2014-01-04

Hi

I seem to have price companion adware when browsing the net in google chrome. I have pasted the 3 logs below. Thanks Dash.

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.04.04

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16476

Graeme :: GRAEME-PC [administrator]

Protection: Enabled

04/01/2014 19:03:56

MBAM-log-2014-01-04 (19-12-42).txt

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 217006

Time elapsed: 1 minute(s), 48 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 11

HKCR\CLSID\{4C5E07D9-558C-2A1A-B2F4-41E87E83BDC9} (PUP.Optional.MultiPlug.A) -> No action taken.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4C5E07D9-558C-2A1A-B2F4-41E87E83BDC9} (PUP.Optional.MultiPlug.A) -> No action taken.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4C5E07D9-558C-2A1A-B2F4-41E87E83BDC9} (PUP.Optional.MultiPlug.A) -> No action taken.

HKCR\CLSID\{A235BE1B-B58C-F9D7-B26C-6C9A630A54EF} (PUP.Optional.MultiPlug.A) -> No action taken.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A235BE1B-B58C-F9D7-B26C-6C9A630A54EF} (PUP.Optional.MultiPlug.A) -> No action taken.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A235BE1B-B58C-F9D7-B26C-6C9A630A54EF} (PUP.Optional.MultiPlug.A) -> No action taken.

HKCR\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} (PUP.Optional.Wajam.A) -> No action taken.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} (PUP.Optional.CRXDrop.A) -> No action taken.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DSite (PUP.Optional.DigitalSites.A) -> No action taken.

HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> No action taken.

HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> No action taken.

Registry Values Detected: 2

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|BackgroundContainer (PUP.Optional.Conduit) -> Data: "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\Graeme\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun -> No action taken.

HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: tCyC1K1M0V -> No action taken.

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 4

C:\Users\Graeme\AppData\Local\Temp\ct2504091 (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\xpi (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\xpi\defaults (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\xpi\defaults\preferences (PUP.Optional.Conduit.A) -> No action taken.

Files Detected: 49

C:\Program Files (x86)\surf and akeep\hMW.dll (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Program Files (x86)\YoutubeAdblocker\l0a.dll (PUP.Optional.MultiPlug.A) -> No action taken.

C:\ProgramData\YoutubeAdblocker\e2Ss.exe (PUP.Optional.CRXDrop.A) -> No action taken.

C:\Users\Graeme\AppData\Roaming\DSite\UpdateProc\UpdateTask.exe (PUP.Optional.DigitalSites.A) -> No action taken.

C:\$Recycle.Bin\S-1-5-21-4177724317-3960994671-2067847833-1000\$RVG0VVR.exe (PUP.Optional.Installrex) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ICReinstall_AudioConverterSetup.exe (PUP.Optional.InstallCore) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\SmartbarExeInstaller.exe (PUP.Optional.SmartBar.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\2552363.Uninstall\Uninstall.exe (PUP.Optional.InstallCore) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\ieLogic.exe (PUP.Optional.Conduit) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\is1590112554\FunmoodsSetup.exe (Adware.Funmoods) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\is1590112554\MyBabylonTB.exe (PUP.Optional.Babylon.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\is1590112554\yontoo-c2.exe (PUP.Optional.Yontoo.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\is357113909\DeltaTB.exe (PUP.Optional.Delta.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\{944CB434-114C-43B3-A158-596E4FAF96C2}\Addons\extIE_setup.exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\{944CB434-114C-43B3-A158-596E4FAF96C2}\Addons\ext_setup.exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\{944CB434-114C-43B3-A158-596E4FAF96C2}\Addons\ytab_setup.exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\{944CB434-114C-43B3-A158-596E4FAF96C2}\Addons\ytbmk_setup.exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\Downloads\AudioConverterSetup (1).exe (PUP.Optional.InstallCore) -> No action taken.

C:\Users\Graeme\Downloads\AudioConverterSetup.exe (PUP.Optional.InstallCore) -> No action taken.

C:\Users\Graeme\Downloads\coretemp_1236.exe (PUP.Optional.InstallIQ.A) -> No action taken.

C:\Users\Graeme\Downloads\download_file.exe (PUP.Optional.OneClickDownloader.A) -> No action taken.

C:\Users\Graeme\Downloads\download_torntv (1).exe (PUP.Optional.OneClickDownloader.A) -> No action taken.

C:\Users\Graeme\Downloads\download_torntv.exe (PUP.Optional.OneClickDownloader.A) -> No action taken.

C:\Users\Graeme\Downloads\FlashPlayer_transaction_id=102616dde032edcec2237955b34ce9.exe (PUP.Optional.BundleInstaller.A) -> No action taken.

C:\Users\Graeme\Downloads\Kiss_-_Tears_Are_Falling.exe (PUP.BundleInstaller.DW) -> No action taken.

C:\Users\Graeme\Downloads\Megavideofullnet_downloader_by_Megavideofullnet.exe (PUP.Optional.Somoto) -> No action taken.

C:\Users\Graeme\Downloads\revolution7.zip_11219795_12_let4.exe (Trojan.Onlinegames) -> No action taken.

C:\Users\Graeme\Downloads\Rocket_Download_Manager_Setup.exe (PUP.Optional.Ibryte) -> No action taken.

C:\Users\Graeme\Downloads\Setup (1).exe (PUP.Optional.BundleInstaller.A) -> No action taken.

C:\Users\Graeme\Downloads\Setup.exe (PUP.Optional.IBryte) -> No action taken.

C:\Users\Graeme\Downloads\Teenage_Mutant_Ninja_Turtles_1990_1080p_BDRip_H264_AAC_KiNGDOM (1).exe (PUP.BundleInstaller.DW) -> No action taken.

C:\Users\Graeme\Downloads\Teenage_Mutant_Ninja_Turtles_1990_1080p_BDRip_H264_AAC_KiNGDOM.exe (PUP.BundleInstaller.DW) -> No action taken.

C:\Users\Graeme\Downloads\The_Minus_Man_1999_Divx_Eng.exe (PUP.BundleInstaller.DW) -> No action taken.

C:\Users\Graeme\Downloads\White Lion Big Game Authentic Guitar TAB.exe (PUP.Optional.InstalleRex) -> No action taken.

C:\Users\Graeme\AppData\Local\Conduit\CT2504091\Vuze_RemoteAutoUpdateHelper.exe (PUP.Optional.Conduit) -> No action taken.

C:\Users\Graeme\Local Settings\Temporary Internet Files\Content.IE5\75EM82I8\HYC[1].exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\Local Settings\Temporary Internet Files\Content.IE5\75EM82I8\Jo[1].exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\Local Settings\Temporary Internet Files\Content.IE5\ABS56J83\optimizerpro[1] (PUP.Optional.OptimizePro.A) -> No action taken.

C:\Users\Graeme\Local Settings\Temporary Internet Files\Content.IE5\C377IBT0\QuickShare1[1] (PUP.Optional.QuickShare.A) -> No action taken.

C:\Users\Graeme\Local Settings\Temporary Internet Files\Content.IE5\C377IBT0\Vuze_Remote[1].exe (PUP.Optional.Conduit) -> No action taken.

C:\Users\Graeme\Local Settings\Temporary Internet Files\Content.IE5\MOUTHSHB\jcN[1].exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\Local Settings\Temporary Internet Files\Content.IE5\MOUTHSHB\SHf[1].exe (PUP.Optional.MultiPlug.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\conduit.xml (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\CT2504091.xpi (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\ffLogic.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\statisticsStub.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\version.txt (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\xpi\install.rdf (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Graeme\AppData\Local\Temp\ct2504091\xpi\defaults\preferences\defaults.js (PUP.Optional.Conduit.A) -> No action taken.

(end)

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume1

Install Date: 10/12/2012 16:53:22

System Uptime: 04/01/2014 17:07:24 (2 hours ago)

.

Motherboard: ASRock | | Z68 Extreme4 Gen3

Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz | CPUSocket | 3301/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 1863 GiB total, 1518.269 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP147: 22/12/2013 01:41:41 - Windows Update

RP148: 22/12/2013 20:52:47 - Windows Update

RP149: 27/12/2013 13:37:05 - Windows Update

RP150: 30/12/2013 11:41:57 - avast! antivirus system restore point

RP151: 30/12/2013 11:46:44 - Device Driver Package Install: Avast Network Service

RP152: 31/12/2013 18:31:00 - Windows Update

RP153: 03/01/2014 23:30:45 - Installed Java 7 Update 45

.

==== Installed Programs ======================

.

Acrobat.com

Adobe AIR

Adobe Flash Player 11 Plugin

Adobe Flash Player ActiveX

Adobe Reader XI (11.0.05)

Adobe Shockwave Player 12.0

AMD Accelerated Video Transcoding

AMD APP SDK Runtime

AMD Catalyst Install Manager

AMD Drag and Drop Transcoding

AMD Media Foundation Decoders

Apple Application Support

Apple Mobile Device Support

Apple Software Update

ASRock App Charger v1.0.4

ASRock eXtreme Tuner v0.1.98

ASRock InstantBoot v1.26

avast! Internet Security

Bonjour

Broadcom Gigabit NetLink Controller

Camtasia Studio 8

Canon Easy-WebPrint EX

Canon IJ Network Scan Utility

Canon IJ Network Tool

Canon Inkjet Printer/Scanner/Fax Extended Survey Program

Canon MP Navigator EX 3.1

Canon MX340 series MP Drivers

Canon MX340 series User Registration

Canon Speed Dial Utility

Canon Utilities Easy-PhotoPrint EX

Canon Utilities My Printer

Canon Utilities Solution Menu

Catalyst Control Center

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Citrix Online Launcher

ConvertXtoDVD 4.1.19.365

CyberLink MediaEspresso

Dragon NaturallySpeaking 11

Etron USB3.0 Host Controller

FileZilla Client 3.6.0.2

Google Chrome

Google Update Helper

GoToMeeting 5.9.0.1216

Guitar Pro 5.2

HMA! Pro VPN 2.7.1.7

Intel(R) Control Center

Intel(R) Management Engine Components

Intel(R) Processor Graphics

iTunes

Java 7 Update 45

Java Auto Updater

Malwarebytes Anti-Malware version 1.75.0.1300

marvell 91xx driver

McAfee Security Scan Plus

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft Expression Web 4

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office File Validation Add-In

Microsoft Office Groove MUI (English) 2007

Microsoft Office Groove Setup Metadata MUI (English) 2007

Microsoft Office InfoPath MUI (English) 2007

Microsoft Office Office 64-bit Components 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office Outlook MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared 64-bit MUI (English) 2007

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Silverlight

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319

Microsoft Xbox 360 Accessories 1.2

Mozilla Firefox 25.0 (x86 en-US)

Mozilla Maintenance Service

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nero Burning ROM 10

Nero BurningROM 10 Help (CHM)

Nero BurnRights 10

Nero BurnRights 10 Help (CHM)

Nero Control Center 10

Nero ControlCenter 10 Help (CHM)

Nero Core Components 10

Nero Update

Norton Internet Security

OpenOffice.org 3.4.1

Realtek High Definition Audio Driver

Rome - Total War

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition

Snagit 11

Strongvault Online Backup

swMSM

THX TruStudio

Update for 2007 Microsoft Office System (KB967642)

Update for Audio Converter

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2600217)

Update for Microsoft .NET Framework 4 Extended (KB2836939)

Update for Microsoft .NET Framework 4 Extended (KB2836939v3)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office Infopath 2007 Help (KB963662)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition

Update for Microsoft Office Outlook 2007 Help (KB963677)

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

USB PnP Sound Device

Visual C++ 9.0 Runtime for Dragon NaturallySpeaking 64bit (x64)

VLC media player 2.0.4

Vuze

Vuze Remote Toolbar

WinRAR 4.20 (32-bit)

XFast LAN v6.61

XFastUsb

YoutubeAdblocker

.

==== Event Viewer Messages From Past Week ========

.

03/01/2014 16:44:45, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.

.

==== End Of File ===========================

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.45.2

Run by Graeme at 19:33:36 on 2014-01-04

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.44.1033.18.8105.5545 [GMT 0:00]

.

AV: avast! Internet Security *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: avast! Internet Security *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

FW: avast! Internet Security *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Program Files\AVAST Software\Avast\afwServ.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\ASRock\XFast LAN\spd.exe

C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe

C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE

C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\ccSvcHst.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\taskeng.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\SysWOW64\Rundll32.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\igfxpers.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Program Files\ASRock\XFast LAN\cfosspeed.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE

C:\Windows\SysWOW64\rundll32.exe

C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe

C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe

C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe

C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin

C:\Program Files (x86)\XFastUsb\XFastUsb.exe

C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe

C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Nero\Update\NASvc.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuz2.dll

mURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuz2.dll

mWinlogon: Userinit = userinit.exe

BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll

BHO: surf and akeep: {4C5E07D9-558C-2A1A-B2F4-41E87E83BDC9} - C:\Program Files (x86)\surf and akeep\hMW.dll

BHO: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\CoIEPlg.dll

BHO: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\IPSBHO.dll

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: YoutubeAdblocker: {A235BE1B-B58C-F9D7-B26C-6C9A630A54EF} - C:\Program Files (x86)\YoutubeAdblocker\l0a.dll

BHO: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuz2.dll

BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

TB: Vuze Remote Toolbar: {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files (x86)\Vuze_Remote\prxtbVuz2.dll

TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\CoIEPlg.dll

TB: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuz2.dll

TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>

TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

uRun: [ASRockXTU] <no file>

mRun: [XFastUsb] C:\Program Files (x86)\XFastUsb\XFastUsb.exe

mRun: [THX TruStudio NB Settings] "C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" /r

mRun: [UpdReg] C:\Windows\UpdReg.EXE

mRun: [SmartViewAgent] "C:\Program Files (x86)\DeviceVM\SmartView\SmartViewAgent.exe"

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun: [SMessaging] C:\Users\Graeme\AppData\Local\Strongvault Online Backup\SMessaging.exe

mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking11\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking11\Ereg.ini

mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent

StartupFolder: C:\Users\Graeme\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

TCP: NameServer = 194.168.4.100 192.168.0.1

TCP: Interfaces\{017A0DDE-A8C3-4376-B42B-5DDDD88AFC4A} : DHCPNameServer = 194.168.4.100 192.168.0.1

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

SSODL: WebCheck - <orphaned>

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-BHO: surf and akeep: {4C5E07D9-558C-2A1A-B2F4-41E87E83BDC9} - C:\Program Files (x86)\surf and akeep\hMW.x64.dll

x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-BHO: YoutubeAdblocker: {A235BE1B-B58C-F9D7-B26C-6C9A630A54EF} - C:\Program Files (x86)\YoutubeAdblocker\l0a.x64.dll

x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>

x64-TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe

x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

x64-Run: [XFast LAN] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe

x64-Run: [THXCfg64] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\THXCfg64.dll,RunDLLEntry THXCfg64

x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

x64-Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon

x64-Run: [Cm108Sound] C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm108.dll,CMICtrlWnd

x64-Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Graeme\AppData\Roaming\Mozilla\Firefox\Profiles\9jr28qyr.default\

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - www.google.com

FF - prefs.js: keyword.URL - hxxps://www.google.com/search

FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll

FF - plugin: C:\Users\Graeme\AppData\Local\Citrix\Plugins\104\npappdetector.dll

FF - plugin: C:\Windows\System32\Wat\npWatWeb.dll

FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

FF - ExtSQL: 2013-12-24 21:37; msm101gzqmh@plveu-.edu; C:\Users\Graeme\AppData\Roaming\Mozilla\Firefox\Profiles\9jr28qyr.default\extensions\msm101gzqmh@plveu-.edu

FF - ExtSQL: 2013-12-24 21:37; hb1zk@dobtexnpal.org; C:\Users\Graeme\AppData\Roaming\Mozilla\Firefox\Profiles\9jr28qyr.default\extensions\hb1zk@dobtexnpal.org

.

============= SERVICES / DRIVERS ===============

.

R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-19 65776]

R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-19 207904]

R1 AsrAppCharger;AsrAppCharger;C:\Windows\System32\drivers\AsrAppCharger.sys [2012-12-11 15368]

R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2013-2-22 28184]

R1 aswNdisFlt;Avast! Firewall Driver;C:\Windows\System32\drivers\aswNdisFlt.sys [2013-3-19 439648]

R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-2-22 1034464]

R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-2-22 422216]

R1 FNETURPX;FNETURPX;C:\Windows\System32\drivers\FNETURPX.SYS [2012-12-11 15936]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-19 240640]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-2-22 78648]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-30 50344]

R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-12-30 113704]

R2 DragonSvc;Dragon Service;C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe [2010-7-23 296808]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-4 418376]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-4 701512]

R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-5-4 503080]

R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\ccSvcHst.exe [2012-12-11 126904]

R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-12-11 2656280]

R3 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2013-12-30 79672]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-11-6 96256]

R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;C:\Windows\System32\drivers\EtronHub3.sys [2011-2-8 39936]

R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;C:\Windows\System32\drivers\EtronXHCI.sys [2011-2-8 64512]

R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2011-2-14 412712]

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-1-4 25928]

R3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2012-12-11 32344]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 SmartViewService;SmartView service;C:\Program Files (x86)\DeviceVM\SmartView\SmartViewService.exe --> C:\Program Files (x86)\DeviceVM\SmartView\SmartViewService.exe [?]

S3 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20100810.004\BHDrvx64.sys [2012-12-11 945200]

S3 FNETTBOH_305;FNETTBOH_305;C:\Windows\System32\drivers\FNETTBOH_305.SYS [2013-1-14 31808]

S3 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20100706.002\IDSVia64.sys [2012-12-11 463408]

S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-22 111616]

S3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2012-12-11 317440]

S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [2012-9-5 234776]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-11 20992]

S3 SymDS;Symantec Data Store;C:\Windows\System32\drivers\NISx64\1201000.025\SymDS64.sys [2012-12-11 450096]

S3 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\NISx64\1201000.025\SymEFA64.sys [2012-12-11 821808]

S3 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NISx64\1201000.025\Ironx64.sys [2012-12-11 168496]

S3 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NISx64\1201000.025\symnets.sys [2012-12-11 381488]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-15 59392]

S3 USBPNPA;USB PnP Sound Device Interface;C:\Windows\System32\drivers\CM10864.sys [2013-3-12 1307648]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-12-13 1255736]

.

=============== Created Last 30 ================

.

2014-01-04 18:10:51 -------- d-----w- C:\Users\Graeme\AppData\Roaming\Malwarebytes

2014-01-04 18:10:24 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2014-01-04 18:10:24 -------- d-----w- C:\ProgramData\Malwarebytes

2014-01-04 18:10:24 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-01-04 18:10:09 -------- d-----w- C:\Users\Graeme\AppData\Local\Programs

2014-01-03 23:42:47 -------- d-----w- C:\Users\Graeme\AppData\Roaming\AVAST Software

2014-01-03 23:33:57 -------- d-----w- C:\ProgramData\Oracle

2014-01-03 23:33:37 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2014-01-03 23:29:51 3167112 ----a-w- C:\Windows\system\HTMLayout.dll

2014-01-03 16:07:16 -------- d-----w- C:\Users\Graeme\AppData\Local\Canon Easy-PhotoPrint EX

2014-01-03 15:51:05 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0D45DC0-D9A4-407D-9DA7-7A12EC1DB4C5}\mpengine.dll

2013-12-30 11:46:29 79672 ----a-w- C:\Windows\System32\drivers\aswstm.sys

2013-12-24 21:35:49 -------- d-----w- C:\ProgramData\YoutubeAdblocker

2013-12-24 21:35:49 -------- d-----w- C:\Program Files (x86)\YoutubeAdblocker

2013-12-24 21:35:41 -------- d-----w- C:\Users\Graeme\AppData\Local\Packages

2013-12-24 21:35:41 -------- d-----w- C:\ProgramData\surf and akeep

2013-12-24 21:35:40 -------- d-----w- C:\Program Files (x86)\surf and akeep

2013-12-24 21:35:33 -------- d-----w- C:\ProgramData\d398eadc4cf9d1a1

2013-12-24 21:35:14 -------- d-----w- C:\ProgramData\InstallMate

2013-12-22 01:49:58 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe

2013-12-22 01:49:58 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe

2013-12-22 01:49:57 12625920 ----a-w- C:\Windows\System32\wmploc.DLL

2013-12-22 01:49:56 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL

2013-12-21 20:09:19 335360 ----a-w- C:\Windows\System32\msieftp.dll

2013-12-21 20:09:19 301568 ----a-w- C:\Windows\SysWow64\msieftp.dll

2013-12-21 20:09:18 3155968 ----a-w- C:\Windows\System32\win32k.sys

2013-12-21 20:09:17 465920 ----a-w- C:\Windows\System32\WMPhoto.dll

2013-12-21 20:09:17 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll

2013-12-21 20:09:14 81408 ----a-w- C:\Windows\System32\imagehlp.dll

2013-12-21 20:09:14 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll

2013-12-21 20:09:05 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2013-12-21 20:09:05 2048 ----a-w- C:\Windows\System32\tzres.dll

2013-12-21 20:08:28 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys

2013-12-21 20:08:28 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys

2013-12-21 20:06:08 202752 ----a-w- C:\Windows\System32\scrrun.dll

2013-12-21 20:06:08 168960 ----a-w- C:\Windows\System32\wscript.exe

2013-12-21 20:06:08 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll

2013-12-21 20:06:08 156160 ----a-w- C:\Windows\System32\cscript.exe

2013-12-21 20:06:08 150016 ----a-w- C:\Windows\System32\wshom.ocx

2013-12-21 20:06:08 141824 ----a-w- C:\Windows\SysWow64\wscript.exe

2013-12-21 20:06:08 126976 ----a-w- C:\Windows\SysWow64\cscript.exe

2013-12-21 20:06:08 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx

.

==================== Find3M ====================

.

2013-12-30 11:45:44 92544 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2013-12-30 11:45:44 78648 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2013-12-30 11:45:44 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2013-12-30 11:45:44 43152 ----a-w- C:\Windows\avastSS.scr

2013-12-30 11:45:44 207904 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2013-12-30 11:45:44 1034464 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2013-12-30 11:45:40 28184 ----a-w- C:\Windows\System32\drivers\aswKbd.sys

2013-12-30 11:45:38 439648 ----a-w- C:\Windows\System32\drivers\aswNdisFlt.sys

2013-12-21 20:41:10 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-12-21 20:41:10 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-12-19 13:11:26 270824 ----a-w- C:\Windows\System32\drivers\aswNdis2.sys

2013-12-19 13:11:24 131232 ----a-w- C:\Windows\System32\drivers\aswFW.sys

2013-11-26 12:25:52 267936 ------w- C:\Windows\System32\MpSigStub.exe

2013-11-26 10:19:07 2724864 ----a-w- C:\Windows\System32\mshtml.tlb

2013-11-26 10:18:23 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll

2013-11-26 09:48:07 66048 ----a-w- C:\Windows\System32\iesetup.dll

2013-11-26 09:46:25 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll

2013-11-26 09:23:02 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2013-11-26 09:18:39 139264 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-11-26 09:18:09 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe

2013-11-26 09:16:57 708608 ----a-w- C:\Windows\System32\jscript9diag.dll

2013-11-26 08:35:02 5769216 ----a-w- C:\Windows\System32\jscript9.dll

2013-11-26 08:28:16 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll

2013-11-26 08:16:12 4243968 ----a-w- C:\Windows\SysWow64\jscript9.dll

2013-11-26 08:02:16 1995264 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-11-26 07:32:06 1928192 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2013-11-26 07:07:57 2334208 ----a-w- C:\Windows\System32\wininet.dll

2013-11-26 06:33:33 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll

2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll

2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL

2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL

2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll

2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL

.

============= FINISH: 19:34:08.83 ===============

Show more