dont know if I did this right, but here are the 2 attachments you requested for virus cleaning....
1. had previous problem booting up windows 7 prof. finally did get booted
2. have run antivirus/spyware/malwarebytes etc, no evidence of aforementioned.
3. computer has acted weird: is not letting me open links, not allowing me to open sites
4. currently, have kept updated but now...says I have 8 win updates; when closing, it "downloads"; then when I check after it does this, its the same update numbers as before (looping); also when checking for updates, its giving me an error installation failed.
thanks for your help; awaiting instructions what to do next. let me know asap please, and if you need anything else.
DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK
Internet Explorer: 11.0.9600.18739
Run by Sue at 14:35:46 on 2017-08-26
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.12245.10044 [GMT -4:00]
.
AV: adaware antivirus *Disabled/Updated* {2C8A0DAA-E78D-4944-DB01-263173C8FFD9}
AV: McAfee VirusScan *Enabled/Updated* {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
SP: adaware antivirus *Disabled/Updated* {97EBEC4E-C1B7-46CA-E1B1-1D43084FB564}
SP: Spybot - Search and Destroy *Disabled/Outdated* {A16C3F68-9280-E053-1818-342707FECF4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee VirusScan *Enabled/Updated* {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall *Enabled* {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
C:\windows\system32\mfevtps.exe
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
C:\windows\system32\mfevtps.exe
C:\windows\Explorer.EXE
C:\windows\system32\ctfmon.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\McAfee\MfeAV\MFEAvSvc.exe
C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\windows\explorer.exe
C:\Users\Sue\AppData\Roaming\Dashlane\Dashlane.exe
C:\Users\Sue\AppData\Roaming\Dashlane\DashlanePlugin.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uSearch Bar = Preserve
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe,
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Dashlane BHO: {42D79B50-CC4A-4A8E-860F-BE674AF053A2} - C:\Users\Sue\AppData\Roaming\Dashlane\ie\Dashlanei.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: McAfee WebAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: Dashlane Toolbar: {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Sue\AppData\Roaming\Dashlane\ie\KWIEBar.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [Dashlane] "C:\Users\Sue\AppData\Roaming\Dashlane\Dashlane.exe" autoLaunchAtStartup
uRun: [DashlanePlugin] "C:\Users\Sue\AppData\Roaming\Dashlane\DashlanePlugin.exe" ws
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 75.114.81.1 75.114.81.2
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551} : DHCPNameServer = 75.114.81.1 75.114.81.2
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\6427F6E6479656270243030313 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\7697073797C6164697 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\7697073797C616469743 : DHCPNameServer = 192.168.254.254
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: SDWinLogon - SDWinLogon.dll
AppInit_DLLs= C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL
SSODL: WebCheck - <orphaned>
mASetup: {438363A8-F486-4C37-834C-4955773CB3D3} - msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
x64-mStart Page = about:blank
x64-mDefault_Page_URL = hxxp://hp13.msn.com
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: McAfee WebAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll
x64-BHO: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - <orphaned>
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-IE: {48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\MSC\McSnIePl64.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Hosts: 127.0.0.1 spywareinfo.comÂ*-Â*This website is for sale!Â*-Â*spywareinfo Resources and Information.
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Sue\AppData\Roaming\Mozilla\Firefox\Profiles\huqhw87e.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.ixquick.com/do/mypage.pl?prf=5f3fcc14ac928f3e5d00a721545f09bb
FF - plugin: c:\PROGRA~1\mcafee\msc\npMcSnFFPl64.dll
FF - plugin: C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
FF - plugin: C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrlui.dll
FF - plugin: C:\windows\System32\Macromed\Flash\NPSWF64_26_0_0_151.dll
.
============= SERVICES / DRIVERS ===============
.
R0 EUBAKUP;EUBAKUP;C:\windows\System32\drivers\eubakup.sys [2017-1-1 66040]
R0 EUBKMON;EUBKMON;C:\windows\System32\drivers\EUBKMON.sys [2017-1-1 53240]
R0 iaStorA;iaStorA;C:\windows\System32\drivers\iaStorA.sys [2015-3-13 670056]
R0 iaStorF;iaStorF;C:\windows\System32\drivers\iaStorF.sys [2015-3-13 30360]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\windows\System32\drivers\iusb3hcs.sys [2016-5-5 22800]
R0 mfehidk;McAfee Inc. mfehidk;C:\windows\System32\drivers\mfehidk.sys [2017-4-3 918544]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\windows\System32\drivers\mfewfpk.sys [2017-4-3 252432]
R2 adawareantivirusservice;adaware antivirus service;C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe [2017-7-19 585784]
R2 McAPExe;McAfee AP Service;C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe [2017-6-9 984480]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
R2 mfemms;McAfee Service Controller;C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [2017-6-9 390656]
R2 ModuleCoreService;McAfee Module Core Service;C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2017-6-9 1543248]
R3 cfwids;McAfee Inc. cfwids;C:\windows\System32\drivers\cfwids.sys [2017-4-3 76824]
R3 IntelReadyModeDriver;Intel® Ready Mode Technology Service;C:\windows\System32\drivers\IntelReadyModeDriver.sys [2014-1-23 24776]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\windows\System32\drivers\iusb3hub.sys [2016-5-5 388880]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\windows\System32\drivers\iusb3xhc.sys [2016-5-5 799504]
R3 keycrypt;keycrypt;C:\windows\System32\drivers\KeyCrypt64.sys [2016-2-19 143904]
R3 mfeaack;McAfee Inc. mfeaack;C:\windows\System32\drivers\mfeaack.sys [2017-4-3 476176]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\windows\System32\drivers\mfeavfk.sys [2017-4-3 353808]
R3 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2017-6-9 241656]
R3 mfefirek;McAfee Inc. mfefirek;C:\windows\System32\drivers\mfefirek.sys [2017-4-3 504336]
R3 mfevtp;McAfee Validation Trust Protection Service;C:\windows\System32\mfevtps.exe [2017-6-9 343544]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2016-12-2 1026304]
R3 RTSUER;Realtek USB Card Reader - UER;C:\windows\System32\drivers\RtsUer.sys [2016-8-14 402136]
R3 XtuAcpiDriver;Intel(R) Extreme Tuning Utility Device Service;C:\windows\System32\drivers\XtuAcpiDriver.sys [2016-11-22 54344]
S1 CLVirtualDrive;CLVirtualDrive;C:\windows\System32\drivers\CLVirtualDrive.sys [2016-2-11 91912]
S1 EUDSKACS;EUDSKACS;C:\windows\System32\drivers\eudskacs.sys [2017-1-1 23544]
S1 EUFDDISK;EUFDDISK;C:\windows\System32\drivers\EuFdDisk.sys [2017-1-1 197624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-4-21 107656]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-4-21 128648]
S2 DiagTrack;Diagnostics Tracking Service;C:\windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
S2 EaseUS Agent;EaseUS Agent Service;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2017-8-6 39616]
S2 GfExperienceService;NVIDIA GeForce Experience Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-2-11 1148744]
S2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-12-7 31776]
S2 ibtsiva;Intel Bluetooth Service;C:\windows\System32\ibtsiva --> C:\windows\System32\ibtsiva [?]
S2 IRMTService;Intel(R) Ready Mode Technology;C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe [2015-1-5 180520]
S2 iumsvc;Intel(R) Update Manager;C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-8-12 177376]
S2 MacriumService;Macrium Service;C:\Program Files\Macrium\Common\MacriumService.exe [2017-6-7 3894760]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [2017-8-5 590880]
S2 McBootDelayStartSvc;McAfee Boot Delay Start Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 mccspsvc;McAfee CSP Service;C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe [2017-5-30 2139832]
S2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-2-11 1795912]
S2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2016-2-11 19439944]
S2 PEFService;Intel Security PEF Service;C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2017-6-9 1042288]
S2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-11-26 307456]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2016-2-19 4088608]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2015-6-12 3831200]
S3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\drivers\btmaux.sys [2016-4-11 153616]
S3 btmhsf;btmhsf;C:\windows\System32\drivers\btmhsf.sys [2014-6-17 1424184]
S3 btmlehid;Intel Bluetooth Low Energy HID Service;C:\windows\System32\drivers\btmlehid.sys [2014-2-3 83256]
S3 ClientAnalyticsService;ClientAnalyticsService;C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [2017-6-9 1752992]
S3 dmvsc;dmvsc;C:\windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 gzflt;gzflt;C:\windows\System32\drivers\gzflt.sys [2017-2-8 178384]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\windows\System32\drivers\HipShieldK.sys [2017-6-9 209608]
S3 hpvision;hpvision;C:\windows\System32\drivers\hp64vision.sys [2016-2-12 26912]
S3 htcnprot;HTC NDIS Protocol Driver;C:\windows\System32\drivers\htcnprot.sys [2013-10-17 36928]
S3 HtcVCom32;HTC Diagnostic Port;C:\windows\System32\drivers\HtcVComV64.sys [2010-3-9 121800]
S3 ibtusb;Intel(R) Wireless Bluetooth(R);C:\windows\System32\drivers\ibtusb.sys [2016-11-19 214272]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2017-7-12 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-5-13 887256]
S3 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-8-13 154584]
S3 mfencbdc;McAfee Inc. mfencbdc;C:\windows\System32\drivers\mfencbdc.sys [2017-4-7 495632]
S3 mfencrk;McAfee Inc. mfencrk;C:\windows\System32\drivers\mfencrk.sys [2017-4-7 107544]
S3 mfeplk;McAfee Inc. mfeplk;C:\windows\System32\drivers\mfeplk.sys [2017-4-3 109072]
S3 mfesapsn;McAfee Process Start Notification Service;C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-8-5 111608]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-6-12 268192]
S3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-2-11 19272]
S3 NVSWCFilter;NVIDIA SHIELD Wireless Controller Trackpad Service;C:\windows\System32\drivers\nvswcfilter.sys [2016-2-11 19616]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\windows\System32\drivers\nvvad64v.sys [2016-2-11 38048]
S3 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2016-4-9 19456]
S3 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2016-2-19 1738168]
S3 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2016-2-19 235984]
S3 stornvme;stornvme;C:\windows\System32\drivers\stornvme.sys [2014-12-9 50616]
S3 StorSvc;Storage Service;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2016-5-4 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2016-5-4 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2016-2-22 1255736]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\windows\System32\drivers\wdcsam64.sys [2015-4-30 23200]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-6-17 1202552]
S4 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-7-14 1710456]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-7-14 1161592]
.
=============== Created Last 30 ================
.
2017-08-12 17:00:15 5 ----a-w- C:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp
2017-08-12 12:27:32 -------- d-----w- C:\Program Files (x86)\Macrium
2017-08-06 21:11:47 -------- d-----w- C:\Program Files\adaware
2017-08-06 21:06:47 -------- d-----w- C:\ProgramData\adaware
2017-08-06 14:33:35 -------- d-----w- C:\windows\System32\appmgmt
2017-08-05 06:40:10 1721576 ----a-w- C:\windows\System32\WdfCoInstaller01009.dll
2017-08-04 03:19:05 -------- d-----w- C:\ProgramData\Recovery
.
==================== Find3M ====================
.
2017-08-15 17:28:56 803328 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2017-08-15 17:28:56 144896 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-08-06 04:00:17 471040 --sha-w- C:\EUMONBMP.SYS
2017-08-05 06:55:10 402136 ----a-w- C:\windows\System32\drivers\RtsUer.sys
2017-08-05 06:48:16 41984 ----a-w- C:\windows\System32\drivers\USB3Ver.dll
2017-07-06 04:56:32 119296 ----a-w- C:\windows\System32\drivers\bthpan.sys
2017-06-30 02:57:24 2319872 ----a-w- C:\windows\System32\tquery.dll
2017-06-30 02:57:21 2058240 ----a-w- C:\windows\System32\Query.dll
2017-06-30 02:57:17 99840 ----a-w- C:\windows\System32\mssprxy.dll
2017-06-30 02:57:17 778240 ----a-w- C:\windows\System32\mssvp.dll
2017-06-30 02:57:17 75264 ----a-w- C:\windows\System32\msscntrs.dll
2017-06-30 02:57:17 491520 ----a-w- C:\windows\System32\mssph.dll
2017-06-30 02:57:17 288256 ----a-w- C:\windows\System32\mssphtb.dll
2017-06-30 02:57:17 2222080 ----a-w- C:\windows\System32\mssrch.dll
2017-06-30 02:57:17 14336 ----a-w- C:\windows\System32\msshooks.dll
2017-06-30 02:57:17 115200 ----a-w- C:\windows\System32\mssitlb.dll
2017-06-30 02:40:25 591872 ----a-w- C:\windows\System32\SearchIndexer.exe
2017-06-30 02:40:18 249856 ----a-w- C:\windows\System32\SearchProtocolHost.exe
2017-06-30 02:39:38 113664 ----a-w- C:\windows\System32\SearchFilterHost.exe
2017-06-30 02:39:01 1549312 ----a-w- C:\windows\SysWow64\tquery.dll
2017-06-30 02:38:58 1363968 ----a-w- C:\windows\SysWow64\Query.dll
2017-06-30 02:38:54 666624 ----a-w- C:\windows\SysWow64\mssvp.dll
2017-06-30 02:38:54 59392 ----a-w- C:\windows\SysWow64\msscntrs.dll
2017-06-30 02:38:54 34816 ----a-w- C:\windows\SysWow64\mssprxy.dll
2017-06-30 02:38:54 337408 ----a-w- C:\windows\SysWow64\mssph.dll
2017-06-30 02:38:54 197120 ----a-w- C:\windows\SysWow64\mssphtb.dll
2017-06-30 02:38:54 1400320 ----a-w- C:\windows\SysWow64\mssrch.dll
2017-06-30 02:38:54 104448 ----a-w- C:\windows\SysWow64\mssitlb.dll
2017-06-30 02:27:15 427520 ----a-w- C:\windows\SysWow64\SearchIndexer.exe
2017-06-30 02:27:04 164352 ----a-w- C:\windows\SysWow64\SearchProtocolHost.exe
2017-06-30 02:26:41 86528 ----a-w- C:\windows\SysWow64\SearchFilterHost.exe
2017-06-30 02:26:20 9728 ----a-w- C:\windows\SysWow64\msshooks.dll
2017-06-29 06:19:09 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2017-06-29 06:18:58 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2017-06-29 06:04:12 66560 ----a-w- C:\windows\System32\iesetup.dll
2017-06-29 06:03:28 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2017-06-29 06:03:20 417792 ----a-w- C:\windows\System32\html.iec
2017-06-29 06:02:52 88064 ----a-w- C:\windows\System32\MshtmlDac.dll
2017-06-29 06:02:46 576512 ----a-w- C:\windows\System32\vbscript.dll
2017-06-29 05:50:26 144384 ----a-w- C:\windows\System32\ieUnatt.exe
2017-06-29 05:50:26 116224 ----a-w- C:\windows\System32\ieetwcollector.exe
2017-06-29 05:50:10 814080 ----a-w- C:\windows\System32\jscript9diag.dll
2017-06-29 05:44:36 5975552 ----a-w- C:\windows\System32\jscript9.dll
2017-06-29 05:43:07 968704 ----a-w- C:\windows\System32\MsSpellCheckingFacility.exe
2017-06-29 05:35:46 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2017-06-29 05:31:50 77824 ----a-w- C:\windows\System32\JavaScriptCollectionAgent.dll
2017-06-29 05:31:23 87552 ----a-w- C:\windows\System32\tdc.ocx
2017-06-29 05:23:40 62464 ----a-w- C:\windows\SysWow64\iesetup.dll
2017-06-29 05:23:38 499200 ----a-w- C:\windows\SysWow64\vbscript.dll
2017-06-29 05:23:03 47616 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2017-06-29 05:22:54 341504 ----a-w- C:\windows\SysWow64\html.iec
2017-06-29 05:22:01 64000 ----a-w- C:\windows\SysWow64\MshtmlDac.dll
2017-06-29 05:13:38 115712 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2017-06-29 05:13:19 620032 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2017-06-29 05:08:32 1359360 ----a-w- C:\windows\System32\mshtmlmedia.dll
2017-06-29 05:07:16 2132992 ----a-w- C:\windows\System32\inetcpl.cpl
2017-06-29 05:01:01 60416 ----a-w- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2017-06-29 05:00:32 73216 ----a-w- C:\windows\SysWow64\tdc.ocx
2017-06-29 04:53:46 3240960 ----a-w- C:\windows\System32\wininet.dll
2017-06-29 04:52:52 4549632 ----a-w- C:\windows\SysWow64\jscript9.dll
2017-06-29 04:46:33 2057216 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2017-06-29 04:46:20 1155072 ----a-w- C:\windows\SysWow64\mshtmlmedia.dll
2017-06-29 04:28:59 2767872 ----a-w- C:\windows\SysWow64\wininet.dll
2017-06-22 14:58:48 3223040 ----a-w- C:\windows\System32\win32k.sys
2017-06-15 20:23:49 753664 ----a-w- C:\windows\System32\drivers\http.sys
2017-06-12 22:54:32 95464 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2017-06-12 22:54:32 154856 ----a-w- C:\windows\System32\drivers\ksecpkg.sys
2017-06-12 22:54:31 370920 ----a-w- C:\windows\System32\clfs.sys
2017-06-12 22:29:03 96768 ----a-w- C:\windows\SysWow64\sspicli.dll
2017-06-12 22:29:03 82944 ----a-w- C:\windows\SysWow64\bcrypt.dll
2017-06-12 22:29:03 666112 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2017-06-12 22:29:03 444928 ----a-w- C:\windows\SysWow64\wvc.dll
2017-06-12 22:29:02 172032 ----a-w- C:\windows\SysWow64\wdigest.dll
2017-06-12 22:29:02 1227264 ----a-w- C:\windows\SysWow64\wdc.dll
2017-06-12 22:29:01 65536 ----a-w- C:\windows\SysWow64\TSpkg.dll
2017-06-12 22:29:01 390144 ----a-w- C:\windows\SysWow64\sysmon.ocx
2017-06-12 22:28:59 22016 ----a-w- C:\windows\SysWow64\secur32.dll
2017-06-12 22:28:58 254464 ----a-w- C:\windows\SysWow64\schannel.dll
2017-06-12 22:28:58 141312 ----a-w- C:\windows\SysWow64\rpchttp.dll
2017-06-12 22:28:57 47104 ----a-w- C:\windows\SysWow64\pdhui.dll
2017-06-12 22:28:54 223232 ----a-w- C:\windows\SysWow64\ncrypt.dll
2017-06-12 22:28:53 60416 ----a-w- C:\windows\SysWow64\msobjs.dll
2017-06-12 22:28:53 261120 ----a-w- C:\windows\SysWow64\msv1_0.dll
2017-06-12 22:28:52 146432 ----a-w- C:\windows\SysWow64\msaudite.dll
2017-06-12 22:28:51 554496 ----a-w- C:\windows\SysWow64\kerberos.dll
2017-06-12 22:28:48 17408 ----a-w- C:\windows\SysWow64\credssp.dll
2017-06-12 22:28:47 342528 ----a-w- C:\windows\SysWow64\certcli.dll
2017-06-12 22:28:46 690688 ----a-w- C:\windows\SysWow64\adtschema.dll
2017-06-12 22:19:20 64000 ----a-w- C:\windows\System32\auditpol.exe
2017-06-12 22:14:07 379392 ----a-w- C:\windows\System32\msinfo32.exe
2017-06-12 22:14:06 172544 ----a-w- C:\windows\System32\perfmon.exe
2017-06-12 22:14:04 103936 ----a-w- C:\windows\System32\resmon.exe
2017-06-12 22:12:49 159744 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
2017-06-12 22:12:16 291328 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
2017-06-12 22:12:14 129536 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
2017-06-12 22:11:32 30720 ----a-w- C:\windows\System32\lsass.exe
2017-06-12 22:09:30 50176 ----a-w- C:\windows\SysWow64\auditpol.exe
2017-06-12 22:06:51 157184 ----a-w- C:\windows\SysWow64\perfmon.exe
2017-06-12 22:06:50 303616 ----a-w- C:\windows\SysWow64\msinfo32.exe
2017-06-12 22:06:50 103424 ----a-w- C:\windows\SysWow64\resmon.exe
.
============= FINISH: 14:36:41.49 ===============
1. had previous problem booting up windows 7 prof. finally did get booted
2. have run antivirus/spyware/malwarebytes etc, no evidence of aforementioned.
3. computer has acted weird: is not letting me open links, not allowing me to open sites
4. currently, have kept updated but now...says I have 8 win updates; when closing, it "downloads"; then when I check after it does this, its the same update numbers as before (looping); also when checking for updates, its giving me an error installation failed.
thanks for your help; awaiting instructions what to do next. let me know asap please, and if you need anything else.
DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK
Internet Explorer: 11.0.9600.18739
Run by Sue at 14:35:46 on 2017-08-26
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.12245.10044 [GMT -4:00]
.
AV: adaware antivirus *Disabled/Updated* {2C8A0DAA-E78D-4944-DB01-263173C8FFD9}
AV: McAfee VirusScan *Enabled/Updated* {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
SP: adaware antivirus *Disabled/Updated* {97EBEC4E-C1B7-46CA-E1B1-1D43084FB564}
SP: Spybot - Search and Destroy *Disabled/Outdated* {A16C3F68-9280-E053-1818-342707FECF4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee VirusScan *Enabled/Updated* {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall *Enabled* {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
C:\windows\system32\mfevtps.exe
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
C:\windows\system32\mfevtps.exe
C:\windows\Explorer.EXE
C:\windows\system32\ctfmon.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\McAfee\MfeAV\MFEAvSvc.exe
C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\windows\explorer.exe
C:\Users\Sue\AppData\Roaming\Dashlane\Dashlane.exe
C:\Users\Sue\AppData\Roaming\Dashlane\DashlanePlugin.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uSearch Bar = Preserve
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe,
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Dashlane BHO: {42D79B50-CC4A-4A8E-860F-BE674AF053A2} - C:\Users\Sue\AppData\Roaming\Dashlane\ie\Dashlanei.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: McAfee WebAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: Dashlane Toolbar: {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Sue\AppData\Roaming\Dashlane\ie\KWIEBar.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [Dashlane] "C:\Users\Sue\AppData\Roaming\Dashlane\Dashlane.exe" autoLaunchAtStartup
uRun: [DashlanePlugin] "C:\Users\Sue\AppData\Roaming\Dashlane\DashlanePlugin.exe" ws
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 75.114.81.1 75.114.81.2
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551} : DHCPNameServer = 75.114.81.1 75.114.81.2
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\6427F6E6479656270243030313 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\7697073797C6164697 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\7697073797C616469743 : DHCPNameServer = 192.168.254.254
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: SDWinLogon - SDWinLogon.dll
AppInit_DLLs= C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL
SSODL: WebCheck - <orphaned>
mASetup: {438363A8-F486-4C37-834C-4955773CB3D3} - msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
x64-mStart Page = about:blank
x64-mDefault_Page_URL = hxxp://hp13.msn.com
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: McAfee WebAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll
x64-BHO: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - <orphaned>
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-IE: {48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\MSC\McSnIePl64.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Hosts: 127.0.0.1 spywareinfo.comÂ*-Â*This website is for sale!Â*-Â*spywareinfo Resources and Information.
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Sue\AppData\Roaming\Mozilla\Firefox\Profiles\huqhw87e.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.ixquick.com/do/mypage.pl?prf=5f3fcc14ac928f3e5d00a721545f09bb
FF - plugin: c:\PROGRA~1\mcafee\msc\npMcSnFFPl64.dll
FF - plugin: C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
FF - plugin: C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrlui.dll
FF - plugin: C:\windows\System32\Macromed\Flash\NPSWF64_26_0_0_151.dll
.
============= SERVICES / DRIVERS ===============
.
R0 EUBAKUP;EUBAKUP;C:\windows\System32\drivers\eubakup.sys [2017-1-1 66040]
R0 EUBKMON;EUBKMON;C:\windows\System32\drivers\EUBKMON.sys [2017-1-1 53240]
R0 iaStorA;iaStorA;C:\windows\System32\drivers\iaStorA.sys [2015-3-13 670056]
R0 iaStorF;iaStorF;C:\windows\System32\drivers\iaStorF.sys [2015-3-13 30360]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\windows\System32\drivers\iusb3hcs.sys [2016-5-5 22800]
R0 mfehidk;McAfee Inc. mfehidk;C:\windows\System32\drivers\mfehidk.sys [2017-4-3 918544]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\windows\System32\drivers\mfewfpk.sys [2017-4-3 252432]
R2 adawareantivirusservice;adaware antivirus service;C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe [2017-7-19 585784]
R2 McAPExe;McAfee AP Service;C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe [2017-6-9 984480]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
R2 mfemms;McAfee Service Controller;C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [2017-6-9 390656]
R2 ModuleCoreService;McAfee Module Core Service;C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2017-6-9 1543248]
R3 cfwids;McAfee Inc. cfwids;C:\windows\System32\drivers\cfwids.sys [2017-4-3 76824]
R3 IntelReadyModeDriver;Intel® Ready Mode Technology Service;C:\windows\System32\drivers\IntelReadyModeDriver.sys [2014-1-23 24776]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\windows\System32\drivers\iusb3hub.sys [2016-5-5 388880]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\windows\System32\drivers\iusb3xhc.sys [2016-5-5 799504]
R3 keycrypt;keycrypt;C:\windows\System32\drivers\KeyCrypt64.sys [2016-2-19 143904]
R3 mfeaack;McAfee Inc. mfeaack;C:\windows\System32\drivers\mfeaack.sys [2017-4-3 476176]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\windows\System32\drivers\mfeavfk.sys [2017-4-3 353808]
R3 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2017-6-9 241656]
R3 mfefirek;McAfee Inc. mfefirek;C:\windows\System32\drivers\mfefirek.sys [2017-4-3 504336]
R3 mfevtp;McAfee Validation Trust Protection Service;C:\windows\System32\mfevtps.exe [2017-6-9 343544]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2016-12-2 1026304]
R3 RTSUER;Realtek USB Card Reader - UER;C:\windows\System32\drivers\RtsUer.sys [2016-8-14 402136]
R3 XtuAcpiDriver;Intel(R) Extreme Tuning Utility Device Service;C:\windows\System32\drivers\XtuAcpiDriver.sys [2016-11-22 54344]
S1 CLVirtualDrive;CLVirtualDrive;C:\windows\System32\drivers\CLVirtualDrive.sys [2016-2-11 91912]
S1 EUDSKACS;EUDSKACS;C:\windows\System32\drivers\eudskacs.sys [2017-1-1 23544]
S1 EUFDDISK;EUFDDISK;C:\windows\System32\drivers\EuFdDisk.sys [2017-1-1 197624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-4-21 107656]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-4-21 128648]
S2 DiagTrack;Diagnostics Tracking Service;C:\windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
S2 EaseUS Agent;EaseUS Agent Service;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2017-8-6 39616]
S2 GfExperienceService;NVIDIA GeForce Experience Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-2-11 1148744]
S2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-12-7 31776]
S2 ibtsiva;Intel Bluetooth Service;C:\windows\System32\ibtsiva --> C:\windows\System32\ibtsiva [?]
S2 IRMTService;Intel(R) Ready Mode Technology;C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe [2015-1-5 180520]
S2 iumsvc;Intel(R) Update Manager;C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-8-12 177376]
S2 MacriumService;Macrium Service;C:\Program Files\Macrium\Common\MacriumService.exe [2017-6-7 3894760]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [2017-8-5 590880]
S2 McBootDelayStartSvc;McAfee Boot Delay Start Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 mccspsvc;McAfee CSP Service;C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe [2017-5-30 2139832]
S2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-2-11 1795912]
S2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2016-2-11 19439944]
S2 PEFService;Intel Security PEF Service;C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2017-6-9 1042288]
S2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-11-26 307456]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2016-2-19 4088608]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2015-6-12 3831200]
S3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\drivers\btmaux.sys [2016-4-11 153616]
S3 btmhsf;btmhsf;C:\windows\System32\drivers\btmhsf.sys [2014-6-17 1424184]
S3 btmlehid;Intel Bluetooth Low Energy HID Service;C:\windows\System32\drivers\btmlehid.sys [2014-2-3 83256]
S3 ClientAnalyticsService;ClientAnalyticsService;C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [2017-6-9 1752992]
S3 dmvsc;dmvsc;C:\windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 gzflt;gzflt;C:\windows\System32\drivers\gzflt.sys [2017-2-8 178384]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\windows\System32\drivers\HipShieldK.sys [2017-6-9 209608]
S3 hpvision;hpvision;C:\windows\System32\drivers\hp64vision.sys [2016-2-12 26912]
S3 htcnprot;HTC NDIS Protocol Driver;C:\windows\System32\drivers\htcnprot.sys [2013-10-17 36928]
S3 HtcVCom32;HTC Diagnostic Port;C:\windows\System32\drivers\HtcVComV64.sys [2010-3-9 121800]
S3 ibtusb;Intel(R) Wireless Bluetooth(R);C:\windows\System32\drivers\ibtusb.sys [2016-11-19 214272]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2017-7-12 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-5-13 887256]
S3 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-8-13 154584]
S3 mfencbdc;McAfee Inc. mfencbdc;C:\windows\System32\drivers\mfencbdc.sys [2017-4-7 495632]
S3 mfencrk;McAfee Inc. mfencrk;C:\windows\System32\drivers\mfencrk.sys [2017-4-7 107544]
S3 mfeplk;McAfee Inc. mfeplk;C:\windows\System32\drivers\mfeplk.sys [2017-4-3 109072]
S3 mfesapsn;McAfee Process Start Notification Service;C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-8-5 111608]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-6-12 268192]
S3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-2-11 19272]
S3 NVSWCFilter;NVIDIA SHIELD Wireless Controller Trackpad Service;C:\windows\System32\drivers\nvswcfilter.sys [2016-2-11 19616]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\windows\System32\drivers\nvvad64v.sys [2016-2-11 38048]
S3 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2016-4-9 19456]
S3 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2016-2-19 1738168]
S3 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2016-2-19 235984]
S3 stornvme;stornvme;C:\windows\System32\drivers\stornvme.sys [2014-12-9 50616]
S3 StorSvc;Storage Service;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2016-5-4 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2016-5-4 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2016-2-22 1255736]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\windows\System32\drivers\wdcsam64.sys [2015-4-30 23200]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-6-17 1202552]
S4 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-7-14 1710456]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-7-14 1161592]
.
=============== Created Last 30 ================
.
2017-08-12 17:00:15 5 ----a-w- C:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp
2017-08-12 12:27:32 -------- d-----w- C:\Program Files (x86)\Macrium
2017-08-06 21:11:47 -------- d-----w- C:\Program Files\adaware
2017-08-06 21:06:47 -------- d-----w- C:\ProgramData\adaware
2017-08-06 14:33:35 -------- d-----w- C:\windows\System32\appmgmt
2017-08-05 06:40:10 1721576 ----a-w- C:\windows\System32\WdfCoInstaller01009.dll
2017-08-04 03:19:05 -------- d-----w- C:\ProgramData\Recovery
.
==================== Find3M ====================
.
2017-08-15 17:28:56 803328 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2017-08-15 17:28:56 144896 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-08-06 04:00:17 471040 --sha-w- C:\EUMONBMP.SYS
2017-08-05 06:55:10 402136 ----a-w- C:\windows\System32\drivers\RtsUer.sys
2017-08-05 06:48:16 41984 ----a-w- C:\windows\System32\drivers\USB3Ver.dll
2017-07-06 04:56:32 119296 ----a-w- C:\windows\System32\drivers\bthpan.sys
2017-06-30 02:57:24 2319872 ----a-w- C:\windows\System32\tquery.dll
2017-06-30 02:57:21 2058240 ----a-w- C:\windows\System32\Query.dll
2017-06-30 02:57:17 99840 ----a-w- C:\windows\System32\mssprxy.dll
2017-06-30 02:57:17 778240 ----a-w- C:\windows\System32\mssvp.dll
2017-06-30 02:57:17 75264 ----a-w- C:\windows\System32\msscntrs.dll
2017-06-30 02:57:17 491520 ----a-w- C:\windows\System32\mssph.dll
2017-06-30 02:57:17 288256 ----a-w- C:\windows\System32\mssphtb.dll
2017-06-30 02:57:17 2222080 ----a-w- C:\windows\System32\mssrch.dll
2017-06-30 02:57:17 14336 ----a-w- C:\windows\System32\msshooks.dll
2017-06-30 02:57:17 115200 ----a-w- C:\windows\System32\mssitlb.dll
2017-06-30 02:40:25 591872 ----a-w- C:\windows\System32\SearchIndexer.exe
2017-06-30 02:40:18 249856 ----a-w- C:\windows\System32\SearchProtocolHost.exe
2017-06-30 02:39:38 113664 ----a-w- C:\windows\System32\SearchFilterHost.exe
2017-06-30 02:39:01 1549312 ----a-w- C:\windows\SysWow64\tquery.dll
2017-06-30 02:38:58 1363968 ----a-w- C:\windows\SysWow64\Query.dll
2017-06-30 02:38:54 666624 ----a-w- C:\windows\SysWow64\mssvp.dll
2017-06-30 02:38:54 59392 ----a-w- C:\windows\SysWow64\msscntrs.dll
2017-06-30 02:38:54 34816 ----a-w- C:\windows\SysWow64\mssprxy.dll
2017-06-30 02:38:54 337408 ----a-w- C:\windows\SysWow64\mssph.dll
2017-06-30 02:38:54 197120 ----a-w- C:\windows\SysWow64\mssphtb.dll
2017-06-30 02:38:54 1400320 ----a-w- C:\windows\SysWow64\mssrch.dll
2017-06-30 02:38:54 104448 ----a-w- C:\windows\SysWow64\mssitlb.dll
2017-06-30 02:27:15 427520 ----a-w- C:\windows\SysWow64\SearchIndexer.exe
2017-06-30 02:27:04 164352 ----a-w- C:\windows\SysWow64\SearchProtocolHost.exe
2017-06-30 02:26:41 86528 ----a-w- C:\windows\SysWow64\SearchFilterHost.exe
2017-06-30 02:26:20 9728 ----a-w- C:\windows\SysWow64\msshooks.dll
2017-06-29 06:19:09 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2017-06-29 06:18:58 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2017-06-29 06:04:12 66560 ----a-w- C:\windows\System32\iesetup.dll
2017-06-29 06:03:28 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2017-06-29 06:03:20 417792 ----a-w- C:\windows\System32\html.iec
2017-06-29 06:02:52 88064 ----a-w- C:\windows\System32\MshtmlDac.dll
2017-06-29 06:02:46 576512 ----a-w- C:\windows\System32\vbscript.dll
2017-06-29 05:50:26 144384 ----a-w- C:\windows\System32\ieUnatt.exe
2017-06-29 05:50:26 116224 ----a-w- C:\windows\System32\ieetwcollector.exe
2017-06-29 05:50:10 814080 ----a-w- C:\windows\System32\jscript9diag.dll
2017-06-29 05:44:36 5975552 ----a-w- C:\windows\System32\jscript9.dll
2017-06-29 05:43:07 968704 ----a-w- C:\windows\System32\MsSpellCheckingFacility.exe
2017-06-29 05:35:46 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2017-06-29 05:31:50 77824 ----a-w- C:\windows\System32\JavaScriptCollectionAgent.dll
2017-06-29 05:31:23 87552 ----a-w- C:\windows\System32\tdc.ocx
2017-06-29 05:23:40 62464 ----a-w- C:\windows\SysWow64\iesetup.dll
2017-06-29 05:23:38 499200 ----a-w- C:\windows\SysWow64\vbscript.dll
2017-06-29 05:23:03 47616 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2017-06-29 05:22:54 341504 ----a-w- C:\windows\SysWow64\html.iec
2017-06-29 05:22:01 64000 ----a-w- C:\windows\SysWow64\MshtmlDac.dll
2017-06-29 05:13:38 115712 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2017-06-29 05:13:19 620032 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2017-06-29 05:08:32 1359360 ----a-w- C:\windows\System32\mshtmlmedia.dll
2017-06-29 05:07:16 2132992 ----a-w- C:\windows\System32\inetcpl.cpl
2017-06-29 05:01:01 60416 ----a-w- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2017-06-29 05:00:32 73216 ----a-w- C:\windows\SysWow64\tdc.ocx
2017-06-29 04:53:46 3240960 ----a-w- C:\windows\System32\wininet.dll
2017-06-29 04:52:52 4549632 ----a-w- C:\windows\SysWow64\jscript9.dll
2017-06-29 04:46:33 2057216 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2017-06-29 04:46:20 1155072 ----a-w- C:\windows\SysWow64\mshtmlmedia.dll
2017-06-29 04:28:59 2767872 ----a-w- C:\windows\SysWow64\wininet.dll
2017-06-22 14:58:48 3223040 ----a-w- C:\windows\System32\win32k.sys
2017-06-15 20:23:49 753664 ----a-w- C:\windows\System32\drivers\http.sys
2017-06-12 22:54:32 95464 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2017-06-12 22:54:32 154856 ----a-w- C:\windows\System32\drivers\ksecpkg.sys
2017-06-12 22:54:31 370920 ----a-w- C:\windows\System32\clfs.sys
2017-06-12 22:29:03 96768 ----a-w- C:\windows\SysWow64\sspicli.dll
2017-06-12 22:29:03 82944 ----a-w- C:\windows\SysWow64\bcrypt.dll
2017-06-12 22:29:03 666112 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2017-06-12 22:29:03 444928 ----a-w- C:\windows\SysWow64\wvc.dll
2017-06-12 22:29:02 172032 ----a-w- C:\windows\SysWow64\wdigest.dll
2017-06-12 22:29:02 1227264 ----a-w- C:\windows\SysWow64\wdc.dll
2017-06-12 22:29:01 65536 ----a-w- C:\windows\SysWow64\TSpkg.dll
2017-06-12 22:29:01 390144 ----a-w- C:\windows\SysWow64\sysmon.ocx
2017-06-12 22:28:59 22016 ----a-w- C:\windows\SysWow64\secur32.dll
2017-06-12 22:28:58 254464 ----a-w- C:\windows\SysWow64\schannel.dll
2017-06-12 22:28:58 141312 ----a-w- C:\windows\SysWow64\rpchttp.dll
2017-06-12 22:28:57 47104 ----a-w- C:\windows\SysWow64\pdhui.dll
2017-06-12 22:28:54 223232 ----a-w- C:\windows\SysWow64\ncrypt.dll
2017-06-12 22:28:53 60416 ----a-w- C:\windows\SysWow64\msobjs.dll
2017-06-12 22:28:53 261120 ----a-w- C:\windows\SysWow64\msv1_0.dll
2017-06-12 22:28:52 146432 ----a-w- C:\windows\SysWow64\msaudite.dll
2017-06-12 22:28:51 554496 ----a-w- C:\windows\SysWow64\kerberos.dll
2017-06-12 22:28:48 17408 ----a-w- C:\windows\SysWow64\credssp.dll
2017-06-12 22:28:47 342528 ----a-w- C:\windows\SysWow64\certcli.dll
2017-06-12 22:28:46 690688 ----a-w- C:\windows\SysWow64\adtschema.dll
2017-06-12 22:19:20 64000 ----a-w- C:\windows\System32\auditpol.exe
2017-06-12 22:14:07 379392 ----a-w- C:\windows\System32\msinfo32.exe
2017-06-12 22:14:06 172544 ----a-w- C:\windows\System32\perfmon.exe
2017-06-12 22:14:04 103936 ----a-w- C:\windows\System32\resmon.exe
2017-06-12 22:12:49 159744 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
2017-06-12 22:12:16 291328 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
2017-06-12 22:12:14 129536 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
2017-06-12 22:11:32 30720 ----a-w- C:\windows\System32\lsass.exe
2017-06-12 22:09:30 50176 ----a-w- C:\windows\SysWow64\auditpol.exe
2017-06-12 22:06:51 157184 ----a-w- C:\windows\SysWow64\perfmon.exe
2017-06-12 22:06:50 303616 ----a-w- C:\windows\SysWow64\msinfo32.exe
2017-06-12 22:06:50 103424 ----a-w- C:\windows\SysWow64\resmon.exe
.
============= FINISH: 14:36:41.49 ===============
