Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
The Proxy server isn't responding for Internet Explorer and Google Crome still after resetting...
Message
<blockquote data-quote="Jason Bashaw" data-source="post: 303163" data-attributes="member: 31003"><p>Here are the results from the zoek scan.</p><p></p><p></p><p>Zoek.exe v5.0.0.0 Updated 21-11-2014</p><p>Tool run by Bashaws on Fri 11/21/2014 at 13:05:19.75.</p><p>Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64</p><p>Running in: Normal Mode Internet Access Detected</p><p>Launched: C:\Users\Bashaws\Downloads\zoek.exe [Scan all users] [Script inserted]</p><p></p><p>==== Older Logs ======================</p><p></p><p>C:\zoek-results2014-11-21-173733.log 425 bytes</p><p></p><p>==== System Restore Info ======================</p><p></p><p>11/21/2014 1:06:09 PM Zoek.exe System Restore Point Created Succesfully.</p><p></p><p>==== Deleting CLSID Registry Keys ======================</p><p></p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13453481-3F12-40A3-9EC4-435CF367C31B} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ADF3594-2659-44A0-BA28-E3B273238AE7} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2209DFF1-ADA4-47D8-826C-32FDDD29019} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{223D32BC-1BD2-4885-BAE4-D77D6DBB126} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{239EEA5A-402E-4FC2-8C2A-61A6CE89C98} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25045F98-C00C-4C4B-8F2B-2A700F3A277} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28258386-E7BB-4039-8DF3-F81F34D7A28E} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{282BDCBE-DB04-457A-87FD-E57FA7C25B0} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C6C59F1-7E0F-49BE-999A-2397BDB3B080} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39DDDB08-2B82-4194-8BF7-3EC4494A3685} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3F53A99A-ADBE-4D13-8B9A-0C2D01A385} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43519EC6-5DE4-48A9-9CBB-6A6E9D74BD10} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{45A7B4C-CEF4-4A2C-AEC4-05046AF16B} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47D9421A-5DE3-4429-B173-7E2B5D9199A} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47E556F0-9F4E-493F-A2D-F62E14BAB9B} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4A98F04A-F56D-4542-98D7-2DCEC08FABC2} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B4E7C87-BD19-4DEB-BA14-51C344A165D4} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4D6C9E2E-E3CB-4667-8758-CD7A0C683C0} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{505DDA0-EB2B-4129-A794-743F2545A35A} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{52DE4212-D686-44DF-88B5-99B3B1FAC0} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59D7390C-1C0E-4A0B-9DE2-87862A813A2} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59F7C0A5-D69E-4B5D-89BE-16546C86738B} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0724FC-AAB4-4ED5-AFBA-DD6E23AAA62} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6096763C-1ED5-473A-AEF7-B7CE2843AA8C} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61518021-35C-4850-AED2-75A07FAB3DE6} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61F72C97-9FA5-475D-B0D0-419016B69423} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6947EA5A-5B7C-4A21-BC1A-C2C61878461C} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7144B94E-A09A-4B9B-8A8B-A16F27B3C926} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{73FBB0FA-3842-4844-9FF2-9120D968363} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78B52456-5434-436C-83AB-1F693719D62C} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A6D44D6-7A28-48DC-8BFE-BD4BCCCFC3F} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81A05CA-7E2E-4698-B91B-DEBE65E8D37B} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81FBF004-689-4A79-B0EA-FA44CA411091} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{838C4B8E-1274-4824-9CFC-4F3EABC7059} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85036D24-C26-49D5-9A84-21B195AE58D7} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{861660C7-7034-4EE2-B84F-4EB1A55C3B23} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A13DA1C-9B5F-44B9-84A8-C8DAD6E2C6CF} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{906CE1D9-B34F-444B-AC9E-D289E3190BC} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9118E574-8264-456F-A34B-AB8D68FE55B6} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{91BBB577-D03E-4692-9C7B-BAF2F876AC88} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9251423A-3FD0-4F38-98B0-1D17D7DE9E98} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95E659FC-D7C1-4268-8C2-99526D6298A} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{993F75CC-11FD-4EEF-9C89-EEC4A35D851} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C094BCB-29DE-424D-87E1-31AFEA1F4B71} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0952E42-BD32-4FEF-9012-4C2328EA714E} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B9488363-E6E0-47AA-8747-47E7FBECCA3F} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BDA5304C-C664-4B74-90AC-57498753A35} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C11D189E-377E-45EF-AA8C-3A25B1A5EF0} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C166490B-6A4A-4D97-BE18-1A5982FD736} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C39CCF92-E28D-4335-92B9-673F1A7045E6} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CDB2D16E-1EEC-4057-92D0-FEF2E874BEB} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D4584127-D59C-4BEC-B843-3E2B6D352E78} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D9E53A7B-4420-4697-A66A-AF8524CF7A73} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB2138FA-890D-4E47-80BC-77A9F2F6C8C} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E5C2BEA9-C41B-46B5-BDE7-9E843B3EF38} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E63712E3-E731-4D57-9688-CE66AFA434} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6F70A95-1E64-43D9-A39B-FE9F6F3EE446} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E70D6BB1-50CB-4C44-A1FB-F7E6BE135D6C} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E9805106-3D5A-4632-8EBD-6A786050133A} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F8610344-569-469E-8EFF-F8D484D19091} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA75188E-76C9-4905-8793-F222F5E44D4} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC15FD82-D9D2-431C-8EA9-EFA1DE29CB33} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FCD79638-F8A5-459E-88C9-2D29C427B4A} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FF88526F-1EB8-4FE6-AD63-E33248210} deleted successfully</p><p></p><p>==== Deleting CLSID Registry Values ======================</p><p></p><p></p><p>==== Deleting Services ======================</p><p></p><p></p><p>==== Batch Command(s) Run By Tool======================</p><p></p><p></p><p>==== Deleting Files \ Folders ======================</p><p></p><p>C:\PROGRA~2\690b9ca4-a957-4b5e-89e9-2f3b2f5b0629 deleted</p><p>C:\LIL8EE6.tmp deleted</p><p>C:\LIL8F15.tmp deleted</p><p>C:\LIL8F34.tmp deleted</p><p>C:\LIL8F72.tmp deleted</p><p>C:\LIL8FD0.tmp deleted</p><p>C:\LIL8FE0.tmp deleted</p><p>C:\LIL8FE1.tmp deleted</p><p>C:\LIL906C.tmp deleted</p><p>C:\LIL908B.tmp deleted</p><p>C:\Users\Bashaws\AppData\Roaming\WB.CFG deleted</p><p>C:\Users\Bashaws\AppData\Roaming\AlawarEntertainment deleted</p><p>C:\Users\Bashaws\AppData\Roaming\YoudaGames deleted</p><p>C:\PROGRA~3\Avg_Update_0814tb deleted</p><p>C:\PROGRA~3\Avg_Update_1114tb deleted</p><p>C:\PROGRA~3\Kromtech deleted</p><p>C:\Users\Bashaws\AppData\Local\Kromtech deleted</p><p>C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services deleted</p><p>C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted</p><p>C:\windows\patsearch.bin deleted</p><p>C:\windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted</p><p>C:\windows\tasks\AVG-Secure-Search-Update_0214b_rel.job deleted</p><p>C:\windows\tasks\AVG-Secure-Search-Update_0214b_rmv.job deleted</p><p>C:\windows\tasks\AVG-Secure-Search-Update_0414c_rel.job deleted</p><p>C:\windows\tasks\AVG-Secure-Search-Update_0414c_rmv.job deleted</p><p>C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0214b_rel deleted</p><p>C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0214b_rmv deleted</p><p>C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0414c_rel deleted</p><p>C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0414c_rmv deleted</p><p>C:\windows\SysNative\drivers\Msft_Kernel_webinstrT_01009.Wdf deleted</p><p>C:\windows\SysNative\config\systemprofile\Searches deleted</p><p>C:\windows\Syswow64\shoD3E1.tmp deleted</p><p>"C:\windows\Installer\1361c5.msi" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\APPKE" deleted</p><p>"C:\windows\tasks\APPKE.job" deleted</p><p>"C:\windows\SysNative\tasks\APPKE" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\BRQCBGD" deleted</p><p>"C:\windows\tasks\BRQCBGD.job" deleted</p><p>"C:\windows\SysNative\tasks\BRQCBGD" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\KS" deleted</p><p>"C:\windows\tasks\KS.job" deleted</p><p>"C:\windows\SysNative\tasks\KS" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\MOHDO" deleted</p><p>"C:\windows\tasks\MOHDO.job" deleted</p><p>"C:\windows\SysNative\tasks\MOHDO" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\MTIQ" deleted</p><p>"C:\windows\tasks\MTIQ.job" deleted</p><p>"C:\windows\SysNative\tasks\MTIQ" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\QCARYUG" deleted</p><p>"C:\windows\tasks\QCARYUG.job" deleted</p><p>"C:\windows\SysNative\tasks\QCARYUG" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\QYKA" deleted</p><p>"C:\windows\tasks\QYKA.job" deleted</p><p>"C:\windows\SysNative\tasks\QYKA" deleted</p><p>"C:\Users\Bashaws\AppData\Roaming\SWGXET" deleted</p><p>"C:\windows\tasks\SWGXET.job" deleted</p><p>"C:\windows\SysNative\tasks\SWGXET" deleted</p><p></p><p>==== Files Recently Created / Modified ======================</p><p></p><p>====== C:\windows ====</p><p>====== C:\Users\Bashaws\AppData\Local\Temp ====</p><p>2014-11-18 22:56:33 E0DC8C6BBC787B972A9A468648DBFD85 1008128 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\libiconv2.dll</p><p>2014-11-18 22:56:33 D202BAA425176287017FFE1FB5D1B77C 103424 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\libintl3.dll</p><p>2014-11-18 22:56:33 57CAC848FA14AE38F14F9441F8933282 140288 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\pcre3.dll</p><p>2014-11-18 22:56:33 547C43567AB8C08EB30F6C6BACB479A3 79360 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\regex2.dll</p><p>2014-11-18 22:56:32 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\erunt\ERUNT.EXE</p><p>2014-11-18 00:45:42 C6D7703993FCC51A405E09B4B6085C8F 991040 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\APISupport\APISupport.dll</p><p>2014-11-18 00:45:40 67789261821FDAD768C21E7471C188EA 541504 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\plugins\ChromeApiPlugin.dll</p><p>2014-11-18 00:45:40 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-18 00:35:52 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-18 00:35:52 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-18 00:35:52 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-18 00:35:52 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-18 00:35:52 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-18 00:35:50 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-18 00:35:45 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-18 00:18:42 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-18 00:18:42 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-18 00:18:42 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-18 00:18:42 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-18 00:18:42 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-18 00:18:40 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-18 00:18:36 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-18 00:14:05 6006ADBF1CAE8AA3286140159B25C668 220264 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\~un0\u0.exe</p><p>2014-11-18 00:12:50 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite99056.dll</p><p>2014-11-18 00:09:38 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_3152_28189\CRX_INSTALL\TBHostSupport\TBHostSupport.dll</p><p>2014-11-18 00:07:39 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite11279.dll</p><p>2014-11-17 19:44:39 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 19:44:39 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 19:44:39 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 19:44:39 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 19:44:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 19:44:35 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 19:44:28 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 19:43:59 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 19:43:59 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 19:43:59 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 19:43:59 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 19:43:59 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 19:43:55 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 19:43:49 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 19:36:01 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 19:35:59 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 19:35:56 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 19:35:56 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 19:35:56 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 19:35:37 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 19:34:47 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 19:33:26 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite81348.dll</p><p>2014-11-17 19:28:34 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 19:28:34 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 19:28:34 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 19:28:34 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 19:28:34 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 19:28:31 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 19:28:23 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 19:28:13 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite10671.dll</p><p>2014-11-17 05:51:39 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 05:51:39 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 05:51:39 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 05:51:39 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 05:51:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:51:38 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 05:51:29 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 05:50:30 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 05:50:30 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:50:29 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 05:50:29 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 05:50:29 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 05:50:26 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 05:50:19 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 05:49:44 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 05:49:44 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 05:49:44 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 05:49:44 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:49:43 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 05:49:42 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 05:49:37 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 05:46:07 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:46:06 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 05:46:06 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 05:46:06 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 05:46:06 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 05:46:04 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 05:46:00 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 05:44:43 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:44:42 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 05:44:42 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 05:44:42 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 05:44:42 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 05:44:41 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 05:44:33 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 05:41:31 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:41:30 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 05:41:30 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 05:41:30 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 05:41:30 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 05:41:27 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 05:41:17 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 05:39:37 C6D7703993FCC51A405E09B4B6085C8F 991040 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\APISupport\APISupport.dll</p><p>2014-11-17 05:39:35 67789261821FDAD768C21E7471C188EA 541504 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\plugins\ChromeApiPlugin.dll</p><p>2014-11-17 05:39:35 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:33:00 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 05:33:00 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 05:33:00 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 05:33:00 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 05:33:00 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:32:55 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 05:32:47 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 05:04:40 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\21686uninstall.exe</p><p>2014-11-17 04:33:49 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll</p><p>2014-11-17 04:33:49 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll</p><p>2014-11-17 04:33:49 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll</p><p>2014-11-17 04:33:49 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll</p><p>2014-11-17 04:33:49 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 04:33:47 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 04:33:40 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 04:18:44 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_5296_12756\CRX_INSTALL\Search\plugins\npConduitNewTabPlugin.dll</p><p>2014-11-17 04:18:26 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_5296_12756\CRX_INSTALL\TBHostSupport\TBHostSupport.dll</p><p>2014-11-17 04:16:15 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite17462.dll</p><p>2014-11-17 03:58:46 E7CAED467F80B29F4E63BA493614DBB1 127488 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\OSProvider.dll</p><p>2014-11-17 03:58:46 CCF6EC908566900E9626DC3360B9E35E 112128 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismCorePS.dll</p><p>2014-11-17 03:58:46 A909643B215FC0587A043C9C15959D41 186368 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismProv.dll</p><p>2014-11-17 03:58:46 A7AFC7D5313C94E1060648609DAFCE64 271360 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\SmiProvider.dll</p><p>2014-11-17 03:58:46 A492B7C2C223C5C6163F45AA5275BE34 302080 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\UnattendProvider.dll</p><p>2014-11-17 03:58:46 85F83E44A77DEA06780FB670CC8A0359 438272 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DmiProvider.dll</p><p>2014-11-17 03:58:46 7B38D7916A7CD058C16A0A6CA5077901 271360 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\wdscore.dll</p><p>2014-11-17 03:58:46 739968678548BA15F6B9372E8760C012 444416 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\TransmogProvider.dll</p><p>2014-11-17 03:58:46 711325BFDAC759FA69B9EDAF7EA0319C 471040 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\WimProvider.dll</p><p>2014-11-17 03:58:46 64B66A41B61D511E8EBE94625EC0E45A 53760 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\FolderProvider.dll</p><p>2014-11-17 03:58:46 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismHost.exe</p><p>2014-11-17 03:58:46 45FF4FA5CA5432BFCCDED4433FE2A85B 216576 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\MsiProvider.dll</p><p>2014-11-17 03:58:46 08C71F57BDFC3DF75A51B12DDF69A33B 312832 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\IntlProvider.dll</p><p>2014-11-17 03:58:45 78B4D1F2FE371A6E85C66DD3D40D404A 183296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\CompatProvider.dll</p><p>2014-11-17 03:58:45 6EBC2138A3C9B3B7D1E69E0629B6C815 289792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismCore.dll</p><p>2014-11-17 03:58:45 1C9B5D23AC0CD2E6BF4B29F35FE219AE 1672192 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\CbsProvider.dll</p><p>2014-11-17 03:47:19 144A9AA1A785234E820D44A0D2B6423D 7820568 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\supoptsetup.exe</p><p>2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\156Btmp\silentsddsetup.exe</p><p>2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14C0tmp\silentsddsetup.exe</p><p>2014-11-17 03:46:38 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\154Btmp\cloudscout.exe</p><p>2014-11-17 03:46:34 18457FC029B26A8E7626D3D4E7755270 88064 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\B7D701F0-473C-CE46-91F8-E5C522D8F595.dll</p><p>2014-11-17 03:46:32 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14AEtmp\cloudscout.exe</p><p>2014-11-17 03:46:24 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1508tmp\5555-1001_newplayer.exe</p><p>2014-11-17 03:46:19 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\147Btmp\5555-1001_newplayer.exe</p><p>2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14A8tmp\jfilemanagersetup.exe</p><p>2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\144Btmp\jfilemanagersetup.exe</p><p>2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1518tmp\superoptimizersetup.exe</p><p>2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\148Dtmp\superoptimizersetup.exe</p><p>2014-11-17 03:39:44 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite81476.dll</p><p>2014-11-17 03:31:16 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12895uninstall.exe</p><p>2014-11-17 03:24:27 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite52508.dll</p><p>2014-11-17 03:12:26 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite43229.dll</p><p>2014-11-17 03:01:26 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C5tmp\jfilemanagersetup.exe</p><p>2014-11-17 03:01:24 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C8tmp\cloudscout.exe</p><p>2014-11-17 02:19:24 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite18223.dll</p><p>2014-11-17 01:33:48 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite61843.dll</p><p>2014-11-17 01:25:06 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite80082.dll</p><p>2014-11-17 01:22:15 F1E994BD5C745F5403098727B3684273 2129408 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\RarSFX0\curl.exe</p><p>2014-11-17 01:20:51 DD7F24DACD85EEDD221A55313E97DA10 5826632 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\optprosetup.exe</p><p>2014-11-17 01:19:57 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite.dll</p><p>2014-11-16 13:18:10 3EAE59EEFFEC1E7699185DEF6C4105B5 175123 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\is45637729\1879879_stp\Generic_vo.exe</p><p>2014-11-08 08:47:13 5C73E64374D9BA37AC5569D1F7DE5C9B 665682 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\sqlite3.dll</p><p>2014-11-08 08:33:34 7AAB90847C56E6F7E922BB29D5B3EA8A 601088 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\Quarantine.exe</p><p>====== Java Cache =====</p><p>====== C:\windows\SysWOW64 =====</p><p>2014-11-18 21:47:52 ADFB31FA72AFE0298A60BF4AC1045A42 550912 ----a-w- C:\windows\SysWOW64\kerberos.dll</p><p>2014-11-18 21:47:52 98B3C919C6B9C5F810FF2CAFA339822B 186880 ----a-w- C:\windows\SysWOW64\pku2u.dll</p><p>2014-11-17 04:16:25 B6F002B6776D5E658F95830BE910788F 552 ----a-w- C:\windows\SysWOW64\schtasks.bin</p><p>2014-11-12 01:33:14 9AB39ADD28C7C1A685B1EA8C6A25CF08 146432 ----a-w- C:\windows\SysWOW64\msaudite.dll</p><p>2014-11-12 01:33:14 980EEEE8815DA7593708774D1225BD35 681984 ----a-w- C:\windows\SysWOW64\adtschema.dll</p><p>2014-11-12 01:33:13 9216ABFD53F5EC1F35C3554AD1A175DE 22016 ----a-w- C:\windows\SysWOW64\secur32.dll</p><p>2014-11-12 01:33:13 13E5B1CD503A4B21E9F0A2D55A00198B 96768 ----a-w- C:\windows\SysWOW64\sspicli.dll</p><p>2014-11-12 01:33:10 B6273619A3DF28F03B64E911E45A6AB2 30720 ----a-w- C:\windows\SysWOW64\iernonce.dll</p><p>2014-11-12 01:33:10 5D5640C34C4A97467F77489DBB157568 47616 ----a-w- C:\windows\SysWOW64\ieetwproxystub.dll</p><p>2014-11-12 01:33:09 FB56C76FEA44693752BD99D7D9930ABA 341168 ----a-w- C:\windows\SysWOW64\iedkcs32.dll</p><p>2014-11-12 01:33:09 A6E51BDCB8F4B84E874F918F0452763D 76288 ----a-w- C:\windows\SysWOW64\mshtmled.dll</p><p>2014-11-12 01:33:08 93074C4FA92A8399404D032F6AF72C1B 19781632 ----a-w- C:\windows\SysWOW64\mshtml.dll</p><p>2014-11-12 01:33:08 843BD9DAF03ABB6761DEE6D155301F28 60416 ----a-w- C:\windows\SysWOW64\JavaScriptCollectionAgent.dll</p><p>2014-11-12 01:33:08 66F4FFDBCD501260ABC198317D2B0D10 285696 ----a-w- C:\windows\SysWOW64\dxtrans.dll</p><p>2014-11-12 01:33:08 4772DB007FFBD4BBE3F526704BCA67FE 1310208 ----a-w- C:\windows\SysWOW64\urlmon.dll</p><p>2014-11-12 01:33:08 26EE6C9780A8FC872C60F9E35D7EBD4B 688640 ----a-w- C:\windows\SysWOW64\msfeeds.dll</p><p>2014-11-12 01:33:07 5972510EF1C6097D9C14C17387A5EDB2 2724864 ----a-w- C:\windows\SysWOW64\mshtml.tlb</p><p>2014-11-12 01:33:07 19D68FDEE62519C5A0387EB4E88A01EF 62464 ----a-w- C:\windows\SysWOW64\iesetup.dll</p><p>2014-11-12 01:33:06 FA310BD4A5DE904445DDDE54C5A654F2 2277376 ----a-w- C:\windows\SysWOW64\iertutil.dll</p><p>2014-11-12 01:33:06 7748B3DDDC92C7FC11F7462DB872E8E7 2051072 ----a-w- C:\windows\SysWOW64\inetcpl.cpl</p><p>2014-11-12 01:33:06 5E01004CBC35A78FE2AB4016CCAD4760 708096 ----a-w- C:\windows\SysWOW64\ieapfltr.dll</p><p>2014-11-12 01:33:05 A1A2EE55A2C69F79AED00973E604B9C4 418304 ----a-w- C:\windows\SysWOW64\dxtmsft.dll</p><p>2014-11-12 01:33:05 8A46404AC1AEB22AA2D4C906D0FC86C2 620032 ----a-w- C:\windows\SysWOW64\jscript9diag.dll</p><p>2014-11-12 01:33:05 8585BC27224F97458C186AA085B754A7 478208 ----a-w- C:\windows\SysWOW64\ieui.dll</p><p>2014-11-12 01:33:05 6DDC0F44A70976C492CB1666BA9A7912 47104 ----a-w- C:\windows\SysWOW64\jsproxy.dll</p><p>2014-11-12 01:33:05 4F8CD74CD69A94ED1A5D7E837A356F4E 115712 ----a-w- C:\windows\SysWOW64\ieUnatt.exe</p><p>2014-11-12 01:33:04 36EE0A2A981617610F921BCBB997DB06 12819456 ----a-w- C:\windows\SysWOW64\ieframe.dll</p><p>2014-11-12 01:33:02 AE39939F1E25401B9A4952A7A8D372AC 4298240 ----a-w- C:\windows\SysWOW64\jscript9.dll</p><p>2014-11-12 01:33:02 4169C6A6613856D69224498620F0C2B5 1155072 ----a-w- C:\windows\SysWOW64\mshtmlmedia.dll</p><p>2014-11-12 01:33:01 9ED3132B7F0D36FA9911721E8B2CB968 501248 ----a-w- C:\windows\SysWOW64\vbscript.dll</p><p>2014-11-12 01:33:01 755D0A90CFC4BCB178D7070B0351F0AE 64000 ----a-w- C:\windows\SysWOW64\MshtmlDac.dll</p><p>2014-11-12 01:33:01 6DD7D61A8EF3DFEC4FAEFEB395E77424 1892864 ----a-w- C:\windows\SysWOW64\wininet.dll</p><p>2014-11-12 01:33:01 139E85C4E5DF322AE1BF6544D8C32B0A 168960 ----a-w- C:\windows\SysWOW64\msrating.dll</p><p>2014-11-12 01:32:03 537184E7306E06BB22C5B93D2AFA4DF8 1237504 ----a-w- C:\windows\SysWOW64\msxml3.dll</p><p>2014-11-12 01:32:03 09FA271EE1F9AD68B2D1C1C210F4B71F 2048 ----a-w- C:\windows\SysWOW64\msxml3r.dll</p><p>2014-11-12 01:32:02 5FDBDEECA34E73325D87C5ACD16A3EEC 701440 ----a-w- C:\windows\SysWOW64\IMJP10K.DLL</p><p>2014-11-12 01:32:01 FD79B005E849DF3D7E9B5EB7A637C528 374784 ----a-w- C:\windows\SysWOW64\AudioEng.dll</p><p>2014-11-12 01:32:01 8D338464B851DDD76E2B876A3E09EB70 442880 ----a-w- C:\windows\SysWOW64\AUDIOKSE.dll</p><p>2014-11-12 01:32:00 AA7325057A1E1CC401798C0B1238E182 195584 ----a-w- C:\windows\SysWOW64\AudioSes.dll</p><p>2014-11-12 01:31:51 8FE6AB488ECDC60930CE973A7051B0D4 221184 ----a-w- C:\windows\SysWOW64\ncrypt.dll</p><p>2014-11-12 01:31:51 8CFAEFCD7F1E004950FCAE870A501B3E 248832 ----a-w- C:\windows\SysWOW64\schannel.dll</p><p>2014-11-12 01:31:50 B580A6B9932669DE703001AEE66D5BB1 259584 ----a-w- C:\windows\SysWOW64\msv1_0.dll</p><p>2014-11-12 01:31:50 9CEA80FFC617E6B6DD7B52E6225C0D38 65536 ----a-w- C:\windows\SysWOW64\TSpkg.dll</p><p>2014-11-12 01:31:50 37BC079204BF9B087D6DE6B728908B4B 172032 ----a-w- C:\windows\SysWOW64\wdigest.dll</p><p>2014-11-12 01:31:49 8205E55DFB11809E5F2AAD1C48840535 17408 ----a-w- C:\windows\SysWOW64\credssp.dll</p><p>2014-11-12 01:31:39 0F39AC3274312EFFD03928291E8BA7CA 67584 ----a-w- C:\windows\SysWOW64\packager.dll</p><p>2014-11-12 01:31:33 CB55B9AAB060C803BE4AD229AA0FEC28 2363904 ----a-w- C:\windows\SysWOW64\msi.dll</p><p>2014-11-12 01:31:29 EDA54D2E17C0271D2CDA946ABE344110 571904 ----a-w- C:\windows\SysWOW64\oleaut32.dll</p><p>====== C:\windows\SysWOW64\drivers =====</p><p>====== C:\windows\Sysnative =====</p><p>2014-11-18 23:27:42 3C7F8E8398024D005886C764E28610EB 54016 ----a-w- C:\windows\Sysnative\.crusader</p><p>2014-11-18 21:47:52 8A8CB073A4B9F9D97CFA8CA9C1C851CE 728064 ----a-w- C:\windows\Sysnative\kerberos.dll</p><p>2014-11-18 21:47:52 1306E6A1BF4D506CD687DF9F947270F2 241152 ----a-w- C:\windows\Sysnative\pku2u.dll</p><p>2014-11-12 01:33:18 F992AAE3F2DF1D7D2A75B681B0C5280E 304640 ----a-w- C:\windows\Sysnative\generaltel.dll</p><p>2014-11-12 01:33:17 9F1FA4F36406693C77CC5779AA7E532D 228864 ----a-w- C:\windows\Sysnative\aepdu.dll</p><p>2014-11-12 01:33:17 6021CF6A11DE9B5FC1BD210B6855C497 424448 ----a-w- C:\windows\Sysnative\aeinv.dll</p><p>2014-11-12 01:33:14 C4C1B73FC2FF151BA08E1EAFDE2A2FAF 1460736 ----a-w- C:\windows\Sysnative\lsasrv.dll</p><p>2014-11-12 01:33:14 58F87BF5659C8EBC61EB439C916F2F9A 681984 ----a-w- C:\windows\Sysnative\adtschema.dll</p><p>2014-11-12 01:33:14 008CD4EBFABCF78D0F19B3778492648C 683520 ----a-w- C:\windows\Sysnative\termsrv.dll</p><p>2014-11-12 01:33:13 7184AEACDA13E64B10F84E9DD79C8A01 146432 ----a-w- C:\windows\Sysnative\msaudite.dll</p><p>2014-11-12 01:33:09 854B230F5D77486B67D809FFB8A10C7E 2724864 ----a-w- C:\windows\Sysnative\mshtml.tlb</p><p>2014-11-12 01:33:09 7293701905DF1F40760C851F20DDC9EC 114688 ----a-w- C:\windows\Sysnative\ieetwcollector.exe</p><p>2014-11-12 01:33:09 4E47ABA3C6C5032446A2AF7EFD026037 716800 ----a-w- C:\windows\Sysnative\ie4uinit.exe</p><p>2014-11-12 01:33:09 26BC4EC95E363DD59171710E22108F15 34304 ----a-w- C:\windows\Sysnative\iernonce.dll</p><p>2014-11-12 01:33:09 1F3794CE1AEA5DA12ACF90210EAE4ECB 48640 ----a-w- C:\windows\Sysnative\ieetwproxystub.dll</p><p>2014-11-12 01:33:08 33098C85B789630865CD3F5D22FB0DFC 77824 ----a-w- C:\windows\Sysnative\JavaScriptCollectionAgent.dll</p><p>2014-11-12 01:33:06 56651A76C63DAF2C593F1F767FC8A856 1550336 ----a-w- C:\windows\Sysnative\urlmon.dll</p><p>2014-11-12 01:33:06 1C216980E7D21100A357B52B3C45F78D 388272 ----a-w- C:\windows\Sysnative\iedkcs32.dll</p><p>2014-11-12 01:33:05 E17C34BECCD1388E9B386A9F82F01222 4096 ----a-w- C:\windows\Sysnative\ieetwcollectorres.dll</p><p>2014-11-12 01:33:05 C6A719FD0B07B2DD0ADACD07636F4BAD 968704 ----a-w- C:\windows\Sysnative\MsSpellCheckingFacility.exe</p><p>2014-11-12 01:33:05 2A1A7F17C906941334C6A67E935F214B 316928 ----a-w- C:\windows\Sysnative\dxtrans.dll</p><p>2014-11-12 01:33:05 1E30BECF0DB35481588FB72C9CF97CA2 800768 ----a-w- C:\windows\Sysnative\msfeeds.dll</p><p>2014-11-12 01:33:04 BD708EBEDB35E474F1A19747154ACC47 799232 ----a-w- C:\windows\Sysnative\ieapfltr.dll</p><p>2014-11-12 01:33:04 6507CA9349500A535AF70670F248E525 66560 ----a-w- C:\windows\Sysnative\iesetup.dll</p><p>2014-11-12 01:33:03 5C9D58591D0091630452B04F35527240 2124288 ----a-w- C:\windows\Sysnative\inetcpl.cpl</p><p>2014-11-12 01:33:02 BA4EC6139B8830BBA9CC5D065CA5796C 2884096 ----a-w- C:\windows\Sysnative\iertutil.dll</p><p>2014-11-12 01:33:01 31F2A5ECFD2C75F970A3007ACD5627C7 54784 ----a-w- C:\windows\Sysnative\jsproxy.dll</p><p>2014-11-12 01:33:01 08BCDD6C9E23D00309F359620461DFE8 144384 ----a-w- C:\windows\Sysnative\ieUnatt.exe</p><p>2014-11-12 01:33:00 7EE5FBD190BF5B27F7977EA6CBF0DCAC 92160 ----a-w- C:\windows\Sysnative\mshtmled.dll</p><p>2014-11-12 01:33:00 69602F6259598A7837CB83D3608FE293 633856 ----a-w- C:\windows\Sysnative\ieui.dll</p><p>2014-11-12 01:33:00 277A4735954F1BF29EE3D138A5251BFE 490496 ----a-w- C:\windows\Sysnative\dxtmsft.dll</p><p>2014-11-12 01:33:00 154B8555A118BCFD95F358390E418B00 14390272 ----a-w- C:\windows\Sysnative\ieframe.dll</p><p>2014-11-12 01:32:59 F208D7FB40FD80EA9F123BABF687359C 6040064 ----a-w- C:\windows\Sysnative\jscript9.dll</p><p>2014-11-12 01:32:59 B6DC4597FF946B0C8B29650A71F52D4E 580096 ----a-w- C:\windows\Sysnative\vbscript.dll</p><p>2014-11-12 01:32:59 98088A13F65BE35DA3693F264740CEEC 1359360 ----a-w- C:\windows\Sysnative\mshtmlmedia.dll</p><p>2014-11-12 01:32:59 7EC80DB959695D4F927D2D601DA59F35 814080 ----a-w- C:\windows\Sysnative\jscript9diag.dll</p><p>2014-11-12 01:32:59 6FC2819A4F80AAB2DADEDFC1EFEE3C3F 2365440 ----a-w- C:\windows\Sysnative\wininet.dll</p><p>2014-11-12 01:32:58 EE3592B010E3F69D141323E592C01A1A 199680 ----a-w- C:\windows\Sysnative\msrating.dll</p><p>2014-11-12 01:32:58 4B6D9AB2ECD11AF5F6B1C42D938E0A85 88064 ----a-w- C:\windows\Sysnative\MshtmlDac.dll</p><p>2014-11-12 01:32:57 BBD6A636AAA65D874F3863280CD8373D 25110016 ----a-w- C:\windows\Sysnative\mshtml.dll</p><p>2014-11-12 01:32:03 D005697F0467BBDDAB7638496DA5DB52 2048 ----a-w- C:\windows\Sysnative\msxml3r.dll</p><p>2014-11-12 01:32:03 364ECFF4ABD9D575F4F7CF7EB7928EF3 1882624 ----a-w- C:\windows\Sysnative\msxml3.dll</p><p>2014-11-12 01:32:03 1FEBD408F32DFC523882E7DA5AC57819 878080 ----a-w- C:\windows\Sysnative\IMJP10K.DLL</p><p>2014-11-12 01:32:01 FAFCB80D42A65964B6F4945283B8C10F 296448 ----a-w- C:\windows\Sysnative\AudioSes.dll</p><p>2014-11-12 01:32:01 DE3E38431B00C2EA247C53675DCF01A0 680960 ----a-w- C:\windows\Sysnative\audiosrv.dll</p><p>2014-11-12 01:32:01 B1BB7B91C3C878FDB2874138CE81C4EF 284672 ----a-w- C:\windows\Sysnative\EncDump.dll</p><p>2014-11-12 01:32:01 A2C9E45F4069A002E985D1563D16813B 440832 ----a-w- C:\windows\Sysnative\AudioEng.dll</p><p>2014-11-12 01:32:01 9383B21A4B77C130940262DDC5F3F49B 500224 ----a-w- C:\windows\Sysnative\AUDIOKSE.dll</p><p>2014-11-12 01:31:51 A71B81AC2C14ABA013CCF1225D9E3E36 342016 ----a-w- C:\windows\Sysnative\schannel.dll</p><p>2014-11-12 01:31:51 109CC0DF72CC07A6CB59D2995255A1DA 309760 ----a-w- C:\windows\Sysnative\ncrypt.dll</p><p>2014-11-12 01:31:50 DF30FC54FFF79BC744B22A4850A3CF92 86528 ----a-w- C:\windows\Sysnative\TSpkg.dll</p><p>2014-11-12 01:31:50 55F0CF40479A1FC89CFA578909A540F2 210944 ----a-w- C:\windows\Sysnative\wdigest.dll</p><p>2014-11-12 01:31:50 47C48C705F4F1EFC99B50B43AE4301FE 314880 ----a-w- C:\windows\Sysnative\msv1_0.dll</p><p>2014-11-12 01:31:49 336BA030AB7B05300CB0B5C6AFB27176 22016 ----a-w- C:\windows\Sysnative\credssp.dll</p><p>2014-11-12 01:31:39 93C055B6AAD76360A60CB7E59A491531 3198976 ----a-w- C:\windows\Sysnative\win32k.sys</p><p>2014-11-12 01:31:39 934735F508E297504460935B71E99F0B 77824 ----a-w- C:\windows\Sysnative\packager.dll</p><p>2014-11-12 01:31:33 2720C94ADCC1727A66365CCB1CE456C4 3241984 ----a-w- C:\windows\Sysnative\msi.dll</p><p>2014-11-12 01:31:29 B938AF16A521C913791C6F7AFF032757 861696 ----a-w- C:\windows\Sysnative\oleaut32.dll</p><p>====== C:\windows\Sysnative\drivers =====</p><p>2014-11-12 01:33:14 41774FF331F609EF442B7398EE6202B1 155064 ----a-w- C:\windows\Sysnative\drivers\ksecpkg.sys</p><p>====== C:\windows\Tasks ======</p><p>2014-11-17 19:34:58 30BE14EECB6AA4093ECC81C543D15104 3322 ----a-w- C:\windows\Sysnative\Tasks\SuperFastPC_AutorunOnStartup</p><p>2014-11-17 05:44:44 3E7C7B9F299DEC4581D6794500B8D468 3110 ----a-w- C:\windows\Sysnative\Tasks\{EE798A9B-0592-4486-A96B-51EFD6F03341}</p><p>====== C:\windows\Temp ======</p><p>======= C:\Program Files =====</p><p>2014-11-18 23:10:55 -------- d-----w- C:\Program Files\HitmanPro</p><p>2014-11-17 04:00:01 -------- d-----w- C:\Program Files\COMODO</p><p>2014-10-25 01:30:14 -------- d-----w- C:\Program Files\Common Files\Wolfram Research</p><p>2014-10-25 01:30:13 -------- d-----w- C:\Program Files\Extras</p><p>======= C:\PROGRA~2 =====</p><p>2014-10-25 01:30:14 -------- d-----w- C:\PROGRA~2\COMMON~1\Wolfram Research</p><p>2014-10-25 01:30:13 -------- d-----w- C:\PROGRA~2\COMMON~1\ResearchSoft</p><p>2014-10-25 01:28:38 -------- d-----w- C:\PROGRA~2\Wolfram Research</p><p>2014-10-23 22:38:58 -------- d-----w- C:\PROGRA~2\QuickTime</p><p>======= C: =====</p><p>====== C:\Users\Bashaws\AppData\Roaming ======</p><p>2014-11-17 19:34:55 -------- d-----w- C:\Users\Bashaws\AppData\Roaming\1H1Q1V0B1L1G1N1V0M1P1Q1L1T0D1P1E2Z</p><p>2014-11-17 03:56:26 -------- d-----w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100</p><p>2014-11-17 03:03:45 FDCFDA1949FC3D2CE13A8F4F4018BDF8 7 ----a-w- C:\Users\Bashaws\AppData\Roaming\handle.txt</p><p>2014-11-17 01:29:57 -------- d-sh--w- C:\Users\Bashaws\AppData\Locallow\EmieBrowserModeList</p><p>2014-11-17 01:28:48 -------- d-sh--w- C:\Users\Bashaws\AppData\Local\EmieBrowserModeList</p><p>2014-11-17 01:22:54 -------- d-----w- C:\windows\sysWoW64\config\systemprofile\AppData\Locallow\Sun</p><p>2014-11-17 01:22:13 -------- d-----w- C:\Users\Bashaws\AppData\Local\IsolatedStorage</p><p>2014-10-25 01:31:12 -------- d-----w- C:\Users\Bashaws\AppData\Roaming\MathematicaPlayer</p><p>2014-10-25 01:31:12 -------- d-----w- C:\Users\Bashaws\AppData\Local\MathematicaPlayer</p><p>====== C:\Users\Bashaws ======</p><p>2014-11-21 00:59:54 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih(1).exe</p><p>2014-11-18 23:10:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro</p><p>2014-11-18 23:10:06 -------- d-----w- C:\ProgramData\HitmanPro</p><p>2014-11-18 23:09:18 00FD7C6BEDEE9B24B0DB02B68B07AD54 11222744 ----a-w- C:\Users\Bashaws\Downloads\HitmanPro_x64.exe</p><p>2014-11-18 22:56:16 8573E3C2603DD23E1A8DE3177D146D18 1707532 ----a-w- C:\Users\Bashaws\Downloads\JRT.exe</p><p>2014-11-18 22:46:49 6504113C2218667814D4F54847BA046A 2140160 ----a-w- C:\Users\Bashaws\Downloads\adwcleaner_4.101.exe</p><p>2014-11-18 22:44:53 1747A50E01D0FDB324F9F50E025FDB66 401920 ----a-w- C:\Users\Bashaws\Downloads\MiniToolBox.exe</p><p>2014-11-18 21:54:47 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih.exe</p><p>2014-11-18 01:42:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome</p><p>2014-11-18 01:41:27 31AD2D566C369B00F0B07FAA6BAD7D87 880784 ----a-w- C:\Users\Bashaws\Downloads\ChromeSetup.exe</p><p>2014-11-18 01:25:00 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(2).exe</p><p>2014-11-18 01:24:18 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(1).exe</p><p>2014-11-18 01:23:38 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025.exe</p><p>2014-11-17 19:39:05 -------- d-----w- C:\ProgramData\Oracle</p><p>2014-11-17 19:35:16 -------- d-----w- C:\ProgramData\Unchecky</p><p>2014-11-17 19:34:16 6FA7457F23AB31E68A674E5342FE32BD 29405096 ----a-w- C:\Users\Bashaws\Downloads\JavaRuntimeEnvironmentSetup.exe</p><p>2014-11-17 19:32:43 554D11357450E8DC80888285273D05DA 860576 ----a-w- C:\Users\Bashaws\Downloads\JavaSetup.exe</p><p>2014-11-17 04:00:14 -------- d-----w- C:\ProgramData\COMODO</p><p>2014-11-17 03:59:04 5B915884D19C1B1DA6409C039E7235CD 42533968 ----a-w- C:\Users\Bashaws\Downloads\ChromeStandaloneSetup.exe</p><p>2014-11-17 03:51:30 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup (1).exe</p><p>2014-11-17 03:49:57 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup.exe</p><p>2014-11-17 03:49:55 -------- d--h--w- C:\Users\Public\Temp</p><p>2014-11-17 03:45:42 5C87C0D9B111108332B25F44745A6DD1 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup (1).exe</p><p>2014-11-17 03:44:42 1D65D6F0E8BB6FD37E0B9333C60585B0 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup.exe</p><p>2014-11-17 03:30:39 86A0A588328C6FC6CA83B66775779BFA 1238 ----a-w- C:\ProgramData\tempimage.bmp</p><p>2014-11-17 01:18:54 3A6371EF0FCC62BEF39BF94B43003C9D 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup (1).exe</p><p>2014-11-17 01:18:39 D2A286F8D08309D56905DF7B7F71EF26 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup.exe</p><p>2014-11-07 02:46:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud</p><p>2014-10-25 01:31:12 -------- d-----w- C:\ProgramData\MathematicaPlayer</p><p>2014-10-25 01:30:13 -------- d-----w- C:\ProgramData\Mathematica</p><p>2014-10-25 01:30:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfram CDF Player</p><p>2014-10-23 22:39:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime</p><p></p><p>====== C: exe-files ==</p><p>2014-11-21 00:59:54 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih(1).exe</p><p>2014-11-18 23:10:57 E9499A51801037F4E7CD2D7937D76542 127752 ----a-w- C:\Program Files\HitmanPro\hmpsched.exe</p><p>2014-11-18 23:10:55 00FD7C6BEDEE9B24B0DB02B68B07AD54 11222744 ----a-w- C:\Program Files\HitmanPro\HitmanPro.exe</p><p>2014-11-18 23:09:18 00FD7C6BEDEE9B24B0DB02B68B07AD54 11222744 ----a-w- C:\Users\Bashaws\Downloads\HitmanPro_x64.exe</p><p>2014-11-18 22:56:32 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\erunt\ERUNT.EXE</p><p>2014-11-18 22:56:16 8573E3C2603DD23E1A8DE3177D146D18 1707532 ----a-w- C:\Users\Bashaws\Downloads\JRT.exe</p><p>2014-11-18 22:46:49 6504113C2218667814D4F54847BA046A 2140160 ----a-w- C:\Users\Bashaws\Downloads\adwcleaner_4.101.exe</p><p>2014-11-18 22:44:53 1747A50E01D0FDB324F9F50E025FDB66 401920 ----a-w- C:\Users\Bashaws\Downloads\MiniToolBox.exe</p><p>2014-11-18 21:54:47 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih.exe</p><p>2014-11-18 01:42:46 D804A4D7DF4228FC0C6105933EEAD715 41093712 ----a-w- C:\Program Files (x86)\Google\Update\Install\{6787320C-1E60-42D7-B6DB-1C5B3C507A3C}\38.0.2125.122_chrome_installer.exe</p><p>2014-11-18 01:42:45 D804A4D7DF4228FC0C6105933EEAD715 41093712 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\38.0.2125.122\38.0.2125.122_chrome_installer.exe</p><p>2014-11-18 01:41:27 31AD2D566C369B00F0B07FAA6BAD7D87 880784 ----a-w- C:\Users\Bashaws\Downloads\ChromeSetup.exe</p><p>2014-11-18 01:25:00 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(2).exe</p><p>2014-11-18 01:24:18 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(1).exe</p><p>2014-11-18 01:23:38 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025.exe</p><p>2014-11-18 00:45:40 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-18 00:35:52 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-18 00:18:42 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-18 00:14:05 6006ADBF1CAE8AA3286140159B25C668 220264 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\~un0\u0.exe</p><p>2014-11-17 19:44:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 19:43:59 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 19:36:01 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 19:34:55 BF375A90FE0B135395E20B0EB9190C11 572739 ----a-w- C:\Users\Bashaws\AppData\Roaming\1H1Q1V0B1L1G1N1V0M1P1Q1L1T0D1P1E2Z\Java Runtime Environment Packages\uninstaller.exe</p><p>2014-11-17 19:34:16 6FA7457F23AB31E68A674E5342FE32BD 29405096 ----a-w- C:\Users\Bashaws\Downloads\JavaRuntimeEnvironmentSetup.exe</p><p>2014-11-17 19:32:43 554D11357450E8DC80888285273D05DA 860576 ----a-w- C:\Users\Bashaws\Downloads\JavaSetup.exe</p><p>2014-11-17 19:28:34 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:51:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:50:30 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:49:44 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:46:07 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:44:43 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:41:31 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:39:35 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:33:00 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 05:04:40 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\21686uninstall.exe</p><p>2014-11-17 04:33:49 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe</p><p>2014-11-17 04:05:47 D804A4D7DF4228FC0C6105933EEAD715 41093712 ----atw- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\38.0.2125.122\chrome_installer.exe</p><p>2014-11-17 03:59:04 5B915884D19C1B1DA6409C039E7235CD 42533968 ----a-w- C:\Users\Bashaws\Downloads\ChromeStandaloneSetup.exe</p><p>2014-11-17 03:58:46 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismHost.exe</p><p>2014-11-17 03:58:30 9F1AE66D7954FE2E0909A5EBC6B94798 67072 ----a-w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100\Chrome-bin\wow_helper.exe</p><p>2014-11-17 03:58:28 5D2D737B0B6FB1FFC7FFAAAAB92141A0 655872 ----a-w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100\Chrome-bin\chrome.exe</p><p>2014-11-17 03:56:33 AC95D64D7A5DFAAABEC07D4B2DB77A73 204072 ----a-w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100\uninstall.exe</p><p>2014-11-17 03:55:03 F27CAB0047E10119CF315B0C71FFC9A0 213754 ----a-w- C:\c3f6beae-d430-4a21-802a-4c703bc75b60\62804985-6E8C-4DBF-A256-C43DB76EAA29.exe</p><p>2014-11-17 03:51:30 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup (1).exe</p><p>2014-11-17 03:49:57 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup.exe</p><p>2014-11-17 03:47:19 144A9AA1A785234E820D44A0D2B6423D 7820568 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\supoptsetup.exe</p><p>2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\156Btmp\silentsddsetup.exe</p><p>2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14C0tmp\silentsddsetup.exe</p><p>2014-11-17 03:46:38 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\154Btmp\cloudscout.exe</p><p>2014-11-17 03:46:32 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14AEtmp\cloudscout.exe</p><p>2014-11-17 03:46:24 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1508tmp\5555-1001_newplayer.exe</p><p>2014-11-17 03:46:19 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\147Btmp\5555-1001_newplayer.exe</p><p>2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14A8tmp\jfilemanagersetup.exe</p><p>2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\144Btmp\jfilemanagersetup.exe</p><p>2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1518tmp\superoptimizersetup.exe</p><p>2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\148Dtmp\superoptimizersetup.exe</p><p>2014-11-17 03:45:42 5C87C0D9B111108332B25F44745A6DD1 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup (1).exe</p><p>2014-11-17 03:44:42 1D65D6F0E8BB6FD37E0B9333C60585B0 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup.exe</p><p>2014-11-17 03:31:16 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12895uninstall.exe</p><p>2014-11-17 03:01:26 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C5tmp\jfilemanagersetup.exe</p><p>2014-11-17 03:01:24 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C8tmp\cloudscout.exe</p><p>2014-11-17 01:22:15 F1E994BD5C745F5403098727B3684273 2129408 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\RarSFX0\curl.exe</p><p>2014-11-17 01:20:51 DD7F24DACD85EEDD221A55313E97DA10 5826632 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\optprosetup.exe</p><p>2014-11-17 01:18:54 3A6371EF0FCC62BEF39BF94B43003C9D 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup (1).exe</p><p>2014-11-17 01:18:39 D2A286F8D08309D56905DF7B7F71EF26 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup.exe</p><p>2014-11-16 13:18:10 3EAE59EEFFEC1E7699185DEF6C4105B5 175123 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\is45637729\1879879_stp\Generic_vo.exe</p><p>2014-11-15 00:34:57 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateSetup.exe</p><p>2014-11-15 00:34:57 5B4ED5734945619EE3BCDB9825D2F526 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe</p><p>2014-11-15 00:34:57 06036279056145E0F08FC095CB789E6A 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateBroker.exe</p><p>2014-11-15 00:34:50 EDD3E562684CB4C50704B471BEAB1F86 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateComRegisterShell64.exe</p><p>2014-11-15 00:34:50 CB8C1CC4F46FBAC78150754D77460C73 230792 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe</p><p>2014-11-15 00:34:50 7161E8E31B7FD3B1CE083C2CA5FD5F44 285064 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe</p><p>2014-11-15 00:34:49 F172AD4E906D97ED8F071896FC6789DC 107912 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdate.exe</p><p>2014-11-15 00:34:47 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.25.11\GoogleUpdateSetup.exe</p><p>=== C: other files ==</p><p>2014-11-18 22:56:30 F69854EA9F4462090B0AEBB3723881B5 14957 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\get.bat</p><p>2014-11-18 22:56:30 F56A319979F631C141F5FF02DF87FDB1 43563 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\prelim.bat</p><p>2014-11-18 22:56:30 DF7FA1F19DECC2671D46B33E6B1C0785 190133 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\misc.bat</p><p>2014-11-18 22:56:30 DD1E4D974B1672ABD09EFFB225791C4A 1230 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\TDL4.bat</p><p>2014-11-18 22:56:30 AD2F52DC72B10AF331692E4A4DD80DFC 18670 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\medfos.bat</p><p>2014-11-18 22:56:30 AA0C656F898523BEDF2DA6923197BB80 1264 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\surfvox.bat</p><p>2014-11-18 22:56:30 8E6020C14F982CF11B3FE7DBB0CB8EDE 24738 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\searchlnk.bat</p><p>2014-11-18 22:56:30 86707BCE5CBB65D9B1C41E249B4423BA 152733 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\firefox.bat</p><p>2014-11-18 22:56:30 83F691D8398F0E37E71E9355BF730DB9 719 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\ev_clear.bat</p><p>2014-11-18 22:56:30 6D12411EDA5A8EFC2018F64A6860BB78 10606 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\runvalues.bat</p><p>2014-11-18 22:56:30 38A0BDF322ACCC968B0A824C38D50157 29635 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\ask.bat</p><p>2014-11-18 22:56:30 335DFF8F23E5EC02B5426362F0F8509B 31401 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\iexplore.bat</p><p>2014-11-18 22:56:30 0C4649A62845AB5D5DBCC4998477FF6D 1813 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\delfolders.bat</p><p>2014-11-18 22:56:30 080CFDE64F31E7B50EECF4552033E84D 9937 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\mws.bat</p><p>2014-11-18 22:56:30 048407135C9B1FB6A355E256BD96160D 14192 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\chrome.bat</p><p>2014-11-18 00:09:33 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_3152_28189\banjjklfojcdbofbhbgiedekefohoaff.crx</p><p>2014-11-17 05:51:28 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_8980_32269\banjjklfojcdbofbhbgiedekefohoaff.crx</p><p>2014-11-17 05:40:59 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_9684_1344\banjjklfojcdbofbhbgiedekefohoaff.crx</p><p>2014-11-17 04:18:22 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_5296_12756\banjjklfojcdbofbhbgiedekefohoaff.crx</p><p>2014-11-17 03:59:17 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_4116_17544\banjjklfojcdbofbhbgiedekefohoaff.crx</p><p>2014-11-17 03:55:16 4F7B52597DD085227C895F2BC2EED850 756646 ----a-w- C:\c3f6beae-d430-4a21-802a-4c703bc75b60\MediaDownloader.zip</p><p>2014-11-17 03:47:31 9A5579B199A8522D1B93D3CA1D231088 148 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\SDD.bat</p><p>2014-11-17 03:47:13 383F11FEC6484CE4443BF6C460757160 162 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\SDDUpdater.bat</p><p></p><p>==== Startup Registry Enabled ======================</p><p></p><p>[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]</p><p>"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"</p><p></p><p>[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]</p><p>"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"</p><p></p><p>[HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Run]</p><p>"Spotify Web Helper"="C:\Users\Bashaws\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"</p><p>"Spotify"="C:\Users\Bashaws\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"</p><p>"PCKeeper2"="C:\Program Files\Kromtech\PCKeeper Live\PCKeeper.exe /autorun"</p><p></p><p>[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]</p><p>"mctadmin"="C:\Windows\System32\mctadmin.exe"</p><p></p><p>[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]</p><p>"mctadmin"="C:\Windows\System32\mctadmin.exe"</p><p></p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]</p><p>"StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"</p><p>"HP Software Update"="c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"</p><p>"PDF Complete"="C:\Program Files (x86)\PDF Complete\pdfsty.exe"</p><p>"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"</p><p>"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"</p><p>"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"</p><p>"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"</p><p>"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"</p><p></p><p>[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]</p><p>"Spotify Web Helper"="C:\Users\Bashaws\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"</p><p>"Spotify"="C:\Users\Bashaws\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"</p><p>"PCKeeper2"="C:\Program Files\Kromtech\PCKeeper Live\PCKeeper.exe /autorun"</p><p></p><p>==== Startup Registry Enabled x64 ======================</p><p></p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]</p><p>"hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe"</p><p>"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"</p><p>"IntelliType Pro"="C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"</p><p>"IntelliPoint"="C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"</p><p></p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]</p><p>"NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update"</p><p></p><p>==== Startup Folders ======================</p><p></p><p></p><p>==== Task Scheduler Jobs ======================</p><p></p><p>C:\windows\tasks\Adobe Flash Player Updater.job --a------ C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11/12/2014 03:35 PM]</p><p>C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10/25/2014 10:28 AM]</p><p>C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10/25/2014 10:28 AM]</p><p>C:\windows\tasks\HPCeeScheduleForBashaws.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [07/15/2011 06:43 AM]</p><p></p><p>==== Other Scheduled Tasks ======================</p><p></p><p>"C:\windows\SysNative\tasks\Adobe Flash Player Updater" [C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]</p><p>"C:\windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]</p><p>"C:\windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]</p><p>"C:\windows\SysNative\tasks\HPCeeScheduleForBashaws" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]</p><p>"C:\windows\SysNative\tasks\MotoCast Update" ["C:\Program Files (x86)\Motorola Mobility\MotoCast\LiveUpdate\MotoCastUpdate.exe"]</p><p>"C:\windows\SysNative\tasks\Motorola Device Manager Engine" ["C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe"]</p><p>"C:\windows\SysNative\tasks\Motorola Device Manager Update" ["C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe"]</p><p>"C:\windows\SysNative\tasks\ProPCCleaner_Popup" [C:\Program Files (x86)\Pro PC Cleaner\Splash.exe]</p><p>"C:\windows\SysNative\tasks\ProPCCleaner_Start" [C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe]</p><p>"C:\windows\SysNative\tasks\SuperFastPC_AutorunOnStartup" [C:\Program Files (x86)\System Optimizer Pro\SystemOptimizerPro.exe]</p><p>"C:\windows\SysNative\tasks\User_Feed_Synchronization-{3861E564-79D6-4D7B-87FE-43F49E84FDB7}" [C:\windows\system32\msfeedssync.exe]</p><p>"C:\windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]</p><p>"C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]</p><p>"C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]</p><p>"C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]</p><p>"C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Warranty Opt-In(No)" [c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_PostWarrantyAlert.exe]</p><p>"C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Warranty Opt-In(Yes)" [c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_PostWarrantyAlert.exe]</p><p>"C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]</p><p>"C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]</p><p>"C:\windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]</p><p></p><p>==== Firefox Extensions Registry ======================</p><p></p><p>[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]</p><p>"{dc11fe86-30ee-446f-9e0f-41448bd17c12}"="C:\Program Files (x86)\Mozilla Firefox\extensions\{dc11fe86-30ee-446f-9e0f-41448bd17c12}" []</p><p>[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]</p><p>"{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04/04/2014 05:36 AM]</p><p></p><p>==== Firefox Extensions ======================</p><p></p><p>AppDir: C:\Program Files (x86)\Mozilla Firefox</p><p>- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}</p><p></p><p>==== Firefox Plugins ======================</p><p></p><p>Profilepath: C:\Users\Bashaws\AppData\Roaming\Mozilla\Firefox\Profiles\yu4mr6zw.default-1416276520975</p><p>67D325B5AEB28E381B84E8DE1A90C7A8 - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll - Shockwave Flash</p><p></p><p></p><p>==== Chromium Look ======================</p><p></p><p>HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions</p><p>oilkkkefbalmbfppgjmgjoefbclebkce - No path found[]</p><p></p><p>HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions</p><p>oilkkkefbalmbfppgjmgjoefbclebkce - No path found[]</p><p></p><p>Docs - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake</p><p>Google Drive - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf</p><p>YouTube - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo</p><p>Google Search - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf</p><p>Gmail - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia</p><p></p><p>==== Set IE to Default ======================</p><p></p><p>Old Values:</p><p>[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]</p><p></p><p>New Values:</p><p>[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]</p><p>"Start Page"="<a href="http://www.google.com" target="_blank">http://www.google.com</a>"</p><p></p><p>==== All HKCU SearchScopes ======================</p><p></p><p>HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes</p><p>"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"</p><p>{012E1000-F331-11DB-8314-0800200C9A66} Google Url="<a href="http://www.google.com/search?q={searchTerms}" target="_blank">http://www.google.com/search?q={searchTerms}</a>"</p><p>{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="<a href="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" target="_blank">http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02</a>"</p><p>{D944BB61-2E34-4DBF-A683-47E505C587DC} Unknown Url="Not_Found"</p><p></p><p>==== Deleting CLSID Registry Keys ======================</p><p></p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully</p><p>HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC} deleted successfully</p><p>HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully</p><p>HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully</p><p>HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully</p><p></p><p>==== Deleting CLSID Registry Values ======================</p><p></p><p>HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully</p><p>HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{dc11fe86-30ee-446f-9e0f-41448bd17c12} deleted successfully</p><p></p><p>==== Deleting Registry Keys ======================</p><p></p><p>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4E30E037E0535E84D9E3349209D354D4 deleted successfully</p><p>HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully</p><p>HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\oilkkkefbalmbfppgjmgjoefbclebkce deleted successfully</p><p>HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\oilkkkefbalmbfppgjmgjoefbclebkce deleted successfully</p><p>HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\oilkkkefbalmbfppgjmgjoefbclebkce deleted successfully</p><p>HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{730E03E4-350E-48E5-9D3E-4329903D454D} deleted successfully</p><p>HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\4E30E037E0535E84D9E3349209D354D4 deleted successfully</p><p></p><p>==== Empty IE Cache ======================</p><p></p><p>C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\Users\Bashaws\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\Users\Bashaws\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully</p><p>C:\Users\Bashaws\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\Users\Bashaws\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\Users\Bashaws\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully</p><p>C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully</p><p></p><p>==== Empty FireFox Cache ======================</p><p></p><p>C:\Users\Bashaws\AppData\Local\Mozilla\Firefox\Profiles\yu4mr6zw.default-1416276520975\cache2 emptied successfully</p><p></p><p>==== Empty Chrome Cache ======================</p><p></p><p>C:\Users\Bashaws\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully</p><p></p><p>==== Empty All Flash Cache ======================</p><p></p><p>Flash Cache Emptied Successfully</p><p></p><p>==== Empty All Java Cache ======================</p><p></p><p>Java Cache cleared successfully</p><p></p><p>==== C:\zoek_backup content ======================</p><p></p><p>C:\zoek_backup (files=139 folders=29 32061183 bytes)</p><p></p><p>==== Empty Temp Folders ======================</p><p></p><p>C:\Users\Bashaws\AppData\Local\Temp will be emptied at reboot</p><p>C:\Users\Default\AppData\Local\Temp emptied successfully</p><p>C:\Users\Default User\AppData\Local\Temp emptied successfully</p><p>C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully</p><p>C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully</p><p>C:\windows\Temp will be emptied at reboot</p><p></p><p>==== After Reboot ======================</p><p></p><p>==== Empty Temp Folders ======================</p><p></p><p>C:\windows\Temp successfully emptied</p><p>C:\Users\Bashaws\AppData\Local\Temp successfully emptied</p><p></p><p>==== Empty Recycle Bin ======================</p><p></p><p>C:\$RECYCLE.BIN successfully emptied</p><p></p><p>==== EOF on Fri 11/21/2014 at 13:36:32.67 ======================</p></blockquote><p></p>
[QUOTE="Jason Bashaw, post: 303163, member: 31003"] Here are the results from the zoek scan. Zoek.exe v5.0.0.0 Updated 21-11-2014 Tool run by Bashaws on Fri 11/21/2014 at 13:05:19.75. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Bashaws\Downloads\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-11-21-173733.log 425 bytes ==== System Restore Info ====================== 11/21/2014 1:06:09 PM Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13453481-3F12-40A3-9EC4-435CF367C31B} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ADF3594-2659-44A0-BA28-E3B273238AE7} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2209DFF1-ADA4-47D8-826C-32FDDD29019} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{223D32BC-1BD2-4885-BAE4-D77D6DBB126} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{239EEA5A-402E-4FC2-8C2A-61A6CE89C98} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25045F98-C00C-4C4B-8F2B-2A700F3A277} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28258386-E7BB-4039-8DF3-F81F34D7A28E} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{282BDCBE-DB04-457A-87FD-E57FA7C25B0} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C6C59F1-7E0F-49BE-999A-2397BDB3B080} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39DDDB08-2B82-4194-8BF7-3EC4494A3685} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3F53A99A-ADBE-4D13-8B9A-0C2D01A385} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43519EC6-5DE4-48A9-9CBB-6A6E9D74BD10} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{45A7B4C-CEF4-4A2C-AEC4-05046AF16B} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47D9421A-5DE3-4429-B173-7E2B5D9199A} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47E556F0-9F4E-493F-A2D-F62E14BAB9B} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4A98F04A-F56D-4542-98D7-2DCEC08FABC2} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B4E7C87-BD19-4DEB-BA14-51C344A165D4} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4D6C9E2E-E3CB-4667-8758-CD7A0C683C0} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{505DDA0-EB2B-4129-A794-743F2545A35A} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{52DE4212-D686-44DF-88B5-99B3B1FAC0} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59D7390C-1C0E-4A0B-9DE2-87862A813A2} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59F7C0A5-D69E-4B5D-89BE-16546C86738B} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0724FC-AAB4-4ED5-AFBA-DD6E23AAA62} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6096763C-1ED5-473A-AEF7-B7CE2843AA8C} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61518021-35C-4850-AED2-75A07FAB3DE6} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61F72C97-9FA5-475D-B0D0-419016B69423} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6947EA5A-5B7C-4A21-BC1A-C2C61878461C} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7144B94E-A09A-4B9B-8A8B-A16F27B3C926} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{73FBB0FA-3842-4844-9FF2-9120D968363} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78B52456-5434-436C-83AB-1F693719D62C} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A6D44D6-7A28-48DC-8BFE-BD4BCCCFC3F} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81A05CA-7E2E-4698-B91B-DEBE65E8D37B} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81FBF004-689-4A79-B0EA-FA44CA411091} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{838C4B8E-1274-4824-9CFC-4F3EABC7059} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85036D24-C26-49D5-9A84-21B195AE58D7} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{861660C7-7034-4EE2-B84F-4EB1A55C3B23} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A13DA1C-9B5F-44B9-84A8-C8DAD6E2C6CF} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{906CE1D9-B34F-444B-AC9E-D289E3190BC} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9118E574-8264-456F-A34B-AB8D68FE55B6} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{91BBB577-D03E-4692-9C7B-BAF2F876AC88} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9251423A-3FD0-4F38-98B0-1D17D7DE9E98} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95E659FC-D7C1-4268-8C2-99526D6298A} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{993F75CC-11FD-4EEF-9C89-EEC4A35D851} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C094BCB-29DE-424D-87E1-31AFEA1F4B71} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0952E42-BD32-4FEF-9012-4C2328EA714E} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B9488363-E6E0-47AA-8747-47E7FBECCA3F} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BDA5304C-C664-4B74-90AC-57498753A35} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C11D189E-377E-45EF-AA8C-3A25B1A5EF0} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C166490B-6A4A-4D97-BE18-1A5982FD736} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C39CCF92-E28D-4335-92B9-673F1A7045E6} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CDB2D16E-1EEC-4057-92D0-FEF2E874BEB} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D4584127-D59C-4BEC-B843-3E2B6D352E78} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D9E53A7B-4420-4697-A66A-AF8524CF7A73} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB2138FA-890D-4E47-80BC-77A9F2F6C8C} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E5C2BEA9-C41B-46B5-BDE7-9E843B3EF38} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E63712E3-E731-4D57-9688-CE66AFA434} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6F70A95-1E64-43D9-A39B-FE9F6F3EE446} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E70D6BB1-50CB-4C44-A1FB-F7E6BE135D6C} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E9805106-3D5A-4632-8EBD-6A786050133A} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F8610344-569-469E-8EFF-F8D484D19091} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA75188E-76C9-4905-8793-F222F5E44D4} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC15FD82-D9D2-431C-8EA9-EFA1DE29CB33} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FCD79638-F8A5-459E-88C9-2D29C427B4A} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FF88526F-1EB8-4FE6-AD63-E33248210} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Batch Command(s) Run By Tool====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\690b9ca4-a957-4b5e-89e9-2f3b2f5b0629 deleted C:\LIL8EE6.tmp deleted C:\LIL8F15.tmp deleted C:\LIL8F34.tmp deleted C:\LIL8F72.tmp deleted C:\LIL8FD0.tmp deleted C:\LIL8FE0.tmp deleted C:\LIL8FE1.tmp deleted C:\LIL906C.tmp deleted C:\LIL908B.tmp deleted C:\Users\Bashaws\AppData\Roaming\WB.CFG deleted C:\Users\Bashaws\AppData\Roaming\AlawarEntertainment deleted C:\Users\Bashaws\AppData\Roaming\YoudaGames deleted C:\PROGRA~3\Avg_Update_0814tb deleted C:\PROGRA~3\Avg_Update_1114tb deleted C:\PROGRA~3\Kromtech deleted C:\Users\Bashaws\AppData\Local\Kromtech deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted C:\windows\patsearch.bin deleted C:\windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted C:\windows\tasks\AVG-Secure-Search-Update_0214b_rel.job deleted C:\windows\tasks\AVG-Secure-Search-Update_0214b_rmv.job deleted C:\windows\tasks\AVG-Secure-Search-Update_0414c_rel.job deleted C:\windows\tasks\AVG-Secure-Search-Update_0414c_rmv.job deleted C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0214b_rel deleted C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0214b_rmv deleted C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0414c_rel deleted C:\windows\SysNative\tasks\AVG-Secure-Search-Update_0414c_rmv deleted C:\windows\SysNative\drivers\Msft_Kernel_webinstrT_01009.Wdf deleted C:\windows\SysNative\config\systemprofile\Searches deleted C:\windows\Syswow64\shoD3E1.tmp deleted "C:\windows\Installer\1361c5.msi" deleted "C:\Users\Bashaws\AppData\Roaming\APPKE" deleted "C:\windows\tasks\APPKE.job" deleted "C:\windows\SysNative\tasks\APPKE" deleted "C:\Users\Bashaws\AppData\Roaming\BRQCBGD" deleted "C:\windows\tasks\BRQCBGD.job" deleted "C:\windows\SysNative\tasks\BRQCBGD" deleted "C:\Users\Bashaws\AppData\Roaming\KS" deleted "C:\windows\tasks\KS.job" deleted "C:\windows\SysNative\tasks\KS" deleted "C:\Users\Bashaws\AppData\Roaming\MOHDO" deleted "C:\windows\tasks\MOHDO.job" deleted "C:\windows\SysNative\tasks\MOHDO" deleted "C:\Users\Bashaws\AppData\Roaming\MTIQ" deleted "C:\windows\tasks\MTIQ.job" deleted "C:\windows\SysNative\tasks\MTIQ" deleted "C:\Users\Bashaws\AppData\Roaming\QCARYUG" deleted "C:\windows\tasks\QCARYUG.job" deleted "C:\windows\SysNative\tasks\QCARYUG" deleted "C:\Users\Bashaws\AppData\Roaming\QYKA" deleted "C:\windows\tasks\QYKA.job" deleted "C:\windows\SysNative\tasks\QYKA" deleted "C:\Users\Bashaws\AppData\Roaming\SWGXET" deleted "C:\windows\tasks\SWGXET.job" deleted "C:\windows\SysNative\tasks\SWGXET" deleted ==== Files Recently Created / Modified ====================== ====== C:\windows ==== ====== C:\Users\Bashaws\AppData\Local\Temp ==== 2014-11-18 22:56:33 E0DC8C6BBC787B972A9A468648DBFD85 1008128 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\libiconv2.dll 2014-11-18 22:56:33 D202BAA425176287017FFE1FB5D1B77C 103424 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\libintl3.dll 2014-11-18 22:56:33 57CAC848FA14AE38F14F9441F8933282 140288 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\pcre3.dll 2014-11-18 22:56:33 547C43567AB8C08EB30F6C6BACB479A3 79360 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\regex2.dll 2014-11-18 22:56:32 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\erunt\ERUNT.EXE 2014-11-18 00:45:42 C6D7703993FCC51A405E09B4B6085C8F 991040 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\APISupport\APISupport.dll 2014-11-18 00:45:40 67789261821FDAD768C21E7471C188EA 541504 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\plugins\ChromeApiPlugin.dll 2014-11-18 00:45:40 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe 2014-11-18 00:35:52 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-18 00:35:52 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-18 00:35:52 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-18 00:35:52 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-18 00:35:52 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-18 00:35:50 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-18 00:35:45 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-18 00:18:42 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-18 00:18:42 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-18 00:18:42 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-18 00:18:42 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-18 00:18:42 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-18 00:18:40 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-18 00:18:36 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-18 00:14:05 6006ADBF1CAE8AA3286140159B25C668 220264 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\~un0\u0.exe 2014-11-18 00:12:50 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite99056.dll 2014-11-18 00:09:38 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_3152_28189\CRX_INSTALL\TBHostSupport\TBHostSupport.dll 2014-11-18 00:07:39 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite11279.dll 2014-11-17 19:44:39 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 19:44:39 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 19:44:39 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 19:44:39 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 19:44:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 19:44:35 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 19:44:28 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 19:43:59 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 19:43:59 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 19:43:59 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 19:43:59 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 19:43:59 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 19:43:55 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 19:43:49 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 19:36:01 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 19:35:59 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 19:35:56 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 19:35:56 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 19:35:56 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 19:35:37 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 19:34:47 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 19:33:26 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite81348.dll 2014-11-17 19:28:34 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 19:28:34 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 19:28:34 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 19:28:34 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 19:28:34 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 19:28:31 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 19:28:23 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 19:28:13 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite10671.dll 2014-11-17 05:51:39 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 05:51:39 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 05:51:39 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 05:51:39 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 05:51:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:51:38 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 05:51:29 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 05:50:30 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 05:50:30 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:50:29 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 05:50:29 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 05:50:29 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 05:50:26 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 05:50:19 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 05:49:44 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 05:49:44 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 05:49:44 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 05:49:44 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:49:43 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 05:49:42 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 05:49:37 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 05:46:07 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:46:06 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 05:46:06 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 05:46:06 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 05:46:06 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 05:46:04 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 05:46:00 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 05:44:43 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:44:42 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 05:44:42 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 05:44:42 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 05:44:42 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 05:44:41 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 05:44:33 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 05:41:31 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:41:30 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 05:41:30 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 05:41:30 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 05:41:30 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 05:41:27 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 05:41:17 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 05:39:37 C6D7703993FCC51A405E09B4B6085C8F 991040 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\APISupport\APISupport.dll 2014-11-17 05:39:35 67789261821FDAD768C21E7471C188EA 541504 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\plugins\ChromeApiPlugin.dll 2014-11-17 05:39:35 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:33:00 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 05:33:00 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 05:33:00 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 05:33:00 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 05:33:00 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:32:55 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 05:32:47 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 05:04:40 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\21686uninstall.exe 2014-11-17 04:33:49 C966B5062302D06A38D15564282088FB 287008 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\TBVerifier.dll 2014-11-17 04:33:49 C16C1C61498FD8271909DFD400538DE0 887584 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\ConduitChromeApiPlugin.dll 2014-11-17 04:33:49 9E037AE8A603C7C44582E3DD2C357E08 68896 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-cwmp.dll 2014-11-17 04:33:49 99F97C9FE748C37528C338A423577FCB 163256 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\plugins\np-mswmp.dll 2014-11-17 04:33:49 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 04:33:47 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 04:33:40 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\TBHostSupport\TBHostSupport.dll 2014-11-17 04:18:44 6B108C476F498CBDBBC83FF656EDA724 62240 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_5296_12756\CRX_INSTALL\Search\plugins\npConduitNewTabPlugin.dll 2014-11-17 04:18:26 88AD8656CB1E1CD6AF8BC1B6D6174CC1 458016 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_5296_12756\CRX_INSTALL\TBHostSupport\TBHostSupport.dll 2014-11-17 04:16:15 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite17462.dll 2014-11-17 03:58:46 E7CAED467F80B29F4E63BA493614DBB1 127488 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\OSProvider.dll 2014-11-17 03:58:46 CCF6EC908566900E9626DC3360B9E35E 112128 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismCorePS.dll 2014-11-17 03:58:46 A909643B215FC0587A043C9C15959D41 186368 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismProv.dll 2014-11-17 03:58:46 A7AFC7D5313C94E1060648609DAFCE64 271360 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\SmiProvider.dll 2014-11-17 03:58:46 A492B7C2C223C5C6163F45AA5275BE34 302080 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\UnattendProvider.dll 2014-11-17 03:58:46 85F83E44A77DEA06780FB670CC8A0359 438272 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DmiProvider.dll 2014-11-17 03:58:46 7B38D7916A7CD058C16A0A6CA5077901 271360 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\wdscore.dll 2014-11-17 03:58:46 739968678548BA15F6B9372E8760C012 444416 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\TransmogProvider.dll 2014-11-17 03:58:46 711325BFDAC759FA69B9EDAF7EA0319C 471040 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\WimProvider.dll 2014-11-17 03:58:46 64B66A41B61D511E8EBE94625EC0E45A 53760 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\FolderProvider.dll 2014-11-17 03:58:46 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismHost.exe 2014-11-17 03:58:46 45FF4FA5CA5432BFCCDED4433FE2A85B 216576 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\MsiProvider.dll 2014-11-17 03:58:46 08C71F57BDFC3DF75A51B12DDF69A33B 312832 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\IntlProvider.dll 2014-11-17 03:58:45 78B4D1F2FE371A6E85C66DD3D40D404A 183296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\CompatProvider.dll 2014-11-17 03:58:45 6EBC2138A3C9B3B7D1E69E0629B6C815 289792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismCore.dll 2014-11-17 03:58:45 1C9B5D23AC0CD2E6BF4B29F35FE219AE 1672192 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\CbsProvider.dll 2014-11-17 03:47:19 144A9AA1A785234E820D44A0D2B6423D 7820568 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\supoptsetup.exe 2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\156Btmp\silentsddsetup.exe 2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14C0tmp\silentsddsetup.exe 2014-11-17 03:46:38 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\154Btmp\cloudscout.exe 2014-11-17 03:46:34 18457FC029B26A8E7626D3D4E7755270 88064 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\B7D701F0-473C-CE46-91F8-E5C522D8F595.dll 2014-11-17 03:46:32 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14AEtmp\cloudscout.exe 2014-11-17 03:46:24 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1508tmp\5555-1001_newplayer.exe 2014-11-17 03:46:19 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\147Btmp\5555-1001_newplayer.exe 2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14A8tmp\jfilemanagersetup.exe 2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\144Btmp\jfilemanagersetup.exe 2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1518tmp\superoptimizersetup.exe 2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\148Dtmp\superoptimizersetup.exe 2014-11-17 03:39:44 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite81476.dll 2014-11-17 03:31:16 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12895uninstall.exe 2014-11-17 03:24:27 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite52508.dll 2014-11-17 03:12:26 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite43229.dll 2014-11-17 03:01:26 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C5tmp\jfilemanagersetup.exe 2014-11-17 03:01:24 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C8tmp\cloudscout.exe 2014-11-17 02:19:24 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite18223.dll 2014-11-17 01:33:48 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite61843.dll 2014-11-17 01:25:06 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite80082.dll 2014-11-17 01:22:15 F1E994BD5C745F5403098727B3684273 2129408 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\RarSFX0\curl.exe 2014-11-17 01:20:51 DD7F24DACD85EEDD221A55313E97DA10 5826632 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\optprosetup.exe 2014-11-17 01:19:57 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\System.Data.SQLite.dll 2014-11-16 13:18:10 3EAE59EEFFEC1E7699185DEF6C4105B5 175123 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\is45637729\1879879_stp\Generic_vo.exe 2014-11-08 08:47:13 5C73E64374D9BA37AC5569D1F7DE5C9B 665682 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\sqlite3.dll 2014-11-08 08:33:34 7AAB90847C56E6F7E922BB29D5B3EA8A 601088 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\Quarantine.exe ====== Java Cache ===== ====== C:\windows\SysWOW64 ===== 2014-11-18 21:47:52 ADFB31FA72AFE0298A60BF4AC1045A42 550912 ----a-w- C:\windows\SysWOW64\kerberos.dll 2014-11-18 21:47:52 98B3C919C6B9C5F810FF2CAFA339822B 186880 ----a-w- C:\windows\SysWOW64\pku2u.dll 2014-11-17 04:16:25 B6F002B6776D5E658F95830BE910788F 552 ----a-w- C:\windows\SysWOW64\schtasks.bin 2014-11-12 01:33:14 9AB39ADD28C7C1A685B1EA8C6A25CF08 146432 ----a-w- C:\windows\SysWOW64\msaudite.dll 2014-11-12 01:33:14 980EEEE8815DA7593708774D1225BD35 681984 ----a-w- C:\windows\SysWOW64\adtschema.dll 2014-11-12 01:33:13 9216ABFD53F5EC1F35C3554AD1A175DE 22016 ----a-w- C:\windows\SysWOW64\secur32.dll 2014-11-12 01:33:13 13E5B1CD503A4B21E9F0A2D55A00198B 96768 ----a-w- C:\windows\SysWOW64\sspicli.dll 2014-11-12 01:33:10 B6273619A3DF28F03B64E911E45A6AB2 30720 ----a-w- C:\windows\SysWOW64\iernonce.dll 2014-11-12 01:33:10 5D5640C34C4A97467F77489DBB157568 47616 ----a-w- C:\windows\SysWOW64\ieetwproxystub.dll 2014-11-12 01:33:09 FB56C76FEA44693752BD99D7D9930ABA 341168 ----a-w- C:\windows\SysWOW64\iedkcs32.dll 2014-11-12 01:33:09 A6E51BDCB8F4B84E874F918F0452763D 76288 ----a-w- C:\windows\SysWOW64\mshtmled.dll 2014-11-12 01:33:08 93074C4FA92A8399404D032F6AF72C1B 19781632 ----a-w- C:\windows\SysWOW64\mshtml.dll 2014-11-12 01:33:08 843BD9DAF03ABB6761DEE6D155301F28 60416 ----a-w- C:\windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-11-12 01:33:08 66F4FFDBCD501260ABC198317D2B0D10 285696 ----a-w- C:\windows\SysWOW64\dxtrans.dll 2014-11-12 01:33:08 4772DB007FFBD4BBE3F526704BCA67FE 1310208 ----a-w- C:\windows\SysWOW64\urlmon.dll 2014-11-12 01:33:08 26EE6C9780A8FC872C60F9E35D7EBD4B 688640 ----a-w- C:\windows\SysWOW64\msfeeds.dll 2014-11-12 01:33:07 5972510EF1C6097D9C14C17387A5EDB2 2724864 ----a-w- C:\windows\SysWOW64\mshtml.tlb 2014-11-12 01:33:07 19D68FDEE62519C5A0387EB4E88A01EF 62464 ----a-w- C:\windows\SysWOW64\iesetup.dll 2014-11-12 01:33:06 FA310BD4A5DE904445DDDE54C5A654F2 2277376 ----a-w- C:\windows\SysWOW64\iertutil.dll 2014-11-12 01:33:06 7748B3DDDC92C7FC11F7462DB872E8E7 2051072 ----a-w- C:\windows\SysWOW64\inetcpl.cpl 2014-11-12 01:33:06 5E01004CBC35A78FE2AB4016CCAD4760 708096 ----a-w- C:\windows\SysWOW64\ieapfltr.dll 2014-11-12 01:33:05 A1A2EE55A2C69F79AED00973E604B9C4 418304 ----a-w- C:\windows\SysWOW64\dxtmsft.dll 2014-11-12 01:33:05 8A46404AC1AEB22AA2D4C906D0FC86C2 620032 ----a-w- C:\windows\SysWOW64\jscript9diag.dll 2014-11-12 01:33:05 8585BC27224F97458C186AA085B754A7 478208 ----a-w- C:\windows\SysWOW64\ieui.dll 2014-11-12 01:33:05 6DDC0F44A70976C492CB1666BA9A7912 47104 ----a-w- C:\windows\SysWOW64\jsproxy.dll 2014-11-12 01:33:05 4F8CD74CD69A94ED1A5D7E837A356F4E 115712 ----a-w- C:\windows\SysWOW64\ieUnatt.exe 2014-11-12 01:33:04 36EE0A2A981617610F921BCBB997DB06 12819456 ----a-w- C:\windows\SysWOW64\ieframe.dll 2014-11-12 01:33:02 AE39939F1E25401B9A4952A7A8D372AC 4298240 ----a-w- C:\windows\SysWOW64\jscript9.dll 2014-11-12 01:33:02 4169C6A6613856D69224498620F0C2B5 1155072 ----a-w- C:\windows\SysWOW64\mshtmlmedia.dll 2014-11-12 01:33:01 9ED3132B7F0D36FA9911721E8B2CB968 501248 ----a-w- C:\windows\SysWOW64\vbscript.dll 2014-11-12 01:33:01 755D0A90CFC4BCB178D7070B0351F0AE 64000 ----a-w- C:\windows\SysWOW64\MshtmlDac.dll 2014-11-12 01:33:01 6DD7D61A8EF3DFEC4FAEFEB395E77424 1892864 ----a-w- C:\windows\SysWOW64\wininet.dll 2014-11-12 01:33:01 139E85C4E5DF322AE1BF6544D8C32B0A 168960 ----a-w- C:\windows\SysWOW64\msrating.dll 2014-11-12 01:32:03 537184E7306E06BB22C5B93D2AFA4DF8 1237504 ----a-w- C:\windows\SysWOW64\msxml3.dll 2014-11-12 01:32:03 09FA271EE1F9AD68B2D1C1C210F4B71F 2048 ----a-w- C:\windows\SysWOW64\msxml3r.dll 2014-11-12 01:32:02 5FDBDEECA34E73325D87C5ACD16A3EEC 701440 ----a-w- C:\windows\SysWOW64\IMJP10K.DLL 2014-11-12 01:32:01 FD79B005E849DF3D7E9B5EB7A637C528 374784 ----a-w- C:\windows\SysWOW64\AudioEng.dll 2014-11-12 01:32:01 8D338464B851DDD76E2B876A3E09EB70 442880 ----a-w- C:\windows\SysWOW64\AUDIOKSE.dll 2014-11-12 01:32:00 AA7325057A1E1CC401798C0B1238E182 195584 ----a-w- C:\windows\SysWOW64\AudioSes.dll 2014-11-12 01:31:51 8FE6AB488ECDC60930CE973A7051B0D4 221184 ----a-w- C:\windows\SysWOW64\ncrypt.dll 2014-11-12 01:31:51 8CFAEFCD7F1E004950FCAE870A501B3E 248832 ----a-w- C:\windows\SysWOW64\schannel.dll 2014-11-12 01:31:50 B580A6B9932669DE703001AEE66D5BB1 259584 ----a-w- C:\windows\SysWOW64\msv1_0.dll 2014-11-12 01:31:50 9CEA80FFC617E6B6DD7B52E6225C0D38 65536 ----a-w- C:\windows\SysWOW64\TSpkg.dll 2014-11-12 01:31:50 37BC079204BF9B087D6DE6B728908B4B 172032 ----a-w- C:\windows\SysWOW64\wdigest.dll 2014-11-12 01:31:49 8205E55DFB11809E5F2AAD1C48840535 17408 ----a-w- C:\windows\SysWOW64\credssp.dll 2014-11-12 01:31:39 0F39AC3274312EFFD03928291E8BA7CA 67584 ----a-w- C:\windows\SysWOW64\packager.dll 2014-11-12 01:31:33 CB55B9AAB060C803BE4AD229AA0FEC28 2363904 ----a-w- C:\windows\SysWOW64\msi.dll 2014-11-12 01:31:29 EDA54D2E17C0271D2CDA946ABE344110 571904 ----a-w- C:\windows\SysWOW64\oleaut32.dll ====== C:\windows\SysWOW64\drivers ===== ====== C:\windows\Sysnative ===== 2014-11-18 23:27:42 3C7F8E8398024D005886C764E28610EB 54016 ----a-w- C:\windows\Sysnative\.crusader 2014-11-18 21:47:52 8A8CB073A4B9F9D97CFA8CA9C1C851CE 728064 ----a-w- C:\windows\Sysnative\kerberos.dll 2014-11-18 21:47:52 1306E6A1BF4D506CD687DF9F947270F2 241152 ----a-w- C:\windows\Sysnative\pku2u.dll 2014-11-12 01:33:18 F992AAE3F2DF1D7D2A75B681B0C5280E 304640 ----a-w- C:\windows\Sysnative\generaltel.dll 2014-11-12 01:33:17 9F1FA4F36406693C77CC5779AA7E532D 228864 ----a-w- C:\windows\Sysnative\aepdu.dll 2014-11-12 01:33:17 6021CF6A11DE9B5FC1BD210B6855C497 424448 ----a-w- C:\windows\Sysnative\aeinv.dll 2014-11-12 01:33:14 C4C1B73FC2FF151BA08E1EAFDE2A2FAF 1460736 ----a-w- C:\windows\Sysnative\lsasrv.dll 2014-11-12 01:33:14 58F87BF5659C8EBC61EB439C916F2F9A 681984 ----a-w- C:\windows\Sysnative\adtschema.dll 2014-11-12 01:33:14 008CD4EBFABCF78D0F19B3778492648C 683520 ----a-w- C:\windows\Sysnative\termsrv.dll 2014-11-12 01:33:13 7184AEACDA13E64B10F84E9DD79C8A01 146432 ----a-w- C:\windows\Sysnative\msaudite.dll 2014-11-12 01:33:09 854B230F5D77486B67D809FFB8A10C7E 2724864 ----a-w- C:\windows\Sysnative\mshtml.tlb 2014-11-12 01:33:09 7293701905DF1F40760C851F20DDC9EC 114688 ----a-w- C:\windows\Sysnative\ieetwcollector.exe 2014-11-12 01:33:09 4E47ABA3C6C5032446A2AF7EFD026037 716800 ----a-w- C:\windows\Sysnative\ie4uinit.exe 2014-11-12 01:33:09 26BC4EC95E363DD59171710E22108F15 34304 ----a-w- C:\windows\Sysnative\iernonce.dll 2014-11-12 01:33:09 1F3794CE1AEA5DA12ACF90210EAE4ECB 48640 ----a-w- C:\windows\Sysnative\ieetwproxystub.dll 2014-11-12 01:33:08 33098C85B789630865CD3F5D22FB0DFC 77824 ----a-w- C:\windows\Sysnative\JavaScriptCollectionAgent.dll 2014-11-12 01:33:06 56651A76C63DAF2C593F1F767FC8A856 1550336 ----a-w- C:\windows\Sysnative\urlmon.dll 2014-11-12 01:33:06 1C216980E7D21100A357B52B3C45F78D 388272 ----a-w- C:\windows\Sysnative\iedkcs32.dll 2014-11-12 01:33:05 E17C34BECCD1388E9B386A9F82F01222 4096 ----a-w- C:\windows\Sysnative\ieetwcollectorres.dll 2014-11-12 01:33:05 C6A719FD0B07B2DD0ADACD07636F4BAD 968704 ----a-w- C:\windows\Sysnative\MsSpellCheckingFacility.exe 2014-11-12 01:33:05 2A1A7F17C906941334C6A67E935F214B 316928 ----a-w- C:\windows\Sysnative\dxtrans.dll 2014-11-12 01:33:05 1E30BECF0DB35481588FB72C9CF97CA2 800768 ----a-w- C:\windows\Sysnative\msfeeds.dll 2014-11-12 01:33:04 BD708EBEDB35E474F1A19747154ACC47 799232 ----a-w- C:\windows\Sysnative\ieapfltr.dll 2014-11-12 01:33:04 6507CA9349500A535AF70670F248E525 66560 ----a-w- C:\windows\Sysnative\iesetup.dll 2014-11-12 01:33:03 5C9D58591D0091630452B04F35527240 2124288 ----a-w- C:\windows\Sysnative\inetcpl.cpl 2014-11-12 01:33:02 BA4EC6139B8830BBA9CC5D065CA5796C 2884096 ----a-w- C:\windows\Sysnative\iertutil.dll 2014-11-12 01:33:01 31F2A5ECFD2C75F970A3007ACD5627C7 54784 ----a-w- C:\windows\Sysnative\jsproxy.dll 2014-11-12 01:33:01 08BCDD6C9E23D00309F359620461DFE8 144384 ----a-w- C:\windows\Sysnative\ieUnatt.exe 2014-11-12 01:33:00 7EE5FBD190BF5B27F7977EA6CBF0DCAC 92160 ----a-w- C:\windows\Sysnative\mshtmled.dll 2014-11-12 01:33:00 69602F6259598A7837CB83D3608FE293 633856 ----a-w- C:\windows\Sysnative\ieui.dll 2014-11-12 01:33:00 277A4735954F1BF29EE3D138A5251BFE 490496 ----a-w- C:\windows\Sysnative\dxtmsft.dll 2014-11-12 01:33:00 154B8555A118BCFD95F358390E418B00 14390272 ----a-w- C:\windows\Sysnative\ieframe.dll 2014-11-12 01:32:59 F208D7FB40FD80EA9F123BABF687359C 6040064 ----a-w- C:\windows\Sysnative\jscript9.dll 2014-11-12 01:32:59 B6DC4597FF946B0C8B29650A71F52D4E 580096 ----a-w- C:\windows\Sysnative\vbscript.dll 2014-11-12 01:32:59 98088A13F65BE35DA3693F264740CEEC 1359360 ----a-w- C:\windows\Sysnative\mshtmlmedia.dll 2014-11-12 01:32:59 7EC80DB959695D4F927D2D601DA59F35 814080 ----a-w- C:\windows\Sysnative\jscript9diag.dll 2014-11-12 01:32:59 6FC2819A4F80AAB2DADEDFC1EFEE3C3F 2365440 ----a-w- C:\windows\Sysnative\wininet.dll 2014-11-12 01:32:58 EE3592B010E3F69D141323E592C01A1A 199680 ----a-w- C:\windows\Sysnative\msrating.dll 2014-11-12 01:32:58 4B6D9AB2ECD11AF5F6B1C42D938E0A85 88064 ----a-w- C:\windows\Sysnative\MshtmlDac.dll 2014-11-12 01:32:57 BBD6A636AAA65D874F3863280CD8373D 25110016 ----a-w- C:\windows\Sysnative\mshtml.dll 2014-11-12 01:32:03 D005697F0467BBDDAB7638496DA5DB52 2048 ----a-w- C:\windows\Sysnative\msxml3r.dll 2014-11-12 01:32:03 364ECFF4ABD9D575F4F7CF7EB7928EF3 1882624 ----a-w- C:\windows\Sysnative\msxml3.dll 2014-11-12 01:32:03 1FEBD408F32DFC523882E7DA5AC57819 878080 ----a-w- C:\windows\Sysnative\IMJP10K.DLL 2014-11-12 01:32:01 FAFCB80D42A65964B6F4945283B8C10F 296448 ----a-w- C:\windows\Sysnative\AudioSes.dll 2014-11-12 01:32:01 DE3E38431B00C2EA247C53675DCF01A0 680960 ----a-w- C:\windows\Sysnative\audiosrv.dll 2014-11-12 01:32:01 B1BB7B91C3C878FDB2874138CE81C4EF 284672 ----a-w- C:\windows\Sysnative\EncDump.dll 2014-11-12 01:32:01 A2C9E45F4069A002E985D1563D16813B 440832 ----a-w- C:\windows\Sysnative\AudioEng.dll 2014-11-12 01:32:01 9383B21A4B77C130940262DDC5F3F49B 500224 ----a-w- C:\windows\Sysnative\AUDIOKSE.dll 2014-11-12 01:31:51 A71B81AC2C14ABA013CCF1225D9E3E36 342016 ----a-w- C:\windows\Sysnative\schannel.dll 2014-11-12 01:31:51 109CC0DF72CC07A6CB59D2995255A1DA 309760 ----a-w- C:\windows\Sysnative\ncrypt.dll 2014-11-12 01:31:50 DF30FC54FFF79BC744B22A4850A3CF92 86528 ----a-w- C:\windows\Sysnative\TSpkg.dll 2014-11-12 01:31:50 55F0CF40479A1FC89CFA578909A540F2 210944 ----a-w- C:\windows\Sysnative\wdigest.dll 2014-11-12 01:31:50 47C48C705F4F1EFC99B50B43AE4301FE 314880 ----a-w- C:\windows\Sysnative\msv1_0.dll 2014-11-12 01:31:49 336BA030AB7B05300CB0B5C6AFB27176 22016 ----a-w- C:\windows\Sysnative\credssp.dll 2014-11-12 01:31:39 93C055B6AAD76360A60CB7E59A491531 3198976 ----a-w- C:\windows\Sysnative\win32k.sys 2014-11-12 01:31:39 934735F508E297504460935B71E99F0B 77824 ----a-w- C:\windows\Sysnative\packager.dll 2014-11-12 01:31:33 2720C94ADCC1727A66365CCB1CE456C4 3241984 ----a-w- C:\windows\Sysnative\msi.dll 2014-11-12 01:31:29 B938AF16A521C913791C6F7AFF032757 861696 ----a-w- C:\windows\Sysnative\oleaut32.dll ====== C:\windows\Sysnative\drivers ===== 2014-11-12 01:33:14 41774FF331F609EF442B7398EE6202B1 155064 ----a-w- C:\windows\Sysnative\drivers\ksecpkg.sys ====== C:\windows\Tasks ====== 2014-11-17 19:34:58 30BE14EECB6AA4093ECC81C543D15104 3322 ----a-w- C:\windows\Sysnative\Tasks\SuperFastPC_AutorunOnStartup 2014-11-17 05:44:44 3E7C7B9F299DEC4581D6794500B8D468 3110 ----a-w- C:\windows\Sysnative\Tasks\{EE798A9B-0592-4486-A96B-51EFD6F03341} ====== C:\windows\Temp ====== ======= C:\Program Files ===== 2014-11-18 23:10:55 -------- d-----w- C:\Program Files\HitmanPro 2014-11-17 04:00:01 -------- d-----w- C:\Program Files\COMODO 2014-10-25 01:30:14 -------- d-----w- C:\Program Files\Common Files\Wolfram Research 2014-10-25 01:30:13 -------- d-----w- C:\Program Files\Extras ======= C:\PROGRA~2 ===== 2014-10-25 01:30:14 -------- d-----w- C:\PROGRA~2\COMMON~1\Wolfram Research 2014-10-25 01:30:13 -------- d-----w- C:\PROGRA~2\COMMON~1\ResearchSoft 2014-10-25 01:28:38 -------- d-----w- C:\PROGRA~2\Wolfram Research 2014-10-23 22:38:58 -------- d-----w- C:\PROGRA~2\QuickTime ======= C: ===== ====== C:\Users\Bashaws\AppData\Roaming ====== 2014-11-17 19:34:55 -------- d-----w- C:\Users\Bashaws\AppData\Roaming\1H1Q1V0B1L1G1N1V0M1P1Q1L1T0D1P1E2Z 2014-11-17 03:56:26 -------- d-----w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100 2014-11-17 03:03:45 FDCFDA1949FC3D2CE13A8F4F4018BDF8 7 ----a-w- C:\Users\Bashaws\AppData\Roaming\handle.txt 2014-11-17 01:29:57 -------- d-sh--w- C:\Users\Bashaws\AppData\Locallow\EmieBrowserModeList 2014-11-17 01:28:48 -------- d-sh--w- C:\Users\Bashaws\AppData\Local\EmieBrowserModeList 2014-11-17 01:22:54 -------- d-----w- C:\windows\sysWoW64\config\systemprofile\AppData\Locallow\Sun 2014-11-17 01:22:13 -------- d-----w- C:\Users\Bashaws\AppData\Local\IsolatedStorage 2014-10-25 01:31:12 -------- d-----w- C:\Users\Bashaws\AppData\Roaming\MathematicaPlayer 2014-10-25 01:31:12 -------- d-----w- C:\Users\Bashaws\AppData\Local\MathematicaPlayer ====== C:\Users\Bashaws ====== 2014-11-21 00:59:54 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih(1).exe 2014-11-18 23:10:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro 2014-11-18 23:10:06 -------- d-----w- C:\ProgramData\HitmanPro 2014-11-18 23:09:18 00FD7C6BEDEE9B24B0DB02B68B07AD54 11222744 ----a-w- C:\Users\Bashaws\Downloads\HitmanPro_x64.exe 2014-11-18 22:56:16 8573E3C2603DD23E1A8DE3177D146D18 1707532 ----a-w- C:\Users\Bashaws\Downloads\JRT.exe 2014-11-18 22:46:49 6504113C2218667814D4F54847BA046A 2140160 ----a-w- C:\Users\Bashaws\Downloads\adwcleaner_4.101.exe 2014-11-18 22:44:53 1747A50E01D0FDB324F9F50E025FDB66 401920 ----a-w- C:\Users\Bashaws\Downloads\MiniToolBox.exe 2014-11-18 21:54:47 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih.exe 2014-11-18 01:42:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-11-18 01:41:27 31AD2D566C369B00F0B07FAA6BAD7D87 880784 ----a-w- C:\Users\Bashaws\Downloads\ChromeSetup.exe 2014-11-18 01:25:00 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(2).exe 2014-11-18 01:24:18 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(1).exe 2014-11-18 01:23:38 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025.exe 2014-11-17 19:39:05 -------- d-----w- C:\ProgramData\Oracle 2014-11-17 19:35:16 -------- d-----w- C:\ProgramData\Unchecky 2014-11-17 19:34:16 6FA7457F23AB31E68A674E5342FE32BD 29405096 ----a-w- C:\Users\Bashaws\Downloads\JavaRuntimeEnvironmentSetup.exe 2014-11-17 19:32:43 554D11357450E8DC80888285273D05DA 860576 ----a-w- C:\Users\Bashaws\Downloads\JavaSetup.exe 2014-11-17 04:00:14 -------- d-----w- C:\ProgramData\COMODO 2014-11-17 03:59:04 5B915884D19C1B1DA6409C039E7235CD 42533968 ----a-w- C:\Users\Bashaws\Downloads\ChromeStandaloneSetup.exe 2014-11-17 03:51:30 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup (1).exe 2014-11-17 03:49:57 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup.exe 2014-11-17 03:49:55 -------- d--h--w- C:\Users\Public\Temp 2014-11-17 03:45:42 5C87C0D9B111108332B25F44745A6DD1 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup (1).exe 2014-11-17 03:44:42 1D65D6F0E8BB6FD37E0B9333C60585B0 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup.exe 2014-11-17 03:30:39 86A0A588328C6FC6CA83B66775779BFA 1238 ----a-w- C:\ProgramData\tempimage.bmp 2014-11-17 01:18:54 3A6371EF0FCC62BEF39BF94B43003C9D 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup (1).exe 2014-11-17 01:18:39 D2A286F8D08309D56905DF7B7F71EF26 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup.exe 2014-11-07 02:46:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2014-10-25 01:31:12 -------- d-----w- C:\ProgramData\MathematicaPlayer 2014-10-25 01:30:13 -------- d-----w- C:\ProgramData\Mathematica 2014-10-25 01:30:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfram CDF Player 2014-10-23 22:39:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime ====== C: exe-files == 2014-11-21 00:59:54 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih(1).exe 2014-11-18 23:10:57 E9499A51801037F4E7CD2D7937D76542 127752 ----a-w- C:\Program Files\HitmanPro\hmpsched.exe 2014-11-18 23:10:55 00FD7C6BEDEE9B24B0DB02B68B07AD54 11222744 ----a-w- C:\Program Files\HitmanPro\HitmanPro.exe 2014-11-18 23:09:18 00FD7C6BEDEE9B24B0DB02B68B07AD54 11222744 ----a-w- C:\Users\Bashaws\Downloads\HitmanPro_x64.exe 2014-11-18 22:56:32 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\erunt\ERUNT.EXE 2014-11-18 22:56:16 8573E3C2603DD23E1A8DE3177D146D18 1707532 ----a-w- C:\Users\Bashaws\Downloads\JRT.exe 2014-11-18 22:46:49 6504113C2218667814D4F54847BA046A 2140160 ----a-w- C:\Users\Bashaws\Downloads\adwcleaner_4.101.exe 2014-11-18 22:44:53 1747A50E01D0FDB324F9F50E025FDB66 401920 ----a-w- C:\Users\Bashaws\Downloads\MiniToolBox.exe 2014-11-18 21:54:47 0CCA673D5DDB45871D05F6A733059E56 1055936 ----a-w- C:\Users\Bashaws\Downloads\install_flashplayer15x32_mssa_aaa_aih.exe 2014-11-18 01:42:46 D804A4D7DF4228FC0C6105933EEAD715 41093712 ----a-w- C:\Program Files (x86)\Google\Update\Install\{6787320C-1E60-42D7-B6DB-1C5B3C507A3C}\38.0.2125.122_chrome_installer.exe 2014-11-18 01:42:45 D804A4D7DF4228FC0C6105933EEAD715 41093712 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\38.0.2125.122\38.0.2125.122_chrome_installer.exe 2014-11-18 01:41:27 31AD2D566C369B00F0B07FAA6BAD7D87 880784 ----a-w- C:\Users\Bashaws\Downloads\ChromeSetup.exe 2014-11-18 01:25:00 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(2).exe 2014-11-18 01:24:18 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025(1).exe 2014-11-18 01:23:38 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Bashaws\Downloads\mbam-setup-2.0.3.1025.exe 2014-11-18 00:45:40 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe 2014-11-18 00:35:52 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9F62F96D-86F3-4B34-B4C4-B4730117285E}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-18 00:18:42 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{C759D2A6-42CE-4551-B3E5-D37A1FDD6C05}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-18 00:14:05 6006ADBF1CAE8AA3286140159B25C668 220264 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\~un0\u0.exe 2014-11-17 19:44:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{9CD467B8-FE78-415C-9525-AA429389F8E1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 19:43:59 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{3C5F7622-8321-4A7D-88AF-0F09F624B656}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 19:36:01 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{2A2AA28A-394C-474B-AFCC-C750C22C5853}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 19:34:55 BF375A90FE0B135395E20B0EB9190C11 572739 ----a-w- C:\Users\Bashaws\AppData\Roaming\1H1Q1V0B1L1G1N1V0M1P1Q1L1T0D1P1E2Z\Java Runtime Environment Packages\uninstaller.exe 2014-11-17 19:34:16 6FA7457F23AB31E68A674E5342FE32BD 29405096 ----a-w- C:\Users\Bashaws\Downloads\JavaRuntimeEnvironmentSetup.exe 2014-11-17 19:32:43 554D11357450E8DC80888285273D05DA 860576 ----a-w- C:\Users\Bashaws\Downloads\JavaSetup.exe 2014-11-17 19:28:34 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{5706ECE5-4C61-44EB-A98A-748FBE624894}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:51:39 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D382C18F-46F3-43D5-B0B9-A7F8C7AA4F4F}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:50:30 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{704F8793-DF68-4495-9CA9-DF80A1E48DF1}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:49:44 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F7CD0422-1AF3-4F50-9B99-33E77BF6BD24}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:46:07 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F6C28DCE-B06D-468C-80D3-86CB23CE67E7}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:44:43 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E50B5CC3-96A7-4CA0-929E-DFCCCD8F40C6}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:41:31 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{F0181803-A3A8-47A4-A8DD-4B007395957C}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:39:35 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:33:00 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{E2C2F68F-E8BC-4E16-903A-4735D3E9FAF2}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 05:04:40 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\21686uninstall.exe 2014-11-17 04:33:49 20DA5C80C03DF9A417354319F56E9545 381728 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\{26E50819-51C3-41D2-9E50-5F88137C4538}\{D6E1527F-4144-45D0-9B1B-99F7FC050857}\Default\Extensions\banjjklfojcdbofbhbgiedekefohoaff\10.22.0.93_0\nativeMessaging\TBMessagingHost.exe 2014-11-17 04:05:47 D804A4D7DF4228FC0C6105933EEAD715 41093712 ----atw- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\38.0.2125.122\chrome_installer.exe 2014-11-17 03:59:04 5B915884D19C1B1DA6409C039E7235CD 42533968 ----a-w- C:\Users\Bashaws\Downloads\ChromeStandaloneSetup.exe 2014-11-17 03:58:46 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\8E6B8FB6-08A0-4AA5-9FD5-C280C1C5EAB2\DismHost.exe 2014-11-17 03:58:30 9F1AE66D7954FE2E0909A5EBC6B94798 67072 ----a-w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100\Chrome-bin\wow_helper.exe 2014-11-17 03:58:28 5D2D737B0B6FB1FFC7FFAAAAB92141A0 655872 ----a-w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100\Chrome-bin\chrome.exe 2014-11-17 03:56:33 AC95D64D7A5DFAAABEC07D4B2DB77A73 204072 ----a-w- C:\Users\Bashaws\AppData\Local\33C1FBAC-DF5D-9DDB-AE00-000000B100\uninstall.exe 2014-11-17 03:55:03 F27CAB0047E10119CF315B0C71FFC9A0 213754 ----a-w- C:\c3f6beae-d430-4a21-802a-4c703bc75b60\62804985-6E8C-4DBF-A256-C43DB76EAA29.exe 2014-11-17 03:51:30 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup (1).exe 2014-11-17 03:49:57 9ADF09DA2F4A161B9DEC8B815D9FF0B6 844552 ----a-w- C:\Users\Bashaws\Downloads\chrome-setup.exe 2014-11-17 03:47:19 144A9AA1A785234E820D44A0D2B6423D 7820568 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\supoptsetup.exe 2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\156Btmp\silentsddsetup.exe 2014-11-17 03:46:57 13EDA298A0CCB68AF5ADB06EFAFB7BAC 3369792 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14C0tmp\silentsddsetup.exe 2014-11-17 03:46:38 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\154Btmp\cloudscout.exe 2014-11-17 03:46:32 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14AEtmp\cloudscout.exe 2014-11-17 03:46:24 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1508tmp\5555-1001_newplayer.exe 2014-11-17 03:46:19 C61471B6987FEE827E7ED61FDAFE744C 3920757 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\147Btmp\5555-1001_newplayer.exe 2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\14A8tmp\jfilemanagersetup.exe 2014-11-17 03:46:19 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\144Btmp\jfilemanagersetup.exe 2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\1518tmp\superoptimizersetup.exe 2014-11-17 03:46:19 353CDBE393E56EA46542064FA2B0F3AE 8533520 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\148Dtmp\superoptimizersetup.exe 2014-11-17 03:45:42 5C87C0D9B111108332B25F44745A6DD1 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup (1).exe 2014-11-17 03:44:42 1D65D6F0E8BB6FD37E0B9333C60585B0 844560 ----a-w- C:\Users\Bashaws\Downloads\adobeflashplayer15betastandalone-setup.exe 2014-11-17 03:31:16 181020AE3FC61205C1DA67BE131A1095 439296 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12895uninstall.exe 2014-11-17 03:01:26 C27E418EE71E218F5944FAB069C7A233 2203422 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C5tmp\jfilemanagersetup.exe 2014-11-17 03:01:24 C732B52B245444E3F568D372CE399911 1037015 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\12C8tmp\cloudscout.exe 2014-11-17 01:22:15 F1E994BD5C745F5403098727B3684273 2129408 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\RarSFX0\curl.exe 2014-11-17 01:20:51 DD7F24DACD85EEDD221A55313E97DA10 5826632 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\optprosetup.exe 2014-11-17 01:18:54 3A6371EF0FCC62BEF39BF94B43003C9D 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup (1).exe 2014-11-17 01:18:39 D2A286F8D08309D56905DF7B7F71EF26 399224 ----a-w- C:\Users\Bashaws\Downloads\Java_Setup.exe 2014-11-16 13:18:10 3EAE59EEFFEC1E7699185DEF6C4105B5 175123 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\is45637729\1879879_stp\Generic_vo.exe 2014-11-15 00:34:57 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateSetup.exe 2014-11-15 00:34:57 5B4ED5734945619EE3BCDB9825D2F526 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe 2014-11-15 00:34:57 06036279056145E0F08FC095CB789E6A 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateBroker.exe 2014-11-15 00:34:50 EDD3E562684CB4C50704B471BEAB1F86 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateComRegisterShell64.exe 2014-11-15 00:34:50 CB8C1CC4F46FBAC78150754D77460C73 230792 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe 2014-11-15 00:34:50 7161E8E31B7FD3B1CE083C2CA5FD5F44 285064 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe 2014-11-15 00:34:49 F172AD4E906D97ED8F071896FC6789DC 107912 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdate.exe 2014-11-15 00:34:47 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.25.11\GoogleUpdateSetup.exe === C: other files == 2014-11-18 22:56:30 F69854EA9F4462090B0AEBB3723881B5 14957 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\get.bat 2014-11-18 22:56:30 F56A319979F631C141F5FF02DF87FDB1 43563 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\prelim.bat 2014-11-18 22:56:30 DF7FA1F19DECC2671D46B33E6B1C0785 190133 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\misc.bat 2014-11-18 22:56:30 DD1E4D974B1672ABD09EFFB225791C4A 1230 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\TDL4.bat 2014-11-18 22:56:30 AD2F52DC72B10AF331692E4A4DD80DFC 18670 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\medfos.bat 2014-11-18 22:56:30 AA0C656F898523BEDF2DA6923197BB80 1264 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\surfvox.bat 2014-11-18 22:56:30 8E6020C14F982CF11B3FE7DBB0CB8EDE 24738 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\searchlnk.bat 2014-11-18 22:56:30 86707BCE5CBB65D9B1C41E249B4423BA 152733 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\firefox.bat 2014-11-18 22:56:30 83F691D8398F0E37E71E9355BF730DB9 719 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\ev_clear.bat 2014-11-18 22:56:30 6D12411EDA5A8EFC2018F64A6860BB78 10606 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\runvalues.bat 2014-11-18 22:56:30 38A0BDF322ACCC968B0A824C38D50157 29635 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\ask.bat 2014-11-18 22:56:30 335DFF8F23E5EC02B5426362F0F8509B 31401 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\iexplore.bat 2014-11-18 22:56:30 0C4649A62845AB5D5DBCC4998477FF6D 1813 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\delfolders.bat 2014-11-18 22:56:30 080CFDE64F31E7B50EECF4552033E84D 9937 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\mws.bat 2014-11-18 22:56:30 048407135C9B1FB6A355E256BD96160D 14192 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\jrt\chrome.bat 2014-11-18 00:09:33 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_3152_28189\banjjklfojcdbofbhbgiedekefohoaff.crx 2014-11-17 05:51:28 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_8980_32269\banjjklfojcdbofbhbgiedekefohoaff.crx 2014-11-17 05:40:59 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_9684_1344\banjjklfojcdbofbhbgiedekefohoaff.crx 2014-11-17 04:18:22 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_5296_12756\banjjklfojcdbofbhbgiedekefohoaff.crx 2014-11-17 03:59:17 D7F249656B130E1BF569B25710DDFCBE 3074039 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\scoped_dir_4116_17544\banjjklfojcdbofbhbgiedekefohoaff.crx 2014-11-17 03:55:16 4F7B52597DD085227C895F2BC2EED850 756646 ----a-w- C:\c3f6beae-d430-4a21-802a-4c703bc75b60\MediaDownloader.zip 2014-11-17 03:47:31 9A5579B199A8522D1B93D3CA1D231088 148 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\SDD.bat 2014-11-17 03:47:13 383F11FEC6484CE4443BF6C460757160 162 ----a-w- C:\Users\Bashaws\AppData\Local\Temp\SDDUpdater.bat ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Spotify Web Helper"="C:\Users\Bashaws\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "Spotify"="C:\Users\Bashaws\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "PCKeeper2"="C:\Program Files\Kromtech\PCKeeper Live\PCKeeper.exe /autorun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "HP Software Update"="c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "PDF Complete"="C:\Program Files (x86)\PDF Complete\pdfsty.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Spotify Web Helper"="C:\Users\Bashaws\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "Spotify"="C:\Users\Bashaws\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "PCKeeper2"="C:\Program Files\Kromtech\PCKeeper Live\PCKeeper.exe /autorun" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "IntelliType Pro"="C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe" "IntelliPoint"="C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" ==== Startup Folders ====================== ==== Task Scheduler Jobs ====================== C:\windows\tasks\Adobe Flash Player Updater.job --a------ C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11/12/2014 03:35 PM] C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10/25/2014 10:28 AM] C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10/25/2014 10:28 AM] C:\windows\tasks\HPCeeScheduleForBashaws.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [07/15/2011 06:43 AM] ==== Other Scheduled Tasks ====================== "C:\windows\SysNative\tasks\Adobe Flash Player Updater" [C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\HPCeeScheduleForBashaws" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\windows\SysNative\tasks\MotoCast Update" ["C:\Program Files (x86)\Motorola Mobility\MotoCast\LiveUpdate\MotoCastUpdate.exe"] "C:\windows\SysNative\tasks\Motorola Device Manager Engine" ["C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe"] "C:\windows\SysNative\tasks\Motorola Device Manager Update" ["C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe"] "C:\windows\SysNative\tasks\ProPCCleaner_Popup" [C:\Program Files (x86)\Pro PC Cleaner\Splash.exe] "C:\windows\SysNative\tasks\ProPCCleaner_Start" [C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe] "C:\windows\SysNative\tasks\SuperFastPC_AutorunOnStartup" [C:\Program Files (x86)\System Optimizer Pro\SystemOptimizerPro.exe] "C:\windows\SysNative\tasks\User_Feed_Synchronization-{3861E564-79D6-4D7B-87FE-43F49E84FDB7}" [C:\windows\system32\msfeedssync.exe] "C:\windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Warranty Opt-In(No)" [c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_PostWarrantyAlert.exe] "C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Warranty Opt-In(Yes)" [c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_PostWarrantyAlert.exe] "C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{dc11fe86-30ee-446f-9e0f-41448bd17c12}"="C:\Program Files (x86)\Mozilla Firefox\extensions\{dc11fe86-30ee-446f-9e0f-41448bd17c12}" [] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04/04/2014 05:36 AM] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Bashaws\AppData\Roaming\Mozilla\Firefox\Profiles\yu4mr6zw.default-1416276520975 67D325B5AEB28E381B84E8DE1A90C7A8 - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll - Shockwave Flash ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions oilkkkefbalmbfppgjmgjoefbclebkce - No path found[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions oilkkkefbalmbfppgjmgjoefbclebkce - No path found[] Docs - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Gmail - Bashaws\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="[url]http://www.google.com[/url]" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="[url]http://www.google.com/search?q={searchTerms}[/url]" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="[url]http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02[/url]" {D944BB61-2E34-4DBF-A683-47E505C587DC} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_USERS\S-1-5-21-2842075429-1242635110-2963454771-1001\Software\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{dc11fe86-30ee-446f-9e0f-41448bd17c12} deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4E30E037E0535E84D9E3349209D354D4 deleted successfully HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\oilkkkefbalmbfppgjmgjoefbclebkce deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\oilkkkefbalmbfppgjmgjoefbclebkce deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\oilkkkefbalmbfppgjmgjoefbclebkce deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{730E03E4-350E-48E5-9D3E-4329903D454D} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\4E30E037E0535E84D9E3349209D354D4 deleted successfully ==== Empty IE Cache ====================== C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Bashaws\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Bashaws\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Bashaws\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Bashaws\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Bashaws\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Bashaws\AppData\Local\Mozilla\Firefox\Profiles\yu4mr6zw.default-1416276520975\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Bashaws\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=139 folders=29 32061183 bytes) ==== Empty Temp Folders ====================== C:\Users\Bashaws\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\windows\Temp successfully emptied C:\Users\Bashaws\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on Fri 11/21/2014 at 13:36:32.67 ====================== [/QUOTE]
Insert quotes…
Verification
Post reply
Top