Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Suprise suprise...Gameharbor.org -_-


  • This topic is locked This topic is locked
4 replies to this topic

#1 Valmont2636

Valmont2636

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:23 AM

Posted 11 September 2014 - 02:15 PM

Here are the results of my FRST scan. I'd really appreciate the help :/.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-09-2014
Ran by Jess & Tony (administrator) on AWESOMESAUCE-PC on 11-09-2014 15:06:55
Running from C:\Users\Jess & Tony\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFXWindowsService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files (x86)\EVGA Precision X\EVGAPrecision.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\ODD Monitor\ODD_Monitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe
() C:\Program Files (x86)\AlienRespawn\Components\Scheduler\STService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(SoftThinks) C:\Program Files (x86)\AlienRespawn\SftVss64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7017032 2013-02-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1277000 2013-02-18] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [13840 2013-04-19] (Alienware)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403288 2014-08-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Alienware Survey] => c:\Program Files (x86)\Alienware Customer Surveys\AlienSurvey.exe [7396920 2013-04-23] (Alienware, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-11] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvastUI.exe [4086432 2014-09-11] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-612874129-3871352773-3515986522-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [369200 2009-10-30] (DT Soft Ltd)
HKU\S-1-5-21-612874129-3871352773-3515986522-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-612874129-3871352773-3515986522-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\S-1-5-21-612874129-3871352773-3515986522-1000\...\Run: [CMD] => cmd.exe /c start http://extendedunlimited.org && exit <===== ATTENTION
HKU\S-1-5-21-612874129-3871352773-3515986522-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7762712 2014-09-11] (SUPERAntiSpyware)
HKU\S-1-5-21-612874129-3871352773-3515986522-1000\...\MountPoints2: {e1088e4c-0f52-11e3-af6f-7845c4fdeb9c} - D:\setup.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2014-07-02] (NVIDIA Corporation)
AppInit_DLLs-x32:  ,C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-07-02] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dell13.msn.com/?pc=DCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.alienwarearena.com/welcome-us
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.alienwarearena.com/welcome-us
SearchScopes: HKLM - DefaultScope {D5190EAE-CFC6-4910-8A9A-119AF0261D72} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {D5190EAE-CFC6-4910-8A9A-119AF0261D72} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKLM-x32 - DefaultScope {D5190EAE-CFC6-4910-8A9A-119AF0261D72} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {D5190EAE-CFC6-4910-8A9A-119AF0261D72} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKCU - DefaultScope {D5190EAE-CFC6-4910-8A9A-119AF0261D72} URL =
SearchScopes: HKCU - {D5190EAE-CFC6-4910-8A9A-119AF0261D72} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Jess & Tony\AppData\Roaming\Mozilla\Firefox\Profiles\x86q1s6q.default-1410354439722
FF Homepage: google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @ogplanet.com/npOGPPlugin -> C:\Windows\system32\npOGPPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jess & Tony\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll (The Happy Cloud)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2013-08-27]

Chrome:
=======
CHR StartupUrls: Default -> "https://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-27]
CHR Extension: (Google Drive) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-27]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (YouTube) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-27]
CHR Extension: (Anna Sui) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjohejgigkmiclpgnilojffhiohcglib [2013-09-07]
CHR Extension: (Google Search) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-27]
CHR Extension: (Google Wallet) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-27]
CHR Extension: (Gmail) - C:\Users\Jess & Tony\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-27]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx [2014-09-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-09-11] (SUPERAntiSpyware.com)
R2 AlienFXWindowsService; C:\Program Files\Alienware\Command Center\AlienFXWindowsService.exe [14352 2013-04-19] (Alienware)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2014-09-11] (AVAST Software)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-12-02] (BitRaider, LLC)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Corporation)
S3 ioloEnergyBooster; C:\Program Files\Alienware\Command Center\ioloEnergyBooster.exe [6145872 2012-11-01] (iolo technologies, LLC)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [167736 2013-01-30] (Intel Corporation)
R2 MSI_ODD_Service; c:\Program Files (x86)\MSI\ODD Monitor\ODD_Monitor.exe [83512 2012-11-20] (Micro-Star Int'l Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720792 2014-08-08] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18973144 2014-08-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-19] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [202824 2013-01-18] (Realtek Semiconductor)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [81536 2012-12-26] (Atheros)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-09-11] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-09-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-09-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-09-11] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-09-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-09-11] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-09-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-09-11] ()
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-12-02] (BitRaider)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28656 2013-01-14] (Intel Corporation)
R3 NTIOLib_X64; C:\Program Files (x86)\msi\ODD Monitor\NTIOLib_X64.sys [14136 2012-11-20] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20440 2014-08-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2014-08-28] (Duplex Secure Ltd.)
S3 XBCD; C:\Windows\System32\DRIVERS\XBCD.sys [27608 2011-10-08] (XBCD Project)
U3 adfdsx7z; C:\Windows\System32\Drivers\adfdsx7z.sys [0 ] (Intel Corporation)
U3 at9tarlk; C:\Windows\System32\Drivers\at9tarlk.sys [0 ] (Intel Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 sclbl; \??\C:\AeriaGames\ScarletBlade\avital\scarbt64.sys [X]
S3 X6va021; \??\C:\Windows\SysWOW64\Drivers\X6va021 [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 15:06 - 2014-09-11 15:06 - 00022207 _____ () C:\Users\Jess & Tony\Desktop\FRST.txt
2014-09-11 15:04 - 2014-09-11 15:04 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\AVAST Software
2014-09-11 15:01 - 2014-09-11 15:01 - 00168226 _____ () C:\Windows\PFRO.log
2014-09-11 14:57 - 2014-09-11 14:57 - 02105856 _____ (Farbar) C:\Users\Jess & Tony\Desktop\FRST64.exe
2014-09-11 12:19 - 2014-09-11 12:18 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-11 12:19 - 2014-09-11 12:18 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-11 12:18 - 2014-09-11 12:18 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-11 12:11 - 2014-09-11 12:11 - 00000000 ____D () C:\SUPERDelete
2014-09-11 12:11 - 2014-09-11 12:11 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-11 12:05 - 2014-09-11 15:02 - 00000336 _____ () C:\Windows\setupact.log
2014-09-11 12:05 - 2014-09-11 12:05 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-11 11:58 - 2014-09-11 12:05 - 00000522 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 86847409-44d1-4bc9-b3cb-ca6fb3acd42a.job
2014-09-11 11:58 - 2014-09-11 12:05 - 00000522 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 41d3b9bc-04ba-45a4-a12a-31eb53d3e637.job
2014-09-11 11:58 - 2014-09-11 11:58 - 00003638 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 41d3b9bc-04ba-45a4-a12a-31eb53d3e637
2014-09-11 11:58 - 2014-09-11 11:58 - 00003564 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 86847409-44d1-4bc9-b3cb-ca6fb3acd42a
2014-09-11 11:58 - 2014-09-11 11:58 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\SUPERAntiSpyware.com
2014-09-11 11:57 - 2014-09-11 12:09 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-09-11 11:57 - 2014-09-11 11:57 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-09-11 11:57 - 2014-09-11 11:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-09-11 11:51 - 2014-08-19 14:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-11 11:51 - 2014-08-19 13:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-11 11:51 - 2014-08-18 19:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-11 11:51 - 2014-08-18 18:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-11 11:51 - 2014-08-18 18:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-11 11:51 - 2014-08-18 18:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-11 11:51 - 2014-08-18 18:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-11 11:51 - 2014-08-18 18:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-11 11:51 - 2014-08-18 18:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-11 11:51 - 2014-08-18 18:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-11 11:51 - 2014-08-18 18:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-11 11:51 - 2014-08-18 18:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-11 11:51 - 2014-08-18 18:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-11 11:51 - 2014-08-18 18:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-11 11:51 - 2014-08-18 18:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-11 11:51 - 2014-08-18 18:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-11 11:51 - 2014-08-18 18:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-11 11:51 - 2014-08-18 18:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-11 11:51 - 2014-08-18 18:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-11 11:51 - 2014-08-18 17:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-11 11:51 - 2014-08-18 17:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-11 11:51 - 2014-08-18 17:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-11 11:51 - 2014-08-18 17:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-11 11:51 - 2014-08-18 17:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-11 11:51 - 2014-08-18 17:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-11 11:51 - 2014-08-18 17:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-11 11:51 - 2014-08-18 17:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-11 11:51 - 2014-08-18 17:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-11 11:51 - 2014-08-18 17:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-11 11:51 - 2014-08-18 17:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-11 11:51 - 2014-08-18 17:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-11 11:51 - 2014-08-18 17:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-11 11:51 - 2014-08-18 17:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-11 11:51 - 2014-08-18 17:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-11 11:51 - 2014-08-18 17:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-11 11:51 - 2014-08-18 17:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-11 11:51 - 2014-08-18 17:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-11 11:51 - 2014-08-18 17:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-11 11:51 - 2014-08-18 17:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-11 11:51 - 2014-08-18 17:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-11 11:51 - 2014-08-18 17:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-11 11:51 - 2014-08-18 17:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-11 11:51 - 2014-08-18 17:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-11 11:51 - 2014-08-18 17:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-11 11:51 - 2014-08-18 17:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-11 11:51 - 2014-08-18 17:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-11 11:51 - 2014-08-18 17:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-11 11:51 - 2014-08-18 17:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-11 11:51 - 2014-08-18 17:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-11 11:51 - 2014-08-18 17:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-11 11:51 - 2014-08-18 17:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-11 11:51 - 2014-08-18 16:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-11 11:51 - 2014-08-18 16:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-11 11:51 - 2014-08-18 16:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-11 11:51 - 2014-08-18 16:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-11 11:51 - 2014-08-18 16:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-11 11:18 - 2014-09-11 11:19 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-11 11:18 - 2014-09-11 11:18 - 00002792 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-09-11 11:18 - 2014-09-11 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-11 08:21 - 2014-07-06 22:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-11 08:21 - 2014-07-06 22:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-11 08:21 - 2014-07-06 21:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-11 08:21 - 2014-07-06 21:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-11 08:21 - 2014-07-06 21:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-10 12:57 - 2014-09-10 12:57 - 00000883 _____ () C:\Users\Jess & Tony\AppData\Local\recently-used.xbel
2014-09-10 12:56 - 2014-09-10 12:57 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\gtk-2.0
2014-09-10 11:45 - 2014-09-10 11:45 - 00007597 _____ () C:\Users\Jess & Tony\AppData\Local\Resmon.ResmonCfg
2014-09-10 10:25 - 2014-09-11 15:07 - 00000000 ____D () C:\FRST
2014-09-10 09:58 - 2014-09-11 15:07 - 00003056 _____ () C:\Windows\System32\Tasks\EVGAPrecision
2014-09-10 09:15 - 2014-09-10 09:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-07 17:48 - 2014-09-07 18:22 - 00000000 ____D () C:\Program Files (x86)\OGPlanet
2014-09-07 17:48 - 2014-09-07 18:12 - 00000000 ____D () C:\Users\Jess & Tony\Documents\OGPlanet Games
2014-09-07 17:48 - 2009-11-19 06:33 - 00271768 _____ (OGPlanet) C:\Windows\SysWOW64\OGPIEPlugin.ocx
2014-09-07 17:48 - 2009-11-19 06:33 - 00079256 _____ (OGPlanet) C:\Windows\SysWOW64\npOGPPlugin.dll
2014-09-07 13:19 - 2014-09-07 13:19 - 00000000 ____D () C:\Users\Jess & Tony\dwhelper
2014-09-05 10:04 - 2014-09-05 10:04 - 00000000 ____D () C:\Gundam Online
2014-09-04 11:52 - 2014-09-04 11:52 - 00001941 _____ () C:\Users\Public\Desktop\Dead Rising 3.lnk
2014-09-04 11:52 - 2014-09-04 11:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Rising 3
2014-09-04 11:21 - 2014-09-04 12:38 - 00000000 ____D () C:\Program Files (x86)\Dead Rising 3
2014-09-03 13:03 - 2014-09-03 13:03 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-09-03 12:59 - 2014-09-03 15:26 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\Origin
2014-09-03 12:59 - 2014-09-03 13:03 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\Origin
2014-09-03 12:58 - 2014-09-11 12:46 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-09-03 12:58 - 2014-09-03 13:03 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-09-03 12:58 - 2014-09-03 12:58 - 00000981 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-09-03 12:57 - 2014-09-11 13:47 - 00000000 ____D () C:\ProgramData\Origin
2014-08-31 12:47 - 2014-07-02 13:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-08-31 12:45 - 2014-07-02 16:48 - 31512520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 24196896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 22994208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 17555104 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 16122344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 15294296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 13922752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 13835208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 12866008 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-08-31 12:45 - 2014-07-02 16:48 - 11283344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 11222048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 04247000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 03989960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00944928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00907096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00903624 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00869152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00846832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00502232 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00418760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00391640 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00348120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-08-31 12:45 - 2014-07-02 16:48 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-08-28 11:47 - 2014-08-28 13:01 - 00000486 _____ () C:\Users\Jess & Tony\Documents\ax_files.xml
2014-08-28 11:38 - 2014-08-28 11:38 - 00000000 ____D () C:\Users\Jess & Tony\Documents\Alcohol 120%
2014-08-28 11:30 - 2014-08-28 11:30 - 00001182 _____ () C:\Users\Public\Desktop\Alcohol 120%.lnk
2014-08-28 11:30 - 2014-08-28 11:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcohol 120%
2014-08-28 11:28 - 2014-08-28 11:28 - 00000000 ____D () C:\Program Files (x86)\Alcohol Soft
2014-08-28 09:32 - 2014-08-22 22:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 09:32 - 2014-08-22 21:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 09:32 - 2014-08-22 20:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-27 11:19 - 2014-08-27 11:19 - 00002134 _____ () C:\Users\Jess & Tony\Desktop\The Forest 0.06.lnk
2014-08-27 11:19 - 2014-08-27 11:19 - 00000000 ____D () C:\Program Files (x86)\GMT-MAX.ORG
2014-08-22 13:07 - 2014-08-23 11:52 - 00000000 ____D () C:\Users\Jess & Tony\Documents\ArcheAge
2014-08-21 12:05 - 2014-09-09 19:15 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\Glyph
2014-08-21 12:05 - 2014-08-21 12:05 - 00000000 ____D () C:\ProgramData\Glyph
2014-08-19 01:47 - 2014-08-19 01:47 - 00001462 _____ () C:\Users\Jess & Tony\Desktop\Resident Evil 6.lnk
2014-08-19 00:55 - 2014-08-19 03:01 - 00000000 ____D () C:\Users\Jess & Tony\Desktop\[PC]+Resident+Evil+6+by+NapalmGuy
2014-08-19 00:49 - 2014-08-19 12:26 - 00000000 ____D () C:\Users\Jess & Tony\Desktop\RE6MODS
2014-08-18 19:35 - 2014-09-10 12:58 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\Adobe
2014-08-17 16:27 - 2014-08-19 13:02 - 00000000 ____D () C:\Program Files (x86)\Resident Evil 6
2014-08-16 15:43 - 2014-08-16 15:43 - 00000911 _____ () C:\Users\Public\Desktop\SpaceEngine.lnk
2014-08-16 15:43 - 2014-08-16 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpaceEngine
2014-08-15 19:23 - 2014-08-15 19:23 - 00003292 _____ () C:\Windows\System32\Tasks\{2B55AAC6-EEB1-48BC-B0AB-D134ECF0BB0E}
2014-08-15 19:16 - 2014-08-15 19:17 - 00000000 ____D () C:\Program Files\57F737B4-ACBE-4AFB-87B3-6DC08B80F484
2014-08-15 19:16 - 2014-08-15 19:17 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-08-15 19:15 - 2014-08-15 19:18 - 00000000 ____D () C:\Program Files\005
2014-08-15 19:15 - 2014-08-15 19:15 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-08-15 13:05 - 2014-08-15 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KONAMI
2014-08-15 13:01 - 2014-08-15 19:17 - 00000000 ____D () C:\Program Files (x86)\KONAMI
2014-08-14 15:56 - 2014-06-30 18:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 15:56 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 15:56 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 15:56 - 2014-06-06 02:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 15:56 - 2014-03-09 17:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 15:56 - 2014-03-09 17:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 15:56 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 15:56 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 09:27 - 2014-07-15 23:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 09:27 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-14 09:27 - 2014-06-03 06:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 09:27 - 2014-06-03 06:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 09:27 - 2014-06-03 06:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 09:27 - 2014-06-03 06:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 09:27 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 09:27 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 09:27 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-14 09:26 - 2014-06-15 22:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 09:24 - 2014-07-13 22:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 09:24 - 2014-07-13 21:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-12 13:52 - 2014-08-17 16:41 - 00000000 ____D () C:\Users\Jess & Tony\Documents\CAPCOM
2014-08-12 13:31 - 2014-08-12 15:00 - 00000000 ____D () C:\Program Files (x86)\Ultra Street Fighter IV
2014-08-12 12:15 - 2014-09-11 12:02 - 00000000 ____D () C:\Users\Jess & Tony\Desktop\Jess
2014-08-12 11:38 - 2014-08-12 11:38 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-08-12 11:37 - 2014-08-12 11:37 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 15:07 - 2014-09-11 15:06 - 00022207 _____ () C:\Users\Jess & Tony\Desktop\FRST.txt
2014-09-11 15:07 - 2014-09-10 10:25 - 00000000 ____D () C:\FRST
2014-09-11 15:07 - 2014-09-10 09:58 - 00003056 _____ () C:\Windows\System32\Tasks\EVGAPrecision
2014-09-11 15:05 - 2013-08-22 21:45 - 00000000 ____D () C:\Program Files (x86)\AlienRespawn
2014-09-11 15:04 - 2014-09-11 15:04 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\AVAST Software
2014-09-11 15:02 - 2014-09-11 12:05 - 00000336 _____ () C:\Windows\setupact.log
2014-09-11 15:02 - 2013-08-27 13:47 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-11 15:02 - 2013-08-22 21:53 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-09-11 15:02 - 2013-08-22 21:53 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-09-11 15:02 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-11 15:01 - 2014-09-11 15:01 - 00168226 _____ () C:\Windows\PFRO.log
2014-09-11 15:01 - 2013-08-22 23:23 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-11 15:00 - 2013-08-22 23:21 - 01460969 _____ () C:\Windows\WindowsUpdate.log
2014-09-11 14:57 - 2014-09-11 14:57 - 02105856 _____ (Farbar) C:\Users\Jess & Tony\Desktop\FRST64.exe
2014-09-11 14:51 - 2013-08-27 14:12 - 00004184 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-09-11 14:22 - 2013-08-27 13:47 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-11 14:02 - 2013-08-22 21:28 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-11 13:48 - 2013-08-27 13:47 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-11 13:47 - 2014-09-03 12:57 - 00000000 ____D () C:\ProgramData\Origin
2014-09-11 12:46 - 2014-09-03 12:58 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-09-11 12:42 - 2013-10-22 16:23 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-09-11 12:18 - 2014-09-11 12:19 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-11 12:18 - 2014-09-11 12:19 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-11 12:18 - 2014-09-11 12:18 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-11 12:18 - 2013-08-27 14:12 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-09-11 12:18 - 2013-08-27 14:12 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-09-11 12:18 - 2013-08-27 14:12 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-09-11 12:18 - 2013-08-27 14:12 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-09-11 12:18 - 2013-08-27 14:12 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-09-11 12:18 - 2013-08-27 13:57 - 00426848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-09-11 12:18 - 2013-08-27 13:57 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-09-11 12:11 - 2014-09-11 12:11 - 00000000 ____D () C:\SUPERDelete
2014-09-11 12:11 - 2014-09-11 12:11 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-11 12:11 - 2013-08-27 13:57 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-09-11 12:11 - 2009-07-14 00:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-11 12:11 - 2009-07-14 00:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-11 12:10 - 2013-08-29 13:11 - 00000000 ___RD () C:\Users\Jess & Tony\Desktop\
2014-09-11 12:09 - 2014-09-11 11:57 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-09-11 12:05 - 2014-09-11 12:05 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-11 12:05 - 2014-09-11 11:58 - 00000522 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 86847409-44d1-4bc9-b3cb-ca6fb3acd42a.job
2014-09-11 12:05 - 2014-09-11 11:58 - 00000522 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 41d3b9bc-04ba-45a4-a12a-31eb53d3e637.job
2014-09-11 12:02 - 2014-08-12 12:15 - 00000000 ____D () C:\Users\Jess & Tony\Desktop\Jess
2014-09-11 11:58 - 2014-09-11 11:58 - 00003638 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 41d3b9bc-04ba-45a4-a12a-31eb53d3e637
2014-09-11 11:58 - 2014-09-11 11:58 - 00003564 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 86847409-44d1-4bc9-b3cb-ca6fb3acd42a
2014-09-11 11:58 - 2014-09-11 11:58 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\SUPERAntiSpyware.com
2014-09-11 11:57 - 2014-09-11 11:57 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-09-11 11:57 - 2014-09-11 11:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-09-11 11:57 - 2013-08-27 13:51 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\uTorrent
2014-09-11 11:56 - 2013-08-27 14:24 - 00000000 ____D () C:\Users\Jess & Tony\Desktop\Tonys
2014-09-11 11:50 - 2014-03-11 11:53 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-11 11:49 - 2013-12-03 18:49 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\Ventrilo
2014-09-11 11:49 - 2013-09-14 12:04 - 00000000 ____D () C:\Windows\Minidump
2014-09-11 11:49 - 2013-08-27 15:55 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\DAEMON Tools Lite
2014-09-11 11:49 - 2011-02-10 12:10 - 00775728 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-11 11:49 - 2011-02-10 10:02 - 00000000 ____D () C:\Windows\panther
2014-09-11 11:49 - 2009-07-14 01:13 - 00775728 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-11 11:48 - 2013-08-27 16:13 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-11 11:28 - 2013-08-27 16:13 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-11 11:19 - 2014-09-11 11:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-11 11:18 - 2014-09-11 11:18 - 00002792 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-09-11 11:18 - 2014-09-11 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-10 20:46 - 2013-08-27 17:35 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\vlc
2014-09-10 12:58 - 2014-08-18 19:35 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\Adobe
2014-09-10 12:57 - 2014-09-10 12:57 - 00000883 _____ () C:\Users\Jess & Tony\AppData\Local\recently-used.xbel
2014-09-10 12:57 - 2014-09-10 12:56 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\gtk-2.0
2014-09-10 12:57 - 2014-04-11 19:03 - 00000000 ____D () C:\Users\Jess & Tony\.gimp-2.8
2014-09-10 11:45 - 2014-09-10 11:45 - 00007597 _____ () C:\Users\Jess & Tony\AppData\Local\Resmon.ResmonCfg
2014-09-10 09:54 - 2013-08-27 13:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-10 09:15 - 2014-09-10 09:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-10 08:57 - 2014-01-14 16:27 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\Akamai
2014-09-09 19:15 - 2014-08-21 12:05 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\Glyph
2014-09-09 18:02 - 2013-08-22 21:28 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-09 18:02 - 2013-08-22 21:28 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-09 18:02 - 2013-08-22 21:28 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-07 18:22 - 2014-09-07 17:48 - 00000000 ____D () C:\Program Files (x86)\OGPlanet
2014-09-07 18:12 - 2014-09-07 17:48 - 00000000 ____D () C:\Users\Jess & Tony\Documents\OGPlanet Games
2014-09-07 13:19 - 2014-09-07 13:19 - 00000000 ____D () C:\Users\Jess & Tony\dwhelper
2014-09-07 13:19 - 2013-08-27 01:33 - 00000000 ____D () C:\Users\Jess & Tony
2014-09-05 10:04 - 2014-09-05 10:04 - 00000000 ____D () C:\Gundam Online
2014-09-05 01:34 - 2014-03-07 11:32 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server
2014-09-05 01:34 - 2014-03-07 11:31 - 00000000 ____D () C:\Program Files (x86)\EVGA Precision X
2014-09-04 12:38 - 2014-09-04 11:21 - 00000000 ____D () C:\Program Files (x86)\Dead Rising 3
2014-09-04 11:54 - 2013-08-27 21:40 - 00000000 ____D () C:\Users\Jess & Tony\Documents\My Games
2014-09-04 11:52 - 2014-09-04 11:52 - 00001941 _____ () C:\Users\Public\Desktop\Dead Rising 3.lnk
2014-09-04 11:52 - 2014-09-04 11:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Rising 3
2014-09-03 15:26 - 2014-09-03 12:59 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\Origin
2014-09-03 13:03 - 2014-09-03 13:03 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-09-03 13:03 - 2014-09-03 12:59 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Local\Origin
2014-09-03 13:03 - 2014-09-03 12:58 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-09-03 12:58 - 2014-09-03 12:58 - 00000981 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-08-31 12:47 - 2013-10-04 08:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-08-31 12:47 - 2013-08-22 23:22 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-08-31 12:47 - 2013-08-22 21:45 - 00000000 ____D () C:\Temp
2014-08-31 12:46 - 2013-08-22 23:21 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-08-29 03:20 - 2009-07-14 00:45 - 04918376 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-28 13:01 - 2014-08-28 11:47 - 00000486 _____ () C:\Users\Jess & Tony\Documents\ax_files.xml
2014-08-28 11:38 - 2014-08-28 11:38 - 00000000 ____D () C:\Users\Jess & Tony\Documents\Alcohol 120%
2014-08-28 11:30 - 2014-08-28 11:30 - 00001182 _____ () C:\Users\Public\Desktop\Alcohol 120%.lnk
2014-08-28 11:30 - 2014-08-28 11:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcohol 120%
2014-08-28 11:28 - 2014-08-28 11:28 - 00000000 ____D () C:\Program Files (x86)\Alcohol Soft
2014-08-28 11:25 - 2013-08-27 15:56 - 00381440 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-08-27 11:20 - 2013-09-11 14:26 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-27 11:20 - 2013-09-11 14:26 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-08-27 11:19 - 2014-08-27 11:19 - 00002134 _____ () C:\Users\Jess & Tony\Desktop\The Forest 0.06.lnk
2014-08-27 11:19 - 2014-08-27 11:19 - 00000000 ____D () C:\Program Files (x86)\GMT-MAX.ORG
2014-08-23 11:52 - 2014-08-22 13:07 - 00000000 ____D () C:\Users\Jess & Tony\Documents\ArcheAge
2014-08-22 22:07 - 2014-08-28 09:32 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 21:45 - 2014-08-28 09:32 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-22 20:59 - 2014-08-28 09:32 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 18:17 - 2009-07-14 01:08 - 00032606 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-22 15:48 - 2014-06-15 17:20 - 00000000 ____D () C:\Program Files (x86)\Assassins Creed IV Black Flag
2014-08-22 15:44 - 2013-10-29 20:14 - 00000000 ____D () C:\Games
2014-08-22 15:40 - 2009-07-14 01:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-22 15:39 - 2014-08-09 14:07 - 00000000 ____D () C:\Program Files (x86)\Total War ROME II
2014-08-22 15:39 - 2014-06-04 12:30 - 00000000 ____D () C:\Program Files (x86)\TSEV Skyrim LE
2014-08-22 15:39 - 2013-11-17 09:34 - 00000000 ____D () C:\Program Files (x86)\XCOM Enemy Within
2014-08-22 15:38 - 2014-04-21 17:07 - 00000000 ____D () C:\Users\Public\Documents\S.T.A.L.K.E.R. - Call of Pripyat
2014-08-22 15:38 - 2014-04-12 19:06 - 00000000 ____D () C:\Program Files (x86)\LEGO - The Hobbit
2014-08-22 15:37 - 2013-10-22 14:18 - 00000000 ____D () C:\Program Files (x86)\LucasArts
2014-08-21 12:05 - 2014-08-21 12:05 - 00000000 ____D () C:\ProgramData\Glyph
2014-08-19 14:05 - 2014-09-11 11:51 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-19 13:39 - 2014-09-11 11:51 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-19 13:02 - 2014-08-17 16:27 - 00000000 ____D () C:\Program Files (x86)\Resident Evil 6
2014-08-19 12:26 - 2014-08-19 00:49 - 00000000 ____D () C:\Users\Jess & Tony\Desktop\RE6MODS
2014-08-19 03:01 - 2014-08-19 00:55 - 00000000 ____D () C:\Users\Jess & Tony\Desktop\[PC]+Resident+Evil+6+by+NapalmGuy
2014-08-19 01:47 - 2014-08-19 01:47 - 00001462 _____ () C:\Users\Jess & Tony\Desktop\Resident Evil 6.lnk
2014-08-18 19:01 - 2014-09-11 11:51 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-18 18:29 - 2014-09-11 11:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-18 18:29 - 2014-09-11 11:51 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-18 18:26 - 2014-09-11 11:51 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-18 18:20 - 2014-09-11 11:51 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-18 18:19 - 2014-09-11 11:51 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-18 18:15 - 2014-09-11 11:51 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-18 18:15 - 2014-09-11 11:51 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-18 18:14 - 2014-09-11 11:51 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-18 18:14 - 2014-09-11 11:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-18 18:08 - 2014-09-11 11:51 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-18 18:08 - 2014-09-11 11:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-18 18:08 - 2014-09-11 11:51 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-18 18:05 - 2014-09-11 11:51 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-18 18:03 - 2014-09-11 11:51 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-18 18:03 - 2014-09-11 11:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-18 18:03 - 2014-09-11 11:51 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-18 17:57 - 2014-09-11 11:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-18 17:56 - 2014-09-11 11:51 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-18 17:51 - 2014-09-11 11:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-18 17:46 - 2014-09-11 11:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-18 17:45 - 2014-09-11 11:51 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-18 17:45 - 2014-09-11 11:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-18 17:44 - 2014-09-11 11:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-18 17:44 - 2014-09-11 11:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-18 17:42 - 2014-09-11 11:51 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-18 17:40 - 2014-09-11 11:51 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-18 17:39 - 2014-09-11 11:51 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-18 17:39 - 2014-09-11 11:51 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-18 17:39 - 2014-09-11 11:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-18 17:38 - 2014-09-11 11:51 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-18 17:37 - 2014-09-11 11:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-18 17:36 - 2014-09-11 11:51 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-18 17:35 - 2014-09-11 11:51 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-18 17:27 - 2014-09-11 11:51 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-18 17:25 - 2014-09-11 11:51 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-18 17:25 - 2014-09-11 11:51 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-18 17:23 - 2014-09-11 11:51 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-18 17:23 - 2014-09-11 11:51 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-18 17:22 - 2014-09-11 11:51 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-18 17:19 - 2014-09-11 11:51 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-18 17:17 - 2014-09-11 11:51 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-18 17:17 - 2014-09-11 11:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-18 17:16 - 2014-09-11 11:51 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-18 17:15 - 2014-09-11 11:51 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-18 17:15 - 2014-09-11 11:51 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-18 17:09 - 2014-09-11 11:51 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-18 17:08 - 2014-09-11 11:51 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-18 17:07 - 2014-09-11 11:51 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-18 16:55 - 2014-09-11 11:51 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-18 16:46 - 2014-09-11 11:51 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-18 16:38 - 2014-09-11 11:51 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-18 16:38 - 2014-09-11 11:51 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-18 16:36 - 2014-09-11 11:51 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-17 16:41 - 2014-08-12 13:52 - 00000000 ____D () C:\Users\Jess & Tony\Documents\CAPCOM
2014-08-16 15:43 - 2014-08-16 15:43 - 00000911 _____ () C:\Users\Public\Desktop\SpaceEngine.lnk
2014-08-16 15:43 - 2014-08-16 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpaceEngine
2014-08-15 19:23 - 2014-08-15 19:23 - 00003292 _____ () C:\Windows\System32\Tasks\{2B55AAC6-EEB1-48BC-B0AB-D134ECF0BB0E}
2014-08-15 19:18 - 2014-08-15 19:15 - 00000000 ____D () C:\Program Files\005
2014-08-15 19:17 - 2014-08-15 19:16 - 00000000 ____D () C:\Program Files\57F737B4-ACBE-4AFB-87B3-6DC08B80F484
2014-08-15 19:17 - 2014-08-15 19:16 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-08-15 19:17 - 2014-08-15 13:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KONAMI
2014-08-15 19:17 - 2014-08-15 13:01 - 00000000 ____D () C:\Program Files (x86)\KONAMI
2014-08-15 19:17 - 2013-08-22 21:33 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-15 19:17 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration
2014-08-15 19:15 - 2014-08-15 19:15 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-08-15 13:06 - 2014-04-25 14:08 - 00000000 ____D () C:\Users\Jess & Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-08-14 21:33 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-08-14 16:07 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-12 15:00 - 2014-08-12 13:31 - 00000000 ____D () C:\Program Files (x86)\Ultra Street Fighter IV
2014-08-12 11:39 - 2014-03-11 11:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-08-12 11:38 - 2014-08-12 11:38 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-08-12 11:38 - 2010-11-21 03:16 - 00000000 ____D () C:\Windows\ShellNew
2014-08-12 11:37 - 2014-08-12 11:37 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 10:40

==================== End Of Log ============================



BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:23 AM

Posted 11 September 2014 - 02:34 PM

This seems to be in vogue now.. :)


Please download this attached Attached File  fixlist.txt   150bytes   4 downloads and save it in the same directory as FRST.
  • Start FRST with Administrator privileges.
  • Press the Fix button.
  • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.
    Please copy and paste its contents in your next reply.


#3 Valmont2636

Valmont2636
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:23 AM

Posted 11 September 2014 - 02:49 PM

Oh man, thank you. Worked like a charm.

Looks like i'm gonna have to put my pc in lock-down mode lol

 

Again, thank you so much.



#4 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:23 AM

Posted 11 September 2014 - 03:07 PM

You're welcome. Take care.

My help is free for everybody.
If you want to support me fighting against malware or buy me a beer for the assistance you received, then you can consider a donation: btn_donate_SM.gif.
Thank you!

#5 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:23 AM

Posted 19 September 2014 - 02:57 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users