API tools faq
paste
Advertisement
Guest User

frst

a guest
Nov 20th, 2014
31
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 39.29 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-11-2014
  2. Ran by Dardan (administrator) on DARDAN-PC on 21-11-2014 01:25:26
  3. Running from C:\Users\Dardan\Downloads
  4. Loaded Profile: Dardan (Available profiles: Dardan)
  5. Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
  6. Internet Explorer Version 11
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
  15. () C:\Windows\SysWOW64\PnkBstrA.exe
  16. (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
  17. (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
  18. (http://tortoisesvn.net) D:\Program Files\TortoiseSVN\bin\TSVNCache.exe
  19. (AVAST Software) D:\Program Files\AVAST Software\Avast\avastui.exe
  20. (Razer USA Ltd) D:\Program Files (x86)\Razer\Abyssus1800\Abyssus1800Tray.exe
  21. (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
  22. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  23. (Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
  24. (Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.5293\Battle.net.exe
  25. (Piriform Ltd) D:\Program Files\CCleaner\CCleaner64.exe
  26. (Valve Corporation) E:\Steam\Steam.exe
  27. (Valve Corporation) E:\Steam\bin\steamwebhelper.exe
  28. (Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\firefox.exe
  29. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
  30. (Blizzard Entertainment) E:\Games\World of Warcraft\World of Warcraft\Wow-64.exe
  31. (VS Revo Group) D:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
  32. (Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
  33. (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe
  34. (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe
  35. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  36.  
  37.  
  38. ==================== Registry (Whitelisted) ==================
  39.  
  40. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  41.  
  42. HKLM-x32\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-03] (AVAST Software)
  43. HKLM-x32\...\Run: [Razer Abyssus1800 Driver] => D:\Program Files (x86)\Razer\Abyssus1800\Abyssus1800Tray.exe [821136 2011-04-28] (Razer USA Ltd)
  44. HKLM-x32\...\Run: [] => [X]
  45. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585536 2014-09-29] (Razer Inc.)
  46. HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
  47. HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
  48. HKU\S-1-5-21-1363601413-4122985648-467028356-1000\...\Policies\system: [DisableLockWorkstation] 0
  49. HKU\S-1-5-21-1363601413-4122985648-467028356-1000\...\MountPoints2: {3218ddcb-15b1-11e0-894b-806e6f6e6963} - F:\setup.exe
  50. HKU\S-1-5-21-1363601413-4122985648-467028356-1000\...\MountPoints2: {90200a4f-8f0a-11e2-b764-806e6f6e6963} - F:\Setup.exe
  51. HKU\S-1-5-21-1363601413-4122985648-467028356-1000\...\MountPoints2: {ca2d9514-3b1e-11e4-9d85-e06995e3b1a1} - G:\Startme.exe
  52. ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
  53. ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  54. ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  55. ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  56. ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  57. ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  58. ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  59. ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  60. ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  61. ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  62. ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
  63. ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
  64. ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
  65. ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
  66. ShellIconOverlayIdentifiers: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => d:\Program Files\LinkShellExtension\HardlinkShellExt.dll (Hermann Schinagl)
  67. ShellIconOverlayIdentifiers: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => d:\Program Files\LinkShellExtension\HardlinkShellExt.dll (Hermann Schinagl)
  68. ShellIconOverlayIdentifiers: [IconOverlaySymbolicLink] -> {0A479751-02BC-11d3-A855-0004AC2568EE} => d:\Program Files\LinkShellExtension\HardlinkShellExt.dll (Hermann Schinagl)
  69. ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  70. ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  71. ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  72. ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  73. ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  74. ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  75. ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  76. ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  77. ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
  78. ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
  79. ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
  80. ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
  81. ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dardan\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
  82. ShellIconOverlayIdentifiers-x32: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => d:\Program Files\LinkShellExtension\32\HardlinkShellExt.dll (Hermann Schinagl)
  83. ShellIconOverlayIdentifiers-x32: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => d:\Program Files\LinkShellExtension\32\HardlinkShellExt.dll (Hermann Schinagl)
  84. ShellIconOverlayIdentifiers-x32: [IconOverlaySymbolicLink] -> {0A479751-02BC-11d3-A855-0004AC2568EE} => d:\Program Files\LinkShellExtension\32\HardlinkShellExt.dll (Hermann Schinagl)
  85.  
  86. ==================== Internet (Whitelisted) ====================
  87.  
  88. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  89.  
  90. ProxyServer: [S-1-5-21-1363601413-4122985648-467028356-1000] => 85.214.242.208:3128
  91. HKU\S-1-5-21-1363601413-4122985648-467028356-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://at.msn.com/?ocid=iehp
  92. HKU\S-1-5-21-1363601413-4122985648-467028356-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDEB22FA65F2ECE01
  93. HKU\S-1-5-21-1363601413-4122985648-467028356-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-AT
  94. SearchScopes: HKLM -> DefaultScope value is missing.
  95. SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
  96. BHO: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> D:\Robo\RoboForm-x64.dll (Siber Systems Inc.)
  97. BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
  98. BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
  99. BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
  100. BHO-x32: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> D:\Robo\roboform.dll (Siber Systems Inc.)
  101. BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
  102. BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
  103. BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
  104. Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - D:\Robo\RoboForm-x64.dll (Siber Systems Inc.)
  105. Toolbar: HKLM-x32 - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - D:\Robo\roboform.dll (Siber Systems Inc.)
  106. Winsock: Catalog5 10 C:\Windows\SysWOW64\PrxerNsp.dll [56424] ()
  107. Winsock: Catalog5-x64 10 %SystemRoot%\system32\PrxerNsp.dll [57448] ()
  108. Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
  109.  
  110. FireFox:
  111. ========
  112. FF ProfilePath: C:\Users\Dardan\AppData\Roaming\Mozilla\Firefox\Profiles\83nt9upu.default-1416522917525
  113. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
  114. FF Plugin: @java.com/DTPlugin,version=10.17.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
  115. FF Plugin: @microsoft.com/GENUINE -> disabled No File
  116. FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
  117. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
  118. FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Program Files (x86)\Mozilla Plugins\npitunes.dll ()
  119. FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
  120. FF Plugin-x32: @esn/esnlaunch,version=2.1.7 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
  121. FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
  122. FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
  123. FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
  124. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
  125. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
  126. FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
  127. FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
  128. FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
  129. FF Plugin HKU\S-1-5-21-1363601413-4122985648-467028356-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Dardan\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
  130. FF Plugin HKU\S-1-5-21-1363601413-4122985648-467028356-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Dardan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
  131. FF HKLM-x32\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - D:\Robo\Firefox
  132. FF Extension: RoboForm Toolbar for Firefox - D:\Robo\Firefox [2013-12-20]
  133. FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exe
  134.  
  135. Chrome:
  136. =======
  137.  
  138. ==================== Services (Whitelisted) =================
  139.  
  140. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  141.  
  142. R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-03] (AVAST Software)
  143. S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-06-14] () [File not signed]
  144. S4 DisplayFusionService; d:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [5278064 2014-09-09] (Binary Fortress Software)
  145. S4 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2012-02-01] (Intel Corporation) [File not signed]
  146. S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
  147. S2 MBAMScheduler; d:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
  148. S2 MBAMService; d:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
  149. S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1721800 2014-08-09] (NVIDIA Corporation)
  150. S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18974152 2014-08-09] (NVIDIA Corporation)
  151. R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-09-09] ()
  152. S2 SkypeUpdate; D:\Program Files (x86)\Skype\Updater\Updater.exe [315008 2014-04-03] (Skype Technologies)
  153. S4 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [14896 2012-04-13] (Intel Corporation)
  154.  
  155. ==================== Drivers (Whitelisted) ====================
  156.  
  157. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  158.  
  159. R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-10-03] ()
  160. R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-10-03] (AVAST Software)
  161. R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-10-03] (AVAST Software)
  162. R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-10-03] ()
  163. R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-10-03] (AVAST Software)
  164. R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-10-03] (AVAST Software)
  165. R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-10-03] (AVAST Software)
  166. R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-10-03] ()
  167. R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46792 2013-09-17] (AnchorFree Inc.)
  168. R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-09-07] (REALiX(tm))
  169. R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-11-19] (Intel Corporation)
  170. R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [22776 2011-12-22] (Intel Corporation)
  171. S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
  172. S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
  173. S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [21448 2014-08-09] (NVIDIA Corporation)
  174. R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
  175. R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-09-17] (Anchorfree Inc.)
  176. S3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)
  177. S3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2010-04-23] (C-Media Electronics Inc)
  178. S3 wolfkr; E:\AeriaGames\WolfTeam-DE\avital\wolfk64.sys [86352 2014-09-08] ()
  179. S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
  180. S3 MSICDSetup; \??\F:\Treiber\CDriver64.sys [X]
  181. S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
  182. S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
  183. S3 wolf; \??\E:\AeriaGames\WolfTeam-DE\avital\wolf64.sys [X]
  184.  
  185. ==================== NetSvcs (Whitelisted) ===================
  186.  
  187. (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
  188.  
  189.  
  190. ==================== One Month Created Files and Folders ========
  191.  
  192. (If an entry is included in the fixlist, the file\folder will be moved.)
  193.  
  194. 2014-11-21 01:25 - 2014-11-21 01:26 - 00019135 _____ () C:\Users\Dardan\Downloads\FRST.txt
  195. 2014-11-21 01:25 - 2014-11-21 01:25 - 02117632 _____ (Farbar) C:\Users\Dardan\Downloads\FRST64.exe
  196. 2014-11-21 01:19 - 2014-11-21 01:19 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dardan\Downloads\revosetup95.exe
  197. 2014-11-21 00:45 - 2014-11-21 00:46 - 00350026 _____ () C:\Users\Dardan\Documents\cc_20141121_004549.reg
  198. 2014-11-21 00:05 - 2014-11-21 00:05 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
  199. 2014-11-20 23:46 - 2014-11-20 23:46 - 00002726 _____ () C:\Windows\PFRO.log
  200. 2014-11-20 23:46 - 2014-11-20 23:46 - 00000056 _____ () C:\Windows\setupact.log
  201. 2014-11-20 23:46 - 2014-11-20 23:46 - 00000000 _____ () C:\Windows\setuperr.log
  202. 2014-11-20 23:34 - 2014-11-21 01:17 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
  203. 2014-11-20 23:34 - 2014-11-21 01:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
  204. 2014-11-20 22:18 - 2014-11-21 01:25 - 00000000 ____D () C:\FRST
  205. 2014-11-20 22:17 - 2014-11-20 23:47 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
  206. 2014-11-20 22:16 - 2014-11-20 22:16 - 00000790 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
  207. 2014-11-20 22:16 - 2014-11-20 22:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
  208. 2014-11-20 22:16 - 2014-11-20 22:16 - 00000000 ____D () C:\ProgramData\Malwarebytes
  209. 2014-11-20 22:16 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
  210. 2014-11-20 22:16 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
  211. 2014-11-20 22:16 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
  212. 2014-11-20 22:11 - 2014-11-20 22:11 - 00005923 _____ () C:\Users\Dardan\Desktop\JRT.txt
  213. 2014-11-20 22:08 - 2014-11-20 22:08 - 00000000 ____D () C:\Windows\ERUNT
  214. 2014-11-20 22:03 - 2014-11-21 00:19 - 00000000 ____D () C:\AdwCleaner
  215. 2014-11-20 20:33 - 2014-11-20 20:33 - 00000000 __SHD () C:\Users\Dardan\AppData\Local\EmieBrowserModeList
  216. 2014-11-19 12:17 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
  217. 2014-11-19 12:17 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
  218. 2014-11-19 12:17 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
  219. 2014-11-19 12:17 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
  220. 2014-11-16 18:08 - 2014-11-16 18:09 - 00000000 ____D () C:\Users\Dardan\Documents\London
  221. 2014-11-13 20:34 - 2014-11-13 20:34 - 00000000 ____D () C:\Users\Dardan\AppData\Local\LeagueSharp
  222. 2014-11-13 20:22 - 2014-11-14 21:24 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\LeagueSharp
  223. 2014-11-13 00:00 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
  224. 2014-11-13 00:00 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
  225. 2014-11-13 00:00 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
  226. 2014-11-13 00:00 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
  227. 2014-11-13 00:00 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
  228. 2014-11-13 00:00 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
  229. 2014-11-13 00:00 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
  230. 2014-11-13 00:00 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
  231. 2014-11-13 00:00 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
  232. 2014-11-13 00:00 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
  233. 2014-11-13 00:00 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
  234. 2014-11-13 00:00 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
  235. 2014-11-13 00:00 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
  236. 2014-11-13 00:00 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
  237. 2014-11-13 00:00 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
  238. 2014-11-13 00:00 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
  239. 2014-11-13 00:00 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
  240. 2014-11-13 00:00 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
  241. 2014-11-13 00:00 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
  242. 2014-11-13 00:00 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
  243. 2014-11-13 00:00 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
  244. 2014-11-13 00:00 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
  245. 2014-11-13 00:00 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
  246. 2014-11-13 00:00 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
  247. 2014-11-13 00:00 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
  248. 2014-11-13 00:00 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
  249. 2014-11-13 00:00 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
  250. 2014-11-13 00:00 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
  251. 2014-11-13 00:00 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
  252. 2014-11-13 00:00 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
  253. 2014-11-13 00:00 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
  254. 2014-11-13 00:00 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
  255. 2014-11-13 00:00 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
  256. 2014-11-13 00:00 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
  257. 2014-11-13 00:00 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
  258. 2014-11-13 00:00 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
  259. 2014-11-13 00:00 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
  260. 2014-11-13 00:00 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
  261. 2014-11-13 00:00 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
  262. 2014-11-13 00:00 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
  263. 2014-11-13 00:00 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
  264. 2014-11-13 00:00 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
  265. 2014-11-13 00:00 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
  266. 2014-11-13 00:00 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
  267. 2014-11-13 00:00 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
  268. 2014-11-13 00:00 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
  269. 2014-11-13 00:00 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
  270. 2014-11-13 00:00 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
  271. 2014-11-13 00:00 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
  272. 2014-11-13 00:00 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
  273. 2014-11-13 00:00 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
  274. 2014-11-13 00:00 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
  275. 2014-11-13 00:00 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
  276. 2014-11-13 00:00 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
  277. 2014-11-13 00:00 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
  278. 2014-11-13 00:00 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
  279. 2014-11-13 00:00 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
  280. 2014-11-13 00:00 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
  281. 2014-11-13 00:00 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
  282. 2014-11-13 00:00 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
  283. 2014-11-13 00:00 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
  284. 2014-11-13 00:00 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
  285. 2014-11-13 00:00 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
  286. 2014-11-13 00:00 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
  287. 2014-11-13 00:00 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
  288. 2014-11-12 23:59 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
  289. 2014-11-12 23:59 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
  290. 2014-11-12 23:59 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
  291. 2014-11-12 23:59 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
  292. 2014-11-12 23:59 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
  293. 2014-11-12 23:59 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
  294. 2014-11-12 23:59 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
  295. 2014-11-12 23:59 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
  296. 2014-11-12 23:59 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
  297. 2014-11-12 23:59 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
  298. 2014-11-12 23:59 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
  299. 2014-11-12 23:59 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
  300. 2014-11-12 23:59 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
  301. 2014-11-12 23:59 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
  302. 2014-11-12 23:59 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
  303. 2014-11-12 23:59 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
  304. 2014-11-12 23:59 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
  305. 2014-11-12 23:59 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
  306. 2014-11-12 23:59 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
  307. 2014-11-12 23:58 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
  308. 2014-11-12 23:58 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
  309. 2014-11-12 23:58 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
  310. 2014-11-12 23:58 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
  311. 2014-11-12 23:58 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
  312. 2014-11-12 23:58 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
  313. 2014-11-12 23:58 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
  314. 2014-11-12 23:58 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
  315. 2014-11-12 23:58 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
  316. 2014-11-12 23:58 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
  317. 2014-11-12 23:58 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
  318. 2014-11-12 23:58 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
  319. 2014-11-12 23:58 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
  320. 2014-11-12 23:58 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
  321. 2014-11-04 21:55 - 2014-11-04 21:55 - 13168336 _____ (Opera Software ASA) C:\Users\Dardan\Downloads\Opera_1214_int_Setup.exe
  322. 2014-11-04 21:55 - 2014-11-04 21:55 - 13168336 _____ (Opera Software ASA) C:\Users\Dardan\Downloads\Opera_1214_int_Setup (1).exe
  323. 2014-11-04 21:54 - 2014-11-04 21:56 - 00397935 _____ () C:\Users\Dardan\Downloads\Opera_NI_stable.exe.opdownload
  324. 2014-11-04 21:48 - 2014-11-20 23:02 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\Opera
  325. 2014-11-04 21:48 - 2014-11-20 23:00 - 00000000 ____D () C:\Users\Dardan\AppData\Local\Opera
  326. 2014-11-04 19:41 - 2014-11-04 19:41 - 00001078 _____ () C:\Users\Public\Desktop\paint.net.lnk
  327. 2014-11-04 19:41 - 2014-11-04 19:41 - 00001078 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
  328. 2014-11-04 19:40 - 2014-11-04 19:43 - 00000000 ____D () C:\Users\Dardan\AppData\Local\paint.net
  329. 2014-10-30 21:13 - 2014-10-30 21:13 - 00000000 ____D () C:\Users\Dardan\Documents\My Cheat Tables
  330. 2014-10-29 16:37 - 2014-10-29 16:37 - 00043343 _____ () C:\Users\Dardan\Downloads\game.htm
  331. 2014-10-24 15:07 - 2014-10-24 15:07 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\Opera Software
  332. 2014-10-24 15:07 - 2014-10-24 15:07 - 00000000 ____D () C:\Users\Dardan\AppData\Local\Opera Software
  333. 2014-10-23 17:55 - 2014-10-23 17:55 - 00000000 ____D () C:\Users\Dardan\AppData\Local\Razer
  334. 2014-10-23 17:54 - 2014-10-23 17:54 - 00000000 ____D () C:\ProgramData\Razer
  335. 2014-10-23 17:52 - 2014-10-23 17:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
  336. 2014-10-23 17:52 - 2014-10-23 17:54 - 00000000 ____D () C:\Program Files (x86)\Razer
  337. 2014-10-23 17:51 - 2014-10-23 17:51 - 00003124 _____ () C:\Windows\System32\Tasks\{2F1DEAF7-088D-4E38-9FA7-0E85AED0739A}
  338.  
  339. ==================== One Month Modified Files and Folders =======
  340.  
  341. (If an entry is included in the fixlist, the file\folder will be moved.)
  342.  
  343. 2014-11-21 01:25 - 2013-12-10 20:33 - 00000000 ____D () C:\Users\Dardan\AppData\Local\Battle.net
  344. 2014-11-21 01:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system
  345. 2014-11-21 01:21 - 2013-07-06 21:47 - 00000000 ____D () C:\Users\Dardan\AppData\Local\Adobe
  346. 2014-11-21 01:13 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
  347. 2014-11-21 01:10 - 2013-03-17 01:04 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\Skype
  348. 2014-11-21 00:53 - 2013-11-27 15:17 - 00000000 ____D () C:\ProgramData\BlueStacks
  349. 2014-11-21 00:53 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
  350. 2014-11-21 00:24 - 2013-03-27 23:13 - 00000000 ____D () C:\Windows\ShellNew
  351. 2014-11-21 00:11 - 2011-01-01 15:22 - 01353802 _____ () C:\Windows\WindowsUpdate.log
  352. 2014-11-21 00:09 - 2013-10-17 18:33 - 00000000 ____D () C:\ProgramData\Package Cache
  353. 2014-11-20 23:53 - 2009-07-14 05:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  354. 2014-11-20 23:53 - 2009-07-14 05:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  355. 2014-11-20 23:52 - 2010-11-21 07:50 - 00702642 _____ () C:\Windows\system32\perfh007.dat
  356. 2014-11-20 23:52 - 2010-11-21 07:50 - 00150722 _____ () C:\Windows\system32\perfc007.dat
  357. 2014-11-20 23:52 - 2009-07-14 06:13 - 01629824 _____ () C:\Windows\system32\PerfStringBackup.INI
  358. 2014-11-20 23:46 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
  359. 2014-11-20 23:26 - 2013-10-22 13:21 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1363601413-4122985648-467028356-1000UA.job
  360. 2014-11-20 23:07 - 2013-06-06 12:20 - 00000000 ____D () C:\Program Files (x86)\Google
  361. 2014-11-20 23:06 - 2013-06-06 12:20 - 00000000 ____D () C:\Users\Dardan\AppData\Local\Google
  362. 2014-11-20 22:31 - 2013-04-23 16:47 - 00000000 ____D () C:\Users\Dardan\AppData\Local\TSVNCache
  363. 2014-11-20 22:31 - 2013-03-17 01:39 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
  364. 2014-11-20 22:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PLA
  365. 2014-11-20 22:02 - 2013-11-27 15:17 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
  366. 2014-11-20 22:02 - 2013-05-05 19:39 - 00000000 ____D () C:\Users\Dardan\AppData\Local\CrashDumps
  367. 2014-11-20 22:02 - 2013-04-12 12:09 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\TeamViewer
  368. 2014-11-20 22:02 - 2013-03-25 11:14 - 00000000 ____D () C:\Users\Dardan\Tracing
  369. 2014-11-20 22:02 - 2013-03-17 00:56 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\Media Player Classic
  370. 2014-11-20 22:02 - 2011-01-01 15:12 - 00000000 ____D () C:\Windows\Panther
  371. 2014-11-20 14:26 - 2013-10-22 13:21 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1363601413-4122985648-467028356-1000Core.job
  372. 2014-11-18 23:14 - 2014-09-25 14:11 - 00000000 ____D () C:\Program Files (x86)\Battle.net
  373. 2014-11-18 19:47 - 2013-09-18 16:51 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\.minecraft
  374. 2014-11-18 17:12 - 2014-10-16 21:01 - 00000000 ____D () C:\Users\Dardan\AppData\Local\Deployment
  375. 2014-11-16 19:41 - 2011-01-01 20:15 - 00117456 _____ () C:\Users\Dardan\AppData\Local\GDIPFONTCACHEV1.DAT
  376. 2014-11-14 16:55 - 2013-03-17 10:31 - 00000000 ____D () C:\Users\Dardan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
  377. 2014-11-13 03:21 - 2009-07-14 05:45 - 00437944 _____ () C:\Windows\system32\FNTCACHE.DAT
  378. 2014-11-13 03:04 - 2013-10-11 17:23 - 00000000 ____D () C:\ProgramData\Microsoft Help
  379. 2014-11-04 18:12 - 2013-12-10 21:10 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
  380. 2014-11-02 10:30 - 2013-08-27 22:41 - 00000000 ____D () C:\Users\Dardan\AppData\Local\fabi.me
  381. 2014-10-23 17:28 - 2013-03-16 23:54 - 00033074 _____ () C:\Windows\system32\lvcoinst.log
  382. 2014-10-23 17:20 - 2011-01-01 18:17 - 00000000 ____D () C:\Users\Dardan
  383. 2014-10-23 17:19 - 2013-03-16 23:54 - 00000000 ____D () C:\Program Files\Common Files\logishrd
  384. 2014-10-23 17:19 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
  385.  
  386. ==================== Bamital & volsnap Check =================
  387.  
  388. (There is no automatic fix for files that do not pass verification.)
  389.  
  390. C:\Windows\System32\winlogon.exe => File is digitally signed
  391. C:\Windows\System32\wininit.exe => File is digitally signed
  392. C:\Windows\SysWOW64\wininit.exe => File is digitally signed
  393. C:\Windows\explorer.exe => File is digitally signed
  394. C:\Windows\SysWOW64\explorer.exe => File is digitally signed
  395. C:\Windows\System32\svchost.exe => File is digitally signed
  396. C:\Windows\SysWOW64\svchost.exe => File is digitally signed
  397. C:\Windows\System32\services.exe => File is digitally signed
  398. C:\Windows\System32\User32.dll => File is digitally signed
  399. C:\Windows\SysWOW64\User32.dll => File is digitally signed
  400. C:\Windows\System32\userinit.exe => File is digitally signed
  401. C:\Windows\SysWOW64\userinit.exe => File is digitally signed
  402. C:\Windows\System32\rpcss.dll => File is digitally signed
  403. C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
  404.  
  405.  
  406. LastRegBack: 2014-11-15 00:44
  407.  
  408. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!