Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
UKASH/Police Virus Help
Message
<blockquote data-quote="JackJones" data-source="post: 115354" data-attributes="member: 7301"><p>Here is the content of the Farbar Recovery Scan:</p><p></p><p>Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-03-2013 (ATTENTION: FRST version is 25 days old)</p><p>Ran by SYSTEM at 07-04-2013 03:18:32</p><p>Running from H:\</p><p>Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US) </p><p>The current controlset is ControlSet001</p><p></p><p>==================== Registry (Whitelisted) ===================</p><p></p><p>HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [4394032 2013-03-13] (AVG Technologies CZ, s.r.o.)</p><p>HKU\JackJones\...\Winlogon: [Shell] explorer.exe,C:\Users\JackJones\AppData\Roaming\AltShell.dat [33280 2011-11-16] ()</p><p>HKU\UpdatusUser\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2012-06-16] (Google Inc.)</p><p>HKU\UpdatusUser\...\Run: [Epson Stylus SX420W(Network)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\Windows\TEMP\E_SC320.tmp" /EF "HKCU" [224768 2009-09-13] (SEIKO EPSON CORPORATION)</p><p>HKU\UpdatusUser\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [324976 2010-05-21] (Flexera Software, Inc.)</p><p>Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)</p><p>Tcpip\Parameters: [DhcpNameServer] 192.168.1.254</p><p></p><p>==================== Services (Whitelisted) ===================</p><p></p><p>2 ABBYY.Licensing.FineReader.Sprint.9.0; "C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service [759048 2009-05-14] (ABBYY)</p><p>2 AVGIDSAgent; "C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe" [4937264 2013-02-27] (AVG Technologies CZ, s.r.o.)</p><p>2 avgwd; "C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe" [282624 2013-02-18] (AVG Technologies CZ, s.r.o.)</p><p>2 fshoster; "C:\Program Files (x86)\BT Cloud\fshoster32.exe" -hosterid:0 [187960 2012-12-07] (F-Secure Corporation)</p><p>3 Futuremark SystemInfo Service; "C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe" [135584 2012-04-26] (Futuremark Corporation)</p><p>2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe /StartService [278336 2011-09-19] (NVIDIA)</p><p>2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-08] (Nuance Communications, Inc.)</p><p>2 RapportMgmtService; "C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe" [1124184 2013-03-17] (Trusteer Ltd.)</p><p>3 RoxMediaDBVHS; "C:\Program Files (x86)\Common Files\Roxio Shared\VHStoDVD\SharedCOM\RoxMediaDBVHS.exe" [1114384 2011-12-18] (Rovi Corporation)</p><p>2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [354816 2013-03-22] ()</p><p>2 VaultClientSRV; C:\Program Files (x86)\BT Auto Backup\VaultClientSRV.exe [1051752 2009-11-26] (BT)</p><p>3 VaultClientUpgrade; C:\Program Files (x86)\BT Auto Backup\VaultClientUpgrade.exe [56424 2009-11-26] (BT)</p><p></p><p>==================== Drivers (Whitelisted) =====================</p><p></p><p>1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-02-26] (AVG Technologies CZ, s.r.o.)</p><p>0 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [71480 2013-02-07] (AVG Technologies CZ, s.r.o.)</p><p>1 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [206136 2013-02-07] (AVG Technologies CZ, s.r.o.)</p><p>0 Avgloga; C:\Windows\System32\Drivers\Avgloga.sys [311096 2013-02-07] (AVG Technologies CZ, s.r.o.)</p><p>0 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [116536 2013-02-07] (AVG Technologies CZ, s.r.o.)</p><p>0 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [45880 2013-02-07] (AVG Technologies CZ, s.r.o.)</p><p>1 Avgtdia; C:\Windows\System32\Drivers\Avgtdia.sys [239416 2013-02-13] (AVG Technologies CZ, s.r.o.)</p><p>2 DgiVecp; C:\Windows\System32\Drivers\DgiVecp.sys [53816 2009-03-02] (Samsung Electronics Co., Ltd.)</p><p>2 DgiVecp; C:\Windows\SysWow64\Drivers\DgiVecp.sys [40448 2003-07-28] (DeviceGuys, Inc.)</p><p>3 nvoclk64; C:\Windows\System32\Drivers\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.)</p><p>1 RapportCerberus_51755; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_51755.sys [586072 2013-03-25] ()</p><p>1 RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [228600 2013-03-17] (Trusteer Ltd.)</p><p>3 RapportIaso; \??\c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys [175352 2013-03-25] (Trusteer Ltd.)</p><p>0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [236248 2013-03-17] (Trusteer Ltd.)</p><p>1 RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [357272 2013-03-17] (Trusteer Ltd.)</p><p>3 TridVid; C:\Windows\System32\Drivers\TridVid.sys [0 2012-07-09] ()</p><p>3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA64A.sys [736280 2011-12-28] (eMPIA Technology, Inc.)</p><p>3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM64A.sys [1171992 2011-12-28] (eMPIA Technology, Inc.)</p><p></p><p>==================== NetSvcs (Whitelisted) ====================</p><p></p><p></p><p>==================== One Month Created Files and Folders ========</p><p></p><p>2013-04-06 17:44 - 2013-04-06 17:44 - 00000000 ____D C:\meta</p><p>2013-04-06 17:02 - 2013-04-06 17:47 - 00001821 ____A C:\Users\Public\Desktop\HitmanPro.lnk</p><p>2013-04-06 17:02 - 2013-04-06 17:02 - 00000000 ____D C:\Program Files\HitmanPro</p><p>2013-04-06 17:00 - 2013-04-06 17:44 - 00000000 ____D C:\ProgramData\HitmanPro</p><p>2013-04-06 16:28 - 2013-04-06 16:28 - 00000000 ____D C:\summaries</p><p>2013-04-06 16:20 - 2013-04-06 18:15 - 00000004 ____A C:\Users\JackJones\AppData\Roaming\AltShell.ini</p><p>2013-04-05 13:57 - 2013-04-05 13:57 - 00000000 ____D C:\Users\JackJones\AppData\Local\{A6A3FB9C-FDAD-4DFC-9D0B-11D99443C0EE}</p><p>2013-04-05 13:30 - 2013-04-05 13:30 - 00000097 ____A C:\Windo+ws\lotus.ini</p><p>2013-04-05 13:29 - 2013-04-05 13:29 - 00000000 ____A C:\Windows\winhelp.ini</p><p>2013-04-05 12:45 - 2013-04-05 12:43 - 01112854 ____A C:\Users\Public\Documents\Full Family Tree (5 Apr 2013).ged</p><p>2013-04-05 05:45 - 2013-04-06 18:14 - 00000840 ____A C:\Windows\setupact.log</p><p>2013-04-05 05:45 - 2013-04-05 05:45 - 00000000 ____A C:\Windows\setuperr.log</p><p>2013-04-01 13:57 - 2013-04-01 13:57 - 00000154 ____A C:\Users\JackJones\Downloads\MapCoords_0.15.zip</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 19221504 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 15407616 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 14317568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 13761024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02240512 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02046464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01766912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01129984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00526848 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00391680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe</p><p>2013-03-22 10:26 - 2013-02-11 20:12 - 00019968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys</p><p>2013-03-21 14:13 - 2013-03-21 14:13 - 08082573 ____A C:\Users\Public\Desktop\fsdiag.zip</p><p>2013-03-09 00:28 - 2013-03-09 00:28 - 22612824 ____A C:\Users\JackJones\Downloads\serviio-1.2-win-setup.exe</p><p></p><p></p><p>==================== One Month Modified Files and Folders =======</p><p></p><p>2013-04-07 03:18 - 2013-04-07 03:18 - 00000000 ____D C:\FRST</p><p>2013-04-06 18:15 - 2013-04-06 16:20 - 00000004 ____A C:\Users\JackJones\AppData\Roaming\AltShell.ini</p><p>2013-04-06 18:15 - 2012-06-16 09:59 - 01878267 ____A C:\Windows\WindowsUpdate.log</p><p>2013-04-06 18:14 - 2013-04-05 05:45 - 00000840 ____A C:\Windows\setupact.log</p><p>2013-04-06 18:14 - 2012-10-10 15:22 - 00000268 ____A C:\.dir</p><p>2013-04-06 18:14 - 2012-06-16 10:26 - 00000000 ____D C:\ProgramData\NVIDIA</p><p>2013-04-06 18:14 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT</p><p>2013-04-06 17:49 - 2009-07-13 20:45 - 00022064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0</p><p>2013-04-06 17:49 - 2009-07-13 20:45 - 00022064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0</p><p>2013-04-06 17:47 - 2013-04-06 17:02 - 00001821 ____A C:\Users\Public\Desktop\HitmanPro.lnk</p><p>2013-04-06 17:44 - 2013-04-06 17:44 - 00000000 ____D C:\meta</p><p>2013-04-06 17:44 - 2013-04-06 17:00 - 00000000 ____D C:\ProgramData\HitmanPro</p><p>2013-04-06 17:02 - 2013-04-06 17:02 - 00000000 ____D C:\Program Files\HitmanPro</p><p>2013-04-06 16:40 - 2012-06-16 11:29 - 00000000 ____D C:\Windows\pss</p><p>2013-04-06 16:33 - 2009-07-13 21:13 - 00726316 ____A C:\Windows\System32\PerfStringBackup.INI</p><p>2013-04-06 16:28 - 2013-04-06 16:28 - 00000000 ____D C:\summaries</p><p>2013-04-06 16:06 - 2012-11-06 00:22 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job</p><p>2013-04-06 13:50 - 2012-06-16 14:28 - 00000000 ____D C:\Users\JackJones\Documents\Outlook Files</p><p>2013-04-06 09:11 - 2012-06-16 10:10 - 00000000 ____D C:\ProgramData\MFAData</p><p>2013-04-06 08:00 - 2012-06-18 13:52 - 00000000 ____D C:\Users\JackJones\AppData\Roaming\uTorrent</p><p>2013-04-06 01:08 - 2009-07-13 20:45 - 00486752 ____A C:\Windows\System32\FNTCACHE.DAT</p><p>2013-04-05 18:06 - 2012-06-17 10:02 - 00000000 ____D C:\Users\JackJones\Documents\Family Tree Maker</p><p>2013-04-05 13:57 - 2013-04-05 13:57 - 00000000 ____D C:\Users\JackJones\AppData\Local\{A6A3FB9C-FDAD-4DFC-9D0B-11D99443C0EE}</p><p>2013-04-05 13:56 - 2012-06-17 01:42 - 00136848 ____A C:\Users\JackJones\AppData\Local\GDIPFONTCACHEV1.DAT</p><p>2013-04-05 13:30 - 2013-04-05 13:30 - 00000097 ____A C:\Windows\lotus.ini</p><p>2013-04-05 13:29 - 2013-04-05 13:29 - 00000000 ____A C:\Windows\winhelp.ini</p><p>2013-04-05 12:43 - 2013-04-05 12:45 - 01112854 ____A C:\Users\Public\Documents\Full Family Tree (5 Apr 2013).ged</p><p>2013-04-05 05:52 - 2012-12-11 15:47 - 00000965 ____A C:\Users\Public\Desktop\AVG 2013.lnk</p><p>2013-04-05 05:45 - 2013-04-05 05:45 - 00000000 ____A C:\Windows\setuperr.log</p><p>2013-04-01 13:57 - 2013-04-01 13:57 - 00000154 ____A C:\Users\JackJones\Downloads\MapCoords_0.15.zip</p><p>2013-03-29 01:14 - 2012-06-16 15:30 - 00000000 ____D C:\Program Files (x86)\World of Warcraft</p><p>2013-03-25 14:13 - 2012-06-16 18:51 - 00000000 ____D C:\Windows\Panther</p><p>2013-03-25 09:08 - 2012-06-17 06:05 - 00000000 ___AD C:\Users\JackJones\Documents\Kim's Files</p><p>2013-03-23 12:08 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache</p><p>2013-03-23 11:27 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 19221504 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 15407616 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 14317568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 13761024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02240512 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 02046464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01766912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01129984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00526848 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00391680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe</p><p>2013-03-23 10:44 - 2013-03-23 10:44 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe</p><p>2013-03-21 15:55 - 2012-06-17 01:42 - 00007642 ____A C:\Users\JackJones\AppData\Local\Resmon.ResmonCfg</p><p>2013-03-21 14:13 - 2013-03-21 14:13 - 08082573 ____A C:\Users\Public\Desktop\fsdiag.zip</p><p>2013-03-21 14:05 - 2013-02-28 14:56 - 00000000 ____D C:\Users\JackJones\AppData\Local\F-Secure</p><p>2013-03-17 06:46 - 2012-06-18 14:17 - 00236248 ____A (Trusteer Ltd.) C:\Windows\System32\Drivers\RapportKE64.sys</p><p>2013-03-13 08:06 - 2012-06-16 10:12 - 00693976 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe</p><p>2013-03-13 08:06 - 2012-06-16 10:12 - 00073432 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl</p><p>2013-03-13 06:28 - 2012-08-28 23:30 - 00000000 ____D C:\Program Files\Microsoft Silverlight</p><p>2013-03-13 06:28 - 2012-08-28 23:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight</p><p>2013-03-13 00:32 - 2012-06-16 14:16 - 00000000 ____D C:\ProgramData\Microsoft Help</p><p>2013-03-13 00:30 - 2012-06-16 10:59 - 72013344 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe</p><p>2013-03-10 13:49 - 2012-06-25 00:56 - 00113152 __ASH C:\Users\JackJones\Documents\Thumbs.db</p><p>2013-03-10 11:19 - 2013-01-09 15:29 - 00002029 ____A C:\Users\Public\Desktop\Samsung AllShare.lnk</p><p>2013-03-10 11:19 - 2013-01-09 15:29 - 00000000 ____D C:\Users\JackJones\AppData\Roaming\Samsung</p><p>2013-03-09 09:41 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\NDF</p><p>2013-03-09 00:28 - 2013-03-09 00:28 - 22612824 ____A C:\Users\JackJones\Downloads\serviio-1.2-win-setup.exe</p><p></p><p>==================== Known DLLs (Whitelisted) =================</p><p></p><p></p><p>==================== Bamital & volsnap Check =================</p><p></p><p>C:\Windows\System32\winlogon.exe => MD5 is legit</p><p>C:\Windows\System32\wininit.exe => MD5 is legit</p><p>C:\Windows\SysWOW64\wininit.exe => MD5 is legit</p><p>C:\Windows\explorer.exe => MD5 is legit</p><p>C:\Windows\SysWOW64\explorer.exe => MD5 is legit</p><p>C:\Windows\System32\svchost.exe => MD5 is legit</p><p>C:\Windows\SysWOW64\svchost.exe => MD5 is legit</p><p>C:\Windows\System32\services.exe => MD5 is legit</p><p>C:\Windows\System32\User32.dll => MD5 is legit</p><p>C:\Windows\SysWOW64\User32.dll => MD5 is legit</p><p>C:\Windows\System32\userinit.exe => MD5 is legit</p><p>C:\Windows\SysWOW64\userinit.exe => MD5 is legit</p><p>C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit</p><p></p><p>==================== EXE ASSOCIATION =====================</p><p></p><p>HKLM\...\.exe: exefile => OK</p><p>HKLM\...\exefile\DefaultIcon: %1 => OK</p><p>HKLM\...\exefile\open\command: "%1" %* => OK</p><p></p><p>==================== Restore Points =========================</p><p></p><p></p><p>==================== Memory info =========================== </p><p></p><p>Percentage of memory in use: 15%</p><p>Total physical RAM: 4094.18 MB</p><p>Available physical RAM: 3462.87 MB</p><p>Total Pagefile: 4092.38 MB</p><p>Available Pagefile: 3464.52 MB</p><p>Total Virtual: 8192 MB</p><p>Available Virtual: 8191.89 MB</p><p></p><p>==================== Partitions =============================</p><p></p><p>1 Drive c: () (Fixed) (Total:111.69 GB) (Free:1.64 GB) NTFS</p><p>2 Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]</p><p>5 Drive h: (MULTIBOOT) (Removable) (Total:0.48 GB) (Free:0.48 GB) FAT32</p><p>6 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS</p><p>7 Drive y: (My Data) (Fixed) (Total:931.51 GB) (Free:191.29 GB) NTFS</p><p></p><p> Disk ### Status Size Free Dyn Gpt</p><p> -------- ------------- ------- ------- --- ---</p><p> Disk 0 Online 931 GB 0 B </p><p> Disk 1 Online 111 GB 0 B </p><p> Disk 2 No Media 0 B 0 B </p><p> Disk 3 Online 499 MB 0 B </p><p></p><p>Partitions of Disk 0:</p><p>===============</p><p></p><p>Disk ID: 71FC4DD1</p><p></p><p> Partition ### Type Size Offset</p><p> ------------- ---------------- ------- -------</p><p> Partition 1 Primary 931 GB 1024 KB</p><p></p><p>==================================================================================</p><p></p><p>Disk: 0</p><p>Partition 1</p><p>Type : 07</p><p>Hidden: No</p><p>Active: No</p><p></p><p> Volume ### Ltr Label Fs Type Size Status Info</p><p> ---------- --- ----------- ----- ---------- ------- --------- --------</p><p>* Volume 1 Y My Data NTFS Partition 931 GB Healthy </p><p></p><p>=========================================================</p><p></p><p>Partitions of Disk 1:</p><p>===============</p><p></p><p>Disk ID: 61BAF3BC</p><p></p><p> Partition ### Type Size Offset</p><p> ------------- ---------------- ------- -------</p><p> Partition 1 Primary 100 MB 1024 KB</p><p> Partition 2 Primary 111 GB 101 MB</p><p></p><p>==================================================================================</p><p></p><p>Disk: 1</p><p>Partition 1</p><p>Type : 07</p><p>Hidden: No</p><p>Active: Yes</p><p></p><p> Volume ### Ltr Label Fs Type Size Status Info</p><p> ---------- --- ----------- ----- ---------- ------- --------- --------</p><p>* Volume 2 D System Rese NTFS Partition 100 MB Healthy </p><p></p><p>=========================================================</p><p></p><p>Disk: 1</p><p>Partition 2</p><p>Type : 07</p><p>Hidden: No</p><p>Active: No</p><p></p><p> Volume ### Ltr Label Fs Type Size Status Info</p><p> ---------- --- ----------- ----- ---------- ------- --------- --------</p><p>* Volume 3 C NTFS Partition 111 GB Healthy </p><p></p><p>=========================================================</p><p></p><p>Partitions of Disk 3:</p><p>===============</p><p></p><p>Disk ID: 01EBBE5A</p><p></p><p> Partition ### Type Size Offset</p><p> ------------- ---------------- ------- -------</p><p> Partition 1 Primary 499 MB 16 KB</p><p></p><p>==================================================================================</p><p></p><p>Disk: 3</p><p>Partition 1</p><p>Type : 0B</p><p>Hidden: No</p><p>Active: Yes</p><p></p><p> Volume ### Ltr Label Fs Type Size Status Info</p><p> ---------- --- ----------- ----- ---------- ------- --------- --------</p><p>* Volume 5 H MULTIBOOT FAT32 Removable 499 MB Healthy </p><p></p><p>=========================================================</p><p>============================== MBR Partition Table ==================</p><p></p><p>==============================</p><p>Partitions of Disk 0:</p><p>===============</p><p>Disk ID: 71FC4DD1</p><p></p><p>Partition 1:</p><p>=========</p><p>Hex: 0020210007FEFFFF0008000000587074</p><p>Active: NO</p><p>Type: 07 (NTFS)</p><p>Size: 932 GB</p><p></p><p>==============================</p><p>Partitions of Disk 1:</p><p>===============</p><p>Disk ID: 61BAF3BC</p><p></p><p>Partition 1:</p><p>=========</p><p>Hex: 8020210007DF130C0008000000200300</p><p>Active: YES</p><p>Type: 07 (NTFS)</p><p>Size: 100 MB</p><p></p><p>Partition 2:</p><p>=========</p><p>Hex: 00DF140C07FEFFFF002803000018F60D</p><p>Active: NO</p><p>Type: 07 (NTFS)</p><p>Size: 112 GB</p><p></p><p>==============================</p><p>Partitions of Disk 3:</p><p>===============</p><p>Disk ID: 01EBBE5A</p><p></p><p>Partition 1:</p><p>=========</p><p>Hex: 800101000B01FFFF20000000E09D0F00</p><p>Active: YES</p><p>Type: 0B</p><p>Size: 500 MB</p><p></p><p></p><p>Last Boot: 2013-04-04 00:47</p><p></p><p>==================== End Of Log =============================</p></blockquote><p></p>
[QUOTE="JackJones, post: 115354, member: 7301"] Here is the content of the Farbar Recovery Scan: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-03-2013 (ATTENTION: FRST version is 25 days old) Ran by SYSTEM at 07-04-2013 03:18:32 Running from H:\ Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US) The current controlset is ControlSet001 ==================== Registry (Whitelisted) =================== HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [4394032 2013-03-13] (AVG Technologies CZ, s.r.o.) HKU\JackJones\...\Winlogon: [Shell] explorer.exe,C:\Users\JackJones\AppData\Roaming\AltShell.dat [33280 2011-11-16] () HKU\UpdatusUser\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2012-06-16] (Google Inc.) HKU\UpdatusUser\...\Run: [Epson Stylus SX420W(Network)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\Windows\TEMP\E_SC320.tmp" /EF "HKCU" [224768 2009-09-13] (SEIKO EPSON CORPORATION) HKU\UpdatusUser\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [324976 2010-05-21] (Flexera Software, Inc.) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 ==================== Services (Whitelisted) =================== 2 ABBYY.Licensing.FineReader.Sprint.9.0; "C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service [759048 2009-05-14] (ABBYY) 2 AVGIDSAgent; "C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe" [4937264 2013-02-27] (AVG Technologies CZ, s.r.o.) 2 avgwd; "C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe" [282624 2013-02-18] (AVG Technologies CZ, s.r.o.) 2 fshoster; "C:\Program Files (x86)\BT Cloud\fshoster32.exe" -hosterid:0 [187960 2012-12-07] (F-Secure Corporation) 3 Futuremark SystemInfo Service; "C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe" [135584 2012-04-26] (Futuremark Corporation) 2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe /StartService [278336 2011-09-19] (NVIDIA) 2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-08] (Nuance Communications, Inc.) 2 RapportMgmtService; "C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe" [1124184 2013-03-17] (Trusteer Ltd.) 3 RoxMediaDBVHS; "C:\Program Files (x86)\Common Files\Roxio Shared\VHStoDVD\SharedCOM\RoxMediaDBVHS.exe" [1114384 2011-12-18] (Rovi Corporation) 2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [354816 2013-03-22] () 2 VaultClientSRV; C:\Program Files (x86)\BT Auto Backup\VaultClientSRV.exe [1051752 2009-11-26] (BT) 3 VaultClientUpgrade; C:\Program Files (x86)\BT Auto Backup\VaultClientUpgrade.exe [56424 2009-11-26] (BT) ==================== Drivers (Whitelisted) ===================== 1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-02-26] (AVG Technologies CZ, s.r.o.) 0 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [71480 2013-02-07] (AVG Technologies CZ, s.r.o.) 1 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [206136 2013-02-07] (AVG Technologies CZ, s.r.o.) 0 Avgloga; C:\Windows\System32\Drivers\Avgloga.sys [311096 2013-02-07] (AVG Technologies CZ, s.r.o.) 0 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [116536 2013-02-07] (AVG Technologies CZ, s.r.o.) 0 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [45880 2013-02-07] (AVG Technologies CZ, s.r.o.) 1 Avgtdia; C:\Windows\System32\Drivers\Avgtdia.sys [239416 2013-02-13] (AVG Technologies CZ, s.r.o.) 2 DgiVecp; C:\Windows\System32\Drivers\DgiVecp.sys [53816 2009-03-02] (Samsung Electronics Co., Ltd.) 2 DgiVecp; C:\Windows\SysWow64\Drivers\DgiVecp.sys [40448 2003-07-28] (DeviceGuys, Inc.) 3 nvoclk64; C:\Windows\System32\Drivers\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.) 1 RapportCerberus_51755; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_51755.sys [586072 2013-03-25] () 1 RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [228600 2013-03-17] (Trusteer Ltd.) 3 RapportIaso; \??\c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys [175352 2013-03-25] (Trusteer Ltd.) 0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [236248 2013-03-17] (Trusteer Ltd.) 1 RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [357272 2013-03-17] (Trusteer Ltd.) 3 TridVid; C:\Windows\System32\Drivers\TridVid.sys [0 2012-07-09] () 3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA64A.sys [736280 2011-12-28] (eMPIA Technology, Inc.) 3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM64A.sys [1171992 2011-12-28] (eMPIA Technology, Inc.) ==================== NetSvcs (Whitelisted) ==================== ==================== One Month Created Files and Folders ======== 2013-04-06 17:44 - 2013-04-06 17:44 - 00000000 ____D C:\meta 2013-04-06 17:02 - 2013-04-06 17:47 - 00001821 ____A C:\Users\Public\Desktop\HitmanPro.lnk 2013-04-06 17:02 - 2013-04-06 17:02 - 00000000 ____D C:\Program Files\HitmanPro 2013-04-06 17:00 - 2013-04-06 17:44 - 00000000 ____D C:\ProgramData\HitmanPro 2013-04-06 16:28 - 2013-04-06 16:28 - 00000000 ____D C:\summaries 2013-04-06 16:20 - 2013-04-06 18:15 - 00000004 ____A C:\Users\JackJones\AppData\Roaming\AltShell.ini 2013-04-05 13:57 - 2013-04-05 13:57 - 00000000 ____D C:\Users\JackJones\AppData\Local\{A6A3FB9C-FDAD-4DFC-9D0B-11D99443C0EE} 2013-04-05 13:30 - 2013-04-05 13:30 - 00000097 ____A C:\Windo+ws\lotus.ini 2013-04-05 13:29 - 2013-04-05 13:29 - 00000000 ____A C:\Windows\winhelp.ini 2013-04-05 12:45 - 2013-04-05 12:43 - 01112854 ____A C:\Users\Public\Documents\Full Family Tree (5 Apr 2013).ged 2013-04-05 05:45 - 2013-04-06 18:14 - 00000840 ____A C:\Windows\setupact.log 2013-04-05 05:45 - 2013-04-05 05:45 - 00000000 ____A C:\Windows\setuperr.log 2013-04-01 13:57 - 2013-04-01 13:57 - 00000154 ____A C:\Users\JackJones\Downloads\MapCoords_0.15.zip 2013-03-23 10:44 - 2013-03-23 10:44 - 19221504 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 15407616 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 14317568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 13761024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-03-23 10:44 - 2013-03-23 10:44 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02240512 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02046464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01766912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-03-23 10:44 - 2013-03-23 10:44 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-03-23 10:44 - 2013-03-23 10:44 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01129984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00526848 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-03-23 10:44 - 2013-03-23 10:44 - 00391680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-03-23 10:44 - 2013-03-23 10:44 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-03-23 10:44 - 2013-03-23 10:44 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-03-23 10:44 - 2013-03-23 10:44 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-03-22 10:26 - 2013-02-11 20:12 - 00019968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys 2013-03-21 14:13 - 2013-03-21 14:13 - 08082573 ____A C:\Users\Public\Desktop\fsdiag.zip 2013-03-09 00:28 - 2013-03-09 00:28 - 22612824 ____A C:\Users\JackJones\Downloads\serviio-1.2-win-setup.exe ==================== One Month Modified Files and Folders ======= 2013-04-07 03:18 - 2013-04-07 03:18 - 00000000 ____D C:\FRST 2013-04-06 18:15 - 2013-04-06 16:20 - 00000004 ____A C:\Users\JackJones\AppData\Roaming\AltShell.ini 2013-04-06 18:15 - 2012-06-16 09:59 - 01878267 ____A C:\Windows\WindowsUpdate.log 2013-04-06 18:14 - 2013-04-05 05:45 - 00000840 ____A C:\Windows\setupact.log 2013-04-06 18:14 - 2012-10-10 15:22 - 00000268 ____A C:\.dir 2013-04-06 18:14 - 2012-06-16 10:26 - 00000000 ____D C:\ProgramData\NVIDIA 2013-04-06 18:14 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-04-06 17:49 - 2009-07-13 20:45 - 00022064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-04-06 17:49 - 2009-07-13 20:45 - 00022064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-04-06 17:47 - 2013-04-06 17:02 - 00001821 ____A C:\Users\Public\Desktop\HitmanPro.lnk 2013-04-06 17:44 - 2013-04-06 17:44 - 00000000 ____D C:\meta 2013-04-06 17:44 - 2013-04-06 17:00 - 00000000 ____D C:\ProgramData\HitmanPro 2013-04-06 17:02 - 2013-04-06 17:02 - 00000000 ____D C:\Program Files\HitmanPro 2013-04-06 16:40 - 2012-06-16 11:29 - 00000000 ____D C:\Windows\pss 2013-04-06 16:33 - 2009-07-13 21:13 - 00726316 ____A C:\Windows\System32\PerfStringBackup.INI 2013-04-06 16:28 - 2013-04-06 16:28 - 00000000 ____D C:\summaries 2013-04-06 16:06 - 2012-11-06 00:22 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-04-06 13:50 - 2012-06-16 14:28 - 00000000 ____D C:\Users\JackJones\Documents\Outlook Files 2013-04-06 09:11 - 2012-06-16 10:10 - 00000000 ____D C:\ProgramData\MFAData 2013-04-06 08:00 - 2012-06-18 13:52 - 00000000 ____D C:\Users\JackJones\AppData\Roaming\uTorrent 2013-04-06 01:08 - 2009-07-13 20:45 - 00486752 ____A C:\Windows\System32\FNTCACHE.DAT 2013-04-05 18:06 - 2012-06-17 10:02 - 00000000 ____D C:\Users\JackJones\Documents\Family Tree Maker 2013-04-05 13:57 - 2013-04-05 13:57 - 00000000 ____D C:\Users\JackJones\AppData\Local\{A6A3FB9C-FDAD-4DFC-9D0B-11D99443C0EE} 2013-04-05 13:56 - 2012-06-17 01:42 - 00136848 ____A C:\Users\JackJones\AppData\Local\GDIPFONTCACHEV1.DAT 2013-04-05 13:30 - 2013-04-05 13:30 - 00000097 ____A C:\Windows\lotus.ini 2013-04-05 13:29 - 2013-04-05 13:29 - 00000000 ____A C:\Windows\winhelp.ini 2013-04-05 12:43 - 2013-04-05 12:45 - 01112854 ____A C:\Users\Public\Documents\Full Family Tree (5 Apr 2013).ged 2013-04-05 05:52 - 2012-12-11 15:47 - 00000965 ____A C:\Users\Public\Desktop\AVG 2013.lnk 2013-04-05 05:45 - 2013-04-05 05:45 - 00000000 ____A C:\Windows\setuperr.log 2013-04-01 13:57 - 2013-04-01 13:57 - 00000154 ____A C:\Users\JackJones\Downloads\MapCoords_0.15.zip 2013-03-29 01:14 - 2012-06-16 15:30 - 00000000 ____D C:\Program Files (x86)\World of Warcraft 2013-03-25 14:13 - 2012-06-16 18:51 - 00000000 ____D C:\Windows\Panther 2013-03-25 09:08 - 2012-06-17 06:05 - 00000000 ___AD C:\Users\JackJones\Documents\Kim's Files 2013-03-23 12:08 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache 2013-03-23 11:27 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-03-23 10:44 - 2013-03-23 10:44 - 19221504 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 15407616 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 14317568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 13761024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-03-23 10:44 - 2013-03-23 10:44 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-03-23 10:44 - 2013-03-23 10:44 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02240512 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 02046464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01766912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-03-23 10:44 - 2013-03-23 10:44 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-03-23 10:44 - 2013-03-23 10:44 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-03-23 10:44 - 2013-03-23 10:44 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01129984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00526848 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-03-23 10:44 - 2013-03-23 10:44 - 00391680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-03-23 10:44 - 2013-03-23 10:44 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-03-23 10:44 - 2013-03-23 10:44 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-03-23 10:44 - 2013-03-23 10:44 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-03-23 10:44 - 2013-03-23 10:44 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-03-23 10:44 - 2013-03-23 10:44 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-03-21 15:55 - 2012-06-17 01:42 - 00007642 ____A C:\Users\JackJones\AppData\Local\Resmon.ResmonCfg 2013-03-21 14:13 - 2013-03-21 14:13 - 08082573 ____A C:\Users\Public\Desktop\fsdiag.zip 2013-03-21 14:05 - 2013-02-28 14:56 - 00000000 ____D C:\Users\JackJones\AppData\Local\F-Secure 2013-03-17 06:46 - 2012-06-18 14:17 - 00236248 ____A (Trusteer Ltd.) C:\Windows\System32\Drivers\RapportKE64.sys 2013-03-13 08:06 - 2012-06-16 10:12 - 00693976 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-03-13 08:06 - 2012-06-16 10:12 - 00073432 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-03-13 06:28 - 2012-08-28 23:30 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-03-13 06:28 - 2012-08-28 23:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-03-13 00:32 - 2012-06-16 14:16 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-03-13 00:30 - 2012-06-16 10:59 - 72013344 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-03-10 13:49 - 2012-06-25 00:56 - 00113152 __ASH C:\Users\JackJones\Documents\Thumbs.db 2013-03-10 11:19 - 2013-01-09 15:29 - 00002029 ____A C:\Users\Public\Desktop\Samsung AllShare.lnk 2013-03-10 11:19 - 2013-01-09 15:29 - 00000000 ____D C:\Users\JackJones\AppData\Roaming\Samsung 2013-03-09 09:41 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\NDF 2013-03-09 00:28 - 2013-03-09 00:28 - 22612824 ____A C:\Users\JackJones\Downloads\serviio-1.2-win-setup.exe ==================== Known DLLs (Whitelisted) ================= ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= ==================== Memory info =========================== Percentage of memory in use: 15% Total physical RAM: 4094.18 MB Available physical RAM: 3462.87 MB Total Pagefile: 4092.38 MB Available Pagefile: 3464.52 MB Total Virtual: 8192 MB Available Virtual: 8191.89 MB ==================== Partitions ============================= 1 Drive c: () (Fixed) (Total:111.69 GB) (Free:1.64 GB) NTFS 2 Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)] 5 Drive h: (MULTIBOOT) (Removable) (Total:0.48 GB) (Free:0.48 GB) FAT32 6 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS 7 Drive y: (My Data) (Fixed) (Total:931.51 GB) (Free:191.29 GB) NTFS Disk ### Status Size Free Dyn Gpt -------- ------------- ------- ------- --- --- Disk 0 Online 931 GB 0 B Disk 1 Online 111 GB 0 B Disk 2 No Media 0 B 0 B Disk 3 Online 499 MB 0 B Partitions of Disk 0: =============== Disk ID: 71FC4DD1 Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 931 GB 1024 KB ================================================================================== Disk: 0 Partition 1 Type : 07 Hidden: No Active: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 1 Y My Data NTFS Partition 931 GB Healthy ========================================================= Partitions of Disk 1: =============== Disk ID: 61BAF3BC Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 100 MB 1024 KB Partition 2 Primary 111 GB 101 MB ================================================================================== Disk: 1 Partition 1 Type : 07 Hidden: No Active: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 2 D System Rese NTFS Partition 100 MB Healthy ========================================================= Disk: 1 Partition 2 Type : 07 Hidden: No Active: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 3 C NTFS Partition 111 GB Healthy ========================================================= Partitions of Disk 3: =============== Disk ID: 01EBBE5A Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 499 MB 16 KB ================================================================================== Disk: 3 Partition 1 Type : 0B Hidden: No Active: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 5 H MULTIBOOT FAT32 Removable 499 MB Healthy ========================================================= ============================== MBR Partition Table ================== ============================== Partitions of Disk 0: =============== Disk ID: 71FC4DD1 Partition 1: ========= Hex: 0020210007FEFFFF0008000000587074 Active: NO Type: 07 (NTFS) Size: 932 GB ============================== Partitions of Disk 1: =============== Disk ID: 61BAF3BC Partition 1: ========= Hex: 8020210007DF130C0008000000200300 Active: YES Type: 07 (NTFS) Size: 100 MB Partition 2: ========= Hex: 00DF140C07FEFFFF002803000018F60D Active: NO Type: 07 (NTFS) Size: 112 GB ============================== Partitions of Disk 3: =============== Disk ID: 01EBBE5A Partition 1: ========= Hex: 800101000B01FFFF20000000E09D0F00 Active: YES Type: 0B Size: 500 MB Last Boot: 2013-04-04 00:47 ==================== End Of Log ============================= [/QUOTE]
Insert quotes…
Verification
Post reply
Top
