    mStart Page = hxxp://www.yahoo.com
    mDefault_Page_URL = hxxp://www.yahoo.com
    uInternet Settings,ProxyServer = http=;ftp=;https=;
    uURLSearchHooks: H - No File
    BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: Winamp Toolbar Loader: {25cee8ec-5730-41bc-8b58-22ddc8ab8c20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
    BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    BHO: {de4e75d3-60aa-4f02-a0e4-c8a40576574c} - No File
    BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    TB: Free Desktop Clock DB Toolbar: {338b4dfe-2e2c-4338-9e41-e176d497299e} -
    TB: Winamp Toolbar: {ebf2ba02-9094-4c5a-858b-bb198f3d8de2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    TB: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
    EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
    uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    uRunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11c_Plugin.exe -update plugin
    mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
    mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
    mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
    mRun: [SBAMTray] "C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe"
    mRun: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
    dRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\TOTALM~1.LNK - C:\Program Files (x86)\ArcSoft\TotalMedia Backup\uBBMonitor.exe
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    IE: E&xport to Microsoft Excel - C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000
    IE: Save Page As PDF ... - file://C:\Program Files (x86)\Nitro PDF\PDF Download\nitroweb.htm
    IE: Se&nd to OneNote - C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105
    IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    Trusted Zone: kickasstorrents.com\www
    Trusted Zone: thepiratebay.org
    DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
    DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
    DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} - hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
    DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    TCP: DhcpNameServer = 68.87.72.134 68.87.77.134 192.168.1.1 68.87.72.134 68.87.77.134
    TCP: Interfaces\{08B261A1-50C3-4310-BB64-4E4CB0B2698F} : DhcpNameServer = 68.87.72.134 68.87.77.134 192.168.1.1 68.87.72.134 68.87.77.134
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
    BHO-X64: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO-X64: 0x1 - No File
    BHO-X64: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
    BHO-X64: HP Print Enhancer - No File
    BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO-X64: AcroIEHelperStub - No File
    BHO-X64: Winamp Toolbar Loader: {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    BHO-X64: Winamp Toolbar Loader - No File
    BHO-X64: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    BHO-X64: Search Helper - No File
    BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
    BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO-X64: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
    BHO-X64: Searchqu Toolbar - No File
    BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
    BHO-X64: URLRedirectionBHO - No File
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    BHO-X64: {de4e75d3-60aa-4f02-a0e4-c8a40576574c} - No File
    BHO-X64: BHO Project - No File
    BHO-X64: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    BHO-X64: SmartSelect - No File
    BHO-X64: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    BHO-X64: HP Smart BHO Class - No File
    TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    TB-X64: Free Desktop Clock DB Toolbar: {338B4DFE-2E2C-4338-9E41-E176D497299E} -
    TB-X64: Winamp Toolbar: {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    TB-X64: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
    EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
    mRun-x64: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
    mRun-x64: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
    mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    mRun-x64: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
    mRun-x64: [SBAMTray] "C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe"
    mRun-x64: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun-x64: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun-x64: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
    SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
    Hosts: 127.0.0.1 www.spywareinfo.com
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\a8y4ukv5.default\
    FF - prefs.js: browser.search.selectedEngine - Search Results
    FF - prefs.js: browser.startup.homepage - hxxp://www.searchqu.com/406
    FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ffb&appid=113&systemid=406&sr=0&q=
    FF - plugin: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL
    FF - plugin: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL
    FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll
    FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    .
    ---- FIREFOX POLICIES ----
    FF - user.js: network.protocol-handler.warn-external.dnupdate - false
    ============= SERVICES / DRIVERS ===============
    .
    R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
    R1 SbFw;SbFw;C:\Windows\system32\drivers\SbFw.sys --> C:\Windows\system32\drivers\SbFw.sys [?]
    R1 SBRE;SBRE;C:\Windows\System32\drivers\SBREDrv.sys [2011-4-29 101720]
    R1 SbTis;SbTis;C:\Windows\system32\drivers\sbtis.sys --> C:\Windows\system32\drivers\sbtis.sys [?]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
    R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]
    R2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver;C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerProcessMonitor64.sys [2011-10-8 12824]
    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-9-30 366152]
    R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-5-4 503080]
    R2 nlsX86cc;NLS Service;C:\Windows\SysWOW64\NLSSRV32.EXE [2010-2-2 65856]
    R2 SBAMSvc;VIPRE Antivirus Premium;C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe [2011-5-11 2804280]
    R2 sbapifs;sbapifs;C:\Windows\system32\DRIVERS\sbapifs.sys --> C:\Windows\system32\DRIVERS\sbapifs.sys [?]
    R2 SBPIMSvc;SB Recovery Service;C:\Program Files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe [2011-5-11 181584]
    R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-4-22 92592]
    R2 WO_LiveService;Ashampoo LiveTuner Service;C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe [2011-10-8 885160]
    R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;C:\Windows\system32\DRIVERS\e1y62x64.sys --> C:\Windows\system32\DRIVERS\e1y62x64.sys [?]
    R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;C:\Windows\system32\drivers\IntcHdmi.sys --> C:\Windows\system32\drivers\IntcHdmi.sys [?]
    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
    R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
    R3 netr7364;RT73 USB Extensible Wireless LAN Card Driver;C:\Windows\system32\DRIVERS\netr7364.sys --> C:\Windows\system32\DRIVERS\netr7364.sys [?]
    R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
    R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
    R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
    R3 SBFWIMCLMP;Sunbelt Software Firewall NDIS IM Filter Miniport;C:\Windows\system32\DRIVERS\SBFWIM.sys --> C:\Windows\system32\DRIVERS\SBFWIM.sys [?]
    R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
    R3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\system32\DRIVERS\WSDPrint.sys --> C:\Windows\system32\DRIVERS\WSDPrint.sys [?]
    S2 AMPingService;AMPingService;C:\Users\Ken\AppData\Local\Temp\AMPing.exe --> C:\Users\Ken\AppData\Local\Temp\AMPing.exe [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc --> C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [?]
    S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]
    S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
    S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc --> C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [?]
    S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]
    S3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Service;C:\Windows\system32\DRIVERS\sbfwim.sys --> C:\Windows\system32\DRIVERS\sbfwim.sys [?]
    S3 sbhips;sbhips;C:\Windows\system32\drivers\sbhips.sys --> C:\Windows\system32\drivers\sbhips.sys [?]
    S3 sscebus;SAMSUNG USB Composite Device V2 driver (WDM);C:\Windows\system32\DRIVERS\sscebus.sys --> C:\Windows\system32\DRIVERS\sscebus.sys [?]
    S3 sscemdfl;SAMSUNG Mobile Modem V2 Filter;C:\Windows\system32\DRIVERS\sscemdfl.sys --> C:\Windows\system32\DRIVERS\sscemdfl.sys [?]
    S3 sscemdm;SAMSUNG Mobile Modem V2 Drivers;C:\Windows\system32\DRIVERS\sscemdm.sys --> C:\Windows\system32\DRIVERS\sscemdm.sys [?]
    S3 TFsExDisk;TFsExDisk;C:\Windows\System32\drivers\TFsExDisk.Sys [2011-5-21 16448]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
    S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys --> C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys [?]
    S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
    .
    =============== File Associations ===============
    .
    .txt=
    .
    =============== Created Last 30 ================
    .
    2011-12-20 11:04:17 -------- d-----w- C:\Users\Ken\AppData\Local\{79AA8B78-EF59-4162-90E9-98215F52613D}
    2011-12-20 11:04:06 -------- d-----w- C:\Users\Ken\AppData\Local\{1518336F-C839-4DCA-B3B7-08306E535935}
    2011-12-20 08:02:45 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4FDCCC6C-F579-4F31-BFAE-EEB5C639D7CF}\offreg.dll
    2011-12-20 08:02:41 8822856 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4FDCCC6C-F579-4F31-BFAE-EEB5C639D7CF}\mpengine.dll
    2011-12-19 15:27:42 388096 ----a-r- C:\Users\Ken\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-12-19 15:27:42 -------- d-----w- C:\Program Files (x86)\Trend Micro
    2011-12-19 15:10:43 -------- d-----w- C:\Users\Ken\AppData\Local\{8348F948-6095-4533-AD15-78CDA712AC25}
    2011-12-19 15:10:32 -------- d-----w- C:\Users\Ken\AppData\Local\{C6B42C0B-224E-416B-84DA-A735D9A7EA4A}
    2011-12-18 21:44:02 -------- d-----w- C:\Users\Ken\AppData\Local\{468D8EBB-95AD-4607-A9C1-CF89E2A9684D}
    2011-12-18 21:43:51 -------- d-----w- C:\Users\Ken\AppData\Local\{050B4D50-15BF-4920-B11B-091C24A0D009}
    2011-12-18 03:21:30 -------- d-----w- C:\Users\Ken\AppData\Local\{A4A90ED4-B425-45D2-8CEA-ED238B49CA08}
    2011-12-18 03:21:20 -------- d-----w- C:\Users\Ken\AppData\Local\{4B9F0019-CBFD-43E6-8774-27240350FE3F}
    2011-12-17 00:23:52 -------- d-----w- C:\Users\Ken\AppData\Local\{13224798-F5E5-4D76-A1D4-D0A5A5DD8F7A}
    2011-12-17 00:23:42 -------- d-----w- C:\Users\Ken\AppData\Local\{43E2B25D-B11B-492A-9B6B-9071F80A8EA4}
    2011-12-16 11:44:12 -------- d-----w- C:\Users\Ken\AppData\Local\{4DB38BEE-DE14-4057-8FF7-E5F275CE1AFB}
    2011-12-16 11:44:02 -------- d-----w- C:\Users\Ken\AppData\Local\{4BA64DCB-5773-48B0-8729-B8663676E925}
    2011-12-15 14:51:56 134104 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
    2011-12-15 12:43:33 -------- d-----w- C:\Users\Ken\AppData\Local\{EFE6E7A8-6A57-45D9-B3D4-A9673ABFD7A1}
    2011-12-15 12:43:22 -------- d-----w- C:\Users\Ken\AppData\Local\{92523559-5CD4-413C-A622-C490935D6FF9}
    2011-12-15 00:05:46 -------- d-----w- C:\Users\Ken\AppData\Local\{4C2134F9-93B3-40D4-800E-9A64131FE63E}
    2011-12-15 00:05:36 -------- d-----w- C:\Users\Ken\AppData\Local\{DD13B8E1-FF8E-4D29-BC8F-7BEF0BCC3488}
    2011-12-14 23:37:59 -------- d-----w- C:\Users\Ken\Logitech
    2011-12-14 23:36:32 -------- d-----w- C:\Program Files (x86)\Common Files\Remote Control Software Common
    2011-12-14 22:41:09 -------- d-----w- C:\Program Files (x86)\Common Files\Remote Control USB Driver
    2011-12-14 11:27:39 -------- d-----w- C:\Users\Ken\AppData\Local\{C9EC3C02-5170-4084-8751-EC1FBF982C78}
    2011-12-14 11:27:28 -------- d-----w- C:\Users\Ken\AppData\Local\{8D7A9BF7-57CC-4FD4-B6DA-4DC3E5E10D15}
    2011-12-14 09:13:05 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2011-12-14 09:13:05 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
    2011-12-14 09:12:24 141112 ----a-w- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
    2011-12-14 09:12:08 174392 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll
    2011-12-14 09:11:19 304640 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
    2011-12-14 09:11:03 194048 ----a-w- C:\Program Files (x86)\Internet Explorer\IEShims.dll
    2011-12-14 09:08:43 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll
    2011-12-14 09:08:35 1390080 ----a-w- C:\Windows\System32\wininet.dll
    2011-12-14 09:08:11 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2011-12-14 09:07:54 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl
    2011-12-14 09:07:46 2309120 ----a-w- C:\Windows\System32\jscript9.dll
    2011-12-14 09:07:22 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2011-12-14 09:05:45 678912 ----a-w- C:\Program Files (x86)\Internet Explorer\iedvtool.dll
    2011-12-14 09:05:28 887296 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll
    2011-12-13 20:33:01 43520 ----a-w- C:\Windows\System32\csrsrv.dll
    2011-12-13 20:31:53 3145216 ----a-w- C:\Windows\System32\win32k.sys
    2011-12-13 20:31:20 723456 ----a-w- C:\Windows\System32\EncDec.dll
    2011-12-13 20:30:47 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
    2011-12-13 20:29:23 2048 ----a-w- C:\Windows\System32\tzres.dll
    2011-12-13 20:29:15 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
    2011-12-13 11:19:53 -------- d-----w- C:\Users\Ken\AppData\Local\{B7D2D3BE-DC3A-4432-93D1-B21BCF0A8498}
    2011-12-13 11:19:42 -------- d-----w- C:\Users\Ken\AppData\Local\{93A10D8E-F2EB-45A6-98D9-888EF1DCED0A}
    2011-12-12 14:02:21 -------- d-----w- C:\Users\Ken\AppData\Local\{03A0FEDB-3FD2-45D8-92C4-C865C750FA65}
    2011-12-12 14:02:11 -------- d-----w- C:\Users\Ken\AppData\Local\{3B1CE729-7688-487C-9BE0-F3D54F721441}
    2011-12-12 01:50:11 -------- d-----w- C:\Users\Ken\AppData\Local\{19612C30-7F4B-4AE9-8C28-EF7E19168630}
    2011-12-12 01:50:00 -------- d-----w- C:\Users\Ken\AppData\Local\{56F54EA2-FFF2-43DB-8BAC-102C86756101}
    2011-12-12 01:23:08 -------- d-----w- C:\ProgramData\boost_interprocess
    2011-12-11 13:20:47 -------- d-----w- C:\Users\Ken\AppData\Local\{F6620EA2-8BD1-4960-8B0C-1D1C971DDDCF}
    2011-12-11 13:20:37 -------- d-----w- C:\Users\Ken\AppData\Local\{55DAA76F-19BF-435C-9684-D2A1CE4518C9}
    2011-12-10 13:34:49 -------- d-----w- C:\Users\Ken\AppData\Local\{3E2CA5D2-7919-406A-9CEE-9BB24942EA52}
    2011-12-10 13:34:39 -------- d-----w- C:\Users\Ken\AppData\Local\{F8C1F2A7-4CEC-4585-8501-9324A21EBFD7}
    2011-12-09 17:23:32 12800 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
    2011-12-09 12:26:17 -------- d-----w- C:\Users\Ken\AppData\Local\{590DF8F1-AFB6-4C4D-A526-27B6735AF081}
    2011-12-09 12:26:07 -------- d-----w- C:\Users\Ken\AppData\Local\{B582885F-791B-4D53-BCB1-3C7A894A332E}
    2011-12-08 17:25:24 -------- d-----w- C:\Users\Ken\AppData\Local\{11DE8EEE-2BAE-4ED6-A2DD-10A4673A50F4}
    2011-12-08 17:25:14 -------- d-----w- C:\Users\Ken\AppData\Local\{E13D8A6E-F6FB-4D56-89A9-7EC1F1376F1A}
    2011-12-08 04:29:00 -------- d-----w- C:\Users\Ken\AppData\Local\{DE5158D9-3B49-467E-91B6-5929E7691286}
    2011-12-08 04:28:50 -------- d-----w- C:\Users\Ken\AppData\Local\{B8941932-B6FC-477A-9415-C6940F8B7BFA}
    2011-12-07 23:02:44 -------- d-----w- C:\Users\Ken\AppData\Local\Winamp Toolbar
    2011-12-07 22:04:29 -------- d-----w- C:\Program Files (x86)\Winamp Detect
    2011-12-07 22:04:22 -------- d-----w- C:\ProgramData\Winamp Toolbar
    2011-12-07 22:04:22 -------- d-----w- C:\Program Files (x86)\Winamp Toolbar
    2011-12-07 22:04:14 -------- d-----w- C:\Program Files (x86)\Common Files\Software Update Utility
    2011-12-07 21:23:35 -------- d-sh--w- C:\ArcBackupDeviceInfo
    2011-12-07 21:23:14 -------- d-----w- C:\Users\Ken\AppData\Local\Programs
    2011-12-07 15:01:24 -------- d-----w- C:\Users\Ken\AppData\Local\{BD674367-85FD-4AE5-BD2E-D73B771E1C94}
    2011-12-07 15:01:14 -------- d-----w- C:\Users\Ken\AppData\Local\{51167A2F-F601-4458-A960-23B7DCA90CEA}
    2011-12-06 23:08:17 -------- d-----w- C:\Users\Ken\AppData\Local\{17382E45-7A95-4F8C-B13A-EA17575B6C1C}
    2011-12-06 23:08:06 -------- d-----w- C:\Users\Ken\AppData\Local\{F0B9ED9E-10C2-434C-B201-EDA504D84636}
    2011-12-06 11:38:31 -------- d-----w- C:\Program Files (x86)\FreeRIP3
    2011-12-06 11:07:40 -------- d-----w- C:\Users\Ken\AppData\Local\{A39A313C-7483-4F1F-BF19-405C64038964}
    2011-12-06 11:07:31 -------- d-----w- C:\Users\Ken\AppData\Local\{CAB1B1AF-1620-44E4-A2AB-63F1742F1F89}
    2011-12-05 23:07:05 -------- d-----w- C:\Users\Ken\AppData\Local\{37A5B1BA-BB8A-415F-848C-1E8CD91A4E1B}
    2011-12-05 23:06:54 -------- d-----w- C:\Users\Ken\AppData\Local\{58D3E63A-C35B-436D-A767-A35D7A66B303}
    2011-12-05 17:57:05 -------- d-----w- C:\Program Files (x86)\WebScout DB Toolbar
    2011-12-05 16:55:20 -------- d-----w- C:\ProgramData\FreeRIP
    2011-12-05 15:14:43 -------- d-----w- C:\Users\Ken\AppData\Roaming\PC Cleaners
    2011-12-05 15:14:36 6068496 ----a-w- C:\Windows\uninst.exe
    2011-12-05 15:14:35 -------- d-----w- C:\ProgramData\PC1Data
    2011-12-05 10:52:23 -------- d-----w- C:\Users\Ken\AppData\Local\{38FE90FA-8333-41A7-869F-939C91814890}
    2011-12-05 10:52:13 -------- d-----w- C:\Users\Ken\AppData\Local\{98A37661-46B9-48FE-8930-59D8105B3247}
    2011-12-04 12:44:47 -------- d-----w- C:\Users\Ken\AppData\Local\{42E75851-8F29-4101-9340-F3FA4964CF75}
    2011-12-04 12:44:37 -------- d-----w- C:\Users\Ken\AppData\Local\{62D0BC08-3729-4CC2-B330-307070FE46E6}
    2011-12-03 13:20:22 -------- d-----w- C:\Users\Ken\AppData\Local\{6ADF0FAF-FF9B-41C4-8005-5DBBEB879ADB}
    2011-12-03 13:20:12 -------- d-----w- C:\Users\Ken\AppData\Local\{1E302DED-CA40-4DB3-AC95-2AF411724ACE}
    2011-12-02 13:17:13 -------- d-----w- C:\Users\Ken\AppData\Local\{6E1CDDB0-3DF9-46CA-AAF8-84BB2FAE0CC9}
    2011-12-02 13:17:02 -------- d-----w- C:\Users\Ken\AppData\Local\{996E3A70-D159-4E89-9E2A-737E1F94E8BE}
    2011-12-01 19:54:25 -------- d-----w- C:\Users\Ken\AppData\Local\{8888FBEE-C2F6-4C96-8C9C-C0C77A44BC29}
    2011-12-01 19:54:14 -------- d-----w- C:\Users\Ken\AppData\Local\{73703597-08FB-4106-8C49-404029C96515}
    2011-12-01 03:36:12 -------- d-----w- C:\Users\Ken\AppData\Local\{35AB6502-AB4A-4E51-9E0E-5F7939CC8235}
    2011-12-01 03:36:02 -------- d-----w- C:\Users\Ken\AppData\Local\{97E09460-E82B-4479-9313-3FE19BCFB25D}
    2011-11-30 13:12:48 -------- d-----w- C:\Users\Ken\AppData\Local\{3F82747A-AF66-4DD7-8FFC-8A35430335CD}
    2011-11-30 13:12:37 -------- d-----w- C:\Users\Ken\AppData\Local\{718CFA8D-882D-4BDB-A2E5-1E3BEA1C8875}
    2011-11-29 13:59:16 -------- d-----w- C:\Users\Ken\AppData\Local\{BB565EA8-B10C-40AD-B038-A4BA7B25807D}
    2011-11-29 13:59:05 -------- d-----w- C:\Users\Ken\AppData\Local\{3686D9F4-B410-4529-B655-DDD371561AC6}
    2011-11-28 14:18:16 -------- d-----w- C:\Program Files (x86)\Peggle Extreme
    2011-11-28 14:13:02 -------- d-----w- C:\Users\Ken\AppData\Local\{BE573FDD-7281-46B9-9D55-EBE5D5BA5332}
    2011-11-28 14:12:52 -------- d-----w- C:\Users\Ken\AppData\Local\{B438356E-8FBA-4C2F-88A0-5118525EF9A0}
    2011-11-27 13:10:20 -------- d-----w- C:\Users\Ken\AppData\Local\{A51A5B30-9B27-4746-86BF-4A5D91E46B16}
    2011-11-27 13:10:09 -------- d-----w- C:\Users\Ken\AppData\Local\{5178701C-2F1D-4A3D-BA8B-28F861DF79DC}
    2011-11-26 20:46:59 -------- d-----w- C:\Users\Ken\AppData\Roaming\NCH Software
    2011-11-26 20:45:46 -------- d-----w- C:\Program Files (x86)\NCH Software
    2011-11-26 20:45:44 -------- d-----w- C:\Program Files (x86)\NCH Swift Sound
    2011-11-26 13:59:23 -------- d-----w- C:\Users\Ken\AppData\Local\{9B0F3E0A-97EA-48B7-BD91-C610A113B8BA}
    2011-11-26 13:59:13 -------- d-----w- C:\Users\Ken\AppData\Local\{0B24E3FE-1B49-4CA5-8600-EEC4873B3AE3}
    2011-11-25 20:19:40 -------- d-----w- C:\Users\Ken\AppData\Local\{72B19D22-9DB8-4F3F-868A-B79EE856A2BD}
    2011-11-25 20:19:38 -------- d-----w- C:\Users\Ken\AppData\Local\{CCD2E1B3-0100-4EAA-8204-9FB8BC64FBD0}
    2011-11-25 05:48:19 -------- d-----w- C:\Users\Ken\AppData\Local\{6220C9BE-A177-4B2F-B235-A52F8CD542F9}
    2011-11-25 05:48:13 -------- d-----w- C:\Users\Ken\AppData\Local\{3343D741-48C2-4E07-8B25-60D1F36FA00B}
    2011-11-24 13:16:36 -------- d-----w- C:\Users\Ken\AppData\Local\{0E1E55ED-2696-4BF4-82EF-57ADFED16E95}
    2011-11-24 13:16:25 -------- d-----w- C:\Users\Ken\AppData\Local\{5C876296-612B-43EE-81E2-CC5C319D95BE}
    2011-11-23 11:49:14 -------- d-----w- C:\Users\Ken\AppData\Local\{2B34C4D1-73D5-4901-97E5-CA9D8467FCBF}
    2011-11-23 11:49:03 -------- d-----w- C:\Users\Ken\AppData\Local\{98F2903B-E1F4-46ED-80ED-35B8D6B305DE}
    2011-11-22 13:54:46 -------- d-----w- C:\Users\Ken\AppData\Local\{FBF25F38-A6BF-41CA-B9AC-EE4324EC136D}
    2011-11-22 13:54:35 -------- d-----w- C:\Users\Ken\AppData\Local\{4A8623F6-6063-45BE-B1C0-D3B6F38E81EF}
    2011-11-21 22:18:48 -------- d-----w- C:\Users\Ken\AppData\Local\{9809AB02-35CC-47BF-B983-647AAC95BE17}
    2011-11-21 22:18:37 -------- d-----w- C:\Users\Ken\AppData\Local\{0111DECB-A12E-4C41-AB88-634859A748E5}
    2011-11-21 08:53:23 -------- d-----w- C:\Users\Ken\AppData\Local\{4322D9DC-45DA-4340-A8D3-184627F66599}
    2011-11-21 08:53:12 -------- d-----w- C:\Users\Ken\AppData\Local\{56669E3F-A0EB-4B29-BFD2-9444B074665D}
    2011-11-20 14:13:30 -------- d-----w- C:\Users\Ken\AppData\Local\{FC2D4527-BFFE-4161-BA9A-82D235F7FE26}
    2011-11-20 14:13:20 -------- d-----w- C:\Users\Ken\AppData\Local\{347D8E8E-2578-4BFD-A64E-3A4DAE0D9146}
    .
    ==================== Find3M ====================
    .
    2011-12-01 21:47:45 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-10-03 10:06:03 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
    2011-09-29 16:29:28 1923952 ----a-w- C:\Windows\System32\drivers\tcpip.sys
    2011-09-02 18:03:28 730192 ----a-w- C:\Program Files (x86)\Common Files\ZugoInstaller.exe
    .
    ============= FINISH: 5:11:31.92 ===============
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - HiJack results Review
  1. genubi
    Replies:
    0
    Views:
    320
  2. bj nick
    Replies:
    0
    Views:
    775
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1032063

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice