Jump to content

How to unistall NCDownloader


Recommended Posts

DDS.TXT

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 

Internet Explorer: 10.0.9200.16686  BrowserJavaVersion: 10.45.2

Run by Alex's babby at 21:47:58 on 2013-10-24

Microsoft Windows 7 Ultimate   6.1.7601.1.1252.44.1033.18.4030.1972 [GMT 1:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\system32\atieclxx.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Intel\iCLS Client\HeciServer.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\viakaraokesrv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\Steam\Steam.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Common Files\Steam\SteamService.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\Alex's babby\AppData\Local\Akamai\netsession_win.exe

C:\Users\Alex's babby\AppData\Local\Akamai\netsession_win.exe

C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe

C:\Windows\system32\wuauclt.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\AUDIODG.EXE

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\msiexec.exe

C:\Windows\System32\svchost.exe -k swprv

C:\Windows\SysWOW64\DllHost.exe

C:\Users\ALEX'S~1\AppData\Local\Temp\~nsu.tmp\Au_.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.


mWinlogon: Userinit = userinit.exe

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

uRun: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent

uRun: [Dxtory Update Checker 2.0] C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe

uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart

uRun: [MobileAppSync] "C:\Program Files (x86)\Mobile App Sync\D2MClient.exe"

uRun: [Akamai NetSession Interface] "C:\Users\Alex's babby\AppData\Local\Akamai\netsession_win.exe"

uRun: [MurGee.com Auto Clicker] C:\Program Files (x86)\Auto Clicker\AutoClicker.exe :silent

mRun: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

mRun: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

dRunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\NCDOWN~1.LNK - C:\Program Files (x86)\Solibo Ltd\NCdownloader\NCdownloader.exe

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

Trusted Zone: clonewarsadventures.com

Trusted Zone: freerealms.com

Trusted Zone: soe.com

Trusted Zone: sony.com

TCP: NameServer = 192.168.0.1

TCP: Interfaces\{4B8C788E-84E0-4F9D-815D-2AD09CA409D9} : DHCPNameServer = 192.168.0.1

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

AppInit_DLLs= c:\progra~2\contin~1\sprote~1.dll c:\progra~2\websea~1\sprote~1.dll

SSODL: WebCheck - <orphaned>

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL

x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-SSODL: WebCheck - <orphaned>

x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

Hosts: 127.0.0.1 validation.sls.microsoft.com

.

============= SERVICES / DRIVERS ===============

.

R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-5-27 65336]

R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-5-27 189936]

R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-5-10 19264]

R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-5-27 1030952]

R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-5-27 378944]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-8-30 239616]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-5-27 33400]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-5-27 80816]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-5-27 46808]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-6-19 634632]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-5-10 166720]

R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-5-10 365376]

R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2013-5-10 27760]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-7-5 96256]

R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-5-10 357184]

R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-5-10 789824]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-5-10 726160]

R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2011-11-12 2182768]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]

S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-4-19 161384]

S3 BEService;BattlEye Service;C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2013-8-21 49152]

S3 Desura Install Service;Desura Install Service;C:\Program Files (x86)\Common Files\Desura\desura_service.exe [2013-5-27 131912]

S3 OSFMount;OSFMount;C:\Program Files\OSFMount\OSFMount.sys [2013-5-14 540224]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-5-27 19456]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-5-27 57856]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-5-12 1255736]

S4 DAUpdaterSvc;Dragon Age: Origins - Content Updater;C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe --> C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [?]

.

=============== File Associations ===============

.

FileExt: .exe: exefile="C:\Program Files (x86)\Red Gate\.NET Reflector\Desktop 8.1\Reflector.exe" /share "%1" [default=Browse with .NET Reflector  - 'Open' doesn't exist]

.

=============== Created Last 30 ================

.

2013-10-24 20:44:13 -------- d-----w- C:\Windows\System32\appmgmt

2013-10-24 15:49:58 -------- d-----w- C:\Users\Alex's babby\.SquashOccurrences

2013-10-19 17:25:38 -------- d-----w- C:\Users\Alex's babby\AppData\Local\Avg2014

2013-10-19 17:08:57 -------- d-----w- C:\Users\Alex's babby\AppData\Roaming\TuneUp Software

2013-10-19 17:07:46 -------- d-----w- C:\ProgramData\TuneUp Software

2013-10-19 17:07:41 -------- d-sh--w- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}

2013-10-19 17:07:41 -------- d--h--w- C:\ProgramData\Common Files

2013-10-19 17:04:08 -------- d-----w- C:\Users\Alex's babby\AppData\Roaming\OpenCandy

2013-10-19 17:04:08 -------- d-----w- C:\Program Files (x86)\Cheat Engine 6.3

2013-10-17 21:04:23 -------- d-----w- C:\ProgramData\Oracle

2013-10-17 21:04:10 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2013-10-13 17:45:32 9694160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E28D2F31-B279-4C28-BB6A-D4A74E9E870B}\mpengine.dll

2013-10-13 17:23:57 461312 ----a-w- C:\Windows\System32\scavengeui.dll

2013-10-13 17:23:13 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2013-10-13 17:23:13 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys

2013-10-13 17:23:13 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2013-10-13 17:23:13 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2013-10-13 17:23:13 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys

2013-10-13 17:23:13 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2013-10-13 17:23:13 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2013-10-06 18:38:46 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-10-06 18:38:46 -------- d-----w- C:\Program Files\iTunes

2013-10-06 18:38:46 -------- d-----w- C:\Program Files\iPod

2013-10-06 18:38:46 -------- d-----w- C:\Program Files (x86)\iTunes

2013-10-05 18:45:19 -------- d-----w- C:\Program Files (x86)\AMD AVT

2013-10-05 16:49:58 -------- d-----w- C:\Users\Alex's babby\AppData\Local\ESN

2013-10-05 11:59:09 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller

2013-10-05 11:59:04 -------- d-----w- C:\Program Files (x86)\Battlelog Web Plugins

2013-10-05 11:58:16 -------- d-----w- C:\ProgramData\Package Cache

2013-10-01 21:33:55 -------- d-----w- C:\Users\Alex's babby\AppData\Local\Chromium

2013-09-30 17:10:46 -------- d-----w- C:\Users\Alex's babby\AppData\Roaming\Curse Advertising

2013-09-27 17:46:23 424448 ----a-w- C:\Windows\System32\KernelBase.dll

2013-09-27 14:55:45 3130440 ----a-w- C:\Windows\SysWow64\pbsvc_blr.exe

2013-09-27 14:55:31 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation

.

==================== Find3M  ====================

.

2013-10-17 21:22:37 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-10-17 21:22:37 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-10-06 09:37:04 214392 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe

2013-10-06 09:37:04 214392 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0

2013-10-05 11:58:32 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe

2013-10-03 18:06:52 283032 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr

2013-09-20 21:27:21 675952 ----a-w- C:\Windows\System32\VIASysFx.dll

2013-09-20 21:27:21 2915440 ----a-w- C:\Windows\System32\VIAPropPageExt.dll

2013-09-20 21:27:20 2182768 ----a-w- C:\Windows\System32\drivers\viahduaa.sys

2013-09-20 21:27:04 414632 ------w- C:\Windows\difxapi.dll

2013-09-14 01:10:19 497152 ----a-w- C:\Windows\System32\drivers\afd.sys

2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll

2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll

2013-09-05 14:22:30 3076208 ----a-w- C:\Users\Alex's babby\worldpainter_64_1.5.5.exe

2013-08-31 00:14:10 156712 ----a-w- C:\Windows\System32\amdhcp64.dll

2013-08-31 00:14:10 141256 ----a-w- C:\Windows\SysWow64\amdhcp32.dll

2013-08-31 00:14:08 78432 ----a-w- C:\Windows\System32\atimpc64.dll

2013-08-31 00:14:08 78432 ----a-w- C:\Windows\System32\amdpcom64.dll

2013-08-31 00:14:06 71704 ----a-w- C:\Windows\SysWow64\atimpc32.dll

2013-08-31 00:14:06 71704 ----a-w- C:\Windows\SysWow64\amdpcom32.dll

2013-08-31 00:14:00 142792 ----a-w- C:\Windows\System32\atiuxp64.dll

2013-08-31 00:14:00 125824 ----a-w- C:\Windows\SysWow64\atiuxpag.dll

2013-08-31 00:13:58 97984 ----a-w- C:\Windows\SysWow64\atiu9pag.dll

2013-08-31 00:13:58 114488 ----a-w- C:\Windows\System32\atiu9p64.dll

2013-08-31 00:13:56 1233080 ----a-w- C:\Windows\System32\aticfx64.dll

2013-08-31 00:13:54 1027544 ----a-w- C:\Windows\SysWow64\aticfx32.dll

2013-08-31 00:13:50 9464840 ----a-w- C:\Windows\System32\atidxx64.dll

2013-08-31 00:13:46 8215992 ----a-w- C:\Windows\SysWow64\atidxx32.dll

2013-08-31 00:13:42 6176008 ----a-w- C:\Windows\SysWow64\atiumdva.dll

2013-08-31 00:13:38 6189416 ----a-w- C:\Windows\SysWow64\atiumdag.dll

2013-08-31 00:13:32 6767240 ----a-w- C:\Windows\System32\atiumd6a.dll

2013-08-31 00:13:30 7256496 ----a-w- C:\Windows\System32\atiumd64.dll

2013-08-31 00:11:28 12528640 ----a-w- C:\Windows\System32\drivers\atikmdag.sys

2013-08-30 23:48:44 127488 ----a-w- C:\Windows\System32\coinst_13.152.dll

2013-08-30 23:48:04 229376 ----a-w- C:\Windows\System32\clinfo.exe

2013-08-30 23:47:46 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll

2013-08-30 23:47:40 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll

2013-08-30 23:47:36 86528 ----a-w- C:\Windows\System32\OVDecode64.dll

2013-08-30 23:47:30 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll

2013-08-30 23:47:14 28192256 ----a-w- C:\Windows\System32\amdocl64.dll

2013-08-30 23:45:04 23760896 ----a-w- C:\Windows\SysWow64\amdocl.dll

2013-08-30 23:43:12 63488 ----a-w- C:\Windows\System32\OpenCL.dll

2013-08-30 23:43:08 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll

2013-08-30 23:35:00 25387520 ----a-w- C:\Windows\System32\atio6axx.dll

2013-08-30 23:18:20 368640 ----a-w- C:\Windows\System32\atiapfxx.exe

2013-08-30 23:18:12 62464 ----a-w- C:\Windows\System32\aticalrt64.dll

2013-08-30 23:18:10 52224 ----a-w- C:\Windows\SysWow64\aticalrt.dll

2013-08-30 23:18:02 55808 ----a-w- C:\Windows\System32\aticalcl64.dll

2013-08-30 23:18:00 49152 ----a-w- C:\Windows\SysWow64\aticalcl.dll

2013-08-30 23:17:46 15716352 ----a-w- C:\Windows\System32\aticaldd64.dll

2013-08-30 23:14:36 14302208 ----a-w- C:\Windows\SysWow64\aticaldd.dll

2013-08-30 23:13:58 21400064 ----a-w- C:\Windows\SysWow64\atioglxx.dll

2013-08-30 22:59:02 442368 ----a-w- C:\Windows\System32\atidemgy.dll

2013-08-30 22:58:50 26112 ----a-w- C:\Windows\System32\atimuixx.dll

2013-08-30 22:58:44 571904 ----a-w- C:\Windows\System32\atieclxx.exe

2013-08-30 22:57:54 239616 ----a-w- C:\Windows\System32\atiesrxx.exe

2013-08-30 22:56:30 190976 ----a-w- C:\Windows\System32\atitmm64.dll

2013-08-30 22:37:32 96256 ----a-w- C:\Windows\System32\amdave64.dll

2013-08-30 22:37:24 90624 ----a-w- C:\Windows\SysWow64\amdave32.dll

2013-08-30 22:37:10 89088 ----a-w- C:\Windows\System32\atisamu64.dll

2013-08-30 22:37:02 80896 ----a-w- C:\Windows\SysWow64\atisamu32.dll

2013-08-30 22:33:22 784384 ----a-w- C:\Windows\System32\atiadlxx.dll

2013-08-30 22:33:12 594944 ----a-w- C:\Windows\SysWow64\atiadlxy.dll

2013-08-30 22:33:08 43520 ----a-w- C:\Windows\System32\drivers\ati2erec.dll

2013-08-30 22:32:58 75264 ----a-w- C:\Windows\System32\atig6pxx.dll

2013-08-30 22:32:54 69632 ----a-w- C:\Windows\SysWow64\atiglpxx.dll

2013-08-30 22:32:54 69632 ----a-w- C:\Windows\System32\atiglpxx.dll

2013-08-30 22:32:50 100352 ----a-w- C:\Windows\System32\atig6txx.dll

2013-08-30 22:32:42 96768 ----a-w- C:\Windows\SysWow64\atigktxx.dll

2013-08-30 22:32:32 618496 ----a-w- C:\Windows\System32\drivers\atikmpag.sys

2013-08-30 18:58:50 51200 ----a-w- C:\Windows\System32\kdbsdk64.dll

2013-08-30 18:53:48 38912 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll

2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll

2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll

2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll

2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll

2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll

2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll

2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll

2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll

2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll

2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe

2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe

2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll

2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe

2013-08-28 01:21:06 3155968 ----a-w- C:\Windows\System32\win32k.sys

2013-08-10 05:22:18 2241024 ----a-w- C:\Windows\System32\wininet.dll

2013-08-10 05:20:59 3959296 ----a-w- C:\Windows\System32\jscript9.dll

2013-08-10 05:20:55 67072 ----a-w- C:\Windows\System32\iesetup.dll

2013-08-10 05:20:55 136704 ----a-w- C:\Windows\System32\iesysprep.dll

2013-08-10 03:59:10 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll

2013-08-10 03:58:09 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll

2013-08-10 03:58:06 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll

2013-08-10 03:58:06 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll

2013-08-10 03:17:38 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

2013-08-10 03:07:50 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb

.

============= FINISH: 21:48:28.91 ===============

 

 

ATTACH.TXT

 


.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Ultimate 

Boot Device: \Device\HarddiskVolume1

Install Date: 10/05/2013 18:58:54

System Uptime: 24/10/2013 21:26:05 (0 hours ago)

.

Motherboard: ASUSTeK COMPUTER INC. |  | P8B75-M LX

Processor: Intel® Core i5-3570 CPU @ 3.40GHz | LGA1155 | 3401/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 931 GiB total, 522.723 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP97: 17/10/2013 22:03:00 - Installed Java 7 Update 45

RP98: 20/10/2013 11:41:42 - Removed TuneUp Utilities 2014

RP99: 20/10/2013 11:52:03 - Removed TuneUp Utilities 2014 (en-GB)

RP100: 24/10/2013 21:43:48 - Removed DevExtras - Print Screen

.

==== Installed Programs ======================

.

.NET Reflector Desktop

7-Zip 9.20 (x64 edition)

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Akamai NetSession Interface

AMD Accelerated Video Transcoding

AMD APP SDK Runtime

AMD Catalyst Control Center

AMD Catalyst Install Manager

AMD Drag and Drop Transcoding

AMD Media Foundation Decoders

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Arma 2

Arma 2: British Armed Forces

ARMA 2: British Armed Forces - Data cache removal

Arma 2: DayZ Mod

Arma 2: Operation Arrowhead

Arma 2: Operation Arrowhead Beta

Arma 2: Private Military Company

ARMA 2: Private Military Company - Data cache removal

ASIO4ALL

µTorrent

Audacity 2.0.3

avast! Free Antivirus

Battlefield 4™ Beta

Battlelog Web Plugins

BattlEye for OA Uninstall

BattlEye Uninstall

Blacklight: Retribution

Bonjour

Call of Duty® 4 - Modern Warfare

Call of Duty® 4 - Modern Warfare 1.7 Patch

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

CCleaner

Cheat Engine 6.3

ContinueToSave 1.74

Counter-Strike: Source

Curse Client

Day of Defeat: Source

DayZ Commander

Desura

Dishonored

Dota 2

Dxtory version 2.0.119

EpicBot

ESN Sonar

Fallout: New Vegas

Far Cry 3

Far Cry 3 Blood Dragon

FL Studio 10

Forge

Fraps v3.5.99 Build 15618

Garry's Mod

Gear Up

Ghost Recon Online (EU)

Google Chrome

Google Drive

Google Update Helper

GRID

Half-Life 2

Half-Life 2: Episode One

Half-Life 2: Episode Two

Half-Life 2: Lost Coast

Hammerfight

Hawken

Heroes & Generals

IL Download Manager

Intel® Control Center

Intel® Management Engine Components

Intel® USB 3.0 eXtensible Host Controller Driver

Intel® Trusted Connect Service Client

iTunes

Java 7 Update 21 (64-bit)

Java 7 Update 45

Java Auto Updater

Lagarith Lossless Codec (1.3.27)

Machinarium

Microsoft .NET Framework 4.5

Microsoft Games for Windows - LIVE 

Microsoft Games for Windows - LIVE Redistributable

Microsoft Office Access MUI (English) 2010

Microsoft Office Access Setup Metadata MUI (English) 2010

Microsoft Office Excel MUI (English) 2010

Microsoft Office Groove MUI (English) 2010

Microsoft Office InfoPath MUI (English) 2010

Microsoft Office Office 64-bit Components 2010

Microsoft Office OneNote MUI (English) 2010

Microsoft Office Outlook MUI (English) 2010

Microsoft Office PowerPoint MUI (English) 2010

Microsoft Office Professional Plus 2010

Microsoft Office Proof (English) 2010

Microsoft Office Proof (French) 2010

Microsoft Office Proof (Spanish) 2010

Microsoft Office Proofing (English) 2010

Microsoft Office Publisher MUI (English) 2010

Microsoft Office Shared 64-bit MUI (English) 2010

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010

Microsoft Office Shared MUI (English) 2010

Microsoft Office Shared Setup Metadata MUI (English) 2010

Microsoft Office Word MUI (English) 2010

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727

Microsoft XNA Framework Redistributable 4.0

Minecraft Note Block Studio version 3.1.3

MSVCRT Redists

NCDownloader

Nexuiz

Nexus Mod Manager

NVIDIA PhysX

OpenAL

Origin

OSFMount v1.5

PCSX2 - Playstation 2 Emulator

PE Explorer 1.99 R6

PlanetSide 2

Platform

Portal 2

PunkBuster Services

Quake Live Mozilla Plugin

Raptr

Realtek Ethernet Controller Driver

RIDGE RACER™ Driftopia

Search Assistant WebSearch 1.74

Security Update for Microsoft .NET Framework 4.5 (KB2737083)

Security Update for Microsoft .NET Framework 4.5 (KB2742613)

Security Update for Microsoft .NET Framework 4.5 (KB2789648)

Security Update for Microsoft .NET Framework 4.5 (KB2833957)

Security Update for Microsoft .NET Framework 4.5 (KB2840642v2)

Security Update for Microsoft .NET Framework 4.5 (KB2861208)

Sid Meier's Civilization V

Skype™ 6.3

Sniper Elite V2

Source Edit 4.0

Source SDK Base 2006

Source SDK Base 2007

Spelunky HD 1.0

Steam

System Requirements Lab CYRI

Team Fortress 2

Terraria

Unity Web Player

Update for Microsoft .NET Framework 4.5 (KB2750147)

Update for Microsoft .NET Framework 4.5 (KB2805221)

Update for Microsoft .NET Framework 4.5 (KB2805226)

Uplay

Vegas Pro 12.0 (64-bit)

VIA Platform Device Manager

VLC media player 2.0.8

WinRAR 5.00 Beta 3 (64-bit)

WorldPainter 1.5.5

.

==== Event Viewer Messages From Past Week ========

.

20/10/2013 21:31:39, Error: bowser [8003]  - The master browser has received a server announcement from the computer MACBOOKPRO-5D8C that believes that it is the master browser for the domain on transport NetBT_Tcpip_{4B8C788E-84E0-4F9D-815D-2AD09CA409D9}. The master browser is stopping or an election is being forced.

.

==== End Of File ===========================

 

Link to post
Share on other sites

Welcome to the forum.

Uninstall NCDownloader from your add/remove programs if possible.

Then.......

Lets clean out any adware now: (this will require a reboot so save all your work)

Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.

    Vista/Windows 7/8 users right-click and select Run As Administrator

  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • When it's done you'll see: Pending: Please uncheck elements you don't want removed.
  • Now click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • Look over the log especially under Files/Folders for any program you want to save.
  • If there's a program you may want to save, just uncheck it from AdwCleaner.
  • If you're not sure, post the log for review. (all items found are adware/spyware/foistware)
  • If you're ready to clean it all up.....click the Clean button.
  • After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • Items that are deleted are moved to the Quarantine Folder: C:\AdwCleaner\Quarantine
  • To restore an item that has been deleted:
  • Go to Tools > Quarantine Manager > check what you want restored > now click on Restore.
Then..................

Open up Malwarebytes > Settings Tab > Scanner Settings > Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report.

Make sure that everything is checked, and click Remove Selected.

Please let me know how computer is running now, MrC

Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.