I know the rpc files came from Absoultes LoJack software I shoulden't have bought it to begin with for my DeskTop, but oops I did. I uninstalled it a long time ago and AVG keeps popping up with the allow or deny box every time I boot my computer. Any ideas on how to delete thes files permanatly?
Thx, Dave
P.S.
I'm getting these doubble underline ads on this Tech Support Forum site, I can't move the mouse across the screen without popups everywhere. I know there was an addon in Firefox that did that, but I got rid of that a long time ago and there is no addon in Firefox to justify it. What's up with that? Any way to turn that off?
The copy\paste txt you asked for:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.71.2
Run by Administrator at 15:52:39 on 2015-01-30
.
============== Running Processes ================
.
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\PasswordBox\pbbtnService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
C:\Program Files (x86)\iolo\System Mechanic\LiveBoost.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\loggingserver.exe
C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Real\realplayer\Update\realsched.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uWindow Title = Internet Explorer, enhanced for Bing and MSN
uDefault_Page_URL = hxxp://www.alienware.com/
mWinlogon: Userinit = userinit.exe,
BHO: AutorunsDisabled - <orphaned>
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
mRun: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [TkBellExe] "C:\Program Files (x86)\Real\realplayer\update\realsched.exe" -osboot
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [ospd_us_295] <no file>
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoThumbnailCache = dword:0
uPolicies-Explorer: NoNetConnectDisconnect = dword:1
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} - hxxp://i.dell.com/images/global/js/scanner/SysProExe.cab
DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/en-us/wlscctrl2.cab
DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - hxxp://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.10.115.cab
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0071-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{E72235FA-EBC4-4094-B2B5-7E8281242C39} : DHCPNameServer = 75.75.75.75 75.75.76.76
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\3.2.0\ViProtocol.dll
Notify: WBSrv - C:\PROGRA~2\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
SSODL: 0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - C:\PROGRA~2\COMMON~1\Stardock\mcpcore.dll
SSODL: WebCheck - <orphaned>
SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - C:\Program Files (x86)\Stardock\Object Desktop\IconPackager\iprepair.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: AutorunsDisabled - <orphaned>
x64-BHO: {10921475-03CE-4E04-90CE-E2E7EF20C814} - <orphaned>
x64-BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
x64-Run: [Thermal Controller] "C:\Program Files\Alienware\Command Center\ThermalController.exe" /auto
x64-Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
x64-Run: [AlienFX Controller] "C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe"
x64-Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
x64-Run: [MacDrive 8 application for Digidesign] "C:\Program Files\Mediafour\MacDrive 8\MacDriveD.exe"
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
x64-DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-Notify: WB - <no file>
x64-SSODL: WebCheck - <orphaned>
x64-STS: {EC654325-1273-C2A9-2B7C-45D29BCE68FB} - <orphaned>
x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Administrator.ALIENBORN\AppData\Roaming\Mozilla\Firefox\Profiles\346liror.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3310511&CUI=UN19411942022833170&UM=2&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll
FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordlegacyext.dll
FF - component: C:\Users\Administrator.ALIENBORN\AppData\Roaming\Mozilla\Firefox\Profiles\346liror.default\extensions\capturefoxmovie@advancity.net\components\capturefoxxpi_win32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
FF - plugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: content.notify.ontimer - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.switch.threshold - 750000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.autoDisableScopes - 0
FF - user.js: extensions.shownSelectionUI - true
.
============= SERVICES / DRIVERS ===============
.
R? AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8
R? androidusb;ADB Interface Driver
R? AtiHDAudioService;AMD Function Driver for HD Audio Service
R? BPowMon;Broadcom Power monitoring service
R? cfwids;McAfee Inc. cfwids
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? cpudrv64;cpudrv64
R? cpuz134;cpuz134
R? cpuz135;cpuz135
R? cpuz137;cpuz137
R? DrvAgent64;DrvAgent64
R? ElRawDisk;ElRawDisk
R? FLEXnet Licensing Service 64;FLEXnet Licensing Service 64
R? Futuremark SystemInfo Service;Futuremark SystemInfo Service
R? massfilter_hs;HS HandSet Mass Storage Filter Driver
R? McShield;McShield
R? mfeavfk;McAfee Inc. mfeavfk
R? mfefirek;McAfee Inc. mfefirek
R? mfehidk;McAfee Inc. mfehidk
R? mfenlfk;McAfee NDIS Light Filter
R? mferkdet;McAfee Inc. mferkdet
R? mfevtp;McAfee Validation Trust Protection Service
R? mfewfpk;McAfee Inc. mfewfpk
R? mio;Master IO Filter Driver
R? nlsX86cc;Nalpeiron Licensing Service
R? OverwolfUpdater;Overwolf Updater Windows SCM
R? PROCEXP151;PROCEXP151
R? RdpVideoMiniport;Remote Desktop Video Miniport Driver
R? RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader
R? rzudd;Razer Mouse Driver
R? SwitchBoard;Adobe SwitchBoard
R? Synth3dVsc;Synth3dVsc
R? t3;Sound Blaster X-Fi Xtreme Audio
R? TsUsbFlt;TsUsbFlt
R? tsusbhub;tsusbhub
R? VGPU;VGPU
R? WatAdminSvc;Windows Activation Technologies Service
R? WindowFX;Stardock WindowFX
R? WinRing0_1_2_0;WinRing0_1_2_0
S? Avgdiska;AVG Disk Driver
S? AVGIDSAgent;AVGIDSAgent
S? AVGIDSDriver;AVGIDSDriver
S? AVGIDSHA;AVGIDSHA
S? Avgldx64;AVG AVI Loader Driver
S? Avgloga;AVG Logging Driver
S? Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield
S? Avgrkx64;AVG Anti-Rootkit Driver
S? Avgtdia;AVG TDI Driver
S? avgtp;avgtp
S? avgwd;AVG WatchDog
S? cpuz132;cpuz132
S? DigiNet;Digidesign Ethernet Support
S? GfExperienceService;NVIDIA GeForce Experience Service
S? hidkmdf;KMDF Driver
S? IAStorDataMgrSvc;Intel(R) Rapid Storage Technology
S? IOCBIOS;IOCBIOS
S? ioloSystemService;iolo System Service
S? k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0
S? LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver
S? LGVirHid;Logitech Gamepanel Virtual HID Device Driver
S? MacDrive8ServiceD;MacDrive 8 service for Digidesign
S? MDFSYSNT;MacDrive file system driver
S? MDPMGRNT;MacDrive Partition Driver
S? NvNetworkService;NVIDIA Network Service
S? nvoclk64;NVIDIA Enthusiasts Platform KDM
S? NvStreamKms;NvStreamKms
S? NvStreamSvc;NVIDIA Streamer Service
S? nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
S? PasswordBox;PasswordBox
S? PDFsFilter;PDFsFilter
S? PxHlpa64;PxHlpa64
S? RawDisk3;RawDisk3
S? RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service
S? RealPlayer Cloud Service;RealPlayer Cloud Service
S? RealPlayerUpdateSvc;RealPlayer Update Service
S? rtsuvc;USB2.0 1080p UVC Camera
S? RzDxgk;RzDxgk
S? RzFilter;RzFilter
S? RzOvlMon;Razer Overlay Subsystem Emergency Service
S? RzSynapse;Razer Driver
S? Stereo Service;NVIDIA Stereoscopic 3D Driver Service
S? vToolbarUpdater3.2.0;vToolbarUpdater3.2.0
S? WacHidRouter;Wacom Hid Router
S? wacomrouterfilter;Wacom Router Filter Driver
S? WTabletServicePro;Wacom Professional Service
.
=============== File Associations ===============
.
FileExt: .cmd: cmdfile=NOTEPAD.EXE %1
FileExt: .vbe: VBEFile=NOTEPAD.EXE %1
FileExt: .vbs: VBSFile=NOTEPAD.EXE %1
FileExt: .js: JSFile=NOTEPAD.EXE %1
FileExt: .jse: JSEFile=NOTEPAD.EXE %1
FileExt: .wsf: WSFFile=NOTEPAD.EXE %1
.
=============== Created Last 30 ================
.
2015-01-29 15:59:21 11870360 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0C7E058B-7004-4B05-ACC8-9BA502543190}\mpengine.dll
2015-01-24 18:06:18 -------- d-----w- C:\Program Files (x86)\Overwolf
2015-01-24 18:06:18 -------- d-----w- C:\Program Files (x86)\Common Files\Overwolf
2015-01-24 18:06:08 -------- d-----w- C:\ProgramData\Overwolf
2015-01-24 18:05:50 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Local\Overwolf
2015-01-24 18:05:46 -------- d-----w- C:\Program Files (x86)\TeamSpeak 3 Client
2015-01-24 01:54:26 2155152 ----a-w- C:\Windows\System32\Incinerator64.dll
2015-01-24 01:54:26 2097984 ----a-w- C:\Windows\SysWow64\Incinerator32.dll
2015-01-24 01:54:22 82160 ----a-w- C:\Windows\System32\drivers\PDFsFilter.sys
2015-01-24 01:54:22 57584 ----a-w- C:\Windows\System32\iolobtdfg.exe
2015-01-24 01:54:22 26184 ----a-w- C:\Windows\System32\smrgdf.exe
2015-01-24 01:54:21 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Roaming\ioloGovernor
2015-01-24 01:54:21 -------- d-----w- C:\ProgramData\ioloGovernor
2015-01-24 01:54:20 69000 ----a-w- C:\Windows\System32\offreg.dll
2015-01-24 01:54:20 56200 ----a-w- C:\Windows\SysWow64\offreg.dll
2015-01-24 01:54:18 -------- d-----w- C:\Program Files (x86)\iolo
2015-01-24 01:49:59 74703 ----a-w- C:\Windows\SysWow64\mfc45.dat
2015-01-24 01:47:51 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Roaming\iolo
2015-01-23 21:06:21 806400 ----a-w- C:\MicrosoftFixit50692.msi
2015-01-23 20:35:04 32912 ----a-w- C:\Windows\System32\drivers\rawdsk3.sys
2015-01-23 20:35:02 -------- d-----w- C:\logs
2015-01-21 17:25:15 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Local\NVIDIA
2015-01-21 17:25:13 2824504 ----a-w- C:\Windows\System32\nvspcap64.dll
2015-01-21 17:25:13 2210040 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2015-01-21 17:25:13 1715224 ----a-w- C:\Windows\System32\nvspbridge64.dll
2015-01-21 17:25:13 1291464 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2015-01-21 17:24:23 620176 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2015-01-21 17:24:00 935240 ----a-w- C:\Windows\System32\nvvsvc.exe
2015-01-21 17:24:00 6859408 ----a-w- C:\Windows\System32\nvcpl.dll
2015-01-21 17:24:00 62608 ----a-w- C:\Windows\System32\nvshext.dll
2015-01-21 17:24:00 4151176 ----a-w- C:\Windows\System32\nvcoproc.bin
2015-01-21 17:24:00 386368 ----a-w- C:\Windows\System32\nvmctray.dll
2015-01-21 17:24:00 3513488 ----a-w- C:\Windows\System32\nvsvc64.dll
2015-01-21 17:24:00 2558608 ----a-w- C:\Windows\System32\nvsvcr.dll
2015-01-21 17:23:50 74056 ----a-w- C:\Windows\System32\OpenCL.dll
2015-01-21 17:23:50 60560 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2015-01-17 17:53:22 210432 ----a-w- C:\Windows\System32\profsvc.dll
2015-01-17 17:53:21 303616 ----a-w- C:\Windows\System32\nlasvc.dll
2015-01-17 17:53:20 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2015-01-17 17:53:19 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2015-01-17 17:53:18 141312 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2015-01-17 17:52:56 87040 ----a-w- C:\Windows\System32\TSWbPrxy.exe
2015-01-17 17:52:50 5553592 ----a-w- C:\Windows\System32\ntoskrnl.exe
2015-01-17 17:52:49 3971512 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2015-01-17 17:52:49 3916728 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2015-01-17 17:52:47 503808 ----a-w- C:\Windows\System32\srcore.dll
2015-01-17 17:52:45 50176 ----a-w- C:\Windows\System32\srclient.dll
2015-01-17 17:52:45 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2015-01-17 17:52:45 296960 ----a-w- C:\Windows\System32\rstrui.exe
2015-01-03 00:33:15 -------- d-----w- C:\Program Files (x86)\MyPhoneExplorer - Copy
.
==================== Find3M ====================
.
2015-01-30 23:00:15 49536 ----a-w- C:\Windows\SysWow64\agremove.exe
2015-01-30 22:59:44 17920 ----a-w- C:\Windows\System32\rpcnetp.exe
2015-01-27 04:34:58 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2015-01-27 04:34:58 701616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2015-01-08 17:55:52 298120 ------w- C:\Windows\System32\MpSigStub.exe
2014-12-04 02:50:55 413184 ----a-w- C:\Windows\System32\generaltel.dll
2014-12-04 02:50:45 741376 ----a-w- C:\Windows\System32\invagent.dll
2014-12-04 02:50:40 396800 ----a-w- C:\Windows\System32\devinv.dll
2014-12-04 02:50:38 830976 ----a-w- C:\Windows\System32\appraiser.dll
2014-12-04 02:50:37 227328 ----a-w- C:\Windows\System32\aepdu.dll
2014-12-04 02:50:37 192000 ----a-w- C:\Windows\System32\aepic.dll
2014-12-04 02:44:48 1083392 ----a-w- C:\Windows\System32\aeinv.dll
2014-12-01 23:28:44 1232040 ----a-w- C:\Windows\System32\aitstatic.exe
2014-11-24 21:59:39 448512 ----a-w- C:\Windows\System32\html.iec
2014-11-24 21:53:14 2339840 ----a-w- C:\Windows\System32\jscript9.dll
2014-11-24 21:47:12 1392128 ----a-w- C:\Windows\System32\wininet.dll
2014-11-24 21:45:49 1494016 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-11-24 21:44:58 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-11-24 21:44:55 599040 ----a-w- C:\Windows\System32\vbscript.dll
2014-11-24 21:43:44 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2014-11-24 21:43:33 12800 ----a-w- C:\Windows\System32\mshta.exe
2014-11-24 20:44:32 367104 ----a-w- C:\Windows\SysWow64\html.iec
2014-11-24 20:40:49 1810944 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-11-24 20:35:25 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-11-24 20:34:40 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-11-24 20:33:56 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-11-24 20:33:47 421376 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-11-24 20:32:47 11776 ----a-w- C:\Windows\SysWow64\mshta.exe
2014-11-24 20:32:36 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-11-22 10:46:30 38032 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
2014-11-22 10:46:30 35472 ----a-w- C:\Windows\System32\nvaudcap64v.dll
2014-11-22 10:46:30 32400 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2014-11-17 16:21:45 5632 ----a-w- C:\Windows\SysWow64\ctrestrt.exe
2014-11-11 03:09:06 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2014-11-11 03:08:52 241152 ----a-w- C:\Windows\System32\pku2u.dll
2014-11-11 03:08:48 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-11-11 02:44:45 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2014-11-11 02:44:32 186880 ----a-w- C:\Windows\SysWow64\pku2u.dll
2014-11-11 02:44:25 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-11-11 01:46:26 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-11-08 03:16:08 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-11-08 02:45:09 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-11-04 18:49:47 1995544 ----a-w- C:\Windows\System32\Wacom_Tablet.dll
2014-11-04 18:49:47 1988888 ----a-w- C:\Windows\System32\Wacom_Touch_Tablet.dll
2014-11-04 18:49:47 1863448 ----a-w- C:\Windows\System32\Wintab32.dll
2014-11-04 18:49:46 2029336 ----a-w- C:\Windows\System32\WacomMT.dll
2014-11-04 18:49:45 1497368 ----a-w- C:\Windows\SysWow64\Wintab32.dll
2014-11-04 18:49:44 1626392 ----a-w- C:\Windows\SysWow64\WacomMT.dll
2014-11-04 18:49:44 1617176 ----a-w- C:\Windows\SysWow64\Wacom_Tablet.dll
2014-11-04 18:49:44 1610008 ----a-w- C:\Windows\SysWow64\Wacom_Touch_Tablet.dll
2012-11-05 04:27:20 318512128 ----a-w- C:\Program Files (x86)\aliens-vs-predator.msi
.
============= FINISH: 15:53:45.10 ===============
Thx, Dave
P.S.
I'm getting these doubble underline ads on this Tech Support Forum site, I can't move the mouse across the screen without popups everywhere. I know there was an addon in Firefox that did that, but I got rid of that a long time ago and there is no addon in Firefox to justify it. What's up with that? Any way to turn that off?
The copy\paste txt you asked for:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.71.2
Run by Administrator at 15:52:39 on 2015-01-30
.
============== Running Processes ================
.
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\PasswordBox\pbbtnService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
C:\Program Files (x86)\iolo\System Mechanic\LiveBoost.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\loggingserver.exe
C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Real\realplayer\Update\realsched.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uWindow Title = Internet Explorer, enhanced for Bing and MSN
uDefault_Page_URL = hxxp://www.alienware.com/
mWinlogon: Userinit = userinit.exe,
BHO: AutorunsDisabled - <orphaned>
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
mRun: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [TkBellExe] "C:\Program Files (x86)\Real\realplayer\update\realsched.exe" -osboot
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [ospd_us_295] <no file>
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoThumbnailCache = dword:0
uPolicies-Explorer: NoNetConnectDisconnect = dword:1
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} - hxxp://i.dell.com/images/global/js/scanner/SysProExe.cab
DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/en-us/wlscctrl2.cab
DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - hxxp://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.10.115.cab
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0071-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{E72235FA-EBC4-4094-B2B5-7E8281242C39} : DHCPNameServer = 75.75.75.75 75.75.76.76
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\3.2.0\ViProtocol.dll
Notify: WBSrv - C:\PROGRA~2\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
SSODL: 0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - C:\PROGRA~2\COMMON~1\Stardock\mcpcore.dll
SSODL: WebCheck - <orphaned>
SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - C:\Program Files (x86)\Stardock\Object Desktop\IconPackager\iprepair.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: AutorunsDisabled - <orphaned>
x64-BHO: {10921475-03CE-4E04-90CE-E2E7EF20C814} - <orphaned>
x64-BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
x64-Run: [Thermal Controller] "C:\Program Files\Alienware\Command Center\ThermalController.exe" /auto
x64-Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
x64-Run: [AlienFX Controller] "C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe"
x64-Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
x64-Run: [MacDrive 8 application for Digidesign] "C:\Program Files\Mediafour\MacDrive 8\MacDriveD.exe"
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
x64-DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned>
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-Notify: WB - <no file>
x64-SSODL: WebCheck - <orphaned>
x64-STS: {EC654325-1273-C2A9-2B7C-45D29BCE68FB} - <orphaned>
x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Administrator.ALIENBORN\AppData\Roaming\Mozilla\Firefox\Profiles\346liror.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3310511&CUI=UN19411942022833170&UM=2&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll
FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordlegacyext.dll
FF - component: C:\Users\Administrator.ALIENBORN\AppData\Roaming\Mozilla\Firefox\Profiles\346liror.default\extensions\capturefoxmovie@advancity.net\components\capturefoxxpi_win32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
FF - plugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: content.notify.ontimer - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.switch.threshold - 750000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.autoDisableScopes - 0
FF - user.js: extensions.shownSelectionUI - true
.
============= SERVICES / DRIVERS ===============
.
R? AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8
R? androidusb;ADB Interface Driver
R? AtiHDAudioService;AMD Function Driver for HD Audio Service
R? BPowMon;Broadcom Power monitoring service
R? cfwids;McAfee Inc. cfwids
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? cpudrv64;cpudrv64
R? cpuz134;cpuz134
R? cpuz135;cpuz135
R? cpuz137;cpuz137
R? DrvAgent64;DrvAgent64
R? ElRawDisk;ElRawDisk
R? FLEXnet Licensing Service 64;FLEXnet Licensing Service 64
R? Futuremark SystemInfo Service;Futuremark SystemInfo Service
R? massfilter_hs;HS HandSet Mass Storage Filter Driver
R? McShield;McShield
R? mfeavfk;McAfee Inc. mfeavfk
R? mfefirek;McAfee Inc. mfefirek
R? mfehidk;McAfee Inc. mfehidk
R? mfenlfk;McAfee NDIS Light Filter
R? mferkdet;McAfee Inc. mferkdet
R? mfevtp;McAfee Validation Trust Protection Service
R? mfewfpk;McAfee Inc. mfewfpk
R? mio;Master IO Filter Driver
R? nlsX86cc;Nalpeiron Licensing Service
R? OverwolfUpdater;Overwolf Updater Windows SCM
R? PROCEXP151;PROCEXP151
R? RdpVideoMiniport;Remote Desktop Video Miniport Driver
R? RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader
R? rzudd;Razer Mouse Driver
R? SwitchBoard;Adobe SwitchBoard
R? Synth3dVsc;Synth3dVsc
R? t3;Sound Blaster X-Fi Xtreme Audio
R? TsUsbFlt;TsUsbFlt
R? tsusbhub;tsusbhub
R? VGPU;VGPU
R? WatAdminSvc;Windows Activation Technologies Service
R? WindowFX;Stardock WindowFX
R? WinRing0_1_2_0;WinRing0_1_2_0
S? Avgdiska;AVG Disk Driver
S? AVGIDSAgent;AVGIDSAgent
S? AVGIDSDriver;AVGIDSDriver
S? AVGIDSHA;AVGIDSHA
S? Avgldx64;AVG AVI Loader Driver
S? Avgloga;AVG Logging Driver
S? Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield
S? Avgrkx64;AVG Anti-Rootkit Driver
S? Avgtdia;AVG TDI Driver
S? avgtp;avgtp
S? avgwd;AVG WatchDog
S? cpuz132;cpuz132
S? DigiNet;Digidesign Ethernet Support
S? GfExperienceService;NVIDIA GeForce Experience Service
S? hidkmdf;KMDF Driver
S? IAStorDataMgrSvc;Intel(R) Rapid Storage Technology
S? IOCBIOS;IOCBIOS
S? ioloSystemService;iolo System Service
S? k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0
S? LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver
S? LGVirHid;Logitech Gamepanel Virtual HID Device Driver
S? MacDrive8ServiceD;MacDrive 8 service for Digidesign
S? MDFSYSNT;MacDrive file system driver
S? MDPMGRNT;MacDrive Partition Driver
S? NvNetworkService;NVIDIA Network Service
S? nvoclk64;NVIDIA Enthusiasts Platform KDM
S? NvStreamKms;NvStreamKms
S? NvStreamSvc;NVIDIA Streamer Service
S? nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
S? PasswordBox;PasswordBox
S? PDFsFilter;PDFsFilter
S? PxHlpa64;PxHlpa64
S? RawDisk3;RawDisk3
S? RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service
S? RealPlayer Cloud Service;RealPlayer Cloud Service
S? RealPlayerUpdateSvc;RealPlayer Update Service
S? rtsuvc;USB2.0 1080p UVC Camera
S? RzDxgk;RzDxgk
S? RzFilter;RzFilter
S? RzOvlMon;Razer Overlay Subsystem Emergency Service
S? RzSynapse;Razer Driver
S? Stereo Service;NVIDIA Stereoscopic 3D Driver Service
S? vToolbarUpdater3.2.0;vToolbarUpdater3.2.0
S? WacHidRouter;Wacom Hid Router
S? wacomrouterfilter;Wacom Router Filter Driver
S? WTabletServicePro;Wacom Professional Service
.
=============== File Associations ===============
.
FileExt: .cmd: cmdfile=NOTEPAD.EXE %1
FileExt: .vbe: VBEFile=NOTEPAD.EXE %1
FileExt: .vbs: VBSFile=NOTEPAD.EXE %1
FileExt: .js: JSFile=NOTEPAD.EXE %1
FileExt: .jse: JSEFile=NOTEPAD.EXE %1
FileExt: .wsf: WSFFile=NOTEPAD.EXE %1
.
=============== Created Last 30 ================
.
2015-01-29 15:59:21 11870360 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0C7E058B-7004-4B05-ACC8-9BA502543190}\mpengine.dll
2015-01-24 18:06:18 -------- d-----w- C:\Program Files (x86)\Overwolf
2015-01-24 18:06:18 -------- d-----w- C:\Program Files (x86)\Common Files\Overwolf
2015-01-24 18:06:08 -------- d-----w- C:\ProgramData\Overwolf
2015-01-24 18:05:50 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Local\Overwolf
2015-01-24 18:05:46 -------- d-----w- C:\Program Files (x86)\TeamSpeak 3 Client
2015-01-24 01:54:26 2155152 ----a-w- C:\Windows\System32\Incinerator64.dll
2015-01-24 01:54:26 2097984 ----a-w- C:\Windows\SysWow64\Incinerator32.dll
2015-01-24 01:54:22 82160 ----a-w- C:\Windows\System32\drivers\PDFsFilter.sys
2015-01-24 01:54:22 57584 ----a-w- C:\Windows\System32\iolobtdfg.exe
2015-01-24 01:54:22 26184 ----a-w- C:\Windows\System32\smrgdf.exe
2015-01-24 01:54:21 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Roaming\ioloGovernor
2015-01-24 01:54:21 -------- d-----w- C:\ProgramData\ioloGovernor
2015-01-24 01:54:20 69000 ----a-w- C:\Windows\System32\offreg.dll
2015-01-24 01:54:20 56200 ----a-w- C:\Windows\SysWow64\offreg.dll
2015-01-24 01:54:18 -------- d-----w- C:\Program Files (x86)\iolo
2015-01-24 01:49:59 74703 ----a-w- C:\Windows\SysWow64\mfc45.dat
2015-01-24 01:47:51 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Roaming\iolo
2015-01-23 21:06:21 806400 ----a-w- C:\MicrosoftFixit50692.msi
2015-01-23 20:35:04 32912 ----a-w- C:\Windows\System32\drivers\rawdsk3.sys
2015-01-23 20:35:02 -------- d-----w- C:\logs
2015-01-21 17:25:15 -------- d-----w- C:\Users\Administrator.ALIENBORN\AppData\Local\NVIDIA
2015-01-21 17:25:13 2824504 ----a-w- C:\Windows\System32\nvspcap64.dll
2015-01-21 17:25:13 2210040 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2015-01-21 17:25:13 1715224 ----a-w- C:\Windows\System32\nvspbridge64.dll
2015-01-21 17:25:13 1291464 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2015-01-21 17:24:23 620176 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2015-01-21 17:24:00 935240 ----a-w- C:\Windows\System32\nvvsvc.exe
2015-01-21 17:24:00 6859408 ----a-w- C:\Windows\System32\nvcpl.dll
2015-01-21 17:24:00 62608 ----a-w- C:\Windows\System32\nvshext.dll
2015-01-21 17:24:00 4151176 ----a-w- C:\Windows\System32\nvcoproc.bin
2015-01-21 17:24:00 386368 ----a-w- C:\Windows\System32\nvmctray.dll
2015-01-21 17:24:00 3513488 ----a-w- C:\Windows\System32\nvsvc64.dll
2015-01-21 17:24:00 2558608 ----a-w- C:\Windows\System32\nvsvcr.dll
2015-01-21 17:23:50 74056 ----a-w- C:\Windows\System32\OpenCL.dll
2015-01-21 17:23:50 60560 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2015-01-17 17:53:22 210432 ----a-w- C:\Windows\System32\profsvc.dll
2015-01-17 17:53:21 303616 ----a-w- C:\Windows\System32\nlasvc.dll
2015-01-17 17:53:20 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2015-01-17 17:53:19 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2015-01-17 17:53:18 141312 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2015-01-17 17:52:56 87040 ----a-w- C:\Windows\System32\TSWbPrxy.exe
2015-01-17 17:52:50 5553592 ----a-w- C:\Windows\System32\ntoskrnl.exe
2015-01-17 17:52:49 3971512 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2015-01-17 17:52:49 3916728 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2015-01-17 17:52:47 503808 ----a-w- C:\Windows\System32\srcore.dll
2015-01-17 17:52:45 50176 ----a-w- C:\Windows\System32\srclient.dll
2015-01-17 17:52:45 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2015-01-17 17:52:45 296960 ----a-w- C:\Windows\System32\rstrui.exe
2015-01-03 00:33:15 -------- d-----w- C:\Program Files (x86)\MyPhoneExplorer - Copy
.
==================== Find3M ====================
.
2015-01-30 23:00:15 49536 ----a-w- C:\Windows\SysWow64\agremove.exe
2015-01-30 22:59:44 17920 ----a-w- C:\Windows\System32\rpcnetp.exe
2015-01-27 04:34:58 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2015-01-27 04:34:58 701616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2015-01-08 17:55:52 298120 ------w- C:\Windows\System32\MpSigStub.exe
2014-12-04 02:50:55 413184 ----a-w- C:\Windows\System32\generaltel.dll
2014-12-04 02:50:45 741376 ----a-w- C:\Windows\System32\invagent.dll
2014-12-04 02:50:40 396800 ----a-w- C:\Windows\System32\devinv.dll
2014-12-04 02:50:38 830976 ----a-w- C:\Windows\System32\appraiser.dll
2014-12-04 02:50:37 227328 ----a-w- C:\Windows\System32\aepdu.dll
2014-12-04 02:50:37 192000 ----a-w- C:\Windows\System32\aepic.dll
2014-12-04 02:44:48 1083392 ----a-w- C:\Windows\System32\aeinv.dll
2014-12-01 23:28:44 1232040 ----a-w- C:\Windows\System32\aitstatic.exe
2014-11-24 21:59:39 448512 ----a-w- C:\Windows\System32\html.iec
2014-11-24 21:53:14 2339840 ----a-w- C:\Windows\System32\jscript9.dll
2014-11-24 21:47:12 1392128 ----a-w- C:\Windows\System32\wininet.dll
2014-11-24 21:45:49 1494016 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-11-24 21:44:58 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-11-24 21:44:55 599040 ----a-w- C:\Windows\System32\vbscript.dll
2014-11-24 21:43:44 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2014-11-24 21:43:33 12800 ----a-w- C:\Windows\System32\mshta.exe
2014-11-24 20:44:32 367104 ----a-w- C:\Windows\SysWow64\html.iec
2014-11-24 20:40:49 1810944 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-11-24 20:35:25 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-11-24 20:34:40 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-11-24 20:33:56 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-11-24 20:33:47 421376 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-11-24 20:32:47 11776 ----a-w- C:\Windows\SysWow64\mshta.exe
2014-11-24 20:32:36 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-11-22 10:46:30 38032 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
2014-11-22 10:46:30 35472 ----a-w- C:\Windows\System32\nvaudcap64v.dll
2014-11-22 10:46:30 32400 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2014-11-17 16:21:45 5632 ----a-w- C:\Windows\SysWow64\ctrestrt.exe
2014-11-11 03:09:06 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2014-11-11 03:08:52 241152 ----a-w- C:\Windows\System32\pku2u.dll
2014-11-11 03:08:48 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-11-11 02:44:45 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2014-11-11 02:44:32 186880 ----a-w- C:\Windows\SysWow64\pku2u.dll
2014-11-11 02:44:25 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-11-11 01:46:26 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-11-08 03:16:08 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-11-08 02:45:09 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-11-04 18:49:47 1995544 ----a-w- C:\Windows\System32\Wacom_Tablet.dll
2014-11-04 18:49:47 1988888 ----a-w- C:\Windows\System32\Wacom_Touch_Tablet.dll
2014-11-04 18:49:47 1863448 ----a-w- C:\Windows\System32\Wintab32.dll
2014-11-04 18:49:46 2029336 ----a-w- C:\Windows\System32\WacomMT.dll
2014-11-04 18:49:45 1497368 ----a-w- C:\Windows\SysWow64\Wintab32.dll
2014-11-04 18:49:44 1626392 ----a-w- C:\Windows\SysWow64\WacomMT.dll
2014-11-04 18:49:44 1617176 ----a-w- C:\Windows\SysWow64\Wacom_Tablet.dll
2014-11-04 18:49:44 1610008 ----a-w- C:\Windows\SysWow64\Wacom_Touch_Tablet.dll
2012-11-05 04:27:20 318512128 ----a-w- C:\Program Files (x86)\aliens-vs-predator.msi
.
============= FINISH: 15:53:45.10 ===============