Jump to content

Search the Community

Showing results for tags 'Freezes'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 19 results

  1. Good Morning W10 Home (Fully Patched), MS Office Pro Plus 2016, Malwarebytes (Premium) v3.8.3.2965 (Component Pkg v1.0.627, Update Pkg v1.0.12785, no exclusions), BitdefenderFree Prior to installing v3.8.3, the above config was stable for at least 16 months. During this time, Malwarebytes and BitdefenderFree coexisted fine, with no system problems and Malwarebytes went through at least one update. However, as soon as Malwarebytes updated to v3.8.3, an intermittent Outlook 2016 problem manifested. Basically, every few days, the Outlook 2016 Send/Receive process will hang partway through the Send process and doesn’t recover. Cancelling the Send/Receive doesn’t ‘reset’ the Send/Receive process and the only way. to recover Send/Receive functionality is to reboot. During reboot, Outlook 2016 needs to be force-terminated from the shutdown screen and, after reboot, it spontaneously restarts (normally, it needs to be manually started) and, at that point, Send/Receive works correctly (until the next intermittent occurrence of the problem). As I said above, the problem only occurs intermittently every few days and I can’t force it to occur. Disabling the self-protection module doesn’t resolve the problem but disabling all real-time protection does seem to solve the issue – I’m currently playing with switching off various of the real-time protection options to try and localise which shield is causing the problem. This problem only occurred with v3.8.3 and, prior to that, the Malwarebytes/Bitdefender combo worked well, with no issues. Switching off Real-Time protection seems to fix the problem but, if I have to do that, there doesn’t seem any real point in using Premium rather than simply sticking to regular scans with the free product! I like Malwarebytes 3 so a solution to the v3.8.3 problem would be much appreciated so I can carry on using it
  2. Hi, I installed the trial verison of Malwarebytes 3.6.1. Have looked on the forum, but how can you do any of the things recommended if the laptop just freezes. Can't open a thing, have rebooted (manually), so many times today I have lost count, and now patience is turning to despair. PLEASE HELP
  3. Since 17/12/2018 I started getting intermittent random PC freezes/lockups on my Windows 7 PC. I'm a long term user of MB, also on two Windows 10 PCs which are not having any problems. My MB version on the Windows 7 PC (now uninstalled) were: Malwarebytes Version: 3.5.1.2711 Component Package Version: 1.0.508 Update Package Version: 1.0.8722 My Windows 7 version is: Windows 7 Ultimate Version 6.1 (Build7601: Service Pack 1) My PC would freeze (screen frozen no mouse, or keyboard action possible) at random intervals, anywhere from 2 minutes after login to 120 minutes after login. Failures NEVER occurred in Windows Safe Mode with networking enabled, nor in Windows normal mode with the Ethernet network disconnected. Failures DID occur in Windows Normal Mode at a login prompt, without any users logged in or any applications running. Unaware that MB was the cause of my freezes, following one of the failures, I detected activity in the log file MBAMSERVICE.LOG as pasted below. Accessing reports in these Malwarebytes forums I read entries about MB causing freezes earlier in 2018 such as "3.4.4 is freezing my computer" By Anorax, March 12, 2018 in Malwarebytes 3 Support Forum, so I decided to completely uninstall MB on my Windows 7 PC. From the time I first logged in to Windows 7 normal mode after Malwarebytes was removed (now some 30 hours) I have not had any further PC Freezes, or lockups. What I am trying to determine is whether others have had similar 'freezing lockups' in Windows 7? What version of MB I should be using to prevent them? And is there any configuration action I can take to prevent such freezes/lockups happening again? Thank you. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ My PC freeze occurred at 01/11/19 17:19:34 following which I rebooted my PC into Safe Mode at 17:37:22. The entries in this file near the time of failure, there were many Warning entries prior to the PC freeze/lockup: 01/11/19 " 16:19:31.722" 663499 0228 09b8 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 16:19:35.691" 667465 0e9c 0f54 INFO ActionsShim ActionsShim::FinishUpdate "actionsshim.cpp" 129 "Finishing u 01/11/19 " 16:19:35.838" 667606 0e9c 0f54 INFO MBAMShimImpl MBAMShimImpl::FinishUpdate "mbamshimimpl.cpp" 131 "MBAMCor 01/11/19 " 16:19:35.979" 667746 0e9c 0f54 INFO MBAMShimImpl MBAMShimImpl::InitializeInternal "mbamshimimpl.cpp" 62 01/11/19 " 16:19:33.194" 664971 01dc 020c WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 16:19:38.137" 669914 0228 09b8 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 16:19:39.212" 670989 01dc 0258 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 16:19:43.238" 675016 0e9c 0f54 INFO MBAMCoreImpl MBAMCoreImpl::Initialize "mbamcoreimpl.cpp" 123 "MBAMCor 01/11/19 " 16:19:43.238" 675016 0e9c 0f54 INFO BrowserSDKShim BrowserSDKShim::FinishUpdate "browsersdkshim.cpp" 154 01/11/19 " 16:19:43.390" 675156 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Pro 01/11/19 " 16:19:43.390" 675156 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Upd 01/11/19 " 16:19:43.400" 675172 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Upd 01/11/19 " 16:19:43.409" 675187 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Val 01/11/19 " 16:19:44.575" 676342 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Val 01/11/19 " 16:19:44.575" 676342 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Che 01/11/19 " 16:19:44.580" 676357 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Pro 01/11/19 " 16:19:44.580" 676357 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::DoU 01/11/19 " 16:19:44.580" 676357 0e9c 1424 INFO CleanControllerImpl CleanDBParser::Parse "cleandbparser.cpp" 18 "Parsing 01/11/19 " 16:19:44.582" 676357 0e9c 1424 INFO GalaxyRuleParser mb::common::galaxyrules::SimpleRuleFileParserV2::Parse 01/11/19 " 16:19:44.630" 676394 0e9c 1678 INFO MBAMWebProtection CSIRPCompleteCanceledIrp "cancelsafeirps.c" 99 "Min 01/11/19 " 16:19:44.630" 676394 0e9c 167c INFO MBAMWebProtection CSIRPCompleteCanceledIrp "cancelsafeirps.c" 99 "Min 01/11/19 " 16:19:44.634" 676398 0e9c 1690 INFO MBAMWebProtection DriverDispatchCleanup "driver.c" 203 "Client has disc 01/11/19 " 16:19:44.638" 676402 0004 0040 INFO MBAMWebProtection AddressHostFinalize "addresshost.c" 404 "At most 0 'loca 01/11/19 " 16:19:44.638" 676402 0004 0040 INFO MBAMWebProtection DriverUnload "driver.c" 162 "MBAMWebProtection servi 01/11/19 " 16:19:44.883" 676654 0e9c 1500 INFO MWACShimImpl MwacShimImpl::Initialize "mwacshimimpl.cpp" 357 "Initial 01/11/19 " 16:19:44.909" 676685 0e9c 1500 INFO MWACShimImpl MwacShimImpl::InitializeInternal "mwacshimimpl.cpp" 113 01/11/19 " 16:19:44.909" 676685 0e9c 1500 INFO MwacLibImpl MWAC_Initialize "mwaclib.cpp" 27 "Initializing Mwac SDK (3.1. 01/11/19 " 16:19:46.035" 677808 0e9c 1500 INFO MwacControllerImpl mb::mwaccontrollerimpl::MwacControllerImpl::InitializeMw 01/11/19 " 16:19:45.211" 676987 0004 002c INFO MBAMWebProtection DriverEntry "driver.c" 121 "MBAMWebProtection service s 01/11/19 " 16:19:45.214" 676990 0e9c 062c INFO MBAMWebProtection DriverDispatchCreate "driver.c" 191 "Client has conn 01/11/19 " 16:19:48.151" 679928 0228 0310 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj ~ 01/11/19 " 17:08:33.126" 3604903 0c28 0690 INFO MBAMChameleon EnumerateAndDeleteIfeoKeys "watchdog-common.c" 1029 "Enu 01/11/19 " 17:08:33.126" 3604903 0c28 0690 INFO MBAMChameleon EnumerateAndDeleteIfeoKeys "watchdog-common.c" 1099 "Enu ~ 01/11/19 " 17:18:51.980" 4223757 01dc 0258 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:01.153" 4232930 0228 09b8 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:04.023" 4235800 01dc 0258 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:11.167" 4242944 0228 0310 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:13.058" 4244835 01dc 0258 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:21.168" 4252945 0228 0310 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:22.087" 4253864 01dc 0224 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:26.584" 4258359 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Val 01/11/19 " 17:19:27.755" 4259529 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Val 01/11/19 " 17:19:27.755" 4259529 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Che 01/11/19 " 17:19:27.760" 4259529 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::DoU 01/11/19 " 17:19:27.760" 4259529 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::DoU 01/11/19 " 17:19:27.761" 4259529 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Get 01/11/19 " 17:19:27.761" 4259529 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Get 01/11/19 " 17:19:27.761" 4259529 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::Get 01/11/19 " 17:19:28.930" 4260699 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::DoU 01/11/19 " 17:19:28.930" 4260699 0e9c 0f54 INFO UpdateControllerImpl mb::updatecontrollerimpl::CUpdateControllerImpl::DoU 01/11/19 " 17:19:31.182" 4262959 0228 0320 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj 01/11/19 " 17:19:34.131" 4265908 01dc 0224 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "Obj Following this entry my PC froze/locked up. Restarted PC. 1101/11/19 " 17:37:22.399" 24273 042c 0448 INFO LogController CLogController::Start "logcontroller.cpp" 93 "Started log 01/11/19 " 17:37:22.399" 24273 042c 0448 INFO LogController CLogController::Start "logcontroller.cpp" 95 "Local time
  4. Hello, We just scanned my daughters laptop and it has so many issues and then stopped at a certain number of issues (2100!)….any advise? I tried to resolved issues midway through, but it didn't seem to work=-( It is hp laptop on Windows we think ios10) Thank you, Tracy
  5. Mbam is unable to get past C:\WINDOWS\INSTALLER\{LONG NUMBER AND CHARACTERS}\ARPPRODUCTICON.EXE, even after 13 hours. I have tried numerous times and mbam does not get past this file. Suggestions?
  6. Paid & Upgraded to this. Older free version always worked fine..When I run this, it locks computer and I have to cut off power. Only remedy was to uninstall. Whats going on here?
  7. Hi, I'd like to request help in being able to successfully complete a threat scan. I haven't been able to finish one in the past few versions. I'll come back to check on it and it seems to be close to the end but it freezes everything and I have to do a hard reboot. In the meantime I've used SUPERAntiSpyware with no issues. I attached the FRST and Addition txt files as attachments. Thanks, Sam Addition.txt FRST.txt
  8. Hi. The computer freezes up every few minutes so typing anything has become difficult. Software that I use for work remotely is behaving strangely (stalling, not playing) but it works fine for others who access the software (even using my account), so it's not a software issue. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2015 01Ran by owner (administrator) on HHGREGG-PC on 23-05-2015 10:06:24Running from C:\Users\owner\DownloadsLoaded Profiles: owner (Available Profiles: owner & Guest)Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 11 (Default browser: FF)Boot Mode: NormalTutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\LVPrS64H.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe(O2Micro International) C:\Windows\System32\drivers\o2flash.exe(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.8.13\ccSvcHst.exe(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFIWmxSvcs64.exe(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\rselect\RSelSvc.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.8.13\ccSvcHst.exe(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe(Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe(TOSHIBA Corporation.) C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe(Akamai Technologies, Inc.) C:\Users\owner\AppData\Local\Akamai\netsession_win.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe(Akamai Technologies, Inc.) C:\Users\owner\AppData\Local\Akamai\netsession_win.exe(Dropbox, Inc.) C:\Users\owner\AppData\Roaming\Dropbox\bin\Dropbox.exe(TOSHIBA CORPORATION.) C:\Program Files (x86)\Toshiba\TOSHIBA Web Camera Application\TWebCamera.exe(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe(Sage Software, Inc.) C:\Program Files (x86)\ACT\Act for Windows\Act.Outlook.Service.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE(SAMSUNG ELECTRONICS) C:\Program Files (x86)\Samsung\EmoDio\SMSTray.exe(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe() C:\Program Files (x86)\Toshiba Online Backup\ToshibaOnlineBackup.exe() C:\Program Files (x86)\Bamboo Dock\BambooCore.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Farbar) C:\Users\owner\Downloads\FRST64 (1).exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [] => [X]HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartupHKLM-x32\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [503864 2009-07-20] (Conexant Systems, Inc.)HKLM-x32\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1810728 2009-07-30] (Synaptics Incorporated)HKLM\...\Run: [ThpSrv] => C:\windows\system32\thpsrv /logonHKLM-x32\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [497504 2009-08-21] (TOSHIBA Corporation)HKLM-x32\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [52600 2009-03-09] (TOSHIBA Corporation)HKLM-x32\...\Run: [smoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [508216 2009-07-28] (TOSHIBA Corporation)HKLM-x32\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [909624 2009-08-05] (TOSHIBA Corporation)HKLM-x32\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [711000 2009-08-04] (TOSHIBA Corporation)HKLM-x32\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1482080 2009-08-11] (TOSHIBA Corporation)HKLM-x32\...\Run: [HDMICtrlMan] => C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe [1032536 2009-08-03] (TOSHIBA Corporation.)HKLM-x32\...\Run: [smartFaceVWatcher] => C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-07-29] (TOSHIBA Corporation)HKLM-x32\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2009-08-03] (TOSHIBA Corporation)HKLM-x32\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.)HKLM-x32\...\Run: [TUSBSleepChargeSrv] => C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe [252288 2009-07-02] (TOSHIBA)HKLM-x32\...\Run: [TWebCamera] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2446648 2009-08-11] (TOSHIBA CORPORATION.)HKLM-x32\...\Run: [Adobe_ID0ENQBO] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)HKLM-x32\...\Run: [Act.Outlook.Service] => C:\Program Files (x86)\ACT\Act for Windows\Act.Outlook.Service.exe [28672 2008-08-01] (Sage Software, Inc.)HKLM-x32\...\Run: [Act! Preloader] => C:\Program Files (x86)\ACT\Act for Windows\ActSage.exe [393216 2008-08-01] (Sage Software, Inc.)HKLM-x32\...\Run: [sMSTray] => C:\Program Files (x86)\Samsung\EmoDio\SMSTray.exe [479232 2009-04-16] (SAMSUNG ELECTRONICS)HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [673616 2009-04-07] (SEIKO EPSON CORPORATION)HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [843776 2009-06-05] (SEIKO EPSON CORPORATION)HKLM-x32\...\Run: [switchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)HKLM-x32\...\Run: [intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [1497352 2011-02-22] (Intuit Inc. All rights reserved.)HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)HKLM-x32\...\Run: [Toshiba Online Backup] => C:\Program Files (x86)\Toshiba Online Backup\ToshibaOnlineBackup.exe [966296 2011-09-19] ()HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)HKLM-x32\...\Run: [bambooCore] => C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [646744 2012-10-16] ()HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [MyTOSHIBA] => C:\Program Files (x86)\Toshiba\My Toshiba\MyToshiba.exe [264048 2009-08-06] (TOSHIBA)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [AdobeBridge] => [X]HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements Organizer 8.0\CAHeadless\ElementsAutoAnalyzer.exe [615808 2009-09-18] (Adobe Systems Incorporated)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [EPSONDD461F] => C:\windows\system32\spool\DRIVERS\x64\3\E_IATIFJA.EXE [223232 2009-01-26] (SEIKO EPSON CORPORATION)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [6129496 2011-01-12] (Logitech Inc.)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [Akamai NetSession Interface] => C:\Users\owner\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-30] (Akamai Technologies, Inc.)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [MobileDocuments] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exeHKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [Google Update] => C:\Users\owner\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-18] (Google Inc.)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-09-02] (Google Inc.)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [GoogleChromeAutoLaunch_BFB1AAC9AD5759BCC5B883652DF33E69] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-05-13] (Google Inc.)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3095840 2015-04-30] (Nota Inc.)HKU\S-1-5-21-3310603758-325049908-3132485941-1001\...\Run: [Zoom] => [X]Startup: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-05-12]ShortcutTarget: Dropbox.lnk -> C:\Users\owner\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)Startup: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2013-03-06]ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)Startup: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2015-02-20]ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\owner\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\owner\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\owner\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-3310603758-325049908-3132485941-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.toshiba.com/SearchScopes: HKLM -> {24AB7543-9939-4029-86A4-50C09852A9D7} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNASearchScopes: HKLM-x32 -> {DE06CFEC-A000-4882-9E02-281D41A89459} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNASearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3310603758-325049908-3132485941-1001 -> {DE06CFEC-A000-4882-9E02-281D41A89459} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNA_enUS354US354SearchScopes: HKU\S-1-5-21-3310603758-325049908-3132485941-1001 -> {FFAD5398-51D1-4EAA-B3A1-03253AD44343} URL = http://www.bing.com/search?q={searchTerms}&form=BIE9DF&pc=BIE9&src=IE-SearchBoxBHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-01] (Google Inc.)BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2011-10-18] (Sun Microsystems, Inc.)BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-12-17] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-01] (Google Inc.)BHO-x32: Act.UI.InternetExplorer.Plugins.AttachFile.CAttachFile -> {D5233FCD-D258-4903-89B8-FB1568E7413D} -> C:\windows\SysWOW64\mscoree.dll [2010-11-04] (Microsoft Corporation)BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-10-18] (Sun Microsystems, Inc.)Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-01] (Google Inc.)Toolbar: HKLM-x32 - No Name - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - No FileToolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-01] (Google Inc.)Toolbar: HKU\S-1-5-21-3310603758-325049908-3132485941-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No FileDPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/production/ieawsdc32.cabDPF: HKLM-x32 {3D3B42C2-11BF-4732-A304-A01384B70D68} http://picasaweb.google.com/s/v/63.17/uploader2.cabDPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cabHandler-x32: intu-help-qb3 - {c5e479ea-0a65-4b05-8c6c-2fc8cc682eb4} - C:\Program Files (x86)\Intuit\QuickBooks 2010\HelpAsyncPluggableProtocol.dll [2012-07-25] (Intuit, Inc.)Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\windows\SysWOW64\mscoree.dll [2010-11-04] (Microsoft Corporation)Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox:========FF ProfilePath: C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\bz230fxo.default-1414070530532FF DefaultSearchEngine: GoogleFF DefaultSearchEngine.US: GoogleFF Homepage: hxxp://google.comFF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-05-15] ()FF Plugin: @microsoft.com/GENUINE -> disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-05-23] (Wacom)FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-11-09] (Adobe Systems)FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-15] ()FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-03-30] (Oracle Corporation)FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2011-10-03] (Sun Microsystems, Inc.)FF Plugin-x32: @microsoft.com/GENUINE -> disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)FF Plugin-x32: @sony.com/eBookLibrary -> C:\Program Files (x86)\Sony\Reader\Data\bin\npebldetectmoz.dll [2010-07-13] (Sony Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2012-05-23] (Wacom)FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll [2013-12-25] ()FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-11-09] (Adobe Systems)FF Plugin HKU\S-1-5-21-3310603758-325049908-3132485941-1001: @citrixonline.com/appdetectorplugin -> C:\Users\owner\AppData\Local\Citrix\Plugins\94\npappdetector.dll [2013-03-13] (Citrix Online)FF Plugin HKU\S-1-5-21-3310603758-325049908-3132485941-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)FF Plugin HKU\S-1-5-21-3310603758-325049908-3132485941-1001: @talk.google.com/O1DPlugin -> C:\Users\owner\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)FF Plugin HKU\S-1-5-21-3310603758-325049908-3132485941-1001: @tools.google.com/Google Update;version=3 -> C:\Users\owner\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)FF Plugin HKU\S-1-5-21-3310603758-325049908-3132485941-1001: @tools.google.com/Google Update;version=9 -> C:\Users\owner\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)FF Plugin HKU\S-1-5-21-3310603758-325049908-3132485941-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\owner\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2015-05-08] (Zoom Video Communications, Inc.)FF Plugin HKU\S-1-5-21-3310603758-325049908-3132485941-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-05-23] (Wacom)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPcol400.dll [2011-06-01] (Catalina Marketing Corporation)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPcol500.dll [2011-06-01] (Catalina Marketing Corporation)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-10-27] (Apple Inc.)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-10-27] (Apple Inc.)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-10-27] (Apple Inc.)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-10-27] (Apple Inc.)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-10-27] (Apple Inc.)FF Plugin ProgramFiles/Appdata: C:\Users\owner\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)FF Plugin ProgramFiles/Appdata: C:\Users\owner\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)FF Extension: Firebug - C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\bz230fxo.default-1414070530532\Extensions\firebug@software.joehewitt.com.xpi [2015-04-10]FF Extension: Pin It Button - C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\bz230fxo.default-1414070530532\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2014-11-19]FF Extension: Evernote Web Clipper - C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\bz230fxo.default-1414070530532\Extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}.xpi [2015-04-08]FF Extension: Skype extension - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-05-16]FF HKLM-x32\...\Firefox\Extensions: [{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgnFF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.0.0.48\coFFFwFF HKLM-x32\...\Firefox\Extensions: [{203FB6B2-2E1E-4474-863B-4C483ECCE78E}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2.0.0.16\coFFNSTFF Extension: Norton Safe Web Lite Toolbar - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2.0.0.16\coFFNST [2015-02-05] Chrome: =======CHR Profile: C:\Users\owner\AppData\Local\Google\Chrome\User Data\DefaultCHR Extension: (Bookmark Manager) - C:\Users\owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]CHR Extension: (Pin It Button) - C:\Users\owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2014-05-29]CHR Extension: (Hangouts) - C:\Users\owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2015-01-27]CHR Extension: (Chrome Hotword Shared Module) - C:\Users\owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]CHR Extension: (Google Wallet) - C:\Users\owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S2 ACT! Scheduler; C:\Program Files (x86)\ACT\Act for Windows\Act.Scheduler.exe [81920 2008-08-01] (Sage Software, Inc.) []S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2010-11-01] (Adobe Systems) []S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1254400 2015-04-27] (Microsoft Corporation)S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-09-07] (WildTangent)S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) []R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)S2 MSSQL$ACT7; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe [132504 2013-09-12] (Symantec Corporation)R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.8.13\ccSvcHst.exe [126392 2009-08-24] (Symantec Corporation)R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2012-07-25] (Intuit) []S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [61440 2009-07-23] (Intuit Inc.) []S3 Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2010-04-02] (Sony Corporation) []S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) []S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [619904 2012-11-14] (Wacom Technology, Corp.)S2 NSL; "C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe" /s "NSL" /m "C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\diMaster.dll" /prefetch:1 ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\0200000.010\ccSetx64.sys [167048 2011-08-08] (Symantec Corporation)S3 libusb0; C:\Windows\SysWOW64\drivers\libusb0.sys [21504 2010-06-24] (http://libusb-win32.sourceforge.net) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-23] (Malwarebytes Corporation)R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)R3 O2SDGRDR; C:\Windows\System32\DRIVERS\o2sdgx64.sys [49696 2009-07-16] (O2Micro )S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-23 10:05 - 2015-05-23 10:05 - 00001178 _____ () C:\Users\owner\Desktop\FRST64 (1).exe - Shortcut.lnk2015-05-23 10:02 - 2015-05-23 10:02 - 02108416 _____ (Farbar) C:\Users\owner\Downloads\FRST64 (1).exe2015-05-23 08:26 - 2015-05-23 08:26 - 00000000 ____D () C:\Users\owner\AppData\Local\{9FDDAEE0-73B9-428E-A270-70C81EC14626}2015-05-22 18:31 - 2015-05-22 18:31 - 00000000 ____D () C:\Users\owner\Documents\New folder (12)2015-05-22 18:31 - 2015-05-22 18:31 - 00000000 ____D () C:\Users\owner\Documents\New folder (10)2015-05-22 13:11 - 2015-05-22 13:12 - 00000000 ____D () C:\Users\owner\AppData\Local\{80453EC0-B099-4BE6-881C-CE582FFF6BD0}2015-05-22 10:45 - 2015-05-22 10:46 - 00813408 _____ () C:\windows\Minidump\052215-23353-01.dmp2015-05-21 23:46 - 2015-05-21 23:46 - 00000000 ____D () C:\Users\owner\AppData\Local\{46B8A14D-671A-4A78-9F96-F3F80EE22699}2015-05-21 10:59 - 2015-05-21 10:59 - 00000000 ____D () C:\Users\owner\AppData\Local\{169FEC7C-5EF5-4C41-AAF7-9DC6D3DFC7FE}2015-05-20 22:58 - 2015-05-20 22:58 - 00000000 ____D () C:\Users\owner\AppData\Local\{37349C58-5208-4655-9FB3-6B0B10CF9A72}2015-05-20 10:56 - 2015-05-20 10:56 - 00000000 ____D () C:\Users\owner\AppData\Local\{CB81E52B-88AD-4088-9A2F-AEDC01845A0A}2015-05-19 10:54 - 2015-05-19 22:55 - 00000000 ____D () C:\Users\owner\AppData\Local\{744003A2-1B19-4678-A842-7D43DD1F327A}2015-05-18 16:43 - 2015-05-18 16:43 - 00002159 _____ () C:\Users\owner\Downloads\CP0007276395P-1.mp4.en.srt2015-05-18 10:53 - 2015-05-18 22:54 - 00000000 ____D () C:\Users\owner\AppData\Local\{9AC0D1A3-F505-45B0-B94C-965C0631CFC4}2015-05-17 23:40 - 2015-05-17 23:40 - 00118735 _____ () C:\Users\owner\Downloads\CP0045898113P-1.mp4.en.srt2015-05-17 10:52 - 2015-05-17 22:53 - 00000000 ____D () C:\Users\owner\AppData\Local\{BA992444-2C60-477A-A06A-02BB763EB5C7}2015-05-16 22:14 - 2015-05-22 23:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2015-05-16 10:39 - 2015-05-22 18:33 - 00000000 ____D () C:\Users\owner\Documents\System Restore2015-05-15 19:37 - 2015-05-16 19:59 - 00000000 ____D () C:\Users\owner\AppData\Local\{462E082F-1254-4D2D-A886-010EA8DB0733}2015-05-15 07:36 - 2015-05-15 07:36 - 00000000 ____D () C:\Users\owner\AppData\Local\{48E726A5-1DA1-4BFB-8E8B-1D0E52D34381}2015-05-15 06:54 - 2015-05-22 23:53 - 00000000 ____D () C:\ProgramData\Gyazo2015-05-15 06:54 - 2015-05-15 06:54 - 00000993 _____ () C:\Users\Public\Desktop\Gyazo GIF.lnk2015-05-14 19:35 - 2015-05-14 19:35 - 00000000 ____D () C:\Users\owner\AppData\Local\{B04C8801-B87E-4C60-8BDC-BDECE0D34D52}2015-05-14 07:42 - 2015-05-01 09:17 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll2015-05-14 07:42 - 2015-05-01 09:16 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll2015-05-13 16:03 - 2015-05-13 16:03 - 00015981 _____ () C:\Users\owner\Downloads\CP0097179133P-1.mp4.en.srt2015-05-13 11:20 - 2015-05-14 07:35 - 00000000 ____D () C:\Users\owner\AppData\Local\{85698EF4-DB7E-473E-AAAD-318035C26C39}2015-05-13 09:10 - 2015-05-04 21:29 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll2015-05-13 09:10 - 2015-05-04 21:12 - 00248832 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll2015-05-13 09:10 - 2015-04-27 15:28 - 05569984 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe2015-05-13 09:10 - 2015-04-27 15:28 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys2015-05-13 09:10 - 2015-04-27 15:28 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys2015-05-13 09:10 - 2015-04-27 15:26 - 01728960 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll2015-05-13 09:10 - 2015-04-27 15:23 - 01461760 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll2015-05-13 09:10 - 2015-04-27 15:23 - 01254400 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll2015-05-13 09:10 - 2015-04-27 15:23 - 01162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00113664 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll2015-05-13 09:10 - 2015-04-27 15:23 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll2015-05-13 09:10 - 2015-04-27 15:22 - 00404992 _____ (Microsoft Corporation) C:\windows\system32\tracerpt.exe2015-05-13 09:10 - 2015-04-27 15:22 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe2015-05-13 09:10 - 2015-04-27 15:22 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe2015-05-13 09:10 - 2015-04-27 15:22 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe2015-05-13 09:10 - 2015-04-27 15:22 - 00104448 _____ (Microsoft Corporation) C:\windows\system32\logman.exe2015-05-13 09:10 - 2015-04-27 15:22 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\typeperf.exe2015-05-13 09:10 - 2015-04-27 15:22 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\relog.exe2015-05-13 09:10 - 2015-04-27 15:22 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe2015-05-13 09:10 - 2015-04-27 15:21 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe2015-05-13 09:10 - 2015-04-27 15:11 - 03989440 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe2015-05-13 09:10 - 2015-04-27 15:11 - 03934144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe2015-05-13 09:10 - 2015-04-27 15:08 - 01310744 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll2015-05-13 09:10 - 2015-04-27 15:05 - 00635392 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll2015-05-13 09:10 - 2015-04-27 15:05 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll2015-05-13 09:10 - 2015-04-27 15:05 - 00221184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll2015-05-13 09:10 - 2015-04-27 15:05 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll2015-05-13 09:10 - 2015-04-27 15:05 - 00092160 _____ (Microsoft Corporation) C:\windows\SysWOW64\sechost.dll2015-05-13 09:10 - 2015-04-27 15:05 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll2015-05-13 09:10 - 2015-04-27 15:04 - 00641536 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll2015-05-13 09:10 - 2015-04-27 15:04 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll2015-05-13 09:10 - 2015-04-27 15:04 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\tracerpt.exe2015-05-13 09:10 - 2015-04-27 15:04 - 00082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\logman.exe2015-05-13 09:10 - 2015-04-27 15:04 - 00040448 _____ (Microsoft Corporation) C:\windows\SysWOW64\typeperf.exe2015-05-13 09:10 - 2015-04-27 15:04 - 00037888 _____ (Microsoft Corporation) C:\windows\SysWOW64\relog.exe2015-05-13 09:10 - 2015-04-27 15:04 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe2015-05-13 09:10 - 2015-04-27 15:03 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll2015-05-13 09:10 - 2015-04-27 15:03 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll2015-05-13 09:10 - 2015-04-27 15:03 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe2015-05-13 09:10 - 2015-04-27 14:06 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll2015-05-13 09:10 - 2015-04-21 22:28 - 00389840 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll2015-05-13 09:10 - 2015-04-21 21:48 - 00342736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll2015-05-13 09:10 - 2015-04-21 13:14 - 24971776 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll2015-05-13 09:10 - 2015-04-21 13:08 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb2015-05-13 09:10 - 2015-04-21 13:07 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll2015-05-13 09:10 - 2015-04-21 12:51 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll2015-05-13 09:10 - 2015-04-21 12:50 - 00584192 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll2015-05-13 09:10 - 2015-04-21 12:50 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec2015-05-13 09:10 - 2015-04-21 12:50 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll2015-05-13 09:10 - 2015-04-21 12:49 - 02885120 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll2015-05-13 09:10 - 2015-04-21 12:48 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll2015-05-13 09:10 - 2015-04-21 12:41 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll2015-05-13 09:10 - 2015-04-21 12:40 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll2015-05-13 09:10 - 2015-04-21 12:37 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll2015-05-13 09:10 - 2015-04-21 12:35 - 00816640 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll2015-05-13 09:10 - 2015-04-21 12:35 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe2015-05-13 09:10 - 2015-04-21 12:35 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe2015-05-13 09:10 - 2015-04-21 12:34 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll2015-05-13 09:10 - 2015-04-21 12:31 - 06025728 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll2015-05-13 09:10 - 2015-04-21 12:26 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe2015-05-13 09:10 - 2015-04-21 12:25 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb2015-05-13 09:10 - 2015-04-21 12:24 - 19691008 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll2015-05-13 09:10 - 2015-04-21 12:22 - 00490496 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll2015-05-13 09:10 - 2015-04-21 12:14 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll2015-05-13 09:10 - 2015-04-21 12:11 - 00504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll2015-05-13 09:10 - 2015-04-21 12:11 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll2015-05-13 09:10 - 2015-04-21 12:10 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll2015-05-13 09:10 - 2015-04-21 12:09 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec2015-05-13 09:10 - 2015-04-21 12:09 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll2015-05-13 09:10 - 2015-04-21 12:08 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll2015-05-13 09:10 - 2015-04-21 12:08 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll2015-05-13 09:10 - 2015-04-21 12:05 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll2015-05-13 09:10 - 2015-04-21 12:04 - 02278400 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll2015-05-13 09:10 - 2015-04-21 12:03 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll2015-05-13 09:10 - 2015-04-21 12:02 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll2015-05-13 09:10 - 2015-04-21 12:00 - 00478208 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll2015-05-13 09:10 - 2015-04-21 11:58 - 00664576 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll2015-05-13 09:10 - 2015-04-21 11:58 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe2015-05-13 09:10 - 2015-04-21 11:57 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll2015-05-13 09:10 - 2015-04-21 11:49 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll2015-05-13 09:10 - 2015-04-21 11:49 - 00720384 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe2015-05-13 09:10 - 2015-04-21 11:48 - 00418304 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll2015-05-13 09:10 - 2015-04-21 11:47 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll2015-05-13 09:10 - 2015-04-21 11:46 - 02125824 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl2015-05-13 09:10 - 2015-04-21 11:43 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll2015-05-13 09:10 - 2015-04-21 11:40 - 14401536 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll2015-05-13 09:10 - 2015-04-21 11:39 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll2015-05-13 09:10 - 2015-04-21 11:38 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll2015-05-13 09:10 - 2015-04-21 11:36 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll2015-05-13 09:10 - 2015-04-21 11:31 - 04305920 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll2015-05-13 09:10 - 2015-04-21 11:27 - 02352128 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll2015-05-13 09:10 - 2015-04-21 11:26 - 00688640 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll2015-05-13 09:10 - 2015-04-21 11:25 - 02052608 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl2015-05-13 09:10 - 2015-04-21 11:24 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll2015-05-13 09:10 - 2015-04-21 11:17 - 12828672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll2015-05-13 09:10 - 2015-04-21 11:15 - 01547264 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll2015-05-13 09:10 - 2015-04-21 11:03 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll2015-05-13 09:10 - 2015-04-21 11:02 - 01882112 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll2015-05-13 09:10 - 2015-04-21 10:58 - 01310208 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll2015-05-13 09:10 - 2015-04-21 10:56 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll2015-05-13 09:10 - 2015-04-17 23:10 - 00460800 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll2015-05-13 09:10 - 2015-04-17 22:56 - 00342016 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll2015-05-13 09:10 - 2015-04-12 23:28 - 00328704 _____ (Microsoft Corporation) C:\windows\system32\services.exe2015-05-13 09:10 - 2015-03-04 00:41 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\apphelp.dll2015-05-13 09:10 - 2015-03-04 00:41 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\aelupsvc.dll2015-05-13 09:10 - 2015-03-04 00:41 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\sdbinst.exe2015-05-13 09:10 - 2015-03-04 00:41 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\shimeng.dll2015-05-13 09:10 - 2015-03-04 00:11 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\shimeng.dll2015-05-13 09:10 - 2015-03-04 00:10 - 00295936 _____ (Microsoft Corporation) C:\windows\SysWOW64\apphelp.dll2015-05-13 09:10 - 2015-03-04 00:10 - 00020992 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdbinst.exe2015-05-13 09:09 - 2015-04-27 15:23 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll2015-05-13 09:09 - 2015-04-27 15:23 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll2015-05-13 09:09 - 2015-04-27 15:23 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll2015-05-13 09:09 - 2015-04-27 15:23 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll2015-05-13 09:09 - 2015-04-27 15:23 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll2015-05-13 09:09 - 2015-04-27 15:23 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll2015-05-13 09:09 - 2015-04-27 15:23 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll2015-05-13 09:09 - 2015-04-27 15:22 - 00019456 _____ (Microsoft Corporation) C:\windows\system32\diskperf.exe2015-05-13 09:09 - 2015-04-27 15:18 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll2015-05-13 09:09 - 2015-04-27 15:18 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:16 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 15:05 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll2015-05-13 09:09 - 2015-04-27 15:05 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll2015-05-13 09:09 - 2015-04-27 15:05 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll2015-05-13 09:09 - 2015-04-27 15:04 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll2015-05-13 09:09 - 2015-04-27 15:03 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll2015-05-13 09:09 - 2015-04-27 15:03 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\diskperf.exe2015-05-13 09:09 - 2015-04-27 15:03 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll2015-05-13 09:09 - 2015-04-27 15:01 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll2015-05-13 09:09 - 2015-04-27 15:01 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00686080 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 14:59 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 13:57 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe2015-05-13 09:09 - 2015-04-27 13:57 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe2015-05-13 09:09 - 2015-04-27 13:55 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 13:55 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 13:55 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll2015-05-13 09:09 - 2015-04-27 13:55 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll2015-05-13 09:09 - 2015-04-19 23:17 - 01647104 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll2015-05-13 09:09 - 2015-04-19 23:17 - 01179136 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll2015-05-13 09:09 - 2015-04-19 22:56 - 01250816 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll2015-05-13 09:09 - 2015-04-19 22:11 - 03204608 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys2015-05-13 09:08 - 2015-04-07 23:29 - 00275456 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll2015-05-13 09:08 - 2015-04-07 23:29 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\jnwmon.dll2015-05-13 09:08 - 2015-04-07 23:14 - 00216064 _____ (Microsoft Corporation) C:\windows\SysWOW64\InkEd.dll2015-05-13 09:08 - 2015-02-18 03:06 - 00123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe2015-05-13 09:08 - 2015-02-18 03:04 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe2015-05-13 09:08 - 2015-01-28 23:19 - 02543104 _____ (Microsoft Corporation) C:\windows\system32\wpdshext.dll2015-05-13 09:08 - 2015-01-28 23:02 - 02311168 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpdshext.dll2015-05-12 23:19 - 2015-05-12 23:19 - 00000000 ____D () C:\Users\owner\AppData\Local\{9732C701-072B-4040-A35A-38600DCBD89B}2015-05-12 11:43 - 2015-05-22 23:53 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Zoom2015-05-12 11:43 - 2015-05-22 23:53 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom2015-05-12 11:43 - 2015-05-12 11:43 - 00133528 _____ (Zoom Video Communications, Inc.) C:\Users\owner\Downloads\Zoom_launcher (1).exe2015-05-12 11:21 - 2015-05-12 11:21 - 00133528 _____ (Zoom Video Communications, Inc.) C:\Users\owner\Downloads\Zoom_launcher.exe2015-05-12 11:19 - 2015-05-12 11:19 - 00000000 ____D () C:\Users\owner\AppData\Local\{1D60784D-1D00-41AF-B120-EA7749A9C8A8}2015-05-11 08:51 - 2015-05-11 08:51 - 01311683 _____ () C:\Users\owner\Downloads\Top-15-Ways-to-Make-Money-Online.zip2015-05-10 20:40 - 2015-05-10 21:12 - 00000000 ____D () C:\Users\owner\Downloads\Dollarphotoclub_680988682015-05-10 20:34 - 2015-05-10 20:34 - 01046306 _____ () C:\Users\owner\Downloads\Dollarphotoclub_68098868.zip2015-05-09 22:39 - 2015-05-11 23:19 - 00000000 ____D () C:\Users\owner\AppData\Local\{B575FDC0-7005-46F1-9623-2EC4AE7E91E7}2015-05-09 18:47 - 2015-05-09 18:47 - 00007148 _____ () C:\Users\owner\Downloads\CP0157666677P-75.mp4.en.srt2015-05-09 15:28 - 2015-05-09 15:28 - 00008214 _____ () C:\Users\owner\Downloads\bloglovin_subscriptions.xml2015-05-09 13:26 - 2015-05-09 13:26 - 00002204 _____ () C:\Users\owner\Downloads\CP0360643936P-19.mp4.en.srt2015-05-08 19:48 - 2015-05-08 19:48 - 00002058 _____ () C:\Users\owner\Downloads\CP0535238036P-1.mp4.en.srt2015-05-08 16:05 - 2015-05-08 16:05 - 00025117 _____ () C:\Users\owner\Downloads\CP0315806205P-1.mp4.en (1).srt2015-05-08 15:54 - 2015-05-08 15:54 - 00025057 _____ () C:\Users\owner\Downloads\CP0315806205P-1.mp4.en.srt2015-05-08 10:38 - 2015-05-09 10:38 - 00000000 ____D () C:\Users\owner\AppData\Local\{205560D5-7DD6-4A0F-BCA1-F0A1B3EFF31E}2015-05-08 09:16 - 2015-05-08 09:17 - 00804872 _____ () C:\windows\Minidump\050815-23431-01.dmp2015-05-07 22:38 - 2015-05-07 22:38 - 00000000 ____D () C:\Users\owner\AppData\Local\{65B79364-EF6C-4597-B9AA-622BA49C9CAB}2015-05-07 21:30 - 2015-05-07 21:30 - 00002863 _____ () C:\Users\owner\Downloads\CP0076905481P-46.mp4.en.srt2015-05-07 19:52 - 2015-05-07 19:52 - 00008271 _____ () C:\Users\owner\Downloads\CP0076905481P-78.mp4.en.srt2015-05-07 10:37 - 2015-05-07 10:37 - 00000000 ____D () C:\Users\owner\AppData\Local\{298D69B6-A625-450D-B325-A5CDB0D5E67A}2015-05-07 10:20 - 2015-05-07 10:20 - 00812904 _____ () C:\windows\Minidump\050715-26925-01.dmp2015-05-07 08:05 - 2015-05-07 08:05 - 00877032 _____ () C:\windows\Minidump\050715-33540-01.dmp2015-05-06 16:39 - 2015-05-06 16:39 - 00003335 _____ () C:\Users\owner\Downloads\CP0023366857P-1.mp4.en.srt2015-05-06 11:20 - 2015-05-06 11:20 - 00002437 _____ () C:\Users\owner\Downloads\CP0100254712P-33.mp4.en.srt2015-05-05 20:58 - 2015-05-05 20:58 - 00006578 _____ () C:\Users\owner\Downloads\CP0323463782P-1.mp4.en(1).srt2015-05-05 20:39 - 2015-05-05 20:39 - 00006575 _____ () C:\Users\owner\Downloads\CP0323463782P-1.mp4.en.srt2015-05-05 15:05 - 2015-05-05 15:05 - 00003831 _____ () C:\Users\owner\Downloads\CP0450385100P-1.mp4.en(1).srt2015-05-05 14:55 - 2015-05-05 14:55 - 00003763 _____ () C:\Users\owner\Downloads\CP0450385100P-1.mp4.en.srt2015-05-05 12:30 - 2015-05-05 12:31 - 00003656 _____ () C:\Users\owner\Downloads\CP0353034608P-4.mp4.en(1).srt2015-05-05 12:23 - 2015-05-05 12:24 - 00003662 _____ () C:\Users\owner\Downloads\CP0353034608P-4.mp4.en.srt2015-05-05 02:26 - 2015-05-05 02:26 - 00024947 _____ () C:\Users\owner\Downloads\CP0168412542P-7.mp4.en.srt2015-05-04 19:15 - 2015-05-04 19:15 - 00011853 _____ () C:\Users\owner\Downloads\CP0387660393P-1.mp4.en.srt2015-05-04 10:35 - 2015-05-04 10:35 - 00000000 ____D () C:\Users\owner\Downloads\facebook-1000014215057052015-05-04 10:25 - 2015-05-04 10:25 - 00001923 _____ () C:\Users\owner\Downloads\CP0220504330P-1.mp4.en(1).srt2015-05-04 10:22 - 2015-05-04 10:23 - 00001924 _____ () C:\Users\owner\Downloads\CP0220504330P-1.mp4.en.srt2015-05-04 02:38 - 2015-05-04 02:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud2015-05-04 02:36 - 2015-05-04 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes2015-05-04 02:35 - 2015-05-04 02:36 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A72015-05-04 02:35 - 2015-05-04 02:36 - 00000000 ____D () C:\Program Files\iTunes2015-05-04 02:35 - 2015-05-04 02:35 - 00000000 ____D () C:\Program Files\iPod2015-05-04 02:35 - 2015-05-04 02:35 - 00000000 ____D () C:\Program Files (x86)\iTunes2015-05-04 02:21 - 2015-05-04 02:21 - 00002011 _____ () C:\Users\owner\Downloads\CP0100254712P-38.mp4.en.srt2015-05-02 19:07 - 2015-05-02 19:08 - 00001426 _____ () C:\Users\owner\Downloads\CP0157666677P-61.mp4.en(1).srt2015-05-02 19:03 - 2015-05-02 19:03 - 00001423 _____ () C:\Users\owner\Downloads\CP0157666677P-61.mp4.en.srt2015-05-02 16:03 - 2015-05-02 16:03 - 00003891 _____ () C:\Users\owner\Downloads\CP0468921932P-2.mp4.en.srt2015-05-02 14:23 - 2015-05-02 14:23 - 00004035 _____ () C:\Users\owner\Downloads\CP0468921932P-5.mp4.en.srt2015-05-02 12:51 - 2015-05-02 12:51 - 00002422 _____ () C:\Users\owner\Downloads\CP0195338775P-1.mp4.en.srt2015-05-02 00:08 - 2015-05-20 07:30 - 00000000 ____D () C:\Users\owner\Documents\Maggie Flanigan2015-05-02 00:07 - 2015-05-16 11:00 - 00000000 ____D () C:\Users\owner\Documents\Rev.com2015-05-01 22:25 - 2015-05-01 22:25 - 00602316 _____ () C:\Users\owner\Downloads\book_version_5.idml2015-05-01 21:39 - 2015-05-01 21:39 - 00003608 _____ () C:\Users\owner\Downloads\CP0276004791P-1.mp4.en.srt2015-05-01 19:44 - 2015-05-01 19:44 - 00001037 _____ () C:\Users\owner\Downloads\CP0522524429P-1.mp4.en.srt2015-05-01 18:15 - 2015-05-01 18:15 - 00025925 _____ () C:\Users\owner\Downloads\CP0373945655P-1.mp4.en.srt2015-05-01 10:57 - 2015-05-01 10:58 - 00000000 ____D () C:\Users\owner\Documents\EBT2015-04-30 10:28 - 2015-05-06 22:36 - 00000000 ____D () C:\Users\owner\AppData\Local\{B3FB741E-67C1-4728-B326-5F4A3DA43664}2015-04-29 11:03 - 2015-04-29 11:03 - 02359035 _____ () C:\Users\owner\Downloads\facebook-100001421505705.zip2015-04-29 10:26 - 2015-04-29 22:26 - 00000000 ____D () C:\Users\owner\AppData\Local\{E06DFE62-A549-4783-AF6B-F0424B9647F8}2015-04-29 00:38 - 2015-04-29 00:38 - 00006805 _____ () C:\Users\owner\Downloads\sample8.mp4.en.srt2015-04-28 18:12 - 2015-04-28 18:12 - 00003608 _____ () C:\Users\owner\Downloads\sample7.mp4.en.srt2015-04-26 13:12 - 2015-04-26 13:12 - 00002917 _____ () C:\Users\owner\Downloads\sample6.mp4.en.srt2015-04-25 21:56 - 2015-04-28 22:26 - 00000000 ____D () C:\Users\owner\AppData\Local\{6D1CB3D2-9A48-41AE-9359-359CC7136941}2015-04-23 22:30 - 2015-04-23 22:30 - 00000000 ____D () C:\Users\owner\AppData\Local\{4F1E2A43-4B07-4E19-9650-D955A02E5619}2015-04-23 22:02 - 2015-04-23 23:21 - 01257449 _____ () C:\Users\owner\Downloads\HEADER-FOOTER Sugar and Tank.ai ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-23 10:06 - 2015-02-01 15:11 - 00031284 _____ () C:\Users\owner\Downloads\FRST.txt2015-05-23 10:06 - 2015-02-01 15:10 - 00000000 ____D () C:\FRST2015-05-23 09:31 - 2012-12-07 15:00 - 00000908 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3310603758-325049908-3132485941-1001UA.job2015-05-23 09:31 - 2012-04-02 10:08 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job2015-05-23 09:31 - 2010-01-31 15:28 - 00000898 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job2015-05-23 09:31 - 2009-07-14 00:51 - 00564680 _____ () C:\windows\setupact.log2015-05-23 08:47 - 2009-10-07 22:10 - 01117620 _____ () C:\windows\WindowsUpdate.log2015-05-23 08:32 - 2010-01-31 15:28 - 00000894 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job2015-05-23 08:27 - 2013-05-14 13:47 - 00000000 ___RD () C:\Users\owner\Dropbox2015-05-23 08:27 - 2013-05-14 13:30 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Dropbox2015-05-23 08:25 - 2014-07-30 12:45 - 00136408 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys2015-05-23 08:25 - 2010-03-15 09:45 - 00000000 ____D () C:\Users\owner\Tracing2015-05-23 00:05 - 2009-07-14 00:45 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02015-05-23 00:05 - 2009-07-14 00:45 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02015-05-22 23:57 - 2011-03-27 22:01 - 00000000 ____D () C:\windows\SysWOW64\logishrd2015-05-22 23:57 - 2011-03-27 22:01 - 00000000 ____D () C:\windows\system32\logishrd2015-05-22 23:57 - 2009-07-14 01:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT2015-05-22 23:54 - 2014-07-30 12:45 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2015-05-22 23:54 - 2013-03-15 18:47 - 00000000 ____D () C:\Program Files (x86)\Gyazo2015-05-22 23:54 - 2012-09-01 07:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight2015-05-22 23:54 - 2012-05-05 16:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2015-05-22 23:54 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared2015-05-22 23:53 - 2015-04-20 19:28 - 00000000 ____D () C:\Users\owner\Documents\Sew Caroline2015-05-22 23:53 - 2015-04-06 06:20 - 00000000 ___SD () C:\windows\SysWOW64\GWX2015-05-22 23:53 - 2015-04-06 06:19 - 00000000 ___SD () C:\windows\system32\GWX2015-05-22 23:53 - 2015-03-12 22:03 - 00000000 ____D () C:\Users\owner\Documents\Melly Sews2015-05-22 23:53 - 2015-02-05 10:24 - 00000000 ____D () C:\Users\owner\Downloads\FRST-OlderVersion2015-05-22 23:53 - 2014-12-03 22:55 - 00000000 ____D () C:\Users\owner\Documents\Money Robbins email amazon_files2015-05-22 23:53 - 2014-09-25 23:16 - 00000000 ____D () C:\Users\owner\Documents\Att troubleshoot chat 9.25.14_files2015-05-22 23:53 - 2014-07-30 12:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2015-05-22 23:53 - 2014-04-13 11:29 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon2015-05-22 23:53 - 2013-09-20 17:03 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Blackboard2015-05-22 23:53 - 2013-05-14 13:31 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox2015-05-22 23:53 - 2013-04-29 01:13 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koox System Optimizer2015-05-22 23:53 - 2013-04-28 23:41 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Audacity2015-05-22 23:53 - 2013-03-15 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo2015-05-22 23:53 - 2013-03-13 15:06 - 00000000 ____D () C:\Users\owner\AppData\Local\Citrix2015-05-22 23:53 - 2012-09-01 07:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight2015-05-22 23:53 - 2012-09-01 07:54 - 00000000 ____D () C:\Program Files\Microsoft Silverlight2015-05-22 23:53 - 2012-04-03 17:41 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client2015-05-22 23:53 - 2011-11-16 17:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome2015-05-22 23:53 - 2011-11-09 15:41 - 00000000 ____D () C:\Users\owner\AppData\Local\Akamai2015-05-22 23:53 - 2011-06-15 09:34 - 00000000 ____D () C:\Users\owner\AppData\Local\Tific2015-05-22 23:53 - 2011-06-01 18:56 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Catalina Marketing Corp2015-05-22 23:53 - 2011-06-01 18:56 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Catalina Marketing Corp2015-05-22 23:53 - 2011-04-19 09:41 - 00000000 ____D () C:\Users\owner\AppData\Roaming\MAGIX2015-05-22 23:53 - 2011-04-11 17:58 - 00000000 ____D () C:\Users\owner\Documents\Netflix Setup OrderFinal_files2015-05-22 23:53 - 2011-04-08 11:47 - 00000000 ____D () C:\Users\owner\Documents\No Messages Screen Display for Jebaire Publishing_files2015-05-22 23:53 - 2011-03-21 18:53 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton2015-05-22 23:53 - 2011-01-12 15:32 - 00000000 ____D () C:\Users\owner\AppData\Roaming\FreeFileOpener2015-05-22 23:53 - 2011-01-07 18:43 - 00000000 ____D () C:\Users\owner\Downloads\Basic Ebook info from IBPA_files2015-05-22 23:53 - 2010-11-23 19:12 - 00000000 ____D () C:\Users\owner\Documents\Audible2015-05-22 23:53 - 2010-06-25 15:10 - 00000000 ____D () C:\Users\owner\Documents\My eBooks2015-05-22 23:53 - 2010-06-25 15:08 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobipocket.com2015-05-22 23:53 - 2010-06-14 20:13 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Mozilla2015-05-22 23:53 - 2010-05-20 12:24 - 00000000 __RSD () C:\Users\owner\Documents\My Stationery2015-05-22 23:53 - 2010-05-17 09:30 - 00000000 ____D () C:\Users\owner\Documents\Homeschool2015-05-22 23:53 - 2010-05-11 13:24 - 00000000 ___SD () C:\Users\owner\Documents\My Data Sources2015-05-22 23:53 - 2010-05-07 11:05 - 00000000 ____D () C:\Users\owner\Documents\Jebaire Book Blocks2015-05-22 23:53 - 2010-04-27 07:40 - 00000000 ____D () C:\windows\Minidump2015-05-22 23:53 - 2010-04-02 21:24 - 00000000 ____D () C:\Users\owner\Documents\Jebaire Manuscripts2015-05-22 23:53 - 2010-03-18 12:42 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Skype2015-05-22 23:53 - 2010-03-18 09:03 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Barnes & Noble2015-05-22 23:53 - 2010-03-08 15:51 - 00000000 ____D () C:\Users\owner\AppData\Local\Microsoft Help2015-05-22 23:53 - 2010-02-24 17:15 - 00000000 ____D () C:\ProgramData\FLEXnet2015-05-22 23:53 - 2010-02-16 18:45 - 00000000 ____D () C:\Users\owner\AppData\Roaming\WildTangent2015-05-22 23:53 - 2010-02-16 18:45 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Adobe2015-05-22 23:53 - 2010-02-13 12:48 - 00000000 ____D () C:\Users\owner\AppData\Local\TOSHIBA2015-05-22 23:53 - 2010-02-13 12:47 - 00000000 ___RD () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2015-05-22 23:53 - 2010-02-13 12:47 - 00000000 ___RD () C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2015-05-22 23:53 - 2010-02-13 12:47 - 00000000 ____D () C:\Users\owner2015-05-22 23:53 - 2009-10-07 22:20 - 00000000 ____D () C:\ProgramData\Microsoft Help2015-05-22 23:53 - 2009-07-14 03:45 - 00000000 ____D () C:\Program Files\Windows Journal2015-05-22 23:53 - 2009-07-14 01:09 - 00000000 ____D () C:\windows\System32\Tasks\WPD2015-05-22 23:53 - 2009-07-13 23:20 - 00000000 __RSD () C:\windows\Media2015-05-22 23:53 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Public\Libraries2015-05-22 23:53 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\AdvancedInstallers2015-05-22 23:53 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\servicing2015-05-22 23:53 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\rescache2015-05-22 23:53 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\PolicyDefinitions2015-05-22 23:53 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\AppCompat2015-05-22 23:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\registration2015-05-22 13:28 - 2012-12-07 15:00 - 00000856 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3310603758-325049908-3132485941-1001Core.job2015-05-22 10:45 - 2010-04-27 07:40 - 401271285 _____ () C:\windows\MEMORY.DMP2015-05-22 10:09 - 2009-07-14 01:08 - 00032584 _____ () C:\windows\Tasks\SCHEDLGU.TXT2015-05-22 07:41 - 2014-06-13 07:58 - 00000000 ____D () C:\Users\owner\AppData\Local\Adobe2015-05-21 19:49 - 2011-03-28 21:58 - 00000000 ____D () C:\Users\owner\AppData\Local\CrashDumps2015-05-20 17:38 - 2014-07-30 12:45 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2015-05-20 13:53 - 2013-09-12 20:41 - 00000000 ____D () C:\Users\owner\Documents\Clark Kids Stuff2015-05-18 10:18 - 2014-11-27 14:02 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk2015-05-18 09:43 - 2009-09-03 01:35 - 01370042 _____ () C:\windows\PFRO.log2015-05-16 13:23 - 2012-12-07 15:00 - 00003878 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3310603758-325049908-3132485941-1001UA2015-05-16 13:23 - 2012-12-07 15:00 - 00003482 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3310603758-325049908-3132485941-1001Core2015-05-15 17:19 - 2010-01-31 15:28 - 00003894 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA2015-05-15 17:19 - 2010-01-31 15:28 - 00003642 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore2015-05-15 14:16 - 2012-04-02 10:08 - 00778416 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe2015-05-15 14:16 - 2012-04-02 10:08 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater2015-05-15 14:16 - 2011-06-08 01:53 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl2015-05-15 06:55 - 2015-01-09 10:54 - 00003750 _____ () C:\windows\System32\Tasks\GyazoUpdateTaskMachine2015-05-14 10:14 - 2009-07-14 01:13 - 00006416 _____ () C:\windows\system32\PerfStringBackup.INI2015-05-14 10:06 - 2009-07-14 00:45 - 05120888 _____ () C:\windows\system32\FNTCACHE.DAT2015-05-14 08:21 - 2013-07-15 14:49 - 00000000 ____D () C:\windows\system32\MRT2015-05-14 07:54 - 2010-04-20 08:38 - 140425016 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe2015-05-13 17:05 - 2015-04-10 23:50 - 00000000 ____D () C:\Users\owner\Documents\$$$$$2015-05-12 13:34 - 2011-03-27 22:00 - 00000000 _____ () C:\windows\system32\Drivers\lvuvc.hs2015-05-06 20:09 - 2013-04-16 11:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive2015-05-06 18:58 - 2013-03-15 18:49 - 00000000 ____D () C:\Users\owner\AppData\Roaming\Gyazo2015-05-04 02:35 - 2014-02-08 20:43 - 00000000 ____D () C:\Program Files\Common Files\Apple2015-05-01 20:41 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\NDF2015-04-23 22:01 - 2015-04-22 13:31 - 01276072 _____ () C:\Users\owner\Downloads\HEADER-FOOTER.ai2015-04-23 15:46 - 2011-03-27 22:24 - 00000000 ____D () C:\Users\owner\Documents\SightSpeed Recordings2015-04-23 10:14 - 2015-04-22 08:48 - 00000000 ____D () C:\Users\owner\AppData\Local\{B2B42623-43B5-4CC9-93C0-3C6BD8C00561} ==================== Files in the root of some directories ======= 2010-02-24 21:56 - 2010-02-24 21:56 - 0000000 ____H () C:\Users\owner\AppData\Roaming\ActUpdate.log2011-11-21 20:44 - 2011-11-21 20:44 - 0044912 _____ () C:\Users\owner\AppData\Roaming\UserTile.png2010-03-31 21:16 - 2013-06-11 23:07 - 0000610 _____ () C:\Users\owner\AppData\Roaming\wklnhst.dat2010-03-18 12:50 - 2010-03-18 12:50 - 0000056 ____H () C:\ProgramData\ezsidmv.dat2010-02-24 21:56 - 2010-04-24 22:39 - 0000088 __RSH () C:\ProgramData\F3446BD02F.sys2010-03-16 15:36 - 2010-03-31 15:46 - 0000609 _____ () C:\ProgramData\hpzinstall.log2010-02-24 21:56 - 2011-09-21 21:52 - 0000952 ___SH () C:\ProgramData\KGyGaAvL.sys Some files in TEMP:====================C:\Users\owner\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprnkzxy.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-05-14 19:56 ==================== End of log ============================
  9. guess all i need to do here is post the text docs eh?... here's my other post where i've explained everything that's happened thus far.... https://forums.malwarebytes.org/index.php?/topic/153380-malware-bytes-keeps-getting-stuckfreezing-and-im-infected/?p=856983 FRST.txt Addition.txt CheckResults.txt
  10. I think my computer has malware. My computer is up-to-date with Windows update, and I've updated and run malwarebytes, adwcleaner, hitmanpro, rkill. Symptoms: sluggish performance, periodic freezes of programs, and Google Chrome continues to show costminn as an extension after removing it. Malwarebytes scans continue to show superfish files as well. FRST.txt and Addition.txt pastes below. FRST.txt Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-07-2014 01Ran by Dave (administrator) on DAVE-PC on 25-07-2014 17:11:56Running from C:\Users\Dave\DownloadsPlatform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 11Boot Mode: Normal The only official download link for FRST:Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe(AMD) C:\Windows\System32\atiesrxx.exe(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe(AMD) C:\Windows\System32\atieclxx.exe(DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe(DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(CinemaNow, Inc.) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe(DeviceVM, Inc.) C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe() C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.EXE(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.4872\Battle.net.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe() C:\Users\Dave\AppData\Local\Hyper - Browser\Hyper - Browser.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google) C:\Users\Dave\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe(Google Inc.) C:\Users\Dave\AppData\Local\Hyper - Browser\Chrome-bin\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-13] (Synaptics Incorporated)HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Java\jre6\bin\jusched.exe [172032 2010-02-28] (Sun Microsystems, Inc.)HKLM\...\Run: [sysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-12-30] (IDT, Inc.)HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-10] (Microsoft Corporation)HKLM-x32\...\Run: [Microsoft Default Manager] => C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation)HKLM-x32\...\Run: [startCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-09-09] (Advanced Micro Devices, Inc.)HKLM-x32\...\Run: [] => [X]HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-03] (Apple Inc.)HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-01] (Oracle Corporation)HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-12] (Logitech Inc.)HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795672 2014-05-14] (CyberLink Corp.)HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-07-23] (Hewlett-Packard)HKLM\...\Winlogon: [userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe,Winlogon\Notify\ScCertProp: wlnotify.dll [X]HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)HKU\S-1-5-21-575872417-1751023796-2398206445-1001\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2010-11-22] (Hewlett-Packard Company)HKU\S-1-5-21-575872417-1751023796-2398206445-1001\...\Run: [Google Update] => "C:\Users\Dave\AppData\Local\Google\Update\GoogleUpdate.exe" /c HKU\S-1-5-21-575872417-1751023796-2398206445-1001\...\Run: [GoogleChromeAutoLaunch_C62251D359A8F5B5CC8EADB510991ABB] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)Lsa: [Notification Packages] DPPassFilter scecliStartup: C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnkShortcutTarget: Dropbox.lnk -> C:\Users\Dave\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt1" -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt2" -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt3" -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt4" -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt5" -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt6" -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt7" -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)ShellIconOverlayIdentifiers: "DropboxExt8" -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dave\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)GroupPolicy: Group Policy on Chrome detected <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.comHKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.comSearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 - DefaultScope value is missing.BHO: HP SimplePass Identity Protection Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll (DigitalPersona, Inc.)BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cabDPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.24.0.cabHandler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)Tcpip\Parameters: [DhcpNameServer] 10.59.0.1 FireFox:========FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()FF Plugin: @microsoft.com/GENUINE - disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin-x32: @microsoft.com/GENUINE - disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No FileFF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No FileFF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF Plugin HKCU: @hulu.com/Hulu Desktop - C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.11.1\npHDPlg.dll (Hulu LLC)FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Dave\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Dave\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Dave\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Dave\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No FileFF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Dave\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No FileFF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101799.dll (Amazon.com, Inc.)FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)FF Plugin ProgramFiles/Appdata: C:\Users\Dave\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)FF Plugin ProgramFiles/Appdata: C:\Users\Dave\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtensionFF Extension: Default Manager - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension [2011-01-11]FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExtFF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt [2011-08-23] Chrome: =======CHR HomePage: CHR StartupUrls: "hxxp://www.facebook.com/", "hxxp://www.gmail.com/"CHR DefaultSearchKeyword: v9CHR Plugin: (Shockwave Flash) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.225\pepflashplayer.dll No FileCHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewerCHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll No FileCHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll No FileCHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101799.dll (Amazon.com, Inc.)CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No FileCHR Plugin: (Java Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No FileCHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Dave\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)CHR Plugin: (Hulu Desktop) - C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.11.1\npHDPlg.dll (Hulu LLC)CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll No FileCHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-20]CHR Extension: (YouTube) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-09-11]CHR Extension: (Google Search) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-09-11]CHR Extension: (cosstminn) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Extensions\nefgaobciliephjkajgnikgbckkbkkci [2014-07-19]CHR Extension: (Google Wallet) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-14]CHR Extension: (Gmail) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-09-11]CHR Extension: (cosstminn) - C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Extensions\nefgaobciliephjkajgnikgbckkbkkci\2.0 [2014-07-19]CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-17] (ArcSoft Inc.)S2 CLKMSVC10_C6F09094; C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\HDDVD\NavFilter\kmsvc.exe [241648 2011-03-21] (CyberLink)R2 DvmMDES; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [338168 2010-02-08] (DeviceVM, Inc.)R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-26] (Hewlett-Packard Company) [File not signed]R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [49464 2014-05-20] (Hewlett-Packard Company)R2 HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [20480 2010-01-18] () [File not signed]S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-11-22] (Hewlett-Packard Company) [File not signed]R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-10] (Microsoft Corporation)R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-10] (Microsoft Corporation)S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R1 DVMIO; C:\Windows\System32\DRIVERS\dvmio.sys [20056 2010-01-29] (DeviceVM, Inc.)S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-07-24] ()R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-25] (Malwarebytes Corporation)R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-24] (Microsoft Corporation)R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-10] (Microsoft Corporation)S3 S3XXx64; C:\Windows\System32\DRIVERS\S3XXx64.sys [73984 2013-06-04] (Identive)R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-05-13] (CyberLink Corp.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-07-25 17:11 - 2014-07-25 17:12 - 00025577 _____ () C:\Users\Dave\Downloads\FRST.txt2014-07-25 17:11 - 2014-07-25 17:11 - 00000000 ____D () C:\FRST2014-07-25 17:08 - 2014-07-25 17:10 - 02093568 _____ (Farbar) C:\Users\Dave\Downloads\FRST64.exe2014-07-25 16:05 - 2014-07-25 16:08 - 00002324 _____ () C:\Users\Dave\Desktop\Rkill.txt2014-07-25 15:59 - 2014-07-25 16:01 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Dave\Downloads\rkill.exe2014-07-24 18:03 - 2014-07-24 18:03 - 00032512 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys2014-07-24 18:01 - 2014-07-24 18:01 - 00001086 _____ () C:\Windows\system32\.crusader2014-07-24 17:38 - 2014-07-24 17:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro2014-07-24 17:38 - 2014-07-24 17:38 - 00000000 ____D () C:\Program Files\HitmanPro2014-07-24 17:37 - 2014-07-24 18:02 - 00000000 ____D () C:\ProgramData\HitmanPro2014-07-24 17:10 - 2014-07-25 15:17 - 00000012 ____H () C:\dvmexp.idx2014-07-24 17:09 - 2014-07-24 17:09 - 00000000 ___HD () C:\dvmexp2014-07-24 17:03 - 2014-07-24 17:10 - 00000000 ____D () C:\temp2014-07-24 17:00 - 2014-07-24 18:08 - 00000000 ____D () C:\AdwCleaner2014-07-24 16:53 - 2014-07-24 16:59 - 11188736 _____ (SurfRight B.V.) C:\Users\Dave\Downloads\HitmanPro_x64.exe2014-07-24 16:52 - 2014-07-24 16:53 - 01354223 _____ () C:\Users\Dave\Downloads\adwcleaner_3.216.exe2014-07-23 22:48 - 2014-07-23 23:02 - 51330378 _____ () C:\Users\Dave\Downloads\Unconfirmed 663470.crdownload2014-07-22 17:11 - 2014-07-24 17:16 - 00000000 ___RD () C:\Users\Dave\Dropbox2014-07-22 17:11 - 2014-07-22 17:11 - 00001041 _____ () C:\Users\Dave\Desktop\Dropbox.lnk2014-07-22 17:11 - 2014-07-22 17:11 - 00000000 ____D () C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox2014-07-22 17:07 - 2014-07-24 17:15 - 00000000 ____D () C:\Users\Dave\AppData\Roaming\Dropbox2014-07-22 17:07 - 2014-07-22 17:07 - 00323696 _____ (Dropbox, Inc.) C:\Users\Dave\Downloads\DropboxInstaller.exe2014-07-21 23:25 - 2014-07-21 23:37 - 108293368 _____ (Microsoft Corporation) C:\Users\Dave\Downloads\msert.exe2014-07-21 23:23 - 2014-07-21 23:41 - 223165336 ____N (Symantec Corporation) C:\Users\Dave\Downloads\NIS_21.1.0.18_SYMTB_PROMO_4_MRFTT_829_10144-US1.exe2014-07-19 22:54 - 2014-07-19 23:28 - 00000000 ____D () C:\Users\Dave\AppData\Local\29842014-07-19 22:54 - 2014-07-19 22:55 - 00000000 ____D () C:\Users\Dave\AppData\Local\Hyper - Browser2014-07-19 22:54 - 2014-07-19 22:54 - 00004566 _____ () C:\Windows\System32\Tasks\Hyper - Browser Runner2014-07-19 22:54 - 2014-07-19 22:54 - 00000258 __RSH () C:\ProgramData\ntuser.pol2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\HomeGroupUser$2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Guest2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Dave\AppData\Local\Packages2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Dave\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Administrator2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\ProgramData\fa44f3b9b7d85d912014-07-13 18:50 - 2014-07-13 18:50 - 00000000 ____D () C:\Users\Dave\Documents\SUNY Maritime2014-07-13 18:04 - 2014-07-13 18:04 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk2014-07-13 18:04 - 2014-07-13 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes2014-07-13 18:03 - 2014-07-13 18:04 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF692014-07-13 18:03 - 2014-07-13 18:04 - 00000000 ____D () C:\Program Files\iTunes2014-07-13 18:03 - 2014-07-13 18:04 - 00000000 ____D () C:\Program Files (x86)\iTunes2014-07-13 18:03 - 2014-07-13 18:03 - 00000000 ____D () C:\Program Files\iPod2014-07-10 23:30 - 2014-07-10 23:32 - 00000000 ____D () C:\Users\Public\Documents\CyberLink2014-07-10 23:30 - 2014-07-10 23:30 - 00000000 ____D () C:\Users\Dave\Documents\CyberLink2014-07-10 23:26 - 2014-07-10 23:26 - 00002203 _____ () C:\Users\Public\Desktop\CyberLink PowerDVD 14.lnk2014-07-10 23:26 - 2014-07-10 23:26 - 00000000 ____D () C:\ProgramData\PDVD2014-07-10 23:26 - 2014-07-10 23:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 142014-07-10 23:23 - 2014-07-10 23:23 - 00000000 ____D () C:\ProgramData\SUPPORTDIR2014-07-10 23:23 - 2014-07-10 23:23 - 00000000 ____D () C:\ProgramData\install_clap2014-07-10 23:21 - 2014-07-10 23:22 - 188169104 _____ () C:\Users\Dave\Documents\PowerDVD_14.0.4028.58_DVD140430-04.exe2014-07-10 23:20 - 2014-07-10 23:20 - 01029080 _____ (CyberLink) C:\Users\Dave\Downloads\CyberLink_PowerDVD_Downloader.exe2014-07-10 21:55 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll2014-07-10 21:55 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll2014-07-10 21:55 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2014-07-10 21:55 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2014-07-10 21:55 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-07-10 21:55 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2014-07-10 21:55 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2014-07-10 21:55 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2014-07-10 21:55 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll2014-07-10 21:55 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-07-10 21:55 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2014-07-10 21:55 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2014-07-10 21:55 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2014-07-10 21:55 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2014-07-10 21:55 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-07-10 21:55 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-07-10 21:55 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2014-07-10 21:55 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2014-07-10 21:55 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll2014-07-10 21:55 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll2014-07-10 21:55 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2014-07-10 21:55 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2014-07-10 21:55 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-07-10 21:55 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2014-07-10 21:55 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll2014-07-10 21:55 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2014-07-10 21:55 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2014-07-10 21:55 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2014-07-10 21:55 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-07-10 21:55 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll2014-07-10 21:55 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2014-07-10 21:55 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2014-07-10 21:55 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2014-07-10 21:55 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2014-07-10 21:55 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2014-07-10 21:55 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2014-07-10 21:55 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2014-07-10 21:55 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2014-07-10 21:55 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-07-10 21:55 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll2014-07-10 21:55 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll2014-07-10 21:55 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2014-07-10 21:55 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2014-07-10 21:55 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2014-07-10 21:55 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll2014-07-10 21:55 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-07-10 21:55 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2014-07-10 21:55 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2014-07-10 21:55 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2014-07-10 21:55 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2014-07-10 21:55 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2014-07-10 21:55 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2014-07-10 21:55 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2014-07-10 21:55 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2014-07-10 21:55 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2014-07-10 21:55 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2014-07-10 21:55 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll2014-07-10 21:55 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll2014-07-10 21:54 - 2014-06-29 22:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll2014-07-10 21:54 - 2014-06-29 22:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll2014-07-10 21:54 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe2014-07-10 21:54 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe2014-07-10 21:54 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2014-07-10 21:54 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll2014-07-10 21:54 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll2014-07-10 21:54 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll2014-07-10 21:54 - 2014-05-30 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll2014-07-10 21:54 - 2014-05-30 04:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll2014-07-10 21:54 - 2014-05-30 04:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll2014-07-10 21:54 - 2014-05-30 04:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll2014-07-10 21:54 - 2014-05-30 04:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll2014-07-10 21:54 - 2014-05-30 04:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll2014-07-10 21:54 - 2014-05-30 04:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll2014-07-10 21:54 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll2014-07-10 21:54 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll2014-07-10 21:54 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll2014-07-10 21:54 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll2014-07-10 21:54 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll2014-07-10 21:54 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll2014-07-10 21:54 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll2014-07-10 21:54 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys2014-07-10 21:30 - 2014-07-10 21:32 - 551293744 _____ () C:\Users\Dave\Desktop\Windows6.1-KB947821-v33-x64.msu2014-07-10 21:11 - 2014-07-10 21:11 - 00000000 ____D () C:\Windows\CheckSur2014-07-09 21:44 - 2014-07-18 20:51 - 00000650 _____ () C:\Users\Dave\Desktop\NYC Trip Ideas.txt2014-06-27 23:16 - 2014-06-27 23:16 - 00000110 _____ () C:\Users\Dave\Desktop\PCVST contacts.txt2014-06-27 21:39 - 2014-06-27 21:39 - 00001068 _____ () C:\Users\Public\Desktop\VLC media player.lnk ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-07-25 17:12 - 2014-07-25 17:11 - 00025577 _____ () C:\Users\Dave\Downloads\FRST.txt2014-07-25 17:11 - 2014-07-25 17:11 - 00000000 ____D () C:\FRST2014-07-25 17:11 - 2013-10-26 22:07 - 00000000 ____D () C:\Users\Dave\AppData\Local\Battle.net2014-07-25 17:10 - 2014-07-25 17:08 - 02093568 _____ (Farbar) C:\Users\Dave\Downloads\FRST64.exe2014-07-25 17:02 - 2014-02-15 09:49 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-575872417-1751023796-2398206445-1001UA.job2014-07-25 16:41 - 2014-05-23 04:43 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-07-25 16:19 - 2012-03-30 21:16 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job2014-07-25 16:18 - 2012-09-11 07:29 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-07-25 16:15 - 2011-07-09 09:43 - 00000924 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-575872417-1751023796-2398206445-1001UA.job2014-07-25 16:08 - 2014-07-25 16:05 - 00002324 _____ () C:\Users\Dave\Desktop\Rkill.txt2014-07-25 16:01 - 2014-07-25 15:59 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Dave\Downloads\rkill.exe2014-07-25 15:34 - 2010-06-26 05:48 - 01895413 _____ () C:\Windows\WindowsUpdate.log2014-07-25 15:23 - 2009-07-14 00:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02014-07-25 15:23 - 2009-07-14 00:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02014-07-25 15:22 - 2009-07-14 01:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI2014-07-25 15:17 - 2014-07-24 17:10 - 00000012 ____H () C:\dvmexp.idx2014-07-25 15:16 - 2013-08-26 07:30 - 00032155 _____ () C:\Windows\setupact.log2014-07-25 15:16 - 2012-09-11 07:29 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-07-25 15:16 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-07-25 10:23 - 2012-10-11 08:00 - 00000328 _____ () C:\Windows\Tasks\HPCeeScheduleForDave.job2014-07-24 22:26 - 2012-10-11 08:00 - 00003180 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForDave2014-07-24 22:25 - 2011-12-01 07:36 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt2014-07-24 22:25 - 2010-09-30 08:35 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log2014-07-24 18:08 - 2014-07-24 17:00 - 00000000 ____D () C:\AdwCleaner2014-07-24 18:08 - 2010-06-26 05:54 - 00832266 _____ () C:\Windows\PFRO.log2014-07-24 18:03 - 2014-07-24 18:03 - 00032512 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys2014-07-24 18:02 - 2014-07-24 17:37 - 00000000 ____D () C:\ProgramData\HitmanPro2014-07-24 18:01 - 2014-07-24 18:01 - 00001086 _____ () C:\Windows\system32\.crusader2014-07-24 17:38 - 2014-07-24 17:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro2014-07-24 17:38 - 2014-07-24 17:38 - 00000000 ____D () C:\Program Files\HitmanPro2014-07-24 17:16 - 2014-07-22 17:11 - 00000000 ___RD () C:\Users\Dave\Dropbox2014-07-24 17:15 - 2014-07-22 17:07 - 00000000 ____D () C:\Users\Dave\AppData\Roaming\Dropbox2014-07-24 17:10 - 2014-07-24 17:03 - 00000000 ____D () C:\temp2014-07-24 17:09 - 2014-07-24 17:09 - 00000000 ___HD () C:\dvmexp2014-07-24 16:59 - 2014-07-24 16:53 - 11188736 _____ (SurfRight B.V.) C:\Users\Dave\Downloads\HitmanPro_x64.exe2014-07-24 16:53 - 2014-07-24 16:52 - 01354223 _____ () C:\Users\Dave\Downloads\adwcleaner_3.216.exe2014-07-24 16:38 - 2013-10-26 22:06 - 00000000 ____D () C:\Program Files (x86)\Battle.net2014-07-23 23:03 - 2012-05-20 21:41 - 00000000 ____D () C:\Program Files\Microsoft Silverlight2014-07-23 23:03 - 2012-05-20 21:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight2014-07-23 23:02 - 2014-07-23 22:48 - 51330378 _____ () C:\Users\Dave\Downloads\Unconfirmed 663470.crdownload2014-07-23 22:52 - 2010-09-22 05:32 - 00000000 ____D () C:\Users\Dave2014-07-23 18:29 - 2012-05-20 21:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight2014-07-22 21:37 - 2013-10-26 22:09 - 00000000 ____D () C:\Program Files (x86)\Hearthstone2014-07-22 17:23 - 2010-12-24 22:02 - 00000000 ____D () C:\Users\Dave\AppData\Roaming\Skype2014-07-22 17:11 - 2014-07-22 17:11 - 00001041 _____ () C:\Users\Dave\Desktop\Dropbox.lnk2014-07-22 17:11 - 2014-07-22 17:11 - 00000000 ____D () C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox2014-07-22 17:07 - 2014-07-22 17:07 - 00323696 _____ (Dropbox, Inc.) C:\Users\Dave\Downloads\DropboxInstaller.exe2014-07-22 16:56 - 2011-03-07 07:38 - 00004682 _____ () C:\Users\Dave\Documents\info.txt2014-07-21 23:41 - 2014-07-21 23:23 - 223165336 ____N (Symantec Corporation) C:\Users\Dave\Downloads\NIS_21.1.0.18_SYMTB_PROMO_4_MRFTT_829_10144-US1.exe2014-07-21 23:37 - 2014-07-21 23:25 - 108293368 _____ (Microsoft Corporation) C:\Users\Dave\Downloads\msert.exe2014-07-20 10:15 - 2011-07-09 09:43 - 00000902 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-575872417-1751023796-2398206445-1001Core.job2014-07-19 23:29 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\Offline Web Pages2014-07-19 23:28 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Dave\AppData\Local\29842014-07-19 22:55 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Dave\AppData\Local\Hyper - Browser2014-07-19 22:54 - 2014-07-19 22:54 - 00004566 _____ () C:\Windows\System32\Tasks\Hyper - Browser Runner2014-07-19 22:54 - 2014-07-19 22:54 - 00000258 __RSH () C:\ProgramData\ntuser.pol2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\HomeGroupUser$2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Guest2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Dave\AppData\Local\Packages2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Dave\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\Users\Administrator2014-07-19 22:54 - 2014-07-19 22:54 - 00000000 ____D () C:\ProgramData\fa44f3b9b7d85d912014-07-19 22:54 - 2012-09-11 07:28 - 00000000 ____D () C:\Users\Dave\AppData\Local\Google2014-07-19 22:54 - 2012-09-11 07:28 - 00000000 ____D () C:\Program Files (x86)\Google2014-07-19 22:54 - 2009-07-13 23:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy2014-07-19 22:54 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy2014-07-19 19:49 - 2014-06-10 09:48 - 00000315 _____ () C:\Users\Dave\Desktop\Nozomi test & vacation schedule.txt2014-07-18 20:51 - 2014-07-09 21:44 - 00000650 _____ () C:\Users\Dave\Desktop\NYC Trip Ideas.txt2014-07-13 18:50 - 2014-07-13 18:50 - 00000000 ____D () C:\Users\Dave\Documents\SUNY Maritime2014-07-13 18:04 - 2014-07-13 18:04 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk2014-07-13 18:04 - 2014-07-13 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes2014-07-13 18:04 - 2014-07-13 18:03 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF692014-07-13 18:04 - 2014-07-13 18:03 - 00000000 ____D () C:\Program Files\iTunes2014-07-13 18:04 - 2014-07-13 18:03 - 00000000 ____D () C:\Program Files (x86)\iTunes2014-07-13 18:03 - 2014-07-13 18:03 - 00000000 ____D () C:\Program Files\iPod2014-07-11 09:02 - 2014-02-15 09:49 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-575872417-1751023796-2398206445-1001Core.job2014-07-11 08:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache2014-07-10 23:32 - 2014-07-10 23:30 - 00000000 ____D () C:\Users\Public\Documents\CyberLink2014-07-10 23:32 - 2010-02-27 23:46 - 00000000 ____D () C:\ProgramData\CyberLink2014-07-10 23:30 - 2014-07-10 23:30 - 00000000 ____D () C:\Users\Dave\Documents\CyberLink2014-07-10 23:26 - 2014-07-10 23:26 - 00002203 _____ () C:\Users\Public\Desktop\CyberLink PowerDVD 14.lnk2014-07-10 23:26 - 2014-07-10 23:26 - 00000000 ____D () C:\ProgramData\PDVD2014-07-10 23:26 - 2014-07-10 23:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 142014-07-10 23:26 - 2011-04-18 18:27 - 00000000 ____D () C:\Users\Dave\AppData\Local\CyberLink2014-07-10 23:26 - 2010-02-27 21:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2014-07-10 23:24 - 2010-02-27 22:40 - 00000000 ____D () C:\ProgramData\Temp2014-07-10 23:23 - 2014-07-10 23:23 - 00000000 ____D () C:\ProgramData\SUPPORTDIR2014-07-10 23:23 - 2014-07-10 23:23 - 00000000 ____D () C:\ProgramData\install_clap2014-07-10 23:23 - 2010-02-27 23:47 - 00000000 ____D () C:\Program Files (x86)\CyberLink2014-07-10 23:22 - 2014-07-10 23:21 - 188169104 _____ () C:\Users\Dave\Documents\PowerDVD_14.0.4028.58_DVD140430-04.exe2014-07-10 23:20 - 2014-07-10 23:20 - 01029080 _____ (CyberLink) C:\Users\Dave\Downloads\CyberLink_PowerDVD_Downloader.exe2014-07-10 22:06 - 2009-07-14 00:45 - 00424392 _____ () C:\Windows\system32\FNTCACHE.DAT2014-07-10 22:04 - 2014-05-07 09:36 - 00000000 ___SD () C:\Windows\system32\CompatTel2014-07-10 22:04 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism2014-07-10 22:04 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism2014-07-10 22:02 - 2010-02-27 22:27 - 00000000 ____D () C:\ProgramData\Microsoft Help2014-07-10 22:00 - 2013-07-11 05:36 - 00000000 ____D () C:\Windows\system32\MRT2014-07-10 21:57 - 2010-09-26 09:34 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe2014-07-10 21:32 - 2014-07-10 21:30 - 551293744 _____ () C:\Users\Dave\Desktop\Windows6.1-KB947821-v33-x64.msu2014-07-10 21:11 - 2014-07-10 21:11 - 00000000 ____D () C:\Windows\CheckSur2014-07-08 20:19 - 2012-03-30 21:16 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe2014-07-08 20:19 - 2012-03-30 21:16 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater2014-07-08 20:19 - 2011-06-09 10:26 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl2014-07-05 10:36 - 2014-06-22 08:19 - 00000000 ____D () C:\Users\Dave\Documents\Tokorozawas2014-07-04 08:41 - 2010-09-25 11:48 - 00000000 ____D () C:\Users\Dave\AppData\Local\CrashDumps2014-07-03 08:23 - 2009-07-14 01:08 - 00032648 _____ () C:\Windows\Tasks\SCHEDLGU.TXT2014-06-29 22:09 - 2014-07-10 21:54 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll2014-06-29 22:04 - 2014-07-10 21:54 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll2014-06-27 23:16 - 2014-06-27 23:16 - 00000110 _____ () C:\Users\Dave\Desktop\PCVST contacts.txt2014-06-27 22:07 - 2013-07-29 07:54 - 00000000 ____D () C:\Users\Dave\AppData\Roaming\vlc2014-06-27 21:39 - 2014-06-27 21:39 - 00001068 _____ () C:\Users\Public\Desktop\VLC media player.lnk2014-06-27 21:39 - 2013-07-29 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN Some content of TEMP:====================C:\Users\Dave\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnjm074.dllC:\Users\Dave\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exeC:\Users\Dave\AppData\Local\Temp\jre-7u40-windows-i586-iftw.exeC:\Users\Dave\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exeC:\Users\Dave\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exeC:\Users\Dave\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exeC:\Users\Dave\AppData\Local\Temp\Quarantine.exeC:\Users\Dave\AppData\Local\Temp\UNT3F58.tmp.exeC:\Users\Dave\AppData\Local\Temp\UNT3F59.tmp.exeC:\Users\Dave\AppData\Local\Temp\UNT3F69.tmp.exeC:\Users\Dave\AppData\Local\Temp\UNT3F6B.tmp.exeC:\Users\Dave\AppData\Local\Temp\UNT3F6E.tmp.exeC:\Users\Dave\AppData\Local\Temp\UNT3F6F.tmp.exeC:\Users\Dave\AppData\Local\Temp\vlc-2.1.3-win32.exeC:\Users\Dave\AppData\Local\Temp\VOPackage.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-07-19 06:37 ==================== End Of Log ============================
  11. I have used MBAM for a long time now and have never had any troubles with it. However, ever since I downloaded the new version (the current version), I have had many issues. If in the slight chance that MBAM decides to cooperate with me, I will run a scan. However, usually half-way through the scan MBAM simply quits on me and shuts down completely. More recently, though, every time I try to start MBAM up, it does not let me click buttons. If I click on "Scan Now", the program does nothing. It was as if I had not even clicked anything at all. This is the same with "Settings, Scan, History, Update Now, etc." Sometimes the program will just close down. I already restarted my computer, downloaded MBAM clean and used that, redownloaded MBAM, but nothing seems to work. I do have Avast, if that matters at all. Please help. Thank you!
  12. hi guys! i need some help with my samsung laptop.i got windows 7 OS and core i7 intel.it constantly hangs/freezes in the middle of my usage and can't do anything after that except reboot by turning off through the power button of the laptop,it also freezes when it gets to the end of my malwarebytes full scan.when i run it on safe mode it works fine and no freezing/hanging of the system.i suspect there is a virus infection.please help me! thanks in advance
  13. Hi my computer has started to freeze and not respond after i make full system scans with malwarbytes its really anoying and i wonder what has happend ? no other program *including* my norton full system scans have any of this problems. i have had malwarebytes for 3 months and this started happening 1 week ago the first time now it happens everytime the full system scan has been completed. I use windows 8.1 and have been since day 1 with malwarebytes free version not the pro version. as i said it has worked flawlessly up to now . Cheers Var.
  14. Computer freezes for long periods of time randomly and boots up and runs real slow. I've done a little cleaning and ran a registry program that a computer guy helped me with and it has helped a little. is it possible that my Avast or malwarebytes let something thru and should I also have a spyware program like spybot on here? Thanks for your help.
  15. Hi. I am a computer tech, web designer, and help businesses and individuals remove viruses and malware on their systems using a number of hi-tech software tools. I recently purchased the Pro version of MalwareBytes Anti-Malware and have tried several times to use it at a client's business to remove the threats it found. MalwareBytes Anti-Malware Hangs for Hours When Attempting to Remove the Checked Threats - And I can't do anything else with it. The system runs Window 7 Ultimate, on a Core i7, with 16GB RAM and Several Drives of 1TB to 2TB. I want to clean up my client's system before doing a Windows 7 Ultimate "Repair" to further clean up other issues. Would appreciate some help. Thanks in advance, - Carlos P.S. I have attached screenshots of the files it found and I have checked. The unchecked files are installations of my own set of tools to help my clients and appear as malware because of the way they scour the computer.
  16. Laptop W/ xp professional sp3 x 64bit. System starts slow, runs slow, freezes frequently, scr saver stopped working, I have run multiple scans w/ MBAM, Avast AV, TDSkiller, Norton Power eraser, MBAR Beta, nothing found. Cant support 2 monitors. Second monitor lags. I'm out of leads. Is it time to reinstal OS? Please advise. Thank You...
  17. Hi. When I try to run a quick/full scan, malwarebytes stops responding after a minute or two and basically freezes my computer. This doesn't happen in safe mode. I tried following the tips in section L in the FAQ several times but it still freezes. I use avira internet security 2012 so I figured that it might be interfering with mbam and added: mbam.exe, mbamgui.exe and mbamservice.exe as exceptions in both the realtime protection and system scanner but it doesn't seem to help. I'm a bit worried that it might be caused by malware as I got infected with the ukash virus recently but removed it by rebooting into safe mode and downloading and running mbam. Since then I've run full scans with avira, eset, spybot, and superantispyware which have all come back clean so I doubt the freezing is caused by malware. Any help is greatly appreciated.
  18. Hi,On my friends laptop,mbam freezes at aprox 20 secs when it gets to this file c:/boot/bcd.log. I've tried uninstalling and then running mbam clean tool then reinstalling but same thing happens. Also when mbam freezes it says "not responding" then the laptop crashes and it has to be turned off at the power button. His os is Windows Vista home premium 64bit.Thanks in advance for any help.Neil.
  19. Hi, I am running Windows Vista Home Premium SP2 32-bit on a Dell Dimension DXPO61 Intel Core 2CPU 6700@2.66Ghz with 4GB RAM. Malwarebytes has been hanging and freezing every time I run a scan lately. I have to do a hard re-start and the scan will not complete. I am also running Avast. I tried running the scan in safe mode and the same thing happens. I should mention that Windows has been unable to complete and install updates for quite some time. My computer is becoming unusable. Please help!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.