DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.17280 BrowserJavaVersion: 10.67.2 Run by at 14:24:48 on 2014-09-13 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.47.1033.18.16346.12523 [GMT 2:00] . AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\atieclxx.exe D:\AVAST Software\Avast\AvastSvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork D:\AVAST Software\Avast\afwServ.exe D:\SUPERAntispy\SASCORE64.EXE C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Intel\iCLS Client\HeciServer.exe C:\Windows\system32\IProsetMonitor.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Windows\System32\rundll32.exe C:\Windows\System32\rundll32.exe C:\Program Files\Microsoft Device Center\itype.exe C:\Program Files\Microsoft Device Center\ipoint.exe C:\Program Files\Logitech\Gaming Software\LWEMon.exe C:\Program Files\Logitech Gaming Software\LCore.exe C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe C:\Windows\system32\wbem\wmiprvse.exe D:\SUPERAntispy\SUPERAntiSpyware.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe G:\PowerISO\PWRISOVM.EXE D:\AVAST Software\Avast\avastui.exe G:\Steam\Steam.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe G:\Steam\bin\steamwebhelper.exe G:\Steam\bin\steamwebhelper.exe C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera_crashreporter.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com uSearchAssistant = www.google.com BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\AVAST Software\Avast\aswWebRepIE.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll uRun: [DAEMON Tools Lite] "G:\DAEMON Tools Lite\DTLite.exe" -autorun uRun: [Steam] "G:\Steam\steam.exe" -silent uRun: [ANT Agent] C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe uRun: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup uRun: [SUPERAntiSpyware] D:\SUPERAntispy\SUPERAntiSpyware.exe mRun: [ZyngaGamesAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe" mRun: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe" mRun: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\THXAudioCP\THXAudio.exe" /r mRun: [VolPanel] "C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe" /r mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" mRun: [PWRISOVM.EXE] G:\PowerISO\PWRISOVM.EXE -startup mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun mRun: [AvastUI.exe] "D:\AVAST Software\Avast\AvastUI.exe" /nogui StartupFolder: C:\Users\\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe uPolicies-Explorer: NoDrives = dword:0 mPolicies-Explorer: NoDrives = dword:0 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 TCP: NameServer = 192.168.137.1 TCP: Interfaces\{576F0F55-6EC7-4EBA-B649-F911DD05108C} : DHCPNameServer = 192.168.137.1 SSODL: WebCheck - x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\AVAST Software\Avast\aswWebRepIE64.dll x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s x64-Run: [THXCfg64] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\THXCfg64.dll,RunDLLEntry THXCfg64 x64-Run: [RunDLLEntry] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\AmbRunE.dll,RunDLLEntry x64-Run: [IntelliType Pro] "C:\Program Files\Microsoft Device Center\itype.exe" x64-Run: [IntelliPoint] "C:\Program Files\Microsoft Device Center\ipoint.exe" x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe x64-Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui x64-Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized x64-Notify: igfxcui - igfxdev.dll x64-SSODL: WebCheck - . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\\AppData\Roaming\Mozilla\Firefox\Profiles\xjk9afdp.default\ . ============= SERVICES / DRIVERS =============== . R0 aswNdisFlt;Avast! Firewall Driver;C:\Windows\System32\drivers\aswNdisFlt.sys [2014-9-12 448400] R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2014-9-12 65776] R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2014-9-12 224896] R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2012-10-3 16152] R1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2012-10-3 21616] R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2014-9-12 28184] R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2014-9-12 1041168] R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2014-9-12 427360] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-10-12 283200] R1 SASDIFSV;SASDIFSV;D:\SUPERAntispy\sasdifsv64.sys [2011-7-22 14928] R1 SASKUTIL;SASKUTIL;D:\SUPERAntispy\saskutil64.sys [2011-7-12 12368] R2 !SASCORE;SAS Core Service;D:\SUPERAntispy\SASCore64.exe [2014-7-23 172344] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-4-18 239616] R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-9-12 29208] R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-9-12 79184] R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2014-9-12 92008] R2 avast! Antivirus;avast! Antivirus;D:\AVAST Software\Avast\AvastSvc.exe [2014-9-12 50344] R2 avast! Firewall;avast! Firewall;D:\AVAST Software\Avast\afwServ.exe [2014-9-12 106488] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088] R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-10-3 13592] R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456] R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2012-10-3 171688] R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-10-3 161560] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-9-11 1809720] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-9-11 860472] R2 SCBackService;Splashtop Connect Service;C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000] R2 SSUService;Splashtop Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2013-8-7 609056] R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-10-3 363800] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-12-19 94720] R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2012-10-3 356120] R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2012-10-3 787736] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-10-3 104560] R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-24 22408] R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;C:\Windows\System32\drivers\LGSHidFilt.Sys [2013-5-30 64280] R3 LGSUsbFilt;Logitech Gaming KMDF USB Filter Driver;C:\Windows\System32\drivers\LGSUsbFilt.sys [2013-5-30 41752] R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-24 16008] R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2012-10-4 25816] R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-9-11 122584] R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-9-11 63704] R3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2012-10-3 32344] R3 RTCore64;RTCore64;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2014-5-19 13480] R3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464] S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?] S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2012-10-3 79360] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2012-10-3 79360] S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;G:\Dragon Age\bin_ship\daupdatersvc.service.exe [2009-12-15 25832] S3 etdrv;etdrv;C:\Windows\etdrv.sys [2012-10-6 25640] S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2012-10-3 30528] S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-10-3 160256] S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-9-11 111616] S3 npggsvc;nProtect GameGuard Service;C:\Windows\System32\GameMon.des -service --> C:\Windows\System32\GameMon.des -service [?] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-10-5 1255736] . =============== File Associations =============== . ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1" . =============== Created Last 30 ================ . 2014-09-13 11:50:46 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A33D9A57-3822-4AB6-B7D5-1FCAB2BE06EE}\offreg.dll 2014-09-13 11:44:59 11319192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A33D9A57-3822-4AB6-B7D5-1FCAB2BE06EE}\mpengine.dll 2014-09-12 19:12:09 -------- d-sh--w- C:\$RECYCLE.BIN 2014-09-12 18:35:26 -------- d-----w- C:\SUPERDelete 2014-09-12 18:35:03 -------- d-----w- C:\Users\\AppData\Roaming\SUPERAntiSpyware.com 2014-09-12 18:34:44 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com 2014-09-12 16:18:25 -------- d-----w- C:\Users\\AppData\Local\Opera Software 2014-09-12 16:18:24 -------- d-----w- C:\Users\\AppData\Roaming\Opera Software 2014-09-12 16:16:01 111016 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll 2014-09-12 16:14:53 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2014-09-12 11:11:28 -------- d-----w- C:\Users\\AppData\Roaming\AVAST Software 2014-09-12 11:10:31 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys 2014-09-12 11:10:31 92008 ----a-w- C:\Windows\System32\drivers\aswStm.sys 2014-09-12 11:10:31 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2014-09-12 11:10:31 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2014-09-12 11:10:31 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys 2014-09-12 11:10:31 28184 ----a-w- C:\Windows\System32\drivers\aswKbd.sys 2014-09-12 11:10:31 224896 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2014-09-12 11:10:31 1041168 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2014-09-12 11:10:30 43152 ----a-w- C:\Windows\avastSS.scr 2014-09-12 11:10:29 448400 ----a-w- C:\Windows\System32\drivers\aswNdisFlt.sys 2014-09-12 11:06:39 -------- d-----w- C:\ProgramData\AVAST Software 2014-09-12 11:03:31 -------- d-----w- C:\Users\\AppData\Local\Avg2013 2014-09-12 10:38:16 -------- d-----w- C:\Program Files\Enigma Software Group 2014-09-12 10:33:12 -------- d-----w- C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP 2014-09-11 21:29:55 2777088 ----a-w- C:\Windows\System32\msmpeg2vdec.dll 2014-09-11 21:29:55 2285056 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll 2014-09-11 19:08:18 793600 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll 2014-09-11 19:08:18 1031168 ----a-w- C:\Windows\System32\TSWorkspace.dll 2014-09-11 19:07:59 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll 2014-09-11 19:07:59 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll 2014-09-11 19:07:54 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2014-09-11 19:07:54 728064 ----a-w- C:\Windows\System32\kerberos.dll 2014-09-11 19:07:54 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll 2014-09-11 19:07:54 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2014-09-11 19:07:54 1460736 ----a-w- C:\Windows\System32\lsasrv.dll 2014-09-11 19:07:52 578048 ----a-w- C:\Windows\System32\aepdu.dll 2014-09-11 19:07:52 424448 ----a-w- C:\Windows\System32\aeinv.dll 2014-09-11 16:35:20 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-09-11 16:35:06 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-09-11 16:35:06 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-09-11 16:35:06 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-09-11 16:29:25 -------- d-----w- C:\Users\AppData\Roaming\Systweak 2014-09-11 16:29:24 20312 ----a-w- C:\Windows\System32\roboot64.exe 2014-09-09 14:26:21 3163648 ----a-w- C:\Windows\System32\win32k.sys 2014-09-09 14:26:20 404480 ----a-w- C:\Windows\System32\gdi32.dll 2014-09-09 14:26:20 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll 2014-08-26 17:52:33 -------- d-----w- C:\Program Files (x86)\AVG Security Toolbar 2014-08-26 17:52:31 -------- d-----w- C:\ProgramData\Avg_Update_0814tb 2014-08-24 13:54:27 -------- d-----w- C:\Users\AppData\Roaming\theHunter 2014-08-24 13:54:26 -------- d-----w- C:\Users\\AppData\Local\theHunter 2014-08-24 13:51:57 -------- d-----w- C:\Users\\AppData\Roaming\theHunterSteam 2014-08-24 13:51:57 -------- d-----w- C:\ProgramData\Hunter 2014-08-23 18:03:47 -------- d-----w- C:\Users\\AppData\Roaming\fizzy 2014-08-18 23:01:37 99480 ----a-w- C:\Windows\SysWow64\infocardapi.dll 2014-08-18 23:01:37 8856 ----a-w- C:\Windows\SysWow64\icardres.dll 2014-08-18 23:01:37 8856 ----a-w- C:\Windows\System32\icardres.dll 2014-08-18 23:01:37 619672 ----a-w- C:\Windows\SysWow64\icardagt.exe 2014-08-18 23:01:37 171160 ----a-w- C:\Windows\System32\infocardapi.dll 2014-08-18 23:01:37 1389208 ----a-w- C:\Windows\System32\icardagt.exe 2014-08-18 23:01:36 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe 2014-08-18 23:01:36 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2014-08-18 22:00:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll 2014-08-18 22:00:01 2048 ----a-w- C:\Windows\System32\tzres.dll 2014-08-18 22:00:00 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-08-18 22:00:00 504320 ----a-w- C:\Windows\System32\msihnd.dll 2014-08-18 22:00:00 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll 2014-08-18 22:00:00 3241984 ----a-w- C:\Windows\System32\msi.dll 2014-08-18 22:00:00 2363392 ----a-w- C:\Windows\SysWow64\msi.dll 2014-08-18 22:00:00 1941504 ----a-w- C:\Windows\System32\authui.dll 2014-08-18 22:00:00 1805824 ----a-w- C:\Windows\SysWow64\authui.dll 2014-08-18 22:00:00 112064 ----a-w- C:\Windows\System32\consent.exe 2014-08-18 21:57:37 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll 2014-08-18 21:57:37 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll . ==================== Find3M ==================== . 2014-09-10 15:26:32 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2014-09-10 15:26:32 701104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2014-08-25 04:53:42 270496 ------w- C:\Windows\System32\MpSigStub.exe 2014-08-18 22:29:49 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2014-08-18 22:29:35 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2014-08-18 22:19:53 5833728 ----a-w- C:\Windows\System32\jscript9.dll 2014-08-18 22:15:34 547328 ----a-w- C:\Windows\System32\vbscript.dll 2014-08-18 22:15:09 66048 ----a-w- C:\Windows\System32\iesetup.dll 2014-08-18 22:14:38 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2014-08-18 22:14:10 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll 2014-08-18 22:08:55 4232704 ----a-w- C:\Windows\SysWow64\jscript9.dll 2014-08-18 22:03:47 139264 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-08-18 22:03:37 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-08-18 22:03:01 758272 ----a-w- C:\Windows\System32\jscript9diag.dll 2014-08-18 21:57:44 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2014-08-18 21:56:17 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2014-08-18 21:46:26 454656 ----a-w- C:\Windows\SysWow64\vbscript.dll 2014-08-18 21:45:23 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll 2014-08-18 21:45:12 72704 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll 2014-08-18 21:44:44 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll 2014-08-18 21:44:09 61952 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll 2014-08-18 21:36:07 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2014-08-18 21:35:24 597504 ----a-w- C:\Windows\SysWow64\jscript9diag.dll 2014-08-18 21:23:17 2104832 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-08-18 21:23:16 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2014-08-18 21:22:48 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll 2014-08-18 21:15:13 2310656 ----a-w- C:\Windows\System32\wininet.dll 2014-08-18 21:08:54 2014208 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2014-08-18 21:07:44 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll 2014-08-18 20:46:48 1812992 ----a-w- C:\Windows\SysWow64\wininet.dll 2014-08-04 12:34:56 30528 ----a-w- C:\Windows\GVTDrv64.sys 2014-08-04 12:34:44 25640 ----a-w- C:\Windows\gdrv.sys 2014-07-25 00:35:46 875688 ----a-w- C:\Windows\SysWow64\msvcr120_clr0400.dll 2014-07-24 21:47:06 869544 ----a-w- C:\Windows\System32\msvcr120_clr0400.dll 2014-06-27 16:32:54 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys 2014-06-18 18:00:46 241348 ----a-w- C:\Windows\SysWow64\~.tmp 2014-06-18 02:18:30 692736 ----a-w- C:\Windows\System32\osk.exe 2014-06-18 01:51:32 646144 ----a-w- C:\Windows\SysWow64\osk.exe . ============= FINISH: 14:25:01,96 ===============