API tools faq
paste
Advertisement
Guest User

FRST

a guest
Aug 1st, 2017
1,001
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 40.84 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-07-2017
  2. Ran by main (administrator) on MAIN-PC (01-08-2017 14:35:43)
  3. Running from C:\Users\main\Downloads
  4. Loaded Profiles: main (Available Profiles: main)
  5. Platform: Windows 7 Home Premium Service Pack 1 (X86) Language: English (United States)
  6. Internet Explorer Version 11 (Default browser: Chrome)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
  15. (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
  16. (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
  17. (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgui.exe
  18. (Mega Limited) C:\Users\main\AppData\Local\MEGAsync\MEGAsync.exe
  19. (ESET) C:\Program Files\ESET\ESET Security\egui.exe
  20. (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
  21. (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
  22. (Andrea Electronics Corporation) C:\Windows\System32\AERTSrv.exe
  23. (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  24. (Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
  25. (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
  26. (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
  27. () C:\Program Files\Canon\IJPLM\ijplmsvc.exe
  28. (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
  29. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  30. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  31. (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
  32. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  33. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  34. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  35. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  36. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  37. (Microsoft Corporation) C:\Windows\ehome\ehrec.exe
  38. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  39. (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
  40. (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
  41. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  42. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  43. (Farbar) C:\Users\main\Downloads\FRST (3).exe
  44. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  45.  
  46. ==================== Registry (Whitelisted) ====================
  47.  
  48. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  49.  
  50. HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220288 2017-07-03] (AVG Technologies CZ, s.r.o.)
  51. HKLM\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2014-07-30] (CANON INC.)
  52. HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [263232 2017-07-22] (AVG Technologies CZ, s.r.o.)
  53. HKLM\...\Run: [Malwarebytes TrayApp] => C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
  54. Winlogon\Notify\GoToAssist Express Customer: C:\Program Files\Citrix\GoToAssist Remote Support Customer\1251\g2ax_winlogon.dll [X]
  55. HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
  56. HKU\S-1-5-21-1603529505-3309391414-3581799377-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7658200 2017-06-30] (Piriform Ltd)
  57. Lsa: [Notification Packages] scecli "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
  58. Startup: C:\Users\main\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2017-07-09]
  59. ShortcutTarget: MEGAsync.lnk -> C:\Users\main\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
  60.  
  61. ==================== Internet (Whitelisted) ====================
  62.  
  63. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  64.  
  65. Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => No File
  66. Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => No File
  67. Tcpip\Parameters: [DhcpNameServer] 209.18.47.61 209.18.47.62
  68. Tcpip\..\Interfaces\{1BCD645A-3085-4659-AA9D-65814FB7E657}: [DhcpNameServer] 209.18.47.61 209.18.47.62
  69.  
  70. Internet Explorer:
  71. ==================
  72. BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
  73. BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
  74. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-23] (Oracle Corporation)
  75. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-23] (Oracle Corporation)
  76. Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
  77. Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
  78.  
  79. FireFox:
  80. ========
  81. FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
  82. FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-23] (Oracle Corporation)
  83. FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-23] (Oracle Corporation)
  84. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
  85. FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-22] (Google Inc.)
  86. FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-22] (Google Inc.)
  87. FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
  88. FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
  89. FF Plugin HKU\S-1-5-21-1603529505-3309391414-3581799377-1000: @citrixonline.com/appdetectorplugin -> C:\Users\main\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2017-04-11] (Citrix Online)
  90. FF Plugin HKU\S-1-5-21-1603529505-3309391414-3581799377-1000: @nsroblox.roblox.com/launcher -> C:\Users\main\AppData\Local\Roblox\Versions\version-aee78a51139946c2\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
  91. FF Plugin HKU\S-1-5-21-1603529505-3309391414-3581799377-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\main\AppData\Local\Roblox\Versions\version-aee78a51139946c2\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
  92.  
  93. Chrome:
  94. =======
  95. CHR DefaultProfile: Default
  96. CHR NewTab: Default -> Not-active:"chrome-extension://lcienfkigolmpaecpfihkjfncbipdjbb/newtab/newtab.html"
  97. CHR Profile: C:\Users\main\AppData\Local\Google\Chrome\User Data\Default [2017-08-01]
  98. CHR Extension: (Google Slides) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-13]
  99. CHR Extension: (Google Docs) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-13]
  100. CHR Extension: (Google Drive) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-13]
  101. CHR Extension: (YouTube) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-13]
  102. CHR Extension: (Adblock Plus) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-12]
  103. CHR Extension: (Adobe Acrobat) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-07-06]
  104. CHR Extension: (Google Sheets) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-13]
  105. CHR Extension: (Google Docs Offline) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-14]
  106. CHR Extension: (AdBlock) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-22]
  107. CHR Extension: (Pacman Online Game) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnagfapbbjhokinpcggobcgpnnpdjmg [2017-07-10]
  108. CHR Extension: (GoGameGo) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcienfkigolmpaecpfihkjfncbipdjbb [2017-06-27]
  109. CHR Extension: (Chrome Web Store Payments) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-13]
  110. CHR Extension: (Adblock plus uBlock) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\oofnbdifeelbaidfgpikinijekkjcicg [2017-07-25]
  111. CHR Extension: (Gmail) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-13]
  112. CHR Extension: (Chrome Media Router) - C:\Users\main\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-14]
  113. CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
  114.  
  115. ==================== Services (Whitelisted) ====================
  116.  
  117. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  118.  
  119. R2 AERTFilters; C:\Windows\system32\AERTSrv.exe [77824 2007-12-05] (Andrea Electronics Corporation)
  120. R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [264432 2017-07-22] (AVG Technologies CZ, s.r.o.)
  121. R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [312712 2017-07-22] (AVG Technologies CZ, s.r.o.)
  122. R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [5866488 2017-07-22] (AVG Technologies CZ, s.r.o.)
  123. R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [1189720 2017-07-03] (AVG Technologies CZ, s.r.o.)
  124. R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2069936 2017-06-13] (ESET)
  125. R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [84616 2014-05-15] ()
  126. S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
  127. R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1002472 2017-06-26] (McAfee, Inc.)
  128. S2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [17992 2017-06-26] (McAfee, Inc.)
  129. S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [74816 2017-06-26] (McAfee, Inc.)
  130. S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
  131. S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.14.102.0 [X]
  132.  
  133. ===================== Drivers (Whitelisted) ======================
  134.  
  135. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  136.  
  137. R1 avgbdisk; C:\Windows\system32\drivers\avgbdiskx.sys [135872 2017-07-22] (AVG Technologies CZ, s.r.o.)
  138. R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdriverx.sys [260616 2017-07-22] (AVG Technologies CZ, s.r.o.)
  139. R0 avgbidsh; C:\Windows\system32\drivers\avgbidshx.sys [151024 2017-07-22] (AVG Technologies CZ, s.r.o.)
  140. R0 avgblog; C:\Windows\system32\drivers\avgblogx.sys [270344 2017-07-22] (AVG Technologies CZ, s.r.o.)
  141. R0 avgbuniv; C:\Windows\system32\drivers\avgbunivx.sys [43992 2017-07-22] (AVG Technologies CZ, s.r.o.)
  142. S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [35264 2017-07-22] (AVG Technologies CZ, s.r.o.)
  143. R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [116344 2017-07-22] (AVG Technologies CZ, s.r.o.)
  144. R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [28408 2017-06-03] (AVG Technologies CZ, s.r.o.)
  145. R1 avgNetSec; C:\Windows\system32\drivers\avgNetSec.sys [399976 2017-07-22] (AVG Technologies CZ, s.r.o.)
  146. R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [91976 2017-07-22] (AVG Technologies CZ, s.r.o.)
  147. R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [63280 2017-07-22] (AVG Technologies CZ, s.r.o.)
  148. R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [766728 2017-07-22] (AVG Technologies CZ, s.r.o.)
  149. R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [489416 2017-07-22] (AVG Technologies CZ, s.r.o.)
  150. R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [140136 2017-07-22] (AVG Technologies CZ, s.r.o.)
  151. R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [288728 2017-07-22] (AVG Technologies CZ, s.r.o.)
  152. R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [113512 2017-06-22] (ESET)
  153. R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [90656 2017-05-04] (ESET)
  154. R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [139384 2017-05-04] (ESET)
  155. R1 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [67712 2017-05-04] (ESET)
  156. S3 SrvHsfPCI; C:\Windows\System32\DRIVERS\VSTBS23.SYS [266752 2009-07-13] (Conexant Systems, Inc.)
  157. S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [428832 2017-03-15] (BitDefender S.R.L.)
  158.  
  159. ==================== NetSvcs (Whitelisted) ===================
  160.  
  161. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  162.  
  163.  
  164. ==================== One Month Created files and folders ========
  165.  
  166. (If an entry is included in the fixlist, the file/folder will be moved.)
  167.  
  168. 2017-08-01 14:36 - 2017-08-01 14:36 - 001777664 _____ (Farbar) C:\Users\main\Downloads\FRST (4).exe
  169. 2017-08-01 14:34 - 2017-08-01 14:35 - 001777664 _____ (Farbar) C:\Users\main\Downloads\FRST (3).exe
  170. 2017-08-01 14:13 - 2017-08-01 14:27 - 000026692 _____ C:\Users\main\Downloads\Addition.txt
  171. 2017-08-01 14:11 - 2017-08-01 14:36 - 000014159 _____ C:\Users\main\Downloads\FRST.txt
  172. 2017-08-01 14:11 - 2017-08-01 14:11 - 001777664 _____ (Farbar) C:\Users\main\Downloads\FRST (2).exe
  173. 2017-08-01 14:09 - 2017-08-01 14:35 - 000000000 ____D C:\FRST
  174. 2017-08-01 14:08 - 2017-08-01 14:08 - 001777664 _____ (Farbar) C:\Users\main\Downloads\FRST (1).exe
  175. 2017-07-31 18:31 - 2017-07-31 18:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
  176. 2017-07-31 18:31 - 2017-07-31 18:31 - 000000000 ____D C:\ProgramData\ESET
  177. 2017-07-31 18:31 - 2017-07-31 18:31 - 000000000 ____D C:\Program Files\ESET
  178. 2017-07-31 18:27 - 2017-07-31 18:27 - 003135616 _____ (ESET) C:\Users\main\Downloads\eset_nod32_antivirus_live_installer_us (2).exe
  179. 2017-07-31 18:08 - 2017-07-31 18:08 - 000000612 _____ C:\Windows\Tasks\SCHEDLGU.TXT
  180. 2017-07-31 17:57 - 2017-07-31 17:57 - 000001127 _____ C:\Users\Public\Desktop\Kaspersky Cleaner.lnk
  181. 2017-07-31 17:57 - 2017-07-31 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Cleaner
  182. 2017-07-31 17:57 - 2017-07-31 17:57 - 000000000 ____D C:\Program Files\Kaspersky Lab
  183. 2017-07-31 17:55 - 2017-07-31 17:55 - 000513008 _____ (Kaspersky Lab) C:\Users\main\Downloads\CleanerSetup.exe
  184. 2017-07-31 17:54 - 2017-07-31 17:54 - 164428464 _____ (Kaspersky Lab) C:\Users\main\Downloads\kis18.0.0.405aben_es_fr_12629.exe
  185. 2017-07-31 17:17 - 2017-07-31 17:17 - 003137152 _____ (ESET) C:\Users\main\Downloads\eset_smart_security_premium_live_installer_us.exe
  186. 2017-07-31 17:12 - 2017-07-31 17:12 - 003132032 _____ (ESET) C:\Users\main\Downloads\eset_internet_security_live_installer_us.exe
  187. 2017-07-31 16:59 - 2017-07-31 16:59 - 003135616 _____ (ESET) C:\Users\main\Downloads\eset_nod32_antivirus_live_installer_us (1).exe
  188. 2017-07-31 16:15 - 2017-07-31 16:15 - 000002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
  189. 2017-07-31 16:13 - 2017-07-31 16:14 - 065033984 _____ (Malwarebytes ) C:\Users\main\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251 (6).exe
  190. 2017-07-30 18:00 - 2017-07-30 19:12 - 000327776 _____ C:\Windows\system32\FNTCACHE.DAT
  191. 2017-07-29 23:57 - 2017-07-29 23:57 - 009747512 _____ (Piriform Ltd) C:\Users\main\Downloads\ccsetup532 (1).exe
  192. 2017-07-29 21:45 - 2017-07-29 21:45 - 000000000 ____D C:\Users\main\Desktop\EB
  193. 2017-07-29 17:58 - 2017-07-29 17:58 - 001790024 _____ (Malwarebytes) C:\Users\main\Downloads\JRT.exe
  194. 2017-07-29 17:48 - 2017-07-29 17:48 - 006705178 _____ C:\Users\main\Downloads\mbam-chameleon-3.1.33.0.zip
  195. 2017-07-29 17:35 - 2017-07-29 17:35 - 065033984 _____ (Malwarebytes ) C:\Users\main\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251 (5).exe
  196. 2017-07-29 17:27 - 2017-07-29 17:28 - 065033984 _____ (Malwarebytes ) C:\Users\main\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251 (4).exe
  197. 2017-07-29 13:15 - 2017-07-29 13:15 - 003135616 _____ (ESET) C:\Users\main\Downloads\eset_nod32_antivirus_live_installer_us.exe
  198. 2017-07-29 12:26 - 2017-07-29 12:26 - 002381312 _____ (Farbar) C:\Users\main\Downloads\FRST64.exe
  199. 2017-07-29 12:09 - 2017-07-29 12:09 - 001778176 _____ (Farbar) C:\Users\main\Downloads\FRST.exe
  200. 2017-07-29 00:58 - 2017-07-29 00:58 - 065033984 _____ (Malwarebytes ) C:\Users\main\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251 (3).exe
  201. 2017-07-29 00:57 - 2017-07-29 00:57 - 008246426 _____ C:\Users\main\Downloads\mbam-mac-1.2.6.730.dmg
  202. 2017-07-29 00:57 - 2017-07-29 00:57 - 008246426 _____ C:\Users\main\Downloads\mbam-mac-1.2.6.730 (1).dmg
  203. 2017-07-29 00:51 - 2017-07-29 00:51 - 065033984 _____ (Malwarebytes ) C:\Users\main\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251 (2).exe
  204. 2017-07-29 00:48 - 2017-07-29 00:49 - 065033984 _____ (Malwarebytes ) C:\Users\main\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251 (1).exe
  205. 2017-07-29 00:18 - 2017-07-29 00:18 - 065033984 _____ (Malwarebytes ) C:\Users\main\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251.exe
  206. 2017-07-28 09:30 - 2017-07-28 09:30 - 000060714 _____ C:\Users\main\Downloads\Document.pdf
  207. 2017-07-27 11:10 - 2017-07-27 11:10 - 000069349 _____ C:\Users\main\Downloads\4397553605_1.pdf
  208. 2017-07-24 23:55 - 2017-07-24 23:55 - 001034965 _____ C:\Users\main\Downloads\DLP Orientation Flyer One PAGE REVISED 060816 (2).pdf
  209. 2017-07-24 23:55 - 2017-07-24 23:55 - 000505748 _____ C:\Users\main\Downloads\Group Disability Claim Form.pdf
  210. 2017-07-24 23:55 - 2017-07-24 23:55 - 000222010 _____ C:\Users\main\Downloads\Health Advocate (2).pdf
  211. 2017-07-24 23:55 - 2017-07-24 23:55 - 000126235 _____ C:\Users\main\Downloads\Accident Claim Form- Colonial.pdf
  212. 2017-07-22 18:45 - 2017-07-22 18:45 - 009747512 _____ (Piriform Ltd) C:\Users\main\Downloads\ccsetup532.exe
  213. 2017-07-22 17:48 - 2017-07-22 17:48 - 000002217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  214. 2017-07-22 17:48 - 2017-07-22 17:48 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  215. 2017-07-22 17:47 - 2017-07-22 17:47 - 000000000 ____D C:\Users\main\AppData\Local\Deployment
  216. 2017-07-22 17:47 - 2017-07-22 17:47 - 000000000 ____D C:\Users\main\AppData\Local\Apps\2.0
  217. 2017-07-22 17:46 - 2017-07-22 17:46 - 000000000 ____D C:\Users\main\AppData\Local\tkdata
  218. 2017-07-22 17:45 - 2017-07-22 17:45 - 000000000 ____D C:\ProgramData\TrueKey
  219. 2017-07-22 17:44 - 2017-07-24 17:46 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
  220. 2017-07-22 17:44 - 2017-07-24 17:46 - 000001151 _____ C:\Users\Public\Desktop\True Key.lnk
  221. 2017-07-22 17:43 - 2017-07-22 17:43 - 000000000 ____D C:\Program Files\Intel Security
  222. 2017-07-22 17:42 - 2017-07-22 17:42 - 000000000 ____D C:\ProgramData\Package Cache
  223. 2017-07-22 17:41 - 2017-07-24 17:47 - 000000000 ____D C:\ProgramData\McAfee
  224. 2017-07-22 17:41 - 2017-07-22 17:41 - 000000000 ____D C:\Program Files\McAfee
  225. 2017-07-22 17:41 - 2017-07-22 17:41 - 000000000 ____D C:\Program Files\Common Files\McAfee
  226. 2017-07-22 17:32 - 2017-07-29 20:52 - 000000000 ____D C:\Program Files\TrueKey
  227. 2017-07-22 17:32 - 2017-07-22 17:32 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
  228. 2017-07-22 17:32 - 2017-07-22 17:32 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
  229. 2017-07-22 17:01 - 2017-07-22 17:03 - 003979896 _____ (Google) C:\Users\main\Downloads\chrome_cleanup_tool.exe
  230. 2017-07-22 15:21 - 2017-07-22 15:21 - 000304400 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
  231. 2017-07-22 13:32 - 2017-07-22 17:02 - 007505832 _____ C:\Users\main\Downloads\pb2_re34 (2) (2) (1).swf
  232. 2017-07-22 13:32 - 2017-07-22 13:32 - 007505832 _____ C:\Users\main\Downloads\Unconfirmed 740473.crdownload
  233. 2017-07-22 13:32 - 2017-07-22 13:32 - 007505832 _____ C:\Users\main\Downloads\pb2_re34 (2) (2).swf
  234. 2017-07-22 13:28 - 2017-07-22 13:28 - 007505832 _____ C:\Users\main\Downloads\pb2_re34 (2).swf
  235. 2017-07-22 13:28 - 2017-07-22 13:28 - 007505832 _____ C:\Users\main\Desktop\pb2_re34 (2).swf
  236. 2017-07-22 13:23 - 2017-07-22 13:24 - 007505832 _____ C:\Users\main\Downloads\pb2_re34 (1).swf
  237. 2017-07-22 13:11 - 2017-07-22 13:13 - 007505832 _____ C:\Users\main\Downloads\pb2_re34.swf
  238. 2017-07-22 11:43 - 2017-07-22 11:43 - 000222010 _____ C:\Users\main\Downloads\Health Advocate (1).pdf
  239. 2017-07-22 11:39 - 2017-07-22 11:39 - 000222010 _____ C:\Users\main\Downloads\Health Advocate.pdf
  240. 2017-07-13 01:20 - 2017-07-13 04:08 - 1978226688 _____ C:\Users\main\Downloads\-Oceanofgames.com-Enforcer_police_crime_action (1).iso
  241. 2017-07-13 01:20 - 2017-07-13 01:21 - 047638097 _____ C:\Users\main\Downloads\-Solveetube.com-Enforcer_Police_Crime_Action.mp4
  242. 2017-07-12 12:46 - 2017-07-12 12:46 - 001202160 _____ (Adobe Systems Incorporated) C:\Users\main\Downloads\flashplayer26pp_ka_install.exe
  243. 2017-07-12 12:46 - 2017-07-12 12:46 - 001202160 _____ (Adobe Systems Incorporated) C:\Users\main\Downloads\flashplayer26pp_ka_install (1).exe
  244. 2017-07-12 01:15 - 2017-06-29 01:23 - 020270592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
  245. 2017-07-12 01:14 - 2017-06-29 23:32 - 000346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
  246. 2017-07-12 01:14 - 2017-06-29 22:39 - 001549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
  247. 2017-07-12 01:14 - 2017-06-29 22:38 - 001400320 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
  248. 2017-07-12 01:14 - 2017-06-29 22:38 - 001363968 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
  249. 2017-07-12 01:14 - 2017-06-29 22:38 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
  250. 2017-07-12 01:14 - 2017-06-29 22:38 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
  251. 2017-07-12 01:14 - 2017-06-29 22:38 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
  252. 2017-07-12 01:14 - 2017-06-29 22:38 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
  253. 2017-07-12 01:14 - 2017-06-29 22:38 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
  254. 2017-07-12 01:14 - 2017-06-29 22:38 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
  255. 2017-07-12 01:14 - 2017-06-29 22:27 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
  256. 2017-07-12 01:14 - 2017-06-29 22:27 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
  257. 2017-07-12 01:14 - 2017-06-29 22:26 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
  258. 2017-07-12 01:14 - 2017-06-29 22:26 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
  259. 2017-07-12 01:14 - 2017-06-29 01:35 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
  260. 2017-07-12 01:14 - 2017-06-29 01:35 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
  261. 2017-07-12 01:14 - 2017-06-29 01:23 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
  262. 2017-07-12 01:14 - 2017-06-29 01:23 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
  263. 2017-07-12 01:14 - 2017-06-29 01:23 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
  264. 2017-07-12 01:14 - 2017-06-29 01:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
  265. 2017-07-12 01:14 - 2017-06-29 01:22 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
  266. 2017-07-12 01:14 - 2017-06-29 01:19 - 002290176 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
  267. 2017-07-12 01:14 - 2017-06-29 01:17 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
  268. 2017-07-12 01:14 - 2017-06-29 01:16 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
  269. 2017-07-12 01:14 - 2017-06-29 01:14 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
  270. 2017-07-12 01:14 - 2017-06-29 01:13 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
  271. 2017-07-12 01:14 - 2017-06-29 01:13 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
  272. 2017-07-12 01:14 - 2017-06-29 01:13 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
  273. 2017-07-12 01:14 - 2017-06-29 01:13 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
  274. 2017-07-12 01:14 - 2017-06-29 01:08 - 000667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
  275. 2017-07-12 01:14 - 2017-06-29 01:05 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
  276. 2017-07-12 01:14 - 2017-06-29 01:01 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
  277. 2017-07-12 01:14 - 2017-06-29 01:00 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
  278. 2017-07-12 01:14 - 2017-06-29 01:00 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
  279. 2017-07-12 01:14 - 2017-06-29 00:58 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
  280. 2017-07-12 01:14 - 2017-06-29 00:56 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
  281. 2017-07-12 01:14 - 2017-06-29 00:56 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
  282. 2017-07-12 01:14 - 2017-06-29 00:54 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
  283. 2017-07-12 01:14 - 2017-06-29 00:52 - 004549632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
  284. 2017-07-12 01:14 - 2017-06-29 00:48 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
  285. 2017-07-12 01:14 - 2017-06-29 00:47 - 000693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
  286. 2017-07-12 01:14 - 2017-06-29 00:47 - 000689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
  287. 2017-07-12 01:14 - 2017-06-29 00:46 - 002057216 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
  288. 2017-07-12 01:14 - 2017-06-29 00:46 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
  289. 2017-07-12 01:14 - 2017-06-29 00:43 - 013663744 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
  290. 2017-07-12 01:14 - 2017-06-29 00:28 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
  291. 2017-07-12 01:14 - 2017-06-29 00:24 - 001314816 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
  292. 2017-07-12 01:14 - 2017-06-29 00:23 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
  293. 2017-07-12 01:14 - 2017-06-22 10:50 - 002402304 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
  294. 2017-07-12 01:14 - 2017-06-15 16:18 - 000514048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
  295. 2017-07-12 01:14 - 2017-06-12 18:32 - 000250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
  296. 2017-07-12 01:14 - 2017-06-12 18:32 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
  297. 2017-07-12 01:14 - 2017-06-12 18:32 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
  298. 2017-07-12 01:14 - 2017-06-12 18:29 - 001227264 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
  299. 2017-07-12 01:14 - 2017-06-12 18:29 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
  300. 2017-07-12 01:14 - 2017-06-12 18:29 - 000390144 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
  301. 2017-07-12 01:14 - 2017-06-12 18:29 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
  302. 2017-07-12 01:14 - 2017-06-12 18:29 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
  303. 2017-07-12 01:14 - 2017-06-12 18:29 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
  304. 2017-07-12 01:14 - 2017-06-12 18:28 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
  305. 2017-07-12 01:14 - 2017-06-12 18:28 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
  306. 2017-07-12 01:14 - 2017-06-12 18:28 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
  307. 2017-07-12 01:14 - 2017-06-12 18:28 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
  308. 2017-07-12 01:14 - 2017-06-12 18:28 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
  309. 2017-07-12 01:14 - 2017-06-12 18:28 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
  310. 2017-07-12 01:14 - 2017-06-12 18:28 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
  311. 2017-07-12 01:14 - 2017-06-12 18:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
  312. 2017-07-12 01:14 - 2017-06-12 18:28 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
  313. 2017-07-12 01:14 - 2017-06-12 18:28 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
  314. 2017-07-12 01:14 - 2017-06-12 18:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
  315. 2017-07-12 01:14 - 2017-06-12 18:28 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
  316. 2017-07-12 01:14 - 2017-06-12 18:28 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
  317. 2017-07-12 01:14 - 2017-06-12 18:28 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
  318. 2017-07-12 01:14 - 2017-06-12 18:09 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
  319. 2017-07-12 01:14 - 2017-06-12 18:06 - 000303616 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
  320. 2017-07-12 01:14 - 2017-06-12 18:06 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
  321. 2017-07-12 01:14 - 2017-06-12 18:06 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
  322. 2017-07-12 01:14 - 2017-06-12 18:05 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
  323. 2017-07-12 01:14 - 2017-06-12 18:05 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
  324. 2017-07-12 01:14 - 2017-06-12 18:05 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
  325. 2017-07-12 01:14 - 2017-06-12 18:05 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
  326. 2017-07-12 01:14 - 2017-06-12 18:05 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
  327. 2017-07-12 01:14 - 2017-06-12 18:05 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
  328. 2017-07-12 01:14 - 2017-06-10 11:39 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
  329. 2017-07-12 01:14 - 2017-06-09 11:17 - 001213672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
  330. 2017-07-12 01:14 - 2017-06-06 11:12 - 001499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
  331. 2017-07-12 01:14 - 2017-05-30 00:39 - 001309928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
  332. 2017-07-12 01:14 - 2017-05-30 00:39 - 000240872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
  333. 2017-07-12 01:14 - 2017-05-30 00:39 - 000187624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
  334. 2017-07-12 01:14 - 2017-05-21 00:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
  335. 2017-07-12 01:14 - 2017-05-16 11:16 - 000730856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
  336. 2017-07-12 01:14 - 2017-05-16 11:16 - 000218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
  337. 2017-07-12 01:14 - 2017-05-16 11:12 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
  338. 2017-07-12 01:13 - 2017-05-03 11:15 - 000081640 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
  339. 2017-07-12 01:13 - 2017-05-03 11:10 - 000987648 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
  340. 2017-07-12 01:13 - 2017-05-03 09:05 - 001327616 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
  341. 2017-07-12 01:13 - 2017-05-03 09:05 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
  342. 2017-07-12 01:13 - 2017-05-03 09:05 - 000446464 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
  343. 2017-07-12 01:13 - 2017-05-03 09:05 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
  344. 2017-07-12 01:13 - 2017-05-03 09:05 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
  345. 2017-07-12 01:13 - 2017-05-03 09:05 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
  346. 2017-07-12 01:13 - 2017-05-03 09:05 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
  347. 2017-07-12 01:13 - 2017-03-22 22:06 - 001602048 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
  348. 2017-07-11 21:50 - 2017-07-11 21:51 - 000000000 ____D C:\Users\main\Desktop\eljay
  349. 2017-07-09 22:58 - 2017-07-09 23:25 - 1978226688 _____ C:\Users\main\Downloads\-Oceanofgames.com-Enforcer_police_crime_action.iso
  350. 2017-07-09 22:56 - 2017-07-09 22:56 - 000000000 ____D C:\Users\main\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
  351. 2017-07-09 22:53 - 2017-07-09 22:54 - 000000702 _____ C:\Users\main\Downloads\Enforcer Police Crime Action.rar
  352. 2017-07-09 22:47 - 2017-07-09 22:47 - 000001592 _____ C:\Users\main\Desktop\Enforcer - Shortcut.lnk
  353. 2017-07-09 22:26 - 2017-07-09 22:39 - 000001121 _____ C:\Users\main\Desktop\Enforcer Police Crime Action.lnk
  354. 2017-07-09 22:26 - 2017-07-09 22:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enforcer Police Crime Action
  355. 2017-07-09 22:24 - 2017-07-09 22:51 - 000000000 ____D C:\Program Files\Enforcer Police Crime Action
  356. 2017-07-09 22:15 - 2017-07-09 22:21 - 000000000 ____D C:\Users\main\Desktop\IGG-EnforceolicCrimAction
  357. 2017-07-09 22:13 - 2017-07-09 22:13 - 000000000 ____D C:\Users\main\AppData\Roaming\WinRAR
  358. 2017-07-09 22:13 - 2017-07-09 22:13 - 000000000 ____D C:\Users\main\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
  359. 2017-07-09 22:13 - 2017-07-09 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
  360. 2017-07-09 22:13 - 2017-07-09 22:13 - 000000000 ____D C:\Program Files\WinRAR
  361. 2017-07-09 22:08 - 2017-07-09 22:08 - 001972424 _____ C:\Users\main\Downloads\wrar540.exe
  362. 2017-07-09 22:06 - 2017-07-09 22:07 - 755989667 _____ C:\Users\main\Downloads\EnfffforrrrceollllicCrimAction.rar
  363. 2017-07-09 22:00 - 2017-07-09 22:07 - 000000000 ___RD C:\Users\main\Documents\MEGA
  364. 2017-07-09 22:00 - 2017-07-09 22:02 - 000000000 ____D C:\Users\main\Documents\MEGAsync Downloads
  365. 2017-07-09 21:55 - 2017-07-09 21:55 - 000000000 ____D C:\Users\main\AppData\Local\Mega Limited
  366. 2017-07-09 21:54 - 2017-07-09 21:54 - 000001052 _____ C:\Users\main\Desktop\MEGAsync.lnk
  367. 2017-07-09 21:54 - 2017-07-09 21:54 - 000000000 ____D C:\Users\main\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
  368. 2017-07-09 21:54 - 2017-07-09 21:54 - 000000000 ____D C:\Users\main\AppData\Local\MEGAsync
  369. 2017-07-09 21:53 - 2017-07-09 21:54 - 013314392 _____ (MEGA Limited) C:\Users\main\Downloads\MEGAsyncSetup.exe
  370. 2017-07-07 21:12 - 2017-07-07 21:12 - 000032056 _____ C:\Users\main\Downloads\Downloads.html
  371. 2017-07-05 20:47 - 2017-07-05 20:47 - 000126144 _____ C:\Users\main\Downloads\2017-06-24.pdf
  372. 2017-07-05 20:26 - 2017-07-05 20:26 - 001631815 _____ C:\Users\main\Downloads\BOL for B&G.pdf
  373. 2017-07-04 12:03 - 2017-07-04 12:03 - 000574745 _____ C:\Users\main\Downloads\Bey, Ramost 7-5-2017.pdf
  374.  
  375. ==================== One Month Modified files and folders ========
  376.  
  377. (If an entry is included in the fixlist, the file/folder will be moved.)
  378.  
  379. 2017-08-01 14:30 - 2009-07-14 00:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
  380. 2017-08-01 03:31 - 2009-07-14 00:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  381. 2017-08-01 03:31 - 2009-07-14 00:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  382. 2017-07-31 18:32 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\inf
  383. 2017-07-31 16:15 - 2017-04-12 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
  384. 2017-07-29 23:58 - 2017-04-12 12:24 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
  385. 2017-07-29 23:35 - 2015-10-04 12:46 - 000000000 ____D C:\ProgramData\CanonIJPLM
  386. 2017-07-29 20:27 - 2016-05-20 17:04 - 000000000 ____D C:\Users\main\AppData\Roaming\vlc
  387. 2017-07-22 17:47 - 2015-05-23 23:56 - 000000000 ____D C:\Program Files\Google
  388. 2017-07-22 17:43 - 2015-05-23 23:57 - 000000000 ____D C:\Users\main\AppData\Local\Adobe
  389. 2017-07-22 17:41 - 2015-10-02 13:51 - 000000000 ____D C:\Program Files\Common Files\AV
  390. 2017-07-22 17:32 - 2015-05-24 00:30 - 000000000 ____D C:\Windows\system32\Macromed
  391. 2017-07-22 15:22 - 2017-06-03 13:40 - 000116344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmonflt.sys
  392. 2017-07-22 15:21 - 2017-06-03 13:40 - 000766728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
  393. 2017-07-22 15:21 - 2017-06-03 13:40 - 000489416 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
  394. 2017-07-22 15:21 - 2017-06-03 13:40 - 000399976 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetSec.sys
  395. 2017-07-22 15:21 - 2017-06-03 13:40 - 000288728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
  396. 2017-07-22 15:21 - 2017-06-03 13:40 - 000270344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgblogx.sys
  397. 2017-07-22 15:21 - 2017-06-03 13:40 - 000260616 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriverx.sys
  398. 2017-07-22 15:21 - 2017-06-03 13:40 - 000151024 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidshx.sys
  399. 2017-07-22 15:21 - 2017-06-03 13:40 - 000140136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
  400. 2017-07-22 15:21 - 2017-06-03 13:40 - 000135872 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiskx.sys
  401. 2017-07-22 15:21 - 2017-06-03 13:40 - 000091976 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
  402. 2017-07-22 15:21 - 2017-06-03 13:40 - 000063280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
  403. 2017-07-22 15:21 - 2017-06-03 13:40 - 000043992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbunivx.sys
  404. 2017-07-22 15:21 - 2017-06-03 13:40 - 000035264 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
  405. 2017-07-17 07:22 - 2017-06-03 13:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
  406. 2017-07-17 07:22 - 2017-06-03 13:37 - 000000978 _____ C:\Users\Public\Desktop\AVG.lnk
  407. 2017-07-12 04:27 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\rescache
  408. 2017-07-12 03:17 - 2015-05-23 10:42 - 000000000 ____D C:\Windows\system32\appraiser
  409. 2017-07-12 01:29 - 2015-05-23 23:59 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
  410. 2017-07-07 19:19 - 2015-10-08 14:47 - 000000000 ____D C:\Users\main\AppData\Local\Avg
  411. 2017-07-07 19:16 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\system32\NDF
  412.  
  413. ==================== Files in the root of some directories =======
  414.  
  415. 2017-04-11 13:32 - 2017-04-12 10:53 - 000000053 _____ () C:\Users\main\AppData\Roaming\LogFile.txt
  416. 2016-11-06 13:22 - 2016-11-06 13:22 - 000007606 _____ () C:\Users\main\AppData\Local\Resmon.ResmonCfg
  417.  
  418. ==================== Bamital & volsnap ======================
  419.  
  420. (There is no automatic fix for files that do not pass verification.)
  421.  
  422. C:\Windows\explorer.exe => File is digitally signed
  423. C:\Windows\system32\winlogon.exe => File is digitally signed
  424. C:\Windows\system32\wininit.exe => File is digitally signed
  425. C:\Windows\system32\svchost.exe => File is digitally signed
  426. C:\Windows\system32\services.exe => File is digitally signed
  427. C:\Windows\system32\User32.dll => File is digitally signed
  428. C:\Windows\system32\userinit.exe => File is digitally signed
  429. C:\Windows\system32\rpcss.dll => File is digitally signed
  430. C:\Windows\system32\dnsapi.dll => File is digitally signed
  431. C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
  432.  
  433. LastRegBack: 2017-08-01 02:17
  434.  
  435. ==================== End of FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!