Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-11-2014
- Ran by Owner (administrator) on OWNER-PC on 01-11-2014 19:08:36
- Running from C:\Users\Owner\Desktop
- Loaded Profile: Owner (Available profiles: Owner)
- Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
- Internet Explorer Version 11
- Boot Mode: Normal
- Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Processes (Whitelisted) =================
- (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
- (SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
- (SlimWare Utilities, Inc.) C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
- (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
- (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
- (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
- (Intel Corporation) C:\Windows\System32\hkcmd.exe
- (Intel Corporation) C:\Windows\System32\igfxpers.exe
- (Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
- (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\nav.exe
- (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
- (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\nst.exe
- (Stronghold Online Backup) C:\Users\Owner\AppData\Local\Strongvault Online Backup\SMessaging.exe
- (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe
- (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
- (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
- (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
- (Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\nav.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\nst.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
- (Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn6\ytbb.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
- ==================== Registry (Whitelisted) ==================
- (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
- HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11474024 2010-10-05] (Realtek Semiconductor)
- HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation)
- HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-26] (Renesas Electronics Corporation)
- HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
- HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
- HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [222504 2010-04-20] (CyberLink Corp.)
- HKLM-x32\...\Run: [SMessaging] => C:\Users\Owner\AppData\Local\Strongvault Online Backup\SMessaging.exe [31664 2012-04-04] (Stronghold Online Backup)
- HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
- HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
- HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
- Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
- HKU\S-1-5-21-3808024246-114040771-358346857-1002\...\Run: [ISUSPM] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-03-20] (Macrovision Corporation)
- HKU\S-1-5-21-3808024246-114040771-358346857-1002\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
- BootExecute: autocheck autochk * bootdelete
- GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
- CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
- CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
- ==================== Internet (Whitelisted) ====================
- (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
- ProxyServer: http=127.0.0.1:49180;https=127.0.0.1:49180
- HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
- HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
- HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
- HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE347AD2C7565CF01
- URLSearchHook: HKCU - YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn6\yt.dll (Yahoo! Inc.)
- SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
- SearchScopes: HKCU - DefaultScope {A216DD49-6811-494F-97B3-5E42BDC052FE} URL = https://www.google.com/search?q={searchTerms}
- SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&r=229
- SearchScopes: HKCU - {305C5C93-2417-48A7-A91D-24BCCDFA0FB6} URL = http://www.google.com/cse?cx=partner-pub-5955282864024942:lddb3rv8blr&&q={searchTerms}&sa=Search
- SearchScopes: HKCU - {4C4C7AAB-5854-4241-A414-E2F1EF119C4A} URL = http://www.dnsbasic.com/?prt=dnsbsc50r1&sp=&keywords={searchTerms}
- SearchScopes: HKCU - {9E5CDD31-23D0-4304-AE03-3325ADE856E3} URL = http://us.yhs4.search.yahoo.com/yhs/search?p={searchTerms}&ei=UTF-8&hspart=w3i&hsimp=yhs-synd1&type=W3i_DS,221,0_0,Search,20140208,19669,0,GC32,7656
- SearchScopes: HKCU - {A216DD49-6811-494F-97B3-5E42BDC052FE} URL = https://www.google.com/search?q={searchTerms}
- SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=IDSSNAV&chn=retail&geo=US&ver=2014&locale=en_US&gct=kwd&qsrc=2869
- SearchScopes: HKCU - {E53CC8AF-2A1F-447E-B018-CCC78D3D15C1} URL = http://isearch.shopathome.com?user_id=0&q={searchTerms}
- BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.8.23\coIEPlg.dll (Symantec Corporation)
- BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn6\yt.dll (Yahoo! Inc.)
- BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
- BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
- BHO-x32: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\coIEPlg.dll (Symantec Corporation)
- BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
- Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.8.23\coIEPlg.dll (Symantec Corporation)
- Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn6\yt.dll (Yahoo! Inc.)
- Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\coIEPlg.dll (Symantec Corporation)
- Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
- Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
- Toolbar: HKCU - Norton Identity Safe Toolbar - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.8.23\coIEPlg.dll (Symantec Corporation)
- DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
- DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
- DPF: HKLM-x32 {E8F628B5-259A-4734-97EE-BA914D7BE941} http://www.driveragent.com/files/driveragent.cab
- Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
- FireFox:
- ========
- FF ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\8vb0r7b1.default
- FF DefaultSearchEngine: Mysearchdial
- FF Plugin: @microsoft.com/GENUINE -> disabled No File
- FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll No File
- FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
- FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
- FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
- FF user.js: detected! => C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\8vb0r7b1.default\user.js
- FF Extension: Word Layers - C:\Program Files (x86)\Mozilla Firefox\extensions\ugnraew@jqhljqmpngx.net [2013-10-22]
- FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.5.0.67\coFFPlgn
- FF Extension: Norton Identity Safe Toolbar - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.5.0.67\coFFPlgn [2014-11-01]
- FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.1.0.18\IPSFF
- FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.1.0.18\IPSFF [2014-01-17]
- FF Extension: No Name - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7006\ff [Not Found]
- Chrome:
- =======
- CHR HomePage: Default -> hxxp://astromenda.com/?f=1&a=ast_file_14_44_ie&cd=2XzuyEtN2Y1L1QzutDtD0EtDyE0C0B0BtAyDyDtAzy0AyCyBtN0D0Tzu0StCtDtAtAtN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1RtN1L1G1B1V1N2Y1L1Qzu2StAyD0Ezy0Fzy0F0BtG0B0C0AyCtGyB0AyE0CtG0A0F0FyBtGyB0EyEtCyDtAyDtD0CzztB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0ByCtD0EzytBzy0EtGzz0ByCtAtGyEyCzztBtG0AtCtB0BtG0EzytDyB0DyE0ByE0CzztB0E2Q&cr=285486061&ir=
- CHR StartupUrls: Default -> "hxxp://astromenda.com/?f=7&a=ast_file_14_44_ie&cd=2XzuyEtN2Y1L1QzutDtD0EtDyE0C0B0BtAyDyDtAzy0AyCyBtN0D0Tzu0StCtDtAtAtN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1RtN1L1G1B1V1N2Y1L1Qzu2StAyD0Ezy0Fzy0F0BtG0B0C0AyCtGyB0AyE0CtG0A0F0FyBtGyB0EyEtCyDtAyDtD0CzztB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0ByCtD0EzytBzy0EtGzz0ByCtAtGyEyCzztBtG0AtCtB0BtG0EzytDyB0DyE0ByE0CzztB0E2Q&cr=285486061&ir="
- CHR DefaultSearchKeyword: Default -> conduit.search
- CHR DefaultSearchKeyword: Default -> astromenda.com
- CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
- CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll ()
- CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
- CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ppGoogleNaClPluginChrome.dll No File
- CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll ()
- CHR Plugin: (Norton Identity Safe) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob\2013.3.3.19_0\npcoplgn.dll No File
- CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
- CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
- CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
- CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
- CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
- CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll No File
- CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll No File
- CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll No File
- CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
- CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
- CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll No File
- CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\SysWOW64\npDeployJava1.dll No File
- CHR Profile: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default
- CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-24]
- CHR Extension: (YouTube) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-16]
- CHR Extension: (Search) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-16]
- CHR Extension: (Norton Identity Safe) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-24]
- CHR Extension: (Google Wallet) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
- CHR Extension: (Norton Security Toolbar) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob [2013-05-21]
- CHR Extension: (Gmail) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-16]
- CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\Exts\Chrome.crx [2014-10-31]
- CHR HKCU\...\Chrome\Extension: [aobbhmkkplckkcbnbcdbkneemiooegoc] - C:\Users\Owner\AppData\Local\CRE\aobbhmkkplckkcbnbcdbkneemiooegoc.crx [2013-10-20]
- CHR HKCU\...\Chrome\Extension: [iehjklkgijkjfcfmmjmjlmcccholamaf] - C:\Users\Owner\AppData\Local\CRE\iehjklkgijkjfcfmmjmjlmcccholamaf.crx [2013-08-08]
- CHR HKLM-x32\...\Chrome\Extension: [aobbhmkkplckkcbnbcdbkneemiooegoc] - C:\Users\Owner\AppData\Local\CRE\aobbhmkkplckkcbnbcdbkneemiooegoc.crx [2013-10-20]
- CHR HKLM-x32\...\Chrome\Extension: [biokjelgokceehgeognbkbjkidceaedn] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7006\ch\RichMediaViewV1release7006.crx [2013-10-20]
- CHR HKLM-x32\...\Chrome\Extension: [iehjklkgijkjfcfmmjmjlmcccholamaf] - C:\Users\Owner\AppData\Local\CRE\iehjklkgijkjfcfmmjmjlmcccholamaf.crx [2013-08-08]
- CHR HKLM-x32\...\Chrome\Extension: [laalnjdplakpmagpffleophomanaanjk] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode6706\ch\MediaBuzzV1mode6706.crx [2013-08-08]
- CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\Exts\Chrome.crx [2014-10-31]
- ==================== Services (Whitelisted) =================
- (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
- S2 DesignSpooler; C:\Program Files (x86)\Tajima\DGML By Pulse 14\DesignSpooler.exe [1394520 2012-03-29] ()
- R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-11-01] (SurfRight B.V.)
- R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1037824 2009-09-08] (Hewlett-Packard Co.) [File not signed]
- R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
- R2 MSSQLSERVER; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
- R2 NAV; C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\NAV.exe [262968 2014-09-21] (Symantec Corporation)
- R2 NCO; C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\NST.exe [130104 2014-09-20] (Symantec Corporation)
- R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
- R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe [132504 2013-03-20] (Symantec Corporation)
- R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
- S2 Util RightSurf; "C:\Program Files (x86)\RightSurf\bin\utilRightSurf.exe" [X]
- ==================== Drivers (Whitelisted) ====================
- (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
- S3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [57088 2012-06-15] (SafeNet Inc.)
- S3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [296576 2012-06-15] (SafeNet Inc.)
- R1 BHDrvx64; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.1.0.18\Definitions\BASHDefs\20141024.001\BHDrvx64.sys [1587416 2014-10-03] (Symantec Corporation)
- R1 ccSet_NAV; C:\Windows\system32\drivers\NAVx64\1506000.020\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
- R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE07080.017\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
- R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-09-09] (Symantec Corporation)
- R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-09-09] (Symantec Corporation)
- R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [321536 2011-09-28] (SafeNet Inc.)
- R1 IDSVia64; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.1.0.18\Definitions\IPSDefs\20141101.001\IDSvia64.sys [633560 2014-08-29] (Symantec Corporation)
- R3 NAVENG; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.1.0.18\Definitions\VirusDefs\20141031.017\ENG64.SYS [129752 2014-10-29] (Symantec Corporation)
- R3 NAVEX15; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.1.0.18\Definitions\VirusDefs\20141031.017\EX64.SYS [2137304 2014-10-29] (Symantec Corporation)
- R3 rtl819xpn64; C:\Windows\System32\DRIVERS\rtl819xp.sys [622624 2010-02-01] (Realtek Semiconductor Corporation )
- U5 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [141888 2006-04-20] (SafeNet, Inc.)
- S3 SNTUSB64; C:\Windows\System32\DRIVERS\SNTUSB64.SYS [58792 2009-09-17] (SafeNet, Inc.)
- R1 SRTSP; C:\Windows\System32\Drivers\NAVx64\1506000.020\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
- R1 SRTSPX; C:\Windows\system32\drivers\NAVx64\1506000.020\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
- S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-11-01] ()
- R0 SymDS; C:\Windows\System32\drivers\NAVx64\1506000.020\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
- R0 SymEFA; C:\Windows\System32\drivers\NAVx64\1506000.020\SYMEFA64.SYS [1148120 2014-03-03] (Symantec Corporation)
- R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-01-17] (Symantec Corporation)
- R1 SymIRON; C:\Windows\system32\drivers\NAVx64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
- R1 SymNetS; C:\Windows\System32\Drivers\NAVx64\1506000.020\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)
- S3 cpuz134; \??\C:\Users\Owner\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
- S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
- S1 nhrwkpdb; \??\C:\Windows\system32\drivers\nhrwkpdb.sys [X]
- S1 qknfd; system32\drivers\qknfd.sys [X]
- ==================== NetSvcs (Whitelisted) ===================
- (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
- ==================== One Month Created Files and Folders ========
- (If an entry is included in the fixlist, the file\folder will be moved.)
- 2014-11-01 19:08 - 2014-11-01 19:08 - 00022547 _____ () C:\Users\Owner\Desktop\FRST.txt
- 2014-11-01 19:08 - 2014-11-01 19:08 - 00000000 ____D () C:\FRST
- 2014-11-01 19:07 - 2014-11-01 19:07 - 02114048 _____ (Farbar) C:\Users\Owner\Desktop\frst64.exe
- 2014-11-01 18:48 - 2014-11-01 18:48 - 00485456 _____ () C:\Windows\system32\.crusader
- 2014-11-01 18:28 - 2014-11-01 18:28 - 00001893 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
- 2014-11-01 18:28 - 2014-11-01 18:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
- 2014-11-01 18:28 - 2014-11-01 18:28 - 00000000 ____D () C:\Program Files\HitmanPro
- 2014-11-01 18:25 - 2014-11-01 18:48 - 00000000 ____D () C:\ProgramData\HitmanPro
- 2014-11-01 18:24 - 2014-11-01 18:25 - 11222744 _____ (SurfRight B.V.) C:\Users\Owner\Desktop\HitmanPro_x64.exe
- 2014-11-01 17:58 - 2014-11-01 17:59 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
- 2014-11-01 17:58 - 2014-11-01 17:58 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
- 2014-11-01 17:58 - 2014-11-01 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
- 2014-11-01 17:58 - 2014-11-01 17:58 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
- 2014-11-01 17:58 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
- 2014-11-01 17:58 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
- 2014-11-01 17:58 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
- 2014-11-01 17:57 - 2014-11-01 17:57 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Owner\Desktop\mbam-setup-2.0.3.1025.exe
- 2014-11-01 17:54 - 2014-11-01 17:55 - 00002040 _____ () C:\Users\Owner\Desktop\Rkill.txt
- 2014-11-01 17:54 - 2014-11-01 17:54 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Owner\Desktop\iExplore.exe
- 2014-11-01 17:39 - 2014-11-01 17:39 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
- 2014-11-01 17:39 - 2014-11-01 17:39 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
- 2014-11-01 17:39 - 2014-11-01 17:39 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
- 2014-11-01 17:39 - 2014-11-01 17:39 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
- 2014-11-01 17:39 - 2014-11-01 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
- 2014-11-01 17:34 - 2014-11-01 17:34 - 00000066 _____ () C:\Users\Owner\Desktop\COM Surrogate Link.txt
- 2014-11-01 17:32 - 2014-11-01 17:32 - 04184008 _____ (Kaspersky Lab ZAO) C:\Users\Owner\Desktop\COM Scanner.exe
- 2014-11-01 15:09 - 2014-11-01 15:09 - 00280264 _____ () C:\Windows\Minidump\110114-82118-01.dmp
- 2014-11-01 13:56 - 2014-11-01 18:51 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- 2014-11-01 13:56 - 2014-11-01 18:10 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- 2014-11-01 13:56 - 2014-11-01 14:05 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
- 2014-11-01 13:56 - 2014-11-01 14:05 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
- 2014-11-01 13:56 - 2014-11-01 13:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
- 2014-10-31 09:51 - 2014-10-31 09:54 - 42096984 _____ (Apple Inc.) C:\Users\Owner\Downloads\QuickTime-P154-Setup.exe
- 2014-10-31 01:37 - 2014-10-31 01:37 - 00002984 _____ () C:\Windows\System32\Tasks\{107F41FE-AE6C-4845-BD94-D3084CE271EA}
- 2014-10-31 01:32 - 2014-11-01 18:23 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
- 2014-10-31 01:32 - 2014-11-01 13:55 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
- 2014-10-31 01:32 - 2014-11-01 13:55 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
- 2014-10-31 01:32 - 2014-11-01 13:55 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
- 2014-10-31 01:04 - 2014-10-31 01:13 - 06000640 _____ () C:\Program Files (x86)\GUT4C13.tmp
- 2014-10-31 01:04 - 2014-10-31 01:04 - 00000000 ____D () C:\Program Files (x86)\GUM4C12.tmp
- 2014-10-29 22:08 - 2014-10-29 22:08 - 00000000 ____D () C:\NPE
- 2014-10-29 22:04 - 2014-10-29 22:12 - 00000000 ____D () C:\Users\Owner\AppData\Local\NPE
- 2014-10-18 20:52 - 2014-10-18 20:52 - 00070356 _____ () C:\Users\Owner\Downloads\Penguin_Attack.ttf
- 2014-10-16 01:47 - 2014-10-09 21:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
- 2014-10-16 01:47 - 2014-10-09 21:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
- 2014-10-16 01:47 - 2014-10-09 21:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
- 2014-10-16 01:47 - 2014-10-06 21:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
- 2014-10-16 01:47 - 2014-10-06 21:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
- 2014-10-16 01:47 - 2014-09-28 19:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
- 2014-10-16 01:47 - 2014-09-25 17:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
- 2014-10-16 01:47 - 2014-09-25 17:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
- 2014-10-16 01:47 - 2014-09-25 17:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
- 2014-10-16 01:47 - 2014-09-25 17:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
- 2014-10-16 01:47 - 2014-09-25 17:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
- 2014-10-16 01:47 - 2014-09-25 17:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
- 2014-10-16 01:47 - 2014-09-25 17:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
- 2014-10-16 01:47 - 2014-09-18 21:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
- 2014-10-16 01:47 - 2014-09-18 20:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
- 2014-10-16 01:47 - 2014-09-18 20:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
- 2014-10-16 01:47 - 2014-09-18 20:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
- 2014-10-16 01:47 - 2014-09-18 20:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
- 2014-10-16 01:47 - 2014-09-18 20:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
- 2014-10-16 01:47 - 2014-09-18 20:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
- 2014-10-16 01:47 - 2014-09-18 20:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
- 2014-10-16 01:47 - 2014-09-18 20:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
- 2014-10-16 01:47 - 2014-09-18 20:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
- 2014-10-16 01:47 - 2014-09-18 20:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
- 2014-10-16 01:47 - 2014-09-18 20:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
- 2014-10-16 01:47 - 2014-09-18 20:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
- 2014-10-16 01:47 - 2014-09-18 20:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
- 2014-10-16 01:47 - 2014-09-18 20:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
- 2014-10-16 01:47 - 2014-09-18 20:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
- 2014-10-16 01:47 - 2014-09-18 20:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
- 2014-10-16 01:47 - 2014-09-18 20:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
- 2014-10-16 01:47 - 2014-09-18 20:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
- 2014-10-16 01:47 - 2014-09-18 20:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
- 2014-10-16 01:47 - 2014-09-18 20:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
- 2014-10-16 01:47 - 2014-09-18 20:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
- 2014-10-16 01:47 - 2014-09-18 20:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
- 2014-10-16 01:47 - 2014-09-18 20:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
- 2014-10-16 01:47 - 2014-09-18 20:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
- 2014-10-16 01:47 - 2014-09-18 20:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
- 2014-10-16 01:47 - 2014-09-18 19:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
- 2014-10-16 01:47 - 2014-09-18 19:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
- 2014-10-16 01:47 - 2014-09-18 19:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
- 2014-10-16 01:47 - 2014-09-18 19:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
- 2014-10-16 01:47 - 2014-09-18 19:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
- 2014-10-16 01:47 - 2014-09-18 19:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
- 2014-10-16 01:47 - 2014-09-18 19:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
- 2014-10-16 01:47 - 2014-09-18 19:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
- 2014-10-16 01:47 - 2014-09-18 19:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
- 2014-10-16 01:47 - 2014-09-18 19:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
- 2014-10-16 01:47 - 2014-09-18 19:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
- 2014-10-16 01:47 - 2014-09-18 19:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
- 2014-10-16 01:47 - 2014-09-18 19:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
- 2014-10-16 01:47 - 2014-09-18 19:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
- 2014-10-16 01:47 - 2014-09-18 19:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
- 2014-10-16 01:47 - 2014-09-18 19:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
- 2014-10-16 01:47 - 2014-09-18 19:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
- 2014-10-16 01:47 - 2014-09-18 18:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
- 2014-10-16 01:47 - 2014-09-18 18:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
- 2014-10-16 01:47 - 2014-09-18 18:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
- 2014-10-16 01:47 - 2014-09-18 18:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
- 2014-10-16 01:47 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
- 2014-10-16 01:47 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
- 2014-10-16 01:47 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
- 2014-10-16 01:47 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
- 2014-10-16 01:47 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
- 2014-10-16 01:47 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
- 2014-10-16 01:46 - 2014-09-17 21:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
- 2014-10-16 01:46 - 2014-09-17 20:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
- 2014-10-16 01:46 - 2014-09-12 20:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
- 2014-10-16 01:46 - 2014-09-12 20:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
- 2014-10-16 01:46 - 2014-09-04 00:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
- 2014-10-16 01:46 - 2014-09-04 00:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
- 2014-10-16 01:46 - 2014-08-28 21:07 - 05780480 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
- 2014-10-16 01:46 - 2014-08-28 21:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
- 2014-10-16 01:46 - 2014-08-28 21:07 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
- 2014-10-16 01:46 - 2014-08-28 21:07 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
- 2014-10-16 01:46 - 2014-08-28 21:06 - 01125888 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
- 2014-10-16 01:46 - 2014-08-28 20:44 - 04922368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
- 2014-10-16 01:46 - 2014-08-28 20:44 - 01050112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
- 2014-10-16 01:46 - 2014-08-28 20:44 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
- 2014-10-16 01:46 - 2014-08-28 20:44 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
- 2014-10-16 01:46 - 2014-07-16 21:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
- 2014-10-16 01:46 - 2014-07-16 21:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
- 2014-10-16 01:46 - 2014-07-16 21:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
- 2014-10-16 01:46 - 2014-07-16 21:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
- 2014-10-16 01:46 - 2014-07-16 21:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
- 2014-10-16 01:46 - 2014-07-16 21:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
- 2014-10-16 01:46 - 2014-07-16 20:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
- 2014-10-16 01:46 - 2014-07-16 20:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
- 2014-10-16 01:46 - 2014-07-16 20:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
- 2014-10-16 01:46 - 2014-07-16 20:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
- 2014-10-16 01:46 - 2014-07-16 20:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
- 2014-10-16 01:07 - 2014-10-16 01:06 - 00762623 _____ () C:\Users\Owner\Documents\s. vaccaro.jpeg
- 2014-10-15 14:36 - 2014-10-15 14:36 - 00669057 _____ () C:\Users\Owner\Downloads\cross&bible.zip
- 2014-10-10 22:26 - 2014-10-10 22:26 - 00066413 _____ () C:\Users\Owner\Downloads\Owl.pes
- 2014-10-10 22:25 - 2014-10-10 22:25 - 00111258 _____ () C:\Users\Owner\Downloads\dracula.pes
- ==================== One Month Modified Files and Folders =======
- (If an entry is included in the fixlist, the file\folder will be moved.)
- 2014-11-01 19:09 - 2013-01-11 11:16 - 01133613 _____ () C:\Windows\WindowsUpdate.log
- 2014-11-01 18:58 - 2009-07-13 23:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
- 2014-11-01 18:58 - 2009-07-13 23:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
- 2014-11-01 18:52 - 2013-01-18 18:00 - 00000000 ____D () C:\Users\Owner\AppData\Local\Strongvault Online Backup
- 2014-11-01 18:51 - 2013-12-02 10:12 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
- 2014-11-01 18:51 - 2013-12-02 10:12 - 00002844 _____ () C:\Windows\System32\Tasks\DriverUpdate Startup
- 2014-11-01 18:51 - 2013-12-02 10:12 - 00000418 _____ () C:\Windows\Tasks\DriverUpdate Startup.job
- 2014-11-01 18:50 - 2010-11-20 22:47 - 00620678 _____ () C:\Windows\PFRO.log
- 2014-11-01 18:50 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
- 2014-11-01 18:50 - 2009-07-13 23:51 - 00049873 _____ () C:\Windows\setupact.log
- 2014-11-01 18:39 - 2013-04-22 18:14 - 00000000 ____D () C:\Users\Owner\AppData\Local\CrashDumps
- 2014-11-01 18:16 - 2014-05-13 17:24 - 00000000 ____D () C:\Windows\Minidump
- 2014-11-01 18:14 - 2013-11-20 16:48 - 00000000 ____D () C:\ProgramData\Updater
- 2014-11-01 17:42 - 2013-11-21 17:40 - 00000000 ____D () C:\Users\Owner\AppData\Local\Adobe
- 2014-11-01 17:39 - 2013-12-04 09:38 - 00000000 ____D () C:\ProgramData\Oracle
- 2014-11-01 15:08 - 2014-05-13 17:24 - 1057912178 _____ () C:\Windows\MEMORY.DMP
- 2014-11-01 14:24 - 2013-05-16 19:22 - 00002102 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
- 2014-11-01 14:18 - 2013-02-25 16:57 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Identity Safe
- 2014-11-01 13:56 - 2013-05-16 19:22 - 00000000 ____D () C:\Program Files (x86)\Google
- 2014-10-31 09:06 - 2013-08-23 21:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Identity Safe
- 2014-10-31 09:06 - 2013-02-25 11:49 - 00000000 ____D () C:\Windows\system32\Drivers\NSTx64
- 2014-10-31 01:40 - 2014-03-16 16:12 - 00000000 ____D () C:\Users\LogMeInRemoteUser.Owner-PC
- 2014-10-31 01:22 - 2013-01-24 14:38 - 00000000 ____D () C:\Users\Owner\AppData\Local\Deployment
- 2014-10-30 22:13 - 2013-01-17 19:19 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
- 2014-10-30 09:40 - 2013-01-17 14:17 - 00001945 _____ () C:\Windows\epplauncher.mif
- 2014-10-30 09:38 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
- 2014-10-30 09:25 - 2013-01-17 14:56 - 00000000 ____D () C:\Users\Owner
- 2014-10-30 09:22 - 2013-01-18 15:42 - 00000000 ____D () C:\ProgramData\Norton
- 2014-10-30 09:18 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\registration
- 2014-10-30 09:12 - 2013-01-17 14:22 - 00000000 ____D () C:\ProgramData\Adobe
- 2014-10-29 20:04 - 2009-07-13 23:45 - 00381920 _____ () C:\Windows\system32\FNTCACHE.DAT
- 2014-10-28 23:11 - 2009-07-14 00:13 - 00915032 _____ () C:\Windows\system32\PerfStringBackup.INI
- 2014-10-28 06:34 - 2010-11-20 22:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
- 2014-10-18 20:52 - 2013-01-17 14:56 - 00096280 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT
- 2014-10-16 04:16 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
- 2014-10-16 03:26 - 2009-07-13 22:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
- 2014-10-16 03:22 - 2014-05-07 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
- 2014-10-16 03:05 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
- 2014-10-16 03:04 - 2013-08-15 03:00 - 00000000 ____D () C:\Windows\system32\MRT
- 2014-10-16 03:00 - 2013-01-11 11:55 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
- Some content of TEMP:
- ====================
- C:\Users\Owner\AppData\Local\Temp\35685uninstall.exe
- C:\Users\Owner\AppData\Local\Temp\45515uninstall.exe
- C:\Users\Owner\AppData\Local\Temp\60756uninstall.exe
- C:\Users\Owner\AppData\Local\Temp\77zip.exe
- C:\Users\Owner\AppData\Local\Temp\AdobeShockwavePlayerUpdateSetup.exe
- C:\Users\Owner\AppData\Local\Temp\air9A1B.exe
- C:\Users\Owner\AppData\Local\Temp\amsetup_activeris_default_somotoinc_installer.exe
- C:\Users\Owner\AppData\Local\Temp\BRSVC_7493336_hlp.exe
- C:\Users\Owner\AppData\Local\Temp\Caramava_bs.exe
- C:\Users\Owner\AppData\Local\Temp\contentDATs.exe
- C:\Users\Owner\AppData\Local\Temp\dsapi.exe
- C:\Users\Owner\AppData\Local\Temp\eFixPro.exe
- C:\Users\Owner\AppData\Local\Temp\eFixProPackage.exe
- C:\Users\Owner\AppData\Local\Temp\eFixProSetup.exe
- C:\Users\Owner\AppData\Local\Temp\gkc.exe
- C:\Users\Owner\AppData\Local\Temp\helper.exe
- C:\Users\Owner\AppData\Local\Temp\ICReinstall_AdobeShockwavePlayerUpdateSetup.exe
- C:\Users\Owner\AppData\Local\Temp\ICReinstall_QuickTimeUpdateSetup.exe
- C:\Users\Owner\AppData\Local\Temp\ICSW_0F1L1I1PtF1F1C1N.exe
- C:\Users\Owner\AppData\Local\Temp\iman.exe
- C:\Users\Owner\AppData\Local\Temp\install_flashplayer15x32ax_chrd_dn_awa_aih.exe
- C:\Users\Owner\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
- C:\Users\Owner\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
- C:\Users\Owner\AppData\Local\Temp\jre-7u60-windows-i586-iftw.exe
- C:\Users\Owner\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
- C:\Users\Owner\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
- C:\Users\Owner\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
- C:\Users\Owner\AppData\Local\Temp\LiveSupport_setup.exe
- C:\Users\Owner\AppData\Local\Temp\mssinstaller.exe
- C:\Users\Owner\AppData\Local\Temp\nsqA653.exe
- C:\Users\Owner\AppData\Local\Temp\nsqAAE8.exe
- C:\Users\Owner\AppData\Local\Temp\nsw8909.exe
- C:\Users\Owner\AppData\Local\Temp\oi_{1B6347B3-DC3C-4ED0-AF92-5F71A70F14FD}.exe
- C:\Users\Owner\AppData\Local\Temp\oi_{8785C806-9240-4856-A7B9-885401978C1F}.exe
- C:\Users\Owner\AppData\Local\Temp\safeguard.exe
- C:\Users\Owner\AppData\Local\Temp\SecurityScan_Release.exe
- C:\Users\Owner\AppData\Local\Temp\SendMsg.dll
- C:\Users\Owner\AppData\Local\Temp\SpOrder.dll
- C:\Users\Owner\AppData\Local\Temp\Sqlite3.dll
- C:\Users\Owner\AppData\Local\Temp\sqlite3.exe
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite10148.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite10466.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite10720.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite10930.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite11395.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite11447.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite12174.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite12858.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite13034.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite13373.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite14281.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite17407.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite17924.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite18187.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite18604.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite18702.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite18840.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite18922.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite19403.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite19458.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite20431.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite20522.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite20882.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite20936.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite21263.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite21397.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite21620.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite21674.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite22027.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite22645.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite22936.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite23153.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite23389.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite23634.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite23642.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite23948.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite24119.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite24160.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite24219.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite24560.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite25045.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite25224.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite25598.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite25715.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite25849.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite25868.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite26576.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite26670.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite27184.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite27347.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite28261.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite28595.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite28997.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite29079.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite29233.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite29238.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite29365.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite29461.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite29807.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite30192.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite30583.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite31057.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite31594.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite33740.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite34165.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite35009.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite35132.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite35427.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite35469.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite35575.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite35842.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite36236.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite36339.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite36673.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite36948.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite37069.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite37533.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite37549.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite37762.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite38561.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite38660.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite38800.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite38912.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite39412.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite39710.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite40126.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite40604.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite40832.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite41032.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite41198.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite41267.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite41614.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite41914.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite42211.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite43239.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite44260.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite44640.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite44721.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite45202.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite46083.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite46415.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite46463.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite46910.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite46927.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite47106.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite48028.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite48220.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite48236.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite48281.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite49089.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite49823.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite50687.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite50750.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite50833.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite50868.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite51058.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite51351.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite51424.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite51850.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite52046.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite52690.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite52769.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite53237.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite53285.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite53637.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite54284.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite54399.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite54650.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite54744.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite54871.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite55110.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite55233.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite55793.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite56244.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite56584.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite56708.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite57272.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite57354.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite57642.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite57950.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite58141.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite59185.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite60048.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite60342.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite61249.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite61574.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite61927.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite61938.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite62032.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite62513.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite63110.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite63199.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite63255.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite63859.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite63878.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite64600.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite64601.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite64823.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite65903.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite66015.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite66080.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite66192.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite66780.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite66948.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite67394.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite67532.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite67559.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite67671.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite68127.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite68586.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite69015.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite69199.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite69372.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite69379.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite69416.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite70099.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite70371.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite70840.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite71433.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite71702.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite72021.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite72072.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite72139.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite72561.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite72683.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite72789.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite73029.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite73054.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite73477.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite74094.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite74152.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite74162.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite74474.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite74763.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite75073.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite75438.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite75519.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite75753.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite75870.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite76194.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite76253.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite76503.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite76993.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite77844.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite78143.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite78643.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite78703.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite78973.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite79045.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite79323.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite79828.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80063.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80083.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80155.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80234.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80276.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80486.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80676.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite80877.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite81090.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite81213.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite81890.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite82008.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite82681.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite83133.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite83390.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite83422.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite83875.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite85130.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite85173.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite85189.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite85220.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite85300.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite85354.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite86652.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite86698.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite87056.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite88157.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite88177.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite88424.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite88536.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite88648.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite89722.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite90115.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite90366.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite90850.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite91137.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite91296.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite91834.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite91958.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite92261.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite92361.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite93312.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite93505.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite93990.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite93996.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite94225.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite94347.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite94558.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite94848.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite95028.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite95085.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite95592.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite95915.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite96033.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite96202.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite97065.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite97183.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite97861.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite98248.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite98360.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite98450.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite98477.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite98556.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite98896.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite99338.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite99551.dll
- C:\Users\Owner\AppData\Local\Temp\System.Data.SQLite99596.dll
- C:\Users\Owner\AppData\Local\Temp\tbSwee.dll
- C:\Users\Owner\AppData\Local\Temp\UNINSTALL.EXE
- C:\Users\Owner\AppData\Local\Temp\{F1AE73DF-9CB5-47C6-94B4-DC627DE76989}-38.0.2125.111_chrome_installer.exe
- ==================== Bamital & volsnap Check =================
- (There is no automatic fix for files that do not pass verification.)
- C:\Windows\System32\winlogon.exe => File is digitally signed
- C:\Windows\System32\wininit.exe => File is digitally signed
- C:\Windows\SysWOW64\wininit.exe => File is digitally signed
- C:\Windows\explorer.exe => File is digitally signed
- C:\Windows\SysWOW64\explorer.exe => File is digitally signed
- C:\Windows\System32\svchost.exe => File is digitally signed
- C:\Windows\SysWOW64\svchost.exe => File is digitally signed
- C:\Windows\System32\services.exe => File is digitally signed
- C:\Windows\System32\User32.dll => File is digitally signed
- C:\Windows\SysWOW64\User32.dll => File is digitally signed
- C:\Windows\System32\userinit.exe => File is digitally signed
- C:\Windows\SysWOW64\userinit.exe => File is digitally signed
- C:\Windows\System32\rpcss.dll => File is digitally signed
- C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
- LastRegBack: 2014-10-30 08:19
- ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement