Costmin Infection & Others

I suddenly discovered I had some weird links all over every web page that were basically advertisements linking to various sites to purchase things. I checked my Programs and Features to find there were two new programs installed, not by my doing. One was 'costmin' and the other was...something like 'Adonis', but I forget what it was exactly.

I uninstalled both of them and the ads went away...but I just thought I should post here to make sure everything is clean and it actually fully removed them!

I would appreciate it if I am informed of any other potentially dangerous or unwanted things on my computer as well.

I can download a Windows 7 student edition DVD through my school dreamspark account if an install CD is required.

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17239 BrowserJavaVersion: 10.67.2
Run by Eagle at 14:20:10 on 2014-08-26
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.8092.6259 [GMT -7:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
C:\Program Files\NetLimiter 3\nlsvc.exe
C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
C:\Windows\SysWOW64\vmnat.exe
C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe
C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\SysWOW64\vmnetdhcp.exe
C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Windows\explorer.exe
C:\Windows\splwow64.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\taskmgr.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uProxyServer = hxxp=127.0.0.1:8118;https=127.0.0.1:8118
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRun: [ONAIR] C:\Program Files\ONAIR\ONAIR.exe
uRun: [BackgroundSwitcher] "C:\Program Files (x86)\johnsadventures.com\John's Background Switcher\BackgroundSwitcher.exe"
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [NetLimiter] C:\Program Files\NetLimiter 3\NLClientApp.exe /tray
mRun: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
mRun: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
StartupFolder: C:\Users\Eagle\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STARDO~1.LNK - C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-Windows\System: UseOEMBackground = dword:1
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
LSP: %windir%\system32\vsocklib.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{32ADD83D-4A51-462A-B053-104D8090B8C2} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{70CFD5AB-5F15-483F-B46F-4DC0F2CB45D2} : DHCPNameServer = 192.77.116.3 192.77.116.72
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
Hosts: 127.0.0.1 Spyware Info | Spyware Info
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Eagle\AppData\Roaming\Mozilla\Firefox\Profiles\9ftpk2pe.default\
FF - prefs.js: browser.startup.homepage - google.com
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll
FF - plugin: C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll
FF - plugin: C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\Bin\npSSOAxCtrlForPTLogin.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Eagle\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Users\Eagle\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Eagle\AppData\Roaming\Mozilla\plugins\npo1d.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2013-11-5 83176]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2013-11-5 43240]
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2014-1-25 268512]
R0 vsock;vSockets Driver;C:\Windows\System32\drivers\vsock.sys [2014-2-4 73296]
R1 {2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw64;{2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw64;C:\Windows\System32\drivers\{2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw64.sys [2014-8-23 61112]
R1 nltdi;nltdi;C:\Program Files\NetLimiter 3\nltdi.sys [2013-6-12 87472]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-8-11 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-8-11 344064]
R2 AODDriver4.2.0;AODDriver4.2.0;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2014-2-11 59616]
R2 LVPrcS64;Process Monitor;C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe [2009-10-7 191000]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-9-27 133928]
R2 RosettaStoneDaemon;RosettaStoneDaemon;C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe [2011-3-31 1646056]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2014-3-5 1153368]
R2 TeamViewer9;TeamViewer 9;C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-4-30 5024576]
R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2013-10-9 905272]
R2 vmware-converter-agent;VMware vCenter Converter Standalone Agent;C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [2013-4-9 479824]
R2 vmware-converter-server;VMware vCenter Converter Standalone Server;C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2013-4-9 479824]
R2 vmware-converter-worker;VMware vCenter Converter Standalone Worker;C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2013-4-9 479824]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2013-4-12 139592]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2013-4-12 418632]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2014-6-21 94720]
R3 lvpopf64;Logitech POP Suppression Filter;C:\Windows\System32\drivers\lvpopf64.sys [2009-10-7 271640]
R3 LVPr2M64;Logitech LVPr2M64 Driver;C:\Windows\System32\drivers\LVPr2M64.sys [2009-10-7 30232]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2009-10-7 327704]
R3 LVUVC64;Logitech QuickCam Pro 5000(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2009-10-7 6379288]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-3-11 347872]
R3 NLNdisMP;NLNdisMP;C:\Windows\System32\drivers\nlndis.sys [2013-6-12 32688]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-3-14 726160]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2014-6-5 60640]
S2 AODDriver4.3;AODDriver4.3;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2014-2-11 59616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 b06diag;Broadcom NetXtreme II Diag Driver;C:\Windows\System32\drivers\bxdiaga.sys [2013-3-14 88104]
S3 BFN7x64;Bigfoot Networks Killer Gaming Service;C:\Windows\System32\drivers\Xeno7x64.sys [2013-3-14 157288]
S3 bxfcoe;bxfcoe;C:\Windows\System32\drivers\bxfcoe.sys [2013-3-14 178216]
S3 bxois;bxois;C:\Windows\System32\drivers\bxois.sys [2013-3-14 539176]
S3 Desura Install Service;Desura Install Service;C:\Program Files (x86)\Common Files\Desura\desura_service.exe [2013-12-7 1051088]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;C:\Windows\System32\drivers\EtronHub3.sys [2013-2-27 65152]
S3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver;C:\Windows\System32\drivers\EtronSTOR.sys [2013-2-27 32512]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;C:\Windows\System32\drivers\EtronXHCI.sys [2013-2-27 88832]
S3 EvoSvc;Evolve Service;C:\Program Files\Echobit\Evolve\EvoSvc.exe [2013-12-12 1579936]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-8-15 111616]
S3 ioatdma1;ioatdma1;C:\Windows\System32\drivers\qd162x64.sys [2013-3-14 40144]
S3 ioatdma2;Intel(R) QuickData Technology device ver.2;C:\Windows\System32\drivers\qd262x64.sys [2013-3-14 42192]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-4-12 366216]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-4-12 786056]
S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\System32\drivers\MijXfilt.sys [2014-1-17 121416]
S3 NLNdisPT;NetLimiter Ndis Protocol Service;C:\Windows\System32\drivers\nlndis.sys [2013-6-12 32688]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2013-2-27 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2013-2-27 213504]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-9-14 19456]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-4-12 88960]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-8-22 119808]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-9-14 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-12 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-9-14 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-4-12 117248]
S3 VMwareHostd;VMware Workstation Server;C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [2013-10-18 14405200]
S3 VsEtwService120;Visual Studio ETW Event Collection Service;C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2013-10-5 87728]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-9-14 1255736]
.
=============== File Associations ===============
.
FileExt: .txt: Applications\notepad++.exe="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1" [UserChoice]
ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2014-08-26 06:44:02 11319192 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{595B97D5-4D7B-4830-9B65-B50AEE54638D}\mpengine.dll
2014-08-26 03:54:26 11319192 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-08-25 22:00:50 -------- d-----w- C:\Users\Eagle\AppData\Local\Adobe
2014-08-24 23:34:03 -------- d-----w- C:\Program Files (x86)\AMD AVT
2014-08-24 23:26:54 -------- d-----w- C:\$RECYCLE.BIN
2014-08-24 18:48:10 -------- d-----w- C:\Users\Eagle\AppData\Roaming\Carbon
2014-08-24 04:57:38 61112 ----a-w- C:\Windows\System32\drivers\{2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw64.sys
2014-08-24 03:53:37 -------- d-----w- C:\Support
2014-08-24 03:53:32 -------- d-----w- C:\ProgramData\bf5243dde8aec259
2014-08-24 03:53:31 -------- d-----w- C:\Users\Eagle\AppData\Local\Packages
2014-08-24 03:53:31 -------- d-----w- C:\ProgramData\cosstminn
2014-08-24 03:53:29 -------- d-----w- C:\Users\Eagle\AppData\Local\Torch
2014-08-24 03:53:29 -------- d-----w- C:\Users\Eagle\AppData\Local\Chromatic Browser
2014-08-24 03:53:28 -------- d-----w- C:\Users\Eagle\AppData\Local\Comodo
2014-08-24 03:38:04 -------- d-----w- C:\Users\Eagle\AppData\Local\Prompt Downloader
2014-08-24 03:37:49 -------- d-----w- C:\Users\Eagle\AppData\Local\23388
2014-08-22 19:20:56 -------- d-----w- C:\Users\Eagle\AppData\Local\Locktime
2014-08-22 19:20:24 -------- d-----w- C:\ProgramData\Locktime
2014-08-22 19:20:24 -------- d-----w- C:\Program Files\NetLimiter 3
2014-08-20 18:41:34 1169712 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CC7AF1CF-D2E0-45E7-B373-7EA983802A91}\gapaengine.dll
2014-08-18 18:28:51 -------- d-----w- C:\Users\Eagle\AppData\Roaming\spek
2014-08-18 18:28:40 -------- d-----w- C:\Program Files (x86)\Spek
2014-08-16 16:50:38 99480 ----a-w- C:\Windows\SysWow64\infocardapi.dll
2014-08-16 16:50:38 619672 ----a-w- C:\Windows\SysWow64\icardagt.exe
2014-08-16 16:50:38 171160 ----a-w- C:\Windows\System32\infocardapi.dll
2014-08-16 16:50:38 1389208 ----a-w- C:\Windows\System32\icardagt.exe
2014-08-16 16:50:37 8856 ----a-w- C:\Windows\SysWow64\icardres.dll
2014-08-16 16:50:37 8856 ----a-w- C:\Windows\System32\icardres.dll
2014-08-16 16:50:26 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2014-08-16 16:50:26 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe
2014-08-15 07:24:59 752640 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2014-08-12 06:20:52 51200 ----a-w- C:\Windows\System32\kdbsdk64.dll
2014-08-12 06:15:56 38912 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll
2014-08-12 03:32:34 127872 ----a-w- C:\Windows\System32\amdhcp64.dll
2014-08-12 03:32:32 117560 ----a-w- C:\Windows\SysWow64\amdhcp32.dll
2014-08-12 03:32:30 78432 ----a-w- C:\Windows\System32\atimpc64.dll
2014-08-12 03:32:30 78432 ----a-w- C:\Windows\System32\amdpcom64.dll
2014-08-12 03:32:30 71704 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2014-08-12 03:32:30 71704 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2014-08-12 03:32:22 117584 ----a-w- C:\Windows\System32\atiu9p64.dll
2014-08-12 03:31:54 7892000 ----a-w- C:\Windows\System32\atiumd6a.dll
2014-08-12 03:31:52 8108312 ----a-w- C:\Windows\System32\atiumd64.dll
2014-08-12 03:28:48 276192 ----a-w- C:\Windows\System32\drivers\amdacpksd.sys
2014-08-12 03:24:16 15961088 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2014-08-12 03:10:04 231424 ----a-w- C:\Windows\System32\clinfo.exe
2014-08-12 03:09:48 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll
2014-08-12 03:09:40 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2014-08-12 03:09:34 86528 ----a-w- C:\Windows\System32\OVDecode64.dll
2014-08-12 03:09:30 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2014-08-12 03:09:24 32877056 ----a-w- C:\Windows\System32\amdocl64.dll
2014-08-12 03:06:20 27843072 ----a-w- C:\Windows\SysWow64\amdocl.dll
2014-08-12 03:03:26 65024 ----a-w- C:\Windows\System32\OpenCL.dll
2014-08-12 03:03:22 58880 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2014-08-12 02:51:08 127488 ----a-w- C:\Windows\System32\mantle64.dll
2014-08-12 02:50:48 113664 ----a-w- C:\Windows\SysWow64\mantle32.dll
2014-08-12 02:50:26 5225472 ----a-w- C:\Windows\System32\amdmantle64.dll
2014-08-12 02:44:12 27529216 ----a-w- C:\Windows\System32\atio6axx.dll
2014-08-12 02:34:14 4180992 ----a-w- C:\Windows\SysWow64\amdmantle32.dll
2014-08-12 02:24:04 23028224 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2014-08-12 02:20:00 91648 ----a-w- C:\Windows\System32\mantleaxl64.dll
2014-08-12 02:19:48 85504 ----a-w- C:\Windows\SysWow64\mantleaxl32.dll
2014-08-12 02:18:48 366592 ----a-w- C:\Windows\System32\atiapfxx.exe
2014-08-12 02:18:40 62464 ----a-w- C:\Windows\System32\aticalrt64.dll
2014-08-12 02:18:38 52224 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2014-08-12 02:18:30 55808 ----a-w- C:\Windows\System32\aticalcl64.dll
2014-08-12 02:18:28 49152 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2014-08-12 02:18:14 15716352 ----a-w- C:\Windows\System32\aticaldd64.dll
2014-08-12 02:14:58 14302208 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2014-08-12 02:01:34 442368 ----a-w- C:\Windows\System32\atidemgy.dll
2014-08-12 02:01:20 31232 ----a-w- C:\Windows\System32\atimuixx.dll
2014-08-12 02:01:10 588800 ----a-w- C:\Windows\System32\atieclxx.exe
2014-08-12 02:00:38 239616 ----a-w- C:\Windows\System32\atiesrxx.exe
2014-08-12 01:59:34 190976 ----a-w- C:\Windows\System32\atitmm64.dll
2014-08-12 01:57:56 48128 ----a-w- C:\Windows\System32\amdmmcl6.dll
2014-08-12 01:57:50 37888 ----a-w- C:\Windows\SysWow64\amdmmcl.dll
2014-08-12 01:34:56 1207296 ----a-w- C:\Windows\System32\atiadlxx.dll
2014-08-12 01:34:46 898560 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2014-08-12 01:34:32 75264 ----a-w- C:\Windows\System32\atig6pxx.dll
2014-08-12 01:34:28 69632 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2014-08-12 01:34:28 69632 ----a-w- C:\Windows\System32\atiglpxx.dll
2014-08-12 01:34:26 146944 ----a-w- C:\Windows\System32\atig6txx.dll
2014-08-12 01:34:12 95744 ----a-w- C:\Windows\System32\amdave64.dll
2014-08-12 01:34:12 133632 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2014-08-12 01:34:06 90112 ----a-w- C:\Windows\SysWow64\amdave32.dll
2014-08-12 01:33:58 557056 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2014-08-12 01:33:54 89088 ----a-w- C:\Windows\System32\atisamu64.dll
2014-08-12 01:33:48 80896 ----a-w- C:\Windows\SysWow64\atisamu32.dll
2014-08-12 01:32:04 43520 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2014-08-10 21:05:20 -------- d-----w- C:\Program Files\iPod
2014-08-10 21:05:19 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-10 21:05:19 -------- d-----w- C:\Program Files\iTunes
2014-08-08 21:11:49 -------- d-----w- C:\Program Files (x86)\HydraIRC
2014-08-05 22:43:54 -------- d-----w- C:\Users\Eagle\AppData\Roaming\coe3
2014-08-05 06:16:33 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-08-05 03:38:17 -------- d-----w- C:\NVIDIA
2014-07-31 23:35:04 -------- d-----w- C:\Users\Eagle\AppData\Roaming\FrozenCortex
2014-07-31 05:36:07 -------- d-----w- C:\ProgramData\Age of Empires 3
2014-07-29 01:12:10 -------- d-----w- C:\Users\Eagle\AppData\Roaming\Factorio
.
==================== Find3M ====================
.
2014-08-24 23:02:30 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-08-24 23:02:30 699568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-08-12 03:32:24 143304 ----a-w- C:\Windows\System32\atiuxp64.dll
2014-08-12 03:32:24 126336 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2014-08-12 03:32:22 99520 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2014-08-12 03:32:20 1331424 ----a-w- C:\Windows\System32\aticfx64.dll
2014-08-12 03:32:18 1110992 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2014-08-12 03:32:14 10521632 ----a-w- C:\Windows\System32\atidxx64.dll
2014-08-12 03:32:10 9018320 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2014-08-12 03:32:04 7102496 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2014-08-12 03:32:00 6879016 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2014-08-12 01:43:28 826368 ----a-w- C:\Windows\System32\coinst_14.20.dll
2014-07-25 14:02:12 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-07-25 14:01:41 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-07-25 13:30:30 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-07-25 13:28:35 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-07-25 13:28:27 548352 ----a-w- C:\Windows\System32\vbscript.dll
2014-07-25 13:25:45 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll
2014-07-25 13:04:40 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-07-25 13:00:51 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-07-25 13:00:25 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-07-25 12:59:28 758272 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-07-25 12:47:25 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-07-25 12:34:49 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-07-25 12:34:03 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-07-25 12:33:08 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-07-25 12:30:32 61952 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2014-07-25 12:28:15 5824512 ----a-w- C:\Windows\System32\jscript9.dll
2014-07-25 12:28:05 72704 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-07-25 12:10:15 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-07-25 12:08:47 597504 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-07-25 12:06:47 4204032 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-07-25 11:43:16 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-07-25 11:39:29 2087936 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-07-25 11:39:25 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-07-25 11:07:49 2001920 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-07-25 11:07:10 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-07-25 10:52:06 2266624 ----a-w- C:\Windows\System32\wininet.dll
2014-07-25 10:05:23 1792512 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-07-16 03:23:41 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-07-16 02:46:02 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-07-14 02:02:45 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-07-14 01:40:58 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-07-03 19:26:57 969696 ----a-w- C:\Windows\System32\TesSafe.sys
2014-06-21 17:01:22 94720 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys
2014-06-21 16:59:38 110080 ----a-w- C:\Windows\System32\DelayAPO.dll
2014-06-18 02:18:30 692736 ----a-w- C:\Windows\System32\osk.exe
2014-06-18 01:51:32 646144 ----a-w- C:\Windows\SysWow64\osk.exe
2014-06-18 01:10:36 3157504 ----a-w- C:\Windows\System32\win32k.sys
2014-06-16 02:10:19 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-06-06 10:10:34 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-06-06 09:44:17 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-06-05 14:45:15 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-06-05 14:26:58 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-06-05 14:25:49 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-06-03 10:02:37 112064 ----a-w- C:\Windows\System32\consent.exe
2014-06-03 10:02:21 504320 ----a-w- C:\Windows\System32\msihnd.dll
2014-06-03 10:02:21 3241984 ----a-w- C:\Windows\System32\msi.dll
2014-06-03 10:02:12 1941504 ----a-w- C:\Windows\System32\authui.dll
2014-06-03 09:29:50 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll
2014-06-03 09:29:50 2363392 ----a-w- C:\Windows\SysWow64\msi.dll
2014-06-03 09:29:40 1805824 ----a-w- C:\Windows\SysWow64\authui.dll
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpE139B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpD539B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpD439B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpC739B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpBA39B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpB939B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpAD39B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmpAC39B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmp9F39B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmp8249B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmp8049B.FOT
2014-05-31 07:53:17 1409 ----a-w- C:\Windows\SysWow64\tmp6549B.FOT
2014-05-30 08:08:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
2014-05-30 08:08:49 86528 ----a-w- C:\Windows\System32\TSpkg.dll
2014-05-30 08:08:47 340992 ----a-w- C:\Windows\System32\schannel.dll
2014-05-30 08:08:41 314880 ----a-w- C:\Windows\System32\msv1_0.dll
2014-05-30 08:08:41 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2014-05-30 08:08:36 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-05-30 08:08:31 22016 ----a-w- C:\Windows\System32\credssp.dll
2014-05-30 07:52:51 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
2014-05-30 07:52:49 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2014-05-30 07:52:45 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-05-30 07:52:41 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2014-05-30 07:52:40 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2014-05-30 07:52:36 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-05-30 07:52:30 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
2014-05-30 06:45:52 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2009-09-27 16:39:26 415744 --sh--w- C:\Windows\SysWOW64\avisynth.dll
2005-07-14 19:31:20 32256 --sh--w- C:\Windows\SysWOW64\AVSredirect.dll
2004-02-22 17:11:08 764416 --sh--w- C:\Windows\SysWOW64\devil.dll
2004-01-25 07:00:00 70656 --sh--w- C:\Windows\SysWOW64\i420vfw.dll
2004-01-25 07:00:00 70656 --sh--w- C:\Windows\SysWOW64\yv12vfw.dll
.
============= FINISH: 14:20:18.36 ===============

Attached Files

Attach.zip (7.1 KB)