API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 27th, 2015
1,224
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 73.10 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-04-2015 01
  2. Ran by Evan (administrator) on EVAN-PC on 28-04-2015 08:11:42
  3. Running from D:\Users\Evan\Downloads
  4. Loaded Profiles: Evan (Available profiles: Evan & Oliver & paul)
  5. Platform: Windows 8 Pro (X64) OS Language: English (United States)
  6. Internet Explorer Version 10 (Default browser: Chrome)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  15. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  16. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  17. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  18. (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
  19. (Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
  20. (Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
  21. (Microsoft Corporation) C:\Windows\System32\wlanext.exe
  22. (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
  23. (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
  24. (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  25. (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
  26. (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
  27. (Microsoft Corporation) C:\Windows\System32\dasHost.exe
  28. (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
  29. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
  30. (Mediafour Corporation) C:\Program Files\Mediafour\MacDrive 9\MacDrive9Service.exe
  31. (Nitro PDF Software) C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
  32. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  33. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
  34. () C:\Windows\SysWOW64\PnkBstrA.exe
  35. (Paramount Software UK Ltd) C:\Program Files\Macrium\Reflect\ReflectService.exe
  36. (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
  37. (A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
  38. (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
  39. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  40. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
  41. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
  42. (TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
  43. (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
  44. (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
  45. (TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
  46. (Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
  47. (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
  48. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  49. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
  50. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  51. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
  52. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
  53. (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
  54. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  55. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  56. (Microsoft Corporation) C:\Windows\System32\rundll32.exe
  57. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  58. (Mediafour Corporation) C:\Program Files\Mediafour\MacDrive 9\MacDrive.exe
  59. (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
  60. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
  61. (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
  62. () C:\Program Files (x86)\puush\puush.exe
  63. (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
  64. (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  65. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  66. (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
  67. (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
  68. (Microsoft Corporation) C:\Windows\System32\StikyNot.exe
  69. (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
  70. (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
  71. (Dropbox, Inc.) D:\Users\Evan\AppData\Roaming\Dropbox\bin\Dropbox.exe
  72. () C:\Program Files\Rainmeter\Rainmeter.exe
  73. () C:\Program Files (x86)\Everything\Everything.exe
  74. (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
  75. (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
  76. (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
  77. (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
  78. (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
  79. (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
  80. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
  81. (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
  82. (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
  83. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
  84. (Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
  85. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  86. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  87. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  88. (Microsoft Corporation) C:\Windows\System32\cmd.exe
  89. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  90. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  91. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  92. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  93. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  94. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  95. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  96. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  97. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  98. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  99. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  100. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  101. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  102. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  103.  
  104.  
  105. ==================== Registry (Whitelisted) ==================
  106.  
  107. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  108.  
  109. HKLM\...\Run: [Fences] => C:\Program Files (x86)\Stardock\Fences\Fences.exe [4017368 2012-10-30] (Stardock Corporation)
  110. HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
  111. HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
  112. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
  113. HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2465088 2014-11-18] (NVIDIA Corporation)
  114. HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
  115. HKLM\...\Run: [MacDrive 9 application] => C:\Program Files\Mediafour\MacDrive 9\MacDrive.exe [516480 2014-03-24] (Mediafour Corporation)
  116. HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-15] (Logitech Inc.)
  117. HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [602624 2009-03-13] ()
  118. HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
  119. HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-22] (Apple Inc.)
  120. HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
  121. HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
  122. HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
  123. HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-06] (Adobe Systems Incorporated)
  124. HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-06] (Adobe Systems Inc.)
  125. HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
  126. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [442200 2013-09-28] (Razer Inc.)
  127. HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
  128. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  129. HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [130048 2015-04-10] (Avira Operations GmbH & Co. KG)
  130. HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [726320 2015-03-24] (Avira Operations GmbH & Co. KG)
  131. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2889408 2015-04-14] (Valve Corporation)
  132. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [Spotify Web Helper] => d:\Users\Evan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-19] (Spotify Ltd)
  133. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [CoolerMaster Trigger] => C:\Program Files (x86)\Cooler Master\CM Storm Trigger\CMTrigger.exe [528896 2012-06-15] (Cooler Master)
  134. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [568904 2015-03-30] ()
  135. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [uTorrent] => d:\Users\Evan\AppData\Roaming\uTorrent\uTorrent.exe [1268816 2014-04-20] (BitTorrent Inc.)
  136. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [6886752 2015-01-07] (Binary Fortress Software)
  137. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2013-10-16] (Sandboxie Holdings, LLC)
  138. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [f.lux] => d:\Users\Evan\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-16] (Flux Software LLC)
  139. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [405504 2012-07-26] (Microsoft Corporation)
  140. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
  141. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
  142. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SOLARW~1.SCR [237568 2005-03-20] ()
  143. AppInit_DLLs-x32: 婢￿Ȇ噎䵒 => "婢￿Ȇ噎䵒" File Not Found
  144. IFEO\Acrobat.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
  145. IFEO\acrodist.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
  146. IFEO\formdesigner.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
  147. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoPro Importer.lnk [2015-04-11]
  148. ShortcutTarget: GoPro Importer.lnk -> C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe (GoPro)
  149. Startup: d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-09-20]
  150. ShortcutTarget: Dropbox.lnk -> d:\Users\Evan\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
  151. Startup: d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2013-06-24]
  152. ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
  153. Startup: d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Fences.lnk [2013-05-18]
  154. ShortcutTarget: Fences.lnk -> C:\Program Files (x86)\Stardock\Fences\Fences.exe (Stardock Corporation)
  155. Startup: d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2014-06-15]
  156. ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
  157. Startup: d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2015-01-26]
  158. ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
  159. Startup: d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype (inver).lnk [2014-05-28]
  160. ShortcutTarget: Skype (inver).lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
  161. Startup: d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk [2014-11-06]
  162. ShortcutTarget: Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
  163. ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
  164. ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
  165. ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
  166. ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
  167. ShellIconOverlayIdentifiers: [MacDriveVolumeIcon] -> {6B21AF46-EE37-40D0-A707-C06C17D06CE9} => C:\Program Files\Mediafour\MacDrive 9\MDVolumeIcons.dll [2013-11-01] (Mediafour Corporation)
  168. ShellIconOverlayIdentifiers: [MacDriveVolumeIconReadOnly] -> {E9BC4DCA-0A4E-4C65-9D40-621C9D0CDC5F} => C:\Program Files\Mediafour\MacDrive 9\MDVolumeIcons.dll [2013-11-01] (Mediafour Corporation)
  169. ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
  170. ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
  171. ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
  172. ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => d:\Users\Evan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
  173. BootExecute:
  174.  
  175. ==================== Internet (Whitelisted) ====================
  176.  
  177. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  178.  
  179. ProxyServer: [S-1-5-21-3404405384-2698542967-1238645643-1001] => http=127.0.0.1:8888;https=127.0.0.1:8888
  180. HKU\S-1-5-21-3404405384-2698542967-1238645643-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.ninemsn.com.au/?ocid=iehp
  181. BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-09-25] (Microsoft Corporation)
  182. BHO: iMacros Browser Helper Object -> {34D5A80A-992D-4F07-9509-66E9E133BAAF} -> C:\Program Files\iOpus\iMacros\iMacrosBHO.dll [2014-02-11] ()
  183. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-05-24] (Oracle Corporation)
  184. BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-09-16] (Microsoft Corporation)
  185. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-05-24] (Oracle Corporation)
  186. BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-24] (Adobe Systems Incorporated)
  187. BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-09-25] (Microsoft Corporation)
  188. BHO-x32: iMacros Browser Helper Object -> {34D5A80A-992D-4F07-9509-66E9E133BAAF} -> C:\Program Files (x86)\iOpus\iMacros\iMacrosBHO.dll [2014-02-11] ()
  189. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08] (Oracle Corporation)
  190. BHO-x32: Microsoft Web Test Recorder 10.0 Helper -> {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} -> C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2012-07-26] (Microsoft Corporation)
  191. BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2013-07-23] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
  192. BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-06] (Adobe Systems Incorporated)
  193. BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-09-16] (Microsoft Corporation)
  194. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08] (Oracle Corporation)
  195. BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-06] (Adobe Systems Incorporated)
  196. Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-06] (Adobe Systems Incorporated)
  197. Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation)
  198. Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
  199. Winsock: Catalog5 09 C:\Windows\SysWOW64\PrxerNsp.dll [56424 2014-05-17] ()
  200. Winsock: Catalog9 01 C:\Windows\SysWOW64\PrxerDrv.dll [70248 2014-05-17] (Initex)
  201. Winsock: Catalog9 02 C:\Windows\SysWOW64\PrxerDrv.dll [70248 2014-05-17] (Initex)
  202. Winsock: Catalog9 03 C:\Windows\SysWOW64\PrxerDrv.dll [70248 2014-05-17] (Initex)
  203. Winsock: Catalog9 04 C:\Windows\SysWOW64\PrxerDrv.dll [70248 2014-05-17] (Initex)
  204. Winsock: Catalog9 16 C:\Windows\SysWOW64\PrxerDrv.dll [70248 2014-05-17] (Initex)
  205. Winsock: Catalog5-x64 09 C:\Windows\system32\PrxerNsp.dll [56936 2014-05-17] ()
  206. Winsock: Catalog9-x64 01 C:\Windows\system32\PrxerDrv.dll [76392 2014-05-17] (Initex)
  207. Winsock: Catalog9-x64 02 C:\Windows\system32\PrxerDrv.dll [76392 2014-05-17] (Initex)
  208. Winsock: Catalog9-x64 03 C:\Windows\system32\PrxerDrv.dll [76392 2014-05-17] (Initex)
  209. Winsock: Catalog9-x64 04 C:\Windows\system32\PrxerDrv.dll [76392 2014-05-17] (Initex)
  210. Winsock: Catalog9-x64 16 C:\Windows\system32\PrxerDrv.dll [76392 2014-05-17] (Initex)
  211. Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
  212. Tcpip\Parameters: [DhcpNameServer] 211.29.132.12 198.142.0.51 198.142.235.14
  213. Tcpip\..\Interfaces\{7164C414-3568-45FE-8CC8-6DECA7EE0322}: [NameServer] 103.1.187.68,54.252.112.136
  214.  
  215. FireFox:
  216. ========
  217. FF ProfilePath: d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default
  218. FF NetworkProxy: "gopher", "115.239.210.199"
  219. FF NetworkProxy: "gopher_port", 80
  220. FF NetworkProxy: "http_port", 8080
  221. FF NetworkProxy: "socks", "127.0.0.1"
  222. FF NetworkProxy: "socks_port", 1080
  223. FF NetworkProxy: "socks_remote_dns", true
  224. FF NetworkProxy: "type", 0
  225. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll [2014-09-06] ()
  226. FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
  227. FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll [2013-05-24] (Oracle Corporation)
  228. FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-05-24] (Oracle Corporation)
  229. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
  230. FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
  231. FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll [2013-12-04] (Skype)
  232. FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
  233. FF Plugin-x32: @abr.gov.au/KeyMgmtPlugin -> C:\Program Files (x86)\ABR\Plug-In\bin\npAUSkeyPlugin.dll [2012-10-25] (Commonwealth Government of Australia)
  234. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll [2014-09-06] ()
  235. FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1206147.dll [2013-11-25] (Adobe Systems, Inc.)
  236. FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-04-08] ()
  237. FF Plugin-x32: @esn/esnlaunch,version=2.1.7 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
  238. FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll No File
  239. FF Plugin-x32: @esn/npbattlelog,version=2.3.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll No File
  240. FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll No File
  241. FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
  242. FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-07] (Google, Inc.)
  243. FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-10-08] (Oracle Corporation)
  244. FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-10-08] (Oracle Corporation)
  245. FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-10-17] (Microsoft Corporation)
  246. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
  247. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
  248. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
  249. FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [2013-07-26] (Nitro PDF)
  250. FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-11-13] (NVIDIA Corporation)
  251. FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-11-13] (NVIDIA Corporation)
  252. FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
  253. FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll [2013-12-04] (Skype)
  254. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
  255. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
  256. FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-28] (VideoLAN)
  257. FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-06] (Adobe Systems Inc.)
  258. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
  259. FF Plugin HKU\S-1-5-21-3404405384-2698542967-1238645643-1001: @unity3d.com/UnityPlayer,version=1.0 -> d:\Users\Evan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-23] (Unity Technologies ApS)
  260. FF user.js: detected! => d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\user.js [2014-02-20]
  261. FF user.js: detected! => d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\l676emaa.2\user.js [2014-02-20]
  262. FF user.js: detected! => d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\98ghisk6.3\user.js [2014-02-20]
  263. FF user.js: detected! => d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\xnk5yor0.4\user.js [2014-02-20]
  264. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2013-10-17] (Microsoft Corporation)
  265. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2011-09-06] (Adobe Systems Inc.)
  266. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2013-06-13] (Apple Inc.)
  267. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2013-06-13] (Apple Inc.)
  268. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2013-06-13] (Apple Inc.)
  269. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2013-06-13] (Apple Inc.)
  270. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2013-06-13] (Apple Inc.)
  271. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll [2013-06-13] (Apple Inc.)
  272. FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll [2013-06-13] (Apple Inc.)
  273. FF Extension: Avira Browser Safety - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\abs@avira.com [2015-04-27]
  274. FF Extension: FoxyProxy Standard - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\foxyproxy@eric.h.jung [2015-04-25]
  275. FF Extension: iMacros for Firefox - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2015-04-25]
  276. FF Extension: Tamper Data icon - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\fermmm@gmail.com.xpi [2013-07-03]
  277. FF Extension: Imgur Uploader - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\giorgio@gilestro.tk.xpi [2013-07-15]
  278. FF Extension: TS Magic Player - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\magicplayer@torrentstream.org.xpi [2014-05-25]
  279. FF Extension: HTML Regex Data Extractor - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\regex_html@iamhuy.com.xpi [2014-04-29]
  280. FF Extension: Tamper Data - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2013-07-03]
  281. FF Extension: User Agent Switcher - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\fz3zx0jm.default\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2013-10-06]
  282. FF Extension: iMacros for Firefox - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\l676emaa.2\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2014-04-30]
  283. FF Extension: Tamper Data icon - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\l676emaa.2\Extensions\fermmm@gmail.com.xpi [2014-04-30]
  284. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\l676emaa.2\Extensions\giorgio@gilestro.tk.xpi [2014-04-30]
  285. FF Extension: HTML Regex Data Extractor - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\l676emaa.2\Extensions\regex_html@iamhuy.com.xpi [2014-04-30]
  286. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\l676emaa.2\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2014-04-30]
  287. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\l676emaa.2\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2014-04-30]
  288. FF Extension: iMacros for Firefox - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\98ghisk6.3\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2014-04-30]
  289. FF Extension: Tamper Data icon - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\98ghisk6.3\Extensions\fermmm@gmail.com.xpi [2014-04-30]
  290. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\98ghisk6.3\Extensions\giorgio@gilestro.tk.xpi [2014-04-30]
  291. FF Extension: HTML Regex Data Extractor - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\98ghisk6.3\Extensions\regex_html@iamhuy.com.xpi [2014-04-30]
  292. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\98ghisk6.3\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2014-04-30]
  293. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\98ghisk6.3\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2014-04-30]
  294. FF Extension: iMacros for Firefox - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\xnk5yor0.4\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2014-04-30]
  295. FF Extension: Tamper Data icon - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\xnk5yor0.4\Extensions\fermmm@gmail.com.xpi [2014-04-30]
  296. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\xnk5yor0.4\Extensions\giorgio@gilestro.tk.xpi [2014-04-30]
  297. FF Extension: HTML Regex Data Extractor - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\xnk5yor0.4\Extensions\regex_html@iamhuy.com.xpi [2014-04-30]
  298. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\xnk5yor0.4\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2014-04-30]
  299. FF Extension: No Name - d:\Users\Evan\AppData\Roaming\Mozilla\Firefox\Profiles\xnk5yor0.4\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2014-04-30]
  300. FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
  301. FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-06-04]
  302. FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
  303. FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-04-04]
  304.  
  305. Chrome:
  306. =======
  307. CHR Profile: d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Default
  308. CHR Extension: (LastPass: Free Password Manager) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-04-28]
  309. CHR Extension: (Chrome Hotword Shared Module) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-05]
  310. CHR Extension: (Dark Horizon) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncjjeokpcnllmmbbipeaagmdpdpiadin [2014-12-13]
  311. CHR Extension: (Google Wallet) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
  312. CHR Profile: d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 1
  313. CHR Extension: (Docs) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2013-07-07]
  314. CHR Extension: (Google Drive) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-07]
  315. CHR Extension: (YouTube) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-07]
  316. CHR Extension: (Google Search) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-07]
  317. CHR Extension: (DDownlouad keeper) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\giadkacokdlpnbbiilkodcbelejdmkcj [2013-10-15]
  318. CHR Extension: (Gmail) - d:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-07]
  319. CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
  320. CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
  321.  
  322. ==================== Services (Whitelisted) =================
  323.  
  324. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  325.  
  326. S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [815920 2015-03-24] (Avira Operations GmbH & Co. KG)
  327. R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [434424 2015-03-24] (Avira Operations GmbH & Co. KG)
  328. R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [434424 2015-03-24] (Avira Operations GmbH & Co. KG)
  329. S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1004280 2015-03-24] (Avira Operations GmbH & Co. KG)
  330. R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [205104 2015-04-10] (Avira Operations GmbH & Co. KG)
  331. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [967040 2015-03-22] ()
  332. S2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\42.0.2311.39\remoting_host.exe [56648 2015-03-08] (Google Inc.)
  333. R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [3169648 2015-01-07] (Binary Fortress Software)
  334. S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [174624 2015-01-13] (EasyAntiCheat Ltd)
  335. S3 fussvc; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation) [File not signed]
  336. S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2013-10-04] (Futuremark)
  337. R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-11-18] (NVIDIA Corporation)
  338. R2 MacDrive9Service; C:\Program Files\Mediafour\MacDrive 9\MacDrive9Service.exe [187256 2014-03-24] (Mediafour Corporation)
  339. S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-09-25] ()
  340. R2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-07-26] (Nitro PDF Software)
  341. R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-11-18] (NVIDIA Corporation)
  342. R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19821376 2014-11-18] (NVIDIA Corporation)
  343. S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38200 2015-03-20] (The OpenVPN Project)
  344. S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-03] (Electronic Arts)
  345. S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-08-22] (Overwolf Ltd)
  346. R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-06-28] ()
  347. R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-04] ()
  348. R2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [3272656 2014-07-21] (Paramount Software UK Ltd)
  349. S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
  350. R2 RzMaelstromVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe [4241920 2013-09-18] (A-Volute) [File not signed]
  351. R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [186056 2013-10-16] (Sandboxie Holdings, LLC)
  352. R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [143288 2014-06-19] (Stardock Software, Inc)
  353. S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
  354. S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation) [File not signed]
  355. R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5448464 2015-03-30] (TeamViewer GmbH)
  356. R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2365792 2012-09-17] (TuneUp Software)
  357. S3 WinAutomation Service; C:\Program Files\WinAutomation\WinAutomation.ServiceAgent.exe [252016 2014-02-13] (Softomotive)
  358. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
  359. R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [1153840 2012-09-25] (Intel® Corporation)
  360.  
  361. ==================== Drivers (Whitelisted) ====================
  362.  
  363. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  364.  
  365. R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
  366. R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [128536 2015-03-24] (Avira Operations GmbH & Co. KG)
  367. R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132120 2015-03-24] (Avira Operations GmbH & Co. KG)
  368. R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-03-24] (Avira Operations GmbH & Co. KG)
  369. R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-03-24] (Avira Operations GmbH & Co. KG)
  370. R1 CBDisk; C:\Windows\system32\drivers\CBDisk.sys [70344 2011-05-06] (EldoS Corporation)
  371. S3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-31] (Logitech Inc.)
  372. S3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [52128 2013-11-27] (Visicom Media Inc.)
  373. S3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [35232 2013-12-06] (Visicom Media Inc.)
  374. R0 MDFSYSNT; C:\Windows\System32\Drivers\MDFSYSNT.sys [331592 2014-03-20] (Mediafour Corporation)
  375. R0 MDPMGRNT; C:\Windows\System32\DRIVERS\MDPMGRNT.SYS [41800 2013-11-04] (Mediafour Corporation)
  376. R0 MDRAID; C:\Windows\System32\drivers\MDRAID.sys [188776 2013-08-01] (Mediafour Corporation)
  377. R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [4309032 2012-10-11] (Intel Corporation)
  378. R2 NPF; C:\Windows\System32\drivers\NPF.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
  379. R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20800 2014-11-18] (NVIDIA Corporation)
  380. R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38216 2014-10-04] (NVIDIA Corporation)
  381. R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39096 2013-09-13] (Razer Inc)
  382. R3 RZMAELSTROMVADService; C:\Windows\system32\drivers\RzMaelstromVAD.sys [40696 2013-09-18] (Windows (R) Win 7 DDK provider)
  383. R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [200552 2013-10-16] (Sandboxie Holdings, LLC)
  384. R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
  385. S3 STTub30; C:\Windows\System32\Drivers\STTub30.sys [44184 2012-07-20] (STMicroelectronics)
  386. S3 tapoas; C:\Windows\system32\DRIVERS\tapoas.sys [26624 2014-05-07] (The OpenVPN Project)
  387. U3 TrueSight; C:\Windows\System32\Drivers\TrueSight.sys [35064 2015-04-28] ()
  388. R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-08-29] (TuneUp Software)
  389. S3 VSPerfDrv110; C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-13] (Microsoft Corporation)
  390. S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
  391. S3 CV2K1; \SystemRoot\system32\DRIVERS\cv2k1.sys [X]
  392. S3 gdrv; \??\C:\Windows\gdrv.sys [X]
  393.  
  394. ==================== NetSvcs (Whitelisted) ===================
  395.  
  396. (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
  397.  
  398.  
  399. ==================== One Month Created Files and Folders ========
  400.  
  401. (If an entry is included in the fixlist, the file\folder will be moved.)
  402.  
  403. 2015-04-28 00:32 - 2015-04-28 00:32 - 01122824 _____ () d:\Users\Evan\Desktop\XBL Code Checker_locked.zip
  404. 2015-04-28 00:23 - 2015-04-28 00:39 - 00000000 ____D () C:\ProgramData\RogueKiller
  405. 2015-04-28 00:23 - 2015-04-28 00:23 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
  406. 2015-04-28 00:22 - 2015-04-28 00:22 - 16873560 _____ () d:\Users\Evan\Downloads\RogueKiller.exe
  407. 2015-04-28 00:02 - 2015-04-28 00:02 - 04197016 _____ (Kaspersky Lab ZAO) d:\Users\Evan\Downloads\tdsskiller.exe
  408. 2015-04-28 00:00 - 2015-04-28 00:01 - 00115668 _____ () d:\Users\Evan\Downloads\Addition.txt
  409. 2015-04-27 23:59 - 2015-04-28 08:11 - 00000000 _____ () d:\Users\Evan\Downloads\FRST.txt
  410. 2015-04-27 23:58 - 2015-04-28 08:11 - 00000000 ____D () C:\FRST
  411. 2015-04-27 23:57 - 2015-04-27 23:57 - 02100736 _____ (Farbar) d:\Users\Evan\Downloads\FRST64.exe
  412. 2015-04-27 23:41 - 2015-04-27 23:41 - 00402944 _____ (Farbar) d:\Users\Evan\Downloads\MiniToolBox.exe
  413. 2015-04-27 23:41 - 2015-04-27 23:41 - 00060060 _____ () d:\Users\Evan\Downloads\Result.txt
  414. 2015-04-27 23:27 - 2015-04-27 23:27 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Avira
  415. 2015-04-27 23:26 - 2015-03-24 14:59 - 00132120 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
  416. 2015-04-27 23:26 - 2015-03-24 14:59 - 00128536 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
  417. 2015-04-27 23:26 - 2015-03-24 14:59 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
  418. 2015-04-27 23:26 - 2015-03-24 14:59 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
  419. 2015-04-27 23:22 - 2015-04-27 23:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
  420. 2015-04-27 23:22 - 2015-04-27 23:26 - 00000000 ____D () C:\ProgramData\Avira
  421. 2015-04-27 23:22 - 2015-04-27 23:26 - 00000000 ____D () C:\Program Files (x86)\Avira
  422. 2015-04-27 23:22 - 2015-04-27 23:22 - 00001077 _____ () d:\Users\Public\Desktop\Avira.lnk
  423. 2015-04-27 23:21 - 2015-04-27 23:21 - 04636584 _____ (Avira Operations GmbH & Co. KG) d:\Users\Evan\Downloads\avira_en_av_553e37b06554f__ws.exe
  424. 2015-04-27 22:58 - 2015-04-27 22:58 - 00000978 _____ () d:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
  425. 2015-04-27 01:22 - 2015-04-27 01:22 - 00009839 _____ () d:\Users\Evan\Downloads\MonsterFaucetTest.zip
  426. 2015-04-27 01:22 - 2015-04-27 01:22 - 00000000 ____D () d:\Users\Evan\Desktop\MonsterFaucet
  427. 2015-04-26 22:10 - 2015-04-26 22:10 - 00156336 _____ () d:\Users\Evan\Downloads\English-Intro.pages
  428. 2015-04-26 19:19 - 2015-04-26 19:20 - 00000000 ____D () d:\Users\Evan\Desktop\MyIdol 3D
  429. 2015-04-26 18:27 - 2015-04-26 18:27 - 00015501 _____ () d:\Users\Evan\Desktop\view-source_idol.faceii.com_share_plat.html
  430. 2015-04-26 18:27 - 2015-04-26 18:27 - 00000000 ____D () d:\Users\Evan\Desktop\myidol
  431. 2015-04-26 14:17 - 2015-04-26 14:17 - 00000000 ____D () C:\Program Files\Rockstar Games
  432. 2015-04-26 14:17 - 2015-04-26 14:17 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
  433. 2015-04-26 11:57 - 2015-04-28 07:31 - 00149830 _____ () C:\Windows\PFRO.log
  434. 2015-04-26 11:57 - 2015-04-26 11:57 - 05140000 _____ () C:\Windows\system32\FNTCACHE.DAT
  435. 2015-04-25 14:45 - 2015-04-25 14:45 - 00177185 _____ () d:\Users\Evan\Downloads\2015_hamlet_task_prep2.pptx
  436. 2015-04-25 13:42 - 2015-04-25 22:02 - 00000000 _____ () d:\Users\Evan\Desktop\new 2311.txt
  437. 2015-04-25 13:36 - 2015-04-25 13:38 - 00000000 ____D () d:\Users\Evan\Desktop\as
  438. 2015-04-25 13:35 - 2015-04-25 13:35 - 02626222 _____ () d:\Users\Evan\Downloads\oclvanitygen.zip
  439. 2015-04-25 12:42 - 2015-02-18 11:37 - 32108176 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
  440. 2015-04-25 12:42 - 2015-02-18 11:37 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
  441. 2015-04-25 12:42 - 2015-02-18 11:37 - 24768840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
  442. 2015-04-25 12:42 - 2015-02-18 11:37 - 20465808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
  443. 2015-04-25 12:42 - 2015-02-18 11:37 - 13295552 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
  444. 2015-04-25 12:42 - 2015-02-18 11:37 - 13209056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
  445. 2015-04-25 12:42 - 2015-02-18 11:37 - 10774216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
  446. 2015-04-25 12:42 - 2015-02-18 11:37 - 10713768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
  447. 2015-04-25 12:42 - 2015-02-18 11:37 - 10286736 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
  448. 2015-04-25 12:42 - 2015-02-18 11:37 - 03610256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
  449. 2015-04-25 12:42 - 2015-02-18 11:37 - 03247248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
  450. 2015-04-25 12:42 - 2015-02-18 11:37 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434762.dll
  451. 2015-04-25 12:42 - 2015-02-18 11:37 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434762.dll
  452. 2015-04-25 12:42 - 2015-02-18 11:37 - 00995248 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
  453. 2015-04-25 12:42 - 2015-02-18 11:37 - 00969872 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
  454. 2015-04-25 12:42 - 2015-02-18 11:37 - 00943760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
  455. 2015-04-25 12:42 - 2015-02-18 11:37 - 00929936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
  456. 2015-04-25 12:42 - 2015-02-18 11:37 - 00907920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
  457. 2015-04-25 12:42 - 2015-02-18 11:37 - 00877816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
  458. 2015-04-25 12:42 - 2015-02-18 11:37 - 00496456 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
  459. 2015-04-25 12:42 - 2015-02-18 11:37 - 00399504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
  460. 2015-04-25 12:42 - 2015-02-18 11:37 - 00390288 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
  461. 2015-04-25 12:42 - 2015-02-18 11:37 - 00353040 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
  462. 2015-04-25 12:42 - 2015-02-18 11:37 - 00345744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
  463. 2015-04-25 12:42 - 2015-02-18 11:37 - 00305320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
  464. 2015-04-25 12:42 - 2015-02-18 11:37 - 00177440 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
  465. 2015-04-25 12:42 - 2015-02-18 11:37 - 00164752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
  466. 2015-04-25 12:42 - 2015-02-18 11:37 - 00027441 _____ () C:\Windows\system32\nvinfo.pb
  467. 2015-04-25 12:35 - 2015-04-25 12:35 - 00057460 _____ () d:\Users\Evan\Downloads\vnstat_php_frontend-1.5.1.tar.gz
  468. 2015-04-25 12:35 - 2010-03-18 06:43 - 00001624 _____ () d:\Users\Evan\Desktop\README
  469. 2015-04-25 12:24 - 2015-04-25 12:24 - 08232425 _____ (NVIDIA Corporation) d:\Users\Evan\Downloads\cuda_7.0.28_windows_network.exe
  470. 2015-04-25 12:08 - 2015-04-25 13:31 - 00000000 ____D () d:\Users\Evan\Desktop\van
  471. 2015-04-25 12:08 - 2015-04-25 12:08 - 03887754 _____ () d:\Users\Evan\Downloads\vanitygen-0.22-win.zip
  472. 2015-04-25 12:05 - 2015-04-25 12:05 - 00090127 _____ () d:\Users\Evan\Downloads\vanitygen-master.zip
  473. 2015-04-23 08:54 - 2015-04-23 08:55 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\EDF
  474. 2015-04-23 08:53 - 2015-04-23 08:54 - 00000000 ____D () C:\EasyDataFeed
  475. 2015-04-23 08:53 - 2015-04-23 08:53 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Easy Data Feed
  476. 2015-04-23 08:47 - 2015-04-23 08:47 - 01590576 _____ () d:\Users\Evan\Downloads\lxml-3.4.3-cp27-none-win_amd64.whl
  477. 2015-04-23 08:46 - 2015-04-23 08:49 - 38010880 _____ () d:\Users\Evan\Downloads\EDF.msi
  478. 2015-04-23 08:07 - 2015-04-23 08:39 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\import.io
  479. 2015-04-23 08:07 - 2015-04-23 08:39 - 00000000 ____D () d:\Users\Evan\AppData\Local\eclipse
  480. 2015-04-23 08:07 - 2015-04-23 08:07 - 00000886 _____ () d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\import.io.lnk
  481. 2015-04-23 08:05 - 2015-04-23 08:07 - 61824416 _____ (import.io ) d:\Users\Evan\Downloads\setup.exe
  482. 2015-04-23 07:21 - 2015-04-23 07:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
  483. 2015-04-23 07:21 - 2015-04-23 07:21 - 00000000 ____D () C:\Program Files (x86)\Git
  484. 2015-04-23 07:12 - 2015-04-23 07:12 - 00000000 ____D () C:\msysgit
  485. 2015-04-23 07:11 - 2015-04-23 07:12 - 03063521 _____ (Oleg N. Scherbakov) d:\Users\Evan\Downloads\msysGit-netinstall-1.9.5-preview20150319.exe
  486. 2015-04-23 06:58 - 2015-04-23 07:05 - 17935569 _____ (The Git Development Community ) d:\Users\Evan\Downloads\Git-1.9.5-preview20150319.exe
  487. 2015-04-23 06:57 - 2015-04-23 06:57 - 00870912 _____ () d:\Users\Evan\Downloads\setup-x86_64.exe
  488. 2015-04-23 06:57 - 2015-04-23 06:57 - 00000000 ____D () C:\cygwin64
  489. 2015-04-23 02:01 - 2015-04-23 08:07 - 00000000 ____D () d:\Users\Evan\.vagrant.d
  490. 2015-04-23 01:56 - 2015-04-23 01:56 - 00000000 ____D () C:\HashiCorp
  491. 2015-04-23 01:45 - 2015-04-23 01:45 - 03817632 _____ () d:\Users\Evan\Downloads\portia-master.zip
  492. 2015-04-23 01:44 - 2015-04-23 01:45 - 00000000 ____D () d:\Users\Evan\Desktop\portia
  493. 2015-04-23 01:28 - 2015-04-23 01:54 - 164315136 _____ () d:\Users\Evan\Downloads\vagrant_1.7.2.msi
  494. 2015-04-23 01:28 - 2015-04-23 01:28 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Visual C++ Compiler Package for Python 2.7
  495. 2015-04-23 01:23 - 2015-04-23 01:24 - 87891968 _____ () d:\Users\Evan\Downloads\VCForPython27.msi
  496. 2015-04-23 01:20 - 2015-04-23 01:21 - 01568200 _____ () d:\Users\Evan\Downloads\libxml2-python-2.7.7.win32-py2.7.exe
  497. 2015-04-23 01:13 - 2015-04-23 01:13 - 00000000 ____D () d:\Users\Evan\AppData\Local\pip
  498. 2015-04-23 00:51 - 2015-04-23 21:21 - 00003943 _____ () d:\Users\Evan\Desktop\ollierexx@hotmail.com.dat
  499. 2015-04-23 00:48 - 2015-04-23 00:48 - 00000000 _____ () d:\Users\Evan\Downloads\download.htm
  500. 2015-04-22 15:26 - 2015-04-22 16:10 - 00001211 _____ () d:\Users\Evan\Desktop\imp.csv
  501. 2015-04-21 23:46 - 2015-04-21 23:46 - 06420600 _____ (Tim Kosse) d:\Users\Evan\Downloads\FileZilla_3.10.3_win64-setup.exe
  502. 2015-04-21 23:45 - 2015-04-21 23:45 - 00049740 _____ () d:\Users\Evan\Downloads\pure-layout-marketing (1).zip
  503. 2015-04-21 23:36 - 2015-04-21 23:36 - 00049740 _____ () d:\Users\Evan\Downloads\pure-layout-marketing.zip
  504. 2015-04-21 23:24 - 2015-04-21 23:24 - 02762210 _____ () d:\Users\Evan\Downloads\bootstrap-3.3.0.zip
  505. 2015-04-21 23:19 - 2015-04-21 23:19 - 01119871 _____ () d:\Users\Evan\Downloads\bootflat.github.io-master (1).zip
  506. 2015-04-21 23:03 - 2015-04-21 23:03 - 01119871 _____ () d:\Users\Evan\Downloads\bootflat.github.io-master.zip
  507. 2015-04-21 23:03 - 2015-04-21 23:03 - 00000000 ____D () d:\Users\Evan\Desktop\bootflat.github.io-master
  508. 2015-04-21 23:02 - 2015-04-21 23:02 - 02218015 _____ () d:\Users\Evan\Downloads\Flatstrap-for-Bootstrap-3-master.zip
  509. 2015-04-21 21:54 - 2015-04-21 21:54 - 00000027 _____ () d:\Users\Evan\Desktop\kj.txt
  510. 2015-04-21 21:48 - 2015-04-21 21:48 - 00048128 _____ () d:\Users\Evan\Downloads\NetflixChecker.exe
  511. 2015-04-21 07:59 - 2015-04-21 07:59 - 00082679 _____ () d:\Users\Evan\Desktop\2666x 'Xbox live 48h' (from Rex).txt
  512. 2015-04-19 14:50 - 2015-04-19 15:19 - 00000000 ____D () d:\Users\Evan\Documents\Clownfish Avatars
  513. 2015-04-19 14:50 - 2015-04-19 14:50 - 00000000 ____D () d:\Users\Evan\Documents\Skype Voice Records
  514. 2015-04-19 14:49 - 2015-04-19 14:49 - 00670532 _____ () d:\Users\Evan\Downloads\clownfish_portable_383.zip
  515. 2015-04-19 14:49 - 2015-04-19 14:49 - 00000000 ____D () d:\Users\Evan\Desktop\clownfish_portable
  516. 2015-04-19 01:28 - 2015-04-19 01:28 - 00000000 ____D () d:\Users\Evan\Downloads\untitled
  517. 2015-04-19 01:01 - 2015-04-19 01:28 - 00005551 _____ () d:\Users\Evan\Downloads\untitled.mcw
  518. 2015-04-19 00:57 - 2015-04-19 00:57 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Macaw
  519. 2015-04-19 00:56 - 2015-04-19 00:56 - 00000670 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macaw.lnk
  520. 2015-04-19 00:56 - 2015-04-19 00:56 - 00000000 ____D () C:\Program Files (x86)\Macaw
  521. 2015-04-19 00:50 - 2015-04-19 00:51 - 42377216 _____ () d:\Users\Evan\Downloads\Macaw1.5.14.msi
  522. 2015-04-18 16:20 - 2015-04-18 16:20 - 17968804 _____ () d:\Users\Evan\Downloads\Fitness - Imgur.zip
  523. 2015-04-16 19:53 - 2015-04-16 19:53 - 00000935 _____ () d:\Users\Evan\Downloads\FiddlerRoot (3).cer
  524. 2015-04-16 19:50 - 2015-04-16 19:53 - 00000935 _____ () d:\Users\Evan\Desktop\FiddlerRoot.cer
  525. 2015-04-16 19:48 - 2015-04-16 19:48 - 00000935 _____ () d:\Users\Evan\Downloads\FiddlerRoot (2).cer
  526. 2015-04-16 19:48 - 2015-04-16 19:48 - 00000935 _____ () d:\Users\Evan\Downloads\FiddlerRoot (1).cer
  527. 2015-04-16 19:46 - 2015-04-16 19:46 - 00000935 _____ () d:\Users\Evan\Downloads\FiddlerRoot.cer
  528. 2015-04-16 19:43 - 2015-04-16 19:43 - 00212032 _____ () d:\Users\Evan\Downloads\fiddlercertmaker.exe
  529. 2015-04-16 19:43 - 2015-04-16 19:43 - 00212032 _____ () d:\Users\Evan\Downloads\fiddlercertmaker (1).exe
  530. 2015-04-15 21:15 - 2015-04-15 21:15 - 06202480 _____ () d:\Users\Evan\Downloads\AdwareMedic.dmg
  531. 2015-04-15 21:15 - 2015-04-15 21:15 - 06150741 _____ () d:\Users\Evan\Downloads\AdwareMedic.zip
  532. 2015-04-15 06:45 - 2015-04-15 06:45 - 00000000 ____D () d:\Users\Evan\AppData\Local\openvr
  533. 2015-04-14 15:28 - 2015-04-14 15:28 - 00011769 _____ () d:\Users\Evan\Downloads\CSGO Lobby Finder & Joiner v1.2_mpgh.net.rar
  534. 2015-04-14 02:01 - 2015-04-14 02:02 - 08327489 _____ () d:\Users\Evan\Downloads\FW_DSL_N55U-30043762736_Annex_A.zip
  535. 2015-04-14 02:01 - 2015-04-14 02:01 - 08029450 _____ () d:\Users\Evan\Downloads\Rescue_DSL_N55U_30043762736.zip
  536. 2015-04-12 19:58 - 2015-04-12 19:58 - 57618432 _____ () d:\Users\Evan\Downloads\capture-1.camrec
  537. 2015-04-12 19:57 - 2015-04-12 19:57 - 45420544 _____ () d:\Users\Evan\Downloads\capture-3.camrec
  538. 2015-04-12 12:46 - 2015-04-12 21:17 - 00090195 _____ () d:\Users\Evan\Documents\untitled_AutoSave.gcs
  539. 2015-04-11 23:38 - 2015-04-20 20:19 - 00000000 ____D () d:\Users\Evan\AppData\Local\GoPro
  540. 2015-04-11 23:38 - 2015-04-12 12:46 - 00000000 ____D () d:\Users\Public\CineForm
  541. 2015-04-11 23:38 - 2015-04-11 23:39 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\GoPro
  542. 2015-04-11 23:38 - 2015-04-11 23:38 - 00000996 _____ () d:\Users\Evan\Desktop\GoPro Studio.lnk
  543. 2015-04-11 23:38 - 2015-04-11 23:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
  544. 2015-04-11 23:38 - 2015-04-11 23:38 - 00000000 ____D () C:\Program Files (x86)\CineForm
  545. 2015-04-11 23:37 - 2015-04-11 23:38 - 00000000 ____D () C:\Program Files (x86)\GoPro
  546. 2015-04-11 22:17 - 2015-04-11 22:22 - 163904608 _____ () d:\Users\Evan\Downloads\GoProStudioPC-2.5.4.404.exe
  547. 2015-04-11 17:07 - 2015-04-11 17:07 - 00002786 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
  548. 2015-04-11 17:06 - 2015-04-11 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
  549. 2015-04-11 17:06 - 2015-04-11 17:07 - 00000000 ____D () C:\Program Files\CCleaner
  550. 2015-04-11 16:05 - 2015-04-11 16:05 - 05344528 _____ (Piriform Ltd) d:\Users\Evan\Downloads\ccsetup504.exe
  551. 2015-04-11 15:57 - 2015-04-11 15:57 - 00778101 _____ (TumblRipper ) d:\Users\Evan\Downloads\TumblRipper.exe
  552. 2015-04-11 15:56 - 2015-04-11 16:00 - 41401941 _____ () d:\Users\Evan\Downloads\TikiOne Steam Cleaner 2.4.1 Setup.exe
  553. 2015-04-11 14:39 - 2015-04-11 14:41 - 00000000 ____D () d:\Users\Evan\Desktop\memes
  554. 2015-04-09 01:16 - 2015-04-09 01:17 - 08094083 _____ () d:\Users\Evan\Downloads\ISIS flag waving full screen (for unexpectedjihad).mp4
  555. 2015-04-09 00:54 - 2015-04-09 00:57 - 15100247 _____ () d:\Users\Evan\Downloads\5 SECOND DAY - Whee! & Weird Elf Community (Episode 2).mp4
  556. 2015-04-08 20:14 - 2015-04-08 20:17 - 19809710 _____ () d:\Users\Evan\Downloads\Furious 7 - Official Super Bowl Spot (HD).mp4
  557. 2015-04-08 20:08 - 2015-04-08 20:16 - 47598870 _____ () d:\Users\Evan\Downloads\Furious 7 - Official Trailer (HD) (1).mp4
  558. 2015-04-08 20:05 - 2015-04-08 20:06 - 08849525 _____ () d:\Users\Evan\Downloads\The wrong fuel.mp4
  559. 2015-04-08 20:04 - 2015-04-09 01:35 - 42800959 _____ () d:\Users\Evan\Downloads\Furious 7 - Official Trailer (HD).mp4
  560. 2015-04-07 23:04 - 2015-04-07 23:04 - 13083606 _____ () d:\Users\Evan\Downloads\Straight lines cover.mp4
  561. 2015-04-07 22:01 - 2015-04-07 22:01 - 01095792 _____ (TGRMN Software ) d:\Users\Evan\Downloads\BRU_Setup_WinNTx64.exe
  562. 2015-04-07 22:01 - 2015-04-07 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bulk Rename Utility
  563. 2015-04-07 22:01 - 2015-04-07 22:01 - 00000000 ____D () C:\Program Files\Bulk Rename Utility
  564. 2015-04-04 16:25 - 2015-04-04 16:27 - 2477907690 _____ () d:\Users\Evan\Downloads\22_Jump_Street.myc123.mp4
  565. 2015-04-04 13:45 - 2015-04-04 14:01 - 00000081 _____ () d:\Users\Evan\AppData\Roaming\vibranceGUI.ini
  566. 2015-04-04 13:45 - 2015-04-04 13:45 - 00000000 ____D () d:\Users\Evan\Desktop\vibranceGUI
  567. 2015-04-04 13:44 - 2015-04-04 13:44 - 00099068 _____ () d:\Users\Evan\Downloads\vibranceGUI.zip
  568. 2015-04-04 13:05 - 2013-08-10 13:20 - 00031232 _____ (Party Princess Palace) d:\Users\Evan\Desktop\SAM.API.dll
  569. 2015-04-04 13:04 - 2015-04-04 13:04 - 00046130 _____ () d:\Users\Evan\Downloads\SteamAchievementManager63_hotfix.zip
  570. 2015-04-04 12:38 - 2015-04-04 12:38 - 00471552 _____ () d:\Users\Evan\Downloads\X5Setup.msi
  571. 2015-04-04 12:38 - 2015-04-04 12:38 - 00177107 _____ (Casaba Security, LLC) d:\Users\Evan\Downloads\WatcherSetup.exe
  572. 2015-04-04 12:35 - 2015-04-04 12:35 - 00001892 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fiddler4.lnk
  573. 2015-04-02 23:24 - 2015-04-02 23:24 - 00008966 _____ () d:\Users\Evan\Downloads\[kickass.to]the.gambler.2014.720p.brrip.x264.yify.torrent
  574. 2015-04-02 18:55 - 2015-04-02 19:03 - 00006384 _____ () d:\Users\Evan\Desktop\lol.txt
  575. 2015-04-02 17:05 - 2015-04-02 17:05 - 00000000 ____D () d:\Users\Evan\.sqlmap
  576. 2015-04-02 17:04 - 2015-04-23 01:13 - 00000000 ____D () C:\Python27
  577. 2015-04-02 17:04 - 2015-04-02 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
  578. 2015-04-02 17:02 - 2015-04-02 17:03 - 17199104 _____ () d:\Users\Evan\Downloads\python-2.7.7.amd64.msi
  579. 2015-04-02 16:56 - 2015-04-02 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
  580. 2015-04-02 16:56 - 2015-04-02 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
  581. 2015-04-02 16:56 - 2015-04-02 16:56 - 00000000 ____D () C:\Program Files\OpenVPN
  582. 2015-04-02 16:55 - 2015-04-02 16:55 - 01799904 _____ () d:\Users\Evan\Downloads\openvpn-install-2.3.6-I603-x86_64.exe
  583. 2015-04-02 16:49 - 2015-04-02 16:49 - 00003947 _____ () d:\Users\Evan\ovpntray.log
  584. 2015-04-02 16:46 - 2015-04-25 12:53 - 00000000 ____D () C:\Windows\LastGood
  585. 2015-04-02 16:46 - 2015-04-02 16:46 - 00000000 ____D () d:\Users\Evan\Desktop\vpn
  586. 2015-04-02 16:45 - 2015-04-02 16:45 - 02152531 _____ () d:\Users\Evan\Downloads\RA4WVPN Client.zip
  587. 2015-04-02 16:44 - 2015-04-02 17:20 - 00000000 ____D () d:\Users\Evan\Desktop\sqlmapproject-sqlmap-26bec72
  588. 2015-04-02 16:43 - 2015-04-02 16:44 - 06871969 _____ () d:\Users\Evan\Downloads\sqlmapproject-sqlmap-0.9-4098-g26bec72.zip
  589. 2015-04-02 16:41 - 2015-04-02 16:41 - 00229043 _____ () d:\Users\Evan\Downloads\ca-bundle.crt
  590. 2015-04-01 19:47 - 2015-04-01 19:47 - 00901632 _____ () d:\Users\Evan\Downloads\Design-Tools-Database.ppt
  591. 2015-04-01 17:58 - 2015-04-01 18:01 - 29256950 _____ () d:\Users\Evan\Downloads\Super Mario 64 HD Resubido por Tatan.zip
  592. 2015-03-31 17:25 - 2015-03-31 17:25 - 00000000 _____ () d:\Users\Evan\Desktop\New Text Document.txt
  593. 2015-03-31 16:33 - 2015-03-31 16:33 - 00343734 _____ () d:\Users\Evan\Downloads\nudejs.zip
  594.  
  595. ==================== One Month Modified Files and Folders =======
  596.  
  597. (If an entry is included in the fixlist, the file\folder will be moved.)
  598.  
  599. 2015-04-28 08:08 - 2013-05-17 23:08 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  600. 2015-04-28 08:05 - 2013-05-18 07:29 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Skype
  601. 2015-04-28 08:00 - 2012-07-26 18:12 - 00000000 ____D () C:\Windows\system32\sru
  602. 2015-04-28 07:53 - 2014-08-21 17:26 - 00004948 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Evan-PC-Evan Evan-PC
  603. 2015-04-28 07:41 - 2014-05-31 23:15 - 00000000 ____D () C:\Program Files\EslWire
  604. 2015-04-28 07:39 - 2013-05-17 22:48 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3404405384-2698542967-1238645643-1001
  605. 2015-04-28 07:37 - 2012-07-26 17:28 - 00900104 _____ () C:\Windows\system32\PerfStringBackup.INI
  606. 2015-04-28 07:35 - 2015-02-16 00:59 - 01404632 _____ () C:\Windows\WindowsUpdate.log
  607. 2015-04-28 07:35 - 2014-09-06 20:33 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
  608. 2015-04-28 07:35 - 2013-05-18 07:31 - 00000000 ___RD () d:\Users\Evan\Dropbox
  609. 2015-04-28 07:34 - 2013-05-17 23:12 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Dropbox
  610. 2015-04-28 07:33 - 2014-08-12 17:42 - 00003490 _____ () C:\Windows\System32\Tasks\AutoKMS
  611. 2015-04-28 07:33 - 2014-07-10 18:07 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Nitro PDF
  612. 2015-04-28 07:33 - 2014-02-10 21:40 - 00003018 _____ () C:\Windows\System32\Tasks\EVGAPrecision
  613. 2015-04-28 07:33 - 2013-05-17 23:09 - 00000000 ____D () C:\Program Files (x86)\Steam
  614. 2015-04-28 07:31 - 2014-01-03 17:14 - 00000000 ____D () C:\ProgramData\NVIDIA
  615. 2015-04-28 07:31 - 2013-05-17 23:09 - 00000000 ____D () d:\Users\Evan\AppData\Local\Adobe
  616. 2015-04-28 07:31 - 2013-05-17 23:08 - 00000918 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  617. 2015-04-28 07:31 - 2012-07-26 17:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
  618. 2015-04-28 07:26 - 2013-05-17 23:09 - 00000000 ____D () C:\Program Files (x86)\Everything
  619. 2015-04-28 07:22 - 2012-07-26 17:20 - 00000000 ____D () C:\Windows\Setup
  620. 2015-04-28 00:47 - 2013-05-17 23:09 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\uTorrent
  621. 2015-04-28 00:46 - 2013-12-21 06:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Rivals
  622. 2015-04-28 00:13 - 2013-05-18 18:16 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\TS3Client
  623. 2015-04-27 23:29 - 2013-09-19 18:09 - 00000000 ____D () d:\Users\Evan\AppData\Local\CrashDumps
  624. 2015-04-27 23:27 - 2013-11-26 19:08 - 00002390 _____ () C:\Windows\Sandboxie.ini
  625. 2015-04-27 23:22 - 2013-10-01 12:19 - 00000000 ____D () C:\ProgramData\Package Cache
  626. 2015-04-27 23:16 - 2013-05-18 08:11 - 00000000 ____D () d:\Users\Evan\Downloads\Torrents
  627. 2015-04-27 23:01 - 2013-05-17 23:09 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
  628. 2015-04-27 22:58 - 2014-11-12 06:57 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
  629. 2015-04-27 22:58 - 2014-11-12 06:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
  630. 2015-04-27 22:58 - 2014-11-12 06:55 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
  631. 2015-04-26 14:17 - 2013-07-25 20:49 - 00000000 ____D () d:\Users\Evan\Documents\Rockstar Games
  632. 2015-04-26 14:17 - 2013-07-25 20:47 - 00000000 ____D () d:\Users\Evan\AppData\Local\Rockstar Games
  633. 2015-04-26 11:58 - 2013-05-18 17:05 - 00000000 ____D () C:\Windows\AutoKMS
  634. 2015-04-26 11:57 - 2012-07-26 15:26 - 00524288 ___SH () C:\Windows\system32\config\BBI
  635. 2015-04-25 22:28 - 2014-08-24 16:04 - 00000000 ____D () d:\Users\Evan\AppData\Local\PrivaZer
  636. 2015-04-25 22:23 - 2014-01-14 19:59 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Media Player Classic
  637. 2015-04-25 13:38 - 2013-11-18 05:47 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
  638. 2015-04-25 12:54 - 2013-05-17 22:50 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
  639. 2015-04-25 12:49 - 2014-01-07 23:22 - 00000000 ____D () C:\ProgramData\NVIDIA GPU Computing Toolkit
  640. 2015-04-25 12:48 - 2013-05-18 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
  641. 2015-04-25 12:47 - 2013-05-17 22:50 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
  642. 2015-04-25 12:42 - 2013-05-17 22:50 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
  643. 2015-04-25 12:27 - 2014-04-07 18:08 - 00000000 ____D () C:\ProgramData\boost_interprocess
  644. 2015-04-25 11:33 - 2014-01-03 18:58 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\PingPlotter
  645. 2015-04-25 11:31 - 2012-07-26 18:12 - 00000000 ____D () C:\Windows\system32\NDF
  646. 2015-04-24 21:49 - 2013-06-07 20:45 - 00000000 ____D () d:\Users\Evan\Desktop\Misc
  647. 2015-04-24 01:26 - 2014-04-30 23:37 - 00000000 ____D () d:\Users\Evan\.VirtualBox
  648. 2015-04-23 20:04 - 2013-06-05 07:58 - 00001456 _____ () d:\Users\Evan\AppData\Local\Adobe Save for Web 13.0 Prefs
  649. 2015-04-23 20:04 - 2013-05-17 22:43 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Adobe
  650. 2015-04-23 08:07 - 2013-05-20 20:12 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\Mozilla
  651. 2015-04-23 07:42 - 2013-10-02 16:10 - 00000000 ____D () d:\Users\Evan\VirtualBox VMs
  652. 2015-04-23 02:01 - 2013-05-17 22:42 - 00000000 ____D () d:\Users\Evan
  653. 2015-04-22 02:06 - 2013-09-10 10:50 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\FileZilla
  654. 2015-04-20 22:46 - 2014-09-21 22:17 - 00000000 ____D () d:\Users\Evan\AppData\Local\Arma 3 Launcher
  655. 2015-04-20 22:10 - 2014-01-31 17:33 - 00000000 ____D () d:\Users\Evan\AppData\Local\Arma 3
  656. 2015-04-20 20:20 - 2014-09-15 20:59 - 00000000 ____D () d:\Users\Evan\AppData\Local\DisplayFusion
  657. 2015-04-20 19:35 - 2013-11-26 18:53 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\.purple
  658. 2015-04-20 00:13 - 2014-09-17 08:13 - 00013245 _____ () C:\Windows\BRRBCOM.INI
  659. 2015-04-19 02:29 - 2015-02-20 18:54 - 00000000 ____D () d:\Users\Evan\AppData\Local\ArmA 2 OA
  660. 2015-04-18 11:44 - 2013-05-17 23:11 - 00000000 ____D () C:\ProgramData\Skype
  661. 2015-04-16 19:43 - 2013-11-12 23:11 - 00000000 ____D () C:\Program Files (x86)\Fiddler2
  662. 2015-04-15 04:11 - 2013-05-17 23:08 - 00002051 _____ () d:\Users\Public\Desktop\Google Chrome.lnk
  663. 2015-04-12 19:58 - 2013-09-18 16:17 - 00004608 _____ () d:\Users\Evan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  664. 2015-04-12 12:46 - 2013-06-13 20:07 - 00000000 ____D () C:\ProgramData\Temp
  665. 2015-04-12 00:36 - 2013-05-18 09:29 - 00000000 ___RD () d:\Users\Evan\Desktop\Shortcuts
  666. 2015-04-11 23:38 - 2014-08-30 17:04 - 00000000 ____D () C:\Program Files\DIFX
  667. 2015-04-11 16:03 - 2014-08-30 08:41 - 00000000 ____D () d:\Users\Evan\.tikione
  668. 2015-04-11 16:03 - 2014-08-30 08:41 - 00000000 ____D () C:\Program Files (x86)\TikiOne Steam Cleaner
  669. 2015-04-11 15:58 - 2013-10-11 18:50 - 00000000 ____D () d:\Users\Evan\AppData\Local\Deployment
  670. 2015-04-11 15:56 - 2013-10-13 19:20 - 00001881 _____ () C:\InstallHelper.log
  671. 2015-04-11 15:49 - 2014-06-17 15:41 - 00000000 ____D () C:\page
  672. 2015-04-11 15:48 - 2013-05-22 17:00 - 00000000 ____D () C:\ProgramData\Origin
  673. 2015-04-11 15:46 - 2013-06-30 21:51 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
  674. 2015-04-11 15:45 - 2013-05-17 23:08 - 00000000 ____D () d:\Users\Evan\AppData\Local\Google
  675. 2015-04-11 15:45 - 2013-05-17 23:08 - 00000000 ____D () C:\Program Files (x86)\Google
  676. 2015-04-11 15:44 - 2013-05-18 13:55 - 00000000 ____D () C:\ProgramData\EPSON
  677. 2015-04-11 15:44 - 2013-05-18 10:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
  678. 2015-04-11 15:43 - 2013-06-13 20:07 - 00000000 ____D () C:\Program Files\CyberLink
  679. 2015-04-11 15:43 - 2013-05-22 17:00 - 00000000 ____D () C:\Program Files (x86)\Origin
  680. 2015-04-11 15:42 - 2014-01-28 14:07 - 00000000 ____D () C:\ProgramData\TamoSoft
  681. 2015-04-11 15:40 - 2013-05-22 17:04 - 00000000 ____D () C:\Program Files (x86)\Origin Games
  682. 2015-04-05 17:58 - 2015-01-12 11:57 - 00000000 ____D () C:\Program Files (x86)\DayZLauncher
  683. 2015-04-05 00:48 - 2015-01-18 16:18 - 00000000 ____D () d:\Users\Evan\AppData\Roaming\vlc
  684. 2015-04-04 23:38 - 2015-03-08 19:34 - 00000971 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
  685. 2015-04-04 21:13 - 2013-09-18 16:18 - 00000000 ____D () d:\Users\Evan\Documents\Camtasia Studio
  686. 2015-04-04 13:48 - 2013-09-20 17:02 - 00007594 _____ () d:\Users\Evan\AppData\Local\Resmon.ResmonCfg
  687. 2015-04-02 16:56 - 2014-02-25 06:45 - 00000000 ____D () C:\Program Files\TAP-Windows
  688. 2015-04-02 16:46 - 2014-03-25 06:39 - 00000000 ____D () d:\Users\Evan\AppData\Local\RA4W_VPN
  689. 2015-03-30 16:23 - 2013-08-02 19:36 - 00000000 ____D () C:\Program Files (x86)\puush
  690.  
  691. ==================== Files in the root of some directories =======
  692.  
  693. 2014-01-03 18:58 - 2014-01-02 06:58 - 0000044 ____H () C:\Program Files (x86)\edf33cfe.tmp
  694. 2014-11-30 22:50 - 2014-11-30 22:50 - 0000132 _____ () d:\Users\Evan\AppData\Roaming\Adobe IllExport Filter CS6 Prefs
  695. 2014-06-10 23:39 - 2014-06-10 23:39 - 0000132 _____ () d:\Users\Evan\AppData\Roaming\Adobe PNG Format CS6 Prefs
  696. 2014-12-15 07:55 - 2014-12-15 07:55 - 0000297 _____ () d:\Users\Evan\AppData\Roaming\BreakingPoint_Login.ini
  697. 2014-12-15 07:55 - 2014-12-15 17:02 - 0001407 _____ () d:\Users\Evan\AppData\Roaming\BreakingPoint_Options.ini
  698. 2013-08-09 16:57 - 2013-08-09 16:58 - 0000338 _____ () d:\Users\Evan\AppData\Roaming\MPUI.ini
  699. 2015-02-03 21:25 - 2015-02-04 09:12 - 0271154 _____ () d:\Users\Evan\AppData\Roaming\PS13_panel.log
  700. 2014-08-03 16:00 - 2014-08-08 21:43 - 0000236 _____ () d:\Users\Evan\AppData\Roaming\Recorder.ini
  701. 2015-04-04 13:45 - 2015-04-04 14:01 - 0000081 _____ () d:\Users\Evan\AppData\Roaming\vibranceGUI.ini
  702. 2013-12-07 18:38 - 2013-12-07 18:38 - 0000037 ___SH () d:\Users\Evan\AppData\Local\70149b02515b3bb20dd492.47983420
  703. 2013-06-05 07:58 - 2015-04-23 20:04 - 0001456 _____ () d:\Users\Evan\AppData\Local\Adobe Save for Web 13.0 Prefs
  704. 2014-08-12 23:06 - 2015-01-06 21:48 - 0014347 _____ () d:\Users\Evan\AppData\Local\ArmA2OA.bidmp
  705. 2013-09-18 16:17 - 2015-04-12 19:58 - 0004608 _____ () d:\Users\Evan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  706. 2014-02-09 18:58 - 2014-02-09 18:58 - 1065984 _____ () d:\Users\Evan\AppData\Local\file__0.localstorage
  707. 2014-09-02 13:41 - 2015-03-10 19:13 - 0000600 _____ () d:\Users\Evan\AppData\Local\PUTTY.RND
  708. 2015-03-07 12:34 - 2015-03-07 12:34 - 0000218 _____ () d:\Users\Evan\AppData\Local\recently-used.xbel
  709. 2013-09-20 17:02 - 2015-04-04 13:48 - 0007594 _____ () d:\Users\Evan\AppData\Local\Resmon.ResmonCfg
  710. 2014-03-26 23:59 - 2014-03-26 23:59 - 0265752 _____ () d:\Users\Evan\AppData\Local\sum_report.html
  711. 2014-03-26 23:58 - 2014-03-26 23:58 - 0000362 _____ () d:\Users\Evan\AppData\Local\winconf.pxt
  712.  
  713. Files to move or delete:
  714. ====================
  715. d:\Users\Evan\random.dat
  716.  
  717.  
  718. Some content of TEMP:
  719. ====================
  720. d:\Users\Evan\AppData\Local\Temp\avgnt.exe
  721. d:\Users\Evan\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpuiilve.dll
  722.  
  723.  
  724. ==================== Bamital & volsnap Check =================
  725.  
  726. (There is no automatic fix for files that do not pass verification.)
  727.  
  728. C:\Windows\System32\winlogon.exe => File is digitally signed
  729. C:\Windows\System32\wininit.exe => File is digitally signed
  730. C:\Windows\explorer.exe => File is digitally signed
  731. C:\Windows\SysWOW64\explorer.exe => File is digitally signed
  732. C:\Windows\System32\svchost.exe => File is digitally signed
  733. C:\Windows\SysWOW64\svchost.exe => File is digitally signed
  734. C:\Windows\System32\services.exe => File is digitally signed
  735. C:\Windows\System32\User32.dll => File is digitally signed
  736. C:\Windows\SysWOW64\User32.dll => File is digitally signed
  737. C:\Windows\System32\userinit.exe => File is digitally signed
  738. C:\Windows\SysWOW64\userinit.exe => File is digitally signed
  739. C:\Windows\System32\rpcss.dll => File is digitally signed
  740. C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
  741.  
  742.  
  743. LastRegBack: 2015-04-25 03:00
  744.  
  745. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!