API tools faq
paste
Advertisement
Guest User

FRST64 Scan Log

a guest
Mar 1st, 2015
333
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 26.92 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-02-2015
  2. Ran by SYSTEM on MININT-826JMEB on 01-03-2015 21:16:43
  3. Running from f:\
  4. Platform: Windows 7 Home Premium (X64) OS Language: English (United States)
  5. Internet Explorer Version 11
  6. Boot Mode: Recovery
  7.  
  8. The current controlset is ControlSet001
  9. [b]ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.[/b]
  10.  
  11. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  12.  
  13. ==================== Registry (Whitelisted) ==================
  14.  
  15. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  16.  
  17. HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10918504 2010-06-14] (Realtek Semiconductor)
  18. HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [384296 2010-04-05] (Alps Electric Co., Ltd.)
  19. HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
  20. HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-06-08] (Intel Corporation)
  21. HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd)
  22. HKLM-x32\...\Run: [Desktop Disc Tool] => C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [498160 2009-10-15] ()
  23. HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1807680 2010-02-09] ()
  24. HKLM-x32\...\Run: [DellSupportCenter] => C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [206064 2009-05-21] (SupportSoft, Inc.)
  25. HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
  26. HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
  27. HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736 2011-11-12] (Apple Inc.)
  28. HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
  29. HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41208 2012-12-19] (Adobe Systems Incorporated)
  30. HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
  31. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)
  32. HKLM-x32\...\Run: [] => [X]
  33. HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [296096 2012-09-12] (RealNetworks, Inc.)
  34. HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-23] (AVAST Software)
  35. HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe [559616 2011-10-11] (Dell)
  36. Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
  37. Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
  38. HKU\Laura Jane\...\Run: [Spotify] => C:\Users\Laura Jane\AppData\Roaming\Spotify\Spotify.exe [5576408 2012-09-24] (Spotify Ltd)
  39. HKU\Laura Jane\...\Run: [Spotify Web Helper] => C:\Users\Laura Jane\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1193176 2012-09-24] ()
  40. HKU\Laura Jane\...\Run: [Google Update] => C:\Users\Laura Jane\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-20] (Google Inc.)
  41. HKU\Laura Jane\...\Run: [SmileboxTray] => C:\Users\Laura Jane\AppData\Roaming\Smilebox\SmileboxTray.exe [342312 2014-03-24] (Smilebox, Inc.)
  42. Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
  43. ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
  44. Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
  45. ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
  46. Startup: C:\Users\Laura Jane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
  47. ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
  48.  
  49. ==================== Services (Whitelisted) =================
  50.  
  51. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  52.  
  53. S2 ADVService; C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe [25704 2011-11-23] (Amazon.com)
  54. S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-04] (AVAST Software)
  55. S2 CouponPrinterService; C:\Program Files (x86)\Coupons\CouponPrinterService.exe [176624 2014-02-13] (Coupons.com Inc.)
  56. S3 wampapache; c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe [21504 2010-10-24] (Apache Software Foundation)
  57. S3 wampmysqld; c:\wamp\bin\mysql\mysql5.1.53\bin\mysqld.exe [7669760 2010-11-24] ()
  58. S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
  59. S4 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X]
  60.  
  61. ==================== Drivers (Whitelisted) ====================
  62.  
  63. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  64.  
  65. S5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
  66. S2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-04] ()
  67. S1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [28504 2012-03-06] (AVAST Software)
  68. S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-04] (AVAST Software)
  69. S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-04] (AVAST Software)
  70. S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-04] ()
  71. S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-04] (AVAST Software)
  72. S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-04] (AVAST Software)
  73. S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-04] (AVAST Software)
  74. S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-04] ()
  75. S3 catchme; \??\C:\ComboFix\catchme.sys [X]
  76.  
  77. ==================== NetSvcs (Whitelisted) ===================
  78.  
  79. (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
  80.  
  81.  
  82. ==================== One Month Created Files and Folders ========
  83.  
  84. (If an entry is included in the fixlist, the file\folder will be moved.)
  85.  
  86. 2015-03-01 21:16 - 2015-03-01 21:16 - 00000000 ____D () C:\FRST
  87. 2015-02-26 08:28 - 2015-01-08 21:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\System32\perftrack.dll
  88. 2015-02-26 08:28 - 2015-01-08 21:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\System32\wdi.dll
  89. 2015-02-26 08:28 - 2015-01-08 21:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\System32\powertracker.dll
  90. 2015-02-26 08:28 - 2015-01-08 20:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
  91. 2015-02-26 08:21 - 2015-01-08 17:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
  92. 2015-02-26 08:21 - 2015-01-08 17:43 - 00419936 _____ () C:\Windows\System32\locale.nls
  93. 2015-02-15 09:48 - 2015-01-22 22:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
  94. 2015-02-15 09:48 - 2015-01-22 22:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
  95. 2015-02-15 09:48 - 2015-01-22 21:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
  96. 2015-02-15 09:48 - 2015-01-22 21:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
  97. 2015-02-10 20:36 - 2015-02-03 21:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\System32\appraiser.dll
  98. 2015-02-10 20:36 - 2015-02-03 21:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\System32\invagent.dll
  99. 2015-02-10 20:36 - 2015-02-03 21:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\System32\generaltel.dll
  100. 2015-02-10 20:36 - 2015-02-03 21:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\System32\devinv.dll
  101. 2015-02-10 20:36 - 2015-02-03 21:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
  102. 2015-02-10 20:36 - 2015-02-03 21:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\System32\aepic.dll
  103. 2015-02-10 20:36 - 2015-02-03 21:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
  104. 2015-02-10 20:36 - 2015-01-27 17:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\System32\aitstatic.exe
  105. 2015-02-10 20:36 - 2015-01-10 00:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
  106. 2015-02-10 20:36 - 2015-01-10 00:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
  107. 2015-02-10 20:36 - 2015-01-10 00:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
  108. 2015-02-10 20:36 - 2015-01-10 00:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
  109. 2015-02-10 20:36 - 2015-01-10 00:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\System32\wdigest.dll
  110. 2015-02-10 20:36 - 2015-01-10 00:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\System32\TSpkg.dll
  111. 2015-02-10 20:36 - 2015-01-10 00:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\System32\credssp.dll
  112. 2015-02-10 20:36 - 2015-01-10 00:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
  113. 2015-02-10 20:36 - 2015-01-10 00:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
  114. 2015-02-10 20:36 - 2015-01-10 00:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
  115. 2015-02-10 20:36 - 2015-01-10 00:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
  116. 2015-02-10 20:36 - 2015-01-10 00:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
  117. 2015-02-10 20:36 - 2015-01-10 00:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
  118. 2015-02-10 20:36 - 2015-01-10 00:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
  119. 2015-02-10 20:35 - 2015-01-15 02:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
  120. 2015-02-10 20:35 - 2015-01-15 02:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
  121. 2015-02-10 20:35 - 2015-01-15 02:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
  122. 2015-02-10 20:35 - 2015-01-15 02:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
  123. 2015-02-10 20:35 - 2015-01-15 02:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\System32\lsass.exe
  124. 2015-02-10 20:35 - 2015-01-15 02:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
  125. 2015-02-10 20:35 - 2015-01-15 02:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll
  126. 2015-02-10 20:35 - 2015-01-15 02:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\System32\auditpol.exe
  127. 2015-02-10 20:35 - 2015-01-15 02:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\System32\msaudite.dll
  128. 2015-02-10 20:35 - 2015-01-15 02:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\System32\msobjs.dll
  129. 2015-02-10 20:35 - 2015-01-15 02:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\System32\adtschema.dll
  130. 2015-02-10 20:35 - 2015-01-15 01:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
  131. 2015-02-10 20:35 - 2015-01-15 01:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
  132. 2015-02-10 20:35 - 2015-01-15 01:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
  133. 2015-02-10 20:35 - 2015-01-15 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
  134. 2015-02-10 20:35 - 2015-01-15 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
  135. 2015-02-10 20:35 - 2015-01-15 01:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
  136. 2015-02-10 20:35 - 2015-01-14 22:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
  137. 2015-02-10 20:35 - 2015-01-13 23:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
  138. 2015-02-10 20:35 - 2015-01-12 21:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
  139. 2015-02-10 20:35 - 2015-01-12 20:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
  140. 2015-02-10 20:35 - 2015-01-11 21:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
  141. 2015-02-10 20:35 - 2015-01-11 20:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
  142. 2015-02-10 20:35 - 2015-01-11 20:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
  143. 2015-02-10 20:35 - 2015-01-11 20:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
  144. 2015-02-10 20:35 - 2015-01-11 20:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
  145. 2015-02-10 20:35 - 2015-01-11 20:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
  146. 2015-02-10 20:35 - 2015-01-11 19:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
  147. 2015-02-10 20:35 - 2015-01-11 19:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
  148. 2015-02-10 20:35 - 2015-01-11 19:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
  149. 2015-02-10 20:35 - 2015-01-11 19:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
  150. 2015-02-10 20:35 - 2015-01-11 18:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
  151. 2015-02-10 20:34 - 2015-01-13 23:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
  152. 2015-02-10 20:34 - 2015-01-11 21:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
  153. 2015-02-10 20:34 - 2015-01-11 21:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
  154. 2015-02-10 20:34 - 2015-01-11 20:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
  155. 2015-02-10 20:34 - 2015-01-11 20:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
  156. 2015-02-10 20:34 - 2015-01-11 20:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
  157. 2015-02-10 20:34 - 2015-01-11 20:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
  158. 2015-02-10 20:34 - 2015-01-11 20:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
  159. 2015-02-10 20:34 - 2015-01-11 20:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
  160. 2015-02-10 20:34 - 2015-01-11 20:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
  161. 2015-02-10 20:34 - 2015-01-11 20:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
  162. 2015-02-10 20:34 - 2015-01-11 20:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
  163. 2015-02-10 20:34 - 2015-01-11 20:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
  164. 2015-02-10 20:34 - 2015-01-11 20:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
  165. 2015-02-10 20:34 - 2015-01-11 20:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
  166. 2015-02-10 20:34 - 2015-01-11 20:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
  167. 2015-02-10 20:34 - 2015-01-11 20:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
  168. 2015-02-10 20:34 - 2015-01-11 20:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
  169. 2015-02-10 20:34 - 2015-01-11 20:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
  170. 2015-02-10 20:34 - 2015-01-11 20:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
  171. 2015-02-10 20:34 - 2015-01-11 20:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
  172. 2015-02-10 20:34 - 2015-01-11 20:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
  173. 2015-02-10 20:34 - 2015-01-11 19:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
  174. 2015-02-10 20:34 - 2015-01-11 19:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
  175. 2015-02-10 20:34 - 2015-01-11 19:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
  176. 2015-02-10 20:34 - 2015-01-11 19:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
  177. 2015-02-10 20:34 - 2015-01-11 19:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
  178. 2015-02-10 20:34 - 2015-01-11 19:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
  179. 2015-02-10 20:34 - 2015-01-11 19:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
  180. 2015-02-10 20:34 - 2015-01-11 19:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
  181. 2015-02-10 20:34 - 2015-01-11 19:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
  182. 2015-02-10 20:34 - 2015-01-11 19:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
  183. 2015-02-10 20:34 - 2015-01-11 19:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
  184. 2015-02-10 20:34 - 2015-01-11 19:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
  185. 2015-02-10 20:34 - 2015-01-11 19:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
  186. 2015-02-10 20:34 - 2015-01-11 19:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
  187. 2015-02-10 20:34 - 2015-01-11 19:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
  188. 2015-02-10 20:34 - 2015-01-11 19:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
  189. 2015-02-10 20:34 - 2015-01-11 19:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
  190. 2015-02-10 20:34 - 2015-01-11 18:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
  191. 2015-02-10 20:33 - 2014-12-11 23:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
  192. 2015-02-10 20:33 - 2014-12-11 23:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
  193. 2015-02-10 20:33 - 2014-11-25 21:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
  194. 2015-02-10 20:33 - 2014-11-25 21:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
  195. 2015-02-10 20:33 - 2014-10-03 20:10 - 03722752 _____ (Microsoft Corporation) C:\Windows\System32\mstscax.dll
  196. 2015-02-10 20:33 - 2014-10-03 19:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
  197. 2015-02-10 20:33 - 2014-10-03 19:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
  198. 2015-02-10 20:33 - 2014-07-06 20:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\System32\wintrust.dll
  199. 2015-02-10 20:33 - 2014-07-06 20:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
  200. 2015-02-10 20:33 - 2014-07-06 19:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
  201. 2015-02-10 20:33 - 2014-07-06 19:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
  202. 2015-02-10 20:31 - 2014-12-07 21:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\System32\scesrv.dll
  203. 2015-02-10 20:31 - 2014-12-07 20:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
  204. 2015-02-10 20:29 - 2015-01-14 00:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
  205. 2015-02-10 20:29 - 2015-01-14 00:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\System32\srcore.dll
  206. 2015-02-10 20:29 - 2015-01-14 00:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\System32\srclient.dll
  207. 2015-02-10 20:29 - 2015-01-14 00:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\System32\rstrui.exe
  208. 2015-02-10 20:29 - 2015-01-13 23:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
  209. 2015-02-10 20:29 - 2015-01-13 23:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
  210. 2015-02-10 20:29 - 2015-01-13 23:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
  211. 2015-02-10 20:29 - 2015-01-08 20:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
  212. 2015-02-02 08:31 - 2015-02-27 21:41 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
  213.  
  214. ==================== One Month Modified Files and Folders =======
  215.  
  216. (If an entry is included in the fixlist, the file\folder will be moved.)
  217.  
  218. 2015-03-01 08:55 - 2013-04-08 10:31 - 317746024 _____ () C:\Windows\MEMORY.DMP
  219. 2015-02-27 22:34 - 2010-12-06 16:06 - 01403385 _____ () C:\Windows\WindowsUpdate.log
  220. 2015-02-27 22:34 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\tracing
  221. 2015-02-27 22:32 - 2011-02-03 08:29 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5D7B6852-A745-4F17-B916-F6435A7E8A0B}
  222. 2015-02-27 22:05 - 2011-08-04 12:21 - 00000928 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-979968309-3599747914-2879492455-1000UA.job
  223. 2015-02-27 21:50 - 2012-07-19 19:11 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
  224. 2015-02-27 21:11 - 2009-07-13 22:45 - 00022704 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  225. 2015-02-27 21:11 - 2009-07-13 22:45 - 00022704 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  226. 2015-02-27 21:09 - 2012-09-24 08:01 - 00000000 ____D () C:\Users\Laura Jane\AppData\Roaming\Spotify
  227. 2015-02-27 21:09 - 2009-07-13 23:13 - 00006450 _____ () C:\Windows\System32\PerfStringBackup.INI
  228. 2015-02-27 21:08 - 2011-01-14 21:26 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
  229. 2015-02-27 21:08 - 2011-01-14 21:26 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
  230. 2015-02-27 21:08 - 2010-12-06 17:16 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
  231. 2015-02-27 21:05 - 2011-08-04 12:21 - 00000876 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-979968309-3599747914-2879492455-1000Core.job
  232. 2015-02-27 21:02 - 2009-07-13 23:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
  233. 2015-02-27 21:02 - 2009-07-13 22:51 - 00114399 _____ () C:\Windows\setupact.log
  234. 2015-02-26 23:01 - 2012-07-11 18:57 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
  235. 2015-02-18 23:58 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\rescache
  236. 2015-02-12 23:47 - 2011-01-14 21:45 - 00000000 ____D () C:\Users\Laura Jane\AppData\Roaming\SoftGrid Client
  237. 2015-02-12 22:14 - 2014-12-14 21:33 - 00000000 ____D () C:\Windows\System32\appraiser
  238. 2015-02-12 22:14 - 2014-05-07 01:01 - 00000000 ___SD () C:\Windows\System32\CompatTel
  239. 2015-02-11 22:39 - 2011-01-14 21:23 - 00000000 ____D () C:\users\Laura Jane
  240. 2015-02-11 22:33 - 2009-07-13 22:45 - 00409520 _____ () C:\Windows\System32\FNTCACHE.DAT
  241. 2015-02-11 08:38 - 2011-02-17 08:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
  242. 2015-02-06 21:00 - 2011-08-04 12:21 - 00003908 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-979968309-3599747914-2879492455-1000UA
  243. 2015-02-06 21:00 - 2011-08-04 12:21 - 00003512 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-979968309-3599747914-2879492455-1000Core
  244. 2015-02-05 13:50 - 2012-07-19 19:11 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
  245. 2015-02-05 13:50 - 2012-06-04 18:22 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
  246. 2015-02-05 13:50 - 2011-07-06 10:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
  247. 2015-02-04 22:58 - 2012-05-06 08:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
  248.  
  249. Some content of TEMP:
  250. ====================
  251. C:\Users\Laura Jane\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
  252. C:\Users\Laura Jane\AppData\Local\Temp\xldui4er.dll
  253. C:\Users\Laura Jane\AppData\Local\Temp\ydyokkiv.dll
  254.  
  255.  
  256. ==================== Known DLLs (Whitelisted) ================
  257.  
  258.  
  259. ==================== Bamital & volsnap Check =================
  260.  
  261. (There is no automatic fix for files that do not pass verification.)
  262.  
  263. C:\Windows\System32\winlogon.exe => MD5 is legit
  264. C:\Windows\System32\wininit.exe => MD5 is legit
  265. C:\Windows\SysWOW64\wininit.exe => MD5 is legit
  266. C:\Windows\explorer.exe => MD5 is legit
  267. C:\Windows\SysWOW64\explorer.exe => MD5 is legit
  268. C:\Windows\System32\svchost.exe => MD5 is legit
  269. C:\Windows\SysWOW64\svchost.exe => MD5 is legit
  270. C:\Windows\System32\services.exe => MD5 is legit
  271. C:\Windows\System32\User32.dll => MD5 is legit
  272. C:\Windows\SysWOW64\User32.dll => MD5 is legit
  273. C:\Windows\System32\userinit.exe => MD5 is legit
  274. C:\Windows\SysWOW64\userinit.exe => MD5 is legit
  275. C:\Windows\System32\rpcss.dll => MD5 is legit
  276. C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
  277.  
  278. ==================== Restore Points =========================
  279.  
  280. Restore point made on: 2015-02-06 21:09:47
  281. Restore point made on: 2015-02-10 20:29:55
  282. Restore point made on: 2015-02-11 08:31:12
  283. Restore point made on: 2015-02-11 22:42:30
  284. Restore point made on: 2015-02-12 22:23:38
  285. Restore point made on: 2015-02-15 09:33:22
  286. Restore point made on: 2015-02-16 09:32:23
  287. Restore point made on: 2015-02-23 08:36:05
  288. Restore point made on: 2015-02-26 08:20:49
  289. Restore point made on: 2015-02-27 21:10:15
  290.  
  291. ==================== Memory info ===========================
  292.  
  293. Percentage of memory in use: 16%
  294. Total physical RAM: 4058.36 MB
  295. Available physical RAM: 3391.06 MB
  296. Total Pagefile: 4056.51 MB
  297. Available Pagefile: 3389.57 MB
  298. Total Virtual: 8192 MB
  299. Available Virtual: 8191.88 MB
  300.  
  301. ==================== Drives ================================
  302.  
  303. Drive c: (OS) (Fixed) (Total:283.34 GB) (Free:53.54 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
  304. Drive e: (Recovery) (Fixed) (Total:14.65 GB) (Free:8.12 GB) NTFS ==>[System with boot components (obtained from reading drive)]
  305. Drive f: (KINGSTON) (Removable) (Total:7.26 GB) (Free:3.75 GB) FAT32
  306. Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
  307.  
  308. ==================== MBR & Partition Table ==================
  309.  
  310. ========================================================
  311. Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: CDB3C2B3)
  312. Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
  313. Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
  314. Partition 3: (Not Active) - (Size=283.3 GB) - (Type=07 NTFS)
  315.  
  316. ========================================================
  317. Disk: 1 (MBR Code: Windows XP) (Size: 7.3 GB) (Disk ID: C3072E18)
  318. Partition 1: (Active) - (Size=7.3 GB) - (Type=0C)
  319.  
  320.  
  321. LastRegBack: 2015-02-23 11:42
  322.  
  323. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!