Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I have a Virus that adds a volume application called "name not available"


  • Please log in to reply
4 replies to this topic

#1 mserabell

mserabell

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 11 June 2013 - 12:12 PM

I have a Virus that adds a volume application called "name not available". It plays commercials and ads (only through sound) non stop.  Ive tried all the basic malware removers and tried to Recover from an earlier point and nothing seems to work. I posted this problem about 2 weeks ago, but lost internet access and it was closed. Please help again. THanks!

 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16576  BrowserJavaVersion: 10.17.2
Run by User at 13:03:22 on 2013-06-11
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.2669.1534 [GMT -4:00]
.
AV: Trend Micro Titanium *Disabled/Updated* {48929DFC-7A52-A34F-8351-C4DBEDBD9C50}
SP: Trend Micro Titanium *Disabled/Updated* {F3F37C18-5C68-ACC1-B9E1-FFA9963AD6ED}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\atieclxx.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\windows\Explorer.EXE
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
C:\windows\SysWOW64\AsusService.exe
C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k HPZ12
C:\windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
C:\Program Files (x86)\Asus\LiveUpdate\LiveUpdate.exe
C:\Program Files (x86)\ASUS\HotkeyService\HotKeyMon.exe
C:\Program Files (x86)\ASUS\HotkeyService\HotkeyService.exe
C:\Program Files (x86)\ASUS\SHE\SuperHybridEngine.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\iBryte\playbryte\iBryteDesktop.exe
C:\Program Files (x86)\ASUS\CapsHook\CapsHook.exe
C:\Program Files (x86)\ASUS\USBChargeSetting\iSeriesCharge.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\SndVol.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://xfinity.comcast.net/?cid=insDate03052013
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: PlayBryte BHO: {61e0ef7a-9bc0-45ea-9b2f-f3e9f02692bd} - 
BHO: StartNow Toolbar Helper: {6E13D095-45C3-4271-9475-F3B48227DD9F} - 
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - 
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: StartNow Toolbar: {5911488E-9D1E-40ec-8CBB-06B231CC153F} - 
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 
uRun: [Facebook Update] "C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [HotkeyMon] AsusSender.exe C:\Program Files (x86)\ASUS\HotkeyService\HotKeyMon.exe
mRun: [HotkeyService] AsusSender.exe C:\Program Files (x86)\ASUS\HotkeyService\HotkeyService.exe
mRun: [CapsHook] AsusSender.exe C:\Program Files (x86)\ASUS\CapsHook\CapsHook.exe
mRun: [SuperHybridEngine] AsusSender.exe C:\Program Files (x86)\ASUS\SHE\SuperHybridEngine.exe
mRun: [asus app store] "C:\Program Files\Asus\AsusAppStore\bin\serviceManager.lnk"
mRun: [ASUSPRP] C:\Program Files (x86)\ASUS\APRP\APRP.EXE
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [iBryte playbryte Desktop] C:\Program Files (x86)\iBryte\playbryte\ibrytedesktop.exe
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
mRun: [iSeriesCharge] AsusSender.exe C:\Program Files (x86)\ASUS\USBChargeSetting\iSeriesCharge.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ASUSVI~1.LNK - C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{682BA9AC-F83F-4AA9-B02E-701FCB7C782E} : DHCPNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{682BA9AC-F83F-4AA9-B02E-701FCB7C782E}\131364850353037393134353 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{682BA9AC-F83F-4AA9-B02E-701FCB7C782E}\24F696E676F60284F6473707F647 : DHCPNameServer = 10.1.0.1
TCP: Interfaces\{682BA9AC-F83F-4AA9-B02E-701FCB7C782E}\4756368637F6574786965644D4A5 : DHCPNameServer = 208.67.222.222 208.67.220.220
TCP: Interfaces\{682BA9AC-F83F-4AA9-B02E-701FCB7C782E}\84F4D454D244241323 : DHCPNameServer = 68.87.66.246 162.150.8.37
TCP: Interfaces\{682BA9AC-F83F-4AA9-B02E-701FCB7C782E}\C696E6B6379737 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{E79735EE-0FE9-457F-8033-48132B81A8AB} : DHCPNameServer = 75.75.75.75 75.75.76.76
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [SynAsusAcpi] C:\Program Files (x86)\Synaptics\SynTP\SynAsusAcpi.exe
x64-Run: [LiveUpdate] AsusSender.exe C:\Program Files (x86)\Asus\LiveUpdate\LiveUpdate.exe auto
x64-Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
x64-Run: [VizorHtmlDialog.exe] "C:\Program Files\Trend Micro\Titanium\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\pre_install_eula.html" "DEF" "DEF" "DEF"
x64-Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\windows\System32\drivers\amd_sata.sys [2010-12-21 75904]
R0 amd_xata;amd_xata;C:\windows\System32\drivers\amd_xata.sys [2010-12-21 38016]
R2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2011-1-25 203776]
R2 Amsp;Trend Micro Solution Platform;C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2011-2-10 203536]
R2 AsusService;Asus Launcher Service;C:\Windows\SysWOW64\AsusService.exe [2011-2-10 224680]
R2 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R3 AiDriver;ASUS Charger Driver;C:\windows\System32\drivers\AiDriver.sys [2012-8-15 17152]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\windows\System32\drivers\AtihdW76.sys [2011-1-25 115216]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2010-12-21 76912]
R3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]
R3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]
R3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]
R3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
S2 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-1-8 161536]
S3 fssfltr;fssfltr;C:\windows\System32\drivers\fssfltr.sys [2012-8-13 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;C:\windows\System32\drivers\netr28x.sys [2009-6-10 620544]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2011-9-23 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2011-9-22 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2013-05-29 02:39:39 9728 ---ha-w- C:\windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-24 22:07:48 1930752 ----a-w- C:\windows\System32\authui.dll
2013-05-24 22:07:45 1796096 ----a-w- C:\windows\SysWow64\authui.dll
2013-05-24 22:07:45 111448 ----a-w- C:\windows\System32\consent.exe
2013-05-24 22:07:44 70144 ----a-w- C:\windows\System32\appinfo.dll
2013-05-24 22:06:18 983400 ----a-w- C:\windows\System32\drivers\dxgkrnl.sys
2013-05-24 22:06:18 265064 ----a-w- C:\windows\System32\drivers\dxgmms1.sys
2013-05-24 21:57:15 48640 ----a-w- C:\windows\System32\wwanprotdim.dll
2013-05-24 21:57:15 230400 ----a-w- C:\windows\System32\wwansvc.dll
2013-05-24 21:55:22 78680 ----a-w- C:\windows\System32\mcupdate_AuthenticAMD.dll
2013-05-24 21:53:03 3153920 ----a-w- C:\windows\System32\win32k.sys
2013-05-24 06:22:23 -------- d-sh--w- C:\$RECYCLE.BIN
2013-05-24 05:17:29 98816 ----a-w- C:\windows\sed.exe
2013-05-24 05:17:29 256000 ----a-w- C:\windows\PEV.exe
2013-05-24 05:17:29 208896 ----a-w- C:\windows\MBR.exe
2013-05-24 01:12:56 144384 ----a-w- C:\windows\System32\cdd.dll
2013-05-24 01:03:12 -------- d-----w- C:\windows\System32\MpEngineStore
2013-05-22 13:06:39 -------- d-----w- C:\Users\User\AppData\Roaming\PCFixSpeed
2013-05-22 00:22:45 -------- d-----w- C:\ProgramData\PCFixSpeed
2013-05-22 00:22:41 -------- d-----w- C:\Program Files (x86)\PCFixSpeed
2013-05-21 23:46:39 -------- d-----w- C:\Users\User\AppData\Local\ElevatedDiagnostics
2013-05-21 19:26:31 -------- d-----w- C:\windows\SysWow64\searchplugins
2013-05-21 19:26:31 -------- d-----w- C:\windows\SysWow64\Extensions
2013-05-21 19:19:47 -------- d-----w- C:\Program Files (x86)\Common Files\DivX Shared
2013-05-21 19:19:05 -------- d-----w- C:\Program Files (x86)\DivX
2013-05-21 19:19:02 -------- d-----w- C:\Program Files (x86)\ffdshow
2013-05-21 19:18:23 -------- d-----w- C:\ProgramData\DivX
2013-05-21 19:18:22 -------- d-----w- C:\Program Files (x86)\DSP-worx
2013-05-21 19:18:21 -------- d-----w- C:\Users\User\AppData\Roaming\LavFilters
2013-05-21 19:16:42 -------- d-----w- C:\Users\User\AppData\Roaming\DealPly
2013-05-21 19:16:20 -------- d-----w- C:\Users\User\AppData\Roaming\DSite
2013-05-15 01:58:08 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2013-05-15 01:36:57 -------- d-----w- C:\Users\User\AppData\Roaming\DriverCure
2013-05-15 01:36:56 -------- d-----w- C:\Users\User\AppData\Roaming\SparkTrust
2013-05-15 01:36:00 -------- d-----w- C:\ProgramData\SparkTrust
2013-05-15 01:25:39 -------- d-----w- C:\Users\User\AppData\Local\Programs
.
==================== Find3M  ====================
.
2013-05-29 02:39:39 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-24 01:26:05 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-24 01:26:05 692104 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-04-13 05:49:23 135168 ----a-w- C:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49:19 350208 ----a-w- C:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49:19 308736 ----a-w- C:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49:19 111104 ----a-w- C:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45:16 474624 ----a-w- C:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45:15 2176512 ----a-w- C:\windows\apppatch\AcGenral.dll
2013-04-12 14:45:08 1656680 ----a-w- C:\windows\System32\drivers\ntfs.sys
2013-03-23 16:58:49 152576 ----a-w- C:\windows\SysWow64\msclmd.dll
2013-03-23 16:58:48 175616 ----a-w- C:\windows\System32\msclmd.dll
2013-03-19 06:04:06 5550424 ----a-w- C:\windows\System32\ntoskrnl.exe
2013-03-19 05:46:56 43520 ----a-w- C:\windows\System32\csrsrv.dll
2013-03-19 05:04:13 3968856 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04:10 3913560 ----a-w- C:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47:50 6656 ----a-w- C:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06:33 112640 ----a-w- C:\windows\System32\smss.exe
.
============= FINISH: 13:04:46.02 ===============
 

 

Attached Files



BC AdBot (Login to Remove)

 


#2 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:06:23 PM

Posted 11 June 2013 - 01:12 PM

:welcome:

 

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#3 mserabell

mserabell
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 11 June 2013 - 01:41 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-06-2013 03
Ran by User (administrator) on 11-06-2013 14:32:11
Running from C:\Users\User\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\windows\system32\atiesrxx.exe
(AMD) C:\windows\system32\atieclxx.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
() C:\windows\SysWOW64\AsusService.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Facebook Inc.) C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
(AsusTek Computer Inc.) C:\Program Files (x86)\Asus\LiveUpdate\LiveUpdate.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\HotkeyService\HotKeyMon.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\HotkeyService\HotkeyService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\SHE\SuperHybridEngine.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(iBryte) C:\Program Files (x86)\iBryte\playbryte\iBryteDesktop.exe
(ASUS) C:\Program Files (x86)\ASUS\CapsHook\CapsHook.exe
(AsusTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargeSetting\iSeriesCharge.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\windows\system32\SndVol.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\windows\SysWOW64\NOTEPAD.EXE
(Microsoft Corporation) C:\windows\SysWOW64\NOTEPAD.EXE
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2283816 2010-08-12] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe [92456 2010-08-12] (Synaptics Incorporated)
HKLM\...\Run: [LiveUpdate] AsusSender.exe C:\Program Files (x86)\Asus\LiveUpdate\LiveUpdate.exe auto [1086888 2010-11-22] (AsusTek Computer Inc.)
HKLM\...\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun [461488 2011-01-06] (ASUSTek Computer Inc.)
HKLM\...\Run: [VizorHtmlDialog.exe] "C:\Program Files\Trend Micro\Titanium\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\pre_install_eula.html" "DEF" "DEF" "DEF" [x]
HKLM\...\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [191784 2010-03-19] (Trend Micro Inc.)
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [11775592 2011-01-18] (Realtek Semiconductor)
HKCU\...\Run: [Facebook Update] "C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-01-24] (Facebook Inc.)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [336384 2010-11-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HotkeyMon] AsusSender.exe C:\Program Files (x86)\ASUS\HotkeyService\HotKeyMon.exe [101288 2010-12-07] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [HotkeyService] AsusSender.exe C:\Program Files (x86)\ASUS\HotkeyService\HotkeyService.exe [1248176 2010-12-07] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [CapsHook] AsusSender.exe C:\Program Files (x86)\ASUS\CapsHook\CapsHook.exe [445344 2010-11-15] (ASUS)
HKLM-x32\...\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files (x86)\ASUS\SHE\SuperHybridEngine.exe [413112 2011-01-26] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [asus app store] "C:\Program Files\Asus\AsusAppStore\bin\serviceManager.lnk" [x]
HKLM-x32\...\Run: [ASUSPRP] C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2018032 2011-02-10] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2011-07-05] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2011-08-19] (Apple Inc.)
HKLM-x32\...\Run: [iBryte playbryte Desktop] C:\Program Files (x86)\iBryte\playbryte\ibrytedesktop.exe [167936 2011-10-08] (iBryte)
HKLM-x32\...\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S [737104 2011-07-29] (ecareme)
HKLM-x32\...\Run: [iSeriesCharge] AsusSender.exe C:\Program Files (x86)\ASUS\USBChargeSetting\iSeriesCharge.exe [99792 2012-06-28] (AsusTek Computer Inc.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKU\Default\...\RunOnce: [Reboot] AsusSender.exe C:\Windows\Reboot.exe 60 [92096 2010-12-12] (AsusTek Computer Inc.)
HKU\Default\...\RunOnce: [IconPatch] C:\Windows\AP\IconPatch.vbs [x]
HKU\Default\...\RunOnce: [AskScreensaver] C:\Program Files\Asus\AsusScreensaver\AsusScreensaver.exe [797104 2011-01-26] (AsusTek Computer Inc.)
HKU\Default User\...\RunOnce: [Reboot] AsusSender.exe C:\Windows\Reboot.exe 60 [92096 2010-12-12] (AsusTek Computer Inc.)
HKU\Default User\...\RunOnce: [IconPatch] C:\Windows\AP\IconPatch.vbs [x]
HKU\Default User\...\RunOnce: [AskScreensaver] C:\Program Files\Asus\AsusScreensaver\AsusScreensaver.exe [797104 2011-01-26] (AsusTek Computer Inc.)
HKU\EE\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-09-27] (Google Inc.)
Startup: C:\ProgramData\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://xfinity.comcast.net/?cid=insDate03052013
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {180780f0-b348-4b44-8210-94a8f3ee15b2} URL = http://search.comcast.net/search/?cat=Web&con=toolbar&q={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: PlayBryte BHO - {61e0ef7a-9bc0-45ea-9b2f-f3e9f02692bd} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: StartNow Toolbar Helper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
Toolbar: HKLM-x32 - No Name - {b278d9f8-0fa9-465e-9938-0c392605d8e3} -  No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www1.delta-search.com/?affID=119351&tt=gc_&babsrc=HP_ss&mntrId=9C10E0B9A57C22FE"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\User\AppData\Local\Google\Chrome\Application\27.0.1453.94\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\User\AppData\Local\Google\Chrome\Application\27.0.1453.94\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\User\AppData\Local\Google\Chrome\Application\27.0.1453.94\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.63_0
CHR Extension: (StartNow) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\incfcgceegpikennjoplhfghaaikdgei\2.5.0_0
CHR Extension: (PlayBryte) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mndamoemnenmialjifmkfmpaadfkgajg\1.0_0
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
 
==================== Services (Whitelisted) =================
 
R2 AsusService; C:\windows\SysWOW64\AsusService.exe [224680 2010-12-07] ()
R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=nb [x]
 
==================== Drivers (Whitelisted) ====================
 
R3 AiDriver; C:\Windows\System32\DRIVERS\AiDriver.sys [17152 2012-05-07] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-06-28] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-06-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 cpuz134; \??\C:\Users\User\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x]
S1 MpKsla506219a; \??\C:\windows\system32\MpEngineStore\MpKsla506219a.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2013-06-11 14:32 - 2013-06-11 14:32 - 00000000 ____D C:\FRST
2013-06-11 14:31 - 2013-06-11 14:31 - 01920158 ____A (Farbar) C:\Users\User\Downloads\FRST64.exe
2013-06-11 13:02 - 2013-06-11 13:02 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds (2).com
2013-06-11 10:17 - 2013-06-11 10:17 - 00274792 ____A C:\Windows\Minidump\061113-30591-01.dmp
2013-06-03 19:02 - 2013-06-03 19:02 - 00274792 ____A C:\Windows\Minidump\060313-76300-01.dmp
2013-05-28 22:51 - 2013-05-28 22:51 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-28 22:39 - 2013-05-28 22:39 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01504768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 22:27 - 2013-05-28 23:17 - 00008882 ____A C:\Windows\IE10_main.log
2013-05-24 18:07 - 2013-02-27 02:02 - 00111448 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe
2013-05-24 18:07 - 2013-02-27 01:52 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2013-05-24 18:07 - 2013-02-27 01:52 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
2013-05-24 18:07 - 2013-02-27 01:48 - 01930752 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-05-24 18:07 - 2013-02-27 01:47 - 00070144 ____A (Microsoft Corporation) C:\Windows\System32\appinfo.dll
2013-05-24 18:07 - 2013-02-27 00:55 - 12872704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-05-24 18:07 - 2013-02-27 00:55 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-05-24 18:07 - 2013-02-27 00:49 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-05-24 18:06 - 2013-04-10 02:01 - 00983400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2013-05-24 18:06 - 2013-04-10 02:01 - 00265064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2013-05-24 17:57 - 2013-03-19 01:53 - 00230400 ____A (Microsoft Corporation) C:\Windows\System32\wwansvc.dll
2013-05-24 17:57 - 2013-03-19 01:53 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll
2013-05-24 17:55 - 2013-04-01 02:03 - 00078680 ____A (Microsoft Corporation) C:\Windows\System32\mcupdate_AuthenticAMD.dll
2013-05-24 17:53 - 2013-04-09 23:30 - 03153920 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-05-24 10:24 - 2013-05-24 10:28 - 00004134 ____A C:\AdwCleaner[S1].txt
2013-05-24 02:46 - 2013-05-24 02:46 - 00010855 ____A C:\Users\User\Desktop\DDS2.txt
2013-05-24 02:45 - 2013-06-11 13:05 - 00017241 ____A C:\Users\User\Desktop\attach.txt
2013-05-24 02:45 - 2013-06-11 13:04 - 00017057 ____A C:\Users\User\Desktop\dds.txt
2013-05-24 02:45 - 2013-05-24 02:45 - 00016505 ____A C:\Users\User\Desktop\Attach2.txt
2013-05-24 02:41 - 2013-05-24 02:41 - 00688992 ____A (Swearware) C:\Users\User\Downloads\dds (1).com
2013-05-24 02:40 - 2013-05-24 02:40 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds.com
2013-05-24 02:17 - 2013-05-24 02:17 - 00019558 ____A C:\Users\User\Desktop\combofix.txt
2013-05-24 02:08 - 2013-05-24 02:08 - 00019558 ____A C:\ComboFix.txt
2013-05-24 01:17 - 2011-06-26 02:45 - 00256000 ____A C:\Windows\PEV.exe
2013-05-24 01:17 - 2010-11-07 13:20 - 00208896 ____A C:\Windows\MBR.exe
2013-05-24 01:17 - 2009-04-20 00:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00098816 ____A C:\Windows\sed.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00080412 ____A C:\Windows\grep.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00068096 ____A C:\Windows\zip.exe
2013-05-24 01:16 - 2013-05-24 02:08 - 00000000 ____D C:\Qoobox
2013-05-24 01:14 - 2013-05-24 01:56 - 00000000 ____D C:\Windows\erdnt
2013-05-24 00:57 - 2013-05-24 00:57 - 00274792 ____A C:\Windows\Minidump\052413-33462-01.dmp
2013-05-23 21:12 - 2011-02-03 07:25 - 00144384 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll
2013-05-23 21:03 - 2013-05-24 01:43 - 00000000 ____D C:\Windows\System32\MpEngineStore
2013-05-23 20:58 - 2013-05-23 20:58 - 20967560 ____A (Microsoft Corporation) C:\Users\User\Downloads\Windows-KB890830-x64-V4.20.exe
2013-05-23 20:58 - 2013-05-03 16:15 - 75016696 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-05-23 19:08 - 2013-05-23 19:08 - 00000000 ____D C:\Users\EE\AppData\Local\Apple
2013-05-22 09:06 - 2013-05-22 09:07 - 00000000 ____D C:\Users\User\AppData\Roaming\PCFixSpeed
2013-05-21 20:22 - 2013-05-23 20:18 - 00000000 ____D C:\ProgramData\PCFixSpeed
2013-05-21 20:22 - 2013-05-23 20:18 - 00000000 ____D C:\Program Files (x86)\PCFixSpeed
2013-05-21 20:22 - 2013-05-21 20:24 - 00000000 ____D C:\Users\EE\AppData\Roaming\PCFixSpeed
2013-05-21 20:12 - 2013-05-21 20:13 - 02094296 ____A (LiveSoftAction) C:\Users\EE\Downloads\Spybot - Search &amp
2013-05-21 20:05 - 2013-05-21 20:10 - 00000000 ____D C:\Users\EE\AppData\Local\Google
2013-05-21 20:05 - 2013-05-21 20:06 - 00000000 ____D C:\Users\EE\AppData\Roaming\Google
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Roaming\Apple Computer
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Local\Intel
2013-05-21 18:53 - 2013-05-23 20:23 - 00000000 ____D C:\users\EE
2013-05-21 18:53 - 2013-05-21 18:57 - 00058520 ____A C:\Users\EE\AppData\Local\GDIPFONTCACHEV1.DAT
2013-05-21 18:53 - 2013-05-21 18:53 - 00000000 ____D C:\Users\EE\AppData\Local\VirtualStore
2013-05-21 18:53 - 2011-02-10 15:35 - 00000000 ____D C:\Users\EE\AppData\Roaming\ASUS WebStorage
2013-05-21 18:53 - 2011-02-10 11:58 - 00000000 ____D C:\Users\EE\AppData\Roaming\Adobe
2013-05-21 18:53 - 2011-02-10 11:58 - 00000000 ____D C:\Users\EE\AppData\Local\Adobe
2013-05-21 18:53 - 2011-02-10 11:55 - 00000000 ____D C:\Users\EE\Documents\Asus WebStorage
2013-05-21 18:53 - 2011-02-10 11:48 - 00000000 ____D C:\Users\EE\AppData\Roaming\Mozilla
2013-05-21 18:53 - 2011-02-10 11:40 - 00000000 ____D C:\Users\EE\AppData\Local\Windows Live
2013-05-21 18:53 - 2011-02-10 11:39 - 00000000 ____D C:\Users\EE\AppData\Roaming\Macromedia
2013-05-21 18:53 - 2011-02-10 11:35 - 00000000 ____D C:\Users\EE\AppData\Roaming\ATI
2013-05-21 18:53 - 2011-02-10 11:35 - 00000000 ____D C:\Users\EE\AppData\Local\ATI
2013-05-21 18:53 - 2011-02-10 11:31 - 00000000 ____D C:\Users\EE\AppData\Roaming\InstallShield
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-05-21 15:19 - 2013-05-23 20:18 - 00000000 ____D C:\Program Files (x86)\ffdshow
2013-05-21 15:19 - 2013-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\DivX
2013-05-21 15:18 - 2013-05-23 20:18 - 00000000 ____D C:\Users\User\AppData\Roaming\LavFilters
2013-05-21 15:18 - 2013-05-21 18:42 - 00000000 ____D C:\Program Files (x86)\DSP-worx
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\ProgramData\DivX
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DSite
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DealPly
2013-05-14 21:58 - 2013-05-21 20:30 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-05-14 21:37 - 2013-06-10 18:00 - 00000462 ____A C:\Windows\Tasks\SparkTrust Registration3.job
2013-05-14 21:36 - 2013-05-23 19:18 - 00000000 ____D C:\ProgramData\SparkTrust
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\SparkTrust
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\DriverCure
2013-05-14 21:34 - 2013-05-14 21:34 - 05826352 ____A (SparkTrust) C:\Users\User\Downloads\SparkTrust PC Cleaner Plus Setup.exe
2013-05-14 21:30 - 2013-05-14 21:30 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (2).exe
2013-05-14 20:52 - 2013-05-14 21:30 - 00000162 ____A C:\Windows\Reimage.ini
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair.exe
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (1).exe
2013-05-14 20:50 - 2013-05-14 20:51 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\User\Downloads\mbam-setup-1.75.0.1300.exe
 
==================== One Month Modified Files and Folders =======
 
2013-06-11 14:32 - 2013-06-11 14:32 - 00000000 ____D C:\FRST
2013-06-11 14:31 - 2013-06-11 14:31 - 01920158 ____A (Farbar) C:\Users\User\Downloads\FRST64.exe
2013-06-11 13:05 - 2013-05-24 02:45 - 00017241 ____A C:\Users\User\Desktop\attach.txt
2013-06-11 13:04 - 2013-05-24 02:45 - 00017057 ____A C:\Users\User\Desktop\dds.txt
2013-06-11 13:02 - 2013-06-11 13:02 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds (2).com
2013-06-11 10:53 - 2009-07-14 01:08 - 00024422 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-06-11 10:53 - 2009-07-14 01:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-11 10:52 - 2011-09-17 02:08 - 01703775 ____A C:\Windows\WindowsUpdate.log
2013-06-11 10:41 - 2011-09-27 19:08 - 00000904 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000UA.job
2013-06-11 10:25 - 2011-09-27 18:56 - 00000890 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-11 10:25 - 2009-07-14 00:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-11 10:25 - 2009-07-14 00:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-11 10:23 - 2012-09-05 20:07 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-11 10:17 - 2013-06-11 10:17 - 00274792 ____A C:\Windows\Minidump\061113-30591-01.dmp
2013-06-11 10:17 - 2011-10-05 23:09 - 00000000 ____D C:\Windows\Minidump
2013-06-11 10:17 - 2011-09-27 19:08 - 00000852 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000Core.job
2013-06-11 10:17 - 2009-07-14 00:51 - 00045675 ____A C:\Windows\setupact.log
2013-06-11 10:16 - 2011-10-05 23:09 - 521432675 ____A C:\Windows\MEMORY.DMP
2013-06-11 10:14 - 2013-01-24 16:44 - 00000924 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000UA.job
2013-06-11 10:14 - 2011-09-27 18:56 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-10 18:01 - 2011-09-29 21:02 - 00000000 ____D C:\Windows\rescache
2013-06-10 18:00 - 2013-05-14 21:37 - 00000462 ____A C:\Windows\Tasks\SparkTrust Registration3.job
2013-06-10 17:20 - 2013-01-24 16:44 - 00000902 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000Core.job
2013-06-03 19:02 - 2013-06-03 19:02 - 00274792 ____A C:\Windows\Minidump\060313-76300-01.dmp
2013-06-03 18:54 - 2009-07-14 00:45 - 00268856 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\System32\tr-TR
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-05-28 23:17 - 2013-05-28 22:27 - 00008882 ____A C:\Windows\IE10_main.log
2013-05-28 22:51 - 2013-05-28 22:51 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-28 22:39 - 2013-05-28 22:39 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01504768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 21:46 - 2009-07-14 01:13 - 00741680 ____A C:\Windows\System32\PerfStringBackup.INI
2013-05-24 20:52 - 2011-10-08 12:46 - 00000000 ____D C:\Program Files (x86)\iBryte
2013-05-24 20:52 - 2009-07-13 23:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-05-24 20:51 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\registration
2013-05-24 19:27 - 2011-09-27 19:14 - 00002321 ____A C:\Users\User\Desktop\Google Chrome.lnk
2013-05-24 10:28 - 2013-05-24 10:24 - 00004134 ____A C:\AdwCleaner[S1].txt
2013-05-24 02:46 - 2013-05-24 02:46 - 00010855 ____A C:\Users\User\Desktop\DDS2.txt
2013-05-24 02:45 - 2013-05-24 02:45 - 00016505 ____A C:\Users\User\Desktop\Attach2.txt
2013-05-24 02:41 - 2013-05-24 02:41 - 00688992 ____A (Swearware) C:\Users\User\Downloads\dds (1).com
2013-05-24 02:40 - 2013-05-24 02:40 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds.com
2013-05-24 02:17 - 2013-05-24 02:17 - 00019558 ____A C:\Users\User\Desktop\combofix.txt
2013-05-24 02:08 - 2013-05-24 02:08 - 00019558 ____A C:\ComboFix.txt
2013-05-24 02:08 - 2013-05-24 01:16 - 00000000 ____D C:\Qoobox
2013-05-24 01:56 - 2013-05-24 01:14 - 00000000 ____D C:\Windows\erdnt
2013-05-24 01:47 - 2009-07-13 22:34 - 00000215 ____A C:\Windows\system.ini
2013-05-24 01:45 - 2011-10-05 23:09 - 00018836 ____A C:\Windows\PFRO.log
2013-05-24 01:43 - 2013-05-23 21:03 - 00000000 ____D C:\Windows\System32\MpEngineStore
2013-05-24 01:43 - 2009-07-13 22:34 - 67371008 ____A C:\Windows\System32\config\SOFTWARE.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 20709376 ____A C:\Windows\System32\config\SYSTEM.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 01048576 ____A C:\Windows\System32\config\DEFAULT.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 00262144 ____A C:\Windows\System32\config\SECURITY.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 00262144 ____A C:\Windows\System32\config\SAM.bak
2013-05-24 01:08 - 2011-09-27 18:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-05-24 01:08 - 2011-09-27 18:55 - 00000000 ____D C:\ProgramData\Skype
2013-05-24 00:57 - 2013-05-24 00:57 - 00274792 ____A C:\Windows\Minidump\052413-33462-01.dmp
2013-05-23 21:26 - 2012-09-05 20:07 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-05-23 21:26 - 2012-09-05 20:07 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-05-23 20:58 - 2013-05-23 20:58 - 20967560 ____A (Microsoft Corporation) C:\Users\User\Downloads\Windows-KB890830-x64-V4.20.exe
2013-05-23 20:25 - 2013-01-24 16:43 - 00000000 ____D C:\Users\User\AppData\Local\Facebook
2013-05-23 20:23 - 2013-05-21 18:53 - 00000000 ____D C:\users\EE
2013-05-23 20:19 - 2011-10-08 12:47 - 00000000 ____D C:\Program Files (x86)\Xvid
2013-05-23 20:19 - 2011-02-10 11:35 - 00000000 ____D C:\Program Files (x86)\Asus
2013-05-23 20:19 - 2011-02-10 11:30 - 00000000 ____D C:\Program Files\Synaptics
2013-05-23 20:18 - 2013-05-21 20:22 - 00000000 ____D C:\ProgramData\PCFixSpeed
2013-05-23 20:18 - 2013-05-21 20:22 - 00000000 ____D C:\Program Files (x86)\PCFixSpeed
2013-05-23 20:18 - 2013-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\ffdshow
2013-05-23 20:18 - 2013-05-21 15:18 - 00000000 ____D C:\Users\User\AppData\Roaming\LavFilters
2013-05-23 20:15 - 2011-11-29 23:34 - 00000000 ____D C:\Users\User\AppData\Roaming\SoftGrid Client
2013-05-23 20:14 - 2013-03-10 12:01 - 00000000 ____D C:\Program Files (x86)\Java
2013-05-23 20:14 - 2011-09-27 18:56 - 00000000 ____D C:\Program Files (x86)\Google
2013-05-23 20:13 - 2011-02-10 11:35 - 00000000 ____D C:\AsusVibeData
2013-05-23 19:18 - 2013-05-14 21:36 - 00000000 ____D C:\ProgramData\SparkTrust
2013-05-23 19:08 - 2013-05-23 19:08 - 00000000 ____D C:\Users\EE\AppData\Local\Apple
2013-05-22 09:07 - 2013-05-22 09:06 - 00000000 ____D C:\Users\User\AppData\Roaming\PCFixSpeed
2013-05-21 20:30 - 2013-05-14 21:58 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-05-21 20:24 - 2013-05-21 20:22 - 00000000 ____D C:\Users\EE\AppData\Roaming\PCFixSpeed
2013-05-21 20:13 - 2013-05-21 20:12 - 02094296 ____A (LiveSoftAction) C:\Users\EE\Downloads\Spybot - Search &amp
2013-05-21 20:10 - 2013-05-21 20:05 - 00000000 ____D C:\Users\EE\AppData\Local\Google
2013-05-21 20:06 - 2013-05-21 20:05 - 00000000 ____D C:\Users\EE\AppData\Roaming\Google
2013-05-21 18:57 - 2013-05-21 18:53 - 00058520 ____A C:\Users\EE\AppData\Local\GDIPFONTCACHEV1.DAT
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Roaming\Apple Computer
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Local\Intel
2013-05-21 18:56 - 2011-02-10 11:56 - 00000000 ____D C:\ProgramData\Trend Micro
2013-05-21 18:53 - 2013-05-21 18:53 - 00000000 ____D C:\Users\EE\AppData\Local\VirtualStore
2013-05-21 18:42 - 2013-05-21 15:18 - 00000000 ____D C:\Program Files (x86)\DSP-worx
2013-05-21 16:34 - 2011-09-16 23:32 - 00000000 ____D C:\Users\User\AppData\Roaming\ASUS WebStorage
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-05-21 15:19 - 2013-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\DivX
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\ProgramData\DivX
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DSite
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DealPly
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\SparkTrust
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\DriverCure
2013-05-14 21:34 - 2013-05-14 21:34 - 05826352 ____A (SparkTrust) C:\Users\User\Downloads\SparkTrust PC Cleaner Plus Setup.exe
2013-05-14 21:30 - 2013-05-14 21:30 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (2).exe
2013-05-14 21:30 - 2013-05-14 20:52 - 00000162 ____A C:\Windows\Reimage.ini
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair.exe
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (1).exe
2013-05-14 20:51 - 2013-05-14 20:50 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\User\Downloads\mbam-setup-1.75.0.1300.exe
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2013-06-10 17:54
 
==================== End Of Log ============================

 



#4 mserabell

mserabell
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 11 June 2013 - 01:42 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-06-2013 03
Ran by User (administrator) on 11-06-2013 14:32:11
Running from C:\Users\User\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\windows\system32\atiesrxx.exe
(AMD) C:\windows\system32\atieclxx.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
() C:\windows\SysWOW64\AsusService.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Facebook Inc.) C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
(AsusTek Computer Inc.) C:\Program Files (x86)\Asus\LiveUpdate\LiveUpdate.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\HotkeyService\HotKeyMon.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\HotkeyService\HotkeyService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\SHE\SuperHybridEngine.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(iBryte) C:\Program Files (x86)\iBryte\playbryte\iBryteDesktop.exe
(ASUS) C:\Program Files (x86)\ASUS\CapsHook\CapsHook.exe
(AsusTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargeSetting\iSeriesCharge.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\windows\system32\SndVol.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\windows\SysWOW64\NOTEPAD.EXE
(Microsoft Corporation) C:\windows\SysWOW64\NOTEPAD.EXE
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2283816 2010-08-12] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe [92456 2010-08-12] (Synaptics Incorporated)
HKLM\...\Run: [LiveUpdate] AsusSender.exe C:\Program Files (x86)\Asus\LiveUpdate\LiveUpdate.exe auto [1086888 2010-11-22] (AsusTek Computer Inc.)
HKLM\...\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun [461488 2011-01-06] (ASUSTek Computer Inc.)
HKLM\...\Run: [VizorHtmlDialog.exe] "C:\Program Files\Trend Micro\Titanium\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\pre_install_eula.html" "DEF" "DEF" "DEF" [x]
HKLM\...\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [191784 2010-03-19] (Trend Micro Inc.)
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [11775592 2011-01-18] (Realtek Semiconductor)
HKCU\...\Run: [Facebook Update] "C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-01-24] (Facebook Inc.)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [336384 2010-11-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HotkeyMon] AsusSender.exe C:\Program Files (x86)\ASUS\HotkeyService\HotKeyMon.exe [101288 2010-12-07] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [HotkeyService] AsusSender.exe C:\Program Files (x86)\ASUS\HotkeyService\HotkeyService.exe [1248176 2010-12-07] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [CapsHook] AsusSender.exe C:\Program Files (x86)\ASUS\CapsHook\CapsHook.exe [445344 2010-11-15] (ASUS)
HKLM-x32\...\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files (x86)\ASUS\SHE\SuperHybridEngine.exe [413112 2011-01-26] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [asus app store] "C:\Program Files\Asus\AsusAppStore\bin\serviceManager.lnk" [x]
HKLM-x32\...\Run: [ASUSPRP] C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2018032 2011-02-10] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2011-07-05] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2011-08-19] (Apple Inc.)
HKLM-x32\...\Run: [iBryte playbryte Desktop] C:\Program Files (x86)\iBryte\playbryte\ibrytedesktop.exe [167936 2011-10-08] (iBryte)
HKLM-x32\...\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S [737104 2011-07-29] (ecareme)
HKLM-x32\...\Run: [iSeriesCharge] AsusSender.exe C:\Program Files (x86)\ASUS\USBChargeSetting\iSeriesCharge.exe [99792 2012-06-28] (AsusTek Computer Inc.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKU\Default\...\RunOnce: [Reboot] AsusSender.exe C:\Windows\Reboot.exe 60 [92096 2010-12-12] (AsusTek Computer Inc.)
HKU\Default\...\RunOnce: [IconPatch] C:\Windows\AP\IconPatch.vbs [x]
HKU\Default\...\RunOnce: [AskScreensaver] C:\Program Files\Asus\AsusScreensaver\AsusScreensaver.exe [797104 2011-01-26] (AsusTek Computer Inc.)
HKU\Default User\...\RunOnce: [Reboot] AsusSender.exe C:\Windows\Reboot.exe 60 [92096 2010-12-12] (AsusTek Computer Inc.)
HKU\Default User\...\RunOnce: [IconPatch] C:\Windows\AP\IconPatch.vbs [x]
HKU\Default User\...\RunOnce: [AskScreensaver] C:\Program Files\Asus\AsusScreensaver\AsusScreensaver.exe [797104 2011-01-26] (AsusTek Computer Inc.)
HKU\EE\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-09-27] (Google Inc.)
Startup: C:\ProgramData\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://xfinity.comcast.net/?cid=insDate03052013
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {180780f0-b348-4b44-8210-94a8f3ee15b2} URL = http://search.comcast.net/search/?cat=Web&con=toolbar&q={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: PlayBryte BHO - {61e0ef7a-9bc0-45ea-9b2f-f3e9f02692bd} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: StartNow Toolbar Helper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
Toolbar: HKLM-x32 - No Name - {b278d9f8-0fa9-465e-9938-0c392605d8e3} -  No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www1.delta-search.com/?affID=119351&tt=gc_&babsrc=HP_ss&mntrId=9C10E0B9A57C22FE"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\User\AppData\Local\Google\Chrome\Application\27.0.1453.94\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\User\AppData\Local\Google\Chrome\Application\27.0.1453.94\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\User\AppData\Local\Google\Chrome\Application\27.0.1453.94\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.63_0
CHR Extension: (StartNow) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\incfcgceegpikennjoplhfghaaikdgei\2.5.0_0
CHR Extension: (PlayBryte) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mndamoemnenmialjifmkfmpaadfkgajg\1.0_0
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
 
==================== Services (Whitelisted) =================
 
R2 AsusService; C:\windows\SysWOW64\AsusService.exe [224680 2010-12-07] ()
R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=nb [x]
 
==================== Drivers (Whitelisted) ====================
 
R3 AiDriver; C:\Windows\System32\DRIVERS\AiDriver.sys [17152 2012-05-07] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-06-28] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-06-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 cpuz134; \??\C:\Users\User\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x]
S1 MpKsla506219a; \??\C:\windows\system32\MpEngineStore\MpKsla506219a.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2013-06-11 14:32 - 2013-06-11 14:32 - 00000000 ____D C:\FRST
2013-06-11 14:31 - 2013-06-11 14:31 - 01920158 ____A (Farbar) C:\Users\User\Downloads\FRST64.exe
2013-06-11 13:02 - 2013-06-11 13:02 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds (2).com
2013-06-11 10:17 - 2013-06-11 10:17 - 00274792 ____A C:\Windows\Minidump\061113-30591-01.dmp
2013-06-03 19:02 - 2013-06-03 19:02 - 00274792 ____A C:\Windows\Minidump\060313-76300-01.dmp
2013-05-28 22:51 - 2013-05-28 22:51 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-28 22:39 - 2013-05-28 22:39 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01504768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 22:27 - 2013-05-28 23:17 - 00008882 ____A C:\Windows\IE10_main.log
2013-05-24 18:07 - 2013-02-27 02:02 - 00111448 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe
2013-05-24 18:07 - 2013-02-27 01:52 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2013-05-24 18:07 - 2013-02-27 01:52 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
2013-05-24 18:07 - 2013-02-27 01:48 - 01930752 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-05-24 18:07 - 2013-02-27 01:47 - 00070144 ____A (Microsoft Corporation) C:\Windows\System32\appinfo.dll
2013-05-24 18:07 - 2013-02-27 00:55 - 12872704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-05-24 18:07 - 2013-02-27 00:55 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-05-24 18:07 - 2013-02-27 00:49 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-05-24 18:06 - 2013-04-10 02:01 - 00983400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2013-05-24 18:06 - 2013-04-10 02:01 - 00265064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2013-05-24 17:57 - 2013-03-19 01:53 - 00230400 ____A (Microsoft Corporation) C:\Windows\System32\wwansvc.dll
2013-05-24 17:57 - 2013-03-19 01:53 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll
2013-05-24 17:55 - 2013-04-01 02:03 - 00078680 ____A (Microsoft Corporation) C:\Windows\System32\mcupdate_AuthenticAMD.dll
2013-05-24 17:53 - 2013-04-09 23:30 - 03153920 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-05-24 10:24 - 2013-05-24 10:28 - 00004134 ____A C:\AdwCleaner[S1].txt
2013-05-24 02:46 - 2013-05-24 02:46 - 00010855 ____A C:\Users\User\Desktop\DDS2.txt
2013-05-24 02:45 - 2013-06-11 13:05 - 00017241 ____A C:\Users\User\Desktop\attach.txt
2013-05-24 02:45 - 2013-06-11 13:04 - 00017057 ____A C:\Users\User\Desktop\dds.txt
2013-05-24 02:45 - 2013-05-24 02:45 - 00016505 ____A C:\Users\User\Desktop\Attach2.txt
2013-05-24 02:41 - 2013-05-24 02:41 - 00688992 ____A (Swearware) C:\Users\User\Downloads\dds (1).com
2013-05-24 02:40 - 2013-05-24 02:40 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds.com
2013-05-24 02:17 - 2013-05-24 02:17 - 00019558 ____A C:\Users\User\Desktop\combofix.txt
2013-05-24 02:08 - 2013-05-24 02:08 - 00019558 ____A C:\ComboFix.txt
2013-05-24 01:17 - 2011-06-26 02:45 - 00256000 ____A C:\Windows\PEV.exe
2013-05-24 01:17 - 2010-11-07 13:20 - 00208896 ____A C:\Windows\MBR.exe
2013-05-24 01:17 - 2009-04-20 00:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00098816 ____A C:\Windows\sed.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00080412 ____A C:\Windows\grep.exe
2013-05-24 01:17 - 2000-08-30 20:00 - 00068096 ____A C:\Windows\zip.exe
2013-05-24 01:16 - 2013-05-24 02:08 - 00000000 ____D C:\Qoobox
2013-05-24 01:14 - 2013-05-24 01:56 - 00000000 ____D C:\Windows\erdnt
2013-05-24 00:57 - 2013-05-24 00:57 - 00274792 ____A C:\Windows\Minidump\052413-33462-01.dmp
2013-05-23 21:12 - 2011-02-03 07:25 - 00144384 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll
2013-05-23 21:03 - 2013-05-24 01:43 - 00000000 ____D C:\Windows\System32\MpEngineStore
2013-05-23 20:58 - 2013-05-23 20:58 - 20967560 ____A (Microsoft Corporation) C:\Users\User\Downloads\Windows-KB890830-x64-V4.20.exe
2013-05-23 20:58 - 2013-05-03 16:15 - 75016696 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-05-23 19:08 - 2013-05-23 19:08 - 00000000 ____D C:\Users\EE\AppData\Local\Apple
2013-05-22 09:06 - 2013-05-22 09:07 - 00000000 ____D C:\Users\User\AppData\Roaming\PCFixSpeed
2013-05-21 20:22 - 2013-05-23 20:18 - 00000000 ____D C:\ProgramData\PCFixSpeed
2013-05-21 20:22 - 2013-05-23 20:18 - 00000000 ____D C:\Program Files (x86)\PCFixSpeed
2013-05-21 20:22 - 2013-05-21 20:24 - 00000000 ____D C:\Users\EE\AppData\Roaming\PCFixSpeed
2013-05-21 20:12 - 2013-05-21 20:13 - 02094296 ____A (LiveSoftAction) C:\Users\EE\Downloads\Spybot - Search &amp
2013-05-21 20:05 - 2013-05-21 20:10 - 00000000 ____D C:\Users\EE\AppData\Local\Google
2013-05-21 20:05 - 2013-05-21 20:06 - 00000000 ____D C:\Users\EE\AppData\Roaming\Google
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Roaming\Apple Computer
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Local\Intel
2013-05-21 18:53 - 2013-05-23 20:23 - 00000000 ____D C:\users\EE
2013-05-21 18:53 - 2013-05-21 18:57 - 00058520 ____A C:\Users\EE\AppData\Local\GDIPFONTCACHEV1.DAT
2013-05-21 18:53 - 2013-05-21 18:53 - 00000000 ____D C:\Users\EE\AppData\Local\VirtualStore
2013-05-21 18:53 - 2011-02-10 15:35 - 00000000 ____D C:\Users\EE\AppData\Roaming\ASUS WebStorage
2013-05-21 18:53 - 2011-02-10 11:58 - 00000000 ____D C:\Users\EE\AppData\Roaming\Adobe
2013-05-21 18:53 - 2011-02-10 11:58 - 00000000 ____D C:\Users\EE\AppData\Local\Adobe
2013-05-21 18:53 - 2011-02-10 11:55 - 00000000 ____D C:\Users\EE\Documents\Asus WebStorage
2013-05-21 18:53 - 2011-02-10 11:48 - 00000000 ____D C:\Users\EE\AppData\Roaming\Mozilla
2013-05-21 18:53 - 2011-02-10 11:40 - 00000000 ____D C:\Users\EE\AppData\Local\Windows Live
2013-05-21 18:53 - 2011-02-10 11:39 - 00000000 ____D C:\Users\EE\AppData\Roaming\Macromedia
2013-05-21 18:53 - 2011-02-10 11:35 - 00000000 ____D C:\Users\EE\AppData\Roaming\ATI
2013-05-21 18:53 - 2011-02-10 11:35 - 00000000 ____D C:\Users\EE\AppData\Local\ATI
2013-05-21 18:53 - 2011-02-10 11:31 - 00000000 ____D C:\Users\EE\AppData\Roaming\InstallShield
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-05-21 15:19 - 2013-05-23 20:18 - 00000000 ____D C:\Program Files (x86)\ffdshow
2013-05-21 15:19 - 2013-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\DivX
2013-05-21 15:18 - 2013-05-23 20:18 - 00000000 ____D C:\Users\User\AppData\Roaming\LavFilters
2013-05-21 15:18 - 2013-05-21 18:42 - 00000000 ____D C:\Program Files (x86)\DSP-worx
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\ProgramData\DivX
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DSite
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DealPly
2013-05-14 21:58 - 2013-05-21 20:30 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-05-14 21:37 - 2013-06-10 18:00 - 00000462 ____A C:\Windows\Tasks\SparkTrust Registration3.job
2013-05-14 21:36 - 2013-05-23 19:18 - 00000000 ____D C:\ProgramData\SparkTrust
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\SparkTrust
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\DriverCure
2013-05-14 21:34 - 2013-05-14 21:34 - 05826352 ____A (SparkTrust) C:\Users\User\Downloads\SparkTrust PC Cleaner Plus Setup.exe
2013-05-14 21:30 - 2013-05-14 21:30 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (2).exe
2013-05-14 20:52 - 2013-05-14 21:30 - 00000162 ____A C:\Windows\Reimage.ini
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair.exe
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (1).exe
2013-05-14 20:50 - 2013-05-14 20:51 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\User\Downloads\mbam-setup-1.75.0.1300.exe
 
==================== One Month Modified Files and Folders =======
 
2013-06-11 14:32 - 2013-06-11 14:32 - 00000000 ____D C:\FRST
2013-06-11 14:31 - 2013-06-11 14:31 - 01920158 ____A (Farbar) C:\Users\User\Downloads\FRST64.exe
2013-06-11 13:05 - 2013-05-24 02:45 - 00017241 ____A C:\Users\User\Desktop\attach.txt
2013-06-11 13:04 - 2013-05-24 02:45 - 00017057 ____A C:\Users\User\Desktop\dds.txt
2013-06-11 13:02 - 2013-06-11 13:02 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds (2).com
2013-06-11 10:53 - 2009-07-14 01:08 - 00024422 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-06-11 10:53 - 2009-07-14 01:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-11 10:52 - 2011-09-17 02:08 - 01703775 ____A C:\Windows\WindowsUpdate.log
2013-06-11 10:41 - 2011-09-27 19:08 - 00000904 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000UA.job
2013-06-11 10:25 - 2011-09-27 18:56 - 00000890 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-11 10:25 - 2009-07-14 00:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-11 10:25 - 2009-07-14 00:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-11 10:23 - 2012-09-05 20:07 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-11 10:17 - 2013-06-11 10:17 - 00274792 ____A C:\Windows\Minidump\061113-30591-01.dmp
2013-06-11 10:17 - 2011-10-05 23:09 - 00000000 ____D C:\Windows\Minidump
2013-06-11 10:17 - 2011-09-27 19:08 - 00000852 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000Core.job
2013-06-11 10:17 - 2009-07-14 00:51 - 00045675 ____A C:\Windows\setupact.log
2013-06-11 10:16 - 2011-10-05 23:09 - 521432675 ____A C:\Windows\MEMORY.DMP
2013-06-11 10:14 - 2013-01-24 16:44 - 00000924 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000UA.job
2013-06-11 10:14 - 2011-09-27 18:56 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-10 18:01 - 2011-09-29 21:02 - 00000000 ____D C:\Windows\rescache
2013-06-10 18:00 - 2013-05-14 21:37 - 00000462 ____A C:\Windows\Tasks\SparkTrust Registration3.job
2013-06-10 17:20 - 2013-01-24 16:44 - 00000902 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-220970322-3852136687-1834230371-1000Core.job
2013-06-03 19:02 - 2013-06-03 19:02 - 00274792 ____A C:\Windows\Minidump\060313-76300-01.dmp
2013-06-03 18:54 - 2009-07-14 00:45 - 00268856 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\System32\tr-TR
2013-06-03 18:42 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-05-28 23:17 - 2013-05-28 22:27 - 00008882 ____A C:\Windows\IE10_main.log
2013-05-28 22:51 - 2013-05-28 22:51 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-28 22:51 - 2013-05-28 22:51 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-28 22:51 - 2013-05-28 22:51 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-28 22:51 - 2013-05-28 22:51 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-28 22:51 - 2013-05-28 22:51 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-28 22:51 - 2013-05-28 22:51 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-28 22:51 - 2013-05-28 22:51 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-28 22:39 - 2013-05-28 22:39 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01504768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 22:39 - 2013-05-28 22:39 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-28 21:46 - 2009-07-14 01:13 - 00741680 ____A C:\Windows\System32\PerfStringBackup.INI
2013-05-24 20:52 - 2011-10-08 12:46 - 00000000 ____D C:\Program Files (x86)\iBryte
2013-05-24 20:52 - 2009-07-13 23:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-05-24 20:51 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\registration
2013-05-24 19:27 - 2011-09-27 19:14 - 00002321 ____A C:\Users\User\Desktop\Google Chrome.lnk
2013-05-24 10:28 - 2013-05-24 10:24 - 00004134 ____A C:\AdwCleaner[S1].txt
2013-05-24 02:46 - 2013-05-24 02:46 - 00010855 ____A C:\Users\User\Desktop\DDS2.txt
2013-05-24 02:45 - 2013-05-24 02:45 - 00016505 ____A C:\Users\User\Desktop\Attach2.txt
2013-05-24 02:41 - 2013-05-24 02:41 - 00688992 ____A (Swearware) C:\Users\User\Downloads\dds (1).com
2013-05-24 02:40 - 2013-05-24 02:40 - 00688992 ____R (Swearware) C:\Users\User\Downloads\dds.com
2013-05-24 02:17 - 2013-05-24 02:17 - 00019558 ____A C:\Users\User\Desktop\combofix.txt
2013-05-24 02:08 - 2013-05-24 02:08 - 00019558 ____A C:\ComboFix.txt
2013-05-24 02:08 - 2013-05-24 01:16 - 00000000 ____D C:\Qoobox
2013-05-24 01:56 - 2013-05-24 01:14 - 00000000 ____D C:\Windows\erdnt
2013-05-24 01:47 - 2009-07-13 22:34 - 00000215 ____A C:\Windows\system.ini
2013-05-24 01:45 - 2011-10-05 23:09 - 00018836 ____A C:\Windows\PFRO.log
2013-05-24 01:43 - 2013-05-23 21:03 - 00000000 ____D C:\Windows\System32\MpEngineStore
2013-05-24 01:43 - 2009-07-13 22:34 - 67371008 ____A C:\Windows\System32\config\SOFTWARE.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 20709376 ____A C:\Windows\System32\config\SYSTEM.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 01048576 ____A C:\Windows\System32\config\DEFAULT.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 00262144 ____A C:\Windows\System32\config\SECURITY.bak
2013-05-24 01:43 - 2009-07-13 22:34 - 00262144 ____A C:\Windows\System32\config\SAM.bak
2013-05-24 01:08 - 2011-09-27 18:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-05-24 01:08 - 2011-09-27 18:55 - 00000000 ____D C:\ProgramData\Skype
2013-05-24 00:57 - 2013-05-24 00:57 - 00274792 ____A C:\Windows\Minidump\052413-33462-01.dmp
2013-05-23 21:26 - 2012-09-05 20:07 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-05-23 21:26 - 2012-09-05 20:07 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-05-23 20:58 - 2013-05-23 20:58 - 20967560 ____A (Microsoft Corporation) C:\Users\User\Downloads\Windows-KB890830-x64-V4.20.exe
2013-05-23 20:25 - 2013-01-24 16:43 - 00000000 ____D C:\Users\User\AppData\Local\Facebook
2013-05-23 20:23 - 2013-05-21 18:53 - 00000000 ____D C:\users\EE
2013-05-23 20:19 - 2011-10-08 12:47 - 00000000 ____D C:\Program Files (x86)\Xvid
2013-05-23 20:19 - 2011-02-10 11:35 - 00000000 ____D C:\Program Files (x86)\Asus
2013-05-23 20:19 - 2011-02-10 11:30 - 00000000 ____D C:\Program Files\Synaptics
2013-05-23 20:18 - 2013-05-21 20:22 - 00000000 ____D C:\ProgramData\PCFixSpeed
2013-05-23 20:18 - 2013-05-21 20:22 - 00000000 ____D C:\Program Files (x86)\PCFixSpeed
2013-05-23 20:18 - 2013-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\ffdshow
2013-05-23 20:18 - 2013-05-21 15:18 - 00000000 ____D C:\Users\User\AppData\Roaming\LavFilters
2013-05-23 20:15 - 2011-11-29 23:34 - 00000000 ____D C:\Users\User\AppData\Roaming\SoftGrid Client
2013-05-23 20:14 - 2013-03-10 12:01 - 00000000 ____D C:\Program Files (x86)\Java
2013-05-23 20:14 - 2011-09-27 18:56 - 00000000 ____D C:\Program Files (x86)\Google
2013-05-23 20:13 - 2011-02-10 11:35 - 00000000 ____D C:\AsusVibeData
2013-05-23 19:18 - 2013-05-14 21:36 - 00000000 ____D C:\ProgramData\SparkTrust
2013-05-23 19:08 - 2013-05-23 19:08 - 00000000 ____D C:\Users\EE\AppData\Local\Apple
2013-05-22 09:07 - 2013-05-22 09:06 - 00000000 ____D C:\Users\User\AppData\Roaming\PCFixSpeed
2013-05-21 20:30 - 2013-05-14 21:58 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-05-21 20:24 - 2013-05-21 20:22 - 00000000 ____D C:\Users\EE\AppData\Roaming\PCFixSpeed
2013-05-21 20:13 - 2013-05-21 20:12 - 02094296 ____A (LiveSoftAction) C:\Users\EE\Downloads\Spybot - Search &amp
2013-05-21 20:10 - 2013-05-21 20:05 - 00000000 ____D C:\Users\EE\AppData\Local\Google
2013-05-21 20:06 - 2013-05-21 20:05 - 00000000 ____D C:\Users\EE\AppData\Roaming\Google
2013-05-21 18:57 - 2013-05-21 18:53 - 00058520 ____A C:\Users\EE\AppData\Local\GDIPFONTCACHEV1.DAT
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Roaming\Apple Computer
2013-05-21 18:56 - 2013-05-21 18:56 - 00000000 ____D C:\Users\EE\AppData\Local\Intel
2013-05-21 18:56 - 2011-02-10 11:56 - 00000000 ____D C:\ProgramData\Trend Micro
2013-05-21 18:53 - 2013-05-21 18:53 - 00000000 ____D C:\Users\EE\AppData\Local\VirtualStore
2013-05-21 18:42 - 2013-05-21 15:18 - 00000000 ____D C:\Program Files (x86)\DSP-worx
2013-05-21 16:34 - 2011-09-16 23:32 - 00000000 ____D C:\Users\User\AppData\Roaming\ASUS WebStorage
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-05-21 15:26 - 2013-05-21 15:26 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-05-21 15:19 - 2013-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\DivX
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\ProgramData\DivX
2013-05-21 15:18 - 2013-05-21 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DSite
2013-05-21 15:16 - 2013-05-21 15:16 - 00000000 ____D C:\Users\User\AppData\Roaming\DealPly
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\SparkTrust
2013-05-14 21:36 - 2013-05-14 21:36 - 00000000 ____D C:\Users\User\AppData\Roaming\DriverCure
2013-05-14 21:34 - 2013-05-14 21:34 - 05826352 ____A (SparkTrust) C:\Users\User\Downloads\SparkTrust PC Cleaner Plus Setup.exe
2013-05-14 21:30 - 2013-05-14 21:30 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (2).exe
2013-05-14 21:30 - 2013-05-14 20:52 - 00000162 ____A C:\Windows\Reimage.ini
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair.exe
2013-05-14 20:52 - 2013-05-14 20:52 - 00726360 ____A (Reimage®) C:\Users\User\Downloads\ReimageRepair (1).exe
2013-05-14 20:51 - 2013-05-14 20:50 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\User\Downloads\mbam-setup-1.75.0.1300.exe
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2013-06-10 17:54
 
==================== End Of Log ============================

 

Attached Files



#5 mserabell

mserabell
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 15 June 2013 - 04:56 PM

Any luck on helping me with this?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users