Wurm has a worm?

[Wyldkat]

Hi, I play Wurm and was getting java issue problems.  I reinstalled java and used this file to try and get back on Wurm:  @ECHO OFF

c:\windows\system32\javaws.exe http://www.wurmonline.com/client/wurmclient.jnlp  (saved as a wurm.bat) and when I double clicked it and  it brings me to a file that says "bullshitnumber" and a file pops open with a string of numbers, but no wurm. It opens in open office and it is a file i did not create. This is the string of numbers: 5109646595

 

I have Total Defense Security System which has not gone off and I ran malware bytes which found nothing.  I ran the farbar and got all this:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-06-2014

Ran by Tina (administrator) on TOSHIBA on 26-06-2014 00:15:51

Running from C:\Users\Tina\Downloads

Platform: Windows 8.1 (X64) OS Language: English (United States)

Internet Explorer Version 11

Boot Mode: Normal

 

The only official download link for FRST:

Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 

Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(AMD) C:\Windows\System32\atiesrxx.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Total Defense, Inc.) C:\Program Files\Total Defense\Internet Security Suite\Anti-Virus\CAAMSvc.exe

(Computer Associates International, Inc.) C:\Program Files\Total Defense\Internet Security Suite\Anti-Virus\isafe.exe

(Total Defense, Inc.) C:\Program Files\Total Defense\Internet Security Suite\ccschedulersvc.exe

(Microsoft Corporation) C:\Windows\System32\dasHost.exe

(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe

(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe

(CA) C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe

() C:\Windows\SysWOW64\cfgmig32.exe

(Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe

(Total Defense, Inc.) C:\Program Files\Total Defense\Internet Security Suite\ccprovsp.exe

(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\SymcPCCULaunchSvc.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(TOSHIBA CORPORATION) C:\Program Files\Toshiba\HDD Accelerator\THAccelSvc.exe

(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHSrv.exe

(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Total Defense, Inc.) C:\Program Files\Total Defense\Internet Security Suite\ccevtmgr.exe

(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe

(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Total Defense, Inc.) C:\Program Files\Total Defense\Internet Security Suite\casc.exe

(TOSHIBA Corporation) C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe

(Microsoft Corporation) C:\Windows\System32\StikyNot.exe

(Audible, Inc.) C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe

(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe

(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe

(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.bin

(Microsoft Corporation) C:\Windows\splwow64.exe

(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13196432 2012-09-25] (Realtek Semiconductor)

HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)

HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)

HKLM\...\Run: [TODDMain] => C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-04] ()

HKLM\...\Run: [cctray] => C:\Program Files\Total Defense\Internet Security Suite\casc.exe [2733576 2013-10-15] (Total Defense, Inc.)

HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-17] (TOSHIBA Corporation)

HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2995904 2012-07-11] (Symantec Corporation)

HKLM-x32\...\Run: [ToshibaAppPlace] => C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe [552960 2010-09-23] (Toshiba)

HKLM-x32\...\Run: [startCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-08] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)

HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)

HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)

Winlogon\Notify\PFW-x32: UmxWnp.Dll [X]

HKU\S-1-5-21-2475283547-382533497-2114658951-1001\...\Run: [skyDrive] => C:\Users\Tina\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-05-22] (Microsoft Corporation)

HKU\S-1-5-21-2475283547-382533497-2114658951-1001\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)

HKU\S-1-5-21-2475283547-382533497-2114658951-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [457728 2013-09-29] (Microsoft Corporation)

AppInit_DLLs: UmxSbxExA64.dll => C:\WINDOWS\system32\UmxSbxExA64.dll [171600 2011-02-28] (CA)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk

ShortcutTarget: Audible Download Manager.lnk -> C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe (Audible, Inc.)

ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://mystart.toshiba.com

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://mystart.toshiba.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://mystart.toshiba.com

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com

HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://mystart.toshiba.com

SearchScopes: HKLM - DefaultScope {308C395A-8B92-4B2B-88B1-C18297E04636} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS

SearchScopes: HKLM - {308C395A-8B92-4B2B-88B1-C18297E04636} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS

SearchScopes: HKLM-x32 - DefaultScope {308C395A-8B92-4B2B-88B1-C18297E04636} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS

SearchScopes: HKLM-x32 - {308C395A-8B92-4B2B-88B1-C18297E04636} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS

SearchScopes: HKCU - DefaultScope {308C395A-8B92-4B2B-88B1-C18297E04636} URL = 

SearchScopes: HKCU - {308C395A-8B92-4B2B-88B1-C18297E04636} URL = 

BHO: Total Defense Anti-Phishing Toolbar Helper - {45011CF5-E4A9-4F13-9093-F30A784EB9B2} - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\toolbar\caIEToolbar.dll (Total Defense, Inc.)

BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

BHO-x32: Total Defense Anti-Phishing Toolbar Helper - {45011CF5-E4A9-4F13-9093-F30A784EB9B2} - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\x86\toolbar\caIEToolbar.dll (Total Defense, Inc.)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Toolbar: HKLM - Total Defense Anti-Phishing Toolbar - {0123B506-0AD9-43AA-B0CF-916C122AD4C5} - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\toolbar\caIEToolbar.dll (Total Defense, Inc.)

Toolbar: HKLM-x32 - Total Defense Anti-Phishing Toolbar - {0123B506-0AD9-43AA-B0CF-916C122AD4C5} - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\x86\toolbar\caIEToolbar.dll (Total Defense, Inc.)

Toolbar: HKCU - Total Defense Anti-Phishing Toolbar - {0123B506-0AD9-43AA-B0CF-916C122AD4C5} - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\toolbar\caIEToolbar.dll (Total Defense, Inc.)

Winsock: Catalog9-x64 01 C:\windows\system32\VetRedir64.dll [105552] (Computer Associates International, Inc.)

Winsock: Catalog9-x64 02 C:\windows\system32\VetRedir64.dll [105552] (Computer Associates International, Inc.)

Winsock: Catalog9-x64 03 C:\windows\system32\VetRedir64.dll [105552] (Computer Associates International, Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

 

FireFox:

========

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF HKLM-x32\...\Firefox\Extensions: [caaphishtoolbar@ca.com] - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\x86\Toolbar\Firefox

FF Extension: Total Defense Anti-Phishing Toolbar - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\x86\Toolbar\Firefox [2013-10-14]

 

Chrome: 

=======

CHR Extension: (Google Docs) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-14]

CHR Extension: (Google Drive) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-14]

CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-22]

CHR Extension: (YouTube) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-14]

CHR Extension: (Google Search) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-14]

CHR Extension: (Total Defense Anti-Phishing Toolbar) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpdpkkpdlooddakbebmkeeegehfjdnih [2013-10-14]

CHR Extension: (Google Wallet) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-14]

CHR Extension: (Gmail) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-14]

CHR HKLM-x32\...\Chrome\Extension: [hpdpkkpdlooddakbebmkeeegehfjdnih] - C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\x86\Toolbar\GoogleChrome\td_aphish_toolbar.crx [2013-10-15]

 

==================== Services (Whitelisted) =================

 

R2 CAAMSvc; C:\Program Files\Total Defense\Internet Security Suite\Anti-Virus\caamsvc.exe [313040 2013-10-29] (Total Defense, Inc.)

R3 CaCCProvSP; C:\Program Files\Total Defense\Internet Security Suite\ccprovsp.exe [367112 2013-10-15] (Total Defense, Inc.)

R2 CAISafe; C:\Program Files\Total Defense\Internet Security Suite\Anti-Virus\isafe.exe [314448 2012-08-17] (Computer Associates International, Inc.)

R2 ccSchedulerSVC; C:\Program Files\Total Defense\Internet Security Suite\ccschedulersvc.exe [288776 2013-10-15] (Total Defense, Inc.)

S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3939008 2012-07-11] (Symantec Corporation)

R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\SymcPCCULaunchSvc.exe [123320 2012-07-23] (Symantec Corporation)

R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe [126392 2012-07-23] (Symantec Corporation)

R2 THAccelSvc; C:\Program Files\TOSHIBA\HDD Accelerator\THAccelSvc.exe [214488 2012-08-10] (TOSHIBA CORPORATION)

R2 UmxEngine; C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe [920656 2011-04-04] (CA)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)

R2 WinSvchostManagerSrv; C:\windows\SysWOW64\cfgmig32.exe [265736 2013-10-15] ()

 

==================== Drivers (Whitelisted) ====================

 

S2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [199008 2012-06-23] (AppEx Networks Corporation)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-07-17] (Advanced Micro Devices)

R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00B\ccSetx64.sys [168608 2012-05-25] (Symantec Corporation)

R1 KmxAgent; C:\Windows\System32\DRIVERS\kmxagent.sys [113744 2011-10-26] (CA)

R0 KmxAMRT; C:\Windows\System32\DRIVERS\KmxAMRT.sys [182352 2011-10-27] (Total Defense)

R2 KmxCF; C:\Windows\System32\DRIVERS\KmxCF.sys [201936 2011-09-06] (CA)

R1 KmxCfg; C:\Windows\System32\DRIVERS\kmxcfg.sys [365136 2011-09-06] (CA)

R1 KmxFile; C:\Windows\System32\DRIVERS\KmxFile.sys [87120 2011-09-06] (CA)

R1 KmxFilter; C:\Windows\system32\DRIVERS\KmxFilter.sys [99024 2011-09-06] (CA)

R0 KmxFw; C:\Windows\System32\DRIVERS\kmxfw.sys [143824 2011-09-06] (CA)

R2 KmxSbx; C:\Windows\System32\DRIVERS\KmxSbx.sys [81488 2011-09-06] (CA)

R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation                           )

R0 THAccel; C:\Windows\System32\DRIVERS\THAccel.sys [131520 2012-08-10] (TOSHIBA CORPORATION)

R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [28632 2012-07-31] (Windows ® Win 7 DDK provider)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-06-26 00:15 - 2014-06-26 00:17 - 00018021 _____ () C:\Users\Tina\Downloads\FRST.txt

2014-06-26 00:15 - 2014-06-26 00:16 - 00000000 ____D () C:\FRST

2014-06-26 00:14 - 2014-06-26 00:14 - 02082816 _____ (Farbar) C:\Users\Tina\Downloads\FRST64.exe

2014-06-25 23:21 - 2014-06-25 23:22 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Tina\Downloads\mbam-setup-2.0.2.1012 (1).exe

2014-06-25 23:21 - 2014-06-25 23:21 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2014-06-25 23:20 - 2014-06-25 23:20 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-06-25 23:20 - 2014-06-25 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-06-25 23:20 - 2014-06-25 23:20 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-06-25 23:20 - 2014-06-25 23:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-06-25 23:20 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys

2014-06-25 23:20 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys

2014-06-25 23:20 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys

2014-06-25 23:17 - 2014-06-25 23:17 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Tina\Downloads\mbam-setup-2.0.2.1012.exe

2014-06-25 22:16 - 2014-06-25 22:16 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe

2014-06-25 22:16 - 2014-06-25 22:16 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe

2014-06-25 22:16 - 2014-06-25 22:16 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe

2014-06-25 22:16 - 2014-06-25 22:16 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll

2014-06-25 22:16 - 2014-06-25 22:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2014-06-25 22:15 - 2014-06-25 22:15 - 00000000 ____D () C:\Program Files (x86)\Java

2014-06-25 22:13 - 2014-06-25 22:13 - 00918952 _____ (Oracle Corporation) C:\Users\Tina\Downloads\chromeinstall-7u60.exe

2014-06-25 21:59 - 2014-06-25 21:59 - 30984104 _____ (Oracle Corporation) C:\Users\Tina\Downloads\jre-7u60-windows-x64.exe

2014-06-25 21:46 - 2014-06-25 21:46 - 00001261 _____ () C:\Users\Tina\Desktop\wurm - Shortcut.lnk

2014-06-25 21:29 - 2014-06-25 21:29 - 00000102 ____H () C:\Users\Tina\Downloads\.~lock.wurm.txt#

2014-06-25 21:28 - 2014-06-25 21:28 - 00000090 _____ () C:\Users\Tina\Downloads\wurm.txt

2014-06-16 21:02 - 2014-06-16 21:02 - 00000000 ____D () C:\Users\Tina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wurm Online

2014-06-12 13:18 - 2014-06-12 13:18 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf

2014-06-10 21:23 - 2014-05-30 02:45 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-06-10 21:23 - 2014-05-30 02:18 - 17271296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-06-10 21:23 - 2014-05-30 02:06 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll

2014-06-10 21:23 - 2014-05-30 01:38 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-06-10 21:23 - 2014-05-30 01:29 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2014-06-10 21:23 - 2014-05-30 01:27 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll

2014-06-10 21:23 - 2014-05-30 01:23 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2014-06-10 21:23 - 2014-05-30 01:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll

2014-06-10 21:23 - 2014-05-30 01:04 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll

2014-06-10 21:23 - 2014-05-30 01:02 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll

2014-06-10 21:23 - 2014-05-30 00:56 - 04244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-06-10 21:23 - 2014-05-30 00:54 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2014-06-10 21:23 - 2014-05-30 00:49 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2014-06-10 21:23 - 2014-05-30 00:40 - 11725312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-06-10 21:23 - 2014-05-30 00:30 - 01398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-06-10 21:23 - 2014-05-30 00:15 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-06-10 21:23 - 2014-05-30 00:13 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll

2014-06-10 21:22 - 2014-05-30 03:21 - 23414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-06-10 21:22 - 2014-05-30 02:28 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2014-06-10 21:22 - 2014-05-30 02:20 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2014-06-10 21:22 - 2014-05-30 02:08 - 05782528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-06-10 21:22 - 2014-05-30 01:46 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll

2014-06-10 21:22 - 2014-05-30 01:44 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll

2014-06-10 21:22 - 2014-05-30 01:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll

2014-06-10 21:22 - 2014-05-30 01:35 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-06-10 21:22 - 2014-05-30 00:56 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-06-10 21:22 - 2014-05-30 00:43 - 13522944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-06-10 21:22 - 2014-05-30 00:21 - 01790976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-06-10 21:22 - 2014-05-30 00:13 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll

2014-06-10 21:21 - 2014-05-09 20:46 - 02151424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll

2014-06-10 21:21 - 2014-05-09 20:22 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll

2014-06-10 21:21 - 2014-05-08 16:06 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys

2014-06-10 21:21 - 2014-05-04 21:02 - 03360256 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll

2014-06-10 21:21 - 2014-05-03 00:14 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe

2014-06-10 21:21 - 2014-05-02 21:21 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2014-06-10 21:21 - 2014-05-02 21:07 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2014-06-10 21:21 - 2014-05-02 20:41 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll

2014-06-10 21:21 - 2014-05-02 20:38 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll

2014-06-10 21:21 - 2014-04-30 04:16 - 01336648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2014-06-10 21:21 - 2014-04-29 20:51 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2014-06-10 21:21 - 2014-04-03 00:59 - 02518872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2014-06-10 21:21 - 2014-04-03 00:59 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS

2014-06-10 21:20 - 2014-04-18 07:57 - 00032600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll

2014-06-10 21:20 - 2014-04-18 07:44 - 01466856 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll

2014-06-10 21:20 - 2014-04-18 06:29 - 01200288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll

2014-06-10 21:20 - 2014-04-18 02:44 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll

2014-06-10 21:20 - 2014-04-18 02:32 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2014-06-10 21:20 - 2014-04-18 01:58 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2014-06-10 21:20 - 2014-04-18 01:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll

2014-06-10 21:20 - 2014-04-18 01:21 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll

2014-06-10 21:20 - 2014-04-18 01:09 - 08652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll

2014-06-10 21:20 - 2014-04-18 00:51 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll

2014-06-10 21:20 - 2014-04-18 00:49 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll

2014-06-10 21:20 - 2014-04-14 02:20 - 00324888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll

2014-06-10 21:20 - 2014-04-14 01:01 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll

2014-06-10 21:20 - 2014-04-10 21:51 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll

2014-06-10 21:20 - 2014-04-10 21:23 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll

2014-06-10 21:20 - 2014-04-10 20:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll

2014-06-10 21:20 - 2014-04-09 04:53 - 00337240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys

2014-06-10 21:20 - 2014-04-08 23:39 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll

2014-06-10 21:20 - 2014-04-08 22:44 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll

2014-06-10 21:20 - 2014-04-08 21:35 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2014-06-10 21:20 - 2014-04-08 20:33 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll

2014-06-10 21:20 - 2014-04-07 19:01 - 00589656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys

2014-06-10 21:20 - 2014-04-06 09:34 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys

2014-06-10 21:20 - 2014-04-06 09:34 - 00275800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys

2014-06-10 21:20 - 2014-04-06 09:32 - 00125496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll

2014-06-10 21:20 - 2014-04-06 09:31 - 21268952 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2014-06-10 21:20 - 2014-04-06 09:30 - 00201920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll

2014-06-10 21:20 - 2014-04-06 09:24 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys

2014-06-10 21:20 - 2014-04-06 09:20 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 01403856 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 01379064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00881616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00765408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00609448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00491744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00467496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00463256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00244880 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2014-06-10 21:20 - 2014-04-06 09:20 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2014-06-10 21:20 - 2014-04-06 09:20 - 00028408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe

2014-06-10 21:20 - 2014-04-06 08:23 - 00098584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll

2014-06-10 21:20 - 2014-04-06 08:22 - 18755672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2014-06-10 21:20 - 2014-04-06 08:22 - 00178184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 01209616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 00669856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 00518544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 00406504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2014-06-10 21:20 - 2014-04-06 08:16 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2014-06-10 21:20 - 2014-04-06 07:10 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2014-06-10 21:20 - 2014-04-06 05:58 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll

2014-06-10 21:20 - 2014-04-06 05:51 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll

2014-06-10 21:20 - 2014-04-06 05:33 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe

2014-06-10 21:20 - 2014-04-06 05:24 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe

2014-06-10 21:20 - 2014-04-06 05:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll

2014-06-10 21:20 - 2014-04-06 04:55 - 16872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2014-06-10 21:20 - 2014-04-06 04:54 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2014-06-10 21:20 - 2014-04-06 04:26 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll

2014-06-10 21:20 - 2014-04-06 04:20 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2014-06-10 21:20 - 2014-04-06 04:01 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2014-06-10 21:20 - 2014-04-06 03:52 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2014-06-10 21:20 - 2014-04-06 03:51 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2014-06-10 21:20 - 2014-04-06 03:37 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2014-06-10 21:20 - 2014-04-06 03:36 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2014-06-10 21:20 - 2014-04-06 03:05 - 01222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll

2014-06-10 21:20 - 2014-04-06 02:59 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll

2014-06-10 21:20 - 2014-04-03 01:12 - 02124840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll

2014-06-10 21:20 - 2014-04-03 01:12 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2014-06-10 21:20 - 2014-04-03 01:12 - 00130144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll

2014-06-10 21:20 - 2014-04-02 21:03 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2014-06-10 21:20 - 2014-04-02 21:03 - 00111528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll

2014-06-10 21:20 - 2014-04-02 20:53 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll

2014-06-10 21:20 - 2014-04-02 19:53 - 04269056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll

2014-06-10 21:20 - 2014-04-02 19:53 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys

2014-06-10 21:20 - 2014-04-02 19:51 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll

2014-06-10 21:20 - 2014-04-02 19:23 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2014-06-10 21:20 - 2014-04-02 19:23 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys

2014-06-10 21:20 - 2014-04-02 19:23 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tlscsp.dll

2014-06-10 21:20 - 2014-04-02 19:22 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlscsp.dll

2014-06-10 21:20 - 2014-03-31 23:23 - 00384856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2014-06-10 21:20 - 2014-03-30 22:42 - 07425368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2014-06-10 21:20 - 2014-03-30 17:41 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll

2014-06-10 21:20 - 2014-03-30 17:01 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll

2014-06-10 21:20 - 2014-03-30 16:43 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll

2014-06-10 21:20 - 2014-03-30 15:54 - 01308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll

2014-06-10 21:20 - 2014-03-30 15:49 - 01287168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll

2014-06-10 21:20 - 2014-03-30 15:35 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll

2014-06-10 21:20 - 2014-03-30 15:11 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll

2014-06-10 21:20 - 2014-03-30 14:47 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe

2014-06-10 21:20 - 2014-03-28 08:58 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe

2014-06-10 21:20 - 2014-03-26 23:16 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys

2014-06-10 21:20 - 2014-03-26 22:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll

2014-06-10 21:20 - 2014-03-26 21:59 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll

2014-06-10 21:20 - 2014-03-26 21:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll

2014-06-10 21:20 - 2014-03-26 21:19 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll

2014-06-10 21:20 - 2014-03-26 20:46 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll

2014-06-10 21:20 - 2014-03-26 20:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll

2014-06-10 21:20 - 2014-03-26 20:10 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe

2014-06-10 21:20 - 2014-03-24 15:58 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys

2014-06-10 21:20 - 2014-03-19 20:48 - 00263424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe

2014-06-10 21:20 - 2014-03-19 17:44 - 06645248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2014-06-10 21:20 - 2014-03-19 16:33 - 05774848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2014-06-10 21:20 - 2014-03-19 01:15 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll

2014-06-10 21:20 - 2014-03-19 01:07 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys

2014-06-10 21:20 - 2014-03-19 00:24 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll

2014-06-10 21:20 - 2014-03-19 00:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll

2014-06-10 21:20 - 2014-03-18 23:36 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll

2014-06-10 21:20 - 2014-03-18 22:56 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll

2014-06-10 21:20 - 2014-03-18 22:45 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll

2014-06-10 21:20 - 2014-03-18 22:19 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll

2014-06-10 21:20 - 2014-03-18 22:07 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll

2014-06-10 21:20 - 2014-03-18 22:02 - 01527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll

2014-06-10 21:20 - 2014-03-18 22:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll

2014-06-10 21:20 - 2014-03-18 21:51 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll

2014-06-10 21:20 - 2014-03-18 21:31 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll

2014-06-10 21:20 - 2014-03-18 21:18 - 02688000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll

2014-06-10 21:20 - 2014-03-18 01:19 - 00077312 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys

2014-06-10 21:20 - 2014-03-17 22:00 - 07173120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll

2014-06-10 21:20 - 2014-03-17 21:52 - 05104640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll

2014-06-10 21:20 - 2014-03-16 22:09 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll

2014-06-10 21:20 - 2014-03-16 21:11 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll

2014-06-10 21:20 - 2014-03-16 20:01 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2014-06-10 21:20 - 2014-03-16 19:47 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2014-06-10 21:20 - 2014-03-16 19:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2014-06-10 21:20 - 2014-03-13 23:26 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll

2014-06-10 21:20 - 2014-03-13 23:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll

2014-06-10 21:20 - 2014-03-06 05:42 - 00310616 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys

2014-06-10 21:19 - 2014-05-18 23:31 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe

2014-06-10 21:19 - 2014-05-18 23:21 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe

2014-06-10 21:19 - 2014-05-18 22:23 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe

2014-06-10 21:19 - 2014-04-29 21:43 - 01975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2014-06-10 21:19 - 2014-04-29 21:26 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2014-06-10 21:19 - 2014-04-29 20:47 - 01509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2014-06-10 21:18 - 2014-05-01 06:31 - 03048904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe

2014-06-10 21:18 - 2014-05-01 06:31 - 00055328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys

2014-06-10 21:18 - 2014-05-01 00:14 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll

2014-06-10 21:18 - 2014-05-01 00:05 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll

2014-06-10 21:18 - 2014-04-30 23:51 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll

2014-06-10 21:18 - 2014-04-30 22:24 - 02834944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll

2014-06-10 21:14 - 2014-06-10 21:14 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll

2014-06-10 21:13 - 2014-06-10 21:13 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

2014-06-10 21:13 - 2014-06-10 21:13 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe

2014-06-10 21:12 - 2014-06-10 21:12 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe

2014-06-10 21:12 - 2014-06-10 21:12 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe

2014-06-10 21:12 - 2014-06-10 21:12 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll

2014-06-01 18:22 - 2014-06-01 18:22 - 00280696 _____ () C:\WINDOWS\Minidump\060114-22171-01.dmp

2014-05-30 19:29 - 2014-05-30 19:29 - 00280696 _____ () C:\WINDOWS\Minidump\053014-23406-01.dmp

2014-05-30 17:42 - 2014-05-30 17:42 - 00280640 _____ () C:\WINDOWS\Minidump\053014-26296-01.dmp

2014-05-27 21:42 - 2014-05-27 21:42 - 00280696 _____ () C:\WINDOWS\Minidump\052714-24984-01.dmp

 

==================== One Month Modified Files and Folders =======

 

2014-06-26 00:17 - 2014-06-26 00:15 - 00018021 _____ () C:\Users\Tina\Downloads\FRST.txt

2014-06-26 00:16 - 2014-06-26 00:15 - 00000000 ____D () C:\FRST

2014-06-26 00:14 - 2014-06-26 00:14 - 02082816 _____ (Farbar) C:\Users\Tina\Downloads\FRST64.exe

2014-06-26 00:14 - 2013-10-14 12:37 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2014-06-26 00:00 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sru

2014-06-25 23:26 - 2013-10-14 12:22 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2475283547-382533497-2114658951-1001

2014-06-25 23:22 - 2014-06-25 23:21 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Tina\Downloads\mbam-setup-2.0.2.1012 (1).exe

2014-06-25 23:21 - 2014-06-25 23:21 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2014-06-25 23:20 - 2014-06-25 23:20 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-06-25 23:20 - 2014-06-25 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-06-25 23:20 - 2014-06-25 23:20 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-06-25 23:20 - 2014-06-25 23:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-06-25 23:17 - 2014-06-25 23:17 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Tina\Downloads\mbam-setup-2.0.2.1012.exe

2014-06-25 22:17 - 2013-10-14 13:35 - 00000000 ____D () C:\ProgramData\Oracle

2014-06-25 22:16 - 2014-06-25 22:16 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe

2014-06-25 22:16 - 2014-06-25 22:16 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe

2014-06-25 22:16 - 2014-06-25 22:16 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe

2014-06-25 22:16 - 2014-06-25 22:16 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll

2014-06-25 22:16 - 2014-06-25 22:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2014-06-25 22:15 - 2014-06-25 22:15 - 00000000 ____D () C:\Program Files (x86)\Java

2014-06-25 22:13 - 2014-06-25 22:13 - 00918952 _____ (Oracle Corporation) C:\Users\Tina\Downloads\chromeinstall-7u60.exe

2014-06-25 21:59 - 2014-06-25 21:59 - 30984104 _____ (Oracle Corporation) C:\Users\Tina\Downloads\jre-7u60-windows-x64.exe

2014-06-25 21:46 - 2014-06-25 21:46 - 00001261 _____ () C:\Users\Tina\Desktop\wurm - Shortcut.lnk

2014-06-25 21:29 - 2014-06-25 21:29 - 00000102 ____H () C:\Users\Tina\Downloads\.~lock.wurm.txt#

2014-06-25 21:28 - 2014-06-25 21:28 - 00000090 _____ () C:\Users\Tina\Downloads\wurm.txt

2014-06-25 21:15 - 2013-10-14 22:47 - 00000000 ____D () C:\Users\Tina\AppData\Local\CrashDumps

2014-06-25 20:14 - 2013-10-14 12:37 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2014-06-25 19:30 - 2013-11-14 21:07 - 01076597 _____ () C:\WINDOWS\WindowsUpdate.log

2014-06-25 13:30 - 2012-07-26 00:59 - 00000000 ____D () C:\WINDOWS\CbsTemp

2014-06-25 11:16 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\AppReadiness

2014-06-25 11:08 - 2014-03-20 17:06 - 00000000 __RDO () C:\Users\Tina\SkyDrive

2014-06-17 20:09 - 2013-10-14 12:37 - 00003882 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2014-06-17 20:09 - 2013-10-14 12:37 - 00003646 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2014-06-16 21:02 - 2014-06-16 21:02 - 00000000 ____D () C:\Users\Tina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wurm Online

2014-06-16 21:02 - 2013-10-26 20:10 - 00002184 _____ () C:\Users\Tina\Documents\Wurm Online.lnk

2014-06-13 10:20 - 2013-08-22 07:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT

2014-06-13 01:23 - 2013-10-15 00:31 - 08161729 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k0

2014-06-13 01:23 - 2013-10-15 00:31 - 00408980 _____ () C:\WINDOWS\system32\Drivers\KmxAgent.asc

2014-06-13 01:23 - 2013-10-15 00:31 - 00000709 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k0

2014-06-13 01:23 - 2013-10-15 00:31 - 00000085 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k7

2014-06-13 01:23 - 2013-10-15 00:31 - 00000085 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k6

2014-06-13 01:23 - 2013-10-15 00:31 - 00000085 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k5

2014-06-13 01:23 - 2013-10-15 00:31 - 00000085 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k4

2014-06-13 01:23 - 2013-10-15 00:31 - 00000085 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k3

2014-06-13 01:23 - 2013-10-15 00:31 - 00000085 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k2

2014-06-13 01:23 - 2013-10-15 00:31 - 00000085 _____ () C:\WINDOWS\system32\Drivers\kmxcfg.u2k1

2014-06-13 01:23 - 2013-10-15 00:31 - 00000049 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k7

2014-06-13 01:23 - 2013-10-15 00:31 - 00000049 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k6

2014-06-13 01:23 - 2013-10-15 00:31 - 00000049 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k5

2014-06-13 01:23 - 2013-10-15 00:31 - 00000049 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k4

2014-06-13 01:23 - 2013-10-15 00:31 - 00000049 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k3

2014-06-13 01:23 - 2013-10-15 00:31 - 00000049 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k2

2014-06-13 01:23 - 2013-10-15 00:31 - 00000049 _____ () C:\WINDOWS\system32\Drivers\kmxzone.u2k1

2014-06-13 01:23 - 2013-08-22 06:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI

2014-06-12 13:38 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\rescache

2014-06-12 13:18 - 2014-06-12 13:18 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf

2014-06-12 13:18 - 2013-11-14 21:04 - 00002990 _____ () C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements

2014-06-12 13:18 - 2013-08-22 07:46 - 00295867 _____ () C:\WINDOWS\setupact.log

2014-06-12 11:08 - 2013-09-29 21:04 - 00863592 _____ () C:\WINDOWS\system32\PerfStringBackup.INI

2014-06-12 11:03 - 2013-08-22 07:44 - 00360248 _____ () C:\WINDOWS\system32\FNTCACHE.DAT

2014-06-12 00:37 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ToastData

2014-06-12 00:37 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\WinStore

2014-06-12 00:36 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel

2014-06-12 00:36 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\system32\oobe

2014-06-11 12:54 - 2013-10-15 11:39 - 00000000 ____D () C:\WINDOWS\system32\MRT

2014-06-11 12:52 - 2013-10-15 11:39 - 95414520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2014-06-10 21:14 - 2014-06-10 21:14 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll

2014-06-10 21:13 - 2014-06-10 21:13 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

2014-06-10 21:13 - 2014-06-10 21:13 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe

2014-06-10 21:12 - 2014-06-10 21:12 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe

2014-06-10 21:12 - 2014-06-10 21:12 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe

2014-06-10 21:12 - 2014-06-10 21:12 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll

2014-06-10 21:12 - 2014-06-10 21:12 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll

2014-06-02 00:01 - 2013-11-14 21:11 - 00000000 ____D () C:\Users\Tina

2014-06-01 18:22 - 2014-06-01 18:22 - 00280696 _____ () C:\WINDOWS\Minidump\060114-22171-01.dmp

2014-06-01 18:22 - 2013-11-15 19:58 - 00000000 ____D () C:\WINDOWS\Minidump

2014-06-01 18:22 - 2013-10-14 18:55 - 857417658 _____ () C:\WINDOWS\MEMORY.DMP

2014-06-01 18:09 - 2013-10-14 11:54 - 00000000 ____D () C:\Users\Tina\AppData\Local\Packages

2014-05-30 22:13 - 2013-08-22 08:38 - 00703992 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2014-05-30 22:13 - 2013-08-22 08:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2014-05-30 19:31 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\NDF

2014-05-30 19:29 - 2014-05-30 19:29 - 00280696 _____ () C:\WINDOWS\Minidump\053014-23406-01.dmp

2014-05-30 17:42 - 2014-05-30 17:42 - 00280640 _____ () C:\WINDOWS\Minidump\053014-26296-01.dmp

2014-05-30 03:21 - 2014-06-10 21:22 - 23414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-05-30 02:45 - 2014-06-10 21:23 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-05-30 02:28 - 2014-06-10 21:22 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2014-05-30 02:20 - 2014-06-10 21:22 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2014-05-30 02:18 - 2014-06-10 21:23 - 17271296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-05-30 02:08 - 2014-06-10 21:22 - 05782528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-05-30 02:06 - 2014-06-10 21:23 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll

2014-05-30 01:46 - 2014-06-10 21:22 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll

2014-05-30 01:44 - 2014-06-10 21:22 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll

2014-05-30 01:43 - 2014-06-10 21:22 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll

2014-05-30 01:38 - 2014-06-10 21:23 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-05-30 01:35 - 2014-06-10 21:22 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-05-30 01:29 - 2014-06-10 21:23 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2014-05-30 01:27 - 2014-06-10 21:23 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll

2014-05-30 01:23 - 2014-06-10 21:23 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2014-05-30 01:16 - 2014-06-10 21:23 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll

2014-05-30 01:04 - 2014-06-10 21:23 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll

2014-05-30 01:02 - 2014-06-10 21:23 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll

2014-05-30 00:56 - 2014-06-10 21:23 - 04244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-05-30 00:56 - 2014-06-10 21:22 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-05-30 00:54 - 2014-06-10 21:23 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2014-05-30 00:49 - 2014-06-10 21:23 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2014-05-30 00:43 - 2014-06-10 21:22 - 13522944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-05-30 00:40 - 2014-06-10 21:23 - 11725312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-05-30 00:30 - 2014-06-10 21:23 - 01398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-05-30 00:21 - 2014-06-10 21:22 - 01790976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-05-30 00:15 - 2014-06-10 21:23 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-05-30 00:13 - 2014-06-10 21:23 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll

2014-05-30 00:13 - 2014-06-10 21:22 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll

2014-05-27 21:42 - 2014-05-27 21:42 - 00280696 _____ () C:\WINDOWS\Minidump\052714-24984-01.dmp

2014-05-27 09:25 - 2013-08-22 06:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM

 

Some content of TEMP:

====================

C:\Users\Dargan\AppData\Local\Temp\wi9z3m6x.dll

C:\Users\Tina\AppData\Local\Temp\-g9qku3z.dll

C:\Users\Tina\AppData\Local\Temp\1xibo6--.dll

C:\Users\Tina\AppData\Local\Temp\ajl7swsm.dll

C:\Users\Tina\AppData\Local\Temp\cjdt9rud.dll

C:\Users\Tina\AppData\Local\Temp\ckpdfynr.dll

C:\Users\Tina\AppData\Local\Temp\g20qxvik.dll

C:\Users\Tina\AppData\Local\Temp\h9dpyhsn.dll

C:\Users\Tina\AppData\Local\Temp\HubManager.exe

C:\Users\Tina\AppData\Local\Temp\ib7ohdhl.dll

C:\Users\Tina\AppData\Local\Temp\intoxpam.dll

C:\Users\Tina\AppData\Local\Temp\iyogydhq.dll

C:\Users\Tina\AppData\Local\Temp\jhdldiud.dll

C:\Users\Tina\AppData\Local\Temp\jmatnej4.dll

C:\Users\Tina\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe

C:\Users\Tina\AppData\Local\Temp\jxw4xktq.dll

C:\Users\Tina\AppData\Local\Temp\o1ou5lsc.dll

C:\Users\Tina\AppData\Local\Temp\ryulfnqn.dll

C:\Users\Tina\AppData\Local\Temp\v7cc71mv.dll

C:\Users\Tina\AppData\Local\Temp\v83ss4xv.dll

C:\Users\Tina\AppData\Local\Temp\v9vwrcuv.dll

C:\Users\Tina\AppData\Local\Temp\x5a2ovjh.dll

C:\Users\Tina\AppData\Local\Temp\zc48iiug.dll

C:\Users\Tina\AppData\Local\Temp\_m2cchaq.dll

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2014-06-25 13:27

 

==================== End Of Log ============================

 

 

 

Addition.txt

[gringo_pr]

Hello

I would like to apologize for the delay and ask if you still need help with this?

Gringo

[gringo_pr]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

[gringo_pr]

Hello

I went thru the report and it looks clean - do you have any oither symptoms? try uploading the file to virus total and see what they say

Gringo

[gringo_pr]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!