Jump to content

What is this?

swovelzj

By swovelzj
in Resolved Malware Removal Logs

 Share

Recommended Posts

swovelzj

swovelzj

Posted
Posted

So i have been playing a game called tibia for a few years now, and i got 3 accounts, and today i logged onto all 3, (these accounts are never shared) and i come back on later and all of my stuff and money is gone... I think I may have got a keylogger somewhere on my pc and i need help, ive downloaded malwarebytes and doing full system scan, can someone give me some more pointers?

Link to post
Share on other sites
swovelzj

swovelzj

Posted
  • Author
Posted

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 

Internet Explorer: 11.0.9600.16428
Run by Zachary at 3:31:31 on 2014-01-07
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.16267.11344 [GMT -5:00]
.
AV: AVG Internet Security 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Internet Security 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
.
============== Running Processes ===============
.
E:\AVG\avgrsa.exe
E:\AVG\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\SysWOW64\ASGT.exe
E:\AVG\avgfws.exe
E:\AVG\avgidsagent.exe
E:\AVG\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ASRock\XFast LAN\spd.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files (x86)\Pingzapper\PZService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
E:\AVG\avgnsa.exe
E:\AVG\avgemca.exe
E:\AVG\avgcsrva.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxpers.exe
C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
C:\Windows\System32\rundll32.exe
C:\Windows\SysWOW64\HsMgr.exe
C:\Windows\system\HsMgr64.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\ASUS Xonar DG Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Origin\Origin.exe
E:\Steam\Steam.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\XFastUSB\XFastUsb.exe
C:\Program Files (x86)\Corsair\CorsairLINK2\CorsairLINK_HardwareMonitor.exe
C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
E:\AVG\avgui.exe
E:\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [ASRockXTU] <no file>
mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
mRun: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [XFastUSB] "C:\Program Files (x86)\XFastUSB\XFastUsb.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [THX TruStudio NB Settings] "C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" /r
mRun: [updReg] C:\Windows\UpdReg.EXE
mRun: [AVG_UI] "E:\AVG\avgui.exe" /TRAYONLY
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "E:\QuickTime\QTTask.exe" -atboottime
mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [iTunesHelper] "E:\iTunes\iTunesHelper.exe"
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
LSP: %SystemRoot%\system32\networkdlllsp.dll
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{BBBFD8FF-6D42-4B5E-93AB-AD09FD8CF318} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{BF224583-1B87-4889-AC5B-506E6209C1F8} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{BF224583-1B87-4889-AC5B-506E6209C1F8}\C6F657B6F63723 : DHCPNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [XFast LAN] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe
x64-Run: [THXCfg64] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\THXCfg64.dll,RunDLLEntry THXCfg64
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [Cmaudio8788] C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
x64-Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe Envoke
x64-Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe Envoke
x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Zachary\AppData\Roaming\Mozilla\Firefox\Profiles\5z4ugwsw.default\
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Users\Zachary\AppData\Roaming\raidcall\plugins\nprcplugin.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
FF - plugin: E:\iTunes\Mozilla Plugins\npitunes.dll
FF - plugin: E:\QuickTime\Plugins\npqtplugin.dll
FF - plugin: E:\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: E:\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: E:\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: E:\QuickTime\Plugins\npqtplugin5.dll
.
============= SERVICES / DRIVERS ===============
.
R0 asahci64;asahci64;C:\Windows\System32\drivers\asahci64.sys [2011-9-21 49760]
R0 AsrRamDisk;AsrRamDisk;C:\Windows\System32\drivers\AsrRamDisk.sys [2013-7-9 31016]
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2013-7-20 71480]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2013-7-20 311608]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2013-7-1 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2013-10-23 45880]
R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2013-7-9 647736]
R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2013-7-9 28216]
R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-7-9 16152]
R1 AsrAppCharger;AsrAppCharger;C:\Windows\System32\drivers\AsrAppCharger.sys [2013-7-9 17192]
R1 Avgfwfd;AVG network filter service;C:\Windows\System32\drivers\avgfwd6a.sys [2012-9-4 50296]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2013-11-25 246072]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2013-7-20 206648]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-3-21 240952]
R1 FNETURPX;FNETURPX;C:\Windows\System32\drivers\FNETURPX.SYS [2013-7-9 16648]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-10-10 144152]
R2 ASGT;ASGT;C:\Windows\SysWOW64\ASGT.exe [2012-1-17 55296]
R2 avgfws;AVG Firewall;E:\AVG\avgfws.exe [2013-10-23 1432080]
R2 AVGIDSAgent;AVGIDSAgent;E:\AVG\avgidsagent.exe [2013-7-4 4939312]
R2 avgwd;AVG WatchDog;E:\AVG\avgwdsvc.exe [2013-11-20 283136]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-7-9 14904]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-6-19 634632]
R2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2013-7-9 129856]
R2 ISCTAgent;ISCT Always Updated Agent;C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2012-2-9 133632]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-7-9 166720]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-7 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-7 701512]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-7 15129376]
R2 PingzapperSvc;Pingzapper Service;C:\Program Files (x86)\Pingzapper\PZService.exe [2013-12-18 679424]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-11-11 414496]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-7-9 365344]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-3-4 126952]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-3-4 390632]
R3 cmudaxp;ASUS Xonar DG Audio Interface;C:\Windows\System32\drivers\cmudaxp.sys [2013-7-12 2725376]
R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\drivers\ikbevent.sys [2012-2-9 25536]
R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\drivers\imsevent.sys [2012-2-9 25536]
R3 ISCT;Intel® Smart Connect Technology Device Driver;C:\Windows\System32\drivers\ISCTD64.sys [2012-2-9 44992]
R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-7-9 356120]
R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-7-9 788760]
R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2011-5-9 425000]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-1-7 25928]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2013-12-17 39200]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\drivers\WPRO_41_2001.sys [2013-7-9 34752]
R4 IOMap;IOMap;C:\Windows\System32\drivers\IOMap64.sys [2013-7-9 23680]
S1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408]
S3 CMUSBDAC;USB Audio Class 1.0 and 2.0 DAC Device Driver;C:\Windows\System32\drivers\CMUSBDAC.sys [2013-5-9 358400]
S3 FNETTBOH_305;FNETTBOH_305;C:\Windows\System32\drivers\FNETTBOH_305.SYS [2013-12-15 32320]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-11 111616]
S3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-7-9 342528]
S3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2013-7-9 32344]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\Windows\System32\drivers\rtl8192Ce.sys [2011-6-15 1145960]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-7-11 1255736]
.
=============== Created Last 30 ================
.
2014-01-07 08:19:52 -------- d-----w- C:\Users\Zachary\AppData\Roaming\SUPERAntiSpyware.com
2014-01-07 08:19:36 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com
2014-01-07 08:19:36 -------- d-----w- C:\Program Files\SUPERAntiSpyware
2014-01-07 08:14:06 -------- d-----w- C:\Users\Zachary\AppData\Roaming\Malwarebytes
2014-01-07 08:14:01 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-01-07 08:14:01 -------- d-----w- C:\ProgramData\Malwarebytes
2014-01-07 08:14:01 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-07 08:09:53 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E40523F-D497-4C9A-A0A0-4ACA1C311082}\offreg.dll
2014-01-07 08:08:41 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2014-01-07 08:08:39 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E40523F-D497-4C9A-A0A0-4ACA1C311082}\mpengine.dll
2014-01-07 08:04:16 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp
2014-01-07 07:30:16 -------- d-----w- C:\Users\Zachary\AppData\Local\AntiLogger Free
2014-01-07 07:26:42 -------- d-----w- C:\ProgramData\Keylogger Detector
2014-01-07 07:24:51 -------- d-----w- C:\Users\Zachary\AppData\Local\Avg2014
2013-12-30 01:42:53 -------- d-----w- C:\Users\Zachary\AppData\Local\Razer
2013-12-24 08:01:15 -------- d-----w- C:\Program Files (x86)\WindBot
2013-12-22 07:06:08 -------- d-----w- C:\Users\Zachary\AppData\Roaming\TeamViewer
2013-12-22 06:46:22 -------- d-----w- C:\Users\Zachary\Dropbox
2013-12-22 06:40:07 -------- d-----w- C:\Users\Zachary\AppData\Roaming\Dropbox
2013-12-19 08:52:25 -------- d-----w- C:\Users\Zachary\AppData\Roaming\Tibiacast
2013-12-19 08:50:49 -------- d-----w- C:\Program Files (x86)\Tibiacast
2013-12-18 22:31:54 421744 ----a-w- C:\Windows\SysWow64\networkdlllsp.dll
2013-12-18 22:27:47 -------- d-----w- C:\Program Files (x86)\Pingzapper
2013-12-18 18:18:13 -------- d-----w- C:\Program Files (x86)\XenoBot
2013-12-18 02:27:31 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
2013-12-18 02:27:31 32544 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2013-12-18 01:29:03 7062 ----a-w- C:\Windows\SysWow64\audiopid.vxd
2013-12-15 18:30:10 32320 ----a-w- C:\Windows\System32\drivers\FNETTBOH_305.SYS
2013-12-14 18:15:30 -------- d-----w- C:\Users\Zachary\AppData\Local\Macromedia
2013-12-12 06:27:10 -------- d-----w- C:\Users\Zachary\AppData\Local\ESN Sonar
2013-12-12 03:55:29 -------- d-----w- C:\ProgramData\Caphyon
2013-12-11 18:43:16 335360 ----a-w- C:\Windows\System32\msieftp.dll
.
==================== Find3M  ====================
.
2014-01-07 08:04:16 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys
2013-12-19 06:26:33 214392 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2013-12-19 06:21:32 214392 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2013-12-14 18:14:47 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-14 18:14:47 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-12-10 02:13:11 982232 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2013-12-10 02:13:01 1100248 ----a-w- C:\Windows\System32\nvspcap64.dll
2013-12-05 08:42:26 35104 ----a-w- C:\Windows\System32\nvaudcap64v.dll
2013-11-26 17:25:52 267936 ------w- C:\Windows\System32\MpSigStub.exe
2013-11-26 10:19:07 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2013-11-26 10:18:23 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2013-11-26 09:48:07 66048 ----a-w- C:\Windows\System32\iesetup.dll
2013-11-26 09:46:25 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2013-11-26 09:23:02 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-11-26 09:18:39 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-11-26 09:18:09 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2013-11-26 09:16:57 708608 ----a-w- C:\Windows\System32\jscript9diag.dll
2013-11-26 08:35:02 5769216 ----a-w- C:\Windows\System32\jscript9.dll
2013-11-26 08:28:16 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2013-11-26 08:16:12 4243968 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-11-26 08:02:16 1995264 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-11-26 07:32:06 1928192 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-11-26 07:07:57 2334208 ----a-w- C:\Windows\System32\wininet.dll
2013-11-26 06:33:33 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-11-25 06:48:36 246072 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
2013-11-23 18:26:20 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2013-11-23 17:47:34 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2013-11-12 22:12:14 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2013-11-12 02:23:09 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-11-12 02:07:29 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-11-11 15:02:02 6674208 ----a-w- C:\Windows\System32\nvcpl.dll
2013-11-11 15:02:02 3490080 ----a-w- C:\Windows\System32\nvsvc64.dll
2013-11-11 15:01:59 922912 ----a-w- C:\Windows\System32\nvvsvc.exe
2013-11-11 15:01:59 63776 ----a-w- C:\Windows\System32\nvshext.dll
2013-11-11 15:01:59 219424 ----a-w- C:\Windows\System32\nvmctray.dll
2013-11-11 15:01:58 3467927 ----a-w- C:\Windows\System32\nvcoproc.bin
2013-11-11 13:59:28 590112 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2013-10-30 02:19:52 301568 ----a-w- C:\Windows\SysWow64\msieftp.dll
2013-10-30 01:24:31 3155968 ----a-w- C:\Windows\System32\win32k.sys
2013-10-23 10:30:23 1884448 ----a-w- C:\Windows\System32\nvdispco6433165.dll
2013-10-23 10:30:23 1511712 ----a-w- C:\Windows\System32\nvdispgenco6433165.dll
2013-10-23 06:05:08 45880 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
2013-10-19 02:18:57 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2013-10-19 01:36:59 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2013-10-12 02:32:04 150016 ----a-w- C:\Windows\System32\wshom.ocx
2013-10-12 02:31:04 202752 ----a-w- C:\Windows\System32\scrrun.dll
2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2013-10-12 02:04:36 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2013-10-12 02:03:31 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-12 01:33:39 156160 ----a-w- C:\Windows\System32\cscript.exe
2013-10-12 01:33:26 168960 ----a-w- C:\Windows\System32\wscript.exe
2013-10-12 01:15:48 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2013-10-12 01:15:48 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
.
============= FINISH:  3:31:48.37 ===============
 

here is my dds.txt

Link to post
Share on other sites
swovelzj

swovelzj

Posted
  • Author
Posted

malwarebytes quick scan

 

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.07.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Zachary :: ZACHARY-PC [limited]

Protection: Enabled

1/7/2014 3:41:36 AM
mbam-log-2014-01-07 (03-41-36).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 214179
Time elapsed: 2 minute(s), 17 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

Link to post
Share on other sites
swovelzj

swovelzj

Posted
  • Author
Posted

Farbar scan

frst-

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Zachary (administrator) on ZACHARY-PC on 07-01-2014 03:50:30
Running from C:\Users\Zachary\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) E:\AVG\avgrsa.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Windows\SysWOW64\ASGT.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgfws.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Pingzapper\PZService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgnsa.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgemca.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgcsrva.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(CMedia) C:\Program Files\ASUS Xonar DG Audio\Customapp\AsusAudioCenter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Valve Corporation) E:\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Corsair Components, Inc.) C:\Program Files (x86)\Corsair\CorsairLINK2\CorsairLINK_HardwareMonitor.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(AVG Technologies CZ, s.r.o.) E:\AVG\avgui.exe
(Apple Inc.) E:\iTunes\iTunesHelper.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2012-01-31] (Realtek Semiconductor)
HKLM\...\Run: [XFast LAN] - C:\Program Files\ASRock\XFast LAN\cfosspeed.exe [1441152 2011-10-19] (cFos Software GmbH)
HKLM\...\Run: [THXCfg64] - C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Cmaudio8788] - C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] - C:\Windows\SysWOW64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] - C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [shadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-09] (NVIDIA Corporation)
HKLM-x32\...\Run: [iAStorIcon] - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [uSB3MON] - C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [XFastUSB] - C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2013-07-09] (FNet Co., Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [THX TruStudio NB Settings] - C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909824 2011-05-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [updReg] - C:\Windows\Updreg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [AVG_UI] - E:\AVG\avgui.exe [4411952 2013-11-20] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - E:\Quicktime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [switchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - E:\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [ASRockXTU] - [x]
HKCU\...\Run: [zASRockInstantBoot] - [x]
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3551576 2013-11-20] (Electronic Arts)
HKCU\...\Run: [steam] - E:\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKCU\...\Run: [Dxtory Update Checker 2.0] - E:\Dxtory2.0\UpdateChecker.exe
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-07-09] (Google Inc.)
HKCU\...\Run: [skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [AVG-Secure-Search-Update_0913a] - C:\Users\Zachary\AppData\Roaming\AVG 0913a Campaign\AVG-Secure-Search-Update-0913a.exe /PROMPT --mid aad2be78df0c47d3a95c6d16b24bad4d-ad1491be2ce6c122f6b66faa90e70c2decf7d34c --CMPID 0913a
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20203904 2013-12-06] (Google)
HKCU\...\Run: [bitTorrent] - C:\Users\Zachary\AppData\Roaming\BitTorrent\BitTorrent.exe [895328 2013-11-18] (BitTorrent Inc.)
HKCU\...\Run: [sUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563096 2013-12-19] (SUPERAntiSpyware)
MountPoints2: {8eaf8811-e961-11e2-aa8a-806e6f6e6963} - D:\ASRSetup.exe
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Windows\SysWOW64\networkdlllsp.dll [421744] (Network Tunnel Lab)
Winsock: Catalog9 02 C:\Windows\SysWOW64\networkdlllsp.dll [421744] (Network Tunnel Lab)
Winsock: Catalog9 03 C:\Windows\SysWOW64\networkdlllsp.dll [421744] (Network Tunnel Lab)
Winsock: Catalog9 04 C:\Windows\SysWOW64\networkdlllsp.dll [421744] (Network Tunnel Lab)
Winsock: Catalog9 05 C:\Windows\SysWOW64\networkdlllsp.dll [421744] (Network Tunnel Lab)
Winsock: Catalog9 06 C:\Windows\SysWOW64\networkdlllsp.dll [421744] (Network Tunnel Lab)
Winsock: Catalog9 07 C:\Windows\SysWOW64\networkdlllsp.dll [421744] (Network Tunnel Lab)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Zachary\AppData\Roaming\Mozilla\Firefox\Profiles\5z4ugwsw.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - E:\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)

Chrome:
=======

CHR RestoreOnStartup: "hxxp://www.google.com/", "https://blackboard.uc.edu/webapps/portal/frameset.jsp"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Extension: (Google Translate) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.5_0
CHR Extension: (Google Drive) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1
CHR Extension: (Adblock Plus) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0
CHR Extension: (Google Search) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1
CHR Extension: (AdBlock) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0
CHR Extension: (Google Voice (by Google)) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnhkahnjcbndmmehfkdnkjomaanaooo\2.4.4_0
CHR Extension: (WordPress.com) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\khjnjifipfkgglficmipimgjpbmlbemd\1.1.1_0
CHR Extension: (Google Maps) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (Tom's Hardware UK - My Threads) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgcjmndhglkgjijpkogikbimefoiceno\0.2.0.1_0
CHR Extension: (Google Mail Checker) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0
CHR Extension: (Quick Note) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\mijlebbfndhelmdpmllgcfadlkankhok\1.6.3_0
CHR Extension: (Google Wallet) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] ()
R2 avgfws; E:\AVG\avgfws.exe [1432080 2013-10-23] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; E:\AVG\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; E:\AVG\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-09] (NVIDIA Corporation)
R2 PingzapperSvc; C:\Program Files (x86)\Pingzapper\PZService.exe [679424 2012-06-11] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-12] ()

==================== Drivers (Whitelisted) ====================

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [50296 2012-09-04] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2725376 2011-03-10] (C-Media Inc)
S3 CMUSBDAC; C:\Windows\System32\DRIVERS\CMUSBDAC.sys [358400 2013-05-09] (C-Media Inc.)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2013-12-15] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2013-07-09] (FNet Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2010-02-23] (ASUSTeK Computer Inc.)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-01-07] ()
R3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Corsair\CorsairLINK2\CorsairLINK_HardwareMonitor.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-07 03:50 - 2014-01-07 03:50 - 00021606 _____ C:\Users\Zachary\Downloads\FRST.txt
2014-01-07 03:50 - 2014-01-07 03:50 - 00000000 ____D C:\FRST
2014-01-07 03:49 - 2014-01-07 03:49 - 01931762 _____ (Farbar) C:\Users\Zachary\Downloads\FRST64.exe
2014-01-07 03:31 - 2014-01-07 03:31 - 00688992 ____R (Swearware) C:\Users\Zachary\Downloads\dds.scr
2014-01-07 03:31 - 2014-01-07 03:31 - 00025149 _____ C:\Users\Zachary\Desktop\dds.txt
2014-01-07 03:31 - 2014-01-07 03:31 - 00011927 _____ C:\Users\Zachary\Desktop\attach.txt
2014-01-07 03:19 - 2014-01-07 03:19 - 00003596 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 8a2ea700-c69a-410e-b4ec-bb926494f7ad
2014-01-07 03:19 - 2014-01-07 03:19 - 00003522 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 6fa30944-74b7-4e45-97d0-c06e877c7ec6
2014-01-07 03:19 - 2014-01-07 03:19 - 00001808 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-01-07 03:19 - 2014-01-07 03:19 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 8a2ea700-c69a-410e-b4ec-bb926494f7ad.job
2014-01-07 03:19 - 2014-01-07 03:19 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 6fa30944-74b7-4e45-97d0-c06e877c7ec6.job
2014-01-07 03:19 - 2014-01-07 03:19 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\SUPERAntiSpyware.com
2014-01-07 03:19 - 2014-01-07 03:19 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-07 03:19 - 2014-01-07 03:19 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-07 03:18 - 2014-01-07 03:19 - 29305296 _____ (SUPERAntiSpyware) C:\Users\Zachary\Downloads\SUPERAntiSpyware.exe
2014-01-07 03:14 - 2014-01-07 03:14 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-07 03:14 - 2014-01-07 03:14 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Malwarebytes
2014-01-07 03:14 - 2014-01-07 03:14 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-07 03:14 - 2014-01-07 03:14 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-07 03:14 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-07 03:13 - 2014-01-07 03:13 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Zachary\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-07 03:04 - 2014-01-07 03:04 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-01-07 02:30 - 2014-01-07 02:30 - 00000000 ____D C:\Users\Zachary\AppData\Local\AntiLogger Free
2014-01-07 02:26 - 2014-01-07 02:26 - 00000000 ____D C:\ProgramData\Keylogger Detector
2014-01-07 02:24 - 2014-01-07 02:24 - 00000000 ____D C:\Users\Zachary\AppData\Local\Avg2014
2014-01-01 20:45 - 2014-01-01 20:44 - 00037533 _____ C:\Users\Zachary\Desktop\Yalahar - Dark Magician.xmlc
2013-12-29 20:42 - 2013-12-29 20:42 - 00000000 ____D C:\Users\Zachary\AppData\Local\Razer
2013-12-29 20:41 - 2014-01-07 02:47 - 00000000 ____D C:\Program Files (x86)\Razer
2013-12-29 20:41 - 2013-12-29 20:45 - 00000000 ____D C:\ProgramData\Razer
2013-12-24 03:56 - 2013-12-24 04:15 - 00000000 ____D C:\Users\Zachary\Desktop\[70+ RP] Helheim Undeads
2013-12-24 03:04 - 2013-12-24 03:04 - 00000000 ____D C:\Users\Zachary\Desktop\Windbot
2013-12-24 03:01 - 2014-01-07 02:47 - 00000000 ____D C:\Program Files (x86)\WindBot
2013-12-22 02:06 - 2014-01-07 02:47 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\TeamViewer
2013-12-22 01:46 - 2014-01-07 02:47 - 00000000 ____D C:\Users\Zachary\Dropbox
2013-12-22 01:41 - 2014-01-07 02:47 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-12-22 01:40 - 2014-01-07 02:45 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Dropbox
2013-12-19 03:52 - 2013-12-19 03:53 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Tibiacast
2013-12-19 03:50 - 2014-01-07 02:47 - 00000000 ____D C:\Program Files (x86)\Tibiacast
2013-12-19 02:37 - 2013-10-16 04:07 - 00000000 ____D C:\Users\Zachary\Desktop\[60+ RP] Tarpit Tomb (Past Flame -3)
2013-12-18 17:31 - 2013-10-05 00:59 - 00421744 _____ (Network Tunnel Lab) C:\Windows\SysWOW64\networkdlllsp.dll
2013-12-18 17:27 - 2014-01-07 02:47 - 00000000 ____D C:\Program Files (x86)\Pingzapper
2013-12-18 17:27 - 2013-12-18 17:27 - 00001035 _____ C:\Users\Public\Desktop\Pingzapper.lnk
2013-12-18 17:21 - 2013-12-18 17:21 - 00638976 _____ C:\Users\Zachary\Downloads\KeyboardKingSetup.exe
2013-12-18 17:20 - 2013-12-18 17:20 - 00000000 ____D C:\Users\Zachary\Desktop\latency
2013-12-18 13:18 - 2013-12-18 13:18 - 00000000 ____D C:\Program Files (x86)\XenoBot
2013-12-18 13:17 - 2013-12-18 13:17 - 06656000 _____ C:\Users\Zachary\Downloads\setup (1).msi
2013-12-18 04:07 - 2013-12-18 04:07 - 36184046 _____ (CipSoft GmbH                                                ) C:\Users\Zachary\Downloads\tibia1031.exe
2013-12-17 21:27 - 2013-12-05 03:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-17 21:27 - 2013-12-05 03:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-17 20:29 - 2003-06-12 23:25 - 00007062 _____ C:\Windows\SysWOW64\audiopid.vxd
2013-12-17 02:09 - 2013-12-17 02:12 - 00000000 ____D C:\Users\Zachary\Desktop\[EK]Port Hope Coryms
2013-12-16 18:25 - 2013-12-16 18:25 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-12-16 18:25 - 2013-12-16 18:25 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-12-15 13:30 - 2013-12-15 13:30 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-12-14 22:25 - 2013-12-14 22:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-12-14 13:15 - 2013-12-14 13:15 - 00000000 ____D C:\Users\Zachary\AppData\Local\Macromedia
2013-12-14 13:11 - 2014-01-07 02:46 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Mozilla
2013-12-14 13:11 - 2014-01-07 02:46 - 00000000 ____D C:\Users\Zachary\AppData\Local\Mozilla
2013-12-14 13:11 - 2014-01-07 02:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-14 13:11 - 2013-12-14 13:11 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-14 13:11 - 2013-12-14 13:11 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-14 13:11 - 2013-12-14 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-14 13:09 - 2013-12-14 13:09 - 00282992 _____ (Mozilla) C:\Users\Zachary\Downloads\Firefox Setup Stub 26.0.exe
2013-12-12 01:27 - 2013-12-12 01:28 - 00000000 ____D C:\Users\Zachary\AppData\Local\ESN Sonar
2013-12-11 23:12 - 2014-01-07 02:47 - 00000000 ____D C:\Program Files (x86)\Notepad++
2013-12-11 23:12 - 2014-01-07 02:46 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Notepad++
2013-12-11 23:12 - 2013-12-11 23:12 - 07549839 _____ C:\Users\Zachary\Downloads\npp.6.5.2.Installer.exe
2013-12-11 23:12 - 2013-12-11 23:12 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2013-12-11 22:55 - 2013-12-11 22:55 - 00000000 ____D C:\ProgramData\Caphyon
2013-12-11 22:54 - 2013-12-11 22:55 - 06656000 _____ C:\Users\Zachary\Downloads\setup.msi
2013-12-11 14:18 - 2013-11-26 06:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 14:18 - 2013-11-26 05:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 14:18 - 2013-11-26 05:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-11 14:18 - 2013-11-26 05:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-11 14:18 - 2013-11-26 04:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-11 14:18 - 2013-11-26 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-11 14:18 - 2013-11-26 04:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 14:18 - 2013-11-26 04:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 14:18 - 2013-11-26 04:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-11 14:18 - 2013-11-26 04:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-11 14:18 - 2013-11-26 04:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 14:18 - 2013-11-26 04:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 14:18 - 2013-11-26 04:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-11 14:18 - 2013-11-26 04:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-11 14:18 - 2013-11-26 03:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-11 14:18 - 2013-11-26 03:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-11 14:18 - 2013-11-26 03:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-11 14:18 - 2013-11-26 03:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 14:18 - 2013-11-26 03:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-11 14:18 - 2013-11-26 03:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-11 14:18 - 2013-11-26 03:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-11 14:18 - 2013-11-26 03:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 14:18 - 2013-11-26 02:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 14:18 - 2013-11-26 02:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-11 14:18 - 2013-11-26 02:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-11 14:18 - 2013-11-26 02:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 14:18 - 2013-11-26 01:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 14:18 - 2013-11-26 01:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-11 14:18 - 2013-11-26 01:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-11 14:18 - 2013-11-26 01:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-11 14:18 - 2013-11-26 01:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-11 14:18 - 2013-05-10 00:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-11 14:18 - 2013-05-10 00:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-11 14:18 - 2013-05-09 23:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-11 14:18 - 2013-05-09 23:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-11 13:43 - 2013-11-23 13:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-11 13:43 - 2013-11-23 12:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-11 13:43 - 2013-11-11 21:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-11 13:43 - 2013-11-11 21:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-11 13:43 - 2013-10-29 21:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-11 13:43 - 2013-10-29 21:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-11 13:43 - 2013-10-29 20:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 13:43 - 2013-10-18 21:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 13:43 - 2013-10-18 20:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-11 13:43 - 2013-10-11 21:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 13:43 - 2013-10-11 21:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 13:43 - 2013-10-11 21:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-11 13:43 - 2013-10-11 21:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-11 13:43 - 2013-10-11 20:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 13:43 - 2013-10-11 20:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-11 13:43 - 2013-10-11 20:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-11 13:43 - 2013-10-11 20:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-11 13:43 - 2013-10-03 21:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 13:43 - 2013-10-03 20:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-10 22:16 - 2013-12-10 22:27 - 33757122 _____ (CipSoft GmbH                                                ) C:\Users\Zachary\Downloads\tibia1022.exe
2013-12-10 10:01 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-10 10:00 - 2013-12-10 10:01 - 00007785 _____ C:\Windows\IE11_main.log
2013-12-10 10:00 - 2013-12-10 10:00 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-10 10:00 - 2013-12-10 10:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-10 10:00 - 2013-12-10 10:00 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-10 10:00 - 2013-12-10 10:00 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-10 10:00 - 2013-12-10 10:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-10 10:00 - 2013-12-10 10:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-10 10:00 - 2013-12-10 10:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

==================== One Month Modified Files and Folders =======

2014-01-07 03:51 - 2013-07-10 00:31 - 00000021 _____ C:\Users\Zachary\AppData\Roaming\config_data.dat
2014-01-07 03:50 - 2014-01-07 03:50 - 00021606 _____ C:\Users\Zachary\Downloads\FRST.txt
2014-01-07 03:50 - 2014-01-07 03:50 - 00000000 ____D C:\FRST
2014-01-07 03:49 - 2014-01-07 03:49 - 01931762 _____ (Farbar) C:\Users\Zachary\Downloads\FRST64.exe
2014-01-07 03:39 - 2013-07-16 18:55 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Skype
2014-01-07 03:31 - 2014-01-07 03:31 - 00688992 ____R (Swearware) C:\Users\Zachary\Downloads\dds.scr
2014-01-07 03:31 - 2014-01-07 03:31 - 00025149 _____ C:\Users\Zachary\Desktop\dds.txt
2014-01-07 03:31 - 2014-01-07 03:31 - 00011927 _____ C:\Users\Zachary\Desktop\attach.txt
2014-01-07 03:20 - 2013-07-09 05:44 - 00000900 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-07 03:19 - 2014-01-07 03:19 - 00003596 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 8a2ea700-c69a-410e-b4ec-bb926494f7ad
2014-01-07 03:19 - 2014-01-07 03:19 - 00003522 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 6fa30944-74b7-4e45-97d0-c06e877c7ec6
2014-01-07 03:19 - 2014-01-07 03:19 - 00001808 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-01-07 03:19 - 2014-01-07 03:19 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 8a2ea700-c69a-410e-b4ec-bb926494f7ad.job
2014-01-07 03:19 - 2014-01-07 03:19 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 6fa30944-74b7-4e45-97d0-c06e877c7ec6.job
2014-01-07 03:19 - 2014-01-07 03:19 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\SUPERAntiSpyware.com
2014-01-07 03:19 - 2014-01-07 03:19 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-07 03:19 - 2014-01-07 03:19 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-07 03:19 - 2014-01-07 03:18 - 29305296 _____ (SUPERAntiSpyware) C:\Users\Zachary\Downloads\SUPERAntiSpyware.exe
2014-01-07 03:14 - 2014-01-07 03:14 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-07 03:14 - 2014-01-07 03:14 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Malwarebytes
2014-01-07 03:14 - 2014-01-07 03:14 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-07 03:14 - 2014-01-07 03:14 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-07 03:13 - 2014-01-07 03:13 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Zachary\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-07 03:13 - 2013-07-09 19:13 - 00000000 ____D C:\ProgramData\MFAData
2014-01-07 03:11 - 2009-07-13 23:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-07 03:11 - 2009-07-13 23:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-07 03:10 - 2009-07-14 00:13 - 00797986 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-07 03:08 - 2013-07-10 08:29 - 01574685 _____ C:\Windows\WindowsUpdate.log
2014-01-07 03:05 - 2013-07-09 23:33 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\BitTorrent
2014-01-07 03:04 - 2014-01-07 03:04 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-01-07 03:04 - 2013-10-08 19:52 - 00000000 ___RD C:\Users\Zachary\Google Drive
2014-01-07 03:04 - 2013-07-10 16:35 - 00000000 ____D C:\Program Files (x86)\Origin
2014-01-07 03:04 - 2013-07-10 00:31 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Corsair
2014-01-07 03:04 - 2013-07-09 18:56 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-07 03:04 - 2013-07-09 05:58 - 00034752 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-01-07 03:04 - 2013-07-09 05:54 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-01-07 03:04 - 2013-07-09 05:44 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-07 03:04 - 2010-11-20 22:47 - 00434696 _____ C:\Windows\PFRO.log
2014-01-07 03:04 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-07 03:04 - 2009-07-13 23:51 - 00050788 _____ C:\Windows\setupact.log
2014-01-07 03:03 - 2013-09-10 22:24 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-07 03:00 - 2013-07-22 14:19 - 00000000 ____D C:\Program Files (x86)\RaidCall
2014-01-07 02:48 - 2013-07-09 05:59 - 00058864 _____ C:\Users\Zachary\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-07 02:48 - 2013-07-09 05:30 - 00000000 ____D C:\Users\Zachary
2014-01-07 02:47 - 2013-12-29 20:41 - 00000000 ____D C:\Program Files (x86)\Razer
2014-01-07 02:47 - 2013-12-24 03:01 - 00000000 ____D C:\Program Files (x86)\WindBot
2014-01-07 02:47 - 2013-12-22 02:06 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\TeamViewer
2014-01-07 02:47 - 2013-12-22 01:46 - 00000000 ____D C:\Users\Zachary\Dropbox
2014-01-07 02:47 - 2013-12-22 01:41 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-07 02:47 - 2013-12-19 03:50 - 00000000 ____D C:\Program Files (x86)\Tibiacast
2014-01-07 02:47 - 2013-12-18 17:27 - 00000000 ____D C:\Program Files (x86)\Pingzapper
2014-01-07 02:47 - 2013-12-11 23:12 - 00000000 ____D C:\Program Files (x86)\Notepad++
2014-01-07 02:47 - 2013-07-16 23:09 - 00000000 ____D C:\Program Files\WinRAR
2014-01-07 02:47 - 2013-07-16 18:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-07 02:47 - 2013-07-16 18:55 - 00000000 ____D C:\ProgramData\Skype
2014-01-07 02:47 - 2013-07-14 20:33 - 00000000 ____D C:\Users\Zachary\Documents\XenoBot
2014-01-07 02:47 - 2013-07-12 15:42 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\ASUS
2014-01-07 02:47 - 2013-07-10 20:43 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Tibia
2014-01-07 02:47 - 2013-07-09 23:18 - 00000000 ____D C:\Program Files\Bonjour
2014-01-07 02:47 - 2013-07-09 23:18 - 00000000 ____D C:\Program Files (x86)\Bonjour
2014-01-07 02:47 - 2013-07-09 06:13 - 00000000 ____D C:\ProgramData\Origin
2014-01-07 02:47 - 2013-07-09 05:59 - 00000000 ____D C:\ProgramData\FNET
2014-01-07 02:47 - 2013-07-09 05:52 - 00000000 ____D C:\ProgramData\Intel
2014-01-07 02:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system
2014-01-07 02:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\registration
2014-01-07 02:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\AppCompat
2014-01-07 02:46 - 2013-12-14 13:11 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Mozilla
2014-01-07 02:46 - 2013-12-14 13:11 - 00000000 ____D C:\Users\Zachary\AppData\Local\Mozilla
2014-01-07 02:46 - 2013-12-14 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-07 02:46 - 2013-12-11 23:12 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Notepad++
2014-01-07 02:46 - 2013-11-07 18:45 - 00000000 ____D C:\Users\Zachary\AppData\Local\NVIDIA
2014-01-07 02:46 - 2013-11-07 18:41 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-07 02:46 - 2013-11-07 18:41 - 00000000 ____D C:\Program Files\iTunes
2014-01-07 02:46 - 2013-11-07 18:41 - 00000000 ____D C:\Program Files\iPod
2014-01-07 02:46 - 2013-09-30 11:44 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-07 02:46 - 2013-09-10 22:24 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-07 02:46 - 2013-07-22 14:19 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\raidcall
2014-01-07 02:46 - 2013-07-12 15:41 - 00000000 ____D C:\Program Files\ASUS Xonar DG Audio
2014-01-07 02:46 - 2013-07-11 00:20 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2014-01-07 02:46 - 2013-07-11 00:20 - 00000000 ____D C:\Program Files\Common Files\Adobe
2014-01-07 02:46 - 2013-07-10 21:59 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Riot Games
2014-01-07 02:46 - 2013-07-10 16:38 - 00000000 ____D C:\Users\Zachary\AppData\Local\PunkBuster
2014-01-07 02:46 - 2013-07-10 16:33 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2014-01-07 02:46 - 2013-07-10 16:32 - 00000000 ____D C:\ProgramData\Electronic Arts
2014-01-07 02:46 - 2013-07-10 00:30 - 00000000 ____D C:\Program Files (x86)\Corsair
2014-01-07 02:46 - 2013-07-10 00:14 - 00000000 ____D C:\Users\Zachary\AppData\Local\Adobe
2014-01-07 02:46 - 2013-07-09 23:54 - 00000000 ____D C:\Users\Zachary\AppData\Local\Dxtory Software
2014-01-07 02:46 - 2013-07-09 23:31 - 00000000 ____D C:\ProgramData\Sony
2014-01-07 02:46 - 2013-07-09 23:31 - 00000000 ____D C:\Program Files\Sony
2014-01-07 02:46 - 2013-07-09 23:31 - 00000000 ____D C:\Program Files (x86)\Sony
2014-01-07 02:46 - 2013-07-09 23:18 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-07 02:46 - 2013-07-09 23:18 - 00000000 ____D C:\ProgramData\Apple
2014-01-07 02:46 - 2013-07-09 23:18 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-07 02:46 - 2013-07-09 23:18 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2014-01-07 02:46 - 2013-07-09 19:17 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\AVG2013
2014-01-07 02:46 - 2013-07-09 19:17 - 00000000 ____D C:\ProgramData\AVG2013
2014-01-07 02:46 - 2013-07-09 19:11 - 00000000 ____D C:\Users\Zachary\AppData\Local\Sony
2014-01-07 02:46 - 2013-07-09 19:10 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Sony
2014-01-07 02:46 - 2013-07-09 18:57 - 00000000 ____D C:\Program Files (x86)\ASUS
2014-01-07 02:46 - 2013-07-09 18:56 - 00000000 ____D C:\Windows\Downloaded Installations
2014-01-07 02:46 - 2013-07-09 18:56 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-07 02:46 - 2013-07-09 18:56 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-07 02:46 - 2013-07-09 18:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-07 02:46 - 2013-07-09 06:03 - 00000000 ____D C:\ProgramData\Norton
2014-01-07 02:46 - 2013-07-09 06:01 - 00000000 ____D C:\Program Files (x86)\Creative
2014-01-07 02:46 - 2013-07-09 06:00 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Macromedia
2014-01-07 02:46 - 2013-07-09 06:00 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Adobe
2014-01-07 02:46 - 2013-07-09 06:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-07 02:46 - 2013-07-09 05:59 - 00000000 ____D C:\Users\Zachary\AppData\Local\cFos
2014-01-07 02:46 - 2013-07-09 05:59 - 00000000 ____D C:\ProgramData\cFos
2014-01-07 02:46 - 2013-07-09 05:59 - 00000000 ____D C:\Program Files\Google
2014-01-07 02:46 - 2013-07-09 05:59 - 00000000 ____D C:\Program Files\ASRock
2014-01-07 02:46 - 2013-07-09 05:59 - 00000000 ____D C:\Program Files (x86)\ASRock Utility
2014-01-07 02:46 - 2013-07-09 05:58 - 00000000 ____D C:\Program Files\Broadcom
2014-01-07 02:46 - 2013-07-09 05:58 - 00000000 ____D C:\Program Files\ASRock Utility
2014-01-07 02:46 - 2013-07-09 05:57 - 00000000 ____D C:\Program Files (x86)\ASM106xSATA
2014-01-07 02:46 - 2013-07-09 05:56 - 00000000 ____D C:\Program Files (x86)\ASM104xUSB3
2014-01-07 02:46 - 2013-07-09 05:54 - 00000000 ____D C:\Program Files\Intel
2014-01-07 02:46 - 2013-07-09 05:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-07 02:46 - 2013-07-09 05:53 - 00000000 ____D C:\Program Files\Realtek
2014-01-07 02:46 - 2013-07-09 05:53 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-07 02:46 - 2013-07-09 05:45 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-07 02:46 - 2013-07-09 05:44 - 00000000 ____D C:\Users\Zachary\AppData\Local\Google
2014-01-07 02:46 - 2013-07-09 05:44 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-07 02:46 - 2013-07-09 05:30 - 00000000 ___RD C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 02:46 - 2013-07-09 05:30 - 00000000 ____D C:\Users\Zachary\AppData\Local\VirtualStore
2014-01-07 02:46 - 2013-07-03 14:24 - 00000000 ____D C:\NVIDIA
2014-01-07 02:46 - 2013-07-03 12:58 - 00000000 ____D C:\GFExperience
2014-01-07 02:46 - 2011-04-12 03:28 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\SysWOW64\winrm
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\SysWOW64\WCN
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\system32\winrm
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\system32\WCN
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\system32\slmgr
2014-01-07 02:46 - 2011-04-12 03:17 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\SysWOW64\WindowsPowerShell
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\WindowsPowerShell
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\Performance
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\MSBuild
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Microsoft Games
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\DVD Maker
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-07 02:46 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-07 02:46 - 2009-07-13 23:45 - 00000000 ____D C:\Windows\Setup
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 __RSD C:\Windows\Media
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 __RHD C:\Users\Default
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Web
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Vss
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\spp
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Speech
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\NetworkList
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Msdtc
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\InstallShield
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\IME
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\com
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sysprep
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\spp
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\spool
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Speech
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\SMI
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\oobe
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NetworkList
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\MUI
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Msdtc
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\migwiz
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\IME
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Dism
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\com
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Speech
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\servicing
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\security
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\schemas
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Resources
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PLA
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\IME
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Help
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Globalization
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Branding
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Windows NT
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-07 02:46 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files (x86)\Windows NT
2014-01-07 02:45 - 2013-12-22 01:40 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Dropbox
2014-01-07 02:30 - 2014-01-07 02:30 - 00000000 ____D C:\Users\Zachary\AppData\Local\AntiLogger Free
2014-01-07 02:26 - 2014-01-07 02:26 - 00000000 ____D C:\ProgramData\Keylogger Detector
2014-01-07 02:24 - 2014-01-07 02:24 - 00000000 ____D C:\Users\Zachary\AppData\Local\Avg2014
2014-01-06 01:48 - 2013-07-10 16:46 - 00000000 ____D C:\Users\Zachary\AppData\Local\CrashDumps
2014-01-06 01:28 - 2013-02-26 17:55 - 00000013 _____ C:\pipe11.dat
2014-01-01 20:44 - 2014-01-01 20:45 - 00037533 _____ C:\Users\Zachary\Desktop\Yalahar - Dark Magician.xmlc
2013-12-29 20:45 - 2013-12-29 20:41 - 00000000 ____D C:\ProgramData\Razer
2013-12-29 20:42 - 2013-12-29 20:42 - 00000000 ____D C:\Users\Zachary\AppData\Local\Razer
2013-12-24 04:15 - 2013-12-24 03:56 - 00000000 ____D C:\Users\Zachary\Desktop\[70+ RP] Helheim Undeads
2013-12-24 03:04 - 2013-12-24 03:04 - 00000000 ____D C:\Users\Zachary\Desktop\Windbot
2013-12-19 03:53 - 2013-12-19 03:52 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Tibiacast
2013-12-19 01:26 - 2013-07-10 18:29 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-12-19 01:21 - 2013-07-10 16:31 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-12-18 17:27 - 2013-12-18 17:27 - 00001035 _____ C:\Users\Public\Desktop\Pingzapper.lnk
2013-12-18 17:21 - 2013-12-18 17:21 - 00638976 _____ C:\Users\Zachary\Downloads\KeyboardKingSetup.exe
2013-12-18 17:20 - 2013-12-18 17:20 - 00000000 ____D C:\Users\Zachary\Desktop\latency
2013-12-18 13:18 - 2013-12-18 13:18 - 00000000 ____D C:\Program Files (x86)\XenoBot
2013-12-18 13:18 - 2013-07-14 20:33 - 00000954 _____ C:\Users\Public\Desktop\Injector.exe.lnk
2013-12-18 13:17 - 2013-12-18 13:17 - 06656000 _____ C:\Users\Zachary\Downloads\setup (1).msi
2013-12-18 04:08 - 2013-07-10 20:42 - 00000967 _____ C:\Users\Public\Desktop\Tibia.lnk
2013-12-18 04:08 - 2013-07-10 20:42 - 00000000 ____D C:\Program Files (x86)\Tibia
2013-12-18 04:07 - 2013-12-18 04:07 - 36184046 _____ (CipSoft GmbH                                                ) C:\Users\Zachary\Downloads\tibia1031.exe
2013-12-17 20:10 - 2009-07-14 00:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-17 02:12 - 2013-12-17 02:09 - 00000000 ____D C:\Users\Zachary\Desktop\[EK]Port Hope Coryms
2013-12-16 18:25 - 2013-12-16 18:25 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-12-16 18:25 - 2013-12-16 18:25 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-12-16 18:25 - 2013-10-08 19:52 - 00002042 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-12-16 18:25 - 2013-10-08 19:52 - 00002040 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-12-15 13:42 - 2013-11-12 17:12 - 00000724 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-12-15 13:30 - 2013-12-15 13:30 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-12-15 03:53 - 2013-11-19 11:49 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-15 03:53 - 2013-11-19 11:49 - 00000000 ____D C:\Windows\system32\MRT
2013-12-14 22:25 - 2013-12-14 22:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-12-14 13:15 - 2013-12-14 13:15 - 00000000 ____D C:\Users\Zachary\AppData\Local\Macromedia
2013-12-14 13:14 - 2013-09-10 22:24 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-14 13:14 - 2013-09-10 22:24 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-14 13:14 - 2013-09-10 22:24 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-14 13:11 - 2013-12-14 13:11 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-14 13:11 - 2013-12-14 13:11 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-14 13:11 - 2013-12-14 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-14 13:09 - 2013-12-14 13:09 - 00282992 _____ (Mozilla) C:\Users\Zachary\Downloads\Firefox Setup Stub 26.0.exe
2013-12-12 01:28 - 2013-12-12 01:27 - 00000000 ____D C:\Users\Zachary\AppData\Local\ESN Sonar
2013-12-11 23:12 - 2013-12-11 23:12 - 07549839 _____ C:\Users\Zachary\Downloads\npp.6.5.2.Installer.exe
2013-12-11 23:12 - 2013-12-11 23:12 - 00000000 ____D C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2013-12-11 22:55 - 2013-12-11 22:55 - 00000000 ____D C:\ProgramData\Caphyon
2013-12-11 22:55 - 2013-12-11 22:54 - 06656000 _____ C:\Users\Zachary\Downloads\setup.msi
2013-12-11 17:03 - 2009-07-13 23:45 - 04892592 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-10 22:27 - 2013-12-10 22:16 - 33757122 _____ (CipSoft GmbH                                                ) C:\Users\Zachary\Downloads\tibia1022.exe
2013-12-10 20:38 - 2013-11-12 14:14 - 00000000 ____D C:\Users\Zachary\AppData\Local\NVIDIA Corporation
2013-12-10 17:03 - 2013-07-09 05:31 - 00001417 _____ C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-10 12:22 - 2013-07-09 05:54 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2013-12-10 10:01 - 2013-12-10 10:00 - 00007785 _____ C:\Windows\IE11_main.log
2013-12-10 10:00 - 2013-12-10 10:00 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-10 10:00 - 2013-12-10 10:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-10 10:00 - 2013-12-10 10:00 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-10 10:00 - 2013-12-10 10:00 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-10 10:00 - 2013-12-10 10:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-10 10:00 - 2013-12-10 10:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-10 10:00 - 2013-12-10 10:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-10 10:00 - 2013-12-10 10:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-10 10:00 - 2013-12-10 10:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-10 09:24 - 2013-07-09 19:17 - 00000551 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-12-10 06:15 - 2013-07-09 05:44 - 00003896 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-10 06:15 - 2013-07-09 05:44 - 00003644 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-09 21:13 - 2013-11-07 18:39 - 01100248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-12-09 21:13 - 2013-11-07 18:39 - 00982232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-12-09 20:17 - 2013-07-09 05:44 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk

Some content of TEMP:
====================
C:\Users\Zachary\AppData\Local\Temp\Keyboard Interface.dll
C:\Users\Zachary\AppData\Local\Temp\Keyboard King.exe
C:\Users\Zachary\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Zachary\AppData\Local\Temp\nvStInst.exe
C:\Users\Zachary\AppData\Local\Temp\sonarinst.exe
C:\Users\Zachary\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Zachary\AppData\Local\Temp\UNINSTALL.EXE
C:\Users\Zachary\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-30 12:38

==================== End Of Log ============================

 

 

 

Link to post
Share on other sites
swovelzj

swovelzj

Posted
  • Author
Posted

addition

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2014
Ran by Zachary at 2014-01-07 03:52:13
Running from C:\Users\Zachary\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG Internet Security 2013 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2013 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2013 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}

==================== Installed Programs ======================

Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (x32 Version: 1.1.377 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 1.0.4990 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.0.8.4990 - Adobe Systems Inc.) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (x32 Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader 9 (x32 Version: 9.0.0 - Adobe Systems Incorporated)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (x32 Version: 1.10.1.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (x32 Version: 1.3.1.000 - Asmedia Technology)
ASRock App Charger v1.0.5 (Version:  - ASRock Inc.)
ASRock eXtreme Tuner v0.1.257 (x32 Version:  - )
ASRock InstantBoot v1.29 (x32 Version:  - )
ASRock SmartConnect v1.0.6 (Version:  - ASRock Inc.)
ASRock XFast RAM v2.0.9 (Version:  - ASRock Inc.)
ASUS GPU Tweak (x32 Version: 2.2.8.1 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.2.8.1 - ASUSTek COMPUTER INC.) Hidden
ASUS Xonar DG Audio Driver (Version:  - )
AVG 2013 (Version: 13.0.3462 - AVG Technologies) Hidden
AVG 2013 (Version: 13.0.3658 - AVG Technologies) Hidden
AVG 2013 (Version: 2013.0.3462 - AVG Technologies)
Battlefield 3™ (x32 Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (x32 Version: 1.0.0.1 - Electronic Arts)
Battlefield 4™ Beta (x32 Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB)
BitTorrent (HKCU Version: 7.8.2.30332 - BitTorrent Inc.)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Broadcom NetLink Controller (Version: 14.8.5.1 - Broadcom Corporation)
Corsair Link USB Dongle (Driver Removal) (x32 Version:  - Corsair Memory, Inc.)
CorsairLINK2 (x32 Version: 2.3.4816 - Corsair)
CPUID CPU-Z 1.65.0 (Version:  - )
Dota 2 (x32 Version:  - Valve)
Dxtory version 2.0.123 (x32 Version: 2.0.123 - ExKode Co. Ltd.)
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
FL Studio 10 (x32 Version:  - Image-Line)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (x32 Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Intel® Control Center (x32 Version: 1.2.1.1008 - Intel Corporation)
Intel® Manageability Engine Firmware Recovery Agent (x32 Version: 1.0.0.36354 - Intel Corporation)
Intel® Management Engine Components (x32 Version: 8.1.0.1281 - Intel Corporation)
Intel® Processor Graphics (x32 Version: 9.17.10.2857 - Intel Corporation)
Intel® Rapid Storage Technology (x32 Version: 11.6.0.1030 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation)
Intel® Smart Connect Technology 2.0 x64 (Version: 2.0.1083.0 - Intel)
Intel® USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.738.1 - Intel Corporation) Hidden
iTunes (Version: 11.1.3.8 - Apple Inc.)
Lagarith Lossless Codec (1.3.27) (x32 Version:  - )
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
Notepad++ (x32 Version: 6.5.2 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA Control Panel 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.26.4 (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Origin (x32 Version: 9.2.1.4399 - Electronic Arts, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Pingzapper version 1.1.8 (x32 Version: 1.1.8 - Pingzapper)
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6559 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype™ 6.6 (x32 Version: 6.6.106 - Skype Technologies S.A.)
Sniper Ghost Warrior 2 (x32 Version:  - City Interactive)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
SUPERAntiSpyware (Version: 5.7.1016 - SUPERAntiSpyware.com)
THX TruStudio (x32 Version: 1.00.01 - Creative Technology Limited)
Tibia (x32 Version: 10.31 - CipSoft GmbH)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Vegas Pro 12.0 (64-bit) (Version: 12.0.367 - Sony)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1 - AVG Technologies)
WinRAR 5.00 beta 7 (64-bit) (Version: 5.00.7 - win.rar GmbH)
XenoBot (x32 Version: 3.4.5 - XenoBot)
XFast LAN v6.61 (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (x32 Version: 3.02.31 - ASRock Inc.)

==================== Restore Points  =========================

27-12-2013 09:52:33 Scheduled Checkpoint
30-12-2013 01:41:33 Installed Razer Synapse 2.0.
30-12-2013 01:45:42 Razer Drivers Install
06-01-2014 20:53:56 Scheduled Checkpoint
07-01-2014 07:35:09 Restore Operation
07-01-2014 08:08:34 Windows Update

==================== Hosts content: ==========================

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {3E7A49F0-D33B-49E3-81C9-B87D4E03C2D4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-14] (Adobe Systems Incorporated)
Task: {47AE87DC-0CD4-4F21-B250-BF57BA73AD09} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-09] (Google Inc.)
Task: {69955DE4-80E7-4DC1-939A-4B713196B5E9} - System32\Tasks\Start CorsairLINK Hardware Monitor => C:\Program Files (x86)\Corsair\CorsairLINK2\CorsairLINK_HardwareMonitor.exe [2013-03-09] (Corsair Components, Inc.)
Task: {7C3A725C-1F57-48B4-A3CB-448B02C8EF99} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {7CAB092C-F7F6-460F-9E22-46C1DA0E754D} - System32\Tasks\SUPERAntiSpyware Scheduled Task 8a2ea700-c69a-410e-b4ec-bb926494f7ad => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {93348229-AB60-4960-A4C3-449F3D554079} - System32\Tasks\SUPERAntiSpyware Scheduled Task 6fa30944-74b7-4e45-97d0-c06e877c7ec6 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {9BDF074D-1A5D-472F-AC74-94D342108244} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)
Task: {B11799A4-9FF5-4633-B55B-67C05C14E57A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-09] (Google Inc.)
Task: {BBF0AE84-8834-4D04-B603-4AB6292BB891} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 6fa30944-74b7-4e45-97d0-c06e877c7ec6.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 8a2ea700-c69a-410e-b4ec-bb926494f7ad.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (whitelisted) =============

2013-07-09 05:51 - 2012-09-17 03:23 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-07-09 06:01 - 2011-05-19 08:58 - 00246784 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2013-04-21 20:44 - 2013-04-21 20:44 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-07-12 15:41 - 2011-04-19 01:56 - 00143360 _____ () C:\Program Files\ASUS Xonar DG Audio\Customapp\VmixP8.dll
2013-07-10 16:36 - 2013-11-20 20:30 - 00064000 _____ () C:\Program Files (x86)\Origin\tufao.dll
2013-07-01 07:20 - 2013-11-06 16:48 - 00691200 _____ () E:\Steam\SDL2.dll
2013-07-09 16:56 - 2013-12-11 14:40 - 01135016 _____ () E:\Steam\bin\chromehtml.DLL
2013-07-09 12:45 - 2013-11-06 16:48 - 20625832 _____ () E:\Steam\bin\libcef.dll
2013-06-14 14:49 - 2013-06-14 18:49 - 01100800 _____ () E:\Steam\bin\avcodec-53.dll
2013-06-14 14:49 - 2013-06-14 18:49 - 00124416 _____ () E:\Steam\bin\avutil-51.dll
2013-06-14 14:49 - 2013-06-14 18:49 - 00192000 _____ () E:\Steam\bin\avformat-53.dll
2013-07-09 16:56 - 2013-12-11 14:40 - 00121256 _____ () E:\Steam\bin\audio.dll
2013-06-14 14:49 - 2013-06-14 18:49 - 00071680 _____ () E:\Steam\bin\mssmp3.asi
2013-06-14 14:49 - 2013-06-14 18:49 - 00153088 _____ () E:\Steam\bin\mssvoice.asi
2013-07-10 00:31 - 2013-03-09 09:09 - 00053760 _____ () C:\Program Files (x86)\Corsair\CorsairLINK2\SynchronousIO.Native.dll
2014-01-07 03:04 - 2014-01-07 03:04 - 00098816 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32api.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00110080 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\pywintypes27.dll
2014-01-07 03:04 - 2014-01-07 03:04 - 00364544 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\pythoncom27.dll
2014-01-07 03:04 - 2014-01-07 03:04 - 00044032 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\_socket.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 01153024 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\_ssl.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00320512 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32com.shell.shell.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00711680 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\_hashlib.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 01175040 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\wx._core_.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00805888 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\wx._gdi_.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00811008 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\wx._windows_.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 01062400 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\wx._controls_.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00735232 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\wx._misc_.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00128512 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\_elementtree.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00127488 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\pyexpat.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00557056 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\pysqlite2._sqlite.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00087040 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\_ctypes.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00119808 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32file.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00108544 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32security.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00018432 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32event.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00038912 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32inet.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00122368 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\wx._wizard.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00026624 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\_multiprocessing.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00070656 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\wx._html2.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00010240 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\select.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00686080 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\unicodedata.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00025600 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32pdh.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00521680 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\windows._lib_cacheinvalidation.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00011264 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32crypt.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00024064 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32pipe.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00035840 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32process.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00017408 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32profile.pyd
2014-01-07 03:04 - 2014-01-07 03:04 - 00022528 _____ () C:\Users\Zachary\AppData\Local\Temp\_MEI36682\win32ts.pyd
2013-08-15 12:18 - 2013-08-15 12:18 - 00017408 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\15a401ada99d9c232904f8c43776d944\PSIClient.ni.dll
2013-07-09 05:54 - 2012-07-18 05:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2013-12-14 13:11 - 2013-12-05 14:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Zachary\Desktop\Screenshot 2014-01-06 20.02.23.png:com.dropbox.attributes
AlternateDataStreams: C:\Users\Zachary\Desktop\Screenshot 2014-01-06 20.07.49.png:com.dropbox.attributes
AlternateDataStreams: C:\Users\Zachary\Desktop\sthsrth.png:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: ASUS PCE-N15 11n Wireless LAN PCI-E Card
Description: ASUS PCE-N15 11n Wireless LAN PCI-E Card
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ASUSTeK Computer Inc.
Service: RTL8192Ce
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/07/2014 03:05:58 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 03:04:16 AM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:49:59 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 02:48:15 AM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:44:58 AM) (Source: System Restore) (User: )
Description: An unspecified error occurred during System Restore: (Installed Tibiacast). Additional information: 0x80070005.

Error: (01/07/2014 02:44:47 AM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:42:20 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 02:40:55 AM) (Source: System Restore) (User: )
Description: An unspecified error occurred during System Restore: (Installed Razer Synapse 2.0.). Additional information: 0x80070005.

Error: (01/07/2014 02:40:35 AM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:38:37 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (01/07/2014 03:03:40 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (01/07/2014 02:46:11 AM) (Source: DCOM) (User: )
Description: 1084wuauserv{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (01/07/2014 02:46:06 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/07/2014 02:46:06 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/07/2014 02:46:06 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/07/2014 02:46:06 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/07/2014 02:46:06 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/07/2014 02:46:06 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/07/2014 02:46:05 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/07/2014 02:46:05 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (01/07/2014 03:05:58 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 03:04:16 AM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:49:59 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 02:48:15 AM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:44:58 AM) (Source: System Restore)(User: )
Description: Installed Tibiacast0x80070005

Error: (01/07/2014 02:44:47 AM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:42:20 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 02:40:55 AM) (Source: System Restore)(User: )
Description: Installed Razer Synapse 2.0.0x80070005

Error: (01/07/2014 02:40:35 AM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/07/2014 02:38:37 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Percentage of memory in use: 27%
Total physical RAM: 16267.39 MB
Available physical RAM: 11722.32 MB
Total Pagefile: 32532.97 MB
Available Pagefile: 28052.81 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:51.92 GB) NTFS
Drive e: (Western Digital Caviar Blue) (Fixed) (Total:931.51 GB) (Free:690.16 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================

Link to post
Share on other sites
swovelzj

swovelzj

Posted
  • Author
Posted

I ran a scan with malwarebytes and superantispyware and this was the log it returned to me.

 

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 01/07/2014 at 03:44 AM

Application Version : 5.7.1016

Core Rules Database Version : 10960
Trace Rules Database Version: 8772

Scan type       : Quick Scan
Total Scan Time : 00:01:16

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 589
Memory threats detected   : 0
Registry items scanned    : 60125
Registry threats detected : 0
File items scanned        : 11352
File threats detected     : 32

Adware.Tracking Cookie
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\B0BDKK1E.txt [ /smartadserver.com ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\VAMAT116.txt [ /adtechus.com ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\4I9N1A0B.txt [ /serving-sys.com ]
    .doubleclick.net [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\MGG90TKU.txt [ /c.atdmt.com ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\531AGPDU.txt [ /ads.yahoo.com ]
    .atdmt.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\63ZOEEXY.txt [ /questionmarket.com ]
    .atdmt.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    .atdmt.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\RCDRNKGC.txt [ /bs.serving-sys.com ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\B4BUCH95.txt [ /imrworldwide.com ]
    banners.pickupcloud.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\SA3XJXM4.txt [ /doubleclick.net ]
    .sscdn.banners.advidi.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    .sscdn.banners.advidi.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    .sscdn.banners.advidi.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\JB8DCX58.txt [ /casalemedia.com ]
    .exoclick.com [ C:\USERS\ZACHARY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5Z4UGWSW.DEFAULT\COOKIES.SQLITE ]
    C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Cookies\J7P5E0QU.txt [ /atdmt.com ]
    accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    .doubleclick.net [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    accounts.youtube.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    .accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    .accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    .accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
    accounts.google.com [ C:\USERS\ZACHARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]

 

Link to post
Share on other sites
Maniac

Maniac

Posted
Posted

Please scan your machine with ESET OnlineScan

  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.

    ESET OnlineScan

  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer.

      Save it to your Desktop.

    • Double click on the esetsmartinstaller_enu.png to download the ESET Smart Installer. icon on your Desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under Scan Settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
Link to post
Share on other sites
  • 2 weeks later...
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.