Inactive-A Need help to remove persistent and annoying malware

[Eddie Homme]

Hello guys,

I`ve been having problems with some kind of malware or virus. It affects my browser and some of my system programs like task manager and msconfig (they close immediately after I open them or don`t open at all). It also has control over my browser, google chrome, it constantly crashes when I try to find malware removing programs and it`s getting really annoying. I`m currently using Windows 7 x64 system and ESET NOD32 antivirus 8.0.312.4. I noticed, also, this suspicious programs/process: nvxasync, cvxasync and surfvox as homepage in Internet Explorer. I found them when I tried to reboot windows in safe mode, when it started up I got messages that those programs stopped working.

I`ve never had problems with malware or antivirus before so this is kinda new for me, and it is also my first time EVER in any forum, but don`t worry I learn fast and follow instuctions pretty well. I ran FRST64 and here are my logs, I hope that the fact that my computer is in spanish and some parts of the logs are in spanish also doesn`t cause any problem with you guys. Thanks in advance.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:11-08-2015 02
Ran by LENOVO (administrator) on LENOVO-PC (11-08-2015 22:03:59)
Running from C:\Users\LENOVO\Downloads
Loaded Profiles: LENOVO (Available Profiles: LENOVO)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Windows\System32\atibtmon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\ProgramData\nvxasync\cvxasync.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
() C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
() C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Lenovo) C:\Users\LENOVO\AppData\Local\Apps\2.0\5R26VNKL.39B\YMBE4VZ8.VWM\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\LSB.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11049576 2010-07-15] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-01-28] (ESET)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-03-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKU\S-1-5-21-4190457828-2658452903-3567655377-1000\...\Run: [nvxasync] => C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe [153822720 2015-07-26] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.surfvox.com/
HKU\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/es-xl/?ocid=iehp
SearchScopes: HKU\S-1-5-21-4190457828-2658452903-3567655377-1000 -> DefaultScope {828B376B-F2F6-4778-928C-E29EC877535E} URL = http://www.google.com/cse?cx=partne...ref=#gsc.tab=0&gsc.q={searchTerms}&gsc.page=1
SearchScopes: HKU\S-1-5-21-4190457828-2658452903-3567655377-1000 -> {828B376B-F2F6-4778-928C-E29EC877535E} URL = http://www.google.com/cse?cx=partne...ref=#gsc.tab=0&gsc.q={searchTerms}&gsc.page=1
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 200.107.124.254 190.107.138.76 200.107.124.253
Tcpip\..\Interfaces\{17D3E35E-BFD6-41E1-A7DC-8AD288D7C851}: [DhcpNameServer] 200.107.124.254 190.107.138.76 200.107.124.253
Tcpip\..\Interfaces\{EB11F96C-B77D-4A05-9BC6-5B587249B949}: [DhcpNameServer] 200.107.124.254 190.107.138.76 200.107.124.253

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-23] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-23] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-17]
CHR Extension: (Google Drive) - C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-17]
CHR Extension: (YouTube) - C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-17]
CHR Extension: (Google Search) - C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-17]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-01]
CHR Extension: (Gmail) - C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2015-01-28] (ESET)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [625648 2015-06-08] (Lenovo)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [199272 2010-07-15] (Realtek Semiconductor)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22008 2015-07-01] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2970424 2015-06-29] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [246000 2015-02-23] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241880 2015-02-23] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169792 2015-02-23] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [159480 2015-02-23] (ESET)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [205952 2009-11-23] (SMI)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

[Eddie Homme]

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-11 22:02 - 2015-08-11 22:02 - 00029849 _____ C:\Users\LENOVO\Downloads\Addition.txt
2015-08-11 21:44 - 2015-08-11 22:04 - 00000000 ____D C:\FRST
2015-08-11 21:44 - 2015-08-11 22:03 - 00010680 _____ C:\Users\LENOVO\Downloads\FRST.txt
2015-08-11 21:43 - 2015-08-11 21:43 - 02172928 _____ (Farbar) C:\Users\LENOVO\Downloads\FRST64.exe
2015-08-11 21:21 - 2015-08-11 21:22 - 18723912 _____ C:\Users\LENOVO\Downloads\RogueKiller.exe
2015-08-11 21:19 - 2015-08-11 21:21 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\LENOVO\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-11 21:14 - 2015-08-11 21:14 - 01063160 _____ (Bleeping Computer, LLC) C:\Users\LENOVO\Downloads\rkill64-1621.exe
2015-08-11 21:12 - 2015-08-11 21:14 - 00000948 _____ C:\Users\LENOVO\Desktop\Rkill.txt
2015-08-11 21:12 - 2015-08-11 21:12 - 01063160 _____ (Bleeping Computer, LLC) C:\Users\LENOVO\Downloads\rkill64.exe
2015-08-11 21:11 - 2015-08-11 21:11 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\LENOVO\Downloads\rkill.exe
2015-08-08 19:58 - 2015-08-08 19:58 - 148188381 _____ C:\Users\LENOVO\Downloads\QOTSA - Live Kulturkirche 2013.rar
2015-08-08 17:49 - 2015-08-08 17:49 - 00659797 _____ C:\Users\LENOVO\Downloads\VisualBoyAdvance1.8.1_beta3_.zip
2015-08-06 21:39 - 2015-08-06 21:39 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-08-06 21:28 - 2015-08-06 21:28 - 00000000 ____D C:\Users\LENOVO\Documents\Plantillas personalizadas de Office
2015-08-06 21:17 - 2015-08-06 21:17 - 00000000 ____D C:\Users\LENOVO\Downloads\Shareit
2015-08-06 21:12 - 2015-08-06 21:12 - 00005321 _____ C:\Windows\uninstallep.log
2015-08-06 20:31 - 2015-08-06 20:32 - 00304167 _____ C:\Users\LENOVO\Downloads\Elaboracin_de_flan.xlsx
2015-08-05 21:14 - 2015-08-11 21:10 - 00003758 _____ C:\Windows\System32\Tasks\AutoKMS
2015-08-03 16:49 - 2015-08-03 16:49 - 00002229 _____ C:\Users\Public\Desktop\AVG 1-Click Maintenance.lnk
2015-08-03 16:49 - 2015-08-03 16:49 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015.lnk
2015-08-03 16:49 - 2015-08-03 16:49 - 00002203 _____ C:\Users\Public\Desktop\AVG PC TuneUp 2015.lnk
2015-08-03 16:49 - 2015-08-03 16:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
2015-08-03 16:49 - 2015-06-29 10:24 - 00041784 _____ (AVG Technologies) C:\Windows\system32\TURegOpt.exe
2015-08-03 16:49 - 2015-06-29 10:23 - 00030520 _____ (AVG Technologies) C:\Windows\system32\authuitu.dll
2015-08-03 16:49 - 2015-06-29 10:23 - 00025912 _____ (AVG Technologies) C:\Windows\SysWOW64\authuitu.dll
2015-08-03 16:48 - 2015-08-03 16:48 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\AVG
2015-08-03 16:47 - 2015-08-03 16:47 - 00000000 ____D C:\Program Files (x86)\AVG
2015-08-03 16:46 - 2015-08-03 16:46 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Avg
2015-08-03 16:45 - 2015-08-03 16:49 - 00000000 ____D C:\ProgramData\AVG
2015-08-03 16:43 - 2015-08-03 16:44 - 00000000 ____D C:\Users\LENOVO\Downloads\AVG.PC.Tuneup.2015.v15.0.1001.604
2015-08-03 16:43 - 2015-03-27 18:06 - 00001519 _____ C:\Users\LENOVO\Downloads\INFO NFO.txt
2015-08-03 16:43 - 2014-07-17 16:21 - 00000051 _____ C:\Users\LENOVO\Downloads\MegaWarez.org.url
2015-08-03 16:41 - 2015-08-03 16:41 - 116417691 _____ C:\Users\LENOVO\Downloads\AV-TUP-15604-MW.rar
2015-08-02 18:32 - 2015-08-03 17:30 - 00000000 ____D C:\Users\LENOVO\Documents\Bully Scholarship Edition
2015-08-02 18:21 - 2015-08-02 18:21 - 00001289 _____ C:\Users\LENOVO\Downloads\URLLink.acsm
2015-08-02 18:21 - 2015-08-02 18:21 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Adobe_Systems_Incorporate
2015-08-02 18:20 - 2015-08-02 18:26 - 00000000 ____D C:\Users\LENOVO\Documents\My Digital Editions
2015-08-02 18:20 - 2015-08-02 18:20 - 00002190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 3.0.lnk
2015-08-02 18:20 - 2015-08-02 18:20 - 00002178 _____ C:\Users\Public\Desktop\Adobe Digital Editions 3.0.lnk
2015-08-02 18:20 - 2015-08-02 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2015-08-02 18:20 - 2015-08-02 18:20 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-08-02 18:17 - 2015-08-02 18:19 - 06144272 _____ (Adobe Systems Incorporated) C:\Users\LENOVO\Downloads\ADE_3.0_Installer.exe
2015-08-02 18:13 - 2015-08-02 18:13 - 00237864 _____ C:\Users\LENOVO\Downloads\CAPITULO 4 PRONOSTICOS modificada.pptx
2015-08-02 18:05 - 2015-08-02 18:07 - 16071789 _____ (Macrovision Corporation) C:\Users\LENOVO\Downloads\BullyPC_EFIGS_PatchTo_v1200.exe
2015-08-02 18:02 - 2015-08-02 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-08-02 17:57 - 2015-08-02 17:57 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-08-01 18:10 - 2015-08-01 18:11 - 00272714 _____ C:\Users\LENOVO\Downloads\bully-scholarship-edition-pc.torrent
2015-07-26 19:23 - 2015-07-26 19:23 - 00000000 ____D C:\Users\LENOVO\Documents\Electronic Arts
2015-07-26 19:14 - 2015-07-26 19:23 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-26 19:13 - 2015-07-26 19:13 - 00000000 ____D C:\Windows\system32\appmgmt
2015-07-26 19:09 - 2015-07-26 19:09 - 00000000 _RSHD C:\ProgramData\nvxasync
2015-07-26 19:09 - 2015-07-26 19:09 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\chportu
2015-07-26 19:08 - 2015-07-27 15:39 - 243361280 _____ C:\Users\LENOVO\AppData\Roaming\Launcher.rb4
2015-07-26 19:08 - 2015-07-26 19:09 - 00000000 _RSHD C:\Users\LENOVO\AppData\Roaming\nvxasync
2015-07-26 19:07 - 2015-07-26 19:07 - 00199671 _____ C:\Users\LENOVO\Downloads\msvcp120.zip
2015-07-26 19:03 - 2015-07-26 19:04 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-07-26 19:03 - 2015-07-26 19:03 - 00292184 _____ (Microsoft Corporation) C:\Users\LENOVO\Downloads\dxwebsetup.exe
2015-07-26 19:03 - 2015-07-26 19:03 - 00000000 ___HD C:\Windows\msdownld.tmp
2015-07-26 18:58 - 2011-02-18 08:07 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2015-07-26 18:48 - 2015-07-26 18:48 - 00001153 _____ C:\Users\Public\Desktop\Sims 4 by BuZeR.lnk
2015-07-26 18:48 - 2015-07-26 18:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sims 4
2015-07-26 18:21 - 2015-07-26 18:21 - 00000000 ____D C:\Program Files (x86)\Sims 4
2015-07-26 18:19 - 2015-07-26 18:20 - 00889416 _____ (Microsoft Corporation) C:\Users\LENOVO\Downloads\dotNetFx40_Full_setup.exe
2015-07-26 18:13 - 2015-07-26 18:13 - 07194312 _____ (Microsoft Corporation) C:\Users\LENOVO\Downloads\vcredist_x64.exe
2015-07-26 18:09 - 2015-08-01 18:14 - 00000001 _____ C:\Users\LENOVO\AppData\Roaming\update.dat
2015-07-26 17:56 - 2015-08-02 17:57 - 00045111 _____ C:\Windows\DirectX.log
2015-07-26 17:56 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-07-26 17:56 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-07-26 17:56 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-07-26 17:56 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-07-26 17:56 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-07-26 17:56 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-07-26 17:56 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-07-26 17:56 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-07-26 17:56 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-07-26 17:56 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-07-26 17:56 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-07-26 17:56 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-07-26 17:56 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-07-26 17:56 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-07-26 17:56 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-07-26 17:56 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-07-26 17:56 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-07-26 17:56 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-07-26 17:56 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-07-26 17:56 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-07-26 17:56 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-07-26 17:56 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-07-26 17:56 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-07-26 17:56 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-07-26 17:56 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-07-26 17:56 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-07-26 17:56 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-07-26 17:56 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-07-26 17:56 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-07-26 17:56 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-07-26 17:56 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-07-26 17:56 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-07-26 17:56 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-07-26 17:56 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-07-26 17:56 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-07-26 17:56 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-07-26 17:56 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-07-26 17:56 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-07-26 17:56 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-07-26 17:56 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-07-26 17:56 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-07-26 17:56 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-07-26 17:56 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-07-26 17:56 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-07-26 17:56 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-07-26 17:56 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-07-26 17:56 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-07-26 17:56 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-07-26 17:56 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-07-26 17:56 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-07-26 17:56 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-07-26 17:56 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-07-26 17:56 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-07-26 17:56 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-07-26 17:56 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-07-26 17:56 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-07-26 17:56 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-07-26 17:56 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-07-26 17:56 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-07-26 17:56 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-07-26 17:56 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-07-26 17:56 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-07-26 17:56 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-07-26 17:56 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-07-26 17:56 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-07-26 17:56 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-07-26 17:56 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-07-26 17:56 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-07-26 17:56 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-07-26 17:56 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-07-26 17:56 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-07-26 17:56 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-07-26 17:56 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-07-26 17:56 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-07-26 17:56 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-07-26 17:56 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-07-26 17:56 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-07-26 17:56 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-07-26 17:56 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-07-26 17:56 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-07-26 17:56 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-07-26 17:56 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-07-26 17:56 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-07-26 17:56 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-07-26 17:56 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-07-26 17:56 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-07-26 17:56 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-07-26 17:56 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-07-26 17:56 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-07-26 17:56 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-07-26 17:56 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-07-26 17:56 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-07-26 17:56 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-07-26 17:56 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-07-26 17:56 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-07-26 17:56 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-07-26 17:56 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-07-26 17:56 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-07-26 17:56 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-07-26 17:56 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-07-26 17:56 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-07-26 17:56 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-07-26 17:56 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-07-26 17:56 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-07-26 17:56 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-07-26 17:56 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-07-26 17:56 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-07-26 17:56 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-07-26 17:56 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-07-26 17:56 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-07-26 17:56 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-07-26 17:56 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-07-26 17:56 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-07-26 17:56 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-07-26 17:56 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-07-26 17:56 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-07-26 17:56 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-07-26 17:56 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-07-26 17:56 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-07-26 17:56 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-07-26 17:56 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-07-26 17:56 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-07-26 17:56 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-07-26 17:56 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-07-26 17:56 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-07-26 17:56 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-07-26 17:56 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-07-26 17:56 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-07-26 17:56 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-07-26 17:56 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-07-26 17:56 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-07-26 17:56 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-07-26 17:56 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-07-26 17:56 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-07-26 17:56 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-07-26 17:56 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-07-26 17:56 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-07-26 17:56 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-07-26 17:56 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-07-26 17:56 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-07-26 17:56 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-07-26 17:56 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-07-26 17:56 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-07-26 17:56 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-07-26 17:56 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-07-26 17:56 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-07-26 17:56 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-07-26 17:56 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-07-26 17:56 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-07-26 17:56 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-07-24 21:39 - 2014-05-14 10:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-24 21:39 - 2014-05-14 10:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-24 21:39 - 2014-05-14 10:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-24 21:39 - 2014-05-14 10:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-24 21:39 - 2014-05-14 10:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-24 21:39 - 2014-05-14 10:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-24 21:39 - 2014-05-14 10:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-24 21:39 - 2014-05-14 10:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-24 21:39 - 2014-05-14 10:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-24 21:39 - 2014-05-14 10:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-24 21:38 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-24 21:38 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-24 21:38 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-24 21:38 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-24 15:27 - 2015-07-25 00:02 - 00000000 ____D C:\Users\LENOVO\Documents\Euro Truck Simulator 2
2015-07-24 14:04 - 2015-07-24 14:04 - 00084045 _____ C:\Users\LENOVO\Downloads\[kat.cr]euro.truck.simulator.2.v1.13.4.1s.17.dlc.2014.2.click.run.torrent
2015-07-24 13:58 - 2015-08-08 17:51 - 00000000 ____D C:\Users\LENOVO\Games
2015-07-24 13:58 - 2015-07-24 13:58 - 00115319 _____ C:\Users\LENOVO\Downloads\538c728f4d02750c9dd3efc030049618f6dc0fb0.torrent
2015-07-24 13:54 - 2015-07-24 13:54 - 00002645 _____ C:\Users\LENOVO\Desktop\µTorrent.lnk
2015-07-24 13:53 - 2015-08-02 05:38 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\uTorrent
2015-07-24 13:52 - 2015-07-24 13:53 - 01993056 _____ (BitTorrent Inc.) C:\Users\LENOVO\Downloads\uTorrent.exe
2015-07-24 13:51 - 2015-07-24 13:51 - 00115319 _____ C:\Users\LENOVO\Downloads\538c728f4d02750c9dd3efc030049618f6dc0fb0
2015-07-24 11:04 - 2015-07-24 11:07 - 00000000 ____D C:\Users\LENOVO\SHAREit
2015-07-23 21:19 - 2015-02-27 19:35 - 00000000 ____D C:\Users\LENOVO\Downloads\Activador ESET NOD32 v8 por JT
2015-07-23 21:16 - 2015-07-23 21:16 - 00000000 ____D C:\Windows\pss
2015-07-23 21:09 - 2015-07-23 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-07-23 21:09 - 2015-07-23 21:09 - 00000000 ____D C:\ProgramData\ESET
2015-07-23 21:09 - 2015-07-23 21:09 - 00000000 ____D C:\Program Files\ESET
2015-07-23 20:58 - 2015-07-23 20:58 - 00143063 _____ C:\Users\LENOVO\Downloads\Activador ESET NOD32 POR TR.rar
2015-07-23 20:57 - 2015-07-23 20:58 - 72998912 _____ C:\Users\LENOVO\Downloads\eav_nt64_esn.msi
2015-07-23 16:50 - 2015-07-23 20:23 - 00000000 ____D C:\Windows\AutoKMS
2015-07-23 16:48 - 2015-07-23 16:48 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-07-23 16:48 - 2013-08-30 21:13 - 35811328 _____ C:\Users\LENOVO\Desktop\Microsoft Toolkit.exe
2015-07-23 16:47 - 2015-07-23 16:47 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\WinRAR
2015-07-23 16:37 - 2015-07-23 16:37 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-07-23 16:36 - 2015-07-23 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-07-23 16:36 - 2015-07-23 16:36 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-07-23 16:36 - 2015-07-23 16:36 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-07-23 16:35 - 2015-07-23 16:36 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-07-23 16:35 - 2015-07-23 16:35 - 00000000 ____D C:\Windows\PCHEALTH
2015-07-23 16:35 - 2015-07-23 16:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-07-23 16:33 - 2015-07-23 16:33 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-07-23 16:33 - 2015-07-23 16:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-07-23 16:32 - 2015-07-23 16:37 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-23 16:32 - 2015-07-23 16:35 - 00000000 ____D C:\Program Files\Microsoft Office
2015-07-23 16:32 - 2015-07-23 16:32 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-23 16:32 - 2015-07-23 16:32 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Microsoft Help
2015-07-23 16:32 - 2015-07-23 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-23 16:32 - 2015-07-23 16:32 - 00000000 ____D C:\Program Files\WinRAR
2015-07-23 16:32 - 2015-07-23 16:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-07-23 16:31 - 2015-07-23 16:32 - 02038504 _____ C:\Users\LENOVO\Downloads\winrar-x64-521es.exe
2015-07-23 16:31 - 2015-07-23 16:31 - 00000000 __RHD C:\MSOCache
2015-07-23 16:30 - 2015-07-23 16:30 - 00001254 _____ C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2015-07-23 16:30 - 2015-07-23 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2015-07-23 16:30 - 2015-07-23 16:30 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2015-07-23 16:27 - 2015-07-23 16:27 - 00368360 _____ (Lenovo Group Limited ) C:\Users\LENOVO\Downloads\00vu01ww.exe
2015-07-23 16:23 - 2012-01-13 22:41 - 00068864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-07-23 16:19 - 2011-01-14 00:23 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2015-07-23 16:18 - 2015-07-23 16:18 - 00000000 ____D C:\Windows\smFile
2015-07-23 16:18 - 2015-07-23 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage
2015-07-23 16:18 - 2015-07-23 16:18 - 00000000 ____D C:\Program Files (x86)\Silicon Motion

 

[Eddie Homme]

2015-07-23 16:18 - 2009-11-23 12:06 - 00205952 _____ (SMI) C:\Windows\system32\Drivers\SMIksdrv.sys
2015-07-23 16:18 - 2009-10-23 18:50 - 00326144 _____ C:\Windows\system32\370prop.ax
2015-07-23 16:18 - 2009-10-23 18:50 - 00274432 _____ C:\Windows\SysWOW64\370prop.ax
2015-07-23 16:18 - 2009-10-08 23:37 - 00937984 _____ (SiliconMotion) C:\Windows\system32\RemoveSM37X.exe
2015-07-23 16:18 - 2009-10-08 20:36 - 00001652 _____ C:\Windows\Sensor.set
2015-07-23 16:18 - 2009-09-14 15:08 - 00205312 _____ C:\Windows\system32\SM37XCoInst.dll
2015-07-23 16:18 - 2008-01-16 18:06 - 02806784 _____ (Silicon Motion Corporation) C:\Windows\system32\Drivers\SMIexp.sys
2015-07-23 16:17 - 2015-07-25 03:32 - 00001985 _____ C:\Users\Public\Desktop\REACHit.lnk
2015-07-23 16:17 - 2015-07-25 03:32 - 00001824 _____ C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\REACHit Drive.lnk
2015-07-23 16:17 - 2015-07-25 03:31 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Downloaded Installations
2015-07-23 16:17 - 2015-07-23 16:17 - 00000000 ____D C:\Users\LENOVO\REACHit
2015-07-23 16:11 - 2015-07-23 16:11 - 00003271 _____ C:\RHDSetup.log
2015-07-23 16:11 - 2015-07-23 16:11 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-07-23 16:11 - 2015-07-23 16:11 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-07-23 16:11 - 2015-07-23 16:11 - 00000000 ____D C:\Program Files\Realtek
2015-07-23 16:11 - 2010-07-15 14:23 - 02624616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 02601816 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 02416872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-07-23 16:11 - 2010-07-15 14:23 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 02018920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01814048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RHDMEx64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01736536 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01631264 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkHDM64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01325328 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01216104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01178384 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-07-23 16:11 - 2010-07-15 14:23 - 01110800 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00504592 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00489744 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00476264 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00474896 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00372936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00334848 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00330656 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00315152 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00307936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RH3DHT64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00307936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RH3DAA64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00268560 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00265488 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00233064 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-07-23 16:11 - 2010-07-15 14:23 - 00231328 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtHDMIVX.sys
2015-07-23 16:11 - 2010-07-15 14:23 - 00220496 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFNHK64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00201928 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00168288 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00124176 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00123664 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00123152 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00099016 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00080720 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFCOM64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00078672 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFAPO64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00076488 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00075880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00073552 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-07-23 16:11 - 2010-07-15 14:23 - 00068640 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RHCoInst64.dll
2015-07-23 16:11 - 2009-12-15 18:26 - 00369864 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64H.dll
2015-07-23 16:11 - 2009-12-15 18:26 - 00201928 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64H.dll
2015-07-23 16:11 - 2009-12-15 18:26 - 00095432 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64H.dll
2015-07-23 16:11 - 2009-12-15 18:26 - 00076488 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64H.dll
2015-07-23 16:10 - 2015-08-06 21:12 - 00001204 _____ C:\Users\Public\Desktop\SHAREit.lnk
2015-07-23 16:10 - 2015-07-23 16:28 - 00000000 ____D C:\Program Files\Lenovo
2015-07-23 16:10 - 2015-07-23 16:10 - 00000000 ____D C:\Program Files\Common Files\Lenovo
2015-07-23 16:09 - 2010-03-12 11:23 - 00242720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2015-07-23 16:09 - 2010-03-04 16:30 - 09112096 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUStoricon.dll
2015-07-23 16:09 - 2010-03-04 16:30 - 00422432 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUStor.dll
2015-07-23 15:48 - 2015-07-23 15:48 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\ATI
2015-07-23 15:48 - 2015-07-23 15:48 - 00000000 ____D C:\Users\LENOVO\AppData\Local\ATI
2015-07-23 15:48 - 2015-07-23 15:48 - 00000000 ____D C:\ProgramData\ATI
2015-07-23 15:47 - 2015-07-23 15:47 - 00000000 _____ C:\Windows\ativpsrm.bin
2015-07-23 15:39 - 2015-07-23 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2015-07-23 15:37 - 2015-07-23 15:38 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-07-23 15:37 - 2010-03-30 22:46 - 06657536 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2015-07-23 15:37 - 2010-03-30 22:42 - 18904576 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2015-07-23 15:37 - 2010-03-30 22:16 - 00489472 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2015-07-23 15:37 - 2010-03-30 22:16 - 00143360 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2015-07-23 15:37 - 2010-03-30 22:16 - 00035464 _____ C:\Windows\system32\atiapfxx.blb
2015-07-23 15:37 - 2010-03-30 22:15 - 00553472 _____ (ATI Technologies Inc. ) C:\Windows\system32\aticfx64.dll
2015-07-23 15:37 - 2010-03-30 22:14 - 14296064 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2015-07-23 15:37 - 2010-03-30 22:13 - 00455168 _____ (AMD) C:\Windows\system32\atieclxx.exe
2015-07-23 15:37 - 2010-03-30 22:13 - 00446464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2015-07-23 15:37 - 2010-03-30 22:12 - 00202752 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2015-07-23 15:37 - 2010-03-30 22:11 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2015-07-23 15:37 - 2010-03-30 22:10 - 00421376 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll
2015-07-23 15:37 - 2010-03-30 22:10 - 00356352 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\atipdlxx.dll
2015-07-23 15:37 - 2010-03-30 22:10 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2015-07-23 15:37 - 2010-03-30 22:10 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2015-07-23 15:37 - 2010-03-30 22:10 - 00012288 _____ (AMD) C:\Windows\system32\atimuixx.dll
2015-07-23 15:37 - 2010-03-30 22:06 - 03161088 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2015-07-23 15:37 - 2010-03-30 21:54 - 03833344 _____ (ATI Technologies Inc. ) C:\Windows\system32\atidxx64.dll
2015-07-23 15:37 - 2010-03-30 21:49 - 00055296 _____ (AMD) C:\Windows\system32\coinst.dll
2015-07-23 15:37 - 2010-03-30 21:41 - 00053248 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2015-07-23 15:37 - 2010-03-30 21:41 - 00043008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2015-07-23 15:37 - 2010-03-30 21:40 - 05186048 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2015-07-23 15:37 - 2010-03-30 21:40 - 03704320 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2015-07-23 15:37 - 2010-03-30 21:40 - 00053248 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2015-07-23 15:37 - 2010-03-30 21:40 - 00039936 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2015-07-23 15:37 - 2010-03-30 21:39 - 04018176 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2015-07-23 15:37 - 2010-03-30 21:32 - 04801536 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64.dll
2015-07-23 15:37 - 2010-03-30 21:26 - 02701312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2015-07-23 15:37 - 2010-03-30 21:24 - 00515424 _____ C:\Windows\system32\atiumd6a.cap
2015-07-23 15:37 - 2010-03-30 21:24 - 00334336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2015-07-23 15:37 - 2010-03-30 21:23 - 00237568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2015-07-23 15:37 - 2010-03-30 21:23 - 00195584 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2015-07-23 15:37 - 2010-03-30 21:23 - 00016384 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2015-07-23 15:37 - 2010-03-30 21:23 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2015-07-23 15:37 - 2010-03-30 21:23 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2015-07-23 15:37 - 2010-03-30 21:23 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2015-07-23 15:37 - 2010-03-30 21:23 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2015-07-23 15:37 - 2010-03-30 21:22 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2015-07-23 15:37 - 2010-03-30 21:22 - 00036864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2015-07-23 15:37 - 2010-03-30 21:22 - 00028160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2015-07-23 15:37 - 2010-03-30 21:22 - 00028160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2015-07-23 15:37 - 2010-03-30 21:22 - 00020480 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2015-07-23 15:37 - 2010-03-30 21:20 - 02983936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2015-07-23 15:37 - 2010-03-30 21:20 - 00515424 _____ C:\Windows\SysWOW64\atiumdva.cap
2015-07-23 15:37 - 2010-03-30 21:08 - 00053248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2015-07-23 15:37 - 2010-03-30 21:08 - 00053248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2015-07-23 15:37 - 2010-03-30 21:08 - 00052224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2015-07-23 15:37 - 2010-03-30 21:08 - 00052224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2015-07-23 15:37 - 2010-03-17 11:06 - 00202234 _____ C:\Windows\system32\atiicdxx.dat
2015-07-23 15:37 - 2010-03-02 04:31 - 00020862 _____ C:\Windows\atiogl.xml
2015-07-23 15:37 - 2009-10-26 14:06 - 00001035 _____ C:\Windows\SysWOW64\atipblag.dat
2015-07-23 15:37 - 2009-10-26 14:06 - 00001035 _____ C:\Windows\system32\atipblag.dat
2015-07-23 15:37 - 2009-05-11 17:35 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2015-07-23 15:34 - 2015-07-25 17:21 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Lenovo
2015-07-17 14:10 - 2015-07-17 14:10 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Tvsukernel
2015-07-17 14:04 - 2015-07-17 14:04 - 00000000 ____D C:\Program Files\ATI Technologies
2015-07-17 14:04 - 2015-07-17 14:04 - 00000000 ____D C:\Program Files\ATI
2015-07-17 14:03 - 2009-08-23 18:55 - 00016440 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\Drivers\AtiPcie.sys
2015-07-17 14:02 - 2015-07-17 14:02 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-07-17 14:01 - 2015-07-17 14:02 - 00000000 ____D C:\Program Files (x86)\ThinkPad Wireless LAN Adapter Software
2015-07-17 14:01 - 2015-07-17 14:01 - 00000000 ____D C:\SWTOOLS
2015-07-17 14:01 - 2011-08-30 15:52 - 01225832 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192se.sys
2015-07-17 14:00 - 2015-08-06 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-07-17 14:00 - 2015-07-23 16:18 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2015-07-17 14:00 - 2015-07-17 14:00 - 00000000 ____D C:\Windows\System32\Tasks\TVT
2015-07-17 13:59 - 2015-08-06 21:12 - 00000000 ____D C:\Windows\Downloaded Installations
2015-07-17 13:59 - 2015-07-24 14:32 - 00000000 ____D C:\ProgramData\Lenovo
2015-07-17 13:59 - 2015-07-23 16:18 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-07-17 13:58 - 2015-07-26 18:52 - 01648144 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-07-17 13:43 - 2015-07-17 13:52 - 50449456 _____ (Microsoft Corporation) C:\Users\LENOVO\Downloads\dotNetFx40_Full_x86_x64.exe
2015-07-17 13:42 - 2015-07-17 13:50 - 13321776 _____ ( ) C:\Users\LENOVO\Downloads\systemupdate507-2015-07-01.exe
2015-07-17 13:33 - 2015-07-17 13:59 - 116230144 _____ (Lenovo Group Limited ) C:\Users\LENOVO\Downloads\80dh05ww.exe
2015-07-17 13:32 - 2015-07-17 13:32 - 00490568 _____ () C:\Users\LENOVO\Downloads\LSBsetup (2).exe
2015-07-17 13:24 - 2015-07-17 13:24 - 00490568 _____ () C:\Users\LENOVO\Downloads\LSBsetup (1).exe
2015-07-17 13:20 - 2015-07-17 13:20 - 00490568 _____ () C:\Users\LENOVO\Downloads\LSBsetup.exe
2015-07-17 13:19 - 2015-08-11 20:35 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-17 13:19 - 2015-07-17 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-17 13:13 - 2015-08-11 21:31 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-17 13:13 - 2015-08-11 21:09 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-17 13:13 - 2015-08-07 10:15 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-17 13:13 - 2015-08-07 10:15 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-17 13:13 - 2015-07-17 13:20 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Google
2015-07-17 13:13 - 2015-07-17 13:19 - 00000000 ____D C:\Program Files (x86)\Google
2015-07-17 13:12 - 2015-08-06 21:13 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2015-07-17 13:12 - 2015-07-17 13:12 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-07-17 13:11 - 2015-08-11 20:32 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Deployment
2015-07-17 13:11 - 2015-07-23 16:48 - 00111520 _____ C:\Users\LENOVO\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-17 13:11 - 2015-07-17 13:11 - 00000000 ____D C:\Users\LENOVO\AppData\Local\Apps\2.0
2015-07-17 13:01 - 2015-08-02 18:03 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-07-17 13:01 - 2015-07-23 16:11 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-07-17 13:01 - 2012-10-06 12:26 - 00766096 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2015-07-17 13:01 - 2012-10-06 12:26 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2015-07-17 13:01 - 2012-10-06 12:26 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2015-07-17 12:54 - 2015-07-17 13:51 - 00000000 ____D C:\Users\LENOVO\AppData\Roaming\Intel
2015-07-17 12:53 - 2015-07-23 16:18 - 00050880 _____ C:\Windows\DPINST.LOG
2015-07-17 11:55 - 2015-08-05 21:22 - 00000000 ____D C:\Users\LENOVO\AppData\Local\VirtualStore
2015-07-17 11:55 - 2015-07-17 11:55 - 00001431 _____ C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-17 11:55 - 2015-07-17 11:55 - 00001397 _____ C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2015-07-17 11:54 - 2015-07-26 17:26 - 00000000 ____D C:\Users\LENOVO
2015-07-17 11:54 - 2015-07-17 11:54 - 00000020 ___SH C:\Users\LENOVO\ntuser.ini
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Public\Documents\Mis vídeos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Public\Documents\Mis imágenes
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Public\Documents\Mi música
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Reciente
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Plantillas
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Mis documentos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Menú Inicio
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Impresoras
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Entorno de red
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Documents\Mis vídeos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Documents\Mis imágenes
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Documents\Mi música
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\Datos de programa
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\AppData\Local\Historial
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\AppData\Local\Datos de programa
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\LENOVO\AppData\Local\Archivos temporales de Internet
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Reciente
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Plantillas
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Mis documentos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Menú Inicio
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Impresoras
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Entorno de red
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Documents\Mi música
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\Datos de programa
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historial
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default User\Documents\Mi música
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\ProgramData\Plantillas
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\ProgramData\Menú Inicio
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\ProgramData\Favoritos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\ProgramData\Escritorio
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\ProgramData\Documentos
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\ProgramData\Datos de programa
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Program Files\Archivos comunes
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 _SHDL C:\Archivos de programa
2015-07-17 11:54 - 2015-07-17 11:54 - 00000000 __SHD C:\Recovery
2015-07-17 11:54 - 2009-07-13 22:54 - 00000000 ___RD C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-17 11:54 - 2009-07-13 22:49 - 00000000 ___RD C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-17 04:49 - 2015-07-17 11:54 - 00000000 ____D C:\Windows\Panther
2015-07-17 03:55 - 2015-07-17 03:55 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-07-17 03:54 - 2015-07-17 03:54 - 00001355 _____ C:\Windows\TSSysprep.log
2015-07-17 03:54 - 2015-07-17 03:54 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-07-17 03:53 - 2015-08-11 21:03 - 01414096 _____ C:\Windows\WindowsUpdate.log
2015-07-17 03:53 - 2015-07-17 03:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-11 21:15 - 2009-07-13 22:45 - 00023136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-11 21:15 - 2009-07-13 22:45 - 00023136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-11 21:13 - 2010-11-21 01:09 - 00746524 _____ C:\Windows\system32\perfh00A.dat
2015-08-11 21:13 - 2010-11-21 01:09 - 00158478 _____ C:\Windows\system32\perfc00A.dat
2015-08-11 21:13 - 2009-07-13 23:13 - 01673558 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-11 21:09 - 2009-07-13 23:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-11 21:09 - 2009-07-13 22:51 - 00026964 _____ C:\Windows\setupact.log
2015-07-26 19:13 - 2009-07-13 21:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-07-25 19:54 - 2009-07-13 21:20 - 00000000 ____D C:\Windows\rescache
2015-07-25 17:12 - 2009-07-13 23:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-07-25 17:11 - 2010-11-20 21:47 - 00155528 _____ C:\Windows\PFRO.log
2015-07-23 20:34 - 2009-07-13 21:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-07-23 20:23 - 2009-07-13 22:45 - 00441888 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-23 16:36 - 2010-11-21 01:20 - 00000000 ____D C:\Windows\ShellNew
2015-07-23 16:34 - 2009-07-13 21:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-07-23 16:34 - 2009-07-13 20:34 - 00000581 _____ C:\Windows\win.ini
2015-07-17 12:54 - 2009-07-13 21:20 - 00000000 __RHD C:\Users\Default
2015-07-17 12:53 - 2009-07-13 23:32 - 00000000 ____D C:\Windows\system32\restore
2015-07-17 11:54 - 2009-07-13 21:20 - 00000000 ____D C:\Windows\system32\Recovery
2015-07-17 11:54 - 2009-07-13 21:20 - 00000000 ____D C:\Program Files\Windows NT
2015-07-17 04:49 - 2009-07-13 23:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2015-07-17 04:49 - 2009-07-13 23:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-07-17 03:54 - 2009-07-13 22:46 - 00002790 _____ C:\Windows\DtcInstall.log
2015-07-17 03:54 - 2009-07-13 21:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-17 03:54 - 2009-07-13 21:20 - 00000000 ____D C:\Windows\system32\sysprep
2015-07-17 03:51 - 2010-11-21 01:20 - 00000000 ____D C:\Windows\CSC

==================== Files in the root of some directories =======

2015-07-26 19:08 - 2015-07-27 15:39 - 243361280 _____ () C:\Users\LENOVO\AppData\Roaming\Launcher.rb4
2015-07-26 18:09 - 2015-08-01 18:14 - 0000001 _____ () C:\Users\LENOVO\AppData\Roaming\update.dat

Some files in TEMP:
====================
C:\Users\LENOVO\AppData\Local\Temp\InstHelper.exe
C:\Users\LENOVO\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-02 00:07

==================== End of log ============================

 

[Eddie Homme]

Here is addition!!

Additional scan result of Farbar Recovery Scan Tool (x64) Version:11-08-2015 02
Ran by LENOVO (2015-08-11 22:04:28)
Running from C:\Users\LENOVO\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-4190457828-2658452903-3567655377-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-4190457828-2658452903-3567655377-1002 - Limited - Enabled)
Invitado (S-1-5-21-4190457828-2658452903-3567655377-501 - Limited - Disabled)
LENOVO (S-1-5-21-4190457828-2658452903-3567655377-1000 - Administrator - Enabled) => C:\Users\LENOVO

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4190457828-2658452903-3567655377-1000\...\uTorrent) (Version: 3.4.3.40760 - BitTorrent Inc.)
Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
ATI Catalyst Install Manager (HKLM\...\{40B9C19D-49E1-0253-D1EF-A94BA64E3F2A}) (Version: 3.0.769.0 - ATI Technologies, Inc.)
ATI Uninstaller (HKLM\...\ATI Uninstaller) (Version: 8.722-100330a-098738C-Lenovo - ATI Technologies, Inc.)
AVG PC TuneUp 2015 (en-US) (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.604 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden
Bully Scholarship Edition (HKLM-x32\...\InstallShield_{A724605D-B399-4304-B8C7-33B3EF7D4677}) (Version: 1.00.0200 - Rockstar Games)
Bully Scholarship Edition (x32 Version: 1.00.0200 - Rockstar Games) Hidden
ccc-core-static (x32 Version: 2010.0330.2135.36914 - Nombre de su organización) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Eines de correcció del Microsoft Office 2013: català (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
ESET NOD32 Antivirus (HKLM\...\{CB1C12AD-DDAF-45C8-AA34-D6D4D0CB5A37}) (Version: 8.0.312.4 - ESET, spol s r. o.)
Ferramentas de verificación de Microsoft Office 2013 - Galego (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Integrated Camera (HKLM-x32\...\{FE7AD27A-62B1-44F6-B69C-25D1ECA94F5D}) (Version: 5.50.2.7 - Silicon Motion)
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Service Bridge (HKU\S-1-5-21-4190457828-2658452903-3567655377-1000\...\cbe8636f7dd0cf1d) (Version: 1.4.0.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0003 - Lenovo)
Message Center Plus (HKLM\...\{C2C2DB64-1BCE-4FA7-962D-457795ECCEC0}) (Version: 3.3.0004.00 - Lenovo Group Limited)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.2.008.00 - Lenovo)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.63.1003.2012 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6146 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30116 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.5.1.1 - Lenovo Group Limited)
Sims 4 by BuZeR version final (HKLM-x32\...\{ED118F10-E516-4245-160F-62131508F71F}_is1) (Version: final - )
ThinkPad Wireless LAN Adapter Software (HKLM-x32\...\{9D3D2C60-A55F-4fed-B2B9-17394396DF01}) (Version: 1.00.0029.8 - REALTEK Semiconductor Corp.)
ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

02-08-2015 00:00:01 Punto de control programado
02-08-2015 17:55:14 Installed Bully Scholarship Edition
02-08-2015 18:08:17 Configurado Bully Scholarship Edition
03-08-2015 16:46:19 Instalado AVG PC TuneUp 2015

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 20:34 - 2009-06-10 15:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {397784DB-C9D9-49CF-A194-086134F2E253} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2015-07-06] (Lenovo)
Task: {5AC69A96-AEEE-4634-AFB1-7ACE98237623} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-17] (Google Inc.)
Task: {7B253978-E55D-45B3-A5B1-71767171DCF0} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-06-29] (AVG Technologies)
Task: {7DB3C59E-86D3-4D9B-AF1A-627873A53DE2} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2015-07-01] ()
Task: {9E690346-B222-473A-B925-49E2C5BBAB22} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {9F51DE64-105A-44C0-AFA3-D6A23EEF33FD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {A47DFFD8-2E81-49AC-B801-A39854A07352} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [2015-06-10] (Lenovo)
Task: {B55C9821-ACE5-4232-B848-53147C665927} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [2015-06-10] (Lenovo)
Task: {CCE3E3F8-A7FE-4C93-8229-712FB3E0E6DF} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-07-23] ()
Task: {D16C9D39-BC67-4E12-B250-F08F1AE30EE2} - System32\Tasks\Lenovo\Message Center Plus Launcher => C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [2014-09-13] (Lenovo)
Task: {D9D0A701-BB2A-44EA-A2B0-4FC332970A55} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {F314F194-7B56-4ED6-8BEA-1C0E5C5687C4} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4190457828-2658452903-3567655377-1000 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {F5533E79-C8AF-44C9-B67D-519911196F55} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-17] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-26 19:09 - 2015-07-26 19:09 - 153822720 __RSH () C:\ProgramData\nvxasync\cvxasync.exe
2015-06-29 10:24 - 2015-06-29 10:24 - 00718136 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-06-29 10:24 - 2015-06-29 10:24 - 00862008 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-07-26 19:08 - 2015-07-26 19:08 - 153822720 __RSH () C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe
2009-05-15 15:01 - 2009-05-15 15:01 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2015-07-23 15:39 - 2015-07-23 15:39 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-07-23 16:18 - 2009-10-23 18:50 - 00326144 _____ () C:\Windows\system32\370prop.ax
2015-08-11 20:35 - 2015-08-07 18:13 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll
2015-08-11 20:35 - 2015-08-07 18:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll
2015-08-11 20:35 - 2015-08-07 18:13 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4190457828-2658452903-3567655377-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.107.124.254 - 190.107.138.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{7ECF6A31-4F02-4897-9C62-AACD24C568F6}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{F2D6E396-BECE-4F51-878B-43C33D218843}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{D0C5159A-237A-4E24-A413-C5CB2BD96041}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{313DEF9D-A946-4F3E-BD2A-25140C8534F4}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{9E40DBBD-A117-403A-AE9B-0520FF6C13AC}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{A945BC32-9B88-4D75-BB30-63BD6754F0B7}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{EAFE0E4A-8B7E-4CBB-91A9-E0620D1FBEC5}C:\users\lenovo\desktop\microsoft toolkit.exe] => (Allow) C:\users\lenovo\desktop\microsoft toolkit.exe
FirewallRules: [UDP Query User{F96674C9-37CC-440D-A6BC-C27A2E60D30E}C:\users\lenovo\desktop\microsoft toolkit.exe] => (Allow) C:\users\lenovo\desktop\microsoft toolkit.exe
FirewallRules: [{013CF147-391D-436C-8EFF-BC12895C4530}] => (Allow) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B8E33739-EB44-4FFE-83F5-A34E35430743}] => (Allow) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EB353F5A-3D8E-4B2E-AC76-D0F31EF7F98E}] => (Allow) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9939275B-3F09-4669-8471-1024F12E0473}] => (Allow) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D7486AFF-5FCA-4E90-AA74-103BC55D15D4}] => (Allow) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{20F8A0A0-4F00-4BEB-B3B5-8319A2E59AA4}] => (Allow) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{334EEDA7-777E-412B-9E9A-5093B7CDBD81}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{AC34E8FD-2252-4041-9640-AD5D948A1718}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{8017A33F-E89F-4A9C-9D76-A59A8217EEAB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/11/2015 09:11:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2015 09:05:42 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows no puede tener acceso al archivo por alguna de las siguientes razones:
Hay un problema con la conexión de red, con el disco donde se almacena este archivo o con los controladores
de almacenamiento instalados en este equipo; o bien no se encuentra el disco.
Windows cerró el programa nvxasync.exe por este error.

Programa: nvxasync.exe
Archivo:

El valor del error se muestra en la sección Datos adicionales.
Acción del usuario
1. Abra el archivo de nuevo.
Podría ser sólo un problema temporal que se corrige al ejecutar el programa de nuevo.
2.
Si todavía no se puede tener acceso al archivo y
- Está en la red,
el administrador de red debe comprobar que no exista ningún problema con la red y que es posible ponerse en contacto con el servidor.
- Está en un disco extraíble, como un disquete o un CD-ROM, compruebe que el disco esté insertado en el equipo.
3. Compruebe y repare el sistema de archivos ejecutando CHKDSK. Para ejecutar CHKDSK, haga clic en Inicio y después en Ejecutar; escriba CMD y después haga clic en Aceptar. En el símbolo del sistema, escriba CHKDSK /F y después presione Entrar.
4. Si el problema continúa, restaure el archivo a partir de una copia de seguridad.
5. Compruebe si se pueden abrir otros archivos en el mismo disco. Si no se pueden abrir, el disco podría estar dañado. Si se trata de un disco duro, póngase en contacto con el administrador o con el fabricante del hardware del equipo
para obtener ayuda adicional.

Datos adicionales
Valor del error:00000000
Tipo de disco: 0

Error: (08/11/2015 09:05:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: nvxasync.exe, versión: 0.0.0.0, marca de tiempo: 0x55227d5b
Nombre del módulo con errores: nvxasync.exe, versión: 0.0.0.0, marca de tiempo: 0x55227d5b
Código de excepción: 0xc0000096
Desplazamiento de errores: 0x092b1bb8
Id. del proceso con errores: 0x564
Hora de inicio de la aplicación con errores: 0xnvxasync.exe0
Ruta de acceso de la aplicación con errores: nvxasync.exe1
Ruta de acceso del módulo con errores: nvxasync.exe2
Id. del informe: nvxasync.exe3

Error: (08/11/2015 09:05:31 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows no puede tener acceso al archivo por alguna de las siguientes razones:
Hay un problema con la conexión de red, con el disco donde se almacena este archivo o con los controladores
de almacenamiento instalados en este equipo; o bien no se encuentra el disco.
Windows cerró el programa cvxasync.exe por este error.

Programa: cvxasync.exe
Archivo:

El valor del error se muestra en la sección Datos adicionales.
Acción del usuario
1. Abra el archivo de nuevo.
Podría ser sólo un problema temporal que se corrige al ejecutar el programa de nuevo.
2.
Si todavía no se puede tener acceso al archivo y
- Está en la red,
el administrador de red debe comprobar que no exista ningún problema con la red y que es posible ponerse en contacto con el servidor.
- Está en un disco extraíble, como un disquete o un CD-ROM, compruebe que el disco esté insertado en el equipo.
3. Compruebe y repare el sistema de archivos ejecutando CHKDSK. Para ejecutar CHKDSK, haga clic en Inicio y después en Ejecutar; escriba CMD y después haga clic en Aceptar. En el símbolo del sistema, escriba CHKDSK /F y después presione Entrar.
4. Si el problema continúa, restaure el archivo a partir de una copia de seguridad.
5. Compruebe si se pueden abrir otros archivos en el mismo disco. Si no se pueden abrir, el disco podría estar dañado. Si se trata de un disco duro, póngase en contacto con el administrador o con el fabricante del hardware del equipo
para obtener ayuda adicional.

Datos adicionales
Valor del error:00000000
Tipo de disco: 0

Error: (08/11/2015 09:05:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: cvxasync.exe, versión: 0.0.0.0, marca de tiempo: 0x55227d5b
Nombre del módulo con errores: cvxasync.exe, versión: 0.0.0.0, marca de tiempo: 0x55227d5b
Código de excepción: 0xc0000096
Desplazamiento de errores: 0x092b1bb8
Id. del proceso con errores: 0x4f8
Hora de inicio de la aplicación con errores: 0xcvxasync.exe0
Ruta de acceso de la aplicación con errores: cvxasync.exe1
Ruta de acceso del módulo con errores: cvxasync.exe2
Id. del informe: cvxasync.exe3

Error: (08/11/2015 08:52:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2015 08:32:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2015 05:29:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/07/2015 09:13:25 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 08:30:40 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/11/2015 09:07:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:27 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:27 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:27 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
%%1068

Error: (08/11/2015 09:07:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
discache
eamonm
ehdrv
ElbyCDIO
spldr
Wanarpv6


Microsoft Office:
=========================
Error: (08/11/2015 09:11:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2015 09:05:42 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: nvxasync.exe000000000

Error: (08/11/2015 09:05:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: nvxasync.exe0.0.0.055227d5bnvxasync.exe0.0.0.055227d5bc0000096092b1bb856401d0d4abb4ff3468C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exeC:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe042478e7-409f-11e5-9206-60eb69cf0335

Error: (08/11/2015 09:05:31 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: cvxasync.exe000000000

Error: (08/11/2015 09:05:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: cvxasync.exe0.0.0.055227d5bcvxasync.exe0.0.0.055227d5bc0000096092b1bb84f801d0d4abae2e63c0C:\ProgramData\nvxasync\cvxasync.exeC:\ProgramData\nvxasync\cvxasync.exefd8343c5-409e-11e5-9206-60eb69cf0335

Error: (08/11/2015 08:52:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2015 08:32:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2015 05:29:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/07/2015 09:13:25 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 08:30:40 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity:
===================================
Date: 2015-08-03 16:51:13.878
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.862
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.815
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.784
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.753
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.722
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.691
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.675
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.643
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2015-08-03 16:51:13.613
Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.


==================== Memory info ===========================

Processor: AMD Turion(tm) II P540 Dual-Core Processor
Percentage of memory in use: 76%
Total physical RAM: 3838.16 MB
Available physical RAM: 897.18 MB
Total Virtual: 7674.53 MB
Available Virtual: 3811.6 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:404.78 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C39B00E2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of log ============================

 

[Broni]

Welcome aboard

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

======================================

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

• Close all the running programs
• Windows Vista/7/8 users: right click on RogueKiller.exe, click Run as Administrator
• Otherwise just double-click on RogueKiller.exe
• Pre-scan will start. Let it finish.
• Click on SCAN button.
• Wait until the Status box shows Scan Finished
• Click on Delete.
• Wait until the Status box shows Deleting Finished.
• Click on Report and copy/paste the content of the Notepad into your next reply.
• RKreport.txt could also be found on your desktop.
• If more than one log is produced post all logs.
• If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

Please download Malwarebytes Anti-Malware (MBAM) to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

• Double-click mbam-setup-2.0.0.1000.exe and follow the prompts to install the program.
  
• At the end, be sure a checkmark is placed next to the following:
  
• Launch Malwarebytes Anti-Malware
• A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  
• Click Finish.
• On the Dashboard, click the 'Update Now >>' link
• After the update completes, click the 'Scan Now >>' button.
  
• Or, on the Dashboard, click the Scan Now >> button.
• If an update is available, click the Update Now button.
  
• A Threat Scan will begin.
• When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
• In most cases, a restart will be required.
• Wait for the prompt to restart the computer to appear, then click on Yes.

If you already have MBAM 2.0 installed:

• On the Dashboard, click the 'Update Now >>' link
• After the update completes, click the 'Scan Now >>' button.
  
• Or, on the Dashboard, click the Scan Now >> button.
• If an update is available, click the Update Now button.
  
• A Threat Scan will begin.
• When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
• In most cases, a restart will be required.
• Wait for the prompt to restart the computer to appear, then click on Yes.

How to get logs:
(Export log to save as txt)

• After the restart once you are back at your desktop, open MBAM once more.
• Click on the History tab > Application Logs.
• Double click on the Scan Log which shows the Date and time of the scan just performed.
• Click 'Export'.
• Click 'Text file (*.txt)'
• In the Save File dialog box which appears, click on Desktop.
• In the File name: box type a name for your scan log.
• A message box named 'File Saved' should appear stating "Your file has been successfully exported".
• Click Ok
• Attach that saved log to your next reply.

(Copy to clipboard for pasting into forum replies or tickets)

• After the restart once you are back at your desktop, open MBAM once more.
• Click on the History tab > Application Logs.
• Double click on the Scan Log which shows the Date and time of the scan just performed.
• Click 'Copy to Clipboard'
• Paste the contents of the clipboard into your reply.

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on adwcleaner.exe to run the tool.
• Click on Scan button.
• When the scan has finished click on Clean button.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the contents of that logfile with your next reply.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

 

[Eddie Homme]

Hello Broni thank you for your response.

So I started with RogueKiller and all was going pretty well, until I tried to install MBAM. It does not let me install the program, no matter if I just double click on the installer or run as admin. I found a program thats called Malwarebytes Chameleon, do you think it might help? I didn't download it, just found it and thought I might ask you about it.

Anyway here is the log for RogueKiller scan

RogueKiller V10.10.0.0 [Aug 11 2015] by Adlice Software
correo : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Sitio web : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Sistema Operativo : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Iniciado en : Modo Normal
Usuario : LENOVO [Administrador]
Started from : C:\Users\LENOVO\Desktop\RogueKiller (1).exe
Modo : Borrar -- Fecha : 08/13/2015 20:58:04

¤¤¤ Procesos : 3 ¤¤¤
[Suspicious.Path|VT.Unknown] cvxasync.exe(1936) -- C:\ProgramData\nvxasync\cvxasync.exe[-] -> Eliminado [TermProc]
[Suspicious.Path|VT.Unknown] nvxasync.exe(2764) -- C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe[-] -> Eliminado [TermProc]
[Suspicious.Path|VT.Unknown] nvxasync.exe(2808) -- C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe[-] -> Eliminado [TermProc]

¤¤¤ Registro : 8 ¤¤¤
[Suspicious.Path|VT.Unknown] (X64) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Windows\CurrentVersion\Run | nvxasync : C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe [-] -> No seleccionado
[Suspicious.Path|VT.Unknown] (X86) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Windows\CurrentVersion\Run | nvxasync : C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe [-] -> No seleccionado
[Suspicious.Path|VT.Unknown] (X64) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon | Shell : C:\ProgramData\nvxasync\cvxasync.exe [-] -> No seleccionado
[Suspicious.Path|VT.Unknown] (X86) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon | Shell : C:\ProgramData\nvxasync\cvxasync.exe [-] -> No seleccionado
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.surfvox.com/ -> No seleccionado
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.surfvox.com/ -> No seleccionado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> No seleccionado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4190457828-2658452903-3567655377-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> No seleccionado

¤¤¤ Tareas : 0 ¤¤¤

¤¤¤ Archivos : 0 ¤¤¤

¤¤¤ Archivo de hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: No cargado [0xc000036b]) ¤¤¤

¤¤¤ Navegadores Web : 0 ¤¤¤

¤¤¤ Chequeo MBR : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MQ01ABF050 ATA Device +++++
--- User ---
[MBR] 98f007f246ec4aed42f1c39b99b6a9bb
[BSP] 25d206517b66b42bc9500134bd428e2b : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 476838 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

 

[Broni]

Yes, follow this: https://forums.malwarebytes.org/ind...-run-or-failed-to-resolve-my-issues/?p=434009

 

[Eddie Homme]

Hello Broni,

I finally got MBAM running using its Chameleon tool (RKill didn't work), and finished all scans using all the programs you listed. My computer is acting normal again, hopefully the malware is gone for good. If it is, then thank you so much!

Here are the rest of the logs.

MBAM

Malwarebytes Anti-Malware
www.malwarebytes.org

Fecha del análisis: 16/08/2015
Hora del análisis: 19:09
Archivo de registro: mbam log.txt
Administrador: Sí

Versión: 2.1.8.1057
Base de datos de malwares: v2015.08.16.03
Base de datos de rootkits: v2015.08.16.01
Licencia: Gratis
Protección contra el malware: Desactivado
Protección contra sitios web maliciosos: Desactivado
Autoprotección: Activado

SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: LENOVO

Tipo de análisis: Análisis de amenazas
Resultado: Completado
Objetos analizados: 333210
Tiempo transcurrido: 20 min, 8 seg

Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Activado
PUM: Activado

Procesos: 3
PUP.Optional.SurfVox.A, c:\users\lenovo\appdata\roaming\nvxasync\nvxasync.exe, 2384, , [4d36f910eba0a59105d8ae9907fcc739]
PUP.Optional.SurfVox.A, c:\users\lenovo\appdata\roaming\nvxasync\nvxasync.exe, 1872, , [4d36f910eba0a59105d8ae9907fcc739]
PUP.Optional.SurfVox.A, c:\programdata\nvxasync\cvxasync.exe, 1540, , [7f047e8bd4b785b1b41cc13551b10cf4]

Módulos: 0
(No hay elementos maliciosos detectados)

Claves del registro: 0
(No hay elementos maliciosos detectados)

Valores del registro: 1
PUP.Optional.SurfVox.A, HKU\S-1-5-21-4190457828-2658452903-3567655377-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|nvxasync, C:\Users\LENOVO\AppData\Roaming\nvxasync\nvxasync.exe, , [4d36f910eba0a59105d8ae9907fcc739]

Datos del registro: 0
(No hay elementos maliciosos detectados)

Carpetas: 259
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\searchplugins, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Extensions, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\default_apps, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\PepperFlash, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\VisualElements, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\DefaultData, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\DefaultData\profile, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\PortableApps.comInstaller, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Cache, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension Rules, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension State, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\__MACOSX, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ar, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\bg, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ca, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\cs, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\da, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\de, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\el, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\en_GB, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\en_US, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\es, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\es_419, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\et, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\eu, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\fi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\fil, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\fr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\he, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\hi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\hr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\hu, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\id, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\it, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ja, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ko, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\lt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\lv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ms, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\nl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\no, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\pl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\pt_BR, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\pt_PT, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ro, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ru, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\th, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\tr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\uk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\vi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\zh_CN, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\zh_TW, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ar, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\bg, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ca, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\cs, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\da, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\de, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\el, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\en, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\es, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fil, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\he, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hu, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\id, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\it, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ja, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ko, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\nl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\no, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_BR, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_PT, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ro, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ru, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\th, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\tr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\uk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\vi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_CN, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_TW, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ar, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\bg, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ca, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\cs, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\da, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\de, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\el, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\en, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\es, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\fi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\fil, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\fr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\he, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\hi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\hr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\hu, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\id, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\it, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ja, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ko, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\lt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\lv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\nl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\no, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\pl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\pt_BR, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\pt_PT, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ro, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ru, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\th, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\tr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\uk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\vi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\zh_CN, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\zh_TW, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ar, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\bg, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ca, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\cs, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\da, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\de, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\el, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_GB, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_US, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es_419, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\et, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fil, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\he, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hu, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\id, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\it, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ja, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ko, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\nl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\no, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_BR, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_PT, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ro, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ru, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\th, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\tr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\uk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\vi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_CN, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_TW, , [8ef5f415f09b00362129f71d43c0a55b],

 

[Eddie Homme]

PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ar, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\bg, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ca, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\cs, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\da, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\de, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\el, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\en, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\es, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fil, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hu, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\id, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\it, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ja, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ko, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lv, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\nl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\no, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_BR, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_PT, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ro, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ru, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\se, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\th, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\tr, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\uk, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\vi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_CN, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_TW, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\__MACOSX, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\__MACOSX\_locales, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\Temp, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\EVWhitelist, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\PepperFlash, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\pnacl, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\SwiftShader, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\WidevineCDM, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Help, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Help\images, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\ChromePasswords, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\Release, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages, , [8ef5f415f09b00362129f71d43c0a55b],

Archivos: 427
RiskWare.Tool.CK, C:\Users\LENOVO\Downloads\Activador ESET NOD32 POR TR.rar, , [ee95fd0c533894a268f8f699916f8a76],
PUP.Optional.SurfVox.A, c:\users\lenovo\appdata\roaming\nvxasync\nvxasync.exe, , [4d36f910eba0a59105d8ae9907fcc739],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\com.apple.Safari.plist, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, c:\programdata\nvxasync\cvxasync.exe, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\klite.exe, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\oldfilenotused, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\Prefaddon, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\Preferences, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\Secure Preferences, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\setting.dat, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\starter.xml, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\user.js, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\ProgramData\nvxasync\Web Data, , [7f047e8bd4b785b1b41cc13551b10cf4],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\com.apple.Safari.plist, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\klite.exe, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\oldfilenotused, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\Prefaddon, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\Preferences, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\Secure Preferences, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\setting.dat, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\starter.xml, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\user.js, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.SurfVox.A, C:\Users\LENOVO\AppData\Roaming\nvxasync\Web Data, , [5132848584070b2b5a765a9cab577090],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\readme.txt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\appcompactor.ini, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\appicon.ico, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\appicon_128.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\appicon_16.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\appicon_32.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\appinfo.ini, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\EULA.txt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\AppInfo\installer.ini, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\chrome.exe, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\debug.log, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\wow_helper.exe, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\39.0.2171.95.manifest, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\chrome.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\chrome_100_percent.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\chrome_200_percent.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\chrome_child.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\chrome_elf.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\d3dcompiler_46.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\delegate_execute.exe, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\ffmpegsumo.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\icudtl.dat, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\libegl.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\libexif.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\libglesv2.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\libpeerconnection.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\metro_driver.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\nacl64.exe, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\nacl_irt_x86_32.nexe, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\nacl_irt_x86_64.nexe, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\pdf.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\resources.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\secondarytile.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\widevinecdmadapter.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\xinput1_3.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Extensions\external_extensions.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\default_apps\docs.crx, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\default_apps\drive.crx, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\default_apps\external_extensions.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\default_apps\gmail.crx, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\default_apps\search.crx, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\default_apps\youtube.crx, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\hi.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\am.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ar.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\bg.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\bn.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ca.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\cs.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\da.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\de.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\el.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\en-GB.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\en-US.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\es-419.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\es.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\et.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\fa.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\fi.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\fil.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\fr.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\gu.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\he.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\hr.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\hu.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\id.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\it.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ja.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\kn.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ko.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\lt.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\lv.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ml.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\mr.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ms.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\nb.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\nl.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\pl.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\pt-BR.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\pt-PT.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ro.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ru.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\sk.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\sl.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\sr.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\sv.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\sw.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\ta.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\te.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\th.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\tr.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\uk.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\vi.pak, , [8ef5f415f09b00362129f71d43c0a55b],

 

[Eddie Homme]

PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\zh-CN.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\Locales\zh-TW.pak, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\PepperFlash\manifest.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\PepperFlash\pepflashplayer.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\VisualElements\logo.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\VisualElements\smalllogo.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\App\Chrome-bin\39.0.2171.95\VisualElements\splash-620x300.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\PortableApps.comInstaller\license.ini, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\First Run, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Local State, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Safe Browsing Cookies, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Safe Browsing Cookies-journal, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Favicons, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Favicons-journal, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\History, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\History Provider Cache, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\History-journal, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Preferences, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Secure Preferences, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Top Sites, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Top Sites-journal, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Visited Links, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Web Data, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Web Data-journal, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Cache\data_0, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Cache\data_1, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Cache\data_2, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Cache\data_3, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Cache\index, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension Rules\000003.log, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension Rules\CURRENT, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension Rules\LOCK, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension Rules\LOG, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension Rules\MANIFEST-000002, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension State\000003.log, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension State\CURRENT, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension State\LOCK, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension State\LOG, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extension State\MANIFEST-000002, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\icon_128.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\icon_16.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\main.html, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\main.js, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\manifest.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\128.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\manifest.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ar\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\bg\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ca\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\cs\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\da\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\de\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\el\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\en_GB\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\en_US\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\es\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\es_419\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\et\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\eu\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\fi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\fil\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\fr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\he\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\hi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\hr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\hu\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\id\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\it\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ja\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ko\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\lt\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\lv\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ms\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\nl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\no\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\pl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\pt_BR\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\pt_PT\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ro\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\ru\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\sv\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\th\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\tr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\uk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\vi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\zh_CN\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\_locales\zh_TW\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\128.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\manifest.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ar\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\bg\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ca\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\cs\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\da\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\de\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\el\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\en\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\es\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fil\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\he\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hu\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\id\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\it\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ja\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ko\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lt\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lv\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\nl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\no\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_BR\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_PT\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ro\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ru\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sv\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\th\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\tr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\uk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\vi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_CN\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_TW\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\128.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\16.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\32.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\48.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\manifest.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ar\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\bg\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ca\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\cs\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\da\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\de\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\el\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_GB\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_US\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es_419\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\et\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fil\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\he\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hu\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A,

 

[Eddie Homme]

C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\id\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\it\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ja\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ko\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lt\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lv\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\nl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\no\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_BR\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_PT\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ro\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ru\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sv\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\th\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\tr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\uk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\vi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_CN\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_TW\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\128.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\manifest.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ar\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\bg\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ca\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\cs\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\da\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\de\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\el\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\en\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\es\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fil\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hu\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\id\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\it\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ja\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ko\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lt\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lv\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\nl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\no\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_BR\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_PT\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ro\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ru\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\se\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sl\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\th\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\tr\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\uk\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\vi\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_CN\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Data\profile\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_TW\messages.json, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Help\images\donation_button.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Help\images\favicon.ico, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Help\images\help_background_footer.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Help\images\help_background_header.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Help\images\help_logo_top.png, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\attrib.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\dialogs.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\dialogsEx.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\GoogleChromePortable.ini, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\GoogleChromePortable.jpg, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\GoogleChromePortable.nsi, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\License.txt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\PortableApps.comLauncherLANG_ENGLISH.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\PortableApps.comLauncherOptionsForm.ini, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\TBProgress.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\build.txt, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\ChromePasswords.sln, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\ChromePasswords\ChromePasswords.def, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\ChromePasswords\ChromePasswords.vcxproj, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\ChromePasswords\dllmain.cpp, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\ChromePasswords\sqlite.cpp, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\ChromePasswords\sqlite.h, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\ChromePasswords\Release\ChromePasswords.dll, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\English.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Irish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Afrikaans.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Albanian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Arabic.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Basque.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Belarusian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Bosnian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Breton.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Bulgarian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Catalan.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Cibemba.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Croatian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Czech.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Danish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Dutch.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Efik.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Esperanto.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Estonian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Farsi.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Finnish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\French.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Galician.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Georgian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\German.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Greek.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Hebrew.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Hungarian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Icelandic.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Igbo.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Indonesian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Italian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Japanese.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Khmer.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Korean.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Kurdish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Latvian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Lithuanian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Luxembourgish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Macedonian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Malagasy.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Malay.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Mongolian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Norwegian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\NorwegianNynorsk.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Pashto.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Polish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Portuguese.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\PortugueseBR.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Romanian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Russian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Serbian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\SerbianLatin.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\SimpChinese.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Slovak.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Slovenian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Spanish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\SpanishInternational.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Swahili.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Swedish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Thai.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\TradChinese.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Turkish.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Ukrainian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Uzbek.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Valencian.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Vietnamese.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Welsh.nsh, , [8ef5f415f09b00362129f71d43c0a55b],
PUP.Optional.Surfvox.A, C:\Users\LENOVO\AppData\Roaming\chportu\Other\Source\Languages\Yoruba.nsh, , [8ef5f415f09b00362129f71d43c0a55b],

Sectores físicos: 0
(No hay elementos maliciosos detectados)


(end)

 

[Eddie Homme]

AdwCleaner and JRT Logs

# AdwCleaner v4.208 - Registro generado 16/08/2015 en 19:47:37
# Actualizado 09/07/2015 por Xplode
# Base de datos : 2015-07-09.2 [Local]
# Sistema operativo : Windows 7 Professional Service Pack 1 (x64)
# Nombre de usuario : LENOVO - LENOVO-PC
# Ejecutado desde : C:\Users\LENOVO\Desktop\adwcleaner_4.208.exe
# Opción : Limpiar

***** [ Servicios ] *****


***** [ Archivos / Carpetas ] *****

Archivo Eliminar : C:\Users\LENOVO\AppData\Roaming\Launcher.rb4
Archivo Eliminar : C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Archivo Eliminar : C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ Tareas programadas... ] *****


***** [ Accesos directos ] *****


***** [ Registro ] *****

Llave Eliminar : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{828B376B-F2F6-4778-928C-E29EC877535E}

***** [ Navegadores Web ] *****

-\\ Internet Explorer v8.0.7601.17514

Configuración Restauró : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v44.0.2403.155

[C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Eliminar [Homepage] : hxxp://www.surfvox.com/
[C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Eliminar [Startup_URLs] : DC0B544B30B2B57D30C4EC39EFCED428A7F654D9EE8D1228CDD2C75D0D5826EA"},"software_reporter":{"prompt_reason":"3D4B55FAC50B206C1A58BA31DD00A7FCCC3BB80D53D43FCA65CC0C9D6DEC843E","prompt_seed":"993F86CE9862CD379AC10A4331633825ED656504ACD0A82C2675C3A3CE25B4E2","prompt_version":"AADF55FE27F71BEB19F6FF27D2C571E96E103332E9805E9A9E4EAFFB60CE36F9"},"sync":{"remaining_rollback_tries":"DB99A663A19711A4E1B8F8FC0EA9FA310B368DA0C223063429546C047DF8244B"}},"super_mac":"64A7952FB4BF140393852786AAF22E56E4D97A27393B013A7CC16714218DA627"},"session":{"startup_urls":["hxxp://www.surfvox.com/

*************************

AdwCleaner[R0].txt - [2199 bytes] - [16/08/2015 19:46:30]
AdwCleaner[S0].txt - [2079 bytes] - [16/08/2015 19:47:37]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2138 bytes] ##########







~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.6 (08.10.2015:1)
OS: Windows 7 Professional x64
Ran by LENOVO on 16/08/2015 at 19:52:30,02
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks

Successfully deleted: [Task] C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4858E7D9-8E12-45a3-B6A3-1CD128C9D403}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shell\TuneUp Undelete



~~~ Files



~~~ Folders



~~~ Chrome


[C:\Users\LENOVO\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\LENOVO\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\LENOVO\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\LENOVO\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 16/08/2015 at 19:56:18,43
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

[Broni]

Good news

Please download ComboFix from Here, Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

• Never rename Combofix unless instructed.
• Close any open browsers.
• Very Important! Temporarily disable your anti-virus and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
• Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
• Close any open browsers.
• WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
• Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
• If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
  If the connection is not there use restore point you created prior to running Combofix.
• Double click on combofix.exe & follow the prompts.

• 
  NOTE1. If Combofix asks you to install Recovery Console, please allow it.
  NOTE 2. If Combofix asks you to update the program, always do so.

• When finished, it will produce a report for you.
• Please post the "C:\ComboFix.txt"

**Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
**Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
Use AppRemover to uninstall it: https://www.techspot.com/downloads/5514-appremover.html
We can reinstall it when we're done with CF.
**Note 3: If you receive an error Illegal operation attempted on a registery key that has been marked for deletion, restart computer to fix the issue.
**Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.


Make sure, you re-enable your security programs, when you're done with Combofix.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

NOTE.
If, for some reason, Combofix refuses to run, try the following...

Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

Restart computer in safe mode

• Double-click on the Rkill desktop icon to run the tool.
• If using Windows Vista, 7 or 8 right-click on it and choose Run As Administrator.
• A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
• If not, delete the file, then download and use the one provided in Link 2.
• Do not reboot until instructed.
• If the tool does not run from any of the links provided, please let me know.

When the scan is done Notepad will open with rKill.txt log.
NOTE. rKill.txt log will also be present on your desktop.

Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.

 

[Broni]

Still with me?

 

[Eddie Homme]

Hello Broni, sorry I didn't replied, been very busy these days.

So I ran Combofix with no problem, here is the log

ComboFix 15-08-20.01 - LENOVO 23/08/2015 18:25:05.1.2 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.34.3082.18.3838.1801 [GMT -6:00]
Running from: c:\users\LENOVO\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Roaming
c:\windows\msdownld.tmp
.
.
((((((((((((((((((((((((( Files Created from 2015-07-24 to 2015-08-24 )))))))))))))))))))))))))))))))
.
.
2015-08-24 00:32 . 2015-08-24 00:32 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-08-17 01:46 . 2015-08-17 01:47 -------- d-----w- C:\AdwCleaner
2015-08-17 00:48 . 2015-08-17 01:42 113880 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-08-17 00:45 . 2015-08-17 01:06 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-08-17 00:45 . 2015-06-18 14:41 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-08-17 00:45 . 2015-06-18 14:41 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-08-17 00:45 . 2015-08-17 00:45 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-08-17 00:45 . 2015-08-17 00:45 -------- d-----w- c:\programdata\Malwarebytes
2015-08-14 01:57 . 2015-08-17 00:48 35064 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-08-14 01:57 . 2015-08-14 03:02 -------- d-----w- c:\programdata\RogueKiller
2015-08-12 03:44 . 2015-08-12 04:04 -------- d-----w- C:\FRST
2015-08-03 22:49 . 2015-06-29 16:24 41784 ----a-w- c:\windows\system32\TURegOpt.exe
2015-08-03 22:49 . 2015-06-29 16:23 30520 ----a-w- c:\windows\system32\authuitu.dll
2015-08-03 22:49 . 2015-06-29 16:23 25912 ----a-w- c:\windows\SysWow64\authuitu.dll
2015-08-03 22:48 . 2015-08-03 22:48 -------- d-----w- c:\users\LENOVO\AppData\Roaming\AVG
2015-08-03 22:47 . 2015-08-03 22:47 -------- d-----w- c:\program files (x86)\AVG
2015-08-03 22:46 . 2015-08-03 22:46 -------- d-----w- c:\users\LENOVO\AppData\Local\Avg
2015-08-03 22:45 . 2015-08-03 22:45 -------- d--h--w- c:\programdata\Common Files
2015-08-03 22:45 . 2015-08-03 22:49 -------- d-----w- c:\programdata\AVG
2015-08-03 00:21 . 2015-08-03 00:21 -------- d-----w- c:\users\LENOVO\AppData\Local\Adobe_Systems_Incorporate
2015-08-02 23:57 . 2015-08-02 23:57 -------- d-----w- c:\program files (x86)\Rockstar Games
2015-07-27 01:14 . 2015-07-27 01:23 -------- d-----w- c:\programdata\Package Cache
2015-07-27 01:13 . 2015-07-27 01:13 -------- d-----w- c:\windows\system32\appmgmt
2015-07-27 00:58 . 2011-02-18 14:07 447752 ----a-w- c:\windows\SysWow64\vp6vfw.dll
2015-07-27 00:21 . 2015-07-27 00:21 -------- d-----w- c:\program files (x86)\Sims 4
2015-07-25 03:39 . 2014-05-14 16:23 44512 ----a-w- c:\windows\system32\wups2.dll
2015-07-25 03:39 . 2014-05-14 16:23 58336 ----a-w- c:\windows\system32\wuauclt.exe
2015-07-25 03:39 . 2014-05-14 16:21 2620928 ----a-w- c:\windows\system32\wucltux.dll
2015-07-25 03:39 . 2014-05-14 16:23 2477536 ----a-w- c:\windows\system32\wuaueng.dll
2015-07-25 03:39 . 2014-05-14 16:23 38880 ----a-w- c:\windows\system32\wups.dll
2015-07-25 03:39 . 2014-05-14 16:23 36320 ----a-w- c:\windows\SysWow64\wups.dll
2015-07-25 03:39 . 2014-05-14 16:23 700384 ----a-w- c:\windows\system32\wuapi.dll
2015-07-25 03:39 . 2014-05-14 16:23 581600 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-07-25 03:39 . 2014-05-14 16:20 97792 ----a-w- c:\windows\system32\wudriver.dll
2015-07-25 03:39 . 2014-05-14 16:17 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-07-25 03:38 . 2014-05-14 15:23 198600 ----a-w- c:\windows\system32\wuwebv.dll
2015-07-25 03:38 . 2014-05-14 15:23 179656 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-07-25 03:38 . 2014-05-14 15:20 36864 ----a-w- c:\windows\system32\wuapp.exe
2015-07-25 03:38 . 2014-05-14 15:17 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-07-23 22:10 . 2015-07-23 22:10 53248 ----a-r- c:\users\LENOVO\AppData\Roaming\Microsoft\Installer\{0369F866-2CE0-4EB9-B426-88FA122C6E82}\ARPPRODUCTICON.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-02 02:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-02 02:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-02 02:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-31 102400]
"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [x]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [x]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot;c:\program files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe;c:\program files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
S3 usbsmi;Integrated Camera;c:\windows\system32\DRIVERS\SMIksdrv.sys;c:\windows\SYSNATIVE\DRIVERS\SMIksdrv.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-08-21 22:32 993608 ----a-w- c:\program files (x86)\Google\Chrome\Application\44.0.2403.157\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2015-08-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-07-17 19:13]
.
2015-08-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-07-17 19:13]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-02 02:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-02 02:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-02 02:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2013-05-30 60920]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-15 11049576]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2015-01-28 5595848]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Enviar a OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
TCP: DhcpNameServer = 200.107.124.254 190.107.138.76 200.107.124.253
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2015-08-23 18:34:34
ComboFix-quarantined-files.txt 2015-08-24 00:34
.
Pre-Run: 430.156.587.008 bytes libres
Post-Run: 430.272.655.360 bytes libres
.
- - End Of File - - 1EB0724F71CCF542CC393CBD81E968B4
A36C5E4F47E84449FF07ED3517B43A31

 

[Broni]

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Make sure you checkmark Addition.txt box.
• Press Scan button.
• Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.

 

[Broni]

Still with me?

 

[Broni]

This topic is marked as abandoned and closed due to inactivity.

This member will NOT be eligible to receive any more help in malware removal forum.