Lately, I've been getting unbearable lag on MSN, and have been resorting to Skype. However, even that is starting to become slow. Do I have an infection? Here is the log.
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_29
Run by Brian at 14:38:14 on 2011-11-27
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.2.1033.18.4008.1427 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\FBAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Intel\TurboBoost\TurboBoost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files (x86)\HP\Digital Imaging\Fax\Fax Driver 0.6 Base\hppfaxprintersrv.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page =
uStart Page = hxxp://www.bigseekpro.com/tempcleaner/{59847B84-AB2A-4526-ACFA-958E2084E6E6}
uDefault_Page_URL = hxxp://asus.msn.com
uSearch Bar =
mStart Page = hxxp://www.bigseekpro.com/tempcleaner/{59847B84-AB2A-4526-ACFA-958E2084E6E6}
mWinlogon: Userinit=userinit.exe,
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
mRun: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
mRun: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [ToolboxFX] "C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe -expressboot
mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
TCP: DhcpNameServer = 64.71.255.198
TCP: Interfaces\{26B50FD2-3950-420F-B692-426EC88221BC} : DhcpNameServer = 64.71.255.198
TCP: Interfaces\{26B50FD2-3950-420F-B692-426EC88221BC}\452554E444E65647635323 : DhcpNameServer = 192.168.10.1
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
AppInit_DLLs: c:\windows\syswow64\nvinit.dll
BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File
BHO-X64: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
mRun-x64: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun-x64: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
mRun-x64: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
mRun-x64: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun-x64: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun-x64: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun-x64: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [ToolboxFX] "C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
mRun-x64: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun-x64: [(Default)]
mRun-x64: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe -expressboot
mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
AppInit_DLLs-X64: c:\windows\syswow64\nvinit.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\67ki3v3h.default\
FF - prefs.js: browser.search.selectedEngine - Search
FF - prefs.js: browser.startup.homepage - hxxp://www.basilmarket.com/
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;C:\Windows\system32\DRIVERS\AVGIDSEH.Sys --> C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [?]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-7-26 17024]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]
R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AFBAgent;AFBAgent;"C:\Windows\system32\FBAgent.exe" --> C:\Windows\system32\FBAgent.exe [?]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 192776]
R2 HP LaserJet Service;HP LaserJet Service;C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2010-10-25 145920]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-5-10 2009704]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-8-17 1153368]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\system32\DRIVERS\TurboB.sys --> C:\Windows\system32\DRIVERS\TurboB.sys [?]
R2 TurboBoost;Intel(R) Turbo Boost Technology Monitor;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-4-16 134928]
R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys --> C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [?]
R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys --> C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [?]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\system32\DRIVERS\ETD.sys --> C:\Windows\system32\DRIVERS\ETD.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUVStor.sys --> C:\Windows\system32\Drivers\RtsUVStor.sys [?]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\system32\DRIVERS\SiSG664.sys --> C:\Windows\system32\DRIVERS\SiSG664.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2011-11-27 19:21:21 -------- d-----w- C:\Users\Brian\AppData\Local\{4946FE1E-2EC2-4177-9B77-11398C979336}
2011-11-27 19:20:52 -------- d-----w- C:\Users\Brian\AppData\Local\{33FD39EB-7F8B-452D-BBED-F35CC2738FC1}
2011-11-27 07:20:20 -------- d-----w- C:\Users\Brian\AppData\Local\{B9A3B3AA-D3DF-4ABB-B217-4BEDB82DE8E0}
2011-11-27 07:19:51 -------- d-----w- C:\Users\Brian\AppData\Local\{150D51CF-8391-498E-AD33-092789BC1C3C}
2011-11-26 19:19:19 -------- d-----w- C:\Users\Brian\AppData\Local\{0F04A4A3-F536-4196-9680-721FAE4B9220}
2011-11-26 19:18:58 -------- d-----w- C:\Users\Brian\AppData\Local\{7C596655-A573-4D8E-98B2-7E396E704B34}
2011-11-26 04:38:45 -------- d-----w- C:\Users\Brian\AppData\Local\{B0092D95-D9E5-492C-89E6-0B47EDC1E429}
2011-11-26 04:38:27 -------- d-----w- C:\Users\Brian\AppData\Local\{0D1C10C7-3759-456B-95E9-179EF90418B8}
2011-11-24 22:10:36 -------- d-----w- C:\Users\Brian\AppData\Local\{E5CA75FC-3DE3-44E1-BC38-E97749D6DFE8}
2011-11-24 22:10:06 -------- d-----w- C:\Users\Brian\AppData\Local\{ADD1B18F-D060-4436-A0D5-B05C19576240}
2011-11-23 23:44:21 -------- d-----w- C:\Users\Brian\AppData\Local\{1E02DC52-D800-4A83-96B5-34499C7E3AA4}
2011-11-23 23:44:03 -------- d-----w- C:\Users\Brian\AppData\Local\{2A958134-F8AF-461F-BC75-3BEC3E312FC8}
2011-11-22 22:21:59 -------- d-----w- C:\Users\Brian\AppData\Roaming\AVG2012
2011-11-22 22:20:58 -------- d-----w- C:\Windows\SysWow64\drivers\AVG
2011-11-22 22:20:18 -------- d-----w- C:\Windows\System32\drivers\AVG
2011-11-22 22:20:18 -------- d-----w- C:\ProgramData\AVG2012
2011-11-22 22:19:28 -------- d-----w- C:\Program Files (x86)\AVG
2011-11-22 22:14:58 -------- d--h--w- C:\ProgramData\Common Files
2011-11-22 22:14:48 -------- d-----w- C:\ProgramData\MFAData
2011-11-22 21:28:41 8570192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4F84BE66-7A49-4693-A89E-758C29EB87F6}\mpengine.dll
2011-11-22 21:24:54 -------- d-----w- C:\Users\Brian\AppData\Local\{EC9CC3CB-E793-49A6-90BB-71712D4012CA}
2011-11-22 21:24:37 -------- d-----w- C:\Users\Brian\AppData\Local\{B6A7D7F7-AE12-4FB2-9AD4-6EFAA61E19A0}
2011-11-21 21:01:28 -------- d-----w- C:\Users\Brian\AppData\Local\{1825E418-EAB1-40E3-8AC7-AB86E6A4AABC}
2011-11-21 21:00:59 -------- d-----w- C:\Users\Brian\AppData\Local\{C073F86B-BE15-49FD-9E3C-43EC24702594}
2011-11-21 06:19:43 -------- d-----w- C:\Users\Brian\AppData\Local\{06057F8B-1315-4B6C-A3FB-2AEBFB1385B7}
2011-11-21 06:19:25 -------- d-----w- C:\Users\Brian\AppData\Local\{1C180720-6066-4115-AEA5-D64E0BC0D670}
2011-11-20 18:19:01 -------- d-----w- C:\Users\Brian\AppData\Local\{1DA03A28-D880-44B0-9DB5-1F1564AE76F8}
2011-11-20 18:18:43 -------- d-----w- C:\Users\Brian\AppData\Local\{73224B6A-B1EA-45E1-8881-2EFDBB41F214}
2011-11-19 19:36:58 -------- d-----w- C:\Users\Brian\AppData\Local\{21259249-CA0D-417C-93BD-15BB38652339}
2011-11-19 19:36:41 -------- d-----w- C:\Users\Brian\AppData\Local\{170E1A69-D3A3-4F1D-8448-17DA561D699E}
2011-11-19 00:36:03 -------- d-----w- C:\Users\Brian\AppData\Local\{11F10860-077F-42FB-AC2C-55F66D5104ED}
2011-11-19 00:35:45 -------- d-----w- C:\Users\Brian\AppData\Local\{D0C1B352-0249-47D1-ABC7-4C93D1633C2C}
2011-11-17 21:15:34 -------- d-----w- C:\Users\Brian\AppData\Local\{774B1385-A7B1-47E0-8C8B-3C8F37AFAA17}
2011-11-17 21:15:16 -------- d-----w- C:\Users\Brian\AppData\Local\{F0CEB201-DA2D-49E5-B114-4CAE24777A98}
2011-11-17 04:44:34 -------- d-----w- C:\Users\Brian\AppData\Roaming\WinPatrol
2011-11-17 04:44:29 -------- d-----w- C:\ProgramData\InstallMate
2011-11-17 04:44:29 -------- d-----w- C:\Program Files (x86)\BillP Studios
2011-11-16 21:45:07 -------- d-----w- C:\Users\Brian\AppData\Local\{BF31B640-F094-4959-9A8E-03843321E1CB}
2011-11-16 21:44:49 -------- d-----w- C:\Users\Brian\AppData\Local\{4FD6CE5D-8EBA-4A45-A543-864A72D28C34}
2011-11-16 00:54:54 -------- d-----w- C:\Users\Brian\AppData\Local\{11AAC489-61C6-427A-AD07-8D213BC26BBD}
2011-11-16 00:54:26 -------- d-----w- C:\Users\Brian\AppData\Local\{C806CB19-BACA-4A8F-BF2E-F9C17D90470D}
2011-11-15 12:53:55 -------- d-----w- C:\Users\Brian\AppData\Local\{EA1C67E9-6928-4BFE-BB0F-C8586C944711}
2011-11-15 12:53:27 -------- d-----w- C:\Users\Brian\AppData\Local\{0DA1EC25-9039-4606-B0CC-D5E7B83EF361}
2011-11-14 22:52:21 -------- d-----w- C:\Users\Brian\AppData\Local\{74ECD097-46AC-44F2-BB17-10A5806D48AD}
2011-11-14 22:52:03 -------- d-----w- C:\Users\Brian\AppData\Local\{54A860EB-BEF6-4F3D-89A1-12BD0CCAEE32}
2011-11-13 19:54:40 -------- d-----w- C:\Users\Brian\AppData\Local\{7393D8B1-D1E2-40F3-9067-FC7AF383F45C}
2011-11-13 19:54:21 -------- d-----w- C:\Users\Brian\AppData\Local\{5B16B176-1434-4935-820C-8C7A93CE4D86}
2011-11-12 21:42:04 -------- d-----w- C:\Users\Brian\AppData\Local\{27BAF616-D62D-46A7-B25B-2CF1E2126E41}
2011-11-12 21:41:47 -------- d-----w- C:\Users\Brian\AppData\Local\{FF88784E-0D76-4FA9-8E92-E0397D1C710E}
2011-11-12 21:37:47 -------- d-----w- C:\Windows\PCHEALTH
2011-11-12 18:43:38 -------- d-----w- C:\Users\Brian\AppData\Local\{7162C5A1-127A-47C9-97F7-1E6566A30F7D}
2011-11-12 18:43:21 -------- d-----w- C:\Users\Brian\AppData\Local\{24752C6B-63EE-4B3F-84D6-6A82A6178284}
2011-11-11 22:36:37 -------- d-----w- C:\Program Files (x86)\Cisco Systems
2011-11-11 22:35:48 -------- d-----w- C:\ProgramData\Cisco Systems
2011-11-11 21:27:38 -------- d-----w- C:\Users\Brian\AppData\Local\{936BFFB2-C316-4A92-A712-A11D641D5D1F}
2011-11-11 03:03:44 -------- d-----w- C:\Users\Brian\AppData\Local\{931A3F90-8691-4944-99B4-A0133752288D}
2011-11-11 03:03:33 -------- d-----w- C:\Users\Brian\AppData\Local\{62418B86-FDAC-4CBB-90C1-9BFA8F8A47C7}
2011-11-10 12:52:12 -------- d-----w- C:\Users\Brian\AppData\Local\{36E7A0BD-FA97-4B14-9254-9F33323B03C4}
2011-11-09 21:17:33 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2011-11-09 21:17:33 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2011-11-09 21:17:32 1923952 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2011-11-09 21:17:31 3144704 ----a-w- C:\Windows\System32\win32k.sys
2011-11-09 21:10:11 -------- d-----w- C:\Users\Brian\AppData\Local\{D3ED0CDE-8831-44B0-8560-586363CFCB4F}
2011-11-09 21:09:54 -------- d-----w- C:\Users\Brian\AppData\Local\{9D8A5233-7F1C-42CB-A185-CC85E19E845A}
2011-11-08 20:58:32 -------- d-----w- C:\Users\Brian\AppData\Local\{41668E1D-5483-42F2-92C4-6269F3B5EAEC}
2011-11-08 20:58:21 -------- d-----w- C:\Users\Brian\AppData\Local\{17B8DA52-A826-4874-9EDA-264F1FE41F64}
2011-11-07 22:50:23 -------- d-----w- C:\Users\Brian\AppData\Local\{FCAD48A6-2E24-4838-B206-C8451766EEB0}
2011-11-07 22:50:12 -------- d-----w- C:\Users\Brian\AppData\Local\{E60C4053-CE9C-40A3-BC9B-14998FF4661C}
2011-11-06 19:15:52 -------- d-----w- C:\Users\Brian\AppData\Local\{96B1CD51-DCC7-4C86-8729-0FE607986016}
2011-11-06 19:15:41 -------- d-----w- C:\Users\Brian\AppData\Local\{25F65A2B-A947-4275-9169-B5FF23E26A2F}
2011-11-05 03:32:23 -------- d-----w- C:\Users\Brian\AppData\Local\{B8E0EC03-DDB1-46AA-8F61-18ADB23E47A9}
2011-11-05 03:32:13 -------- d-----w- C:\Users\Brian\AppData\Local\{5ABDB4BA-84CA-4C47-829F-B32DBA953BCB}
2011-11-04 15:32:12 -------- d-----w- C:\Users\Brian\AppData\Local\{8080568C-BC75-4160-83CC-ACAAA0EE294E}
2011-11-04 01:49:00 -------- d-----w- C:\Users\Brian\AppData\Roaming\HpUpdate
2011-11-04 01:48:42 27704 ------w- C:\Windows\System32\hppfaxprintermon5.dll
2011-11-04 01:48:42 22072 ------w- C:\Windows\System32\hppfaxprintermonui5.dll
2011-11-04 01:48:41 608 --sha-w- C:\Windows\System32\winzvprt5.sys
2011-11-04 01:45:57 -------- d-----w- C:\Users\Brian\AppData\Roaming\Hewlett-Packard Company
2011-11-04 01:44:40 323584 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\hpcpp103.dll
2011-11-04 01:42:11 976440 ----a-w- C:\Windows\System32\hpxp1410_x64.dll
2011-11-04 01:42:11 751160 ----a-w- C:\Windows\SysWow64\hpptsp08.dll
2011-11-04 01:42:11 217656 ----a-w- C:\Windows\System32\hppscancoins64.dll
2011-11-04 01:42:11 1150520 ----a-w- C:\Windows\System32\hpptsp08_x64.dll
2011-11-04 01:42:00 311296 ----a-w- C:\Windows\System32\hpbcoins64.dll
2011-11-04 01:41:51 193592 ----a-w- C:\Windows\System32\hppdcompio.dll
2011-11-04 01:41:51 167480 ----a-w- C:\Windows\SysWow64\hppccompio.dll
2011-11-04 01:41:44 176640 ----a-w- C:\Windows\System32\hpcpn103.dll
2011-11-04 01:41:35 491008 ----a-w- C:\Windows\SysWow64\hpcdmc32.dll
2011-11-04 01:41:35 305664 ----a-w- C:\Windows\SysWow64\hpcc3103.dll
2011-11-04 01:40:12 -------- d-----w- C:\Program Files (x86)\HP
2011-11-04 01:37:00 -------- d-----w- C:\Users\Brian\AppData\Local\{FB3E18FF-E39E-457B-9131-787A89016389}
2011-11-04 01:36:47 -------- d-----w- C:\Users\Brian\AppData\Local\{1DD542C6-215A-486D-BD47-D199D6BD70C5}
.
==================== Find3M ====================
.
2011-11-22 21:42:44 45056 ----a-w- C:\Windows\System32\acovcnt.exe
2011-11-17 21:15:19 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-10-07 11:23:46 283728 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2011-10-03 09:06:03 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-10-01 03:25:37 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2011-10-01 02:42:56 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-09-13 11:30:08 37456 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
2011-08-31 21:00:50 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys
.
============= FINISH: 14:39:21.34 ===============