RR 2 Log

Uploaded by

evanovayani15

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

59 views108 pages

RR 2 Log

Uploaded by

evanovayani15

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 108

Anti-malware scan started at: 12.12.2018 09.41.

33
12.12.2018 09.47.26 Running Processes
12.12.2018 09.47.32 Applications
Probably Malicious: CloudNet = "C:\Users\LENOVO\AppData\Roaming\EpicNet Inc\
CloudNet\cloudnet.exe" /uninstall
12.12.2018 09.47.32 Applications
Probably Malicious: Ebayssistant 1.0 =
12.12.2018 09.47.32 Applications
Probably Malicious: Look Picture Tool =
12.12.2018 09.47.33 Applications
Probably Malicious: telezilla =
12.12.2018 09.47.33 Applications
Probably Malicious: Amazon assistant 1.0 =
12.12.2018 09.47.33 Applications
Probably Malicious: Amazon assistant 2.0 =
12.12.2018 09.47.33 Applications
Probably Malicious: ByteFence = "c:\program files\bytefence\ByteFence.exe"
/uninstall
12.12.2018 09.47.33 Applications
Probably Malicious: SystemProcess = "C:\Users\LENOVO\AppData\Roaming\SystemProcess\
SystemProcess.exe" u
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: C:\Windows\SYSWOW64\SSL\ = C:\Windows\SYSWOW64\SSL\
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: INSTALLATIONCONFIGURATION.XML = C:\USERS\LENOVO\APPDATA\LOCAL\
INSTALLATIONCONFIGURATION.XML
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: CSRSS.EXE = C:\WINDOWS\RSS\CSRSS.EXE
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: WINHTTP.DLL = C:\PROGRAM FILES (X86)\\GOOGLE\CHROME\
APPLICATION\WINHTTP.DLL
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\ = C:\Users\LENOVO\
AppData\Local\Temp\CSRSS\
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS\ = C:\Users\
LENOVO\AppData\Roaming\SYSTEMPROCESS\
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: WINMONPROCESSMONITOR.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\
WINMONPROCESSMONITOR.SYS
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: SCHEDULED.EXE = C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\CSRSS\
SCHEDULED.EXE
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: SECURE_CERT.JS = C:\PROGRAM FILES (X86)\\MOZILLA FIREFOX\
DEFAULTS\PREF\SECURE_CERT.JS
12.12.2018 09.47.45 Unwanted Software Files
12.12.2018 09.47.45 Unwanted Software Files
Probably Malicious: PIXEL.EXE = C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\PIXEL.EXE
12.12.2018 09.47.45 Unwanted Software Files
12.12.2018 09.47.45 Unwanted Software Files
Suspicious: 4GPAGLCKHF = C:\PROGRAM FILES\4GPAGLCKHF\
12.12.2018 09.47.46 Unwanted Software Files
Suspicious: GCE57D0LNH = C:\PROGRAM FILES\GCE57D0LNH\
12.12.2018 09.47.46 Unwanted Software Files
Suspicious: MGYwM = C:\PROGRAM FILES\MGYWM\
12.12.2018 09.47.46 Unwanted Software Files
12.12.2018 09.47.46 Unwanted Software Files
Suspicious: foldershare = C:\PROGRAM FILES (X86)\FOLDERSHARE\
12.12.2018 09.47.46 Unwanted Software Files
12.12.2018 09.47.46 Unwanted Software Files
Probably Malicious: EpicNet Inc = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\
12.12.2018 09.47.46 Unwanted Software Files
Suspicious: necanor = C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR\
12.12.2018 09.48.08 Internet Shortcuts
Probably Malicious: C:\Users\LENOVO\Desktop\Win iPhone X.lnk =
HTTP://WAIT3SEC.ORG/IPHONEX
12.12.2018 09.48.08 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 09.48.08 User Shortcuts
12.12.2018 09.48.08 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 09.48.08 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 09.48.08 Registry Run
Probably Malicious: Chromium = C:\USERS\LENOVO\APPDATA\LOCAL\CHROMIUM\APPLICATION\
CHROME.EXE
12.12.2018 09.48.08 Registry Run
Probably Malicious: RoughBird = C:\WINDOWS\RSS\CSRSS.EXE
12.12.2018 09.48.08 Registry Run
12.12.2018 09.48.08 Registry Run
Probably Malicious: CloudNet = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\
CLOUDNET\CLOUDNET.EXE
12.12.2018 09.48.08 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 09.48.08 Scheduled Tasks 2
12.12.2018 09.48.08 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\PROGRAM FILES
(X86)\GOOGLE\UPDATE\GOOGLEUPDATE.EXE
12.12.2018 09.48.08 Scheduled Tasks 2
12.12.2018 09.48.09 Scheduled Tasks 2
Probably Malicious: C:\WINDOWS\SYSNATIVE\TASKS\ScheduledUpdate = C:\Windows\
SysWOW64\CERTUTIL.EXE
12.12.2018 09.48.09 Scheduled Tasks 2
Probably Malicious: C:\WINDOWS\SYSNATIVE\TASKS\SystemProcess = C:\Users\LENOVO\
AppData\Roaming\SystemProcess\SystemProcess.exe
12.12.2018 09.48.09 Scheduled Tasks 2.0 Cached
Probably Malicious: csrss = C:\WINDOWS\RSS\CSRSS.EXE
12.12.2018 09.48.09 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\PROGRAM FILES (X86)\GOOGLE\UPDATE\
GOOGLEUPDATE.EXE
12.12.2018 09.48.09 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\PROGRAM FILES (X86)\GOOGLE\UPDATE\
GOOGLEUPDATE.EXE
12.12.2018 09.48.09 Scheduled Tasks 2.0 Cached
Probably Malicious: ScheduledUpdate = C:\Windows\SysWOW64\CERTUTIL.EXE
12.12.2018 09.48.09 Scheduled Tasks 2.0 Cached
Probably Malicious: SystemProcess = C:\Users\LENOVO\AppData\Roaming\SystemProcess\
SystemProcess.exe
12.12.2018 09.49.03 Auto Services
Unknown: gupdate = C:\PROGRAM FILES (X86)\GOOGLE\UPDATE\GOOGLEUPDATE.EXE
12.12.2018 09.49.03 Auto Services
Unknown: gupdatem = C:\PROGRAM FILES (X86)\GOOGLE\UPDATE\GOOGLEUPDATE.EXE
12.12.2018 09.49.03 Auto Services
Unknown: localNETService = C:\PROGRAMDATA\LOCALNETSERVICE\LOCALNETSERVICE.EXE
12.12.2018 09.49.03 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 09.49.03 Auto Services
12.12.2018 09.49.03 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 09.49.03 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 09.49.03 Drivers
Probably Malicious: WinmonFS = C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS
12.12.2018 09.49.03 Drivers
Probably Malicious: WinmonProcessMonitor = C:\WINDOWS\SYSTEM32\DRIVERS\
WINMONPROCESSMONITOR.SYS
12.12.2018 09.50.51 IE Extensions - All Users
12.12.2018 09.50.51 Google Chrome Addons
Probably Malicious: ccjleegmemocfpghkhpjmiccjcacackp = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\
1.0.5_0
12.12.2018 09.50.51 Google Chrome Addons
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\
18.8.1222_0
12.12.2018 09.50.51 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
12.12.2018 09.50.51 Google Chrome Addons
12.12.2018 09.50.51 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
12.12.2018 09.50.51 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\PROGRAM FILES (X86)\
INTERNET DOWNLOAD MANAGER\IDMGCEXT.CRX
12.12.2018 09.50.52 Pre-installed extensions
Unknown: ccjleegmemocfpghkhpjmiccjcacackp =
https://clients2.google.com/service/update2/crx
12.12.2018 09.50.52 Pre-installed extensions
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck =
https://clients2.google.com/service/update2/crx
12.12.2018 09.50.52 Pre-installed extensions
12.12.2018 09.50.52 Pre-installed extensions
12.12.2018 09.50.52 Pre-installed extensions
Anti-malware scan started at: 12.12.2018 09.57.03
OpenService Update Orchestrator Service :Access is denied
12.12.2018 09.57.47 Running Processes
Unknown: lsass.exe =
12.12.2018 09.57.47 Running Processes
Unknown: WerFault.exe =
12.12.2018 09.58.10 Running Processes
Unknown: chrome.exe =
12.12.2018 09.58.16 Applications
Probably Malicious: CloudNet = "C:\Users\LENOVO\AppData\Roaming\EpicNet Inc\
CloudNet\cloudnet.exe" /uninstall
12.12.2018 09.58.16 Applications
Probably Malicious: Ebayssistant 1.0 =
12.12.2018 09.58.16 Applications
Probably Malicious: Look Picture Tool =
12.12.2018 09.58.16 Applications
Probably Malicious: telezilla =
12.12.2018 09.58.16 Applications
Probably Malicious: Amazon assistant 1.0 =
12.12.2018 09.58.16 Applications
Probably Malicious: Amazon assistant 2.0 =
12.12.2018 09.58.16 Applications
Probably Malicious: ByteFence = "c:\program files\bytefence\ByteFence.exe"
/uninstall
12.12.2018 09.58.16 Applications
Probably Malicious: SystemProcess = "C:\Users\LENOVO\AppData\Roaming\SystemProcess\
SystemProcess.exe" u
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: C:\Windows\SYSWOW64\SSL\ = C:\Windows\SYSWOW64\SSL\
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: INSTALLATIONCONFIGURATION.XML = C:\USERS\LENOVO\APPDATA\LOCAL\
INSTALLATIONCONFIGURATION.XML
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: CSRSS.EXE = C:\WINDOWS\RSS\CSRSS.EXE
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: WINHTTP.DLL = C:\PROGRAM FILES (X86)\\GOOGLE\CHROME\
APPLICATION\WINHTTP.DLL
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\ = C:\Users\LENOVO\
AppData\Local\Temp\CSRSS\
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: C:\Users\LENOVO\AppData\Local\Temp\WUP\ = C:\Users\LENOVO\
AppData\Local\Temp\WUP\
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS\ = C:\Users\
LENOVO\AppData\Roaming\SYSTEMPROCESS\
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: WINMONPROCESSMONITOR.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\
WINMONPROCESSMONITOR.SYS
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: SCHEDULED.EXE = C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\CSRSS\
SCHEDULED.EXE
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: SECURE_CERT.JS = C:\PROGRAM FILES (X86)\\MOZILLA FIREFOX\
DEFAULTS\PREF\SECURE_CERT.JS
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: C:\Users\LENOVO\AppData\Local\WHITECLICK\ = C:\Users\LENOVO\
AppData\Local\WHITECLICK\
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: PIXEL.EXE = C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\PIXEL.EXE
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: 1WW4GH4D04 = C:\PROGRAM FILES\1WW4GH4D04\
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: 4GPAGLCKHF = C:\PROGRAM FILES\4GPAGLCKHF\
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: GCE57D0LNH = C:\PROGRAM FILES\GCE57D0LNH\
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: MGYwM = C:\PROGRAM FILES\MGYWM\
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: bestDownloader = C:\PROGRAM FILES (X86)\BESTDOWNLOADER\
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: foldershare = C:\PROGRAM FILES (X86)\FOLDERSHARE\
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: x4nsmctq4rn = C:\PROGRAM FILES (X86)\X4NSMCTQ4RN\
12.12.2018 09.59.02 Unwanted Software Files
Probably Malicious: EpicNet Inc = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\
12.12.2018 09.59.02 Unwanted Software Files
Suspicious: necanor = C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR\
Delete Marked Items Auto Start Apps->Unwanted Software Files. C:\Windows\SYSWOW64\
SSL\=C:\Windows\SYSWOW64\SSL\
Deleted: C:\Windows\SYSWOW64\SSL\cert.db
Deleted: C:\Windows\SYSWOW64\SSL\x.db
Deleted: C:\Windows\SYSWOW64\SSL\xtls.db
Deleted: C:\Windows\SYSWOW64\SSL\xv.db
Deleted: C:\Windows\SYSWOW64\SSL\YjQ4ZmM0ZTZmZDFj 2.cer
Deleted: C:\Windows\SYSWOW64\SSL
Cannot remove folder: C:\Windows\SYSWOW64\SSL\
Error: 0
Delete At reboot: C:\Windows\SYSWOW64\SSL
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: C:\Windows\SYSWOW64\SSL
Delete Marked Items Auto Start Apps->Unwanted Software Files.
INSTALLATIONCONFIGURATION.XML=C:\USERS\LENOVO\APPDATA\LOCAL\
INSTALLATIONCONFIGURATION.XML
Safe Deleting:C:\USERS\LENOVO\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML. You must
restart your computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. CSRSS.EXE=C:\WINDOWS\
RSS\CSRSS.EXE
Safe Deleting:C:\WINDOWS\RSS\CSRSS.EXE. You must restart your computer to fully
delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. WINHTTP.DLL=C:\
PROGRAM FILES (X86)\\GOOGLE\CHROME\APPLICATION\WINHTTP.DLL
Safe Deleting:C:\PROGRAM FILES (X86)\\GOOGLE\CHROME\APPLICATION\WINHTTP.DLL. You
must restart your computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. C:\Users\LENOVO\
AppData\Local\Temp\CSRSS\=C:\Users\LENOVO\AppData\Local\Temp\CSRSS\
Error: 5 File delete failed: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\cloudnet.exe
Delete at reboot: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\cloudnet.exe
Error: 5 File delete second attempt failed: C:\Users\LENOVO\AppData\Local\Temp\
CSRSS\cloudnet.exe
Renamed to: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\cloudnet.exe.DEL
Error: 5 File delete second attempt failed: C:\Users\LENOVO\AppData\Local\Temp\
CSRSS\cloudnet.exe.DEL
Deleted: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\scheduled.exe
Deleted: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\winboxls-1008-2.exe
Deleted: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\winboxscan-1003-2.exe
Cannot delete: C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Cannot remove folder: C:\Users\LENOVO\AppData\Local\Temp\CSRSS\
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\Temp\CSRSS
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete Marked Items Auto Start Apps->Unwanted Software Files. C:\Users\LENOVO\
AppData\Local\Temp\WUP\=C:\Users\LENOVO\AppData\Local\Temp\WUP\
Error: 5 File delete failed: C:\Users\LENOVO\AppData\Local\Temp\WUP\wup.exe
Delete at reboot: C:\Users\LENOVO\AppData\Local\Temp\WUP\wup.exe
Error: 5 File delete second attempt failed: C:\Users\LENOVO\AppData\Local\Temp\WUP\
wup.exe
Renamed to: C:\Users\LENOVO\AppData\Local\Temp\WUP\wup.exe.DEL
Error: 5 File delete second attempt failed: C:\Users\LENOVO\AppData\Local\Temp\WUP\
wup.exe.DEL
Cannot delete: C:\Users\LENOVO\AppData\Local\Temp\WUP
Cannot remove folder: C:\Users\LENOVO\AppData\Local\Temp\WUP\
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\Temp\WUP
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete Marked Items Auto Start Apps->Unwanted Software Files. C:\Windows\RSS\=C:\
Windows\RSS\
Error: 5 File delete failed: C:\Windows\RSS\CSRSS.del
Delete at reboot: C:\Windows\RSS\CSRSS.del
Error: 5 File delete second attempt failed: C:\Windows\RSS\CSRSS.del
Renamed to: C:\Windows\RSS\CSRSS.DEL1
Error: 5 File delete second attempt failed: C:\Windows\RSS\CSRSS.DEL1
Cannot delete: C:\Windows\RSS
Cannot remove folder: C:\Windows\RSS\
Error: 0
Delete At reboot: C:\Windows\RSS
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: C:\Windows\RSS
Delete Marked Items Auto Start Apps->Unwanted Software Files. C:\Users\LENOVO\
AppData\Roaming\SYSTEMPROCESS\=C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS\
Deleted: C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Cannot remove folder: C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS\
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete Marked Items Auto Start Apps->Unwanted Software Files.
WINMONPROCESSMONITOR.SYS=C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONPROCESSMONITOR.SYS
Safe Deleting:C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONPROCESSMONITOR.SYS. You must
restart your computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. SCHEDULED.EXE=C:\
USERS\LENOVO\APPDATA\LOCAL\TEMP\CSRSS\SCHEDULED.EXE
Safe Deleting:C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\CSRSS\SCHEDULED.EXE. You must
restart your computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. SECURE_CERT.JS=C:\
PROGRAM FILES (X86)\\MOZILLA FIREFOX\DEFAULTS\PREF\SECURE_CERT.JS
Safe Deleting:C:\PROGRAM FILES (X86)\\MOZILLA FIREFOX\DEFAULTS\PREF\SECURE_CERT.JS.
You must restart your computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. C:\Users\LENOVO\
AppData\Local\WHITECLICK\=C:\Users\LENOVO\AppData\Local\WHITECLICK\
Deleted: C:\Users\LENOVO\AppData\Local\WHITECLICK\Newtonsoft.Json.dll
Deleted: C:\Users\LENOVO\AppData\Local\WHITECLICK\System.Net.Http.dll
Deleted: C:\Users\LENOVO\AppData\Local\WHITECLICK\WhiteClick.InstallState
Deleted: C:\Users\LENOVO\AppData\Local\WHITECLICK
Cannot remove folder: C:\Users\LENOVO\AppData\Local\WHITECLICK\
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\WHITECLICK
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete Marked Items Auto Start Apps->Unwanted Software Files. PIXEL.EXE=C:\USERS\
LENOVO\APPDATA\LOCAL\TEMP\PIXEL.EXE
Safe Deleting:C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\PIXEL.EXE. You must restart your
computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. EpicNet Inc=C:\USERS\
LENOVO\APPDATA\ROAMING\EPICNET INC\
Deleted: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\CloudNet\cloudnet.exe
Deleted: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\CloudNet\tmp86A1.tmp
Deleted: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\CloudNet
Cannot delete: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\CloudNet
Cannot delete: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC
Cannot remove folder: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\
Error: 0
Delete At reboot: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete Marked Items Auto Start Apps->Unwanted Software Files. 1WW4GH4D04=C:\PROGRAM
FILES\1WW4GH4D04\
Deleted: C:\PROGRAM FILES\1WW4GH4D04\80KRGK0XU.exe.config
Deleted: C:\PROGRAM FILES\1WW4GH4D04\cast.config
Deleted: C:\PROGRAM FILES\1WW4GH4D04\uninstaller.exe.config
Deleted: C:\PROGRAM FILES\1WW4GH4D04
Cannot remove folder: C:\PROGRAM FILES\1WW4GH4D04\
Error: 0
Delete At reboot: C:\PROGRAM FILES\1WW4GH4D04
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: C:\PROGRAM FILES\1WW4GH4D04
Delete Marked Items Auto Start Apps->Unwanted Software Files. 4GPAGLCKHF=C:\PROGRAM
FILES\4GPAGLCKHF\
Deleted: C:\PROGRAM FILES\4GPAGLCKHF\BKDWGO84B.exe.config
Deleted: C:\PROGRAM FILES\4GPAGLCKHF\cast.config
Deleted: C:\PROGRAM FILES\4GPAGLCKHF\uninstaller.exe.config
Deleted: C:\PROGRAM FILES\4GPAGLCKHF
Cannot remove folder: C:\PROGRAM FILES\4GPAGLCKHF\
Error: 0
Delete At reboot: C:\PROGRAM FILES\4GPAGLCKHF
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: C:\PROGRAM FILES\4GPAGLCKHF
Delete Marked Items Auto Start Apps->Unwanted Software Files. GCE57D0LNH=C:\PROGRAM
FILES\GCE57D0LNH\
Deleted: C:\PROGRAM FILES\GCE57D0LNH\cast.config
Deleted: C:\PROGRAM FILES\GCE57D0LNH\GCE57D0LN.exe.config
Deleted: C:\PROGRAM FILES\GCE57D0LNH\uninstaller.exe.config
Deleted: C:\PROGRAM FILES\GCE57D0LNH
Cannot remove folder: C:\PROGRAM FILES\GCE57D0LNH\
Error: 0
Delete At reboot: C:\PROGRAM FILES\GCE57D0LNH
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: C:\PROGRAM FILES\GCE57D0LNH
Delete Marked Items Auto Start Apps->Unwanted Software Files. MGYwM=C:\PROGRAM
FILES\MGYWM\
Deleted: C:\PROGRAM FILES\MGYWM\mozcrt19.dll
Deleted: C:\PROGRAM FILES\MGYWM\MTM3YT.exe
Deleted: C:\PROGRAM FILES\MGYWM\NmZhZjk4ODY.exe
Deleted: C:\PROGRAM FILES\MGYWM\nspr4.dll
Deleted: C:\PROGRAM FILES\MGYWM\nss3.dll
Deleted: C:\PROGRAM FILES\MGYWM\plc4.dll
Deleted: C:\PROGRAM FILES\MGYWM\plds4.dll
Deleted: C:\PROGRAM FILES\MGYWM\service.dat
Deleted: C:\PROGRAM FILES\MGYWM\service_64.dat
Deleted: C:\PROGRAM FILES\MGYWM\softokn3.dll
Deleted: C:\PROGRAM FILES\MGYWM\WBE_uninstall.dat
Deleted: C:\PROGRAM FILES\MGYWM\YjM3YTViMTRiYTMw
Deleted: C:\PROGRAM FILES\MGYWM\YTJmOWQ4N2NiNjA.ico
Deleted: C:\PROGRAM FILES\MGYWM
Cannot remove folder: C:\PROGRAM FILES\MGYWM\
Error: 0
Delete At reboot: C:\PROGRAM FILES\MGYWM
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: C:\PROGRAM FILES\MGYWM
Delete Marked Items Auto Start Apps->Unwanted Software Files. x4nsmctq4rn=C:\
PROGRAM FILES (X86)\X4NSMCTQ4RN\
Deleted: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN\1PP0P.exe.config
Deleted: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN\cast.config
Deleted: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN\config.conf
Deleted: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN\G81E5MN8QQRDFGX.exe.config
Deleted: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN\XEC.exe
Deleted: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Cannot remove folder: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN\
Error: 0
Delete At reboot: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: \??\C:\PROGRAM FILES\MGYWM
Delete: C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Delete Marked Items Auto Start Apps->Unwanted Software Files. foldershare=C:\
PROGRAM FILES (X86)\FOLDERSHARE\
Deleted: C:\PROGRAM FILES (X86)\FOLDERSHARE\foldershare.exe
Deleted: C:\PROGRAM FILES (X86)\FOLDERSHARE\foldershare.exe.config
Deleted: C:\PROGRAM FILES (X86)\FOLDERSHARE\uninstaller.exe
Deleted: C:\PROGRAM FILES (X86)\FOLDERSHARE\uninstaller.exe.config
Deleted: C:\PROGRAM FILES (X86)\FOLDERSHARE
Cannot remove folder: C:\PROGRAM FILES (X86)\FOLDERSHARE\
Error: 0
Delete At reboot: C:\PROGRAM FILES (X86)\FOLDERSHARE
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: \??\C:\PROGRAM FILES\MGYWM
Delete: \??\C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Delete: C:\PROGRAM FILES (X86)\FOLDERSHARE
Delete Marked Items Auto Start Apps->Unwanted Software Files. bestDownloader=C:\
PROGRAM FILES (X86)\BESTDOWNLOADER\
Deleted: C:\PROGRAM FILES (X86)\BESTDOWNLOADER\uninstaller.exe.config
Deleted: C:\PROGRAM FILES (X86)\BESTDOWNLOADER
Cannot remove folder: C:\PROGRAM FILES (X86)\BESTDOWNLOADER\
Error: 0
Delete At reboot: C:\PROGRAM FILES (X86)\BESTDOWNLOADER
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: \??\C:\PROGRAM FILES\MGYWM
Delete: \??\C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Delete: \??\C:\PROGRAM FILES (X86)\FOLDERSHARE
Delete: C:\PROGRAM FILES (X86)\BESTDOWNLOADER
Delete Marked Items Auto Start Apps->Unwanted Software Files. necanor=C:\USERS\
LENOVO\APPDATA\LOCAL\NECANOR\
Deleted: C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR\GB.Q0
Deleted: C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR
Cannot remove folder: C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR\
Error: 0
Delete At reboot: C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR
-------------------------------------------------------
12.12.2018 09.59.15 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: \??\C:\PROGRAM FILES\MGYWM
Delete: \??\C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Delete: \??\C:\PROGRAM FILES (X86)\FOLDERSHARE
Delete: \??\C:\PROGRAM FILES (X86)\BESTDOWNLOADER
Delete: C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR
12.12.2018 10.00.36 Internet Shortcuts
Probably Malicious: C:\Users\LENOVO\Desktop\Win iPhone X.lnk =
HTTP://WAIT3SEC.ORG/IPHONEX
12.12.2018 10.00.36 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.00.36 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.00.36 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.00.36 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.00.36 Registry Run
Probably Malicious: Chromium = C:\USERS\LENOVO\APPDATA\LOCAL\CHROMIUM\APPLICATION\
CHROME.EXE
12.12.2018 10.00.36 Registry Run
Probably Malicious: RoughBird = C:\WINDOWS\RSS\CSRSS.EXE
12.12.2018 10.00.36 Registry Run
Probably Malicious: Web Companion = C:\Program Files (x86)\Lavasoft\Web Companion\
Application\WebCompanion.exe --minimize
12.12.2018 10.00.36 Registry Run
Probably Malicious: CloudNet = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC\
CLOUDNET\CLOUDNET.EXE
12.12.2018 10.00.36 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.00.36 Scheduled Tasks 2
Probably Malicious: C:\WINDOWS\SYSNATIVE\TASKS\csrss = C:\WINDOWS\RSS\CSRSS.EXE
12.12.2018 10.00.36 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.00.36 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.00.36 Scheduled Tasks 2
Probably Malicious: C:\WINDOWS\SYSNATIVE\TASKS\ScheduledUpdate = C:\Windows\
SYSTEM32\CERTUTIL.EXE
12.12.2018 10.00.36 Scheduled Tasks 2
Probably Malicious: C:\WINDOWS\SYSNATIVE\TASKS\SystemProcess = C:\Users\LENOVO\
AppData\Roaming\SystemProcess\SystemProcess.exe
12.12.2018 10.00.36 Scheduled Tasks 2.0 Cached
Probably Malicious: csrss = C:\WINDOWS\RSS\CSRSS.EXE
12.12.2018 10.00.37 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.00.37 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.00.37 Scheduled Tasks 2.0 Cached
Probably Malicious: ScheduledUpdate = C:\Windows\SYSTEM32\CERTUTIL.EXE
12.12.2018 10.00.37 Scheduled Tasks 2.0 Cached
Probably Malicious: SystemProcess = C:\Users\LENOVO\AppData\Roaming\SystemProcess\
SystemProcess.exe
Delete Marked Items Auto Start Apps->Registry Run. Web Companion=C:\Program Files
(x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
Delete Marked Items Auto Start Apps->Registry Run. CloudNet=C:\USERS\LENOVO\
APPDATA\ROAMING\EPICNET INC\CLOUDNET\CLOUDNET.EXE
Delete Marked Items Auto Start Apps->Scheduled Tasks 2.0 Cached. SystemProcess=C:\
Users\LENOVO\AppData\Roaming\SystemProcess\SystemProcess.exe
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\
SystemProcess
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Boot\{389C77A1-20CF-4D62-8B16-ABAD60BB8F28}
The DelAnyKey failed too.
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\
{389C77A1-20CF-4D62-8B16-ABAD60BB8F28}
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Maintenance\{389C77A1-20CF-4D62-8B16-ABAD60BB8F28}
The DelAnyKey failed too.
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Plain\{389C77A1-20CF-4D62-8B16-ABAD60BB8F28}
The DelAnyKey failed too.
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\
{389C77A1-20CF-4D62-8B16-ABAD60BB8F28}
Delete Marked Items Auto Start Apps->Registry Run. RoughBird=C:\WINDOWS\RSS\
CSRSS.EXE
Delete Marked Items Auto Start Apps->Scheduled Tasks 2. C:\WINDOWS\SYSNATIVE\TASKS\
csrss=C:\WINDOWS\RSS\CSRSS.EXE
-------------------------------------------------------
12.12.2018 10.02.04 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: \??\C:\PROGRAM FILES\MGYWM
Delete: \??\C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Delete: \??\C:\PROGRAM FILES (X86)\FOLDERSHARE
Delete: \??\C:\PROGRAM FILES (X86)\BESTDOWNLOADER
Delete: \??\C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR
Delete: C:\WINDOWS\SYSNATIVE\TASKS\csrss
Delete Marked Items Auto Start Apps->Scheduled Tasks 2. C:\WINDOWS\SYSNATIVE\TASKS\
SystemProcess=C:\Users\LENOVO\AppData\Roaming\SystemProcess\SystemProcess.exe
-------------------------------------------------------
12.12.2018 10.02.04 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: \??\C:\PROGRAM FILES\MGYWM
Delete: \??\C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Delete: \??\C:\PROGRAM FILES (X86)\FOLDERSHARE
Delete: \??\C:\PROGRAM FILES (X86)\BESTDOWNLOADER
Delete: \??\C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR
Delete: \??\C:\WINDOWS\SYSNATIVE\TASKS\csrss
Delete: C:\WINDOWS\SYSNATIVE\TASKS\SystemProcess
Delete Marked Items Auto Start Apps->Scheduled Tasks 2.0 Cached. csrss=C:\WINDOWS\
RSS\CSRSS.EXE
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\
csrss
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Boot\{EF94A590-16A9-414D-8089-2EED540155BF}
The DelAnyKey failed too.
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\
{EF94A590-16A9-414D-8089-2EED540155BF}
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Maintenance\{EF94A590-16A9-414D-8089-2EED540155BF}
The DelAnyKey failed too.
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Plain\{EF94A590-16A9-414D-8089-2EED540155BF}
The DelAnyKey failed too.
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\
{EF94A590-16A9-414D-8089-2EED540155BF}
Delete Marked Items Windows Shell->Internet Shortcuts. C:\Users\LENOVO\Desktop\Win
iPhone X.lnk=HTTP://WAIT3SEC.ORG/IPHONEX
Delete Marked Items Auto Start Apps->Scheduled Tasks 2.0 Cached.
ScheduledUpdate=C:\Windows\SYSTEM32\CERTUTIL.EXE
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\
ScheduledUpdate
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Boot\{1F009DEE-0938-48F5-A010-AD603C8CDBB2}
The DelAnyKey failed too.
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\
{1F009DEE-0938-48F5-A010-AD603C8CDBB2}
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Maintenance\{1F009DEE-0938-48F5-A010-AD603C8CDBB2}
The DelAnyKey failed too.
Error deleting registry key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\
TaskCache\Plain\{1F009DEE-0938-48F5-A010-AD603C8CDBB2}
The DelAnyKey failed too.
Deleted Key:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\
{1F009DEE-0938-48F5-A010-AD603C8CDBB2}
Delete Marked Items Auto Start Apps->Scheduled Tasks 2. C:\WINDOWS\SYSNATIVE\TASKS\
ScheduledUpdate=C:\Windows\SYSTEM32\CERTUTIL.EXE
-------------------------------------------------------
12.12.2018 10.02.04 Approved File Replacement
Delete: \??\C:\Windows\SYSWOW64\SSL
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\CSRSS
Delete: \??\C:\Users\LENOVO\AppData\Local\Temp\WUP
Delete: \??\C:\Windows\RSS
Delete: \??\C:\Users\LENOVO\AppData\Roaming\SYSTEMPROCESS
Delete: \??\C:\Users\LENOVO\AppData\Local\WHITECLICK
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNE~1
Delete: \??\C:\PROGRAM FILES\1WW4GH4D04
Delete: \??\C:\PROGRAM FILES\4GPAGLCKHF
Delete: \??\C:\PROGRAM FILES\GCE57D0LNH
Delete: \??\C:\PROGRAM FILES\MGYWM
Delete: \??\C:\PROGRAM FILES (X86)\X4NSMCTQ4RN
Delete: \??\C:\PROGRAM FILES (X86)\FOLDERSHARE
Delete: \??\C:\PROGRAM FILES (X86)\BESTDOWNLOADER
Delete: \??\C:\USERS\LENOVO\APPDATA\LOCAL\NECANOR
Delete: \??\C:\WINDOWS\SYSNATIVE\TASKS\csrss
Delete: \??\C:\WINDOWS\SYSNATIVE\TASKS\SystemProcess
Delete: C:\WINDOWS\SYSNATIVE\TASKS\ScheduledUpdate
Delete Marked Items Auto Start Apps->Registry Run. Chromium=C:\USERS\LENOVO\
APPDATA\LOCAL\CHROMIUM\APPLICATION\CHROME.EXE
12.12.2018 10.02.06 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.02.06 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.02.06 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.02.06 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.02.06 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.02.06 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.02.06 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.02.06 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.02.06 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.02.36 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.02.36 Auto Services
Probably Malicious: WinDefender = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.02.36 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 10.02.36 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 10.02.36 Drivers
Probably Malicious: WinmonProcessMonitor = C:\WINDOWS\SYSTEM32\DRIVERS\
WINMONPROCESSMONITOR.SYS
12.12.2018 10.02.54 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
12.12.2018 10.02.54 Google Chrome Addons
Probably Malicious: ccjleegmemocfpghkhpjmiccjcacackp = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\
1.0.5_0
12.12.2018 10.02.54 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
12.12.2018 10.02.54 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\
6.31.9_0
12.12.2018 10.02.54 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
12.12.2018 10.02.54 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\PROGRAM FILES (X86)\
INTERNET DOWNLOAD MANAGER\IDMGCEXT.CRX
12.12.2018 10.02.54 Pre-installed extensions
Unknown: ccjleegmemocfpghkhpjmiccjcacackp =
https://clients2.google.com/service/update2/crx
12.12.2018 10.02.54 Pre-installed extensions
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck =
https://clients2.google.com/service/update2/crx
12.12.2018 10.02.54 Pre-installed extensions
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce =
https://clients2.google.com/service/update2/crx
12.12.2018 10.02.54 Pre-installed extensions
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Program Files (x86)\
Internet Download Manager\IDMGCExt.crx
12.12.2018 10.02.54 Pre-installed extensions
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej =
https://clients2.google.com/service/update2/crx
Anti-malware scan started at: 12.12.2018 10.07.56
12.12.2018 10.08.09 Unwanted Software Files
Probably Malicious: WINDEFENDER.EXE = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.08.09 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 10.08.09 Unwanted Software Files
Probably Malicious: WINMONFS.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS
12.12.2018 10.08.09 Unwanted Software Files
Probably Malicious: WINMON.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS
12.12.2018 10.08.09 Unwanted Software Files
Probably Malicious: EPICNET INC.del = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET
INC.DEL\
12.12.2018 10.10.12 Unwanted Software Files
Probably Malicious: WINDEFENDER.EXE = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.10.12 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 10.10.12 Unwanted Software Files
Probably Malicious: WINMONFS.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS
12.12.2018 10.10.12 Unwanted Software Files
Probably Malicious: WINMON.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS
12.12.2018 10.10.12 Unwanted Software Files
Probably Malicious: EPICNET INC.del = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET
INC.DEL\
12.12.2018 10.14.48 Unwanted Software Files
Probably Malicious: WINDEFENDER.EXE = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.14.48 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 10.14.48 Unwanted Software Files
Probably Malicious: WINMONFS.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS
12.12.2018 10.14.48 Unwanted Software Files
Probably Malicious: WINMON.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS
12.12.2018 10.14.48 Unwanted Software Files
Probably Malicious: EPICNET INC.del = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET
INC.DEL\
12.12.2018 10.14.58 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.14.58 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.14.58 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.14.58 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.14.58 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.14.58 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.14.58 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.14.58 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.14.58 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.15.41 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.15.41 Auto Services
Probably Malicious: WinDefender = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.15.41 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 10.15.41 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 10.15.41 Drivers
Probably Malicious: WinmonFS = C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS
12.12.2018 10.15.41 Drivers
Probably Malicious: WinmonProcessMonitor = \??\C:\WINDOWS\System32\drivers\
WinmonProcessMonitor.sys
12.12.2018 10.23.13 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.23.13 Auto Services
Probably Malicious: WinDefender = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.23.13 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 10.23.13 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 10.23.13 Drivers
Probably Malicious: WinmonFS = C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS
12.12.2018 10.23.13 Drivers
Probably Malicious: WinmonProcessMonitor = \??\C:\WINDOWS\System32\drivers\
WinmonProcessMonitor.sys
12.12.2018 10.27.18 Unwanted Software Files
Probably Malicious: WINDEFENDER.EXE = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.27.18 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 10.27.18 Unwanted Software Files
Probably Malicious: WINMONFS.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS
12.12.2018 10.27.18 Unwanted Software Files
Probably Malicious: WINMON.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS
12.12.2018 10.27.18 Unwanted Software Files
Probably Malicious: EPICNET INC.del = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET
INC.DEL\
12.12.2018 10.27.21 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.27.21 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.27.21 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.27.21 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.27.21 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.27.21 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.27.21 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.27.21 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.27.21 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.27.34 Unwanted Software Files
Probably Malicious: WINDEFENDER.EXE = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.27.34 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 10.27.34 Unwanted Software Files
Probably Malicious: WINMONFS.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS
12.12.2018 10.27.34 Unwanted Software Files
Probably Malicious: WINMON.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS
12.12.2018 10.27.34 Unwanted Software Files
Probably Malicious: EPICNET INC.del = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET
INC.DEL\
12.12.2018 10.28.13 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.28.13 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.28.13 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.28.13 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.28.13 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.28.13 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.28.13 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.28.13 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.28.13 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.28.32 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.28.32 Auto Services
Probably Malicious: WinDefender = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.28.32 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 10.28.32 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 10.28.32 Drivers
Probably Malicious: WinmonFS = C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS
12.12.2018 10.28.32 Drivers
Probably Malicious: WinmonProcessMonitor = \??\C:\WINDOWS\System32\drivers\
WinmonProcessMonitor.sys
12.12.2018 10.28.52 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
12.12.2018 10.28.52 Google Chrome Addons
Probably Malicious: ccjleegmemocfpghkhpjmiccjcacackp = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\
1.0.5_0
12.12.2018 10.28.52 Google Chrome Addons
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\
18.8.1222_0
12.12.2018 10.28.52 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
12.12.2018 10.28.52 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\
6.31.9_0
12.12.2018 10.28.52 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
12.12.2018 10.28.52 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\PROGRAM FILES (X86)\
INTERNET DOWNLOAD MANAGER\IDMGCEXT.CRX
12.12.2018 10.28.52 Pre-installed extensions
Unknown: ccjleegmemocfpghkhpjmiccjcacackp =
https://clients2.google.com/service/update2/crx
12.12.2018 10.28.52 Pre-installed extensions
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck =
https://clients2.google.com/service/update2/crx
12.12.2018 10.28.52 Pre-installed extensions
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce =
https://clients2.google.com/service/update2/crx
12.12.2018 10.28.52 Pre-installed extensions
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Program Files (x86)\
Internet Download Manager\IDMGCExt.crx
12.12.2018 10.28.52 Pre-installed extensions
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej =
https://clients2.google.com/service/update2/crx
12.12.2018 10.28.58 Current Home Page
Probably Malicious: Start Page = http://securedsearch.lavasoft.com/?
pr=vmn&id=webcompa&ent=hp_WCYID10477_754_181211
12.12.2018 10.28.58 Search Provider
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.28.58 Search Provider
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.28.58 Search Provider
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
12.12.2018 10.28.58 Search Provider(x64)
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.28.58 Search Provider(x64)
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.28.59 Search Provider(x64)
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
12.12.2018 10.29.09 Current Home Page
Probably Malicious: Start Page = http://securedsearch.lavasoft.com/?
pr=vmn&id=webcompa&ent=hp_WCYID10477_754_181211
12.12.2018 10.29.09 Search Provider
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.29.09 Search Provider
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.29.09 Search Provider
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
12.12.2018 10.29.09 Search Provider(x64)
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.29.09 Search Provider(x64)
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.29.09 Search Provider(x64)
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
12.12.2018 10.30.36 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
12.12.2018 10.30.36 Google Chrome Addons
Probably Malicious: ccjleegmemocfpghkhpjmiccjcacackp = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\
1.0.5_0
12.12.2018 10.30.36 Google Chrome Addons
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\
18.8.1222_0
12.12.2018 10.30.36 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
12.12.2018 10.30.36 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\
6.31.9_0
12.12.2018 10.30.36 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
12.12.2018 10.30.36 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\PROGRAM FILES (X86)\
INTERNET DOWNLOAD MANAGER\IDMGCEXT.CRX
12.12.2018 10.30.36 Pre-installed extensions
Unknown: ccjleegmemocfpghkhpjmiccjcacackp =
https://clients2.google.com/service/update2/crx
12.12.2018 10.30.36 Pre-installed extensions
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck =
https://clients2.google.com/service/update2/crx
12.12.2018 10.30.36 Pre-installed extensions
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce =
https://clients2.google.com/service/update2/crx
12.12.2018 10.30.36 Pre-installed extensions
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Program Files (x86)\
Internet Download Manager\IDMGCExt.crx
12.12.2018 10.30.36 Pre-installed extensions
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej =
https://clients2.google.com/service/update2/crx
12.12.2018 10.30.46 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.30.46 Auto Services
Probably Malicious: WinDefender = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.30.46 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 10.30.46 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 10.30.46 Drivers
Probably Malicious: WinmonFS = C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS
12.12.2018 10.30.46 Drivers
Probably Malicious: WinmonProcessMonitor = \??\C:\WINDOWS\System32\drivers\
WinmonProcessMonitor.sys
12.12.2018 10.33.24 Current Home Page
Probably Malicious: Start Page = http://securedsearch.lavasoft.com/?
pr=vmn&id=webcompa&ent=hp_WCYID10477_754_181211
12.12.2018 10.33.24 Search Provider
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.33.24 Search Provider
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.33.24 Search Provider
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
12.12.2018 10.33.24 Search Provider(x64)
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.33.24 Search Provider(x64)
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.33.24 Search Provider(x64)
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
12.12.2018 10.33.26 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
12.12.2018 10.33.26 Google Chrome Addons
Probably Malicious: ccjleegmemocfpghkhpjmiccjcacackp = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\
1.0.5_0
12.12.2018 10.33.26 Google Chrome Addons
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\
18.8.1222_0
12.12.2018 10.33.26 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
12.12.2018 10.33.26 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\
6.31.9_0
12.12.2018 10.33.26 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
12.12.2018 10.33.26 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\PROGRAM FILES (X86)\
INTERNET DOWNLOAD MANAGER\IDMGCEXT.CRX
12.12.2018 10.33.26 Pre-installed extensions
Unknown: ccjleegmemocfpghkhpjmiccjcacackp =
https://clients2.google.com/service/update2/crx
12.12.2018 10.33.26 Pre-installed extensions
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck =
https://clients2.google.com/service/update2/crx
12.12.2018 10.33.26 Pre-installed extensions
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce =
https://clients2.google.com/service/update2/crx
12.12.2018 10.33.26 Pre-installed extensions
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Program Files (x86)\
Internet Download Manager\IDMGCExt.crx
12.12.2018 10.33.26 Pre-installed extensions
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej =
https://clients2.google.com/service/update2/crx
12.12.2018 10.33.34 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.33.34 Auto Services
Probably Malicious: WinDefender = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.33.34 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 10.33.34 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 10.33.34 Drivers
Probably Malicious: WinmonFS = C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS
12.12.2018 10.33.34 Drivers
Probably Malicious: WinmonProcessMonitor = \??\C:\WINDOWS\System32\drivers\
WinmonProcessMonitor.sys
12.12.2018 10.34.28 Unwanted Software Files
Probably Malicious: WINDEFENDER.EXE = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.34.28 Unwanted Software Files
Probably Malicious: C:\Windows\RSS\ = C:\Windows\RSS\
12.12.2018 10.34.28 Unwanted Software Files
Probably Malicious: WINMONFS.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS
12.12.2018 10.34.28 Unwanted Software Files
Probably Malicious: WINMON.SYS = C:\WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS
12.12.2018 10.34.28 Unwanted Software Files
Probably Malicious: EPICNET INC.del = C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET
INC.DEL\
Delete Marked Items Auto Start Apps->Unwanted Software Files. WINDEFENDER.EXE=C:\
WINDOWS\WINDEFENDER.EXE
Safe Deleting:C:\WINDOWS\WINDEFENDER.EXE. You must restart your computer to fully
delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. C:\Windows\RSS\=C:\
Windows\RSS\
Deleted: C:\Windows\RSS
Cannot remove folder: C:\Windows\RSS\
Error: 0
Delete At reboot: C:\Windows\RSS
-------------------------------------------------------
12.12.2018 10.34.35 Approved File Replacement
Delete: C:\Windows\RSS
Delete Marked Items Auto Start Apps->Unwanted Software Files. WINMONFS.SYS=C:\
WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS
Safe Deleting:C:\WINDOWS\SYSNATIVE\DRIVERS\WINMONFS.SYS. You must restart your
computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. WINMON.SYS=C:\
WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS
Safe Deleting:C:\WINDOWS\SYSNATIVE\DRIVERS\WINMON.SYS. You must restart your
computer to fully delete this file.
Delete Marked Items Auto Start Apps->Unwanted Software Files. EPICNET INC.del=C:\
USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL\
Deleted: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
Cannot remove folder: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL\
Error: 0
Delete At reboot: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
-------------------------------------------------------
12.12.2018 10.34.35 Approved File Replacement
Delete: \??\C:\Windows\RSS
Delete: C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
12.12.2018 10.34.54 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.34.54 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.34.54 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.34.54 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.34.54 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.34.54 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.34.54 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.34.54 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.34.54 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.35.05 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.35.05 Auto Services
Probably Malicious: WinDefender = C:\WINDOWS\WINDEFENDER.EXE
12.12.2018 10.35.05 Drivers
Probably Malicious: NDQ4Y2E5M = C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS
12.12.2018 10.35.05 Drivers
Probably Malicious: Winmon = C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS
12.12.2018 10.35.05 Drivers
Probably Malicious: WinmonFS = C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS
12.12.2018 10.35.05 Drivers
Probably Malicious: WinmonProcessMonitor = \??\C:\WINDOWS\System32\drivers\
WinmonProcessMonitor.sys
Delete Marked Items Kernel Auto Boot->Drivers. WinmonProcessMonitor=\??\C:\WINDOWS\
System32\drivers\WinmonProcessMonitor.sys
Safe Deleting:\??\C:\WINDOWS\System32\drivers\WinmonProcessMonitor.sys. You must
restart your computer to fully delete this file.
Delete Marked Items Kernel Auto Boot->Drivers. Winmon=C:\WINDOWS\SYSTEM32\DRIVERS\
WINMON.SYS
Safe Deleting:C:\WINDOWS\SYSTEM32\DRIVERS\WINMON.SYS. You must restart your
computer to fully delete this file.
Delete Marked Items Kernel Auto Boot->Drivers. WinmonFS=C:\WINDOWS\SYSTEM32\
DRIVERS\WINMONFS.SYS
Safe Deleting:C:\WINDOWS\SYSTEM32\DRIVERS\WINMONFS.SYS. You must restart your
computer to fully delete this file.
Delete Marked Items Kernel Auto Boot->Auto Services. WinDefender=C:\WINDOWS\
WINDEFENDER.EXE
Delete Marked Items Kernel Auto Boot->Drivers. NDQ4Y2E5M=C:\WINDOWS\SYSTEM32\
DRIVERS\NDQ4Y2E5M.SYS
Safe Deleting:C:\WINDOWS\SYSTEM32\DRIVERS\NDQ4Y2E5M.SYS. You must restart your
computer to fully delete this file.
12.12.2018 10.35.27 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.35.32 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
12.12.2018 10.35.32 Google Chrome Addons
Probably Malicious: ccjleegmemocfpghkhpjmiccjcacackp = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\
1.0.5_0
12.12.2018 10.35.32 Google Chrome Addons
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\
18.8.1222_0
12.12.2018 10.35.32 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
12.12.2018 10.35.32 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\
6.31.9_0
12.12.2018 10.35.32 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
12.12.2018 10.35.32 Google Chrome Addons
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\PROGRAM FILES (X86)\
INTERNET DOWNLOAD MANAGER\IDMGCEXT.CRX
12.12.2018 10.35.32 Pre-installed extensions
Unknown: ccjleegmemocfpghkhpjmiccjcacackp =
https://clients2.google.com/service/update2/crx
12.12.2018 10.35.32 Pre-installed extensions
Probably Malicious: eofcbnmajmjmplflapaojjnihcjkigck =
https://clients2.google.com/service/update2/crx
12.12.2018 10.35.32 Pre-installed extensions
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce =
https://clients2.google.com/service/update2/crx
12.12.2018 10.35.32 Pre-installed extensions
Probably Malicious: ngpampappnmepgilojfohadhhmbhlaek = C:\Program Files (x86)\
Internet Download Manager\IDMGCExt.crx
12.12.2018 10.35.32 Pre-installed extensions
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej =
https://clients2.google.com/service/update2/crx
Delete Marked Items Browsers->Pre-installed extensions.
nahhmpbckpgdidfnmfkfgiflpjijilce=https://clients2.google.com/service/update2/crx
Delete Marked Items Browsers->Google Chrome Addons.
nahhmpbckpgdidfnmfkfgiflpjijilce=C:\Users\LENOVO\AppData\Local\Google\Chrome\User
Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Chrome profile has been saved to:
C:\@RestoreQuarantine\2018-Dec-12_10hour\Chrome-Default\Secure Preferences
Added restore batch file to \@RestoreQuarantine
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\2bfc185be71f44cd73ac81511fc1f5a5.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\b495e340f4ef8924fea0284c1bf9e7ac.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\background.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\background.v0.0.1.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\c5a5cbf4dbcaa7064f2bc77f52101aec.otf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\client.v0.0.1.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\common.js.v0.0.1.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\bundle.v0.0.1.min.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\fonts\HelveticaNeue-Thin.otf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\fonts\HelveticaNeueLT-
Roman.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\fonts\neue-bold.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\fonts\neue.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\fonts
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\fonts
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\alot.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\angle-arrow-down.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\bing.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\bing_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\bluesky-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\brush.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\bt.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\clock.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\cloud.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\close-
FF8A5A.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\collection-
9B9B9B.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\collection-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\doc-icon-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\error-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\pdf-2-doc-
9B9B9B.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\pdf-2-doc-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\pdf-icon-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\success-
FF8A5A.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\tab-arrow-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter\upload-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\converter
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\cupcake-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\desk-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\doodle.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\down.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\enhanced_google.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\eyeglass.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\
eyeglass_transparent.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\amazon-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\amazon.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\close.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\enlarge-000000-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\enlarge-FFCA00-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\hulu-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\hulu.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\minimize-000000-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\netflix-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\netflix.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\refresh-FFFFFF-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\shrink-FFCA00-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\shuffle-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\shuffle-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\vudu-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films\vudu.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\films-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\gmx_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\google.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\google_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\hero-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons\128.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons\16.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons\48.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons\close.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons\favicon.ico
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons\trends.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\icons
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\just-the-box-empty.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\just-the-box.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\bing-maps-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\from-to-icon-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\google-maps-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\location-icon-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\search-4A4A4A.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\search-8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\switch-8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\tab-arrow-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\whereto-logo-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps\whereto-logo-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\maps
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\mountain-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\pointer2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\radio-selected.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\radio-unselected.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sea-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\search-D7D7D7.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\search-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\settings.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
aliexpress.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
aliexpress_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
amazon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
amazon_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
booking.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
booking_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
ebay.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
ebay_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
expedia.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
expedia_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
facebook.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
facebook_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
gmail.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
gmail_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\google-
translate-icon-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
gtranslte.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
pinterest.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
pinterest_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
twitter.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
twitter_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\wix.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
wix_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
yahoo.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
yahoo_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
youtube.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails\
youtube_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\sitesThumbnails
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\
sitesThumbnails
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\smallMagnifier.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\star-unselected.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\star.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\tiles\DOC-to-PDF.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\tiles\PDF-to-DOC.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\tiles\Translation.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\tiles\View-PDF.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\tiles
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\tiles
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\todoc.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\toggle-off.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\toggle-on.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\topdf.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\transparent_img.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\01d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\01n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\02d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\02n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\03d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\03n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\04d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\04n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\09d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\09n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\10d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\10n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\11d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\11n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\13d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\13n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\50d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather\50n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\weather
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\yahoo.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\yahoo.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\yahoo_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\yandex.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\_enhanced_google.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images\_gmx_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content\images
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\content
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\e5d3501d500d07b0a1e952b0f8a81d78.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\e_.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\index.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\manifest.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\responseConfig.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\skin\icons\16.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\skin\icons
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\skin\icons
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\skin
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\skin
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\vendor\md5.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\vendor\react-dom.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\vendor\react-with-addons.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\vendor
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\vendor
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\en\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\en
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\en
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\fr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\fr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\fr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\hi\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\hi
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\hi
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\pt_BR\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\pt_BR
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\pt_BR
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\vi\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\vi
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales\vi
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_locales
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_metadata\verified_contents.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_metadata
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0\_metadata
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Cannot remove folder: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\
Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
-------------------------------------------------------
12.12.2018 10.35.41 Approved File Replacement
Delete: \??\C:\Windows\RSS
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
Delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Delete Marked Items Browsers->Pre-installed extensions.
ngpampappnmepgilojfohadhhmbhlaek=C:\Program Files (x86)\Internet Download Manager\
IDMGCExt.crx
Delete Marked Items Browsers->Pre-installed extensions.
eofcbnmajmjmplflapaojjnihcjkigck=https://clients2.google.com/service/update2/crx
Delete Marked Items Browsers->Pre-installed extensions.
pilplloabdedfmialnfchjomjmpjcoej=https://clients2.google.com/service/update2/crx
Delete Marked Items Browsers->Google Chrome Addons.
pilplloabdedfmialnfchjomjmpjcoej=C:\Users\LENOVO\AppData\Local\Google\Chrome\User
Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
Chrome profile has been saved to:
C:\@RestoreQuarantine\2018-Dec-12_10hour\Chrome-Default\Secure Preferences
Added restore batch file to \@RestoreQuarantine
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\2bfc185be71f44cd73ac81511fc1f5a5.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\b495e340f4ef8924fea0284c1bf9e7ac.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\background.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\background.v0.0.1.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\c5a5cbf4dbcaa7064f2bc77f52101aec.otf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\client.v0.0.1.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\common.js.v0.0.1.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\bundle.v0.0.1.min.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\fonts\HelveticaNeue-Thin.otf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\fonts\HelveticaNeueLT-
Roman.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\fonts\neue-bold.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\fonts\neue.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\fonts
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\fonts
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\alot.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\angle-arrow-down.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\bing.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\bing_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\bluesky-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\brush.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\bt.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\clock.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\cloud.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\close-
FF8A5A.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\collection-
9B9B9B.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\collection-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\doc-icon-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\error-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\pdf-2-doc-
9B9B9B.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\pdf-2-doc-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\pdf-icon-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\success-
FF8A5A.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\tab-arrow-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter\upload-
FF691E.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\converter
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\cupcake-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\desk-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\doodle.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\down.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\enhanced_google.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\eyeglass.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\
eyeglass_transparent.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\amazon-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\amazon.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\close.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\enlarge-000000-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\enlarge-FFCA00-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\hulu-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\hulu.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\minimize-000000-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\netflix-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\netflix.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\refresh-FFFFFF-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\shrink-FFCA00-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\shuffle-
000000.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\shuffle-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\vudu-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films\vudu.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\films-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\gmx_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\google.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\google_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\hero-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons\128.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons\16.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons\48.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons\close.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons\favicon.ico
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons\trends.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\icons
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\just-the-box-empty.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\just-the-box.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\bing-maps-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\from-to-icon-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\google-maps-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\location-icon-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\search-4A4A4A.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\search-8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\switch-8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\tab-arrow-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\whereto-logo-
8881FF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps\whereto-logo-
FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\maps
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\mountain-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\pointer2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\radio-selected.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\radio-unselected.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sea-bg.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\search-D7D7D7.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\search-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\settings.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
aliexpress.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
aliexpress_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
amazon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
amazon_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
booking.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
booking_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
ebay.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
ebay_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
expedia.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
expedia_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
facebook.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
facebook_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
gmail.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
gmail_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\google-
translate-icon-FFFFFF.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
gtranslte.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
pinterest.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
pinterest_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
twitter.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
twitter_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\wix.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
wix_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
yahoo.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
yahoo_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
youtube.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails\
youtube_tile_v2.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\sitesThumbnails
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\
sitesThumbnails
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\smallMagnifier.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\star-unselected.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\star.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\tiles\DOC-to-PDF.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\tiles\PDF-to-DOC.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\tiles\Translation.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\tiles\View-PDF.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\tiles
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\tiles
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\todoc.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\toggle-off.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\toggle-on.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\topdf.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\transparent_img.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\01d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\01n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\02d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\02n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\03d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\03n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\04d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\04n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\09d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\09n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\10d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\10n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\11d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\11n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\13d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\13n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\50d.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather\50n.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\weather
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\yahoo.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\yahoo.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\yahoo_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\yandex.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\_enhanced_google.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images\_gmx_large.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content\images
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\content
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\e5d3501d500d07b0a1e952b0f8a81d78.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\e_.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\index.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\manifest.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\responseConfig.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\skin\icons\16.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\skin\icons
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\skin\icons
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\skin
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\skin
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\vendor\md5.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\vendor\react-dom.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\vendor\react-with-addons.min.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\vendor
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\vendor
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\en\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\en
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\en
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\fr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\fr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\fr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\hi\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\hi
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\hi
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\pt_BR\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\pt_BR
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\pt_BR
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\vi\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\vi
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales\vi
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_locales
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_metadata\verified_contents.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_metadata
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0\_metadata
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
Cannot remove folder: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\
Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
-------------------------------------------------------
12.12.2018 10.35.41 Approved File Replacement
Delete: \??\C:\Windows\RSS
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
Delete Marked Items Browsers->Google Chrome Addons.
ngpampappnmepgilojfohadhhmbhlaek=C:\Users\LENOVO\AppData\Local\Google\Chrome\User
Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0
Chrome profile has been saved to:
C:\@RestoreQuarantine\2018-Dec-12_10hour\Chrome-Default\Secure Preferences
Added restore batch file to \@RestoreQuarantine
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\background.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\captured.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\captured.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\content.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\document.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images\dwnlLink.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images\headBkgd.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images\headTitle.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images\logoBig.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images\logoSmall.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images\logoTonec.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\images
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\manifest.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\welcome.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\welcome.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\ar\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\ar
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\ar
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\de\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\de
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\de
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\en\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\en
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\en
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\es\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\es
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\es
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\fa\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\fa
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\fa
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\fr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\fr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\fr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\he\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\he
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\he
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\it\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\it
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\it
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\nl\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\nl
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\nl
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\pl\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\pl
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\pl
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\pt\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\pt
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\pt
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\ru\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\ru
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\ru
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\th\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\th
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\th
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\tr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\tr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\tr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\vn\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\vn
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\vn
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\zh_cn\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\zh_cn
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\zh_cn
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\zh_tw\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\zh_tw
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales\zh_tw
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_locales
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_metadata\verified_contents.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_metadata
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0\_metadata
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0
Cannot remove folder: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\
Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0
-------------------------------------------------------
12.12.2018 10.35.41 Approved File Replacement
Delete: \??\C:\Windows\RSS
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
Delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0
Delete Marked Items Browsers->Google Chrome Addons.
ngpampappnmepgilojfohadhhmbhlaek=C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\
IDMGCEXT.CRX
Chrome profile has been saved to:
C:\@RestoreQuarantine\2018-Dec-12_10hour\Chrome-Default\Secure Preferences
Added restore batch file to \@RestoreQuarantine
Safe Deleting:C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMGCEXT.CRX. You
must restart your computer to fully delete this file.
Delete Marked Items Browsers->Google Chrome Addons.
eofcbnmajmjmplflapaojjnihcjkigck=C:\Users\LENOVO\AppData\Local\Google\Chrome\User
Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0
Chrome profile has been saved to:
C:\@RestoreQuarantine\2018-Dec-12_10hour\Chrome-Default\Secure Preferences
Added restore batch file to \@RestoreQuarantine
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\burger.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\cpg.parser.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\csl.parser.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\eventemitter2.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\jquery-3.1.1.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\lodash.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\mustache.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\protobuf.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs\q.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\libs
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\bal.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\gpb.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\ial.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\options.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\query.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\templates.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\usettings.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts\wrc.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\scripts
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\css\extension.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\css\options.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\css
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-Bold.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-BoldItalic.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-ExtraBold.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-ExtraBoldItalic.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-Italic.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-Light.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-LightItalic.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-Regular.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-SemiBold.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans\
OpenSans-SemiBoldItalic.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-sans
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\asp-open-
sans
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\fonts.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-300.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-300.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-300.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-300.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-300.woff2
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-600.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-600.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-600.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-600.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-600.woff2
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-700.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-700.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-700.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-700.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-700.woff2
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-regular.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-regular.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-regular.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-regular.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans\open-sans-
v15-latin_latin-ext-regular.woff2
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\open-sans
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-500.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-500.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-500.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-500.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-500.woff2
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-700.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-700.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-700.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-700.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-700.woff2
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-regular.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-regular.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-regular.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-regular.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto\roboto-v18-
latin-regular.woff2
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts\roboto
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\fonts
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Coupons-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Coupons-
Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Deals-Coupons-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Deals-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Hotels-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Hotels-
Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-loading.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Offers-Coupons-
Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Offers-
Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Search-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Anim-Special-Deals-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\arrow-feedback.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\arrow-rate.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\arrow.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\arrow.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\back.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\checkbox-checked.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\checkbox-unchecked.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\checkmark-icon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\close-icon-copy-8.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\close-tooltip-
image.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\combined-shape-
offers.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Coupons-Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Coupons-Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\dark-star.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\dashed-line.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Deals-Coupons-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Deals-Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\deals.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\default-offers.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\fbLogo5x11.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\
fbLogo5x11HoverAndActive.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Finance-repeat.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Finance.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\half-star.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\help-icon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Hotels-Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Hotels-Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\icon-info.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\img-negative.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\img-positive.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Insurance-repeat.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Insurance.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\lock-red.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\lock.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\logo-safe-price-32.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\logo-safeprice-128.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\logo-safeprice-48.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\logo-safeprice-64.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\logo-safeprice-96.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\logo-safeprice-
gray.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\minimise-icon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\no-coupons-img.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\no-offers.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\no-special-deals.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Offers-Coupons-
Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Offers-Vertical.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\powered.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\rate-check-gif.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\rateCouponNegative.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\
rateCouponNegativeHover.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\rateCouponPositive.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\
rateCouponPositiveHover.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\ribbon-coupon-shop.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\ribbon-xl.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\ribbon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\search-coupons.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\search-icon.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\search-offers.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Security-repeat.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Security.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\settings-icon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\shape.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\shield.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\shieldRed.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-logo-panel.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-offer-image-
placeholder.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-rating-half-
star.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-rating-star.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-settings-add.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-settings-close.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-settings-erase.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\sp-settings-logo.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Special-Deals-
Horizontal.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\star.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\tttrLogo5x11.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\
tttrLogo5x11HoverAndActive.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Vertical-Deals-
Repeat.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Vertical-Deals.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Vertical-Travel-
Carrental-repeat.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Vertical-Travel-
Carrental.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\Vertical-Travel-
Flights-Repeat.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\VerticalTravel-
Flights.gif
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons\warning.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui\icons
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common\ui
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\common
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\manifest.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\options.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\scripts\abek.bl.crx.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\scripts\bs.crx.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\scripts\bs.sp.crx.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\scripts\extension.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\scripts
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\scripts
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ar\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ar
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ar
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\be\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\be
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\be
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\bg\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\bg
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\bg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\bn\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\bn
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\bn
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ca\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ca
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ca
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\cs\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\cs
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\cs
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\da\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\da
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\da
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\de\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\de
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\de
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\el\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\el
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\el
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\en\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\en
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\en
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\en_GB\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\en_GB
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\en_GB
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\es\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\es
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\es
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\et\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\et
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\et
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fa\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fa
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fa
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fi\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fi
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fi
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\fr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\he\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\he
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\he
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hi\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hi
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hi
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hu\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hu
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\hu
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\id\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\id
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\id
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\it\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\it
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\it
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ja\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ja
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ja
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ko\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ko
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ko
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\lt\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\lt
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\lt
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\lv\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\lv
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\lv
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ms\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ms
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ms
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\nb\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\nb
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\nb
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\nl\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\nl
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\nl
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pl\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pl
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pl
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pt_BR\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pt_BR
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pt_BR
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pt_PT\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pt_PT
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\pt_PT
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ro\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ro
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ro
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ru\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ru
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ru
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sk\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sk
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sk
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sl\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sl
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sl
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sv\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sv
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\sv
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\th\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\th
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\th
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\tr\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\tr
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\tr
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\uk\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\uk
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\uk
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ur\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ur
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\ur
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\vi\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\vi
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\vi
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\zh_CN\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\zh_CN
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\zh_CN
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\zh_TW\messages.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\zh_TW
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales\zh_TW
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_locales
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_metadata\verified_contents.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_metadata
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0\_metadata
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0
Cannot remove folder: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\
Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0
-------------------------------------------------------
12.12.2018 10.35.41 Approved File Replacement
Delete: \??\C:\Windows\RSS
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0
Delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0
Delete Marked Items Browsers->Google Chrome Addons.
ccjleegmemocfpghkhpjmiccjcacackp=C:\Users\LENOVO\AppData\Local\Google\Chrome\User
Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0
Chrome profile has been saved to:
C:\@RestoreQuarantine\2018-Dec-12_10hour\Chrome-Default\Secure Preferences
Added restore batch file to \@RestoreQuarantine
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Bold-webfont.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Bold-webfont.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Bold-webfont.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Bold-webfont.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Regular-webfont.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Regular-webfont.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Regular-webfont.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\NotoSans-Regular-webfont.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\NotoSans-
Bold-demo.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\NotoSans-
Bold-webfont.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\NotoSans-
Bold-webfont.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\NotoSans-
Bold-webfont.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\NotoSans-
Bold-webfont.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\
specimen_files\grid_12-825-55-15.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\
specimen_files\NotoSans-Bold-cleartype.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\
specimen_files\specimen_stylesheet.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\
specimen_files
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\
notosans_bold_macroman\specimen_files
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman\
stylesheet.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_bold_macroman
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\
notosans_bold_macroman
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
NotoSans-Regular-demo.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
NotoSans-Regular-webfont.eot
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
NotoSans-Regular-webfont.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
NotoSans-Regular-webfont.ttf
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
NotoSans-Regular-webfont.woff
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
specimen_files\grid_12-825-55-15.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
specimen_files\NotoSans-Regular-cleartype.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
specimen_files\specimen_stylesheet.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
specimen_files
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\
notosans_regular_macroman\specimen_files
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman\
stylesheet.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\notosans_regular_macroman
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts\
notosans_regular_macroman
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\fonts
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\reset.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\reset.css.map
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\reset.scss
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\style.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\style.css.map
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\style.scss
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\variables.css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\variables.css.map
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css\variables.scss
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\css
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\cancel.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\cancel@2x.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\cancel_hover.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\cancel_hover@2x.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_browser-icon-
128px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_browser-icon-16px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_browser-icon-32px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_icon-128px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_icon-16px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_icon-256px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_icon-32px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_icon-48px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\chromecleaner_icon-96px.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\facebook.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\facebook@2x.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\fb.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\google.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\google.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\google@2x.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\icon-clean-green.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\icon-clean.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\like.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\logo2.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\logo@2x.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\mail.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\pushicon.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\screen@2x.jpg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\tw.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\twitter.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\twitter@2x.png
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images\vk.svg
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\images
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\js\background.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\js\options.js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\js
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\js
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\manifest.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\options.html
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\_metadata\verified_contents.json
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\_metadata
Cannot delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0\_metadata
Deleted: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0
Cannot remove folder: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\
Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0
Error: 0
Delete At reboot: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0
-------------------------------------------------------
12.12.2018 10.35.41 Approved File Replacement
Delete: \??\C:\Windows\RSS
Delete: \??\C:\USERS\LENOVO\APPDATA\ROAMING\EPICNET INC.DEL
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.62_0
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.63_0
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.31.9_0
Delete: \??\C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\
Extensions\eofcbnmajmjmplflapaojjnihcjkigck\18.8.1222_0
Delete: C:\Users\LENOVO\AppData\Local\Google\Chrome\User Data\Default\Extensions\
ccjleegmemocfpghkhpjmiccjcacackp\1.0.5_0
12.12.2018 10.35.42 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
12.12.2018 10.38.15 Current Home Page
Probably Malicious: Start Page = http://securedsearch.lavasoft.com/?
pr=vmn&id=webcompa&ent=hp_WCYID10477_754_181211
12.12.2018 10.38.15 Search Provider
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.38.15 Search Provider
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.38.15 Search Provider
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
12.12.2018 10.38.15 Search Provider(x64)
Probably Malicious: {2f23ab71-4ac6-41f2-a955-ea576e553146} =
https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
12.12.2018 10.38.15 Search Provider(x64)
Probably Malicious: {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} =
http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.38.15 Search Provider(x64)
Unknown: DefaultScope = {2f23ab71-4ac6-41f2-a955-ea576e553146}
Delete Marked Items Internet Explorer->Search Provider. {2f23ab71-4ac6-41f2-a955-
ea576e553146}=https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
Delete Marked Items Internet Explorer->Search Provider. {BDF61FAE-9D19-40F0-8F34-
688DEB334CA9}=http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
Delete Marked Items Internet Explorer->Search Provider(x64). {2f23ab71-4ac6-41f2-
a955-ea576e553146}=https://id.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-
fullyhosted_003&type=wbf_fptpeylhk2y2aegikmoq9fx_18_49_10&param1=1&param2=f%3D4%26b
%3DIE%26cc%3Did%26pa%3Dwincy%26cd
%3D2XzuyEtN2Y1L1Qzuzyzz0E0E0C0ByD0EzytDzz0A0AyEtC0FtN0D0Tzu0StByDtAtDtN1L2XzuyEtFtA
tCtFtDtFyDtBtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StC0F0ByEtB0BtBtAtGtDyByE0AtGyD0D0F0AtGyC0
EyEtDtGtBtB0EzytByEzyyDzyzzzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1O1PtCzz1StCtCtG1TyB1TyE
tGyEyByBtAtGzz1OyEtCtG1StAzyyDtBtCyCyDzz1QyCtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1
P1RzutCyDyEyEtDyBtDyDzytB%26cr%3D1304518843%26a
%3Dwbf_fptpeylhk2y2aegikmoq9fx_18_49_10%26os_ver%3D10.0%26os%3DWindows
%2B10%2BEnterprise&p={searchTerms}
Delete Marked Items Internet Explorer->Search Provider(x64). {BDF61FAE-9D19-40F0-
8F34-688DEB334CA9}=http://securedsearch.lavasoft.com/results.php?
pr=vmn&id=webcompa&ent=ch_WCYID10477_754_181211&q={searchTerms}
12.12.2018 10.51.53 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.51.53 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.51.53 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.51.53 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.51.53 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.51.53 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.51.53 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.51.53 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.51.53 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.52.02 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 10.54.30 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.54.30 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 10.54.30 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 10.54.30 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 10.54.30 Registry Run
Unknown: SM?RT-Protection =
12.12.2018 10.54.30 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.54.30 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 10.54.30 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.54.30 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 10.58.35 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
Anti-malware scan finished at: 12.12.2018 11.05.07
Anti-malware scan started at: 12.12.2018 15.14.30
12.12.2018 15.14.42 Running Processes
12.12.2018 15.14.42 Running Processes
Unknown: AvastSvc.exe =
12.12.2018 15.14.42 Running Processes
Unknown: aswidsagenta.exe =
12.12.2018 15.14.42 Running Processes
Unknown: sppsvc.exe =
12.12.2018 15.14.55 User Shortcuts
12.12.2018 15.14.55 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 15.14.55 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
12.12.2018 15.14.55 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
12.12.2018 15.14.55 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
12.12.2018 15.14.55 Registry Run
12.12.2018 15.14.55 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 15.14.55 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
12.12.2018 15.14.55 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 15.14.55 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
12.12.2018 15.15.30 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
12.12.2018 15.15.32 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
12.12.2018 15.15.32 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
12.12.2018 15.15.32 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
12.12.2018 15.15.33 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 12.12.2018 15.15.33
Anti-malware scan started at: 14.12.2018 08.49.54
14.12.2018 08.50.02 Running Processes
Unknown: lsass.exe =
14.12.2018 08.50.02 Running Processes
Unknown: AvastSvc.exe =
14.12.2018 08.50.02 Running Processes
Unknown: aswidsagenta.exe =
14.12.2018 08.50.02 Running Processes
Unknown: sppsvc.exe =
14.12.2018 08.50.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
14.12.2018 08.50.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
14.12.2018 08.50.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
14.12.2018 08.50.17 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
14.12.2018 08.50.17 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
14.12.2018 08.50.17 Registry Run
Unknown: SM?RT-Protection =
14.12.2018 08.50.17 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
14.12.2018 08.50.17 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
14.12.2018 08.50.17 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
14.12.2018 08.50.17 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
14.12.2018 08.50.47 Auto Services
14.12.2018 08.50.49 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
14.12.2018 08.50.49 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
14.12.2018 08.50.49 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
14.12.2018 08.50.50 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 14.12.2018 08.50.51
Anti-malware scan started at: 14.12.2018 12.50.57
14.12.2018 12.51.03 Running Processes
Unknown: lsass.exe =
14.12.2018 12.51.03 Running Processes
Unknown: AvastSvc.exe =
14.12.2018 12.51.03 Running Processes
Unknown: aswidsagenta.exe =
14.12.2018 12.51.19 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
14.12.2018 12.51.19 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
14.12.2018 12.51.19 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
14.12.2018 12.51.19 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
14.12.2018 12.51.19 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
14.12.2018 12.51.19 Registry Run
Unknown: SM?RT-Protection =
14.12.2018 12.51.19 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
14.12.2018 12.51.19 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
14.12.2018 12.51.19 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
14.12.2018 12.51.19 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
14.12.2018 12.51.52 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
14.12.2018 12.51.55 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
14.12.2018 12.51.55 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
14.12.2018 12.51.55 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
14.12.2018 12.51.56 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 14.12.2018 12.51.56
Anti-malware scan started at: 14.12.2018 17.11.37
14.12.2018 17.11.44 Running Processes
Unknown: lsass.exe =
14.12.2018 17.11.44 Running Processes
Unknown: AvastSvc.exe =
14.12.2018 17.11.44 Running Processes
Unknown: aswidsagenta.exe =
14.12.2018 17.11.44 Running Processes
Unknown: taskhostw.exe =
14.12.2018 17.11.44 Running Processes
Unknown: E_YUBNYE.EXE =
14.12.2018 17.11.51 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
14.12.2018 17.11.51 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
14.12.2018 17.11.51 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
14.12.2018 17.11.51 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
14.12.2018 17.11.51 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
14.12.2018 17.11.51 Registry Run
Unknown: SM?RT-Protection =
14.12.2018 17.11.51 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
14.12.2018 17.11.51 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
14.12.2018 17.11.51 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
14.12.2018 17.11.51 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
14.12.2018 17.12.03 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
14.12.2018 17.12.05 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
14.12.2018 17.12.05 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
14.12.2018 17.12.05 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
14.12.2018 17.12.05 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 14.12.2018 17.12.05
Anti-malware scan started at: 15.12.2018 10.40.38
15.12.2018 10.40.43 Running Processes
Unknown: lsass.exe =
15.12.2018 10.40.43 Running Processes
Unknown: AvastSvc.exe =
15.12.2018 10.40.43 Running Processes
Unknown: aswidsagenta.exe =
15.12.2018 10.40.43 Running Processes
Unknown: sppsvc.exe =
15.12.2018 10.40.57 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
15.12.2018 10.40.57 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
15.12.2018 10.40.57 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
15.12.2018 10.40.57 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
15.12.2018 10.40.57 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
15.12.2018 10.40.57 Registry Run
Unknown: SM?RT-Protection =
15.12.2018 10.40.57 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
15.12.2018 10.40.57 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
15.12.2018 10.40.57 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
15.12.2018 10.40.57 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
15.12.2018 10.41.25 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
15.12.2018 10.41.29 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
15.12.2018 10.41.29 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
15.12.2018 10.41.29 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
15.12.2018 10.41.30 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 15.12.2018 10.41.30
Anti-malware scan started at: 17.12.2018 08.16.18
17.12.2018 08.16.23 Running Processes
Unknown: lsass.exe =
17.12.2018 08.16.23 Running Processes
Unknown: AvastSvc.exe =
17.12.2018 08.16.23 Running Processes
Unknown: aswidsagenta.exe =
17.12.2018 08.16.37 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
17.12.2018 08.16.37 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
17.12.2018 08.16.37 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
17.12.2018 08.16.37 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
17.12.2018 08.16.37 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
17.12.2018 08.16.37 Registry Run
Unknown: SM?RT-Protection =
17.12.2018 08.16.37 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
17.12.2018 08.16.37 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
17.12.2018 08.16.37 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
17.12.2018 08.16.37 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
17.12.2018 08.17.08 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
17.12.2018 08.17.14 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
17.12.2018 08.17.14 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
17.12.2018 08.17.14 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
17.12.2018 08.17.15 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 17.12.2018 08.17.15
Anti-malware scan started at: 17.12.2018 12.18.19
17.12.2018 12.18.26 Running Processes
Unknown: lsass.exe =
17.12.2018 12.18.26 Running Processes
Unknown: AvastSvc.exe =
17.12.2018 12.18.26 Running Processes
Unknown: aswidsagenta.exe =
17.12.2018 12.18.39 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
17.12.2018 12.18.39 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
17.12.2018 12.18.39 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
17.12.2018 12.18.39 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
17.12.2018 12.18.39 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
17.12.2018 12.18.39 Registry Run
Unknown: SM?RT-Protection =
17.12.2018 12.18.39 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
17.12.2018 12.18.39 Scheduled Tasks 2
17.12.2018 12.18.39 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
17.12.2018 12.18.39 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
17.12.2018 12.19.09 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
17.12.2018 12.19.12 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
17.12.2018 12.19.12 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
17.12.2018 12.19.12 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
17.12.2018 12.19.13 Google Chrome Notifications
Anti-malware scan finished at: 17.12.2018 12.19.13
Anti-malware scan started at: 17.12.2018 16.19.28
17.12.2018 16.19.37 Running Processes
Unknown: lsass.exe =
17.12.2018 16.19.37 Running Processes
Unknown: AvastSvc.exe =
17.12.2018 16.19.37 Running Processes
Unknown: aswidsagenta.exe =
17.12.2018 16.19.53 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
17.12.2018 16.19.53 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
17.12.2018 16.19.53 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
17.12.2018 16.19.53 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
17.12.2018 16.19.53 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
17.12.2018 16.19.53 Registry Run
Unknown: SM?RT-Protection =
17.12.2018 16.19.53 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
17.12.2018 16.19.53 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
17.12.2018 16.19.53 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
17.12.2018 16.19.53 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
17.12.2018 16.20.28 Auto Services
17.12.2018 16.20.32 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
17.12.2018 16.20.32 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
17.12.2018 16.20.32 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
17.12.2018 16.20.33 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 17.12.2018 16.20.33
Anti-malware scan started at: 18.12.2018 08.49.04
18.12.2018 08.49.10 Running Processes
18.12.2018 08.49.10 Running Processes
Unknown: AvastSvc.exe =
18.12.2018 08.49.10 Running Processes
Unknown: aswidsagenta.exe =
18.12.2018 08.49.25 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
18.12.2018 08.49.25 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
18.12.2018 08.49.25 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
18.12.2018 08.49.25 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
18.12.2018 08.49.25 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
18.12.2018 08.49.25 Registry Run
Unknown: SM?RT-Protection =
18.12.2018 08.49.25 Registry RunOnce
Unknown: Uninstall 18.212.1021.0008\amd64 = C:\USERS\LENOVO\APPDATA\LOCAL\
MICROSOFT\ONEDRIVE\18.212.1021.0008\AMD64
18.12.2018 08.49.25 Registry RunOnce
Unknown: Uninstall 18.212.1021.0008 = C:\USERS\LENOVO\APPDATA\LOCAL\MICROSOFT\
ONEDRIVE\18.212.1021.0008
18.12.2018 08.49.25 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
18.12.2018 08.49.25 Scheduled Tasks 2
18.12.2018 08.49.25 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
18.12.2018 08.49.25 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
18.12.2018 08.49.57 Auto Services
18.12.2018 08.49.59 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
18.12.2018 08.49.59 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
18.12.2018 08.49.59 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
18.12.2018 08.50.00 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 18.12.2018 08.50.00
Anti-malware scan started at: 18.12.2018 12.50.32
18.12.2018 12.50.38 Running Processes
Unknown: lsass.exe =
18.12.2018 12.50.38 Running Processes
Unknown: AvastSvc.exe =
18.12.2018 12.50.38 Running Processes
Unknown: aswidsagenta.exe =
18.12.2018 12.50.50 User Shortcuts
18.12.2018 12.50.50 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
18.12.2018 12.50.50 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
18.12.2018 12.50.50 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
18.12.2018 12.50.50 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
18.12.2018 12.50.50 Registry Run
Unknown: SM?RT-Protection =
18.12.2018 12.50.50 Registry RunOnce
Unknown: Uninstall 18.212.1021.0008\amd64 = C:\USERS\LENOVO\APPDATA\LOCAL\
MICROSOFT\ONEDRIVE\18.212.1021.0008\AMD64
18.12.2018 12.50.50 Registry RunOnce
Unknown: Uninstall 18.212.1021.0008 = C:\USERS\LENOVO\APPDATA\LOCAL\MICROSOFT\
ONEDRIVE\18.212.1021.0008
18.12.2018 12.50.50 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
18.12.2018 12.50.50 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
18.12.2018 12.50.50 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
18.12.2018 12.50.50 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
18.12.2018 12.51.20 Auto Services
18.12.2018 12.51.23 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
18.12.2018 12.51.23 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
18.12.2018 12.51.23 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
18.12.2018 12.51.23 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 18.12.2018 12.51.24
Anti-malware scan started at: 18.12.2018 16.51.32
18.12.2018 16.51.37 Running Processes
18.12.2018 16.51.37 Running Processes
Unknown: AvastSvc.exe =
18.12.2018 16.51.37 Running Processes
Unknown: aswidsagenta.exe =
18.12.2018 16.51.49 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
18.12.2018 16.51.49 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
18.12.2018 16.51.49 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
18.12.2018 16.51.49 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
18.12.2018 16.51.49 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
18.12.2018 16.51.49 Registry Run
Unknown: SM?RT-Protection =
18.12.2018 16.51.49 Registry RunOnce
Unknown: Uninstall 18.212.1021.0008\amd64 = C:\USERS\LENOVO\APPDATA\LOCAL\
MICROSOFT\ONEDRIVE\18.212.1021.0008\AMD64
18.12.2018 16.51.49 Registry RunOnce
Unknown: Uninstall 18.212.1021.0008 = C:\USERS\LENOVO\APPDATA\LOCAL\MICROSOFT\
ONEDRIVE\18.212.1021.0008
18.12.2018 16.51.49 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
18.12.2018 16.51.49 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
18.12.2018 16.51.49 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
18.12.2018 16.51.49 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
18.12.2018 16.52.17 Auto Services
18.12.2018 16.52.19 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
18.12.2018 16.52.19 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
18.12.2018 16.52.19 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
18.12.2018 16.52.20 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 18.12.2018 16.52.20
Anti-malware scan started at: 19.12.2018 09.42.34
19.12.2018 09.42.40 Running Processes
Unknown: lsass.exe =
19.12.2018 09.42.40 Running Processes
Unknown: AvastSvc.exe =
19.12.2018 09.42.40 Running Processes
Unknown: sppsvc.exe =
19.12.2018 09.42.40 Running Processes
Unknown: aswidsagenta.exe =
19.12.2018 09.42.55 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\USERS\LENOVO\APPDATA\LOCAL\TEMP\EZ ACTIVATOR OFFICE 2010_1174470910.EXE
19.12.2018 09.42.55 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
19.12.2018 09.42.55 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
19.12.2018 09.42.55 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
19.12.2018 09.42.55 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
19.12.2018 09.42.55 Registry Run
Unknown: SM?RT-Protection =
19.12.2018 09.42.55 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
19.12.2018 09.42.55 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
19.12.2018 09.42.55 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
19.12.2018 09.42.55 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
19.12.2018 09.43.27 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
19.12.2018 09.43.30 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
19.12.2018 09.43.30 Google Chrome Addons
19.12.2018 09.43.30 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
19.12.2018 09.43.31 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 19.12.2018 09.43.31
Anti-malware scan started at: 19.12.2018 13.46.58
19.12.2018 13.47.06 Running Processes
Unknown: lsass.exe =
19.12.2018 13.47.06 Running Processes
Unknown: AvastSvc.exe =
19.12.2018 13.47.06 Running Processes
Unknown: aswidsagenta.exe =
19.12.2018 13.47.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
19.12.2018 13.47.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
19.12.2018 13.47.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
19.12.2018 13.47.17 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
19.12.2018 13.47.17 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
19.12.2018 13.47.17 Registry Run
Unknown: SM?RT-Protection =
19.12.2018 13.47.17 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
19.12.2018 13.47.17 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
19.12.2018 13.47.17 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
19.12.2018 13.47.17 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
19.12.2018 13.47.46 Auto Services
19.12.2018 13.47.49 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
19.12.2018 13.47.49 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
19.12.2018 13.47.49 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
19.12.2018 13.47.51 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 19.12.2018 13.47.51
Anti-malware scan started at: 19.12.2018 17.48.05
19.12.2018 17.48.12 Running Processes
Unknown: lsass.exe =
19.12.2018 17.48.12 Running Processes
Unknown: AvastSvc.exe =
19.12.2018 17.48.12 Running Processes
Unknown: aswidsagenta.exe =
19.12.2018 17.48.28 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
19.12.2018 17.48.28 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
19.12.2018 17.48.28 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
19.12.2018 17.48.28 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
19.12.2018 17.48.28 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
19.12.2018 17.48.28 Registry Run
Unknown: SM?RT-Protection =
19.12.2018 17.48.28 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
19.12.2018 17.48.28 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
19.12.2018 17.48.28 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
19.12.2018 17.48.28 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
19.12.2018 17.49.05 Auto Services
19.12.2018 17.49.09 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
19.12.2018 17.49.09 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
19.12.2018 17.49.09 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
19.12.2018 17.49.10 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 19.12.2018 17.49.10
Anti-malware scan started at: 20.12.2018 13.59.37
20.12.2018 13.59.43 Running Processes
Unknown: lsass.exe =
20.12.2018 13.59.43 Running Processes
Unknown: AvastSvc.exe =
20.12.2018 13.59.43 Running Processes
Unknown: aswidsagenta.exe =
20.12.2018 13.59.56 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
20.12.2018 13.59.56 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
20.12.2018 13.59.56 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
20.12.2018 13.59.56 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
20.12.2018 13.59.56 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
20.12.2018 13.59.56 Registry Run
Unknown: SM?RT-Protection =
20.12.2018 13.59.56 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
20.12.2018 13.59.56 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
20.12.2018 13.59.56 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
20.12.2018 13.59.56 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
20.12.2018 14.00.25 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
20.12.2018 14.00.27 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
20.12.2018 14.00.27 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
20.12.2018 14.00.27 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
20.12.2018 14.00.28 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 20.12.2018 14.00.28
Anti-malware scan started at: 20.12.2018 18.00.49
20.12.2018 18.00.55 Running Processes
Unknown: lsass.exe =
20.12.2018 18.00.55 Running Processes
Unknown: AvastSvc.exe =
20.12.2018 18.00.55 Running Processes
Unknown: aswidsagenta.exe =
20.12.2018 18.01.06 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
20.12.2018 18.01.06 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
20.12.2018 18.01.06 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
20.12.2018 18.01.06 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
20.12.2018 18.01.06 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
20.12.2018 18.01.06 Registry Run
Unknown: SM?RT-Protection =
20.12.2018 18.01.06 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
20.12.2018 18.01.06 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
20.12.2018 18.01.06 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
20.12.2018 18.01.06 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
20.12.2018 18.01.35 Auto Services
20.12.2018 18.01.38 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
20.12.2018 18.01.38 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
20.12.2018 18.01.38 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
20.12.2018 18.01.38 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 20.12.2018 18.01.39
Anti-malware scan started at: 21.12.2018 05.46.19
21.12.2018 05.46.31 Running Processes
Unknown: lsass.exe =
21.12.2018 05.46.31 Running Processes
Unknown: AvastSvc.exe =
21.12.2018 05.46.31 Running Processes
Unknown: aswidsagenta.exe =
21.12.2018 05.46.31 Running Processes
Unknown: sppsvc.exe =
21.12.2018 05.46.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
21.12.2018 05.46.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 05.46.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
21.12.2018 05.46.44 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
21.12.2018 05.46.44 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 05.46.44 Registry Run
Unknown: SM?RT-Protection =
21.12.2018 05.46.44 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 05.46.44 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 05.46.44 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 05.46.44 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 05.47.14 Auto Services
21.12.2018 05.47.16 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
21.12.2018 05.47.16 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
21.12.2018 05.47.16 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
21.12.2018 05.47.17 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 21.12.2018 05.47.17
Anti-malware scan started at: 21.12.2018 09.49.36
21.12.2018 09.49.42 Running Processes
Unknown: lsass.exe =
21.12.2018 09.49.42 Running Processes
21.12.2018 09.49.42 Running Processes
Unknown: aswidsagenta.exe =
21.12.2018 09.49.53 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
21.12.2018 09.49.54 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 09.49.54 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
21.12.2018 09.49.54 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
21.12.2018 09.49.54 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 09.49.54 Registry Run
Unknown: SM?RT-Protection =
21.12.2018 09.49.54 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 09.49.54 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 09.49.54 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 09.49.54 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 09.50.23 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
21.12.2018 09.50.25 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
21.12.2018 09.50.25 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
21.12.2018 09.50.25 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
21.12.2018 09.50.26 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 21.12.2018 09.50.26
Anti-malware scan started at: 21.12.2018 13.56.56
21.12.2018 13.57.03 Running Processes
Unknown: lsass.exe =
21.12.2018 13.57.03 Running Processes
Unknown: AvastSvc.exe =
21.12.2018 13.57.03 Running Processes
Unknown: aswidsagenta.exe =
21.12.2018 13.57.14 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
21.12.2018 13.57.14 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 13.57.14 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
21.12.2018 13.57.14 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
21.12.2018 13.57.14 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 13.57.14 Registry Run
Unknown: SM?RT-Protection =
21.12.2018 13.57.14 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 13.57.14 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 13.57.14 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 13.57.14 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 13.57.44 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
21.12.2018 13.57.46 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
21.12.2018 13.57.46 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
21.12.2018 13.57.46 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
21.12.2018 13.57.47 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 21.12.2018 13.57.47
Anti-malware scan started at: 21.12.2018 17.58.09
21.12.2018 17.58.16 Running Processes
Unknown: lsass.exe =
21.12.2018 17.58.16 Running Processes
Unknown: AvastSvc.exe =
21.12.2018 17.58.16 Running Processes
Unknown: aswidsagenta.exe =
21.12.2018 17.58.30 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
21.12.2018 17.58.30 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 17.58.30 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
21.12.2018 17.58.30 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
21.12.2018 17.58.30 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
21.12.2018 17.58.30 Registry Run
Unknown: SM?RT-Protection =
21.12.2018 17.58.30 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 17.58.30 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
21.12.2018 17.58.30 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 17.58.30 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
21.12.2018 17.59.02 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
21.12.2018 17.59.05 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
21.12.2018 17.59.05 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
21.12.2018 17.59.05 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
21.12.2018 17.59.05 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 21.12.2018 17.59.06
Anti-malware scan started at: 22.12.2018 10.00.46
22.12.2018 10.00.52 Running Processes
Unknown: lsass.exe =
22.12.2018 10.00.52 Running Processes
Unknown: AvastSvc.exe =
22.12.2018 10.00.52 Running Processes
Unknown: aswidsagenta.exe =
22.12.2018 10.00.52 Running Processes
Unknown: sppsvc.exe =
22.12.2018 10.01.08 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
22.12.2018 10.01.08 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
22.12.2018 10.01.08 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
22.12.2018 10.01.08 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
22.12.2018 10.01.08 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
22.12.2018 10.01.08 Registry Run
Unknown: SM?RT-Protection =
22.12.2018 10.01.08 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
22.12.2018 10.01.08 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
22.12.2018 10.01.08 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
22.12.2018 10.01.08 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
22.12.2018 10.01.41 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
22.12.2018 10.01.45 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
22.12.2018 10.01.45 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
22.12.2018 10.01.45 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
22.12.2018 10.01.46 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 22.12.2018 10.01.46
Anti-malware scan started at: 22.12.2018 14.01.52
22.12.2018 14.01.58 Running Processes
22.12.2018 14.01.58 Running Processes
Unknown: AvastSvc.exe =
22.12.2018 14.01.58 Running Processes
Unknown: aswidsagenta.exe =
22.12.2018 14.02.14 User Shortcuts
22.12.2018 14.02.14 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
22.12.2018 14.02.14 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
22.12.2018 14.02.14 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
22.12.2018 14.02.14 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
22.12.2018 14.02.14 Registry Run
Unknown: SM?RT-Protection =
22.12.2018 14.02.14 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
22.12.2018 14.02.14 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
22.12.2018 14.02.14 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
22.12.2018 14.02.14 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
22.12.2018 14.02.46 Auto Services
22.12.2018 14.02.48 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
22.12.2018 14.02.48 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
22.12.2018 14.02.48 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
22.12.2018 14.02.49 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 22.12.2018 14.02.49
Anti-malware scan started at: 22.12.2018 18.07.44
22.12.2018 18.07.51 Running Processes
Unknown: lsass.exe =
22.12.2018 18.07.51 Running Processes
Unknown: AvastSvc.exe =
22.12.2018 18.07.51 Running Processes
Unknown: aswidsagenta.exe =
22.12.2018 18.07.51 Running Processes
Unknown: sppsvc.exe =
22.12.2018 18.08.07 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
22.12.2018 18.08.07 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
22.12.2018 18.08.07 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
22.12.2018 18.08.07 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
22.12.2018 18.08.07 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
22.12.2018 18.08.07 Registry Run
Unknown: SM?RT-Protection =
22.12.2018 18.08.07 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
22.12.2018 18.08.07 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
22.12.2018 18.08.07 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
22.12.2018 18.08.07 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
22.12.2018 18.08.39 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
22.12.2018 18.08.42 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
22.12.2018 18.08.42 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
22.12.2018 18.08.42 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
22.12.2018 18.08.43 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 22.12.2018 18.08.43
Anti-malware scan started at: 24.12.2018 08.34.54
24.12.2018 08.35.02 Running Processes
Unknown: lsass.exe =
24.12.2018 08.35.02 Running Processes
Unknown: AvastSvc.exe =
24.12.2018 08.35.02 Running Processes
Unknown: aswidsagenta.exe =
24.12.2018 08.35.02 Running Processes
Unknown: sppsvc.exe =
24.12.2018 08.35.18 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
24.12.2018 08.35.18 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
24.12.2018 08.35.18 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
24.12.2018 08.35.18 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
24.12.2018 08.35.18 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
24.12.2018 08.35.18 Registry Run
Unknown: SM?RT-Protection =
24.12.2018 08.35.18 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
24.12.2018 08.35.18 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
24.12.2018 08.35.18 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
24.12.2018 08.35.18 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
24.12.2018 08.35.48 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
24.12.2018 08.35.51 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
24.12.2018 08.35.51 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
24.12.2018 08.35.51 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.63_0
24.12.2018 08.35.51 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Anti-malware scan finished at: 24.12.2018 08.35.52
Anti-malware scan started at: 25.12.2018 10.48.06
25.12.2018 10.48.27 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
25.12.2018 10.48.27 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
25.12.2018 10.48.27 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
25.12.2018 10.48.27 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
25.12.2018 10.48.27 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
25.12.2018 10.48.27 Registry Run
Unknown: SM?RT-Protection =
25.12.2018 10.48.27 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
25.12.2018 10.48.27 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
25.12.2018 10.48.27 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
25.12.2018 10.48.27 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
25.12.2018 10.49.01 Auto Services
25.12.2018 10.49.03 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
25.12.2018 10.49.03 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
25.12.2018 10.49.03 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
25.12.2018 10.49.04 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 25.12.2018 10.49.05
Anti-malware scan started at: 25.12.2018 14.49.31
25.12.2018 14.49.51 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
25.12.2018 14.49.51 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
25.12.2018 14.49.51 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
25.12.2018 14.49.51 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
25.12.2018 14.49.51 Registry Run
25.12.2018 14.49.51 Registry Run
Unknown: SM?RT-Protection =
25.12.2018 14.49.51 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
25.12.2018 14.49.51 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
25.12.2018 14.49.51 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
25.12.2018 14.49.51 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
25.12.2018 14.50.25 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
25.12.2018 14.50.28 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
25.12.2018 14.50.28 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
25.12.2018 14.50.28 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
25.12.2018 14.50.29 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 25.12.2018 14.50.29
Anti-malware scan started at: 26.12.2018 08.41.30
26.12.2018 08.41.50 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
26.12.2018 08.41.50 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
26.12.2018 08.41.50 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
26.12.2018 08.41.50 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
26.12.2018 08.41.50 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
26.12.2018 08.41.50 Registry Run
Unknown: SM?RT-Protection =
26.12.2018 08.41.50 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
26.12.2018 08.41.50 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
26.12.2018 08.41.50 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
26.12.2018 08.41.50 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
26.12.2018 08.42.20 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
26.12.2018 08.42.22 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
26.12.2018 08.42.22 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
26.12.2018 08.42.22 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
26.12.2018 08.42.22 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 26.12.2018 08.42.23
Anti-malware scan started at: 26.12.2018 13.11.08
26.12.2018 13.11.27 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
26.12.2018 13.11.27 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
26.12.2018 13.11.27 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
26.12.2018 13.11.27 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
26.12.2018 13.11.27 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
26.12.2018 13.11.27 Registry Run
Unknown: SM?RT-Protection =
26.12.2018 13.11.27 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
26.12.2018 13.11.27 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
26.12.2018 13.11.27 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
26.12.2018 13.11.27 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
26.12.2018 13.11.57 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
26.12.2018 13.11.59 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
26.12.2018 13.11.59 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
26.12.2018 13.11.59 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
26.12.2018 13.12.00 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 26.12.2018 13.12.00
Anti-malware scan started at: 26.12.2018 17.19.48
26.12.2018 17.20.11 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
26.12.2018 17.20.11 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
26.12.2018 17.20.11 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
26.12.2018 17.20.11 User Shortcuts
26.12.2018 17.20.11 Registry Run
26.12.2018 17.20.11 Registry Run
Unknown: SM?RT-Protection =
26.12.2018 17.20.11 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
26.12.2018 17.20.11 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
26.12.2018 17.20.11 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
26.12.2018 17.20.11 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
26.12.2018 17.20.44 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
26.12.2018 17.20.47 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
26.12.2018 17.20.47 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
26.12.2018 17.20.47 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
26.12.2018 17.20.49 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 26.12.2018 17.20.50
Anti-malware scan started at: 27.12.2018 09.11.12
27.12.2018 09.11.38 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
27.12.2018 09.11.38 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
27.12.2018 09.11.38 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
27.12.2018 09.11.38 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
27.12.2018 09.11.38 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
27.12.2018 09.11.38 Registry Run
Unknown: SM?RT-Protection =
27.12.2018 09.11.38 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
27.12.2018 09.11.38 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
27.12.2018 09.11.38 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
27.12.2018 09.11.38 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
27.12.2018 09.12.12 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
27.12.2018 09.12.15 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
27.12.2018 09.12.15 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
27.12.2018 09.12.15 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
27.12.2018 09.12.15 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 27.12.2018 09.12.16
Anti-malware scan started at: 27.12.2018 13.12.27
27.12.2018 13.12.50 User Shortcuts
27.12.2018 13.12.50 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
27.12.2018 13.12.50 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
27.12.2018 13.12.50 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
27.12.2018 13.12.50 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
27.12.2018 13.12.50 Registry Run
Unknown: SM?RT-Protection =
27.12.2018 13.12.50 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
27.12.2018 13.12.50 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
27.12.2018 13.12.50 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
27.12.2018 13.12.50 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
27.12.2018 13.13.24 Auto Services
27.12.2018 13.13.27 IE Extensions - All Users
27.12.2018 13.13.27 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
27.12.2018 13.13.27 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
27.12.2018 13.13.28 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 27.12.2018 13.13.28
Anti-malware scan started at: 27.12.2018 18.04.14
27.12.2018 18.04.41 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
27.12.2018 18.04.41 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
27.12.2018 18.04.41 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
27.12.2018 18.04.41 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
27.12.2018 18.04.41 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
27.12.2018 18.04.41 Registry Run
Unknown: SM?RT-Protection =
27.12.2018 18.04.41 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
27.12.2018 18.04.41 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
27.12.2018 18.04.41 Scheduled Tasks 2.0 Cached
27.12.2018 18.04.41 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
27.12.2018 18.05.11 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
27.12.2018 18.05.13 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
27.12.2018 18.05.14 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
27.12.2018 18.05.14 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
27.12.2018 18.05.14 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 27.12.2018 18.05.15
Anti-malware scan started at: 28.12.2018 05.41.00
28.12.2018 05.41.18 User Shortcuts
28.12.2018 05.41.18 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
28.12.2018 05.41.18 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
28.12.2018 05.41.18 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
28.12.2018 05.41.18 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
28.12.2018 05.41.18 Registry Run
Unknown: SM?RT-Protection =
28.12.2018 05.41.18 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
28.12.2018 05.41.18 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
28.12.2018 05.41.18 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
28.12.2018 05.41.18 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
28.12.2018 05.41.53 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
28.12.2018 05.41.56 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
28.12.2018 05.41.56 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
28.12.2018 05.41.56 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
28.12.2018 05.41.57 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 28.12.2018 05.41.57
Anti-malware scan started at: 28.12.2018 10.07.27
28.12.2018 10.07.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
28.12.2018 10.07.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
28.12.2018 10.07.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
28.12.2018 10.07.44 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
28.12.2018 10.07.44 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
28.12.2018 10.07.44 Registry Run
Unknown: SM?RT-Protection =
28.12.2018 10.07.44 Scheduled Tasks 2
28.12.2018 10.07.44 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
28.12.2018 10.07.44 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
28.12.2018 10.07.44 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
28.12.2018 10.08.13 Auto Services
28.12.2018 10.08.16 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
28.12.2018 10.08.16 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
28.12.2018 10.08.16 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
28.12.2018 10.08.17 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 28.12.2018 10.08.17
Anti-malware scan started at: 28.12.2018 14.08.21
28.12.2018 14.08.39 User Shortcuts
28.12.2018 14.08.39 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
28.12.2018 14.08.39 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
28.12.2018 14.08.39 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
28.12.2018 14.08.39 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
28.12.2018 14.08.39 Registry Run
Unknown: SM?RT-Protection =
28.12.2018 14.08.39 Scheduled Tasks 2
28.12.2018 14.08.39 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
28.12.2018 14.08.39 Scheduled Tasks 2.0 Cached
28.12.2018 14.08.39 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
28.12.2018 14.09.12 Auto Services
28.12.2018 14.09.14 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
28.12.2018 14.09.14 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
28.12.2018 14.09.14 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
28.12.2018 14.09.15 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 28.12.2018 14.09.15
Anti-malware scan started at: 31.12.2018 08.53.39
31.12.2018 08.54.13 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
31.12.2018 08.54.13 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
31.12.2018 08.54.13 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
31.12.2018 08.54.13 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
31.12.2018 08.54.13 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
31.12.2018 08.54.13 Registry Run
Unknown: SM?RT-Protection =
31.12.2018 08.54.13 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
31.12.2018 08.54.13 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
31.12.2018 08.54.13 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
31.12.2018 08.54.13 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
31.12.2018 08.54.47 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
31.12.2018 08.54.50 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
31.12.2018 08.54.50 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
31.12.2018 08.54.50 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
31.12.2018 08.54.51 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 31.12.2018 08.54.52
Anti-malware scan started at: 31.12.2018 12.55.11
31.12.2018 12.55.36 User Shortcuts
31.12.2018 12.55.36 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
31.12.2018 12.55.36 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
31.12.2018 12.55.36 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
31.12.2018 12.55.36 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
31.12.2018 12.55.36 Registry Run
Unknown: SM?RT-Protection =
31.12.2018 12.55.36 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
31.12.2018 12.55.36 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
31.12.2018 12.55.36 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
31.12.2018 12.55.36 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
31.12.2018 12.56.12 Auto Services
31.12.2018 12.56.15 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
31.12.2018 12.56.15 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
31.12.2018 12.56.15 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
31.12.2018 12.56.16 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 31.12.2018 12.56.16
Anti-malware scan started at: 02.01.2019 07.42.21
02.01.2019 07.42.46 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
02.01.2019 07.42.46 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
02.01.2019 07.42.46 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
02.01.2019 07.42.46 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
02.01.2019 07.42.46 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
02.01.2019 07.42.46 Registry Run
Unknown: SM?RT-Protection =
02.01.2019 07.42.46 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
02.01.2019 07.42.46 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
02.01.2019 07.42.46 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
02.01.2019 07.42.46 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
02.01.2019 07.43.16 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
02.01.2019 07.43.19 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
02.01.2019 07.43.19 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
02.01.2019 07.43.19 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
02.01.2019 07.43.20 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 02.01.2019 07.43.20
Anti-malware scan started at: 02.01.2019 11.46.46
02.01.2019 11.47.09 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
02.01.2019 11.47.09 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
02.01.2019 11.47.09 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
02.01.2019 11.47.09 User Shortcuts
02.01.2019 11.47.09 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
02.01.2019 11.47.09 Registry Run
Unknown: SM?RT-Protection =
02.01.2019 11.47.09 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
02.01.2019 11.47.09 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
02.01.2019 11.47.09 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
02.01.2019 11.47.09 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
02.01.2019 11.47.43 Auto Services
02.01.2019 11.47.46 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
02.01.2019 11.47.46 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
02.01.2019 11.47.46 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
02.01.2019 11.47.47 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 02.01.2019 11.47.47
Anti-malware scan started at: 02.01.2019 15.49.03
02.01.2019 15.49.28 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
02.01.2019 15.49.28 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
02.01.2019 15.49.28 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
02.01.2019 15.49.28 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
02.01.2019 15.49.28 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
02.01.2019 15.49.28 Registry Run
Unknown: SM?RT-Protection =
02.01.2019 15.49.28 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
02.01.2019 15.49.28 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
02.01.2019 15.49.28 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
02.01.2019 15.50.02 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
02.01.2019 15.50.05 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
02.01.2019 15.50.05 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
02.01.2019 15.50.05 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
02.01.2019 15.50.06 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 02.01.2019 15.50.06
Anti-malware scan started at: 03.01.2019 08.42.56
03.01.2019 08.43.16 User Shortcuts
03.01.2019 08.43.16 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
03.01.2019 08.43.16 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
03.01.2019 08.43.16 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
03.01.2019 08.43.16 Registry Run
03.01.2019 08.43.16 Registry Run
Unknown: SM?RT-Protection =
03.01.2019 08.43.16 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
03.01.2019 08.43.16 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
03.01.2019 08.43.16 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
03.01.2019 08.43.16 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
03.01.2019 08.43.47 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
03.01.2019 08.43.51 IE Extensions - All Users
03.01.2019 08.43.51 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
03.01.2019 08.43.51 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
03.01.2019 08.43.52 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 03.01.2019 08.43.52
Anti-malware scan started at: 03.01.2019 12.44.21
03.01.2019 12.44.28 Applications
03.01.2019 12.44.45 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
03.01.2019 12.44.45 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
03.01.2019 12.44.45 User Shortcuts
03.01.2019 12.44.45 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
03.01.2019 12.44.45 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
03.01.2019 12.44.45 Registry Run
Unknown: SM?RT-Protection =
03.01.2019 12.44.45 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
03.01.2019 12.44.45 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
03.01.2019 12.44.45 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
03.01.2019 12.44.45 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
03.01.2019 12.45.17 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
03.01.2019 12.45.20 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
03.01.2019 12.45.20 Google Chrome Addons
03.01.2019 12.45.20 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
03.01.2019 12.45.22 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 03.01.2019 12.45.22
Anti-malware scan started at: 03.01.2019 16.45.38
03.01.2019 16.45.46 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
03.01.2019 16.46.02 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
03.01.2019 16.46.02 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
03.01.2019 16.46.02 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
03.01.2019 16.46.02 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
03.01.2019 16.46.02 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
03.01.2019 16.46.02 Registry Run
Unknown: SM?RT-Protection =
03.01.2019 16.46.02 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
03.01.2019 16.46.03 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
03.01.2019 16.46.03 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
03.01.2019 16.46.03 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
03.01.2019 16.46.37 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
03.01.2019 16.46.40 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
03.01.2019 16.46.41 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
03.01.2019 16.46.41 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
03.01.2019 16.46.41 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 03.01.2019 16.46.42
Anti-malware scan started at: 04.01.2019 08.32.42
04.01.2019 08.32.50 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
04.01.2019 08.33.05 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
04.01.2019 08.33.05 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
04.01.2019 08.33.05 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
04.01.2019 08.33.05 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
04.01.2019 08.33.05 Registry Run
Unknown: SM?RT-Protection =
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
04.01.2019 08.33.05 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
04.01.2019 08.33.05 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
04.01.2019 08.33.05 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
04.01.2019 08.33.49 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
04.01.2019 08.33.52 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
04.01.2019 08.33.52 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
04.01.2019 08.33.52 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
04.01.2019 08.33.52 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 04.01.2019 08.33.53
Anti-malware scan started at: 04.01.2019 17.23.02
04.01.2019 17.23.12 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
04.01.2019 17.23.42 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
04.01.2019 17.23.42 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
04.01.2019 17.23.42 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
04.01.2019 17.23.42 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
04.01.2019 17.23.42 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
04.01.2019 17.23.42 Registry Run
Unknown: SM?RT-Protection =
04.01.2019 17.23.42 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
04.01.2019 17.23.42 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
04.01.2019 17.23.42 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
04.01.2019 17.23.42 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
04.01.2019 17.24.14 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
04.01.2019 17.24.16 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
04.01.2019 17.24.16 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
04.01.2019 17.24.16 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
04.01.2019 17.24.17 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 04.01.2019 17.24.17
Anti-malware scan started at: 05.01.2019 12.15.54
05.01.2019 12.16.02 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
05.01.2019 12.16.16 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
05.01.2019 12.16.16 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
05.01.2019 12.16.16 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
05.01.2019 12.16.16 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
05.01.2019 12.16.16 Registry Run
05.01.2019 12.16.16 Registry Run
Unknown: SM?RT-Protection =
05.01.2019 12.16.16 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
05.01.2019 12.16.16 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
05.01.2019 12.16.16 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
05.01.2019 12.16.16 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
05.01.2019 12.16.51 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
05.01.2019 12.16.53 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
05.01.2019 12.16.53 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
05.01.2019 12.16.53 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
05.01.2019 12.16.53 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 05.01.2019 12.16.54
Anti-malware scan started at: 07.01.2019 08.19.48
07.01.2019 08.19.53 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
07.01.2019 08.20.11 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
07.01.2019 08.20.11 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
07.01.2019 08.20.11 User Shortcuts
07.01.2019 08.20.11 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
07.01.2019 08.20.11 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
07.01.2019 08.20.11 Registry Run
Unknown: SM?RT-Protection =
07.01.2019 08.20.11 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
07.01.2019 08.20.11 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
07.01.2019 08.20.11 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
07.01.2019 08.20.11 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
07.01.2019 08.20.41 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
07.01.2019 08.20.44 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
07.01.2019 08.20.44 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
07.01.2019 08.20.44 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
07.01.2019 08.20.45 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 07.01.2019 08.20.45
Anti-malware scan started at: 07.01.2019 12.20.56
07.01.2019 12.21.03 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
07.01.2019 12.21.16 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
07.01.2019 12.21.16 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
07.01.2019 12.21.16 User Shortcuts
07.01.2019 12.21.16 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
07.01.2019 12.21.16 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
07.01.2019 12.21.16 Registry Run
Unknown: SM?RT-Protection =
07.01.2019 12.21.16 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
07.01.2019 12.21.16 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
07.01.2019 12.21.16 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
07.01.2019 12.21.16 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
07.01.2019 12.21.49 Auto Services
07.01.2019 12.21.51 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
07.01.2019 12.21.51 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
07.01.2019 12.21.51 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
07.01.2019 12.21.52 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 07.01.2019 12.21.52
Anti-malware scan started at: 08.01.2019 08.33.35
08.01.2019 08.33.41 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
08.01.2019 08.33.56 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
08.01.2019 08.33.56 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
08.01.2019 08.33.56 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
08.01.2019 08.33.56 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
08.01.2019 08.33.56 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
08.01.2019 08.33.56 Registry Run
Unknown: SM?RT-Protection =
08.01.2019 08.33.56 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
08.01.2019 08.33.56 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
08.01.2019 08.33.56 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
08.01.2019 08.33.56 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
08.01.2019 08.35.02 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
08.01.2019 08.35.07 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
08.01.2019 08.35.07 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
08.01.2019 08.35.07 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
08.01.2019 08.35.08 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 08.01.2019 08.35.09
Anti-malware scan started at: 08.01.2019 12.35.23
08.01.2019 12.35.30 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
08.01.2019 13.50.59 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
08.01.2019 13.51.00 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
08.01.2019 13.51.00 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
08.01.2019 13.51.00 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
08.01.2019 13.51.00 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
08.01.2019 13.51.00 Registry Run
Unknown: SM?RT-Protection =
08.01.2019 13.51.00 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
08.01.2019 13.51.00 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
08.01.2019 13.51.00 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
08.01.2019 13.51.00 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
08.01.2019 13.51.37 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
08.01.2019 13.51.39 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
08.01.2019 13.51.39 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
08.01.2019 13.51.39 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 08.01.2019 13.51.40
Anti-malware scan started at: 08.01.2019 17.51.46
08.01.2019 17.51.53 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
08.01.2019 17.52.07 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
08.01.2019 17.52.07 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
08.01.2019 17.52.07 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
08.01.2019 17.52.07 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
08.01.2019 17.52.07 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
08.01.2019 17.52.07 Registry Run
Unknown: SM?RT-Protection =
08.01.2019 17.52.07 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
08.01.2019 17.52.07 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
08.01.2019 17.52.07 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
08.01.2019 17.52.07 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
08.01.2019 17.52.40 Auto Services
08.01.2019 17.52.42 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
08.01.2019 17.52.43 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
08.01.2019 17.52.43 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
08.01.2019 17.52.43 Google Chrome Notifications
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 08.01.2019 17.52.44
Anti-malware scan started at: 09.01.2019 08.49.48
09.01.2019 08.49.54 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
09.01.2019 08.50.10 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
09.01.2019 08.50.10 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
09.01.2019 08.50.10 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
09.01.2019 08.50.10 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
09.01.2019 08.50.10 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
09.01.2019 08.50.10 Registry Run
Unknown: SM?RT-Protection =
09.01.2019 08.50.10 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
09.01.2019 08.50.10 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
09.01.2019 08.50.10 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
09.01.2019 08.50.10 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
09.01.2019 08.51.06 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
09.01.2019 08.51.10 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
09.01.2019 08.51.10 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
09.01.2019 08.51.10 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
09.01.2019 08.51.11 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 09.01.2019 08.51.11
Anti-malware scan started at: 09.01.2019 12.51.27
09.01.2019 12.51.33 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
09.01.2019 12.51.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
09.01.2019 12.51.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
09.01.2019 12.51.44 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
09.01.2019 12.51.44 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
09.01.2019 12.51.44 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
09.01.2019 12.51.44 Registry Run
Unknown: SM?RT-Protection =
09.01.2019 12.51.44 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\Avast Software\Gaming mode Task Scheduler
recovery =
09.01.2019 12.51.44 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
09.01.2019 12.51.44 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
09.01.2019 12.51.44 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
09.01.2019 12.51.44 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
09.01.2019 12.52.12 Auto Services
09.01.2019 12.52.14 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
09.01.2019 12.52.14 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
09.01.2019 12.52.14 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
09.01.2019 12.52.15 Google Chrome Notifications
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 09.01.2019 12.52.15
Anti-malware scan started at: 10.01.2019 09.28.22
10.01.2019 09.28.28 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
10.01.2019 09.28.40 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
10.01.2019 09.28.40 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
10.01.2019 09.28.40 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
10.01.2019 09.28.40 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
10.01.2019 09.28.40 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
10.01.2019 09.28.40 Registry Run
Unknown: SM?RT-Protection =
10.01.2019 09.28.40 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
10.01.2019 09.28.41 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
10.01.2019 09.28.41 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
10.01.2019 09.28.41 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
10.01.2019 09.29.09 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
10.01.2019 09.29.11 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
10.01.2019 09.29.11 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
10.01.2019 09.29.11 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
10.01.2019 09.29.12 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 10.01.2019 09.29.12
Anti-malware scan started at: 10.01.2019 15.07.53
10.01.2019 15.08.01 Applications
Probably Malicious: ByteFence = "C:\Program Files\ByteFence\uninstall.exe"
10.01.2019 15.08.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
10.01.2019 15.08.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Internet Download Manager.lnk = C:\PROGRAM FILES
(X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
10.01.2019 15.08.17 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
10.01.2019 15.08.17 User Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download
Manager\Internet Download Manager.lnk = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD
MANAGER\IDMAN.EXE
10.01.2019 15.08.17 Registry Run
Unknown: IDMan = C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMAN.EXE
10.01.2019 15.08.17 Registry Run
Unknown: SM?RT-Protection =
10.01.2019 15.08.17 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineCore = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
10.01.2019 15.08.17 Scheduled Tasks 2
Unknown: C:\WINDOWS\SYSNATIVE\TASKS\GoogleUpdateTaskMachineUA = C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe
10.01.2019 15.08.17 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineCore = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
10.01.2019 15.08.17 Scheduled Tasks 2.0 Cached
Unknown: GoogleUpdateTaskMachineUA = C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe
10.01.2019 15.08.54 Auto Services
Unknown: NBService = C:\PROGRAM FILES (X86)\NERO\NERO 7\NERO BACKITUP\NBSERVICE.EXE
10.01.2019 15.08.56 IE Extensions - All Users
Unknown: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} =
10.01.2019 15.08.56 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.3.62_0
10.01.2019 15.08.56 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.3.65_0
10.01.2019 15.08.57 Google Chrome Notifications
Probably Malicious: 0 = https://n2ts.ntsevolandsery.club:443,*
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 10.01.2019 15.08.57
Anti-malware scan started at: 30.09.2019 11.15.54
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 30.09.2019 11.18.50
Anti-malware scan started at: 03.10.2019 09.55.01
03.10.2019 09.57.41 Unwanted Software Files
Probably Malicious: C:\ProgramData\LOCALNETSERVICE\ = C:\ProgramData\
LOCALNETSERVICE\
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 03.10.2019 10.03.43
Anti-malware scan started at: 04.11.2019 08.41.26
04.11.2019 08.44.15 Unwanted Software Files
Probably Malicious: C:\ProgramData\LOCALNETSERVICE\ = C:\ProgramData\
LOCALNETSERVICE\
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 04.11.2019 08.46.09
Anti-malware scan started at: 02.12.2019 08.29.31
02/12/2019 08.32.08 Applications
Probably Malicious: {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1 = "C:\Users\LENOVO\
AppData\Local\UmmyVideoDownloader\unins000.exe" /SILENT
02/12/2019 08.32.16 Unwanted Software Files
Probably Malicious: C:\ProgramData\LOCALNETSERVICE\ = C:\ProgramData\
LOCALNETSERVICE\
02/12/2019 08.32.16 Unwanted Software Files
Probably Malicious: UmmyVideoDownloader = C:\USERS\LENOVO\APPDATA\LOCAL\
UMMYVIDEODOWNLOADER\
02/12/2019 08.34.06 Internet Shortcuts
Unknown: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Producer\Help
With ProShow Producer.lnk = HTTP://KB.PHOTODEX.COM/
02/12/2019 08.34.06 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Continue EZ Activator Office 2010 Installation.lnk
= C:\Users\LENOVO\AppData\Local\Temp\EZ Activator Office 2010_1174470910.exe
02/12/2019 08.34.06 User Shortcuts
Unknown: C:\Users\LENOVO\Desktop\Windows 10 Update Assistant.lnk = C:\
Windows10Upgrade\Windows10UpgraderApp.exe
02/12/2019 08.34.23 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.4.60_0
02/12/2019 08.34.23 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.4.55_0
02/12/2019 08.34.23 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Profile 1\Extensions\
nahhmpbckpgdidfnmfkfgiflpjijilce\10.1.3.81_0
02/12/2019 08.34.23 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Profile 1\Extensions\
pilplloabdedfmialnfchjomjmpjcoej\10.1.3.77_0
02/12/2019 08.34.23 FireFox Components and Extensions
Probably Malicious: sp@avast.com = C:\Users\LENOVO\AppData\Roaming\Mozilla\Firefox\
Profiles\djjpmm1h.default\extensions\sp@avast.com.xpi
02/12/2019 08.34.23 Google Chrome Addons
Probably Malicious: nahhmpbckpgdidfnmfkfgiflpjijilce = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce\
10.1.4.60_0
02/12/2019 08.34.23 Google Chrome Addons
Probably Malicious: pilplloabdedfmialnfchjomjmpjcoej = C:\Users\LENOVO\AppData\
Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\
10.1.4.55_0
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 02/12/2019 08.35.01
Anti-malware scan started at: 30.12.2019 09.27.05
30.12.2019 09.29.25 Applications
Probably Malicious: {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1 = "C:\Users\LENOVO\
AppData\Local\UmmyVideoDownloader\unins000.exe" /SILENT
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 30.12.2019 09.30.14
Anti-malware scan started at: 24.01.2020 08.24.42
Sending Pipe to UnHackMe failure!
Anti-malware scan finished at: 24.01.2020 08.27.38

UsbFix Report
No ratings yet
UsbFix Report
194 pages
UsbFix Report
No ratings yet
UsbFix Report
4 pages
Anti-Malware Scan Report
No ratings yet
Anti-Malware Scan Report
8 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
SpybotSD Results
No ratings yet
SpybotSD Results
103 pages
Ultra Virus Killer Log
No ratings yet
Ultra Virus Killer Log
8 pages
UsbFix V7.951 System Cleanup Report
No ratings yet
UsbFix V7.951 System Cleanup Report
95 pages
Startup
No ratings yet
Startup
3 pages
Upd 2
No ratings yet
Upd 2
9 pages
USB Scan Report: No Threats Found
No ratings yet
USB Scan Report: No Threats Found
3 pages
USB Scan Report: No Threats Found
No ratings yet
USB Scan Report: No Threats Found
3 pages
UsbFix Antivirus Scan Report
No ratings yet
UsbFix Antivirus Scan Report
8 pages
UsbFix Report
No ratings yet
UsbFix Report
6 pages
USBFix V7.172 System Report
No ratings yet
USBFix V7.172 System Report
4 pages
RR 2 Log
No ratings yet
RR 2 Log
568 pages
UsbFix Report
No ratings yet
UsbFix Report
6 pages
UsbFix Report
No ratings yet
UsbFix Report
6 pages
Malwarebytes AdwCleaner Report
No ratings yet
Malwarebytes AdwCleaner Report
2 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
ZHP Diag
No ratings yet
ZHP Diag
41 pages
FRST
No ratings yet
FRST
17 pages
USBFix System Analysis Report
No ratings yet
USBFix System Analysis Report
6 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
USB Antivirus Scan Report
No ratings yet
USB Antivirus Scan Report
4 pages
RR 2 Log
No ratings yet
RR 2 Log
10 pages
UsbFix Report
No ratings yet
UsbFix Report
8 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
Hi Jack Thisiii
No ratings yet
Hi Jack Thisiii
5 pages
USB Scan Report Summary
No ratings yet
USB Scan Report Summary
3 pages
UsbFix Antivirus Premium Scan Report
No ratings yet
UsbFix Antivirus Premium Scan Report
8 pages
Files
No ratings yet
Files
17 pages
UsbFix Antivirus Scan Report
No ratings yet
UsbFix Antivirus Scan Report
8 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
UsbFix Report
No ratings yet
UsbFix Report
116 pages
UsbFix Report
No ratings yet
UsbFix Report
37 pages
Startup
No ratings yet
Startup
1 page
FRST
No ratings yet
FRST
11 pages
UsbFix Antivirus Report
No ratings yet
UsbFix Antivirus Report
8 pages
UsbFix Report
No ratings yet
UsbFix Report
16 pages
UsbFix Report 04
No ratings yet
UsbFix Report 04
4 pages
UsbFix Report
No ratings yet
UsbFix Report
4 pages
UsbFix Report
No ratings yet
UsbFix Report
8 pages
UsbFix Report
No ratings yet
UsbFix Report
7 pages
UsbFix Report
No ratings yet
UsbFix Report
5 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
Start Up List
No ratings yet
Start Up List
3 pages
At Destroyer
No ratings yet
At Destroyer
6 pages
UsbFix Report 05
No ratings yet
UsbFix Report 05
4 pages
OTL
No ratings yet
OTL
19 pages
UsbFix Report
No ratings yet
UsbFix Report
12 pages
USB Antivirus Scan Report
No ratings yet
USB Antivirus Scan Report
4 pages
Bug Report
No ratings yet
Bug Report
31 pages
FRST Analysis Report
No ratings yet
FRST Analysis Report
10 pages
AdwCleaner (C00)
No ratings yet
AdwCleaner (C00)
3 pages
Log
No ratings yet
Log
117 pages
USB Security Scan Report
No ratings yet
USB Security Scan Report
2 pages
Alien's Extraterrestrial Visual Systems (Compressed - Low Quality)
No ratings yet
Alien's Extraterrestrial Visual Systems (Compressed - Low Quality)
115 pages
Business Negotiation Skills
No ratings yet
Business Negotiation Skills
32 pages
Gupta and Gupta Vol 1 - PDF
No ratings yet
Gupta and Gupta Vol 1 - PDF
604 pages
RP RD Eng 1201 1
No ratings yet
RP RD Eng 1201 1
12 pages
Plus en 1728 2012
No ratings yet
Plus en 1728 2012
3 pages
1 Poor 2 Fair 3 Good 4 Excellent: Rubric (Essay)
No ratings yet
1 Poor 2 Fair 3 Good 4 Excellent: Rubric (Essay)
1 page
Btech II Sem TT Ay 2024-25
No ratings yet
Btech II Sem TT Ay 2024-25
34 pages
Scilab Programs for Numerical Methods
No ratings yet
Scilab Programs for Numerical Methods
28 pages
SSPC QP 5 - 2012
No ratings yet
SSPC QP 5 - 2012
10 pages
i-PASS OBSERVATION TOOL
No ratings yet
i-PASS OBSERVATION TOOL
1 page
Manual de Motorola S9-HD
No ratings yet
Manual de Motorola S9-HD
15 pages
LDG12S
No ratings yet
LDG12S
1 page
Complete The Bihar Provincial Kisan Sabha 1929 1942 A Study of An Indian Peasant Movement 1st Edition Walter Hauser PDF For All Chapters
No ratings yet
Complete The Bihar Provincial Kisan Sabha 1929 1942 A Study of An Indian Peasant Movement 1st Edition Walter Hauser PDF For All Chapters
82 pages
Tie Bar and Straps
No ratings yet
Tie Bar and Straps
2 pages
Pallabi Mund About 3C
No ratings yet
Pallabi Mund About 3C
7 pages
Mid Pre Board
No ratings yet
Mid Pre Board
6 pages
Water Contamiination of Steam Turbine
No ratings yet
Water Contamiination of Steam Turbine
6 pages
Vernier Caliper Worksheet With Example Solution PDF
100% (7)
Vernier Caliper Worksheet With Example Solution PDF
3 pages
Size Reduction in Crushing & Grinding
No ratings yet
Size Reduction in Crushing & Grinding
8 pages
MBA FPX5008 - Assessment3 2
100% (1)
MBA FPX5008 - Assessment3 2
10 pages
Operation Blue Star The True Story PDF
No ratings yet
Operation Blue Star The True Story PDF
25 pages
EC325 Week 2 Problem Set
No ratings yet
EC325 Week 2 Problem Set
1 page
2 From
No ratings yet
2 From
27 pages
Electronic Devices & Circuits
No ratings yet
Electronic Devices & Circuits
2 pages
NH Quick Tick Tests
100% (4)
NH Quick Tick Tests
17 pages
Statistical Methods Q
No ratings yet
Statistical Methods Q
4 pages
Course Logistics and Introduction: CS771: Introduction To Machine Learning Piyush Rai
No ratings yet
Course Logistics and Introduction: CS771: Introduction To Machine Learning Piyush Rai
24 pages
Oracle Commands Basics
No ratings yet
Oracle Commands Basics
5 pages
Supply Chain Strategies for Walmart
No ratings yet
Supply Chain Strategies for Walmart
16 pages
Basic Siebel Query Tunning Guide
No ratings yet
Basic Siebel Query Tunning Guide
6 pages

RR 2 Log

Uploaded by

RR 2 Log

Uploaded by

Anti-malware scan started at: 12.12.2018 09.41.

You might also like