Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

New Virus yellow outs text


  • This topic is locked This topic is locked
5 replies to this topic

#1 Joey-rebar

Joey-rebar

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:09 PM

Posted 24 January 2015 - 11:21 AM

Every program I run has the text yellowed out and or deleted/blocked.

 

When I click on a drop down box and go to it with the mouse the text in the drop down box disappears as i point with the mouse.

 

I am running windows 7 Ultimate on a 64 bit Machine.

 

I have used the following programs with no detection or resolution...................MS Security Essintials, Rogue Killer, TDSSkiller, Hitman Pro, Malware Bytes Anit-Malware, AVG 2015 and Ultimate trouble shooter, 

 

I ran all the security programs in Safe mode as well.

 

When I installed a windows update the problem went away, but appeared again after a few days later.   

 

I this some kind of new virus or a windows problem? 

 

FRST Scan Is below:

 

Thank You for all your help.Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-01-2015 01
Ran by Joe (administrator) on JOE-PC on 24-01-2015 10:55:14
Running from C:\Users\Joe\Downloads
Loaded Profiles: Joe (Available profiles: Joe)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(PasswordBox, Inc.) C:\Program Files (x86)\PasswordBox\pbbtnService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Pervasive Software Inc.) C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
() C:\Program Files (x86)\IObit\Advanced SystemCare 8\RealTimeProtector.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Plantronics) C:\Program Files (x86)\Plantronics\MyHeadsetUpdater\MyHeadsetUpdater.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
() C:\Program Files (x86)\Afreet\BandMaster\BandMaster.exe
() C:\Program Files (x86)\Afreet\OmniRig\OmniRig.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Afreet\BandMaster\BandMaster.exe
() C:\Program Files (x86)\Afreet\BandMaster\BandMaster.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-03-21] (Realtek Semiconductor)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103904 2011-12-12] (PC Tools)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478600 2013-05-11] (Adobe Systems Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3667472 2014-12-18] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Plantronics MyHeadset Updater] => C:\Program Files (x86)\Plantronics\MyHeadsetUpdater\MyHeadsetUpdater.exe [79872 2014-04-29] (Plantronics)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1802048 2014-10-13] (IObit)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2128220249-230159848-1905857544-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2014-10-14] (Microsoft Corporation)
HKU\S-1-5-21-2128220249-230159848-1905857544-1001\...\Run: [GoogleChromeAutoLaunch_D08BC2BD8F1B6BE4ACC60C8748C6E102] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592 2015-01-20] (Google Inc.)
HKU\S-1-5-21-2128220249-230159848-1905857544-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2427680 2014-12-10] (IObit)
HKU\S-1-5-21-2128220249-230159848-1905857544-1001\...\Policies\Explorer: [NoInstrumentation] 1
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:50299;https=127.0.0.1:50299
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
HKU\S-1-5-21-2128220249-230159848-1905857544-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
HKU\S-1-5-21-2128220249-230159848-1905857544-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/?ocid=OIE9HP
HKU\S-1-5-21-2128220249-230159848-1905857544-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1me10IE11ENUS/MCM_WCP
URLSearchHook: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} -  No File
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM -> {CC865B26-C31D-4D23-B17B-96548EEF03F6} URL = 
SearchScopes: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 -> FE1E5C5F6C174395833EE39B10A9EA84 URL = http://www.bing.com/search?FORM=U220DF&PC=U220&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 -> {22631E76-AFF6-4C92-8D1D-5B37D02C4DAC} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={19D7C3C4-A7FC-4A05-946D-59AB9CA43011}&mid=8e71148e854b47d09016d168ddf951ca-ddaa3b5ef6a147c9573014d0548bb03530201414&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-05 19:04:36&v=17.3.1.204&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 -> {C1C399F9-287A-4585-9ABF-1A30EDDCB968} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=198484&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 -> {CC191D2D-B7F3-45D5-B463-C9C5336ED0FD} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=714647&p={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: PasswordBox Helper -> {5DB69B97-934B-451D-94DB-32EF802A01CD} -> C:\Program Files (x86)\PasswordBox\Application\pbbtn.dll (PasswordBox, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - No Name - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} -  No File
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.0.444\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} -  No File
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-2128220249-230159848-1905857544-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} http://i.dell.com/images/global/js/scanner/SysProExe.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll (AVG Secure Search)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\j9clsn7z.default
FF DefaultSearchEngine: AVG Secure Search
FF SearchEngineOrder.1: Mysearchdial
FF SearchEngineOrder.3: Bing 
FF SelectedSearchEngine: AVG Secure Search
FF Homepage: hxxp://groovorio.com/?f=1&a=grv_installertech_14_22&cd=2XzuyEtN2Y1L1QzutDtDtBtCzy0BtC0D0BzztAzy0EyC0B0FtN0D0Tzu0SzyyBtCtN1L2XzutAtFtBtFtCtFtDtN1L1Czu1N1C2X1V1L1G1B2Z1T1I1I1P1C2Z1P1R1M1VtCyE1VtBtBtN1L1G1B1V1N2Y1L1Qzu2StDtC0AzzzztCtDyDtGyEyCtDtBtG0CtC0F0EtG0D0DzztBtGyB0CtB0CtD0B0FtAyEyDyE0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0CyDyByC0BtDzztGyD0C0FzztGyEyEzz0BtGzytAyC0AtGzytC0A0AyCtB0AtBzzyByEzy2Q&cr=719267079&ir=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_287.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_287.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1216156.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.9\\npsitesafety.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.72.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.72.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKU\S-1-5-21-2128220249-230159848-1905857544-1001: tdameritrade.com/thinkorswim -> C:\Program Files (x86)\thinkorswim\npthinkorswim.dll (TD Ameritrade)
FF Plugin HKU\S-1-5-21-2128220249-230159848-1905857544-1001: tdameritrade.com/tossc -> C:\Program Files (x86)\thinkorswim\nptossc.dll (TD Ameritrade)
FF user.js: detected! => C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\j9clsn7z.default\user.js
FF SearchPlugin: C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\j9clsn7z.default\searchplugins\bingp.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: Ads Removal - C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\j9clsn7z.default\Extensions\adremoveext@adremoveext.net [2014-11-30]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\j9clsn7z.default\Extensions\iobitascsurfingprotection@iobit.com [2015-01-10]
FF Extension: Search Application - C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\j9clsn7z.default\Extensions\{16cd6b36-d79c-45a4-896c-a98072e32a5e}.xpi [2014-12-31]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-05-15]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.1.0.444
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.1.0.444 [2014-04-27]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-11-18]
FF HKLM-x32\...\Firefox\Extensions: [firefox@passwordbox.com] - C:\Program Files (x86)\PasswordBox\Firefox
FF Extension: PasswordBox - C:\Program Files (x86)\PasswordBox\Firefox [2013-11-21]
FF Extension: No Name - C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\j9clsn7z.default\extensions\ascsurfingprotection@iobit.com [Not Found]
 
Chrome: 
=======
CHR DefaultSearchKeyword: Profile 33 -> google
CHR DefaultSearchURL: Profile 33 -> http://www.google.com/search?q={searchTerms}
CHR DefaultSuggestURL: Profile 33 -> 
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd [2014-06-12]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2013-05-21]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-12-21]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-14]
CHR Extension: (Amazon 1Button App for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2013-05-21]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Extension: (Space Planet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\ppcocpoeoiajndepaaimnnglicichmbb [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-23]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-23]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-23]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-01-23]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-01-23]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-01-23]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-01-23]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27
CHR Extension: (Google Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-01]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-01]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-01]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-01]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-02-01]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-02-01]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-02-01]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-02-01]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-02-01]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-02-01]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-01]
CHR Extension: (Amazon 1Button App for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-02-01]
CHR Extension: (MySearchDial) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\pflphaooapbgpeakohlggbpidpppgdff [2014-02-01]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-02-01]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-02-01]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-01]
CHR Extension: (Space Planet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 27\Extensions\ppcocpoeoiajndepaaimnnglicichmbb [2014-02-01]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-20]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-20]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-20]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-20]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-02-20]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-02-20]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-02-20]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-02-20]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-02-20]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-02-20]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-20]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-02-20]
CHR Extension: (MySearchDial) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\pflphaooapbgpeakohlggbpidpppgdff [2014-02-20]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-02-20]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-02-20]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 28\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-20]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-20]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-20]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-20]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-20]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-02-20]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-02-20]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-02-20]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-02-20]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-02-20]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-02-20]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-20]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-02-20]
CHR Extension: (MySearchDial) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\pflphaooapbgpeakohlggbpidpppgdff [2014-02-20]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-02-20]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-02-20]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 29\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-20]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-20]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-20]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-20]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-20]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-02-20]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-02-20]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-02-20]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-02-20]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-02-20]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-02-20]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-20]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-02-20]
CHR Extension: (MySearchDial) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\pflphaooapbgpeakohlggbpidpppgdff [2014-02-20]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-02-20]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-02-20]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 30\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-20]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-20]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-20]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-20]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-20]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-02-20]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-02-20]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-02-20]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-02-20]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-02-20]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-02-20]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-20]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-02-20]
CHR Extension: (MySearchDial) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\pflphaooapbgpeakohlggbpidpppgdff [2014-02-20]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-02-20]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-02-20]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 31\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-20]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32
CHR Extension: (Docs) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-20]
CHR Extension: (Google Drive) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-20]
CHR Extension: (YouTube) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-20]
CHR Extension: (Google Search) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-20]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-02-20]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-02-20]
CHR Extension: (Domain Error Assistant) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-02-20]
CHR Extension: (Connect DLC 5) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil [2014-02-20]
CHR Extension: (Slick Savings) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-02-20]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-02-20]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-20]
CHR Extension: (Amazon for Chrome) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2014-02-20]
CHR Extension: (MySearchDial) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\pflphaooapbgpeakohlggbpidpppgdff [2014-02-20]
CHR Extension: (GoPhoto.it) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-02-20]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-02-20]
CHR Extension: (Gmail) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 32\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-20]
CHR Profile: C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 33
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 33\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-20]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 33\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-07-20]
CHR Extension: (Ads Removal) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 33\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-09-01]
CHR Extension: (AVG SafeGuard) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 33\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-07-20]
CHR Extension: (Google Wallet) - C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Profile 33\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-20]
CHR HKU\S-1-5-21-2128220249-230159848-1905857544-1001\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-bds-amzn.crx [2012-09-27]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-05-11]
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\17.3.1.204\avg.crx [2014-02-05]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] ()
R2 avgfws; C:\Program Files (x86)\AVG\AVG2015\avgfws.exe [1486664 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3432976 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [298080 2014-12-18] (AVG Technologies CZ, s.r.o.)
S3 DMDefragService; C:\Program Files (x86)\PC Tools\PC Tools Utilities\Tools\Defrag\DMDefragSrv.exe [1038304 2011-12-12] (PC Tools)
S3 DMRepairService; C:\Program Files (x86)\PC Tools\PC Tools Utilities\Tools\Repair\DMRepairSrv.exe [1030112 2011-12-12] (PC Tools)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-01-17] (SurfRight B.V.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344896 2014-09-30] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2631456 2014-12-06] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
R2 PasswordBox; C:\Program Files (x86)\PasswordBox\pbbtnService.exe [67584 2014-05-14] (PasswordBox, Inc.) [File not signed]
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793056 2011-12-12] (PC Tools)
R2 psqlWGE; C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe [435496 2009-04-06] (Pervasive Software Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 WiselinkPro; C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [4235264 2009-11-06] () [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 AIDA64Driver; No ImagePath
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [260888 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [203544 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [243480 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [124184 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [274200 2014-10-10] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-11] (AVG Technologies)
S3 CSRBC; C:\Windows\System32\Drivers\csrbcx64.sys [38400 2014-04-29] (CSR plc.)
S1 dqvtdhck; No ImagePath
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-17] (REALiX™)
S3 Linksys_adapter_H; C:\Windows\System32\DRIVERS\AE2500w764.sys [1254464 2011-03-28] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-24] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
S3 PCTDMDefrag; C:\Windows\system32\drivers\PCTDMDefrag.sys [163440 2011-12-12] (PC Tools)
S3 PCTDMDefrag; C:\Windows\SysWOW64\drivers\PCTDMDefrag.sys [108864 2011-12-12] (PC Tools)
S3 PCTDSMon; C:\Windows\system32\drivers\PCTDSMon.sys [191104 2011-12-12] (PC Tools)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S3 RemoteControl-USBLAN; C:\Windows\System32\DRIVERS\rcblan.sys [46616 2007-01-24] (Belcarra Technologies)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-01-23] ()
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-24 10:54 - 2015-01-24 10:54 - 02129920 _____ (Farbar) C:\Users\Joe\Downloads\FRST64.exe
2015-01-22 23:38 - 2015-01-24 10:38 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-22 23:38 - 2015-01-22 23:38 - 00001120 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-22 23:38 - 2015-01-22 23:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-22 23:38 - 2015-01-22 23:38 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-22 23:38 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-22 23:38 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-22 23:38 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-22 23:36 - 2015-01-22 23:36 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Joe\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-22 07:46 - 2015-01-23 00:42 - 00027456 _____ () C:\Windows\PFRO.log
2015-01-22 07:46 - 2015-01-23 00:42 - 00000112 _____ () C:\Windows\setupact.log
2015-01-22 07:46 - 2015-01-22 07:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-22 00:09 - 2015-01-22 00:09 - 00116016 _____ (Kaspersky Lab, GERT) C:\Windows\system32\Drivers\38368747.sys
2015-01-21 21:25 - 2015-01-21 21:25 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2015-01-21 21:03 - 2015-01-22 07:37 - 00000000 ____D () C:\Program Files (x86)\Advanced Fix
2015-01-21 21:01 - 2015-01-21 21:02 - 02560616 _____ (Advanced Fix, Inc. ) C:\Users\Joe\Downloads\PCMAX_AF_ErrorsFix_Setup.exe
2015-01-21 07:38 - 2015-01-21 07:38 - 18570328 _____ () C:\Users\Joe\Downloads\RogueKillerX64.exe
2015-01-20 22:39 - 2015-01-20 22:39 - 00116016 _____ (Kaspersky Lab, GERT) C:\Windows\system32\Drivers\75619971.sys
2015-01-20 22:28 - 2015-01-20 22:28 - 04168247 _____ () C:\Users\Joe\Downloads\tdsskiller (6).zip
2015-01-20 21:55 - 2015-01-20 21:56 - 00043941 _____ () C:\Users\Joe\Downloads\Addition.txt
2015-01-20 21:53 - 2015-01-24 10:55 - 00070979 _____ () C:\Users\Joe\Downloads\FRST.txt
2015-01-20 21:53 - 2015-01-24 10:55 - 00000000 ____D () C:\FRST
2015-01-20 19:36 - 2015-01-20 19:36 - 08293012 _____ () C:\Users\Joe\Downloads\5864 Northern Blvd (1).zip
2015-01-20 19:34 - 2015-01-20 19:34 - 08293012 _____ () C:\Users\Joe\Downloads\5864 Northern Blvd.zip
2015-01-17 22:56 - 2014-12-05 23:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-17 22:56 - 2014-12-05 22:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-17 22:56 - 2014-12-05 22:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-17 22:42 - 2015-01-17 22:42 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-01-17 13:11 - 2015-01-17 13:11 - 00000000 _____ () C:\Users\Joe\AppData\Local\{518B208D-8357-4ECC-B39E-F15955E6829E}
2015-01-17 13:03 - 2015-01-17 13:03 - 04166770 _____ () C:\Users\Joe\Downloads\tdsskiller (5).zip
2015-01-17 12:49 - 2015-01-17 12:49 - 18467928 _____ () C:\Users\Joe\Downloads\RogueKillerX64 (2).exe
2015-01-17 07:26 - 2015-01-17 07:26 - 04637504 _____ (AVG Technologies) C:\Users\Joe\Downloads\avg_free_stb_all_2015_5557_cnet.exe
2015-01-17 07:22 - 2015-01-17 07:22 - 00001895 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2015-01-17 07:21 - 2015-01-17 07:21 - 11225840 _____ (SurfRight B.V.) C:\Users\Joe\Downloads\HitmanPro_x64.exe
2015-01-17 00:39 - 2015-01-17 00:39 - 11225840 _____ (SurfRight B.V.) C:\Users\Joe\Downloads\Unconfirmed 770228.crdownload
2015-01-17 00:17 - 2015-01-17 00:17 - 00001124 _____ () C:\Users\Joe\Desktop\RKreport[1].txt
2015-01-15 00:01 - 2015-01-17 16:32 - 00043603 _____ () C:\Users\Joe\Desktop\avgrep.txt
2015-01-14 23:29 - 2015-01-14 23:29 - 00000000 ____D () C:\Users\Joe\AppData\Roaming\AVG2015
2015-01-14 23:24 - 2015-01-14 23:24 - 00000000 ____D () C:\TDSSKiller_Quarantine
2015-01-14 23:23 - 2015-01-17 07:32 - 00000967 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-01-14 23:21 - 2015-01-14 23:21 - 04166770 _____ () C:\Users\Joe\Downloads\tdsskiller (4).zip
2015-01-14 23:21 - 2015-01-14 23:21 - 00116016 _____ (Kaspersky Lab, GERT) C:\Windows\system32\Drivers\97095221.sys
2015-01-14 23:17 - 2015-01-14 23:26 - 00000000 ____D () C:\ProgramData\AVG2015
2015-01-14 23:13 - 2015-01-22 23:31 - 00000000 ____D () C:\Users\Joe\AppData\Local\Avg2015
2015-01-14 23:13 - 2015-01-14 23:13 - 04641200 _____ (AVG Technologies) C:\Users\Joe\Downloads\avg_free_stb_all_2015_5645_freets3.exe
2015-01-14 23:09 - 2015-01-14 23:09 - 03415088 _____ () C:\Users\Joe\Downloads\avg_remover_zeroaccess.exe
2015-01-13 23:49 - 2014-12-18 22:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-13 23:49 - 2014-12-18 20:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-13 23:49 - 2014-12-11 12:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-13 23:48 - 2014-12-12 00:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-13 23:48 - 2014-12-12 00:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-13 23:48 - 2014-12-12 00:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-13 23:48 - 2014-12-12 00:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-13 23:48 - 2014-12-12 00:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-13 23:48 - 2014-12-12 00:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-13 23:48 - 2014-12-12 00:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-13 23:33 - 2015-01-13 23:34 - 04166770 _____ () C:\Users\Joe\Downloads\tdsskiller (3).zip
2015-01-13 23:19 - 2015-01-13 23:20 - 04166770 _____ () C:\Users\Joe\Downloads\tdsskiller (2).zip
2015-01-10 19:15 - 2015-01-10 19:15 - 00003162 _____ () C:\Windows\System32\Tasks\ASC8_PerformanceMonitor
2015-01-10 19:15 - 2015-01-10 19:15 - 00002850 _____ () C:\Windows\System32\Tasks\ASC8_SkipUac_Joe
2015-01-10 19:15 - 2015-01-10 19:15 - 00001248 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-01-10 19:14 - 2015-01-20 19:33 - 00002195 _____ () C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-01-10 19:14 - 2015-01-10 19:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-01-05 21:57 - 2015-01-05 21:57 - 00009937 _____ () C:\Users\Joe\Downloads\Elena_D'Ag.vcf
2015-01-02 10:04 - 2015-01-02 10:04 - 00000393 _____ () C:\Users\Joe\Downloads\KD2EWO_nomatch (4).adi
2015-01-02 10:03 - 2015-01-02 10:03 - 00000393 _____ () C:\Users\Joe\Downloads\KD2EWO_nomatch (3).adi
2014-12-30 21:32 - 2014-12-30 21:32 - 00026228 _____ () C:\Users\Joe\Downloads\config (2).tq6
2014-12-30 21:31 - 2014-12-30 21:32 - 00028706 _____ () C:\Users\Joe\Downloads\certs (2).tq6
2014-12-28 18:47 - 2014-12-28 18:47 - 27589986 _____ () C:\Users\Joe\Downloads\MacLoggerDX.dmg
2014-12-26 00:58 - 2014-12-26 00:58 - 00000000 ____D () C:\Users\Joe\AppData\Roaming\HRDLLC
2014-12-26 00:52 - 2014-12-26 00:58 - 98624059 _____ (Acresso Software Inc. ) C:\Users\Joe\Downloads\setuphrd627-316.exe
2014-12-25 23:46 - 2014-12-25 23:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-24 10:52 - 2009-07-13 23:45 - 00029200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-24 10:52 - 2009-07-13 23:45 - 00029200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-24 10:24 - 2012-04-29 01:46 - 00000000 ____D () C:\ProgramData\MFAData
2015-01-24 10:20 - 2013-10-23 07:08 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-24 10:17 - 2012-04-15 11:52 - 00000000 ____D () C:\Users\Joe\Downloads\AutoCAD Structural Detailing 2012 SP2 x86 & x64
2015-01-24 10:14 - 2012-04-21 07:49 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-24 10:04 - 2012-04-15 01:15 - 00003910 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E604197F-9AD5-4B36-9DED-C8BEE05A679E}
2015-01-24 09:39 - 2012-04-22 13:24 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job
2015-01-24 03:00 - 2012-04-15 03:14 - 01742745 _____ () C:\Windows\WindowsUpdate.log
2015-01-24 02:59 - 2012-04-22 18:00 - 00055828 _____ () C:\Windows\SysWOW64\AppLog.log
2015-01-24 02:59 - 2012-04-22 08:08 - 00000274 _____ () C:\Windows\Tasks\PTSchedule.job
2015-01-24 02:59 - 2012-04-15 00:47 - 00000000 ____D () C:\ProgramData\TEMP
2015-01-23 20:13 - 2012-04-21 07:49 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-23 15:20 - 2013-10-23 07:08 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-23 15:20 - 2013-10-23 07:08 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-23 15:20 - 2013-10-23 07:08 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-23 13:24 - 2014-01-24 11:38 - 00002187 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-23 00:55 - 2014-03-21 20:35 - 00002860 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (SYSTEM)
2015-01-23 00:54 - 2013-12-07 00:42 - 00000000 ____D () C:\Users\Joe\Logbook
2015-01-23 00:42 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-23 00:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Vss
2015-01-23 00:36 - 2014-08-27 19:03 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2015-01-23 00:36 - 2014-08-27 19:03 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2015-01-23 00:36 - 2013-09-09 17:59 - 00000000 ____D () C:\Users\Joe\AppData\Roaming\Search Protection
2015-01-22 23:38 - 2012-04-15 01:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-22 08:36 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2015-01-22 07:43 - 2013-04-15 06:41 - 00000000 ____D () C:\Users\Joe\.thinkorswim
2015-01-22 07:42 - 2012-04-15 01:07 - 00000000 ____D () C:\Program Files (x86)\thinkorswim
2015-01-22 00:16 - 2014-03-21 22:00 - 00002850 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Joe)
2015-01-21 23:49 - 2009-07-13 22:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-21 23:39 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-01-21 23:15 - 2014-09-27 13:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-21 23:15 - 2014-05-06 21:40 - 00000000 ____D () C:\Program Files (x86)\AVG Secure Search
2015-01-21 23:15 - 2014-02-03 17:05 - 00000000 ____D () C:\Program Files (x86)\F5
2015-01-21 23:15 - 2013-12-18 00:38 - 00000000 ____D () C:\Program Files (x86)\WSJT9
2015-01-21 23:15 - 2013-09-09 17:58 - 00000000 ____D () C:\Program Files (x86)\AVG SafeGuard toolbar
2015-01-21 23:15 - 2012-08-04 19:10 - 00000000 ____D () C:\F5
2015-01-21 23:15 - 2012-07-19 23:20 - 00000000 ____D () C:\Program Files (x86)\SCIT Pro
2015-01-21 23:15 - 2012-05-06 23:29 - 00000000 ____D () C:\Program Files (x86)\StampManage
2015-01-21 23:15 - 2012-04-15 01:41 - 00000000 ____D () C:\ProgramData\FLEXnet
2015-01-21 23:15 - 2012-04-15 00:58 - 00000000 ____D () C:\Program Files (x86)\HCW85
2015-01-21 23:15 - 2012-04-15 00:54 - 00000000 ____D () C:\Program Files (x86)\BUFKIT
2015-01-21 23:15 - 2012-04-15 00:53 - 00000000 ____D () C:\Program Files (x86)\WinTV
2015-01-21 23:15 - 2011-08-21 18:34 - 00000000 ____D () C:\Program Files\F5
2015-01-21 22:17 - 2012-04-22 13:22 - 00000000 ____D () C:\Users\Joe\Downloads\Office 2010 Toolkit 2.2.3
2015-01-21 07:39 - 2014-07-19 23:57 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-01-21 07:32 - 2012-04-26 17:38 - 00000000 ____D () C:\Users\Joe\Desktop\RK_Quarantine
2015-01-21 07:24 - 2012-06-26 22:20 - 00000000 ____D () C:\Users\Joe\AppData\Local\GRLevel3_2
2015-01-21 01:08 - 2013-12-09 07:47 - 00000000 ____D () C:\Users\Joe\AppData\Local\CRE
2015-01-20 23:37 - 2013-12-21 23:29 - 00000000 ____D () C:\ProgramData\ProductData
2015-01-20 22:54 - 2011-04-12 03:28 - 00000000 ____D () C:\Program Files\Windows Journal
2015-01-20 22:54 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2015-01-20 22:54 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2015-01-20 22:54 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files\Windows Defender
2015-01-20 22:54 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2015-01-20 22:54 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\servicing
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\system32\winrm
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\system32\WCN
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\system32\slmgr
2015-01-20 22:53 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2015-01-20 22:53 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2015-01-20 22:53 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\sysprep
2015-01-20 22:53 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\MUI
2015-01-20 22:53 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\migwiz
2015-01-20 22:42 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-01-20 22:42 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files\DVD Maker
2015-01-20 22:42 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2015-01-20 22:42 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-01-20 22:42 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-01-20 22:42 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2015-01-20 22:42 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-01-20 22:41 - 2009-07-14 00:37 - 00000000 ____D () C:\Windows\DigitalLocker
2015-01-20 22:41 - 2009-07-14 00:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Setup
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\oobe
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\com
2015-01-20 22:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\IME
2015-01-20 21:19 - 2014-03-22 00:03 - 43933696 _____ () C:\Windows\system32\config\components.iodefrag.bak
2015-01-20 21:19 - 2014-01-23 23:05 - 99549184 _____ () C:\Windows\system32\config\software.iodefrag.bak
2015-01-20 21:19 - 2014-01-23 23:05 - 00331776 _____ () C:\Windows\system32\config\default.iodefrag.bak
2015-01-20 21:19 - 2014-01-23 23:05 - 00065536 _____ () C:\Windows\system32\config\sam.iodefrag.bak
2015-01-20 21:19 - 2014-01-23 23:05 - 00028672 _____ () C:\Windows\system32\config\security.iodefrag.bak
2015-01-20 21:10 - 2012-04-18 23:03 - 00774402 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-01-20 21:10 - 2009-07-14 00:13 - 00774402 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-20 20:24 - 2013-12-05 21:57 - 00000000 ____D () C:\Users\Joe\AppData\Roaming\LogOM
2015-01-20 01:35 - 2014-11-02 23:19 - 00002086 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
2015-01-17 22:44 - 2012-04-21 07:48 - 00000000 ____D () C:\Users\Joe\AppData\Local\Google
2015-01-17 22:43 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-17 22:42 - 2014-11-02 23:19 - 00003220 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
2015-01-17 22:42 - 2014-11-02 23:19 - 00003164 _____ () C:\Windows\System32\Tasks\Driver Booster Update
2015-01-17 22:42 - 2014-11-02 23:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-01-17 17:43 - 2014-05-15 20:48 - 00000000 ____D () C:\Users\Joe\AppData\Local\CrashDumps
2015-01-17 07:32 - 2013-11-16 08:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-01-17 07:30 - 2012-04-30 22:17 - 00000000 ___HD () C:\$AVG
2015-01-17 07:22 - 2012-06-12 22:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-01-17 07:22 - 2012-05-27 11:01 - 00000000 ____D () C:\Program Files\HitmanPro
2015-01-16 08:34 - 2013-07-20 02:00 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-16 07:55 - 2012-04-18 22:37 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-14 23:35 - 2012-04-30 21:48 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-01-14 23:29 - 2014-05-06 21:32 - 00000000 ____D () C:\ProgramData\AVG2014
2015-01-14 23:11 - 2012-04-15 00:56 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-14 07:05 - 2012-04-15 00:34 - 00000000 ____D () C:\Users\Joe
2015-01-11 09:45 - 2013-01-29 00:58 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2015-01-10 19:15 - 2013-12-21 23:29 - 00000000 ____D () C:\ProgramData\IObit
2015-01-10 19:14 - 2013-12-21 23:29 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-01-10 19:13 - 2013-12-21 23:27 - 00000000 ____D () C:\Users\Joe\AppData\Roaming\IObit
2014-12-31 06:14 - 2010-11-20 22:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-26 00:59 - 2014-10-26 20:42 - 00001304 _____ () C:\Users\Public\Desktop\Ham Radio Deluxe.lnk
2014-12-26 00:59 - 2014-05-25 00:44 - 00001310 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Ham Radio Deluxe.lnk
2014-12-26 00:59 - 2014-05-25 00:44 - 00001310 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Digital Master.lnk
2014-12-26 00:59 - 2014-05-25 00:44 - 00001286 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\HRD Logbook.lnk
 
==================== Files in the root of some directories =======
 
2012-04-15 00:46 - 2011-10-10 22:22 - 0000255 _____ () C:\Program Files (x86)\home.txt
2013-10-01 18:16 - 2014-04-27 14:01 - 0003745 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-16 00:05 - 2013-12-16 00:05 - 0000288 _____ () C:\Users\Joe\AppData\Roaming\.backup.dm
2012-04-25 22:32 - 2012-04-26 18:17 - 0000303 _____ () C:\Users\Joe\AppData\Roaming\burnaware.ini
2013-11-16 01:01 - 2013-11-16 01:02 - 0026112 ___SH () C:\Users\Joe\AppData\Roaming\Thumbs.db
2013-04-17 23:09 - 2013-04-17 23:09 - 0020179 _____ () C:\Users\Joe\AppData\Roaming\UserTile.png
2014-01-23 21:59 - 2014-01-23 22:50 - 0000145 _____ () C:\Users\Joe\AppData\Roaming\WB.CFG
2013-02-17 21:46 - 2013-08-18 22:34 - 0005632 _____ () C:\Users\Joe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-19 22:59 - 2014-07-20 00:03 - 0007676 _____ () C:\Users\Joe\AppData\Local\Resmon.ResmonCfg
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Joe\AppData\Local\setup.txt
2012-04-19 06:10 - 2012-04-19 06:10 - 0000086 _____ () C:\Users\Joe\AppData\Local\Temp4530.txt
2015-01-17 13:11 - 2015-01-17 13:11 - 0000000 _____ () C:\Users\Joe\AppData\Local\{518B208D-8357-4ECC-B39E-F15955E6829E}
2012-04-15 01:40 - 2011-12-09 16:49 - 0000112 _____ () C:\ProgramData\dR1VCwqe.dat
2012-04-15 01:40 - 2011-12-09 22:15 - 0010996 ____S () C:\ProgramData\kwqvso5e2fii2ncv7fvy0w413s8v
2012-04-15 01:40 - 2012-02-29 18:29 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
 
Files to move or delete:
====================
C:\ProgramData\dR1VCwqe.dat
C:\Users\Public\AlexaNSISPlugin.6800.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-01-14 08:00
 
==================== End Of Log ============================


BC AdBot (Login to Remove)

 


#2 Joey-rebar

Joey-rebar
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:09 PM

Posted 24 January 2015 - 11:41 AM

Screen Shots of whats happening:

 

wtYoyg.png

 

d17mCF.png

 

OPRBKb.png



#3 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:09 PM

Posted 25 January 2015 - 02:20 PM

Hey, :)

What's with the Addition Log?

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#4 Joey-rebar

Joey-rebar
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:09 PM

Posted 25 January 2015 - 09:23 PM

Addition Log?



#5 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:09 PM

Posted 26 January 2015 - 10:43 AM

What should have been created when running FRST. ;)

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#6 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:09 PM

Posted 30 January 2015 - 02:36 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users