Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Audio Ads Malware


  • This topic is locked This topic is locked
7 replies to this topic

#1 ajusti00

ajusti00

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 25 November 2013 - 10:40 PM

I recently was infected with malware that plays audio ads about 1-2 times a day. No popups or anything, just the audio. Even without capable programs running, so I know it's malware. I had a previous topic here: http://www.bleepingcomputer.com/forums/t/515177/audio-ads-malware/#entry3216149

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.16428  BrowserJavaVersion: 10.45.2
Run by Alec at 21:35:48 on 2013-11-25
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.16328.13706 [GMT -6:00]
.
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Windows\system32\IProsetMonitor.exe
C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
C:\Program Files (x86)\PasswordBox\pbbtnService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Windows\DAODx.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
D:\Program Files\Other\Steam.exe
C:\Users\Alec\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Users\Alec\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe,
BHO: PasswordBox Helper: {5DB69B97-934B-451D-94DB-32EF802A01CD} - C:\Program Files (x86)\PasswordBox\Application\pbbtn.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRun: [Steam] "D:\Program Files\Other\steam.exe" -silent
uRun: [BitTorrent] "C:\Users\Alec\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
uRun: [Spotify Web Helper] "C:\Users\Alec\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
uRun: [AVG-Secure-Search-Update_0913a] C:\Users\Alec\AppData\Roaming\AVG 0913a Campaign\AVG-Secure-Search-Update-0913a.exe /PROMPT --mid 312fb3f4310447d3bf421929469df573-b4ede1500b6a61954c889602446fa0ca594e4871 --CMPID 0913a
uRun: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
mRun: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: NameServer = 68.105.28.12 68.105.29.12 68.105.28.11
TCP: Interfaces\{64EBCE93-8E88-4B94-9712-68BDD4CDD579} : DHCPNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RunDLLEntry] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\AmbRunE.dll,RunDLLEntry
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 AiChargerPlus;ASUS Charger Plus Driver;C:\Windows\System32\drivers\AiChargerPlus.sys [2013-8-6 14464]
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2013-8-6 78976]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2013-8-6 38528]
R0 asahci64;asahci64;C:\Windows\System32\drivers\asahci64.sys [2011-3-23 36448]
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2013-9-2 192824]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2013-9-2 294712]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2013-8-20 123704]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2013-9-8 31544]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2013-9-25 148792]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2013-9-2 241464]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2013-9-2 212280]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-8-1 251192]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2013-9-9 46368]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-10-10 144152]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-8-30 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-8-30 344064]
R2 AODDriver4.2;AODDriver4.2;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-11-20 57512]
R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [2011-6-13 922240]
R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-1 915584]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2013-8-6 586880]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-10-3 3538480]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-9-25 301152]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2013-8-6 171688]
R2 PaceLicenseDServices;PACE License Services;C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-5-18 2938880]
R2 PasswordBox;PasswordBox;C:\Program Files (x86)\PasswordBox\pbbtnService.exe [2013-11-1 67584]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-9-14 129000]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-9-14 394216]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-7-5 96256]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2013-8-6 47232]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-8 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S2 vToolbarUpdater17.1.3;vToolbarUpdater17.1.3;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe --> C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe [?]
S3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2013-8-6 46136]
S3 BrYNSvc;BrYNSvc;C:\Program Files (x86)\Browny02\BrYNSvc.exe [2013-11-20 245760]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-11-19 111616]
S3 mbamchameleon;mbamchameleon;C:\Windows\System32\drivers\mbamchameleon.sys [2013-11-23 91352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-8-9 19456]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-4-12 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-8-9 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-8-9 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-8-9 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-4-12 117248]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-8-8 1255736]
.
=============== Created Last 30 ================
.
2013-11-25 07:02:40 540688 ----a-w- C:\Windows\System32\d3dx10_39.dll
2013-11-25 07:02:40 4992520 ----a-w- C:\Windows\System32\D3DX9_39.dll
2013-11-25 07:02:40 467984 ----a-w- C:\Windows\SysWow64\d3dx10_39.dll
2013-11-25 07:02:40 3851784 ----a-w- C:\Windows\SysWow64\D3DX9_39.dll
2013-11-25 07:02:40 1942552 ----a-w- C:\Windows\System32\D3DCompiler_39.dll
2013-11-25 07:02:40 1493528 ----a-w- C:\Windows\SysWow64\D3DCompiler_39.dll
2013-11-23 22:38:08 -------- d-----w- C:\Windows\ERUNT
2013-11-23 22:33:53 -------- d-----w- C:\AdwCleaner
2013-11-23 21:21:16 116440 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2013-11-23 21:21:16 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-23 21:12:09 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2013-11-22 22:30:33 -------- d-----w- C:\Users\Alec\AppData\Roaming\SUPERAntiSpyware.com
2013-11-22 22:30:18 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com
2013-11-22 22:30:18 -------- d-----w- C:\Program Files\SUPERAntiSpyware
2013-11-22 22:02:19 -------- d-----w- C:\Users\Alec\AppData\Roaming\Malwarebytes
2013-11-22 22:02:01 -------- d-----w- C:\ProgramData\Malwarebytes
2013-11-22 22:02:00 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-11-22 22:02:00 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-22 16:40:47 -------- d-----w- C:\Program Files (x86)\Resource Hacker
2013-11-21 23:01:49 -------- d-----w- C:\Program Files (x86)\PasswordBox
2013-11-20 20:50:25 -------- d-----w- C:\Brother
2013-11-20 20:50:24 -------- d-----w- C:\Program Files (x86)\Browny02
2013-11-20 20:50:23 45056 ----a-w- C:\Windows\SysWow64\BRTCPCON.DLL
2013-11-20 20:50:23 103736 ----a-w- C:\Windows\SysWow64\BRRBTOOL.EXE
2013-11-20 20:50:22 77824 ----a-w- C:\Windows\SysWow64\BRLMW03A.DLL
2013-11-20 20:50:22 25299 ----a-w- C:\Windows\SysWow64\BRLM03A.DLL
2013-11-20 20:50:18 73728 ------w- C:\Windows\SysWow64\BrDctF2.dll
2013-11-20 20:50:18 5120 ------w- C:\Windows\SysWow64\BrDctF2L.dll
2013-11-20 20:50:18 2560 ------w- C:\Windows\SysWow64\BrDctF2S.dll
2013-11-20 20:50:18 217088 ------w- C:\Windows\SysWow64\NSSearch.dll
2013-11-20 20:50:17 -------- d-----w- C:\Program Files (x86)\Brother
2013-11-20 20:50:15 180224 ------w- C:\Windows\SysWow64\BroSNMP.dll
2013-11-20 20:49:38 -------- d-----w- C:\ProgramData\Brother
2013-11-16 17:22:31 -------- d-----w- C:\ProgramData\Blizzard Entertainment
2013-11-16 17:22:31 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment
2013-11-16 17:21:25 -------- d-----w- C:\ProgramData\Battle.net
2013-11-16 16:36:40 -------- d-----w- C:\Users\Alec\AppData\Roaming\RIFT
2013-11-15 15:37:38 -------- d-----w- C:\Users\Alec\New folder
2013-11-15 06:45:41 -------- d-----w- C:\Users\Alec\Eve Online
2013-11-14 03:55:57 -------- d-----w- C:\Users\Alec\AppData\Local\Ubisoft
2013-11-14 03:41:18 -------- d-----w- C:\ProgramData\WaLMaRT
2013-11-14 02:57:24 -------- d-----w- C:\Users\Alec\T-Engine
2013-11-09 21:14:29 2350560 ----a-w- C:\Windows\PE_Rom.dll
2013-11-09 17:39:09 -------- d-----w- C:\Users\Alec\AppData\Roaming\openvr
2013-11-09 15:15:09 736952 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2013-11-09 15:14:57 2876528 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2013-11-09 15:14:45 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2013-11-09 15:14:37 539984 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-11-08 04:26:23 3130440 ----a-w- C:\Windows\SysWow64\pbsvc_blr.exe
2013-11-08 04:26:22 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2013-11-06 00:29:40 74072 ----a-w- C:\Windows\SysWow64\XAPOFX1_4.dll
2013-11-06 00:29:40 528216 ----a-w- C:\Windows\SysWow64\XAudio2_6.dll
2013-11-06 00:29:40 4178264 ----a-w- C:\Windows\SysWow64\D3DX9_41.dll
2013-11-06 00:29:40 3495784 ----a-w- C:\Windows\SysWow64\d3dx9_33.dll
2013-11-06 00:29:40 238936 ----a-w- C:\Windows\SysWow64\xactengine3_6.dll
2013-11-06 00:29:40 22360 ----a-w- C:\Windows\SysWow64\X3DAudio1_7.dll
2013-11-06 00:22:56 -------- d-----w- C:\Users\Alec\AppData\Roaming\Spore
2013-11-02 19:59:48 -------- d-----w- C:\Program Files (x86)\Dungeon Defenders
2013-11-02 19:59:32 -------- d-----w- C:\Users\Alec\AppData\Local\Programs
2013-11-02 01:32:10 -------- d-----w- C:\Users\Alec\openvr
2013-11-01 21:43:25 -------- d-----w- C:\Program Files (x86)\Rockstar Games
2013-10-31 01:27:16 -------- d-----w- C:\Program Files (x86)\CodeFromThe70s.org
2013-10-29 21:50:08 -------- d-----w- C:\Users\Alec\.Anodyne
2013-10-29 21:48:02 -------- d-----w- C:\Users\Alec\AppData\Roaming\Anodyne
2013-10-29 21:41:54 -------- d-----w- C:\Users\Alec\AppData\Local\tt
2013-10-29 21:41:51 -------- d-----w- C:\Users\Alec\AppData\Local\Ticket to Ride
2013-10-29 20:57:54 -------- d-----w- C:\Users\Alec\AppData\Roaming\System
2013-10-29 20:57:53 -------- d-sh--w- C:\Users\Alec\AppData\Roaming\wyUpdate AU
2013-10-29 20:57:53 -------- d-----w- C:\Users\Alec\AppData\Local\Universe Sandbox
.
==================== Find3M  ====================
.
2013-11-21 23:01:41 46368 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2013-11-18 11:50:45 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-18 11:50:45 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-11-08 05:18:21 283032 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2013-11-08 05:18:21 283032 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2013-11-08 04:59:22 283032 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2013-11-08 04:41:07 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2013-10-24 20:58:41 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2013-10-22 23:43:26 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25:35 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2013-10-05 19:57:25 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-10-04 02:28:31 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2013-10-04 02:25:17 197120 ----a-w- C:\Windows\System32\credui.dll
2013-10-04 02:24:49 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-10-04 01:58:50 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56:25 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2013-10-04 01:56:00 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll
2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-09-28 01:09:10 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-09-26 02:07:30 148792 ----a-w- C:\Windows\System32\drivers\avgdiska.sys
2013-09-25 02:26:40 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2013-09-25 02:26:40 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2013-09-25 02:23:33 28672 ----a-w- C:\Windows\System32\sspisrv.dll
2013-09-25 02:23:33 135680 ----a-w- C:\Windows\System32\sspicli.dll
2013-09-25 02:23:01 28160 ----a-w- C:\Windows\System32\secur32.dll
2013-09-25 02:22:59 340992 ----a-w- C:\Windows\System32\schannel.dll
2013-09-25 02:21:50 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2013-09-25 02:21:07 1447936 ----a-w- C:\Windows\System32\lsasrv.dll
2013-09-25 01:58:17 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2013-09-25 01:57:26 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2013-09-25 01:57:24 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2013-09-25 01:56:42 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2013-09-25 01:03:24 30720 ----a-w- C:\Windows\System32\lsass.exe
2013-09-22 21:04:21 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll
2013-09-09 03:11:42 31544 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-09-04 12:12:11 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-09-04 12:11:51 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-09-04 12:11:49 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-09-04 12:11:43 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-09-04 12:11:43 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-09-04 12:11:42 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-09-04 12:11:40 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-09-02 15:59:14 212280 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2013-09-02 15:29:18 294712 ----a-w- C:\Windows\System32\drivers\avgloga.sys
2013-09-02 15:26:50 192824 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
2013-09-02 15:26:42 241464 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
2013-08-31 00:58:50 51200 ----a-w- C:\Windows\System32\kdbsdk64.dll
2013-08-31 00:53:48 38912 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll
2013-08-31 00:14:10 156712 ----a-w- C:\Windows\System32\amdhcp64.dll
2013-08-31 00:14:10 141256 ----a-w- C:\Windows\SysWow64\amdhcp32.dll
2013-08-31 00:14:08 78432 ----a-w- C:\Windows\System32\atimpc64.dll
2013-08-31 00:14:08 78432 ----a-w- C:\Windows\System32\amdpcom64.dll
2013-08-31 00:14:06 71704 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2013-08-31 00:14:06 71704 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2013-08-31 00:14:00 142792 ----a-w- C:\Windows\System32\atiuxp64.dll
2013-08-31 00:14:00 125824 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2013-08-31 00:13:58 97984 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2013-08-31 00:13:58 114488 ----a-w- C:\Windows\System32\atiu9p64.dll
2013-08-31 00:13:56 1233080 ----a-w- C:\Windows\System32\aticfx64.dll
2013-08-31 00:13:54 1027544 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2013-08-31 00:13:50 9464840 ----a-w- C:\Windows\System32\atidxx64.dll
2013-08-31 00:13:46 8215992 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2013-08-31 00:13:42 6176008 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2013-08-31 00:13:38 6189416 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2013-08-31 00:13:32 6767240 ----a-w- C:\Windows\System32\atiumd6a.dll
2013-08-31 00:13:30 7256496 ----a-w- C:\Windows\System32\atiumd64.dll
2013-08-31 00:11:28 12528640 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2013-08-30 23:48:44 127488 ----a-w- C:\Windows\System32\coinst_13.152.dll
2013-08-30 23:48:04 229376 ----a-w- C:\Windows\System32\clinfo.exe
2013-08-30 23:47:50 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe
2013-08-30 23:47:50 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe
2013-08-30 23:47:50 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe
2013-08-30 23:47:50 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe
2013-08-30 23:47:46 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll
2013-08-30 23:47:40 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2013-08-30 23:47:36 86528 ----a-w- C:\Windows\System32\OVDecode64.dll
2013-08-30 23:47:30 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2013-08-30 23:47:14 28192256 ----a-w- C:\Windows\System32\amdocl64.dll
2013-08-30 23:45:04 23760896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2013-08-30 23:43:12 63488 ----a-w- C:\Windows\System32\OpenCL.dll
2013-08-30 23:43:08 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2013-08-30 23:35:00 25387520 ----a-w- C:\Windows\System32\atio6axx.dll
2013-08-30 23:18:20 368640 ----a-w- C:\Windows\System32\atiapfxx.exe
2013-08-30 23:18:12 62464 ----a-w- C:\Windows\System32\aticalrt64.dll
2013-08-30 23:18:10 52224 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2013-08-30 23:18:02 55808 ----a-w- C:\Windows\System32\aticalcl64.dll
2013-08-30 23:18:00 49152 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2013-08-30 23:17:46 15716352 ----a-w- C:\Windows\System32\aticaldd64.dll
2013-08-30 23:14:36 14302208 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2013-08-30 23:13:58 21400064 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2013-08-30 22:59:02 442368 ----a-w- C:\Windows\System32\atidemgy.dll
.
============= FINISH: 21:36:01.77 ===============
 

Attached Files



BC AdBot (Login to Remove)

 


#2 ajusti00

ajusti00
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 25 November 2013 - 10:41 PM

Edited to unrequest deletion. This one was the only duplicate to contain attach.txt.


Edited by ajusti00, 25 November 2013 - 10:44 PM.


#3 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:22 AM

Posted 25 November 2013 - 10:58 PM

Hello ajusti00,
  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

  • Finally, please reply using the Post button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
  • I will be analyzing your log. I will get back to you with instructions.
For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.
For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.
To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
On the System Recovery Options menu you will get the following options:
  • Startup Repair
    System Restore
    Windows Complete PC Restore
    Windows Memory Diagnostic Tool
    Command Prompt
  • Select Command Prompt
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#4 ajusti00

ajusti00
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 25 November 2013 - 11:11 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-11-2013 01
Ran by SYSTEM on MININT-F6HT59G on 25-11-2013 22:08:20
Running from G:\
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Recovery
 
The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11842152 2011-05-02] (Realtek Semiconductor)
HKLM\...\Run: [RunDLLEntry] - C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] - C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [465536 2010-11-08] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [37960 2013-05-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4908592 2013-10-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [PWRISOVM.EXE] - C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [307200 2011-06-14] (PowerISO Computing, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKU\Alec\...\Run: [Steam] - "D:\Program Files\Other\steam.exe" -silent
HKU\Alec\...\Run: [BitTorrent] - C:\Users\Alec\AppData\Roaming\BitTorrent\BitTorrent.exe [895328 2013-11-19] (BitTorrent Inc.)
HKU\Alec\...\Run: [Spotify Web Helper] - C:\Users\Alec\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-11-16] (Spotify Ltd)
HKU\Alec\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3561816 2013-10-29] (Electronic Arts)
HKU\Alec\...\Run: [AVG-Secure-Search-Update_0913a] - C:\Users\Alec\AppData\Roaming\AVG 0913a Campaign\AVG-Secure-Search-Update-0913a.exe /PROMPT --mid 312fb3f4310447d3bf421929469df573-b4ede1500b6a61954c889602446fa0ca594e4871 --CMPID 0913a
HKU\Alec\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6604568 2013-11-05] (SUPERAntiSpyware)
 
==================== Services (Whitelisted) =================
 
S2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [922240 2011-06-13] ()
S2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-01] ()
S2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3538480 2013-10-03] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301152 2013-09-25] (AVG Technologies CZ, s.r.o.)
S2 PasswordBox; C:\Program Files (x86)\PasswordBox\pbbtnService.exe [67584 2013-11-01] (PasswordBox, Inc.)
S2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-07] ()
S2 vToolbarUpdater17.1.3; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe [x]
 
==================== Drivers (Whitelisted) ====================
 
S0 AiChargerPlus; C:\Windows\System32\DRIVERS\AiChargerPlus.sys [14464 2010-11-08] (ASUSTek Computer Inc.)
S0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [36448 2011-03-23] (Asmedia Technology)
S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-23] ()
S1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-02] ()
S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-19] (MCCI Corporation)
S1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [148792 2013-09-25] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [241464 2013-09-02] (AVG Technologies CZ, s.r.o.)
S0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192824 2013-09-02] (AVG Technologies CZ, s.r.o.)
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-09-02] (AVG Technologies CZ, s.r.o.)
S0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-09-02] (AVG Technologies CZ, s.r.o.)
S0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-08-20] (AVG Technologies CZ, s.r.o.)
S0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-08] (AVG Technologies CZ, s.r.o.)
S1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
S1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-21] (AVG Technologies)
S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2013-11-23] (Malwarebytes Corporation)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2013-11-25 22:08 - 2013-11-25 22:08 - 00000000 ____D C:\FRST
2013-11-25 20:00 - 2013-11-25 20:00 - 01958474 _____ (Farbar) C:\Users\Alec\Desktop\FRST64.exe
2013-11-25 19:36 - 2013-11-25 19:36 - 00026028 _____ C:\Users\Alec\Desktop\dds.txt
2013-11-25 19:36 - 2013-11-25 19:36 - 00006716 _____ C:\Users\Alec\Desktop\attach.txt
2013-11-25 19:35 - 2013-11-25 19:35 - 00688992 ____R (Swearware) C:\Users\Alec\Downloads\dds.com
2013-11-24 23:02 - 2008-07-12 06:18 - 04992520 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_39.dll
2013-11-24 23:02 - 2008-07-12 06:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-11-24 23:02 - 2008-07-12 06:18 - 01942552 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_39.dll
2013-11-24 23:02 - 2008-07-12 06:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-11-24 23:02 - 2008-07-12 06:18 - 00540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_39.dll
2013-11-24 23:02 - 2008-07-12 06:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-11-23 14:46 - 2013-11-23 14:46 - 00004894 _____ C:\Users\Alec\Desktop\AdwCleaner[S0].txt
2013-11-23 14:44 - 2013-11-23 14:44 - 02347384 _____ (ESET) C:\Users\Alec\Downloads\esetsmartinstaller_enu.exe
2013-11-23 14:43 - 2013-11-23 14:43 - 00000695 _____ C:\Users\Alec\Desktop\JRT.txt
2013-11-23 14:38 - 2013-11-23 14:38 - 00000000 ____D C:\Windows\ERUNT
2013-11-23 14:33 - 2013-11-23 14:35 - 00000000 ____D C:\AdwCleaner
2013-11-23 14:31 - 2013-11-23 14:31 - 01085542 _____ C:\Users\Alec\Desktop\adwcleaner.exe
2013-11-23 14:31 - 2013-11-23 14:31 - 01034531 _____ (Thisisu) C:\Users\Alec\Desktop\JRT.exe
2013-11-23 14:31 - 2013-11-23 14:31 - 00448512 _____ (OldTimer Tools) C:\Users\Alec\Desktop\TFC.exe
2013-11-23 13:27 - 2013-11-24 16:39 - 00001724 _____ C:\Users\Alec\Desktop\Rkill.txt
2013-11-23 13:21 - 2013-11-23 13:26 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-23 13:21 - 2013-11-23 13:21 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2013-11-23 13:12 - 2013-11-23 13:26 - 00000000 ____D C:\Users\Alec\Desktop\mbar
2013-11-23 13:12 - 2013-11-23 13:12 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbamchameleon.sys
2013-11-23 13:10 - 2013-11-23 13:11 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Alec\Downloads\mbar-1.07.0.1007.exe
2013-11-23 13:10 - 2013-11-23 13:11 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\Alec\Desktop\rkill.exe
2013-11-23 13:08 - 2013-11-23 13:09 - 00026405 _____ C:\Users\Alec\Desktop\Result.txt
2013-11-23 13:07 - 2013-11-23 13:07 - 00760937 _____ (Farbar) C:\Users\Alec\Desktop\MiniToolBox.exe
2013-11-23 13:07 - 2013-11-23 13:07 - 00002475 _____ C:\Users\Alec\Desktop\FSS.txt
2013-11-23 13:06 - 2013-11-23 13:06 - 00360881 _____ (Farbar) C:\Users\Alec\Desktop\FSS.exe
2013-11-23 13:03 - 2013-11-23 13:03 - 00891200 _____ C:\Users\Alec\Desktop\SecurityCheck.exe
2013-11-23 12:07 - 2013-11-23 12:07 - 00000000 ____D C:\Users\Alec\Downloads\tdsskiller
2013-11-23 12:06 - 2013-11-23 12:07 - 04101441 _____ C:\Users\Alec\Downloads\tdsskiller.zip
2013-11-23 12:06 - 2013-11-23 12:06 - 02240864 _____ (Kaspersky Lab ZAO) C:\Users\Alec\Downloads\tdsskiller.exe
2013-11-22 14:30 - 2013-11-22 14:30 - 00001808 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-11-22 14:30 - 2013-11-22 14:30 - 00000000 ____D C:\Users\Alec\AppData\Roaming\SUPERAntiSpyware.com
2013-11-22 14:30 - 2013-11-22 14:30 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-11-22 14:30 - 2013-11-22 14:30 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-11-22 14:27 - 2013-11-22 14:28 - 28657224 _____ (SUPERAntiSpyware) C:\Users\Alec\Downloads\SUPERAntiSpyware.exe
2013-11-22 14:27 - 2013-11-22 14:27 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\Alec\Downloads\rkill.com
2013-11-22 14:02 - 2013-11-22 14:02 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-22 14:02 - 2013-11-22 14:02 - 00000000 ____D C:\Users\Alec\AppData\Roaming\Malwarebytes
2013-11-22 14:02 - 2013-11-22 14:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-22 14:02 - 2013-11-22 14:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-22 14:02 - 2013-04-04 12:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2013-11-22 14:01 - 2013-11-22 14:01 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alec\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-22 08:40 - 2013-11-22 08:40 - 00748246 _____ (                                                            ) C:\Users\Alec\Downloads\ResourceHacker-55-3-6.exe
2013-11-22 08:40 - 2013-11-22 08:40 - 00000000 ____D C:\Program Files (x86)\Resource Hacker
2013-11-21 15:01 - 2013-11-21 15:02 - 00000000 ____D C:\Program Files (x86)\PasswordBox
2013-11-20 12:53 - 2013-11-20 12:53 - 01859304 _____ (Coupons.com Incorporated) C:\Users\Alec\Downloads\CouponPrinter.exe
2013-11-20 12:53 - 2013-11-20 12:53 - 01859304 _____ (Coupons.com Incorporated) C:\Users\Alec\Downloads\CouponPrinter (1).exe
2013-11-20 12:52 - 2013-11-20 12:52 - 00002144 _____ C:\Users\Public\Desktop\Brother Creative Center.lnk
2013-11-20 12:50 - 2013-11-20 12:50 - 00000000 ____D C:\Program Files (x86)\Browny02
2013-11-20 12:50 - 2013-11-20 12:50 - 00000000 ____D C:\Program Files (x86)\Brother
2013-11-20 12:50 - 2013-11-20 12:50 - 00000000 ____D C:\Brother
2013-11-20 12:50 - 2010-08-02 18:57 - 00217088 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll
2013-11-20 12:50 - 2010-05-10 00:45 - 00103736 _____ (Brother Industries Ltd) C:\Windows\SysWOW64\BRRBTOOL.EXE
2013-11-20 12:50 - 2010-04-01 21:33 - 00025299 _____ (Brother Industries, Ltd) C:\Windows\SysWOW64\BRLM03A.DLL
2013-11-20 12:50 - 2010-03-15 17:56 - 00002560 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll
2013-11-20 12:50 - 2010-03-15 17:45 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll
2013-11-20 12:50 - 2010-02-05 09:42 - 00180224 ____N (Brother Industries, Ltd.) C:\Windows\SysWOW64\BroSNMP.dll
2013-11-20 12:50 - 2007-12-13 20:16 - 00005120 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll
2013-11-20 12:50 - 2005-01-16 23:10 - 00045056 _____ C:\Windows\SysWOW64\BRTCPCON.DLL
2013-11-20 12:50 - 2004-08-08 23:00 - 00000114 _____ C:\Windows\SysWOW64\BRLMW03A.INI
2013-11-20 12:50 - 2004-08-08 22:42 - 00077824 _____ (Brother Industries, Ltd.) C:\Windows\SysWOW64\BRLMW03A.DLL
2013-11-20 12:50 - 1999-10-26 08:00 - 00000050 _____ C:\Windows\System32\BRADM10A.DAT
2013-11-20 12:49 - 2013-11-20 12:51 - 00000000 ____D C:\ProgramData\Brother
2013-11-20 12:49 - 2013-11-20 12:49 - 00000000 ____D C:\Users\Alec\AppData\Roaming\InstallShield
2013-11-19 13:08 - 2013-11-19 13:08 - 02051270 _____ C:\Users\Alec\Downloads\Technological Determinism Part 2 (1).ppsx
2013-11-19 12:53 - 2013-11-19 12:53 - 02051270 _____ C:\Users\Alec\Downloads\Technological Determinism Part 2.ppsx
2013-11-19 12:52 - 2013-11-19 12:53 - 03004037 _____ C:\Users\Alec\Downloads\Technological Determinism Part 1.ppsx
2013-11-19 12:33 - 2013-11-19 12:33 - 00827720 _____ C:\Users\Alec\Downloads\blackmesa-setup.exe
2013-11-19 12:04 - 2013-10-14 16:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\System32\IEUDINIT.EXE
2013-11-19 12:02 - 2013-11-19 12:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 12:02 - 2013-11-19 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-11-19 12:02 - 2013-11-19 12:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-11-19 12:02 - 2013-11-19 12:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 12:02 - 2013-11-19 12:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\System32\jsIntl.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 12:02 - 2013-11-19 12:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-11-19 12:02 - 2013-11-19 12:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-11-19 12:02 - 2013-11-19 12:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 12:02 - 2013-11-19 12:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-11-19 12:02 - 2013-11-19 12:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 12:02 - 2013-11-19 12:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2013-11-19 12:01 - 2013-11-19 12:04 - 00007469 _____ C:\Windows\IE11_main.log
2013-11-17 00:05 - 2013-11-17 00:05 - 00087413 _____ C:\Users\Alec\Downloads\QuestFinder-0.1.8.zip
2013-11-16 13:02 - 2013-11-16 13:02 - 00000000 ____D C:\Users\Alec\Downloads\Flat's
2013-11-16 13:01 - 2013-11-16 13:02 - 06449745 _____ C:\Users\Alec\Downloads\Flat's.zip
2013-11-16 11:44 - 2013-11-16 20:27 - 00000000 ____D C:\Users\Alec\Documents\RIFT
2013-11-16 09:22 - 2013-11-16 09:22 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2013-11-16 09:21 - 2013-11-16 09:22 - 00000000 ____D C:\ProgramData\Battle.net
2013-11-16 08:53 - 2013-11-16 09:00 - 83293072 _____ (Blizzard Entertainment) C:\Users\Alec\Downloads\World-of-Warcraft-Setup-enUS.exe
2013-11-16 08:36 - 2013-11-16 11:49 - 00000000 ____D C:\Users\Alec\AppData\Roaming\RIFT
2013-11-15 08:37 - 2013-11-15 08:37 - 00000069 _____ C:\Windows\132478
2013-11-15 07:37 - 2013-11-15 07:37 - 00000000 ____D C:\Users\Alec\New folder
2013-11-14 22:45 - 2013-11-14 22:45 - 00000000 ____D C:\Users\Alec\Eve Online
2013-11-13 19:55 - 2013-11-13 19:55 - 00000000 ____D C:\Users\Alec\AppData\Local\Ubisoft
2013-11-13 19:41 - 2013-11-13 19:41 - 00000000 ____D C:\ProgramData\WaLMaRT
2013-11-13 18:57 - 2013-11-13 18:58 - 00000000 ____D C:\Users\Alec\Downloads\t-engine4-windows-1.0.5
2013-11-13 18:57 - 2013-11-13 18:57 - 00000000 ____D C:\Users\Alec\T-Engine
2013-11-13 18:48 - 2013-11-13 18:55 - 207728395 _____ C:\Users\Alec\Downloads\t-engine4-windows-1.0.5.zip
2013-11-13 10:08 - 2013-10-11 18:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\System32\nshwfp.dll
2013-11-13 10:08 - 2013-10-11 18:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\System32\IKEEXT.DLL
2013-11-13 10:08 - 2013-10-11 18:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\System32\FWPUCLNT.DLL
2013-11-13 10:08 - 2013-10-11 18:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 10:08 - 2013-10-11 18:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 10:08 - 2013-10-05 12:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-11-13 10:08 - 2013-10-05 11:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 10:08 - 2013-10-03 18:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\System32\SmartcardCredentialProvider.dll
2013-11-13 10:08 - 2013-10-03 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\System32\credui.dll
2013-11-13 10:08 - 2013-10-03 18:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-11-13 10:08 - 2013-10-03 17:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 10:08 - 2013-10-03 17:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 10:08 - 2013-10-03 17:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 10:08 - 2013-10-02 18:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2013-11-13 10:08 - 2013-10-02 18:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 10:08 - 2013-09-27 17:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2013-11-13 10:08 - 2013-09-24 18:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2013-11-13 10:08 - 2013-09-24 18:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2013-11-13 10:08 - 2013-09-24 18:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2013-11-13 10:08 - 2013-09-24 18:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2013-11-13 10:08 - 2013-09-24 18:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll
2013-11-13 10:08 - 2013-09-24 18:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2013-11-13 10:08 - 2013-09-24 18:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2013-11-13 10:08 - 2013-09-24 18:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2013-11-13 10:08 - 2013-09-24 17:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 10:08 - 2013-09-24 17:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 10:08 - 2013-09-24 17:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 10:08 - 2013-09-24 17:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 10:08 - 2013-09-24 17:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\lsass.exe
2013-11-13 10:08 - 2013-07-04 04:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2013-11-09 13:14 - 2013-11-09 13:14 - 02350560 _____ C:\Windows\PE_Rom.dll
2013-11-09 09:39 - 2013-11-09 09:39 - 00000000 ____D C:\Users\Alec\AppData\Roaming\openvr
2013-11-07 20:26 - 2013-11-07 20:26 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-07 20:26 - 2013-11-07 17:03 - 03130440 _____ C:\Windows\SysWOW64\pbsvc_blr.exe
2013-11-05 17:01 - 2013-11-05 17:01 - 00000000 ____D C:\Users\Alec\Documents\Orcs Must Die
2013-11-05 16:51 - 2013-11-05 16:57 - 00000000 ____D C:\Users\Alec\Documents\Snapshot
2013-11-05 16:51 - 2010-06-02 02:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-11-05 16:51 - 2010-06-02 02:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2013-11-05 16:51 - 2010-06-02 02:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-11-05 16:51 - 2010-06-02 02:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2013-11-05 16:51 - 2010-06-02 02:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2013-11-05 16:51 - 2010-06-02 02:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2013-11-05 16:51 - 2010-05-26 09:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-11-05 16:51 - 2010-02-04 08:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2013-11-05 16:51 - 2010-02-04 08:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2013-11-05 16:51 - 2010-02-04 08:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2013-11-05 16:51 - 2010-02-04 08:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2013-11-05 16:51 - 2009-09-04 15:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-11-05 16:51 - 2009-09-04 15:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-11-05 16:51 - 2009-09-04 15:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-11-05 16:51 - 2009-09-04 15:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-11-05 16:51 - 2009-09-04 15:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-11-05 16:51 - 2009-09-04 15:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-11-05 16:51 - 2009-09-04 15:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-11-05 16:51 - 2009-03-16 12:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2013-11-05 16:51 - 2009-03-16 12:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-11-05 16:51 - 2009-03-16 12:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-11-05 16:51 - 2009-03-16 12:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2013-11-05 16:51 - 2009-03-16 12:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2013-11-05 16:51 - 2009-03-16 12:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-11-05 16:51 - 2009-03-09 13:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2013-11-05 16:51 - 2009-03-09 13:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2013-11-05 16:51 - 2009-03-09 13:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2013-11-05 16:51 - 2009-03-09 13:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2013-11-05 16:51 - 2009-03-09 13:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2013-11-05 16:51 - 2008-10-27 08:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-11-05 16:51 - 2008-10-15 04:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2013-11-05 16:51 - 2008-10-15 04:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-11-05 16:51 - 2008-10-15 04:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2013-11-05 16:51 - 2008-10-15 04:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-11-05 16:51 - 2008-10-15 04:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2013-11-05 16:51 - 2008-10-15 04:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-11-05 16:51 - 2008-07-31 08:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-11-05 16:51 - 2008-07-31 08:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-11-05 16:51 - 2008-07-31 08:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2013-11-05 16:51 - 2008-07-31 08:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-11-05 16:51 - 2008-07-31 08:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-11-05 16:51 - 2008-07-31 08:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-11-05 16:51 - 2008-05-30 12:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll
2013-11-05 16:51 - 2008-05-30 12:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-11-05 16:51 - 2008-05-30 12:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-11-05 16:51 - 2008-05-30 12:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll
2013-11-05 16:51 - 2008-05-30 12:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll
2013-11-05 16:51 - 2008-05-30 12:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-11-05 16:51 - 2008-05-30 12:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-11-05 16:51 - 2008-05-30 12:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll
2013-11-05 16:51 - 2008-05-30 12:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll
2013-11-05 16:51 - 2008-05-30 12:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-11-05 16:51 - 2008-05-30 12:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll
2013-11-05 16:51 - 2008-05-30 12:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-11-05 16:51 - 2008-05-30 12:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll
2013-11-05 16:51 - 2008-05-30 12:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-11-05 16:51 - 2008-03-05 14:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll
2013-11-05 16:51 - 2008-03-05 14:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-11-05 16:51 - 2008-03-05 14:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-11-05 16:51 - 2008-03-05 14:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll
2013-11-05 16:51 - 2008-03-05 14:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll
2013-11-05 16:51 - 2008-03-05 14:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-11-05 16:51 - 2008-03-05 13:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll
2013-11-05 16:51 - 2008-03-05 13:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-11-05 16:51 - 2008-03-05 13:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll
2013-11-05 16:51 - 2008-03-05 13:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-11-05 16:51 - 2008-02-05 21:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll
2013-11-05 16:51 - 2008-02-05 21:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-11-05 16:51 - 2007-10-22 01:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll
2013-11-05 16:51 - 2007-10-22 01:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-11-05 16:51 - 2007-10-22 01:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll
2013-11-05 16:51 - 2007-10-22 01:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-11-05 16:51 - 2007-10-12 13:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_36.dll
2013-11-05 16:51 - 2007-10-12 13:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-11-05 16:51 - 2007-10-12 13:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_36.dll
2013-11-05 16:51 - 2007-10-12 13:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-11-05 16:51 - 2007-10-02 07:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_36.dll
2013-11-05 16:51 - 2007-10-02 07:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-11-05 16:51 - 2007-07-19 22:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_9.dll
2013-11-05 16:51 - 2007-07-19 22:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-11-05 16:51 - 2007-07-19 16:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll
2013-11-05 16:51 - 2007-07-19 16:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-11-05 16:51 - 2007-07-19 16:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_35.dll
2013-11-05 16:51 - 2007-07-19 16:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-11-05 16:51 - 2007-07-19 16:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_35.dll
2013-11-05 16:51 - 2007-07-19 16:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-11-05 16:51 - 2007-06-20 18:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_8.dll
2013-11-05 16:51 - 2007-06-20 18:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-11-05 16:51 - 2007-05-16 14:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_34.dll
2013-11-05 16:51 - 2007-05-16 14:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-11-05 16:51 - 2007-05-16 14:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_34.dll
2013-11-05 16:51 - 2007-05-16 14:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-11-05 16:51 - 2007-05-16 14:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_34.dll
2013-11-05 16:51 - 2007-05-16 14:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-11-05 16:51 - 2007-04-04 16:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_7.dll
2013-11-05 16:51 - 2007-04-04 16:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-11-05 16:51 - 2007-04-04 16:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_3.dll
2013-11-05 16:51 - 2007-03-15 14:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_33.dll
2013-11-05 16:51 - 2007-03-15 14:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-11-05 16:51 - 2007-03-12 14:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_33.dll
2013-11-05 16:51 - 2007-03-12 14:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_33.dll
2013-11-05 16:51 - 2007-03-12 14:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-11-05 16:51 - 2007-03-05 10:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_1.dll
2013-11-05 16:51 - 2007-03-05 10:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-11-05 16:51 - 2007-01-24 13:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_6.dll
2013-11-05 16:51 - 2007-01-24 13:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-11-05 16:51 - 2006-12-08 10:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-11-05 16:51 - 2006-12-08 10:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_5.dll
2013-11-05 16:51 - 2006-11-29 11:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll
2013-11-05 16:51 - 2006-11-29 11:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-11-05 16:51 - 2006-11-29 11:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10.dll
2013-11-05 16:51 - 2006-11-29 11:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-11-05 16:51 - 2006-09-28 14:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_31.dll
2013-11-05 16:51 - 2006-09-28 14:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-11-05 16:51 - 2006-09-28 14:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-11-05 16:51 - 2006-09-28 14:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_4.dll
2013-11-05 16:51 - 2006-07-28 07:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_2.dll
2013-11-05 16:51 - 2006-07-28 07:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_3.dll
2013-11-05 16:51 - 2006-07-28 07:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-11-05 16:51 - 2006-07-28 07:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-11-05 16:51 - 2006-05-31 05:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-11-05 16:51 - 2006-05-31 05:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_2.dll
2013-11-05 16:51 - 2006-03-31 10:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll
2013-11-05 16:51 - 2006-03-31 10:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-11-05 16:51 - 2006-03-31 10:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_1.dll
2013-11-05 16:51 - 2006-03-31 10:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-11-05 16:51 - 2006-03-31 10:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_1.dll
2013-11-05 16:51 - 2006-03-31 10:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-11-05 16:51 - 2006-02-03 06:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_29.dll
2013-11-05 16:51 - 2006-02-03 06:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-11-05 16:51 - 2006-02-03 06:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_0.dll
2013-11-05 16:51 - 2006-02-03 06:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-11-05 16:51 - 2006-02-03 06:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_0.dll
2013-11-05 16:51 - 2006-02-03 06:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-11-05 16:51 - 2005-12-05 16:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_28.dll
2013-11-05 16:51 - 2005-12-05 16:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-11-05 16:51 - 2005-05-26 13:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_26.dll
2013-11-05 16:51 - 2005-05-26 13:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-11-05 16:51 - 2005-03-18 15:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_25.dll
2013-11-05 16:51 - 2005-03-18 15:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-11-05 16:51 - 2005-02-05 17:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_24.dll
2013-11-05 16:51 - 2005-02-05 17:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-11-05 16:29 - 2010-02-04 08:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-11-05 16:29 - 2010-02-04 08:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-11-05 16:29 - 2010-02-04 08:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-11-05 16:29 - 2010-02-04 08:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-11-05 16:29 - 2009-03-09 13:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-11-05 16:29 - 2007-03-12 14:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-11-05 16:22 - 2013-11-05 16:22 - 00000000 ____D C:\Users\Alec\AppData\Roaming\Spore
2013-11-05 16:22 - 2005-07-22 17:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_27.dll
2013-11-05 16:22 - 2005-07-22 17:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-11-02 11:59 - 2013-11-02 11:59 - 00000000 ____D C:\Program Files (x86)\Dungeon Defenders
2013-11-01 17:55 - 2013-11-01 17:55 - 00116861 _____ C:\Users\Alec\Downloads\oldspice.zip
2013-11-01 17:55 - 2013-11-01 17:55 - 00000000 ____D C:\Users\Alec\Downloads\oldspice
2013-11-01 17:32 - 2013-11-01 17:32 - 00000000 ____D C:\Users\Alec\openvr
2013-11-01 13:43 - 2013-11-01 13:43 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-10-30 17:27 - 2013-10-30 17:27 - 00000000 ____D C:\Program Files (x86)\CodeFromThe70s.org
2013-10-30 17:26 - 2013-10-30 17:26 - 00424270 _____ C:\Users\Alec\Downloads\poke-2.0.1.zip
2013-10-30 17:26 - 2013-10-30 17:26 - 00000000 ____D C:\Users\Alec\Downloads\poke-2.0.1
2013-10-30 10:16 - 2013-10-30 10:17 - 00000000 ____D C:\Users\Alec\Documents\Broken Sword - Director's Cut
2013-10-30 06:49 - 2013-10-30 06:49 - 02612011 _____ C:\Users\Alec\Downloads\Technology and War.ppsx
2013-10-29 18:25 - 2013-10-29 18:31 - 225094405 _____ C:\Users\Alec\Downloads\Game of Life, The.7z
2013-10-29 14:11 - 2013-10-29 14:11 - 00027137 _____ C:\Users\Alec\Downloads\GTAIV.1 (1).zip
2013-10-29 14:10 - 2013-10-29 14:10 - 00027137 _____ C:\Users\Alec\Downloads\GTAIV.1.zip
2013-10-29 14:10 - 2013-10-29 14:10 - 00000000 ____D C:\Users\Alec\Downloads\GTAIV.1
2013-10-29 13:50 - 2013-10-30 11:08 - 00000000 ____D C:\Users\Alec\.Anodyne
2013-10-29 13:48 - 2013-10-29 13:48 - 00000000 ____D C:\Users\Alec\AppData\Roaming\Anodyne
2013-10-29 13:41 - 2013-10-29 13:41 - 00000000 ____D C:\Users\Alec\AppData\Local\tt
2013-10-29 13:41 - 2013-10-29 13:41 - 00000000 ____D C:\Users\Alec\AppData\Local\Ticket to Ride
2013-10-29 13:16 - 2013-10-29 13:16 - 00000904 _____ C:\Users\Public\Desktop\Democracy 3.lnk
2013-10-29 12:57 - 2013-10-29 13:08 - 00000000 __SHD C:\Users\Alec\AppData\Roaming\wyUpdate AU
2013-10-29 12:57 - 2013-10-29 13:08 - 00000000 ____D C:\Users\Alec\Documents\Universe Sandbox
2013-10-29 12:57 - 2013-10-29 12:57 - 00000000 ____D C:\Users\Alec\AppData\Roaming\System
2013-10-29 12:57 - 2013-10-29 12:57 - 00000000 ____D C:\Users\Alec\AppData\Local\Universe Sandbox
2013-10-27 13:30 - 2013-10-29 12:30 - 00000000 ____D C:\Users\Alec\Downloads\Majestic
2013-10-26 19:01 - 1997-08-26 09:06 - 00315904 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-26 18:06 - 2013-10-26 18:06 - 00459547 _____ C:\Users\Alec\Downloads\Pokemon Trading Card Game.zip
2013-10-26 17:58 - 2013-10-26 17:59 - 12729528 _____ C:\Users\Alec\Downloads\Harry Potter and the Prisoner of Azkaban.zip
2013-10-26 17:56 - 2013-10-26 17:57 - 02704395 _____ C:\Users\Alec\Downloads\Harry Potter and The Sorcerer's Stone.zip
2013-10-26 17:56 - 2013-10-26 17:56 - 02813443 _____ C:\Users\Alec\Downloads\harry_potter_and_the_chamber_of_secrets.zip
2013-10-26 17:28 - 2013-10-26 17:43 - 00000000 ___RD C:\Users\Alec\Virtual Machines
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\tr-TR
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\th-TH
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\ro-RO
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\he-IL
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\ar-SA
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Program Files (x86)\Windows Virtual PC
2013-10-26 17:25 - 2010-11-20 05:34 - 00360832 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vpcvmm.sys
2013-10-26 17:25 - 2010-11-20 05:34 - 00194944 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vpchbus.sys
2013-10-26 17:25 - 2010-11-20 05:27 - 00015872 _____ (Microsoft Corporation) C:\Windows\System32\vpchbuspipe.dll
2013-10-26 17:25 - 2010-11-20 05:25 - 04514816 _____ (Microsoft Corporation) C:\Windows\System32\vpc.exe
2013-10-26 17:25 - 2010-11-20 05:25 - 02264064 _____ (Microsoft Corporation) C:\Windows\System32\VPCWizard.exe
2013-10-26 17:25 - 2010-11-20 05:25 - 01369600 _____ (Microsoft Corporation) C:\Windows\System32\VPCSettings.exe
2013-10-26 17:25 - 2010-11-20 03:37 - 01210368 _____ (Microsoft Corporation) C:\Windows\System32\VMWindow.exe
2013-10-26 17:25 - 2010-11-20 03:37 - 00936448 _____ (Microsoft Corporation) C:\Windows\System32\vmsal.exe
2013-10-26 17:25 - 2010-11-20 03:35 - 00562176 _____ (Microsoft Corporation) C:\Windows\System32\VMCPropertyHandler.dll
2013-10-26 17:25 - 2010-11-20 03:35 - 00095232 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vpcusb.sys
2013-10-26 17:25 - 2010-11-20 03:35 - 00059392 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vpcnfltr.sys
2013-10-26 17:25 - 2010-11-20 02:52 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vmsal.exe
2013-10-26 17:24 - 2013-10-26 17:25 - 17091624 _____ C:\Users\Alec\Downloads\Windows6.1-KB958559-x64-RefreshPkg.msu
2013-10-26 17:24 - 2013-10-26 17:24 - 01528184 _____ (Microsoft Corporation) C:\Users\Alec\Downloads\GenuineCheck (1).exe
2013-10-26 17:17 - 2013-10-26 17:17 - 00000000 ____D C:\Program Files\Windows XP Mode
2013-10-26 16:56 - 2013-10-26 17:08 - 492597008 _____ (Microsoft Corporation) C:\Users\Alec\Downloads\WindowsXPMode_en-us.exe
2013-10-26 16:56 - 2013-10-26 16:56 - 00000000 ____D C:\ProgramData\Windows Genuine Advantage
2013-10-26 16:55 - 2013-10-26 16:55 - 01528184 _____ (Microsoft Corporation) C:\Users\Alec\Downloads\GenuineCheck.exe
2013-10-26 16:38 - 2013-10-26 16:38 - 02037248 _____ (Apple Computer, Inc.) C:\Users\Alec\Downloads\quicktimeplayer2 (1).exe
2013-10-26 16:37 - 2013-10-26 16:38 - 02037248 _____ (Apple Computer, Inc.) C:\Users\Alec\Downloads\quicktimeplayer2.exe
2013-10-26 09:32 - 2013-10-26 09:32 - 00000000 ____D C:\Users\Alec\Documents\Telltale Games
 
==================== One Month Modified Files and Folders =======
 
2013-11-25 22:08 - 2013-11-25 22:08 - 00000000 ____D C:\FRST
2013-11-25 20:02 - 2013-08-06 16:33 - 01182786 _____ C:\Windows\WindowsUpdate.log
2013-11-25 20:00 - 2013-11-25 20:00 - 01958474 _____ (Farbar) C:\Users\Alec\Desktop\FRST64.exe
2013-11-25 19:57 - 2013-08-06 16:42 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-25 19:53 - 2013-08-16 01:02 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-25 19:40 - 2013-08-07 09:33 - 00000000 ____D C:\Users\Alec\AppData\Roaming\BitTorrent
2013-11-25 19:40 - 2009-07-13 20:45 - 00021872 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-25 19:40 - 2009-07-13 20:45 - 00021872 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-25 19:37 - 2009-07-13 21:13 - 00782470 _____ C:\Windows\System32\PerfStringBackup.INI
2013-11-25 19:36 - 2013-11-25 19:36 - 00026028 _____ C:\Users\Alec\Desktop\dds.txt
2013-11-25 19:36 - 2013-11-25 19:36 - 00006716 _____ C:\Users\Alec\Desktop\attach.txt
2013-11-25 19:35 - 2013-11-25 19:35 - 00688992 ____R (Swearware) C:\Users\Alec\Downloads\dds.com
2013-11-25 19:33 - 2013-08-06 16:42 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-25 19:32 - 2013-08-16 00:54 - 00015869 _____ C:\Windows\setupact.log
2013-11-25 19:32 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-25 16:07 - 2013-08-06 17:08 - 00000000 ____D C:\ProgramData\MFAData
2013-11-25 11:02 - 2013-08-06 17:18 - 00000000 ____D C:\Users\Alec\AppData\Roaming\Spotify
2013-11-25 08:22 - 2013-08-06 17:18 - 00000000 ____D C:\Users\Alec\AppData\Local\Spotify
2013-11-24 23:02 - 2013-09-08 13:04 - 00000000 ____D C:\Users\Alec\Documents\BioWare
2013-11-24 23:02 - 2013-08-15 16:00 - 00188739 _____ C:\Windows\DirectX.log
2013-11-24 16:39 - 2013-11-23 13:27 - 00001724 _____ C:\Users\Alec\Desktop\Rkill.txt
2013-11-23 14:46 - 2013-11-23 14:46 - 00004894 _____ C:\Users\Alec\Desktop\AdwCleaner[S0].txt
2013-11-23 14:44 - 2013-11-23 14:44 - 02347384 _____ (ESET) C:\Users\Alec\Downloads\esetsmartinstaller_enu.exe
2013-11-23 14:43 - 2013-11-23 14:43 - 00000695 _____ C:\Users\Alec\Desktop\JRT.txt
2013-11-23 14:38 - 2013-11-23 14:38 - 00000000 ____D C:\Windows\ERUNT
2013-11-23 14:35 - 2013-11-23 14:33 - 00000000 ____D C:\AdwCleaner
2013-11-23 14:31 - 2013-11-23 14:31 - 01085542 _____ C:\Users\Alec\Desktop\adwcleaner.exe
2013-11-23 14:31 - 2013-11-23 14:31 - 01034531 _____ (Thisisu) C:\Users\Alec\Desktop\JRT.exe
2013-11-23 14:31 - 2013-11-23 14:31 - 00448512 _____ (OldTimer Tools) C:\Users\Alec\Desktop\TFC.exe
2013-11-23 13:26 - 2013-11-23 13:21 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-23 13:26 - 2013-11-23 13:12 - 00000000 ____D C:\Users\Alec\Desktop\mbar
2013-11-23 13:21 - 2013-11-23 13:21 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2013-11-23 13:12 - 2013-11-23 13:12 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbamchameleon.sys
2013-11-23 13:11 - 2013-11-23 13:10 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Alec\Downloads\mbar-1.07.0.1007.exe
2013-11-23 13:11 - 2013-11-23 13:10 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\Alec\Desktop\rkill.exe
2013-11-23 13:09 - 2013-11-23 13:08 - 00026405 _____ C:\Users\Alec\Desktop\Result.txt
2013-11-23 13:07 - 2013-11-23 13:07 - 00760937 _____ (Farbar) C:\Users\Alec\Desktop\MiniToolBox.exe
2013-11-23 13:07 - 2013-11-23 13:07 - 00002475 _____ C:\Users\Alec\Desktop\FSS.txt
2013-11-23 13:06 - 2013-11-23 13:06 - 00360881 _____ (Farbar) C:\Users\Alec\Desktop\FSS.exe
2013-11-23 13:03 - 2013-11-23 13:03 - 00891200 _____ C:\Users\Alec\Desktop\SecurityCheck.exe
2013-11-23 12:07 - 2013-11-23 12:07 - 00000000 ____D C:\Users\Alec\Downloads\tdsskiller
2013-11-23 12:07 - 2013-11-23 12:06 - 04101441 _____ C:\Users\Alec\Downloads\tdsskiller.zip
2013-11-23 12:06 - 2013-11-23 12:06 - 02240864 _____ (Kaspersky Lab ZAO) C:\Users\Alec\Downloads\tdsskiller.exe
2013-11-22 14:30 - 2013-11-22 14:30 - 00001808 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-11-22 14:30 - 2013-11-22 14:30 - 00000000 ____D C:\Users\Alec\AppData\Roaming\SUPERAntiSpyware.com
2013-11-22 14:30 - 2013-11-22 14:30 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-11-22 14:30 - 2013-11-22 14:30 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-11-22 14:28 - 2013-11-22 14:27 - 28657224 _____ (SUPERAntiSpyware) C:\Users\Alec\Downloads\SUPERAntiSpyware.exe
2013-11-22 14:27 - 2013-11-22 14:27 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\Alec\Downloads\rkill.com
2013-11-22 14:02 - 2013-11-22 14:02 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-22 14:02 - 2013-11-22 14:02 - 00000000 ____D C:\Users\Alec\AppData\Roaming\Malwarebytes
2013-11-22 14:02 - 2013-11-22 14:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-22 14:02 - 2013-11-22 14:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-22 14:01 - 2013-11-22 14:01 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alec\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-22 08:40 - 2013-11-22 08:40 - 00748246 _____ (                                                            ) C:\Users\Alec\Downloads\ResourceHacker-55-3-6.exe
2013-11-22 08:40 - 2013-11-22 08:40 - 00000000 ____D C:\Program Files (x86)\Resource Hacker
2013-11-21 15:02 - 2013-11-21 15:01 - 00000000 ____D C:\Program Files (x86)\PasswordBox
2013-11-21 15:01 - 2013-09-09 06:40 - 00046368 _____ (AVG Technologies) C:\Windows\System32\Drivers\avgtpx64.sys
2013-11-21 15:01 - 2013-09-09 06:40 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2013-11-20 12:53 - 2013-11-20 12:53 - 01859304 _____ (Coupons.com Incorporated) C:\Users\Alec\Downloads\CouponPrinter.exe
2013-11-20 12:53 - 2013-11-20 12:53 - 01859304 _____ (Coupons.com Incorporated) C:\Users\Alec\Downloads\CouponPrinter (1).exe
2013-11-20 12:52 - 2013-11-20 12:52 - 00002144 _____ C:\Users\Public\Desktop\Brother Creative Center.lnk
2013-11-20 12:51 - 2013-11-20 12:49 - 00000000 ____D C:\ProgramData\Brother
2013-11-20 12:50 - 2013-11-20 12:50 - 00000000 ____D C:\Program Files (x86)\Browny02
2013-11-20 12:50 - 2013-11-20 12:50 - 00000000 ____D C:\Program Files (x86)\Brother
2013-11-20 12:50 - 2013-11-20 12:50 - 00000000 ____D C:\Brother
2013-11-20 12:50 - 2013-08-06 16:46 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-20 12:49 - 2013-11-20 12:49 - 00000000 ____D C:\Users\Alec\AppData\Roaming\InstallShield
2013-11-19 14:18 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2013-11-19 13:08 - 2013-11-19 13:08 - 02051270 _____ C:\Users\Alec\Downloads\Technological Determinism Part 2 (1).ppsx
2013-11-19 12:53 - 2013-11-19 12:53 - 02051270 _____ C:\Users\Alec\Downloads\Technological Determinism Part 2.ppsx
2013-11-19 12:53 - 2013-11-19 12:52 - 03004037 _____ C:\Users\Alec\Downloads\Technological Determinism Part 1.ppsx
2013-11-19 12:33 - 2013-11-19 12:33 - 00827720 _____ C:\Users\Alec\Downloads\blackmesa-setup.exe
2013-11-19 12:05 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-19 12:04 - 2013-11-19 12:01 - 00007469 _____ C:\Windows\IE11_main.log
2013-11-19 12:02 - 2013-11-19 12:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 12:02 - 2013-11-19 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-11-19 12:02 - 2013-11-19 12:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-11-19 12:02 - 2013-11-19 12:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 12:02 - 2013-11-19 12:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\System32\jsIntl.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 12:02 - 2013-11-19 12:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-11-19 12:02 - 2013-11-19 12:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-11-19 12:02 - 2013-11-19 12:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 12:02 - 2013-11-19 12:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-11-19 12:02 - 2013-11-19 12:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 12:02 - 2013-11-19 12:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 12:02 - 2013-11-19 12:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 12:02 - 2013-11-19 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2013-11-18 03:51 - 2013-08-11 11:50 - 00000000 ____D C:\Users\Alec\AppData\Local\Adobe
2013-11-18 03:50 - 2013-08-16 01:02 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-18 03:50 - 2013-08-16 01:02 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-18 03:50 - 2013-08-16 01:02 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-17 00:05 - 2013-11-17 00:05 - 00087413 _____ C:\Users\Alec\Downloads\QuestFinder-0.1.8.zip
2013-11-16 20:27 - 2013-11-16 11:44 - 00000000 ____D C:\Users\Alec\Documents\RIFT
2013-11-16 16:06 - 2013-10-23 13:03 - 00000000 ____D C:\Users\Alec\Documents\Euro Truck Simulator 2
2013-11-16 13:02 - 2013-11-16 13:02 - 00000000 ____D C:\Users\Alec\Downloads\Flat's
2013-11-16 13:02 - 2013-11-16 13:01 - 06449745 _____ C:\Users\Alec\Downloads\Flat's.zip
2013-11-16 11:49 - 2013-11-16 08:36 - 00000000 ____D C:\Users\Alec\AppData\Roaming\RIFT
2013-11-16 09:22 - 2013-11-16 09:22 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2013-11-16 09:22 - 2013-11-16 09:21 - 00000000 ____D C:\ProgramData\Battle.net
2013-11-16 09:00 - 2013-11-16 08:53 - 83293072 _____ (Blizzard Entertainment) C:\Users\Alec\Downloads\World-of-Warcraft-Setup-enUS.exe
2013-11-15 08:37 - 2013-11-15 08:37 - 00000069 _____ C:\Windows\132478
2013-11-15 07:37 - 2013-11-15 07:37 - 00000000 ____D C:\Users\Alec\New folder
2013-11-15 07:37 - 2013-08-06 16:33 - 00000000 ____D C:\users\Alec
2013-11-14 22:45 - 2013-11-14 22:45 - 00000000 ____D C:\Users\Alec\Eve Online
2013-11-14 14:23 - 2013-08-06 17:04 - 00000000 ____D C:\Users\Alec\Documents\my games
2013-11-14 14:16 - 2013-08-14 12:45 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-13 23:08 - 2013-08-10 05:20 - 00000000 ____D C:\Windows\System32\MRT
2013-11-13 23:07 - 2013-08-09 13:54 - 82896128 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-11-13 21:50 - 2013-08-12 05:35 - 00000000 ____D C:\Users\Alec\Documents\SavedGames
2013-11-13 19:55 - 2013-11-13 19:55 - 00000000 ____D C:\Users\Alec\AppData\Local\Ubisoft
2013-11-13 19:43 - 2013-10-11 11:47 - 00000000 ____D C:\Users\Alec\AppData\Roaming\vlc
2013-11-13 19:41 - 2013-11-13 19:41 - 00000000 ____D C:\ProgramData\WaLMaRT
2013-11-13 19:16 - 2013-10-06 07:35 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-13 18:58 - 2013-11-13 18:57 - 00000000 ____D C:\Users\Alec\Downloads\t-engine4-windows-1.0.5
2013-11-13 18:57 - 2013-11-13 18:57 - 00000000 ____D C:\Users\Alec\T-Engine
2013-11-13 18:55 - 2013-11-13 18:48 - 207728395 _____ C:\Users\Alec\Downloads\t-engine4-windows-1.0.5.zip
2013-11-12 14:17 - 2013-08-13 07:52 - 00000000 ____D C:\Users\Alec\Documents\Square Enix
2013-11-10 12:32 - 2013-09-22 13:06 - 00000000 ____D C:\Users\Alec\Documents\Rockstar Games
2013-11-09 13:14 - 2013-11-09 13:14 - 02350560 _____ C:\Windows\PE_Rom.dll
2013-11-09 09:39 - 2013-11-09 09:39 - 00000000 ____D C:\Users\Alec\AppData\Roaming\openvr
2013-11-09 07:11 - 2011-04-12 00:28 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-11-08 06:50 - 2013-08-11 16:20 - 00000000 ____D C:\Users\Alec\AppData\Local\Ubisoft Game Launcher
2013-11-07 21:18 - 2013-08-17 08:12 - 00283032 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-11-07 21:18 - 2013-08-17 05:09 - 00283032 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-07 20:59 - 2013-08-17 05:09 - 00283032 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-07 20:41 - 2013-08-17 05:09 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-07 20:40 - 2013-08-17 08:12 - 00000000 ____D C:\Users\Alec\AppData\Local\PunkBuster
2013-11-07 20:26 - 2013-11-07 20:26 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-07 17:03 - 2013-11-07 20:26 - 03130440 _____ C:\Windows\SysWOW64\pbsvc_blr.exe
2013-11-07 14:22 - 2013-08-06 17:05 - 00000000 ____D C:\Users\Alec\AppData\Roaming\tropico 4
2013-11-05 17:01 - 2013-11-05 17:01 - 00000000 ____D C:\Users\Alec\Documents\Orcs Must Die
2013-11-05 16:57 - 2013-11-05 16:51 - 00000000 ____D C:\Users\Alec\Documents\Snapshot
2013-11-05 16:22 - 2013-11-05 16:22 - 00000000 ____D C:\Users\Alec\AppData\Roaming\Spore
2013-11-02 11:59 - 2013-11-02 11:59 - 00000000 ____D C:\Program Files (x86)\Dungeon Defenders
2013-11-01 17:55 - 2013-11-01 17:55 - 00116861 _____ C:\Users\Alec\Downloads\oldspice.zip
2013-11-01 17:55 - 2013-11-01 17:55 - 00000000 ____D C:\Users\Alec\Downloads\oldspice
2013-11-01 17:32 - 2013-11-01 17:32 - 00000000 ____D C:\Users\Alec\openvr
2013-11-01 13:43 - 2013-11-01 13:43 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-10-30 17:27 - 2013-10-30 17:27 - 00000000 ____D C:\Program Files (x86)\CodeFromThe70s.org
2013-10-30 17:26 - 2013-10-30 17:26 - 00424270 _____ C:\Users\Alec\Downloads\poke-2.0.1.zip
2013-10-30 17:26 - 2013-10-30 17:26 - 00000000 ____D C:\Users\Alec\Downloads\poke-2.0.1
2013-10-30 11:08 - 2013-10-29 13:50 - 00000000 ____D C:\Users\Alec\.Anodyne
2013-10-30 10:17 - 2013-10-30 10:16 - 00000000 ____D C:\Users\Alec\Documents\Broken Sword - Director's Cut
2013-10-30 06:49 - 2013-10-30 06:49 - 02612011 _____ C:\Users\Alec\Downloads\Technology and War.ppsx
2013-10-29 18:31 - 2013-10-29 18:25 - 225094405 _____ C:\Users\Alec\Downloads\Game of Life, The.7z
2013-10-29 14:11 - 2013-10-29 14:11 - 00027137 _____ C:\Users\Alec\Downloads\GTAIV.1 (1).zip
2013-10-29 14:10 - 2013-10-29 14:10 - 00027137 _____ C:\Users\Alec\Downloads\GTAIV.1.zip
2013-10-29 14:10 - 2013-10-29 14:10 - 00000000 ____D C:\Users\Alec\Downloads\GTAIV.1
2013-10-29 13:48 - 2013-10-29 13:48 - 00000000 ____D C:\Users\Alec\AppData\Roaming\Anodyne
2013-10-29 13:41 - 2013-10-29 13:41 - 00000000 ____D C:\Users\Alec\AppData\Local\tt
2013-10-29 13:41 - 2013-10-29 13:41 - 00000000 ____D C:\Users\Alec\AppData\Local\Ticket to Ride
2013-10-29 13:16 - 2013-10-29 13:16 - 00000904 _____ C:\Users\Public\Desktop\Democracy 3.lnk
2013-10-29 13:08 - 2013-10-29 12:57 - 00000000 __SHD C:\Users\Alec\AppData\Roaming\wyUpdate AU
2013-10-29 13:08 - 2013-10-29 12:57 - 00000000 ____D C:\Users\Alec\Documents\Universe Sandbox
2013-10-29 12:57 - 2013-10-29 12:57 - 00000000 ____D C:\Users\Alec\AppData\Roaming\System
2013-10-29 12:57 - 2013-10-29 12:57 - 00000000 ____D C:\Users\Alec\AppData\Local\Universe Sandbox
2013-10-29 12:30 - 2013-10-27 13:30 - 00000000 ____D C:\Users\Alec\Downloads\Majestic
2013-10-29 07:46 - 2013-10-04 10:01 - 00000000 ____D C:\Users\Alec\Downloads\Downloads 10-4
2013-10-27 14:26 - 2013-08-06 17:04 - 00000000 ____D C:\Users\Alec\Documents\4a games
2013-10-27 14:26 - 2013-08-06 16:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-26 19:03 - 2013-08-06 16:33 - 00000000 ____D C:\Users\Alec\AppData\Local\VirtualStore
2013-10-26 18:06 - 2013-10-26 18:06 - 00459547 _____ C:\Users\Alec\Downloads\Pokemon Trading Card Game.zip
2013-10-26 17:59 - 2013-10-26 17:58 - 12729528 _____ C:\Users\Alec\Downloads\Harry Potter and the Prisoner of Azkaban.zip
2013-10-26 17:57 - 2013-10-26 17:56 - 02704395 _____ C:\Users\Alec\Downloads\Harry Potter and The Sorcerer's Stone.zip
2013-10-26 17:56 - 2013-10-26 17:56 - 02813443 _____ C:\Users\Alec\Downloads\harry_potter_and_the_chamber_of_secrets.zip
2013-10-26 17:43 - 2013-10-26 17:28 - 00000000 ___RD C:\Users\Alec\Virtual Machines
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\tr-TR
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\th-TH
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\ro-RO
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\he-IL
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Windows\System32\Drivers\ar-SA
2013-10-26 17:26 - 2013-10-26 17:26 - 00000000 ____D C:\Program Files (x86)\Windows Virtual PC
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\th-TH
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\ro-RO
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\he-IL
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\ar-SA
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\tr-TR
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\th-TH
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\ro-RO
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\he-IL
2013-10-26 17:26 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\ar-SA
2013-10-26 17:25 - 2013-10-26 17:24 - 17091624 _____ C:\Users\Alec\Downloads\Windows6.1-KB958559-x64-RefreshPkg.msu
2013-10-26 17:24 - 2013-10-26 17:24 - 01528184 _____ (Microsoft Corporation) C:\Users\Alec\Downloads\GenuineCheck (1).exe
2013-10-26 17:17 - 2013-10-26 17:17 - 00000000 ____D C:\Program Files\Windows XP Mode
2013-10-26 17:08 - 2013-10-26 16:56 - 492597008 _____ (Microsoft Corporation) C:\Users\Alec\Downloads\WindowsXPMode_en-us.exe
2013-10-26 16:56 - 2013-10-26 16:56 - 00000000 ____D C:\ProgramData\Windows Genuine Advantage
2013-10-26 16:55 - 2013-10-26 16:55 - 01528184 _____ (Microsoft Corporation) C:\Users\Alec\Downloads\GenuineCheck.exe
2013-10-26 16:38 - 2013-10-26 16:38 - 02037248 _____ (Apple Computer, Inc.) C:\Users\Alec\Downloads\quicktimeplayer2 (1).exe
2013-10-26 16:38 - 2013-10-26 16:37 - 02037248 _____ (Apple Computer, Inc.) C:\Users\Alec\Downloads\quicktimeplayer2.exe
2013-10-26 09:32 - 2013-10-26 09:32 - 00000000 ____D C:\Users\Alec\Documents\Telltale Games
 
Some content of TEMP:
====================
C:\Users\Alec\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Alec\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Alec\AppData\Local\Temp\Quarantine.exe
 
 
==================== Known DLLs (Whitelisted) ================
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
==================== EXE ASSOCIATION =====================
 
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
 
==================== Restore Points  =========================
 
4
Restore point made on: 2013-11-19 12:01:53
Restore point made on: 2013-11-20 12:50:11
Restore point made on: 2013-11-22 20:08:48
Restore point made on: 2013-11-24 23:02:19
 
==================== Memory info =========================== 
 
Percentage of memory in use: 7%
Total physical RAM: 16328.27 MB
Available physical RAM: 15169.09 MB
Total Pagefile: 16326.47 MB
Available Pagefile: 15173.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.87 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:111.79 GB) (Free:27.77 GB) NTFS
Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (SAUCEBOSS) (Fixed) (Total:931.41 GB) (Free:139.72 GB) NTFS
Drive g: () (Removable) (Total:15.01 GB) (Free:3.16 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: A99B5620)
Partition 1: (Not Active) - (Size=112 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 030D1FB1)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 15 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=15 GB) - (Type=0C)
 
 
LastRegBack: 2013-11-19 22:59
 
==================== End Of Log ============================


#5 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:22 AM

Posted 26 November 2013 - 01:51 PM

1.

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    image000q.png
  • Put a checkmark beside loaded modules.
    2012081514h0118.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    2012081517h0349.png
  • Click the Start Scan button.
    19695967.jpg
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    67776163.jpg
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    62117367.jpg
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

 

2.

Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop

Link 1
Link 2

  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal.  It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • RcAuto1.gif
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    whatnext.png
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.
 

 

Things to include in your next reply::

TdssKiller log

Combofix.txt

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#6 ajusti00

ajusti00
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 02 December 2013 - 01:28 PM

For some reason, I'm not able to copy and paste these logs. Every time I do the webpage freezes, no matter how long it sits. When I finally do get it all pasted, I click post, and it never posts, and gets stuck on "Saving Post...".

 

I think I've also found a way to recreate the ads. They seem to only occur while l'm playing a video game (doesn't matter which one). I was playing Far Cry 3 (can't be the cause, I bought it yesterday), and an ad started playing. I closed the game, and the ad stopped when it closed. Either it's related to Steam (my game client), or it's just attaching itself to a running program to play.



#7 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:22 AM

Posted 05 December 2013 - 06:52 PM

Hello.

Are you still there?

If you are please follow the instructions in my previous post.

If you still need help, follow the instructions I have given in my response. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

Please reply back telling us so. If you don't reply within 3-5 days the topic will need to be closed.

Thanks for understanding :)

With Regards,
fireman4it


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#8 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:22 AM

Posted 07 December 2013 - 12:46 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users