Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-09-2015
- Ran by Ana (administrator) on ANA-PC (05-09-2015 11:07:21)
- Running from C:\Windows\SysWOW64\config\systemprofile\Downloads
- Loaded Profiles: Ana (Available Profiles: Ana)
- Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
- Internet Explorer Version 10 (Default browser: Chrome)
- Boot Mode: Normal
- Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Processes (Whitelisted) =================
- (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
- (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
- (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
- (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
- (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
- (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
- (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
- (Nero AG) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
- () C:\Windows\SysWOW64\PnkBstrA.exe
- (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
- (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
- (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- () C:\Windows\SysWOW64\config\systemprofile\Downloads\AdwCleaner.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Microsoft Corporation) C:\Windows\System32\dllhost.exe
- ==================== Registry (Whitelisted) ===========================
- (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
- HKLM-x32\...\Run: [NBKeyScan] => C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [1828136 2007-08-08] (Nero AG)
- HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
- HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5212072 2015-07-29] (AVG Technologies CZ, s.r.o.)
- HKLM-x32\...\Run: [ApnUpdater] => C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1574176 2012-12-20] (Ask)
- HKU\S-1-5-21-3213780009-1502929339-2394357857-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-08-03] (Nero AG)
- HKU\S-1-5-21-3213780009-1502929339-2394357857-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
- ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
- ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
- ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
- ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
- GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
- CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
- ==================== Internet (Whitelisted) ====================
- (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
- Tcpip\Parameters: [DhcpNameServer] 194.146.109.223 194.146.109.224
- Tcpip\..\Interfaces\{22EABBAF-C91A-4923-B339-2918FEB5C398}: [DhcpNameServer] 194.146.109.223 194.146.109.224
- Tcpip\..\Interfaces\{8723830B-43AB-4082-AA21-0F0D2A9A3945}: [DhcpNameServer] 194.146.109.223 194.146.109.224
- Internet Explorer:
- ==================
- HKU\S-1-5-21-3213780009-1502929339-2394357857-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com?cid={6DD643D7-8946-4CDA-8B30-A886A4B5DAEC}&mid=6e28343dec3347d3a810d15775e29d3d-4858674be08d48045fe4718d7e2078d4dfacdd11&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-14 10:36:47&v=4.1.0.411&pid=wtu&sg=&sap=hp
- HKU\S-1-5-21-3213780009-1502929339-2394357857-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/
- URLSearchHook: HKLM-x32 - BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll No File
- URLSearchHook: HKU\S-1-5-21-3213780009-1502929339-2394357857-1000 - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
- SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431400&CUI=UN22783523872612323
- SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431400&CUI=UN22783523872612323
- SearchScopes: HKU\S-1-5-21-3213780009-1502929339-2394357857-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={6DD643D7-8946-4CDA-8B30-A886A4B5DAEC}&mid=6e28343dec3347d3a810d15775e29d3d-4858674be08d48045fe4718d7e2078d4dfacdd11&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-14 10:36:47&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms}
- SearchScopes: HKU\S-1-5-21-3213780009-1502929339-2394357857-1000 -> {F0D35F79-EDAE-4861-920A-7BB8EFEC8588} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=kw&q={searchTerms}&locale=en_HR&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^HR&apn_uid=2dd02524-4f5d-4f18-9320-43eb4e013029&apn_sauid=396AC986-7A99-4086-A558-EC4393A74806
- BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
- BHO-x32: Conduit Engine -> {30F9B915-B755-4826-820B-08FBA6BD249D} -> C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll No File
- BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
- BHO-x32: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-12-20] (Ask)
- BHO-x32: BS Player Toolbar -> {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} -> C:\Program Files (x86)\BS_Player\tbBS_P.dll No File
- Toolbar: HKLM-x32 - BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll No File
- Toolbar: HKLM-x32 - Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll No File
- Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-12-20] (Ask)
- Toolbar: HKU\S-1-5-21-3213780009-1502929339-2394357857-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
- Toolbar: HKU\S-1-5-21-3213780009-1502929339-2394357857-1000 -> No Name - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - No File
- Toolbar: HKU\S-1-5-21-3213780009-1502929339-2394357857-1000 -> No Name - {30F9B915-B755-4826-820B-08FBA6BD249D} - No File
- Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
- Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
- FireFox:
- ========
- FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
- FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-08-09] (Microsoft Corporation)
- FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
- FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-08-09] (Microsoft Corporation)
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
- FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
- FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2505\ff [not found]
- FF Extension: No Name - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home792\ff [not found]
- Chrome:
- =======
- CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
- ==================== Services (Whitelisted) ========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3259304 2015-07-29] (AVG Technologies CZ, s.r.o.)
- R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301896 2015-07-29] (AVG Technologies CZ, s.r.o.)
- R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
- R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
- R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [836904 2007-08-08] (Nero AG)
- S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-08-03] (Nero AG)
- R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-05-14] ()
- S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
- ===================== Drivers (Whitelisted) ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
- R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
- R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [237536 2015-05-26] (AVG Technologies CZ, s.r.o.)
- R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [237848 2014-10-24] (AVG Technologies CZ, s.r.o.)
- R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [369120 2015-05-26] (AVG Technologies CZ, s.r.o.)
- R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [211936 2015-05-26] (AVG Technologies CZ, s.r.o.)
- R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
- R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [276960 2015-05-18] (AVG Technologies CZ, s.r.o.)
- R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-05-13] (DT Soft Ltd)
- S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
- S3 s116bus; C:\Windows\System32\DRIVERS\s116bus.sys [108296 2007-04-03] (MCCI Corporation)
- S3 s116mdfl; C:\Windows\System32\DRIVERS\s116mdfl.sys [19720 2007-04-03] (MCCI Corporation)
- S3 s116mdm; C:\Windows\System32\DRIVERS\s116mdm.sys [144648 2007-04-03] (MCCI Corporation)
- S3 s116mgmt; C:\Windows\System32\DRIVERS\s116mgmt.sys [126216 2007-04-03] (MCCI Corporation)
- S3 s116nd5; C:\Windows\System32\DRIVERS\s116nd5.sys [31496 2007-04-03] (MCCI Corporation)
- S3 s116obex; C:\Windows\System32\DRIVERS\s116obex.sys [123656 2007-04-03] (MCCI Corporation)
- S3 s116unic; C:\Windows\System32\DRIVERS\s116unic.sys [130824 2007-04-03] (MCCI Corporation)
- R3 SiS6350; C:\Windows\System32\DRIVERS\SISGRKMD.sys [553984 2008-12-29] (Silicon Integrated Systems Corporation)
- R3 smserial; C:\Windows\System32\DRIVERS\SmSerl64.sys [1227776 2009-06-10] (Motorola Inc.)
- S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
- S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
- S3 VGPU; System32\drivers\rdvgkmd.sys [X]
- ==================== NetSvcs (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ==================== One Month Created files and folders ========
- (If an entry is included in the fixlist, the file/folder will be moved.)
- 2015-09-05 11:07 - 2015-09-05 11:07 - 00000000 ____D C:\FRST
- 2015-09-05 10:51 - 2015-09-05 10:52 - 00000000 ____D C:\AdwCleaner
- ==================== One Month Modified files and folders ========
- (If an entry is included in the fixlist, the file/folder will be moved.)
- 2015-09-05 11:03 - 2011-08-08 18:15 - 01180769 _____ C:\Windows\WindowsUpdate.log
- 2015-09-05 10:24 - 2013-05-11 10:59 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
- 2015-09-05 10:21 - 2013-05-11 11:21 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- 2015-09-05 10:17 - 2013-05-10 14:20 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3213780009-1502929339-2394357857-1000UA.job
- 2015-09-05 09:48 - 2013-05-11 13:52 - 00000000 ____D C:\ProgramData\MFAData
- 2015-09-05 07:17 - 2013-05-11 11:21 - 00000944 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- 2015-09-05 07:16 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
- 2015-09-05 07:16 - 2009-07-14 06:51 - 00076148 _____ C:\Windows\setupact.log
- 2015-09-03 12:50 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
- 2015-09-03 12:13 - 2015-05-26 23:03 - 00002179 _____ C:\Users\Public\Desktop\Google Chrome.lnk
- 2015-09-02 21:54 - 2009-07-14 07:13 - 00730384 _____ C:\Windows\system32\PerfStringBackup.INI
- 2015-08-30 19:16 - 2013-05-11 11:21 - 00003944 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
- 2015-08-30 19:16 - 2013-05-11 11:21 - 00003692 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
- 2015-08-30 19:13 - 2013-05-10 14:19 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3213780009-1502929339-2394357857-1000Core.job
- 2015-08-29 18:32 - 2014-03-15 19:43 - 00000670 __RSH C:\ProgramData\ntuser.pol
- 2015-08-29 08:50 - 2013-05-11 11:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
- 2015-08-16 16:10 - 2009-07-14 06:45 - 00010240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
- 2015-08-16 16:10 - 2009-07-14 06:45 - 00010240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
- 2015-08-16 16:09 - 2011-08-11 16:58 - 00000000 ____D C:\Users\Ana\AppData\Roaming\uTorrent
- 2015-08-12 19:25 - 2013-05-11 10:59 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
- 2015-08-12 19:25 - 2013-05-11 10:58 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
- 2015-08-12 19:25 - 2011-09-01 22:24 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
- 2015-08-12 19:24 - 2015-07-08 20:24 - 18744520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
- 2015-08-11 11:49 - 2014-03-31 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
- 2015-08-11 11:49 - 2014-03-23 10:07 - 00000965 _____ C:\Users\Public\Desktop\AVG 2014.lnk
- 2015-08-07 21:39 - 2011-08-11 18:27 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
- Some files in TEMP:
- ====================
- C:\Users\Ana\AppData\Local\Temp\AutoRun.exe
- C:\Users\Ana\AppData\Local\Temp\AutoRunGUI.dll
- C:\Users\Ana\AppData\Local\Temp\eauninstall.exe
- C:\Users\Ana\AppData\Local\Temp\oew94ubz.dll
- C:\Users\Ana\AppData\Local\Temp\Tsu8F83FC6E.dll
- C:\Users\Ana\AppData\Local\Temp\uninst1.exe
- C:\Users\Ana\AppData\Local\Temp\utt933C.tmp.exe
- C:\Users\Ana\AppData\Local\Temp\vcredist_x64.exe
- C:\Users\Ana\AppData\Local\Temp\vcredist_x86.exe
- ==================== Bamital & volsnap =================
- (There is no automatic fix for files that do not pass verification.)
- C:\Windows\system32\winlogon.exe => File is digitally signed
- C:\Windows\system32\wininit.exe => File is digitally signed
- C:\Windows\SysWOW64\wininit.exe => File is digitally signed
- C:\Windows\explorer.exe => File is digitally signed
- C:\Windows\SysWOW64\explorer.exe => File is digitally signed
- C:\Windows\system32\svchost.exe => File is digitally signed
- C:\Windows\SysWOW64\svchost.exe => File is digitally signed
- C:\Windows\system32\services.exe => File is digitally signed
- C:\Windows\system32\User32.dll => MD5 is legit
- C:\Windows\SysWOW64\User32.dll => MD5 is legit
- C:\Windows\system32\userinit.exe => File is digitally signed
- C:\Windows\SysWOW64\userinit.exe => File is digitally signed
- C:\Windows\system32\rpcss.dll => File is digitally signed
- C:\Windows\system32\dnsapi.dll => File is digitally signed
- C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
- C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
- LastRegBack: 2015-08-29 21:42
- ==================== End of FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement