Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help

User Tag List

Trojan:JS/Redirector.JA - Help!!!

This is a discussion on Trojan:JS/Redirector.JA - Help!!! within the Virus/Trojan/Spyware Help forums, part of the Tech Support Forum category. MS Security Essentials reports that I have the following on my PC Trojan:JS/Redirector.JA . It only appears when I check


Closed Thread
 
Thread Tools Search this Thread
Old 04-03-2012, 03:52 PM   #1
Registered Member
 
Join Date: Apr 2012
Posts: 2
OS: Win 7 Pro



MS Security Essentials reports that I have the following on my PC Trojan:JS/Redirector.JA. It only appears when I check my mail in outlook. Avast, Norton, and SpyHunter 4.0 do not detect it.

I clean it with MS Security Essentials, but it keeps comming back.



I have attached the DSS.txt files and the Attach.zip files. I did not include the other file with attach.zip as it said 32 bit only. I am running Win 7 64 bit.
Attached Files
File Type: txt DDS.txt (46.4 KB, 46 views)
File Type: zip Attach.zip (4.7 KB, 35 views)
gunslinger_11 is offline  
Sponsored Links
Advertisement
 
Old 04-04-2012, 04:52 PM   #2
Registered Member
 
Join Date: Apr 2012
Posts: 2
OS: Win 7 Pro



Sorry, Should have copied and pasted the DSS.txt file:

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Gary Maki at 18:35:25 on 2012-04-03
Microsoft Windows 7 Professional 6.1.7601.1.1252.2.1033.18.4087.784 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\windows\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files\D-Link\SharePort Utility\Spnuhelper.exe
C:\Program Files (x86)\Norton Utilities 15\Tools\Disk Doctor\DiskDoctorSrv.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Norton Utilities 15\Tools\Disk Doctor\DiskDoctorSrvProxy.exe
C:\Program Files (x86)\FingerPrint\FingerPrintService.exe
C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
C:\Program Files\Microsoft LifeCam\MSCamS64.exe
C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.ACCPAC56CGA\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\ccSvcHst.exe
C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
C:\Program Files (x86)\Nuance\PDF Professional 7\PDFProFiltSrv.exe
C:\windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\windows\splwow64.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files (x86)\Norton Utilities 15\Tools\SpeedDisk\SpeedDiskSrv.exe
C:\Program Files (x86)\Norton Utilities 15\Tools\SpeedDisk\SpeedDiskSrvProxy.exe
C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\ccSvcHst.exe
C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe
C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\AirPrint\airprint.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Logitech Gaming Software\LCore.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k bthsvcs
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe
C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.DesktopHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\windows\system32\conhost.exe
C:\Program Files (x86)\WinZip\WZQKPICK.EXE
C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\FingerPrint\FingerPrint.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
D:\Program Installs\Applications\OOP\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\D-Link\SharePort Utility\Connect.exe
D:\Program Installs\Applications\OOP\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Windows\SysWOW64\Ctxfihlp.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
C:\Program Files (x86)\Razer\Mamba\RazerMambaSysTray.exe
C:\Program Files (x86)\Razer\BlackWidow Ultimate\BlackWidowUltimateTray.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\DataProxy.exe
C:\windows\system32\conhost.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDPop3.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
C:\Windows\SysWOW64\CTXFISPI.EXE
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\iPod\bin\iPodService.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files\Zune\ZuneNss.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\DllHost.exe
C:\windows\system32\DllHost.exe
C:\windows\SysWOW64\cmd.exe
C:\windows\system32\conhost.exe
C:\windows\SysWOW64\cscript.exe
C:\windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uStart Page = hxxp://www.google.ca/
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
mWinlogon: Userinit=C:\Windows\system32\userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: PlusIEEventHelper Class: {551a852f-39a6-44a7-9c13-afbec9185a9d} - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll
BHO: Norton Identity Protection: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\coIEPlg.dll
BHO: Norton Vulnerability Protection: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\IPS\IPSBHO.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
BHO: ZeonIEEventHelper Class: {da986d7d-ccaf-47b2-84fe-bfa1549bebf9} - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\coIEPlg.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
TB: DocuCom PDF: {e3286bf1-e654-42ff-b4a6-5e111731df6b} - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [igndlm.exe] C:\Program Files (x86)\Download Manager\DLM.exe /windowsstart /startifwork
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [cdloader] "C:\Users\Gary Maki\AppData\Roaming\mjusbsp\cdloader2.exe" MAGICJACK
uRun: [AdobeBridge]
uRun: [WLSync] "C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe" /background
uRun: [Rim.DesktopHelper.exe] C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.DesktopHelper.exe
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
uRun: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
uRun: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
mRun: [Intuit SyncManager] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe startup
mRun: [Google Desktop Search] "C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" /startup
mRun: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
mRun: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
mRun: [Nuance PDF Converter Professional 7-reminder] "C:\Program Files (x86)\Nuance\PDF Professional 7\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Converter Professional 7\Ereg\Ereg.ini"
mRun: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
mRun: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
mRun: [Razer Mamba Elite Driver] C:\Program Files (x86)\Razer\Mamba\RazerMambaSysTray.exe
mRun: [Razer Blackwidow Driver] C:\Program Files (x86)\Razer\BlackWidow Ultimate\BlackWidowUltimateTray.exe
mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
mRun: [PDF7 Registry Controller] C:\Program Files (x86)\Nuance\PDF Professional 7\RegistryController.exe
mRun: [PDFProHook] C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
dRun: [CtxfiReg] CTXFIREG.exe /FAIL1
StartupFolder: C:\Users\GARYMA~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MYPROG~1.LNK - C:\Program Files (x86)\FingerPrint\FingerPrint.exe
StartupFolder: C:\Users\GARYMA~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
StartupFolder: C:\Users\GARYMA~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - D:\Program Installs\Applications\OOP\OpenOffice.org 3\program\quickstart.exe
StartupFolder: C:\Users\GARYMA~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SHAREP~2.LNK - C:\Program Files (x86)\D-Link\SharePort Utility\Connect.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\QUICKB~1.LNK - C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WINZIP~1.LNK - C:\Program Files (x86)\WinZip\WZQKPICK.EXE
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Open with Nuance PDF Converter 7 - C:\Program Files (x86)\Nuance\PDF Professional 7\cnvres_eng.dll /100
IE: Open with PDF Professional 7 - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
Trusted Zone: line6.net
Trusted Zone: tdbank.ca\ctx.ras
Trusted Zone: tdbank.ca\remoteaccess
DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} - hxxp://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab
DPF: {6416C78A-E810-445C-8712-1785809FA433} - hxxps://remoteaccess.tdbank.ca/CitrixLogonPoint/TDBFG/EPAClient/EPAClient.exe
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15101/CTSUEng.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{817BF17A-711D-4863-BFB5-854694BC5EDA} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{93EAFAB0-BADA-400D-BA78-1FFCFDAD6893} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{93EAFAB0-BADA-400D-BA78-1FFCFDAD6893}\241647D616E6 : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{947C139D-7E0C-489F-8288-913C21C90840} : DhcpNameServer = 192.168.0.1
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: intu-help-qb2 - {84D77A00-41B5-4b8b-8ADF-86486D72E749} - C:\Program Files (x86)\Intuit\QuickBooks 2010\HelpAsyncPluggableProtocol.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs: C:\PROGRA~2\Google\GOOGLE~1\GO36F4~1.DLL
LSA: Notification Packages = scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO-X64: PlusIEEventHelper Class: {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll
BHO-X64: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\coIEPlg.dll
BHO-X64: Norton Identity Protection - No File
BHO-X64: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\IPS\IPSBHO.DLL
BHO-X64: Norton Vulnerability Protection - No File
BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
BHO-X64: ZeonIEEventHelper Class: {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\coIEPlg.dll
TB-X64: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
TB-X64: DocuCom PDF: {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll
TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
mRun-x64: [Intuit SyncManager] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe startup
mRun-x64: [Google Desktop Search] "C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" /startup
mRun-x64: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
mRun-x64: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
mRun-x64: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun-x64: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
mRun-x64: [Nuance PDF Converter Professional 7-reminder] "C:\Program Files (x86)\Nuance\PDF Professional 7\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Converter Professional 7\Ereg\Ereg.ini"
mRun-x64: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
mRun-x64: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun-x64: [CTxfiHlp] CTXFIHLP.EXE
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
mRun-x64: [Razer Mamba Elite Driver] C:\Program Files (x86)\Razer\Mamba\RazerMambaSysTray.exe
mRun-x64: [Razer Blackwidow Driver] C:\Program Files (x86)\Razer\BlackWidow Ultimate\BlackWidowUltimateTray.exe
mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
mRun-x64: [PDF7 Registry Controller] C:\Program Files (x86)\Nuance\PDF Professional 7\RegistryController.exe
mRun-x64: [PDFProHook] C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
AppInit_DLLs-X64: C:\PROGRA~2\Google\GOOGLE~1\GO36F4~1.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;C:\windows\system32\drivers\NISx64\1306020.00A\SYMDS64.SYS --> C:\windows\system32\drivers\NISx64\1306020.00A\SYMDS64.SYS [?]
R0 SymEFA;Symantec Extended File Attributes;C:\windows\system32\drivers\NISx64\1306020.00A\SYMEFA64.SYS --> C:\windows\system32\drivers\NISx64\1306020.00A\SYMEFA64.SYS [?]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20120317.002\BHDrvx64.sys [2012-3-20 1157240]
R1 ccSet_NIS;Norton Internet Security Settings Manager;C:\windows\system32\drivers\NISx64\1306020.00A\ccSetx64.sys --> C:\windows\system32\drivers\NISx64\1306020.00A\ccSetx64.sys [?]
R1 ctxusbm;Citrix USB Monitor Driver;C:\windows\system32\DRIVERS\ctxusbm.sys --> C:\windows\system32\DRIVERS\ctxusbm.sys [?]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20120330.002\IDSviA64.sys [2012-3-30 488568]
R1 MpFilter;Microsoft Malware Protection Driver;C:\windows\system32\DRIVERS\MpFilter.sys --> C:\windows\system32\DRIVERS\MpFilter.sys [?]
R1 SymIRON;Symantec Iron Driver;C:\windows\system32\drivers\NISx64\1306020.00A\Ironx64.SYS --> C:\windows\system32\drivers\NISx64\1306020.00A\Ironx64.SYS [?]
R1 SymNetS;Symantec Network Security WFP Driver;C:\windows\system32\Drivers\NISx64\1306020.00A\SYMNETS.SYS --> C:\windows\system32\Drivers\NISx64\1306020.00A\SYMNETS.SYS [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\windows\system32\DRIVERS\vwififlt.sys --> C:\windows\system32\DRIVERS\vwififlt.sys [?]
R2 AirPrint;AirPrint;C:\Program Files (x86)\AirPrint\airprint.exe -s --> C:\Program Files (x86)\AirPrint\airprint.exe -s [?]
R2 cpuz133;cpuz133;\??\C:\Windows\system32\drivers\cpuz133_x64.sys --> C:\Windows\system32\drivers\cpuz133_x64.sys [?]
R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]
R2 D-Link SharePort Helper;D-Link SharePort Helper;C:\Program Files\D-Link\SharePort Utility\Spnuhelper.exe [2011-11-17 49152]
R2 DiskDoctorService;Norton Disk Doctor Service;C:\Program Files (x86)\Norton Utilities 15\Tools\Disk Doctor\DiskDoctorSrv.exe [2011-10-27 1029480]
R2 FingerPrint;FingerPrint Service;C:\Program Files (x86)\FingerPrint\FingerPrintService.exe -start --> C:\Program Files (x86)\FingerPrint\FingerPrintService.exe -start [?]
R2 MSSQL$ACCPAC56CGA;SQL Server (ACCPAC56CGA);C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.ACCPAC56CGA\MSSQL\Binn\sqlservr.exe [2011-9-22 43028328]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\ccsvchst.exe [2012-3-24 138232]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-2-21 2348352]
R2 PDFProFiltSrv;PDFProFiltSrv;C:\Program Files (x86)\Nuance\PDF Professional 7\PDFProFiltSrv.exe [2011-9-9 135016]
R2 SpeedDiskService;Norton SpeedDisk Service;C:\Program Files (x86)\Norton Utilities 15\Tools\SpeedDisk\SpeedDiskSrv.exe [2011-10-27 1037672]
R2 SplashtopRemoteService;Splashtop® Remote Service;C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [2012-2-9 531328]
R2 SpyHunter 4 Service;SpyHunter 4 Service;C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [2012-1-18 995744]
R2 SSUService;Splashtop Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2012-3-15 370504]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-2-9 382272]
R2 sxuptp;SXUPTP Driver;C:\windows\system32\DRIVERS\sxuptp.sys --> C:\windows\system32\DRIVERS\sxuptp.sys [?]
R2 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
R3 btwampfl;btwampfl Bluetooth filter driver;\??\C:\windows\system32\drivers\btwampfl.sys --> C:\windows\system32\drivers\btwampfl.sys [?]
R3 btwl2cap;Bluetooth L2CAP Service;C:\windows\system32\DRIVERS\btwl2cap.sys --> C:\windows\system32\DRIVERS\btwl2cap.sys [?]
R3 CT20XUT.SYS;CT20XUT.SYS;C:\windows\system32\drivers\CT20XUT.SYS --> C:\windows\system32\drivers\CT20XUT.SYS [?]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;C:\windows\system32\drivers\CTEXFIFX.SYS --> C:\windows\system32\drivers\CTEXFIFX.SYS [?]
R3 CTHWIUT.SYS;CTHWIUT.SYS;C:\windows\system32\drivers\CTHWIUT.SYS --> C:\windows\system32\drivers\CTHWIUT.SYS [?]
R3 esgiguard;esgiguard;C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2011-3-2 13088]
R3 ha20x22k;Creative 20X2 HAL Driver;C:\windows\system32\drivers\ha20x22k.sys --> C:\windows\system32\drivers\ha20x22k.sys [?]
R3 L6TPortB;Service - Line 6 TonePort UX2;C:\windows\system32\Drivers\L6TPortB64.sys --> C:\windows\system32\Drivers\L6TPortB64.sys [?]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\windows\system32\drivers\LGBusEnum.sys --> C:\windows\system32\drivers\LGBusEnum.sys [?]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\windows\system32\drivers\LGVirHid.sys --> C:\windows\system32\drivers\LGVirHid.sys [?]
R3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;C:\windows\system32\Drivers\nx6000.sys --> C:\windows\system32\Drivers\nx6000.sys [?]
R3 NisDrv;Microsoft Network Inspection System;C:\windows\system32\DRIVERS\NisDrvWFP.sys --> C:\windows\system32\DRIVERS\NisDrvWFP.sys [?]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\windows\system32\drivers\nvhda64v.sys --> C:\windows\system32\drivers\nvhda64v.sys [?]
R3 nvoclk64;NVIDIA Enthusiasts Platform KDM;C:\windows\system32\DRIVERS\nvoclk64.sys --> C:\windows\system32\DRIVERS\nvoclk64.sys [?]
R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
R3 RDPDISPM;RDPDISPM;C:\windows\system32\DRIVERS\rdpdispm.sys --> C:\windows\system32\DRIVERS\rdpdispm.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\system32\DRIVERS\Rt64win7.sys --> C:\windows\system32\DRIVERS\Rt64win7.sys [?]
R3 RzSynapse;Razer Driver;C:\windows\system32\DRIVERS\RzSynapse.sys --> C:\windows\system32\DRIVERS\RzSynapse.sys [?]
R3 WSDPrintDevice;WSD Print Support via UMB;C:\windows\system32\DRIVERS\WSDPrint.sys --> C:\windows\system32\DRIVERS\WSDPrint.sys [?]
S2 BackupService;BackupService;C:\Users\Gary Maki\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2011-2-24 83512]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-1-3 136176]
S3 a4wnetMgrService;Sage Accpac .NET Remoting Service;C:\Program Files (x86)\Common Files\Sage\Sage Accpac\a4wnetMgrService.exe [2009-10-26 20480]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-1 253600]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-2-28 183560]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-11-30 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-11-30 79360]
S3 Creative Media Toolbox 6 Licensing Service;Creative Media Toolbox 6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe [2011-1-30 79360]
S3 CT20XUT;CT20XUT;C:\windows\system32\drivers\CT20XUT.SYS --> C:\windows\system32\drivers\CT20XUT.SYS [?]
S3 CTEXFIFX;CTEXFIFX;C:\windows\system32\drivers\CTEXFIFX.SYS --> C:\windows\system32\drivers\CTEXFIFX.SYS [?]
S3 CTHWIUT;CTHWIUT;C:\windows\system32\drivers\CTHWIUT.SYS --> C:\windows\system32\drivers\CTHWIUT.SYS [?]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2011-11-14 14216]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2011-11-14 8456]
S3 fssfltr;fssfltr;C:\windows\system32\DRIVERS\fssfltr.sys --> C:\windows\system32\DRIVERS\fssfltr.sys [?]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-9-30 30192]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-1-3 136176]
S3 L6PODHD5;Service - Line 6 POD HD500;C:\windows\system32\Drivers\L6PODHD564.sys --> C:\windows\system32\Drivers\L6PODHD564.sys [?]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\windows\system32\DRIVERS\LEqdUsb.Sys --> C:\windows\system32\DRIVERS\LEqdUsb.Sys [?]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\windows\system32\DRIVERS\LHidEqd.Sys --> C:\windows\system32\DRIVERS\LHidEqd.Sys [?]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;C:\windows\system32\DRIVERS\ManyCam_x64.sys --> C:\windows\system32\DRIVERS\ManyCam_x64.sys [?]
S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\windows\system32\DRIVERS\MpNWMon.sys --> C:\windows\system32\DRIVERS\MpNWMon.sys [?]
S3 StorSvc;Storage Service;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
S3 SymDSMon;SymDSMon;\??\C:\Windows\system32\drivers\SymDSMon.sys --> C:\Windows\system32\drivers\SymDSMon.sys [?]
S3 SYMSpeedDisk;SYMSpeedDisk;C:\Windows\System32\drivers\SymSpeedDisk.sys [2011-10-27 108800]
S3 TarFltr;Razer Tarantula USB Keyboard;C:\windows\system32\drivers\UsbFltr.sys --> C:\windows\system32\drivers\UsbFltr.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\windows\system32\drivers\tsusbflt.sys --> C:\windows\system32\drivers\tsusbflt.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\system32\Drivers\usbaapl64.sys --> C:\windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\system32\Wat\WatAdminSvc.exe --> C:\windows\system32\Wat\WatAdminSvc.exe [?]
S3 WMZuneComm;Zune Windows Mobile Connectivity Service;C:\Program Files\Zune\WMZuneComm.exe [2011-8-5 306400]
S3 XENfiltv;XENfiltv;C:\windows\system32\drivers\XENfiltv.sys --> C:\windows\system32\drivers\XENfiltv.sys [?]
S3 ZCinema_TSHD_x64;ZCinema TruSurround HD driver;C:\windows\system32\drivers\ZCinema_SRS_amd64.sys --> C:\windows\system32\drivers\ZCinema_SRS_amd64.sys [?]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files (x86)\Microsoft SQL Server\100\Shared\sqladhlp.exe [2008-8-15 47128]
S4 SQLAgent$ACCPAC56CGA;SQL Server Agent (ACCPAC56CGA);C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.ACCPAC56CGA\MSSQL\Binn\SQLAGENT.EXE [2011-9-22 370024]
.
=============== Created Last 30 ================
.
2012-04-03 22:20:26 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{9C9B009C-5B69-4CF1-B198-2730D424A56A}
2012-04-02 22:37:10 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4DC7C4BA-BB6C-47F2-954D-9E7319240233}\offreg.dll
2012-04-02 22:31:11 8669240 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4DC7C4BA-BB6C-47F2-954D-9E7319240233}\mpengine.dll
2012-04-02 22:20:37 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{C77DC980-5E38-424A-A3F1-DA7A929666E0}
2012-04-02 00:43:50 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{F137310C-6122-45D7-91E3-3ADFF5301981}
2012-04-01 17:24:40 -------- d-----w- C:\ProgramData\AVAST Software
2012-04-01 17:24:40 -------- d-----w- C:\Program Files\AVAST Software
2012-04-01 16:52:24 110080 ----a-r- C:\Users\Gary Maki\AppData\Roaming\Microsoft\Installer\{5B210B8A-B66E-4702-B44D-0D6F388D29EB}\IconF7A21AF7.exe
2012-04-01 16:52:24 110080 ----a-r- C:\Users\Gary Maki\AppData\Roaming\Microsoft\Installer\{5B210B8A-B66E-4702-B44D-0D6F388D29EB}\IconD7F16134.exe
2012-04-01 16:52:24 110080 ----a-r- C:\Users\Gary Maki\AppData\Roaming\Microsoft\Installer\{5B210B8A-B66E-4702-B44D-0D6F388D29EB}\Icon1226A4C5.exe
2012-04-01 16:52:23 -------- d-----w- C:\sh4ldr
2012-04-01 16:52:23 -------- d-----w- C:\Program Files\Enigma Software Group
2012-04-01 16:51:26 -------- d-----w- C:\windows\5B210B8AB66E4702B44D0D6F388D29EB.TMP
2012-04-01 16:51:25 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2012-04-01 15:37:05 8738464 ----a-w- C:\windows\SysWow64\FlashPlayerInstaller.exe
2012-04-01 14:37:50 418464 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2012-04-01 12:43:26 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{AFB97BE8-9EEF-4D35-87E9-9B7D1AF44F46}
2012-03-31 21:44:39 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{104BA9BF-CE82-4D11-AD03-582E9C87E8C0}
2012-03-31 20:34:37 -------- d-----w- C:\Program Files\iTunes
2012-03-31 20:34:37 -------- d-----w- C:\Program Files\iPod
2012-03-31 20:34:37 -------- d-----w- C:\Program Files (x86)\iTunes
2012-03-30 21:44:04 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{1638AEE5-9A2D-477F-AD36-7FE99CDC7E40}
2012-03-29 22:30:18 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{34F045A4-3B27-4997-B057-0A37CDE03236}
2012-03-28 22:26:14 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{E568F569-85A2-4AC2-AF45-D7F933F396B7}
2012-03-28 22:26:03 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{FB44BE4A-19BF-4B62-9202-84C877E66E5B}
2012-03-26 22:45:03 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{47DBEC5F-C62B-4306-9345-69E9F3D72FD9}
2012-03-26 22:44:53 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{D49C2D21-2449-4E10-B902-39A6A6DA5C1C}
2012-03-25 15:09:20 -------- d-----w- C:\windows\PIXTRAN
2012-03-25 15:09:06 -------- d-----w- C:\Program Files (x86)\Common Files\ScanSoft Shared
2012-03-25 15:09:03 -------- d-----w- C:\Program Files (x86)\Nuance
2012-03-25 14:00:46 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{FFA05387-9682-41F3-87A6-9FB81B13E28A}
2012-03-25 12:31:04 -------- d-----w- C:\Pro_11459.1
2012-03-25 02:00:25 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{D2839EA1-182A-4536-BC69-988ED930F9F5}
2012-03-25 02:00:15 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{67EFFE79-FD68-4E65-BD53-632CAB31E30F}
2012-03-24 14:37:05 -------- d-----w- C:\Users\Gary Maki\AppData\Local\Broadcom
2012-03-24 14:36:53 615976 ----a-w- C:\windows\System32\drivers\btwampfl.sys
2012-03-24 14:35:28 39976 ----a-w- C:\windows\System32\drivers\btwl2cap.sys
2012-03-24 14:35:28 21544 ----a-w- C:\windows\System32\drivers\btwrchid.sys
2012-03-24 14:35:28 211496 ----a-w- C:\windows\System32\drivers\btwavdt.sys
2012-03-24 14:35:28 184360 ----a-w- C:\windows\System32\drivers\btwaudio.sys
2012-03-24 14:35:14 -------- d-----w- C:\Program Files\WIDCOMM
2012-03-24 14:20:24 738936 ----a-w- C:\windows\System32\drivers\NISx64\1306020.00A\srtsp64.sys
2012-03-24 14:20:24 451192 ----a-r- C:\windows\System32\drivers\NISx64\1306020.00A\symds64.sys
2012-03-24 14:20:24 405624 ----a-w- C:\windows\System32\drivers\NISx64\1306020.00A\symnets.sys
2012-03-24 14:20:24 37496 ----a-w- C:\windows\System32\drivers\NISx64\1306020.00A\srtspx64.sys
2012-03-24 14:20:24 190072 ----a-w- C:\windows\System32\drivers\NISx64\1306020.00A\ironx64.sys
2012-03-24 14:20:24 167048 ----a-w- C:\windows\System32\drivers\NISx64\1306020.00A\ccsetx64.sys
2012-03-24 14:20:24 1092728 ----a-w- C:\windows\System32\drivers\NISx64\1306020.00A\symefa64.sys
2012-03-24 14:20:12 -------- d-----w- C:\windows\System32\drivers\NISx64\1306020.00A
2012-03-24 13:59:51 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{D106A2C4-DA34-4FE7-A164-7305A753A0C5}
2012-03-24 13:59:41 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{32046495-7D40-4D0B-BB91-166C9D046371}
2012-03-22 2357 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{B5610E92-151B-404B-A7AE-4D778D156F80}
2012-03-22 2347 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{B52BF8B6-F5C0-463F-83CF-E5AC15E30AA7}
2012-03-22 00:37:44 -------- d-----w- C:\Users\Gary Maki\.jfreereport
2012-03-21 23:44:57 -------- d-----w- C:\Users\Gary Maki\AppData\Roaming\OpenOffice.org
2012-03-21 23:02:37 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{1E80136E-43D0-47D4-B989-2E1EE6A0C65E}
2012-03-21 23:02:27 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{8C0DFE2A-F76C-4B10-8298-6FF9E8569E23}
2012-03-21 01:59:41 73064 ----a-w- C:\windows\SysWow64\perf-MSSQL$ACCPAC56CGA-sqlctr10.3.5500.0.dll
2012-03-20 22:42:52 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{49986536-453B-4F3C-ADD0-ADA6EC6DD057}
2012-03-20 22:42:42 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{E1DD29E8-BCF8-4175-A666-0085092C96CD}
2012-03-20 02:16:47 -------- d-----w- C:\Sage
2012-03-19 22:31:38 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{0B0C3B67-EF7C-45C2-9827-58A1DC0D8AE7}
2012-03-19 22:31:28 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{021A5316-F3E5-4B9B-919A-6BAEA79AB302}
2012-03-19 00:44:39 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{BF9E5170-EE51-4854-900D-CE43F145156A}
2012-03-19 00:44:28 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{91450490-C269-4593-9DD0-FBB47ABD0DD9}
2012-03-19 00:10:03 -------- d-----w- C:\ProgramData\EA Logs
2012-03-18 20:56:07 -------- d-sh--w- C:\Boot
2012-03-18 12:44:05 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{3D262A64-7737-4FD7-BA90-58F85BB6D8D4}
2012-03-18 00:43:44 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{BFAB7BDD-9574-44B4-9FCD-C21270F4A886}
2012-03-17 12:43:23 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{AF9EB070-C94B-4C2E-AD0A-4319547F5868}
2012-03-17 12:43:13 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{0AC1BA74-52B8-4560-BB4A-C79E34743AE5}
2012-03-15 22:24:43 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{43F82D6C-99E9-4127-92FA-8ABD48D8EEB4}
2012-03-15 22:24:34 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{AF4E9871-5BC1-45C2-9944-E58AE009BA1E}
2012-03-15 02:44:16 5559152 ----a-w- C:\windows\System32\ntoskrnl.exe
2012-03-15 02:44:16 3968368 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe
2012-03-15 02:44:16 3913584 ----a-w- C:\windows\SysWow64\ntoskrnl.exe
2012-03-15 01:58:25 -------- d-----w- C:\Users\Gary Maki\AppData\Roaming\RealNetworks
2012-03-15 00:35:55 3145728 ----a-w- C:\windows\System32\win32k.sys
2012-03-15 00:35:55 1544192 ----a-w- C:\windows\System32\DWrite.dll
2012-03-15 00:35:55 1077248 ----a-w- C:\windows\SysWow64\DWrite.dll
2012-03-15 00:34:42 9216 ----a-w- C:\windows\System32\rdrmemptylst.exe
2012-03-15 00:34:42 826880 ----a-w- C:\windows\SysWow64\rdpcore.dll
2012-03-15 00:34:42 77312 ----a-w- C:\windows\System32\rdpwsx.dll
2012-03-15 00:34:42 23552 ----a-w- C:\windows\System32\drivers\tdtcp.sys
2012-03-15 00:34:42 210944 ----a-w- C:\windows\System32\drivers\rdpwd.sys
2012-03-15 00:34:42 149504 ----a-w- C:\windows\System32\rdpcorekmts.dll
2012-03-15 00:34:42 1031680 ----a-w- C:\windows\System32\rdpcore.dll
2012-03-15 00:31:24 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{BF70E8D4-D296-46C9-8A6D-DFECA48073B4}
2012-03-15 00:31:15 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{E00153D5-FDA8-48CD-A377-03AA46F62B78}
2012-03-12 23:34:31 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{92E514E1-6FFF-4C29-A105-806994FBA24E}
2012-03-12 23:34:21 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{9478BCE4-7374-4173-ADC7-81B8A619E295}
2012-03-11 15:34:06 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{08DF3011-DF23-4EE2-9466-1F4DE5CCA9B8}
2012-03-11 15:33:56 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{F486593A-0E12-4110-94DA-88C076148CD1}
2012-03-11 03:33:27 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{0ABD336A-10B6-4783-9E8D-BEA95D8E91F3}
2012-03-10 15:33:06 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{6F3C7C85-BB16-41C6-B149-43DD82CB8D61}
2012-03-10 15:32:56 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{6F9663D5-4A0E-4565-A192-9109750E25ED}
2012-03-09 13:21:54 89960 ----a-w- C:\windows\SysWow64\SQSRVRES.DLL
2012-03-09 12:37:56 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{C49C28E8-B983-4A10-8834-CF78FE305E5D}
2012-03-09 12:37:46 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{FB3F1F9F-A9F1-4771-9DF6-3003176BDD77}
2012-03-07 23:51:10 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{9564FF13-42E5-4875-862E-ACC794286227}
2012-03-07 23:50:59 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{A50E2DB1-E806-45DB-8085-2A3B39E4DBD2}
2012-03-07 01:12:57 1125 ----a-w- C:\windows\A4WINSTU.BAT
2012-03-07 01:00:40 -------- d-----w- C:\Program Files (x86)\Common Files\Sage
2012-03-07 00:50:59 50200 ----a-w- C:\windows\SysWow64\perf-SQLAgent$ACCPAC56CGA-sqlagtctr10.0.1600.22.dll
2012-03-07 00:48:51 -------- d-----w- C:\Program Files (x86)\Microsoft Synchronization Services
2012-03-07 00:45:55 -------- d-----w- C:\windows\SysWow64\1033
2012-03-07 00:45:55 -------- d-----w- C:\windows\System32\1033
2012-03-07 00:45:55 -------- d-----w- C:\Program Files\Microsoft SQL Server
2012-03-07 00:44:19 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server
2012-03-06 23:18:28 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{9B0633CD-FBD5-4DD3-9932-8845CB7839D6}
2012-03-06 23:18:18 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{6BF85C8B-21FC-4EBA-A26E-2A380E0C7B65}
2012-03-05 19:38:34 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{9C1E4737-0D41-4001-A503-1B8EE9D9803F}
2012-03-05 19:38:24 -------- d-----w- C:\Users\Gary Maki\AppData\Local\{22B030EE-CC56-4717-9B1E-0D333B2D5670}
.
==================== Find3M ====================
.
2012-04-01 15:37:27 70304 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-01 14:48:11 472808 ----a-w- C:\windows\SysWow64\deployJava1.dll
2012-03-25 16:22:48 280904 ----a-w- C:\windows\SysWow64\PnkBstrB.xtr
2012-03-25 16:22:48 280904 ----a-w- C:\windows\SysWow64\PnkBstrB.exe
2012-03-25 15:32:54 282864 ----a-w- C:\windows\SysWow64\PnkBstrB.ex0
2012-03-24 21:42:10 76888 ----a-w- C:\windows\SysWow64\PnkBstrA.exe
2012-03-24 14:20:28 175736 ----a-w- C:\windows\System32\drivers\SYMEVENT64x86.SYS
2012-03-01 01:33:33 499712 ----a-w- C:\windows\SysWow64\msvcp71.dll
2012-03-01 01:33:33 348160 ----a-w- C:\windows\SysWow64\msvcr71.dll
2012-02-15 15:01:50 52736 ----a-w- C:\windows\System32\drivers\usbaapl64.sys
2012-02-15 15:01:50 4547944 ----a-w- C:\windows\System32\usbaaplrc.dll
2012-02-10 03:14:04 6074176 ----a-w- C:\windows\System32\nvcpl.dll
2012-02-10 03:14:01 3089728 ----a-w- C:\windows\System32\nvsvc64.dll
2012-02-10 03:07:00 889664 ----a-w- C:\windows\System32\nvvsvc.exe
2012-02-10 03:07:00 63296 ----a-w- C:\windows\System32\nvshext.dll
2012-02-10 03:07:00 118080 ----a-w- C:\windows\System32\nvmctray.dll
2012-02-10 03:05:59 2497985 ----a-w- C:\windows\System32\nvcoproc.bin
2012-02-10 01:05:44 416064 ----a-w- C:\windows\SysWow64\nvStreaming.exe
2012-02-08 23:29:34 1227264 ----a-w- C:\windows\System32\L6DriverControlPanel.cpl
2012-02-08 02:43:43 2560 ----a-w- C:\windows\_MSRSTRT.EXE
2012-01-31 12:44:20 279656 ------w- C:\windows\System32\MpSigStub.exe
2012-01-17 12:46:01 31040 ----a-w- C:\windows\System32\nvhdap64.dll
2012-01-17 12:45:56 188224 ----a-w- C:\windows\System32\drivers\nvhda64v.sys
2012-01-17 12:45:55 1451840 ----a-w- C:\windows\System32\nvhdagenco6420103.dll
.
============= FINISH: 18:35:54.06 ===============
gunslinger_11 is offline  
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
how to used my dedicated video card [sony vaio C series] [HELP]
hello techsupport team and all forumers.. I have problem with my sony vaio c series for almost a year now on how to switch my graphics to my dedicated 1Gb Video Card. I try playing online games and do some PVP's but everytime i used control my videocard( iguess) beeps and hangs my pc. I am...
kokorokoko Laptop Support 20 05-05-2012 05:36 AM
Help in HTML Code
Dear all. I have some experience in html language. I used to add a background music for a website's home page, autoplayed, using a simple html code. Now I want to add a background music in a blog, I tried the same way as before, it works fine when opening the website/blog, but the music is...
hazim Web Design & Development 16 04-17-2012 01:27 PM
[SOLVED] Maybe the sound card but I need some help
Over the past few weeks I find I am not able to stream videos that is You tube or a TV program. The sound is Ok to start and then after 30 secs or sometimes longer it starts to "burble" and then cuts out altogether. The video is not affected and continues to stream but without sound. The effect is...
charisma Sound Cards 4 04-08-2012 03:55 AM
Minecraft black screen after Login/loading PLEASE HELP
Hello, I downloaded minecraft about 3 months ago. I played it on my Mac, and it didn't run smoothly at all. I whipped out my old eMachine T6412 from about 5 years ago and set it up. It runs fast and fine, but Minecraft does not work. I type in my login, and press login and it loads. Right...
wtoj34 PC Gaming Support 10 04-06-2012 06:34 PM
HDTV HDMI screen blur / pixelated HELP! 32" wide screen LCD
Hi I recently bought a HDMI cable as I just got a new graphics card, the Radeon 6850. When I connect the HDTV to the computer with the HDMI, text is blurry / pixelated. I have a 32" wide screen LCD model 5132C. changing scaling options in the catalyst control center does nothing for the...
michaelg1 Other Hardware Support 6 04-03-2012 11:53 AM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 06:01 AM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts