Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-09-2014 01
- Ran by User (administrator) on USER-KOMPUTER on 22-09-2014 18:57:02
- Running from C:\Users\User\Downloads
- Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Polski (Polska)
- Internet Explorer Version 11
- Boot Mode: Normal
- Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Processes (Whitelisted) =================
- (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
- (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
- (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
- () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
- (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
- (MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
- (MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
- (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
- (Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
- () C:\Program Files (x86)\screenSHU\screenSHU.exe
- (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
- () C:\Windows\SysWOW64\PnkBstrA.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
- (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
- (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
- (MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
- (Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
- (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
- (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccsvchst.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccsvchst.exe
- (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
- (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
- () C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe
- () C:\Program Files (x86)\SunriseBrowse\bin\SunriseBrowse.BrowserAdapter64.exe
- () C:\Program Files (x86)\SunriseBrowse\bin\SunriseBrowse.BrowserAdapter.exe
- () C:\Program Files (x86)\SunriseBrowse\bin\SunriseBrowse.PurBrowse64.exe
- () C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe
- (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
- (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
- (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- ==================== Registry (Whitelisted) ==================
- (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
- HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7016520 2013-02-05] (Realtek Semiconductor)
- HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [506864 2013-03-08] (MSI)
- HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
- HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [85600 2013-12-13] (Nullsoft, Inc.)
- HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-06-16] (Oracle Corporation)
- HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3802448 2014-09-04] (LogMeIn Inc.)
- HKU\S-1-5-21-277565421-3351107386-1916313416-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-07-19] (Google Inc.)
- HKU\S-1-5-21-277565421-3351107386-1916313416-1000\...\Run: [screenSHU] => C:\Program Files (x86)\screenSHU\screenSHU.exe [2112000 2013-09-04] ()
- HKU\S-1-5-21-277565421-3351107386-1916313416-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [39712 2014-08-28] (Overwolf LTD)
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk
- ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe (Intel Corporation)
- GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
- ==================== Internet (Whitelisted) ====================
- (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
- HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=181&d=20140919
- HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=181&d=20140919
- HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=181&d=20140919
- BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation)
- BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
- BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
- BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll (Symantec Corporation)
- BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\IPS\IPSBHO.DLL (Symantec Corporation)
- BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
- BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
- BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
- BHO-x32: SunriseBrowse -> {b110ca24-17f3-4555-b0d2-672ab034adf9} -> C:\Program Files (x86)\SunriseBrowse\SunriseBrowsebho.dll (SunriseBrowse)
- BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
- Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
- Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
- Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll (Symantec Corporation)
- Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
- DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
- FireFox:
- ========
- FF Plugin: @java.com/DTPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
- FF Plugin: @java.com/JavaPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
- FF Plugin: @microsoft.com/GENUINE -> disabled No File
- FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
- FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
- FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
- FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
- FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
- FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
- FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
- FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
- FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
- FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
- FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
- FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2014-07-19]
- FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
- FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2014-09-22]
- FF HKCU\...\Firefox\Extensions: [{C8C336AC-B49E-5D60-02C8-6320C85D1196}] - C:\Program Files (x86)\ver5BlockAndSurf\176.xpi
- Chrome:
- =======
- CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
- CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-19]
- CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-19]
- CHR Extension: (YouTube Center) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcegdpionpopahcglnfiiioapcclamdj [2014-07-31]
- CHR Extension: (Norton Security Toolbar) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc [2014-07-29]
- CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-19]
- CHR Extension: (Battlefield Heroes) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh [2014-08-02]
- CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-19]
- CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2014-09-02]
- CHR Extension: (No Name) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnanplinmmnjhobaliikmelmmjpoogkb [2014-08-08]
- CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-19]
- CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-19]
- CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\Exts\Chrome.crx [2014-07-28]
- CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
- ==================== Services (Whitelisted) =================
- (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
- R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
- S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
- R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [149032 2012-08-16] ()
- R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
- R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-08-08] (LogMeIn, Inc.)
- R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161264 2013-02-20] (MSI)
- R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-03-20] (MICRO-STAR INTERNATIONAL CO., LTD.)
- R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
- R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe [123320 2012-08-13] (Symantec Corporation)
- S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [998176 2014-08-28] (Overwolf LTD)
- R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe [126392 2012-08-13] (Symantec Corporation)
- R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-08-03] ()
- R2 Update SunriseBrowse; C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe [325368 2014-09-22] ()
- R2 Util SunriseBrowse; C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe [325368 2014-09-22] ()
- ==================== Drivers (Whitelisted) ====================
- (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
- R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-07-18] (Symantec Corporation)
- R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
- R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-19] (Symantec Corporation)
- R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142128 2014-07-19] (Symantec Corporation)
- R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20120611.002\IDSVia64.sys [509088 2012-06-11] (Symantec Corporation)
- R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [20968 2012-08-16] ()
- R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [19944 2012-08-16] ()
- R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46016 2012-08-16] ()
- S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140718.009\ENG64.SYS [126040 2014-07-19] (Symantec Corporation)
- S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140718.009\EX64.SYS [2099288 2014-07-19] (Symantec Corporation)
- R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
- S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1405000.01C\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
- R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
- R3 SymDS; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
- R3 SymEFA; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
- R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2014-07-28] (Symantec Corporation)
- R3 SymIRON; C:\Windows\system32\drivers\NISx64\1405000.01C\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
- R3 SymNetS; C:\Windows\System32\Drivers\NISx64\1405000.01C\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
- R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-09-22] ()
- R1 {fef7f75c-f985-4250-96f9-8183cd04238b}Gw64; C:\Windows\System32\drivers\{fef7f75c-f985-4250-96f9-8183cd04238b}Gw64.sys [44696 2014-09-18] (StdLib)
- ==================== NetSvcs (Whitelisted) ===================
- (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
- ==================== One Month Created Files and Folders ========
- (If an entry is included in the fixlist, the file\folder will be moved.)
- 2014-09-22 18:55 - 2014-09-22 18:55 - 00000000 ____D () C:\Users\User\Downloads\FRST-OlderVersion
- 2014-09-22 18:14 - 2014-09-22 18:14 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
- 2014-09-19 12:36 - 2014-09-19 12:36 - 91931728 _____ (The GIMP Team ) C:\Users\User\Downloads\gimp-2.8.14-setup-1.exe
- 2014-09-19 12:35 - 2014-09-18 19:06 - 00044696 _____ (StdLib) C:\Windows\system32\Drivers\{fef7f75c-f985-4250-96f9-8183cd04238b}Gw64.sys
- 2014-09-19 12:30 - 2014-09-20 13:34 - 00000000 ____D () C:\Program Files (x86)\SunriseBrowse
- 2014-09-19 12:29 - 2014-09-19 12:29 - 00747456 _____ ( ) C:\Users\User\Downloads\GIMP(13219)-dp (1).exe
- 2014-09-19 12:28 - 2014-09-19 12:28 - 00747456 _____ ( ) C:\Users\User\Downloads\GIMP(13219)-dp.exe
- 2014-09-18 19:00 - 2014-09-18 19:00 - 00003726 _____ () C:\Windows\System32\Tasks\Overwolf Updater Task
- 2014-09-18 19:00 - 2014-09-18 19:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
- 2014-09-18 19:00 - 2014-09-18 19:00 - 00000000 ____D () C:\ProgramData\Overwolf
- 2014-09-18 18:56 - 2014-09-22 18:14 - 00000000 ____D () C:\Users\User\AppData\Local\Overwolf
- 2014-09-18 18:49 - 2014-09-18 18:49 - 12984745 _____ () C:\Users\User\Downloads\Nodus_2.0-1.7.x.zip
- 2014-09-17 13:23 - 2014-09-17 13:24 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
- 2014-09-17 13:23 - 2014-09-17 13:23 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
- 2014-09-17 13:23 - 2014-09-17 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
- 2014-09-17 13:22 - 2014-09-20 07:30 - 00000000 ____D () C:\Users\User\Desktop\Virtual Audio Cable 4.10
- 2014-09-17 13:22 - 2014-09-17 13:22 - 00380021 _____ () C:\Users\User\Downloads\Virtual Audio Cable 4.10.rar
- 2014-09-13 18:45 - 2014-09-13 18:45 - 00048733 _____ () C:\Users\User\Downloads\8.New ! AVA ! _@.rar
- 2014-09-13 18:43 - 2014-09-13 18:43 - 00003962 _____ () C:\Users\User\Downloads\AdminIcons.rar
- 2014-09-13 18:41 - 2014-09-13 18:41 - 00351087 _____ () C:\Users\User\Downloads\25-TeamSpeak-Rank-Icons-v1.01.zip
- 2014-09-13 18:39 - 2014-09-13 18:39 - 00119019 _____ () C:\Users\User\Downloads\Free Rank Icons 16x16.rar
- 2014-09-13 18:38 - 2014-09-13 18:38 - 00100830 _____ () C:\Users\User\Downloads\CF Rank Icon Pack Download.rar
- 2014-09-13 18:38 - 2014-09-13 18:38 - 00040770 _____ () C:\Users\User\Downloads\Ikony_Ts3_by_Krad90.rar
- 2014-09-10 19:58 - 2014-09-22 18:14 - 00002513 _____ () C:\Windows\setupact.log
- 2014-09-10 19:58 - 2014-09-10 19:58 - 00000000 _____ () C:\Windows\setuperr.log
- 2014-09-10 19:57 - 2014-09-22 18:14 - 00009418 _____ () C:\Windows\PFRO.log
- 2014-09-10 19:50 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
- 2014-09-10 19:50 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
- 2014-09-10 19:50 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
- 2014-09-10 19:50 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
- 2014-09-10 19:50 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
- 2014-09-10 19:50 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
- 2014-09-10 19:50 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
- 2014-09-10 19:50 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
- 2014-09-10 19:50 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
- 2014-09-10 19:50 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
- 2014-09-10 19:50 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
- 2014-09-10 19:50 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
- 2014-09-10 19:50 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
- 2014-09-10 19:50 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
- 2014-09-10 19:50 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
- 2014-09-10 19:50 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
- 2014-09-10 19:50 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
- 2014-09-10 19:50 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
- 2014-09-10 19:50 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
- 2014-09-10 19:50 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
- 2014-09-10 19:50 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
- 2014-09-10 19:50 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
- 2014-09-10 19:50 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
- 2014-09-10 19:50 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
- 2014-09-10 19:50 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
- 2014-09-10 19:50 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
- 2014-09-10 19:50 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
- 2014-09-10 19:50 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
- 2014-09-10 19:50 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
- 2014-09-10 19:50 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
- 2014-09-10 19:50 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
- 2014-09-10 19:50 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
- 2014-09-10 19:50 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
- 2014-09-10 19:50 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
- 2014-09-10 19:50 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
- 2014-09-10 19:50 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
- 2014-09-10 19:50 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
- 2014-09-10 19:50 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
- 2014-09-10 19:50 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
- 2014-09-10 19:50 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
- 2014-09-10 19:50 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
- 2014-09-10 19:50 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
- 2014-09-10 19:50 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
- 2014-09-10 19:50 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
- 2014-09-10 19:50 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
- 2014-09-10 19:50 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
- 2014-09-10 19:50 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
- 2014-09-10 19:50 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
- 2014-09-10 19:50 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
- 2014-09-10 19:50 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
- 2014-09-10 19:50 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
- 2014-09-10 19:50 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
- 2014-09-10 19:50 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
- 2014-09-10 19:50 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
- 2014-09-10 19:50 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
- 2014-09-10 19:50 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
- 2014-09-10 19:48 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
- 2014-09-10 19:48 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
- 2014-09-10 19:19 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
- 2014-09-10 19:19 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
- 2014-09-10 19:13 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
- 2014-09-10 19:13 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
- 2014-09-10 19:08 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
- 2014-09-10 19:08 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
- 2014-09-10 19:08 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
- 2014-09-10 19:08 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
- 2014-09-10 19:08 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
- 2014-09-10 19:08 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
- 2014-09-10 19:08 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00000000 ____D () C:\Program Files\CCleaner
- 2014-09-10 18:44 - 2014-09-10 18:50 - 04901352 _____ (Piriform Ltd) C:\Users\User\Downloads\ccsetup417.exe
- 2014-09-08 19:05 - 2014-09-08 19:09 - 04763639 _____ () C:\Users\User\Downloads\3487311 (1).mp4.opdownload
- 2014-09-08 19:05 - 2014-09-08 19:09 - 04505219 _____ () C:\Users\User\Downloads\3487311 (2).mp4.opdownload
- 2014-09-08 19:05 - 2014-09-08 19:09 - 04303739 _____ () C:\Users\User\Downloads\3487311.mp4.opdownload
- 2014-09-08 19:05 - 2014-09-08 19:09 - 04144599 _____ () C:\Users\User\Downloads\3487311 (3).mp4.opdownload
- 2014-09-08 19:04 - 2014-09-08 19:09 - 07479240 _____ () C:\Users\User\Downloads\3486302 (4).mp4.opdownload
- 2014-09-08 19:04 - 2014-09-08 19:09 - 07352220 _____ () C:\Users\User\Downloads\3486302 (5).mp4.opdownload
- 2014-09-08 19:03 - 2014-09-08 19:09 - 11070988 _____ () C:\Users\User\Downloads\3486302.mp4.opdownload
- 2014-09-08 19:03 - 2014-09-08 19:09 - 09456080 _____ () C:\Users\User\Downloads\3486302 (3).mp4.opdownload
- 2014-09-08 19:03 - 2014-09-08 19:09 - 09219560 _____ () C:\Users\User\Downloads\3486302 (1).mp4.opdownload
- 2014-09-08 19:03 - 2014-09-08 19:09 - 09181600 _____ () C:\Users\User\Downloads\3486302 (2).mp4.opdownload
- 2014-09-06 00:01 - 2014-09-06 00:01 - 00102218 _____ () C:\Users\User\Downloads\EpicBossRecoded.jar
- 2014-09-05 19:11 - 2014-09-05 19:12 - 05933836 _____ () C:\Users\User\Downloads\Huzuni 3.3.2.zip
- 2014-09-04 20:23 - 2014-09-04 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
- 2014-09-04 20:23 - 2014-09-04 20:23 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
- 2014-09-01 18:13 - 2014-09-01 18:13 - 00000000 ____D () C:\Users\User\AppData\Roaming\Unity
- 2014-09-01 18:01 - 2014-09-01 18:01 - 00000000 ____D () C:\Users\User\AppData\Roaming\.mono
- 2014-09-01 17:59 - 2014-09-01 17:59 - 00000000 ____D () C:\Users\User\AppData\Local\Unity
- 2014-09-01 17:58 - 2014-09-01 17:59 - 06244360 _____ (Unity Technologies ApS) C:\Users\User\Downloads\UnityWebPlayerFull.exe
- 2014-08-29 20:01 - 2014-08-29 20:02 - 00000000 ____D () C:\Users\User\AppData\Local\Skyrim
- 2014-08-28 09:44 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
- 2014-08-28 09:44 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
- 2014-08-28 09:44 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
- 2014-08-23 12:28 - 2014-08-23 12:28 - 00000000 ____D () C:\Users\User\Documents\My Cheat Tables
- 2014-08-23 12:27 - 2014-08-23 12:27 - 03760919 _____ () C:\Users\User\Desktop\b0rderlands218trainer.zip
- 2014-08-23 12:26 - 2014-08-23 12:27 - 03760919 _____ () C:\Users\User\Downloads\b0rderlands218trainer.zip
- ==================== One Month Modified Files and Folders =======
- (If an entry is included in the fixlist, the file\folder will be moved.)
- 2014-09-22 18:57 - 2014-08-02 08:38 - 00018747 _____ () C:\Users\User\Downloads\FRST.txt
- 2014-09-22 18:57 - 2014-08-02 08:38 - 00000000 ____D () C:\FRST
- 2014-09-22 18:55 - 2014-09-22 18:55 - 00000000 ____D () C:\Users\User\Downloads\FRST-OlderVersion
- 2014-09-22 18:55 - 2014-08-02 08:35 - 02105856 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
- 2014-09-22 18:55 - 2014-07-19 12:23 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
- 2014-09-22 18:37 - 2014-08-01 14:27 - 00000000 ____D () C:\Users\User\AppData\Local\LogMeIn Hamachi
- 2014-09-22 18:37 - 2014-07-27 13:04 - 00000000 ____D () C:\Program Files (x86)\Steam
- 2014-09-22 18:31 - 2014-07-27 10:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\TS3Client
- 2014-09-22 18:29 - 2014-07-27 10:50 - 00000000 ____D () C:\Users\User\AppData\Roaming\.minecraft
- 2014-09-22 18:26 - 2011-02-04 19:38 - 00743770 _____ () C:\Windows\system32\perfh015.dat
- 2014-09-22 18:26 - 2011-02-04 19:38 - 00157252 _____ () C:\Windows\system32\perfc015.dat
- 2014-09-22 18:26 - 2009-07-14 07:13 - 01679202 _____ () C:\Windows\system32\PerfStringBackup.INI
- 2014-09-22 18:22 - 2009-07-14 06:45 - 00031280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
- 2014-09-22 18:22 - 2009-07-14 06:45 - 00031280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
- 2014-09-22 18:19 - 2014-07-19 17:37 - 01541000 _____ () C:\Windows\WindowsUpdate.log
- 2014-09-22 18:18 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini
- 2014-09-22 18:14 - 2014-09-22 18:14 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
- 2014-09-22 18:14 - 2014-09-18 18:56 - 00000000 ____D () C:\Users\User\AppData\Local\Overwolf
- 2014-09-22 18:14 - 2014-09-10 19:58 - 00002513 _____ () C:\Windows\setupact.log
- 2014-09-22 18:14 - 2014-09-10 19:57 - 00009418 _____ () C:\Windows\PFRO.log
- 2014-09-22 18:14 - 2014-07-27 22:47 - 00000000 ____D () C:\Users\User\AppData\Local\screenSHU
- 2014-09-22 18:14 - 2014-07-19 12:09 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
- 2014-09-22 18:14 - 2014-07-19 12:03 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- 2014-09-22 18:14 - 2014-07-19 11:54 - 00000000 ____D () C:\ProgramData\NVIDIA
- 2014-09-22 18:14 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
- 2014-09-22 10:15 - 2014-07-19 12:03 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- 2014-09-20 13:59 - 2014-08-01 14:39 - 00000472 __RSH () C:\ProgramData\ntuser.pol
- 2014-09-20 13:34 - 2014-09-19 12:30 - 00000000 ____D () C:\Program Files (x86)\SunriseBrowse
- 2014-09-20 13:34 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
- 2014-09-20 07:30 - 2014-09-17 13:22 - 00000000 ____D () C:\Users\User\Desktop\Virtual Audio Cable 4.10
- 2014-09-19 12:36 - 2014-09-19 12:36 - 91931728 _____ (The GIMP Team ) C:\Users\User\Downloads\gimp-2.8.14-setup-1.exe
- 2014-09-19 12:29 - 2014-09-19 12:29 - 00747456 _____ ( ) C:\Users\User\Downloads\GIMP(13219)-dp (1).exe
- 2014-09-19 12:28 - 2014-09-19 12:28 - 00747456 _____ ( ) C:\Users\User\Downloads\GIMP(13219)-dp.exe
- 2014-09-18 19:06 - 2014-09-19 12:35 - 00044696 _____ (StdLib) C:\Windows\system32\Drivers\{fef7f75c-f985-4250-96f9-8183cd04238b}Gw64.sys
- 2014-09-18 19:00 - 2014-09-18 19:00 - 00003726 _____ () C:\Windows\System32\Tasks\Overwolf Updater Task
- 2014-09-18 19:00 - 2014-09-18 19:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
- 2014-09-18 19:00 - 2014-09-18 19:00 - 00000000 ____D () C:\ProgramData\Overwolf
- 2014-09-18 19:00 - 2014-07-27 11:46 - 00000000 ____D () C:\Program Files (x86)\Overwolf
- 2014-09-18 18:49 - 2014-09-18 18:49 - 12984745 _____ () C:\Users\User\Downloads\Nodus_2.0-1.7.x.zip
- 2014-09-18 17:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
- 2014-09-17 13:27 - 2014-08-08 18:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\Winamp
- 2014-09-17 13:24 - 2014-09-17 13:23 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
- 2014-09-17 13:23 - 2014-09-17 13:23 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
- 2014-09-17 13:23 - 2014-09-17 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
- 2014-09-17 13:22 - 2014-09-17 13:22 - 00380021 _____ () C:\Users\User\Downloads\Virtual Audio Cable 4.10.rar
- 2014-09-17 12:41 - 2012-05-23 03:55 - 00000000 ____D () C:\Users\User\Desktop\SkyBlock3.0
- 2014-09-17 11:33 - 2014-07-27 11:24 - 00003882 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1406453070
- 2014-09-17 11:33 - 2014-07-27 11:24 - 00000000 ____D () C:\Program Files (x86)\Opera
- 2014-09-15 18:22 - 2014-08-13 13:56 - 00000000 ____D () C:\Users\User\Desktop\SkyBlock1.1
- 2014-09-14 14:20 - 2014-08-12 11:30 - 00000000 ____D () C:\Users\User\Desktop\HLDJ
- 2014-09-13 18:45 - 2014-09-13 18:45 - 00048733 _____ () C:\Users\User\Downloads\8.New ! AVA ! _@.rar
- 2014-09-13 18:43 - 2014-09-13 18:43 - 00003962 _____ () C:\Users\User\Downloads\AdminIcons.rar
- 2014-09-13 18:41 - 2014-09-13 18:41 - 00351087 _____ () C:\Users\User\Downloads\25-TeamSpeak-Rank-Icons-v1.01.zip
- 2014-09-13 18:39 - 2014-09-13 18:39 - 00119019 _____ () C:\Users\User\Downloads\Free Rank Icons 16x16.rar
- 2014-09-13 18:38 - 2014-09-13 18:38 - 00100830 _____ () C:\Users\User\Downloads\CF Rank Icon Pack Download.rar
- 2014-09-13 18:38 - 2014-09-13 18:38 - 00040770 _____ () C:\Users\User\Downloads\Ikony_Ts3_by_Krad90.rar
- 2014-09-12 13:20 - 2014-07-19 12:04 - 00002199 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
- 2014-09-11 20:08 - 2014-07-27 13:30 - 00000000 ____D () C:\Users\User\Desktop\Nowy folder
- 2014-09-10 19:58 - 2014-09-10 19:58 - 00000000 _____ () C:\Windows\setuperr.log
- 2014-09-10 19:50 - 2014-07-19 12:02 - 01650872 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
- 2014-09-10 19:48 - 2014-07-28 07:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
- 2014-09-10 19:03 - 2014-08-02 12:52 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
- 2014-09-10 19:03 - 2014-07-19 18:34 - 00000000 ____D () C:\Windows\Panther
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
- 2014-09-10 19:02 - 2014-09-10 19:02 - 00000000 ____D () C:\Program Files\CCleaner
- 2014-09-10 18:50 - 2014-09-10 18:44 - 04901352 _____ (Piriform Ltd) C:\Users\User\Downloads\ccsetup417.exe
- 2014-09-10 18:38 - 2014-08-01 19:50 - 00007597 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
- 2014-09-10 08:56 - 2014-07-19 12:23 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
- 2014-09-10 08:56 - 2014-07-19 12:23 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
- 2014-09-10 08:56 - 2014-07-19 12:23 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
- 2014-09-08 19:09 - 2014-09-08 19:05 - 04763639 _____ () C:\Users\User\Downloads\3487311 (1).mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:05 - 04505219 _____ () C:\Users\User\Downloads\3487311 (2).mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:05 - 04303739 _____ () C:\Users\User\Downloads\3487311.mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:05 - 04144599 _____ () C:\Users\User\Downloads\3487311 (3).mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:04 - 07479240 _____ () C:\Users\User\Downloads\3486302 (4).mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:04 - 07352220 _____ () C:\Users\User\Downloads\3486302 (5).mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:03 - 11070988 _____ () C:\Users\User\Downloads\3486302.mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:03 - 09456080 _____ () C:\Users\User\Downloads\3486302 (3).mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:03 - 09219560 _____ () C:\Users\User\Downloads\3486302 (1).mp4.opdownload
- 2014-09-08 19:09 - 2014-09-08 19:03 - 09181600 _____ () C:\Users\User\Downloads\3486302 (2).mp4.opdownload
- 2014-09-06 00:01 - 2014-09-06 00:01 - 00102218 _____ () C:\Users\User\Downloads\EpicBossRecoded.jar
- 2014-09-05 19:12 - 2014-09-05 19:11 - 05933836 _____ () C:\Users\User\Downloads\Huzuni 3.3.2.zip
- 2014-09-05 04:10 - 2014-09-10 19:08 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
- 2014-09-05 04:05 - 2014-09-10 19:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
- 2014-09-04 20:23 - 2014-09-04 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
- 2014-09-04 20:23 - 2014-09-04 20:23 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
- 2014-09-01 18:13 - 2014-09-01 18:13 - 00000000 ____D () C:\Users\User\AppData\Roaming\Unity
- 2014-09-01 18:01 - 2014-09-01 18:01 - 00000000 ____D () C:\Users\User\AppData\Roaming\.mono
- 2014-09-01 17:59 - 2014-09-01 17:59 - 00000000 ____D () C:\Users\User\AppData\Local\Unity
- 2014-09-01 17:59 - 2014-09-01 17:58 - 06244360 _____ (Unity Technologies ApS) C:\Users\User\Downloads\UnityWebPlayerFull.exe
- 2014-08-29 20:02 - 2014-08-29 20:01 - 00000000 ____D () C:\Users\User\AppData\Local\Skyrim
- 2014-08-29 19:59 - 2014-08-22 12:23 - 00000000 ____D () C:\Users\User\Documents\My Games
- 2014-08-29 19:50 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
- 2014-08-29 09:00 - 2009-07-14 06:45 - 00414656 _____ () C:\Windows\system32\FNTCACHE.DAT
- 2014-08-25 06:53 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
- 2014-08-23 12:28 - 2014-08-23 12:28 - 00000000 ____D () C:\Users\User\Documents\My Cheat Tables
- 2014-08-23 12:27 - 2014-08-23 12:27 - 03760919 _____ () C:\Users\User\Desktop\b0rderlands218trainer.zip
- 2014-08-23 12:27 - 2014-08-23 12:26 - 03760919 _____ () C:\Users\User\Downloads\b0rderlands218trainer.zip
- 2014-08-23 04:07 - 2014-08-28 09:44 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
- 2014-08-23 03:45 - 2014-08-28 09:44 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
- 2014-08-23 02:59 - 2014-08-28 09:44 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
- Some content of TEMP:
- ====================
- C:\Users\User\AppData\Local\Temp\Quarantine.exe
- ==================== Bamital & volsnap Check =================
- (There is no automatic fix for files that do not pass verification.)
- C:\Windows\System32\winlogon.exe => File is digitally signed
- C:\Windows\System32\wininit.exe => File is digitally signed
- C:\Windows\SysWOW64\wininit.exe => File is digitally signed
- C:\Windows\explorer.exe => File is digitally signed
- C:\Windows\SysWOW64\explorer.exe => File is digitally signed
- C:\Windows\System32\svchost.exe => File is digitally signed
- C:\Windows\SysWOW64\svchost.exe => File is digitally signed
- C:\Windows\System32\services.exe => File is digitally signed
- C:\Windows\System32\User32.dll => File is digitally signed
- C:\Windows\SysWOW64\User32.dll => File is digitally signed
- C:\Windows\System32\userinit.exe => File is digitally signed
- C:\Windows\SysWOW64\userinit.exe => File is digitally signed
- C:\Windows\System32\rpcss.dll => File is digitally signed
- C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
- LastRegBack: 2014-09-10 09:10
- ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement