.
DDS (Ver_2011-08-26.01) - NTFSAMD64 NETWORK
Internet Explorer: 9.0.8112.16421  BrowserJavaVersion: 1.6.0_30
Run by brysio at 5:02:17 on 2012-03-27
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Norton Identity Protection: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\coIEPlg.dll
BHO: Norton Vulnerability Protection: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\IPS\IPSBHO.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\coIEPlg.dll
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [HPUsageTracking] "C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT\"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
StartupFolder: C:\Users\brysio\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\brysio\AppData\Roaming\Dropbox\bin\Dropbox.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{2B85A98F-28E8-4017-994C-3FC315217B0C} : NameServer = 62.233.233.233
TCP: Interfaces\{2B85A98F-28E8-4017-994C-3FC315217B0C} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{8B7733D4-F3CB-4BEE-86F4-4278EA5D501D} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{AC370A57-C52C-4950-A6A9-A2626D829077} : DhcpNameServer = 217.116.100.65 79.163.127.70
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}
{6D53EC84-6AAE-4787-AEEE-F4628F01010C}
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [HPUsageTracking] "C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT\"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\brysio\AppData\Roaming\Mozilla\Firefox\Profiles\tlm9hfzy.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://startsear.ch/?aff=1&src=sp&cf=e0bfea4d-3940-11e1-a9fc-001fd0a2d006&q=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npVividasPlayer.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Users\brysio\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: C:\Users\brysio\AppData\Roaming\Mozilla\Firefox\Profiles\tlm9hfzy.default\extensions\player@vividas.com\plugins\npVividasPlayer.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2012-03-24 18:00:54	--------	d-----w-	C:\Program Files\HWiNFO64
2012-03-24 13:08:58	--------	d-----w-	C:\Users\brysio\AppData\Roaming\TrueCrypt
2012-03-24 12:04:25	231376	----a-w-	C:\Windows\System32\drivers\truecrypt.sys
2012-03-24 12:03:52	--------	d-----w-	C:\Program Files\TrueCrypt
2012-03-23 06:14:08	738936	----a-w-	C:\Windows\System32\drivers\NISx64\1306020.00A\srtsp64.sys
2012-03-23 06:14:08	451192	----a-r-	C:\Windows\System32\drivers\NISx64\1306020.00A\symds64.sys
2012-03-23 06:14:08	405624	----a-w-	C:\Windows\System32\drivers\NISx64\1306020.00A\symnets.sys
2012-03-23 06:14:08	37496	----a-w-	C:\Windows\System32\drivers\NISx64\1306020.00A\srtspx64.sys
2012-03-23 06:14:08	190072	----a-w-	C:\Windows\System32\drivers\NISx64\1306020.00A\ironx64.sys
2012-03-23 06:14:08	167048	----a-w-	C:\Windows\System32\drivers\NISx64\1306020.00A\ccsetx64.sys
2012-03-23 06:14:08	1092728	----a-w-	C:\Windows\System32\drivers\NISx64\1306020.00A\symefa64.sys
2012-03-23 06:14:04	--------	d-----w-	C:\Windows\System32\drivers\NISx64\1306020.00A
2012-03-19 17:54:03	5559152	----a-w-	C:\Windows\System32\ntoskrnl.exe
2012-03-19 17:54:02	3968368	----a-w-	C:\Windows\SysWow64\ntkrnlpa.exe
2012-03-19 17:54:02	3913584	----a-w-	C:\Windows\SysWow64\ntoskrnl.exe
2012-03-17 13:08:41	592824	----a-w-	C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
2012-03-17 13:08:41	44472	----a-w-	C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
2012-03-16 03:47:17	1544192	----a-w-	C:\Windows\System32\DWrite.dll
2012-03-16 03:47:17	1077248	----a-w-	C:\Windows\SysWow64\DWrite.dll
2012-03-16 03:46:57	77312	----a-w-	C:\Windows\System32\rdpwsx.dll
2012-03-16 03:46:57	149504	----a-w-	C:\Windows\System32\rdpcorekmts.dll
2012-03-10 15:08:31	--------	d-----w-	C:\Program Files\iTunes
2012-03-10 15:08:31	--------	d-----w-	C:\Program Files\iPod
2012-03-10 15:05:23	--------	d-----w-	C:\Program Files (x86)\TagRename
2012-03-06 22:58:52	162664	----a-w-	C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10140.bin
2012-03-04 09:17:16	23152	----a-w-	C:\Windows\System32\drivers\mbam.sys
2012-03-04 09:17:16	--------	d-----w-	C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-03-04 09:14:41	388096	----a-r-	C:\Users\brysio\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-03-04 09:14:41	--------	d-----w-	C:\Program Files (x86)\Trend Micro
2012-02-29 03:39:22	--------	d-----w-	C:\PIT Format 2011
2012-02-26 08:06:02	--------	d-----w-	C:\Program Files (x86)\TuneUpMedia
.
==================== Find3M  ====================
.
2012-03-26 20:40:23	25640	----a-w-	C:\Windows\gdrv.sys
2012-03-23 06:14:12	175736	----a-w-	C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2012-02-23 17:24:53	30528	----a-w-	C:\Windows\GVTDrv64.sys
2012-02-20 03:28:56	414368	----a-w-	C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-02-15 10:01:50	52736	----a-w-	C:\Windows\System32\drivers\usbaapl64.sys
2012-02-15 10:01:50	4547944	----a-w-	C:\Windows\System32\usbaaplrc.dll
2012-02-12 08:08:46	70144	----a-w-	C:\Windows\listcmd.bin
2012-02-12 07:18:52	82296	----a-w-	C:\Windows\SysWow64\drivers\viragtlt.sys
2012-02-08 17:06:21	1490656	----a-w-	C:\Windows\System32\WdfCoInstaller01007.dll
2012-02-08 17:06:21	1490656	----a-w-	C:\Windows\System32\drivers\WdfCoInstaller01007.dll
2012-01-26 23:52:58	279656	------w-	C:\Windows\System32\MpSigStub.exe
2012-01-18 20:32:17	25640	----a-w-	C:\Windows\etdrv.sys
2012-01-14 04:06:27	3145728	----a-w-	C:\Windows\System32\win32k.sys
2012-01-13 04:23:50	101680	----a-w-	C:\Windows\System32\stkMonitor.dll
2012-01-12 13:59:38	21712	----a-w-	C:\Windows\SysWow64\drivers\DrvAgent64.SYS
2012-01-04 10:44:20	509952	----a-w-	C:\Windows\System32\ntshrui.dll
2012-01-04 08:58:41	442880	----a-w-	C:\Windows\SysWow64\ntshrui.dll
2011-12-30 06:26:08	515584	----a-w-	C:\Windows\System32\timedate.cpl
2011-12-30 05:27:56	478720	----a-w-	C:\Windows\SysWow64\timedate.cpl
2011-12-28 03:59:24	498688	----a-w-	C:\Windows\System32\drivers\afd.sys
.
============= FINISH:  5:03:05,98 ===============