API tools faq
paste
Advertisement
Guest User

frst.txt

a guest
Jun 1st, 2014
218
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 37.99 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-06-2014
  2. Ran by Stefan (administrator) on STEFAN-PC on 01-06-2014 14:58:33
  3. Running from C:\Users\Stefan\Desktop
  4. Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English(US)
  5. Internet Explorer Version 8
  6. Boot Mode: Normal
  7.  
  8. The only official download link for FRST:
  9. Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
  10. Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
  11. Download link from any site other than Bleeping Computer is unpermitted or outdated.
  12. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  13.  
  14. ==================== Processes (Whitelisted) =================
  15.  
  16. (AMD) C:\Windows\System32\atiesrxx.exe
  17. (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
  18. (Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
  19. (AMD) C:\Windows\System32\atieclxx.exe
  20. (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  21. (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
  22. (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
  23. (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
  24. (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
  25. (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
  26. (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
  27. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
  28. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
  29. () C:\Program Files (x86)\Garena Plus\ggdllhost.exe
  30. (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
  31. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  32. (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
  33. (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
  34. (Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\accelerometerST.exe
  35. (Flux Software LLC) C:\Users\Stefan\AppData\Local\FluxSoftware\Flux\flux.exe
  36. (Microsoft Corporation) C:\Windows\System32\StikyNot.exe
  37. (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
  38. (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
  39. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
  40. (Microsoft Corporation) C:\Windows\System32\taskmgr.exe
  41. (CPUID) C:\Program Files\CPUID\HWMonitor\HWMonitor.exe
  42. (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
  43. (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
  44. (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
  45. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  46. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  47. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  48. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  49. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  50. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  51. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  52. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  53. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  54. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  55. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  56. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  57. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  58. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  59. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  60. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  61. (Oracle Corporation) C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
  62. (Oracle Corporation) C:\Program Files (x86)\Java\jre7\bin\java.exe
  63. (Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
  64. (Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
  65. (Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winamp.exe
  66. (Microsoft Corporation) C:\Windows\System32\wlanext.exe
  67. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  68.  
  69.  
  70. ==================== Registry (Whitelisted) ==================
  71.  
  72. HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-25] (IDT, Inc.)
  73. HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2887440 2012-03-08] (Synaptics Incorporated)
  74. HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [627360 2011-05-09] (Atheros Commnucations)
  75. HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-05-09] (Atheros Commnucations)
  76. HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-26] (Advanced Micro Devices, Inc.)
  77. HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [333728 2012-06-20] (Hewlett-Packard Company)
  78. HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3888648 2014-05-27] (AVAST Software)
  79. HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
  80. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe [75544 2012-03-08] (Hewlett-Packard Company)
  81. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Run: [F.lux] => C:\Users\Stefan\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-16] (Flux Software LLC)
  82. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
  83. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
  84. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
  85. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Run: [Facebook Update] => C:\Users\Stefan\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-04-30] (Facebook Inc.)
  86. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Policies\system: [LogonHoursAction] 2
  87. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
  88. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Policies\Explorer: [NoSMBalloonTip] 1
  89. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\Policies\Explorer: [NoDesktopCleanupWizard] 0
  90. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\MountPoints2: {28fd4b1e-329e-11e3-aca9-08002700f459} - F:\autorun.exe
  91. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\MountPoints2: {4ba583f1-6296-11e3-86df-08002700f459} - G:\SETUP.EXE
  92. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\MountPoints2: {50b67864-c652-11e3-9313-101f74f76122} - F:\AutoRun.exe
  93. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\MountPoints2: {50b67872-c652-11e3-9313-101f74f76122} - F:\AutoRun.exe
  94. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\MountPoints2: {66f786a2-b961-11e2-b94d-cd273c2289cd} - F:\Windows\AutoRun.exe
  95. HKU\S-1-5-21-151311472-1113937884-442628346-1000\...\MountPoints2: {e57604c9-956b-11e3-aed9-08002700f459} - F:\AutoRun.exe
  96. IFEO\bitguard.exe: [Debugger] tasklist.exe
  97. IFEO\bprotect.exe: [Debugger] tasklist.exe
  98. IFEO\browsemngr.exe: [Debugger] tasklist.exe
  99. IFEO\browserdefender.exe: [Debugger] tasklist.exe
  100. IFEO\browsermngr.exe: [Debugger] tasklist.exe
  101. IFEO\browserprotect.exe: [Debugger] tasklist.exe
  102. IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
  103. IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
  104. IFEO\delta babylon.exe: [Debugger] tasklist.exe
  105. IFEO\delta tb.exe: [Debugger] tasklist.exe
  106. IFEO\delta2.exe: [Debugger] tasklist.exe
  107. IFEO\deltainstaller.exe: [Debugger] tasklist.exe
  108. IFEO\deltasetup.exe: [Debugger] tasklist.exe
  109. IFEO\deltatb.exe: [Debugger] tasklist.exe
  110. IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
  111. IFEO\iminentsetup.exe: [Debugger] tasklist.exe
  112. IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
  113. IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
  114. IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
  115. Startup: C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\act1.bat ()
  116. GroupPolicyUsers\S-1-5-21-151311472-1113937884-442628346-1004\User: Group Policy restriction detected <======= ATTENTION
  117.  
  118. ==================== Internet (Whitelisted) ====================
  119.  
  120. ProxyServer: proxy.rcub.bg.ac.rs:8080
  121. HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?affID=119776&tt=gc_&babsrc=HP_ss_din2g&mntrId=0A3C68A3C4F5EB2E
  122. SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchTerms}&affID=119776&tt=gc_&babsrc=SP_ss&mntrId=0A3C68A3C4F5EB2E
  123. SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
  124. BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
  125. BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
  126. BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
  127. BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  128. BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  129. Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
  130. Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
  131. Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  132. Tcpip\..\Interfaces\{D13D906F-D045-4757-827E-541DB4C47B03}: [NameServer]8.8.8.8,8.8.4.4
  133.  
  134. FireFox:
  135. ========
  136. FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
  137. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
  138. FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
  139. FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  140. FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  141. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
  142. FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
  143. FF Plugin-x32: @t.garena.com/garenatalk - C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
  144. FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
  145. FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
  146. FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  147. FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Stefan\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
  148.  
  149. Chrome:
  150. =======
  151. CHR HomePage: hxxp://www.google.com/
  152. CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-100&v=n9602-141&t=4"
  153. CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll ()
  154. CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
  155. CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
  156. CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
  157. CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
  158. CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
  159. CHR Extension: (Angry Birds) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2012-12-03]
  160. CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
  161. CHR Extension: (YouTube) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-11-04]
  162. CHR Extension: (Google Search) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-11-04]
  163. CHR Extension: (LoL Stream Browser) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\edidfaijmhpefkbnobdcepampbncgejp [2013-04-11]
  164. CHR Extension: (AdBlock) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-07-01]
  165. CHR Extension: (Kanji Plus) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hamegjfmkdfedhjnpojefpfmogfckojb [2013-07-01]
  166. CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-04-23]
  167. CHR Extension: (rikaikun) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp [2013-04-11]
  168. CHR Extension: (Into The Mist) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgihmkgobaljfehcadcckdggpeojaadh [2013-10-25]
  169. CHR Extension: (Graph.tk) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkhkaamdeplibnmodcgodlkghphdbahk [2013-03-29]
  170. CHR Extension: (Google Wallet) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
  171. CHR Extension: (Page Monitor) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pemhgklkefakciniebenbfclihhmmfcd [2014-02-07]
  172. CHR Extension: (Gmail) - C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-11-04]
  173. CHR HKLM-x32\...\Chrome\Extension: [nbmafkdmkkckhggblphicnnhlgljnoje] - C:\Program Files (x86)\TornTV.com\torn2_10.crx [2012-11-04]
  174.  
  175. ==================== Services (Whitelisted) =================
  176.  
  177. S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
  178. R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-09] (Atheros)
  179. R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-01] (AVAST Software)
  180. R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [523680 2012-06-20] (Hewlett-Packard Company)
  181. S4 TlntSvr; C:\Windows\System32\tlntsvr.exe [81920 2009-07-14] (Microsoft Corporation)
  182. S3 wampapache; C:\Program Files\wamp\bin\apache\apache2.4.2\bin\httpd.exe [24576 2012-05-13] (Apache Software Foundation)
  183. S3 wampmysqld; C:\Program Files\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe [9693696 2012-04-19] ()
  184.  
  185. ==================== Drivers (Whitelisted) ====================
  186.  
  187. R1 anodlwf; C:\Windows\System32\DRIVERS\anodlwfx.sys [15872 2009-03-06] ()
  188. R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-01] ()
  189. R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-01] (AVAST Software)
  190. R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-01] (AVAST Software)
  191. R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-01] ()
  192. R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
  193. R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
  194. R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
  195. R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-01] ()
  196. S3 BthMtpEnum; C:\Windows\System32\DRIVERS\BthMtpEnum.sys [64512 2009-07-14] (Microsoft Corporation)
  197. R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-22] (Disc Soft Ltd)
  198. U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-04] (Microsoft Corporation)
  199. S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
  200. S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [29696 2012-10-11] (ManyCam LLC)
  201. S3 netr28ux; C:\Windows\System32\DRIVERS\Dnetr28ux.sys [987648 2009-08-05] (Ralink Technology Corp.)
  202. S3 RAMDiskVE; C:\Windows\System32\Drivers\RAMDiskVE.sys [73552 2012-11-29] (Dataram, Inc.)
  203. R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1864328 2012-10-03] ()
  204. R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-08] (Duplex Secure Ltd.)
  205. U3 aoy05269; C:\Windows\System32\Drivers\aoy05269.sys [0 ] (Microsoft Corporation)
  206. S3 ALSysIO; \??\C:\Users\Stefan\AppData\Local\Temp\ALSysIO64.sys [X]
  207. S3 ARCVCAM; system32\DRIVERS\ArcSoftVCapture.sys [X]
  208. R3 cpuz135; \??\C:\Users\Stefan\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]
  209. S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
  210. S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
  211. S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
  212. S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
  213. S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
  214. S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
  215. S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
  216. S3 massfilter; system32\drivers\massfilter.sys [X]
  217. U2 Messenger;
  218. S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
  219. S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
  220. S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
  221. S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
  222. S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
  223.  
  224. ==================== NetSvcs (Whitelisted) ===================
  225.  
  226.  
  227. ==================== One Month Created Files and Folders ========
  228.  
  229. 2014-06-01 14:58 - 2014-06-01 14:59 - 00019134 _____ () C:\Users\Stefan\Desktop\FRST.txt
  230. 2014-06-01 14:57 - 2014-06-01 14:58 - 00000000 ____D () C:\FRST
  231. 2014-06-01 14:56 - 2014-06-01 14:56 - 02067456 _____ (Farbar) C:\Users\Stefan\Desktop\FRST64.exe
  232. 2014-05-31 17:34 - 2014-05-31 17:34 - 00000862 _____ () C:\Windows\system32\termcap
  233. 2014-05-31 15:50 - 2014-05-31 17:52 - 00000738 _____ () C:\Users\Stefan\Desktop\kpr.c
  234. 2014-05-30 17:38 - 2014-05-30 17:39 - 01666691 _____ () C:\Users\Stefan\Downloads\Street Fighter II Turbo - Hyper Fighting (USA).zip
  235. 2014-05-30 17:30 - 2014-05-30 17:30 - 03734829 _____ () C:\Users\Stefan\Downloads\street_fighter_alpha_2.7z
  236. 2014-05-27 12:12 - 2014-05-27 12:12 - 00409914 _____ () C:\Users\Stefan\Downloads\Uvod u Veb i Internet Tehnologije.zip
  237. 2014-05-27 01:45 - 2014-05-27 01:45 - 00003170 _____ () C:\Windows\System32\Tasks\{534355F6-A44F-494A-969C-FF0CD20DC0C5}
  238. 2014-05-27 01:45 - 2014-05-27 01:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
  239. 2014-05-27 01:45 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
  240. 2014-05-27 01:45 - 2014-05-16 14:03 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
  241. 2014-05-27 01:44 - 2014-05-27 01:44 - 00000000 ____D () C:\Program Files\Oracle
  242. 2014-05-26 18:16 - 2014-05-26 18:16 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Z-Net I
  243. 2014-05-26 18:16 - 2014-05-26 18:16 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Z-Net I
  244. 2014-05-26 18:16 - 2014-05-26 18:16 - 00000000 ____D () C:\Program Files (x86)\Z-Net I
  245. 2014-05-26 18:15 - 2014-05-27 18:31 - 00000000 ____D () C:\Users\Stefan\Desktop\zsnes
  246. 2014-05-26 18:15 - 2014-05-26 18:15 - 00668825 _____ (DarkAkuma of http://www.z-net.us/) C:\Users\Stefan\Downloads\Z-Net_I_v1.2.0.2_BETA_install.exe
  247. 2014-05-26 18:15 - 2014-05-26 18:15 - 00639711 _____ () C:\Users\Stefan\Downloads\zsnesw142.zip
  248. 2014-05-26 18:00 - 2014-05-26 18:00 - 00000000 ____D () C:\Users\Stefan\AppData\Local\LogMeIn
  249. 2014-05-26 18:00 - 2014-05-26 18:00 - 00000000 ____D () C:\ProgramData\LogMeIn
  250. 2014-05-25 01:18 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
  251. 2014-05-25 01:18 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
  252. 2014-05-24 19:40 - 2014-05-24 19:40 - 00685546 _____ () C:\Users\Stefan\Downloads\Kisa.zip
  253. 2014-05-22 22:35 - 2014-05-22 22:42 - 00000000 ____D () C:\Users\Stefan\Desktop\fxspace
  254. 2014-05-21 01:55 - 2014-05-21 01:55 - 00000218 _____ () C:\Users\Stefan\AppData\Local\recently-used.xbel
  255. 2014-05-19 10:55 - 2014-05-19 10:55 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
  256. 2014-05-19 10:51 - 2014-05-31 13:40 - 00000000 ____D () C:\ProgramData\Microsoft Help
  257. 2014-05-19 10:51 - 2014-05-19 10:51 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Microsoft Help
  258. 2014-05-16 14:03 - 2014-05-16 14:03 - 00156448 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetFlt.sys
  259. 2014-05-16 14:03 - 2014-05-16 14:03 - 00141600 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp.sys
  260. 2014-05-16 14:01 - 2014-05-16 14:01 - 00204064 _____ (Oracle Corporation) C:\Windows\system32\VBoxNetFltNobj.dll
  261. 2014-05-15 22:45 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
  262. 2014-05-15 22:45 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
  263. 2014-05-15 22:45 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
  264. 2014-05-15 22:45 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
  265. 2014-05-15 22:45 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
  266. 2014-05-15 22:45 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
  267. 2014-05-15 22:45 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
  268. 2014-05-15 22:45 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
  269. 2014-05-15 22:45 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
  270. 2014-05-15 22:45 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
  271. 2014-05-15 22:45 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
  272. 2014-05-15 22:45 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
  273. 2014-05-15 22:45 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
  274. 2014-05-15 22:45 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
  275. 2014-05-15 22:45 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
  276. 2014-05-15 22:45 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
  277. 2014-05-15 22:45 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
  278. 2014-05-15 22:45 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
  279. 2014-05-15 22:45 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
  280. 2014-05-15 22:45 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
  281. 2014-05-15 22:45 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
  282. 2014-05-15 22:45 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
  283. 2014-05-15 22:45 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
  284. 2014-05-15 22:45 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
  285. 2014-05-15 22:45 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
  286. 2014-05-15 22:45 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
  287. 2014-05-15 22:45 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
  288. 2014-05-15 22:45 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
  289. 2014-05-15 22:45 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
  290. 2014-05-15 22:45 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
  291. 2014-05-15 22:45 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
  292. 2014-05-15 22:45 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
  293. 2014-05-15 22:45 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
  294. 2014-05-15 22:45 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
  295. 2014-05-15 22:45 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
  296. 2014-05-15 22:45 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
  297. 2014-05-15 22:45 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
  298. 2014-05-15 22:45 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
  299. 2014-05-15 22:45 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
  300. 2014-05-15 22:45 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
  301. 2014-05-15 22:45 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
  302. 2014-05-15 22:41 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
  303. 2014-05-15 22:41 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
  304. 2014-05-13 15:50 - 2014-05-13 15:50 - 00002254 _____ () C:\Users\Public\Desktop\JavaFX Scene Builder 1.1.lnk
  305. 2014-05-13 15:50 - 2014-05-13 15:50 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\JavaFX Scene Builder
  306. 2014-05-13 15:50 - 2014-05-13 15:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaFX Scene Builder
  307. 2014-05-13 15:49 - 2014-05-13 15:49 - 00000000 ____D () C:\Program Files (x86)\Oracle
  308. 2014-05-12 23:29 - 2014-05-13 00:09 - 00000452 _____ () C:\index.html
  309.  
  310. ==================== One Month Modified Files and Folders =======
  311.  
  312. 2014-06-01 14:59 - 2014-06-01 14:58 - 00019134 _____ () C:\Users\Stefan\Desktop\FRST.txt
  313. 2014-06-01 14:59 - 2012-11-04 00:11 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Temp
  314. 2014-06-01 14:58 - 2014-06-01 14:57 - 00000000 ____D () C:\FRST
  315. 2014-06-01 14:56 - 2014-06-01 14:56 - 02067456 _____ (Farbar) C:\Users\Stefan\Desktop\FRST64.exe
  316. 2014-06-01 14:34 - 2012-11-04 21:19 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Skype
  317. 2014-06-01 14:30 - 2012-11-04 18:10 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  318. 2014-06-01 13:20 - 2009-07-14 06:45 - 00026112 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  319. 2014-06-01 13:20 - 2009-07-14 06:45 - 00026112 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  320. 2014-06-01 13:17 - 2012-11-04 00:10 - 01959735 _____ () C:\Windows\WindowsUpdate.log
  321. 2014-06-01 13:08 - 2014-04-30 19:03 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-151311472-1113937884-442628346-1000UA.job
  322. 2014-06-01 13:07 - 2013-08-15 07:40 - 00003496 _____ () C:\Windows\System32\Tasks\gg_uac_daemon_Stefan
  323. 2014-06-01 13:05 - 2012-11-04 21:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
  324. 2014-06-01 00:07 - 2012-11-04 00:27 - 00007606 _____ () C:\Users\Stefan\AppData\Local\Resmon.ResmonCfg
  325. 2014-05-31 22:30 - 2012-11-04 18:10 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  326. 2014-05-31 21:51 - 2014-04-30 21:50 - 00003512 _____ () C:\Windows\System32\Tasks\Windows Updater
  327. 2014-05-31 20:11 - 2012-11-29 00:14 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{9FE42DBE-E0FD-4A2B-91E4-8E372C549CE2}
  328. 2014-05-31 19:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
  329. 2014-05-31 19:08 - 2014-04-30 19:03 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-151311472-1113937884-442628346-1000Core.job
  330. 2014-05-31 18:01 - 2012-11-04 00:49 - 00063472 _____ () C:\Users\Stefan\AppData\Local\GDIPFONTCACHEV1.DAT
  331. 2014-05-31 17:52 - 2014-05-31 15:50 - 00000738 _____ () C:\Users\Stefan\Desktop\kpr.c
  332. 2014-05-31 17:34 - 2014-05-31 17:34 - 00000862 _____ () C:\Windows\system32\termcap
  333. 2014-05-31 14:31 - 2014-03-15 21:37 - 00000000 ____D () C:\ProgramData\DatacardService
  334. 2014-05-31 14:26 - 2013-01-24 13:25 - 00000000 ___RD () C:\Program Files (x86)\Skype
  335. 2014-05-31 14:26 - 2012-11-04 21:19 - 00000000 ____D () C:\ProgramData\Skype
  336. 2014-05-31 14:23 - 2009-07-14 07:13 - 00795818 _____ () C:\Windows\system32\PerfStringBackup.INI
  337. 2014-05-31 14:19 - 2012-11-09 19:47 - 00019037 _____ () C:\Windows\setupact.log
  338. 2014-05-31 14:19 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
  339. 2014-05-31 14:19 - 2009-07-14 06:45 - 00286632 _____ () C:\Windows\system32\FNTCACHE.DAT
  340. 2014-05-31 13:40 - 2014-05-19 10:51 - 00000000 ____D () C:\ProgramData\Microsoft Help
  341. 2014-05-31 13:40 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
  342. 2014-05-30 17:39 - 2014-05-30 17:38 - 01666691 _____ () C:\Users\Stefan\Downloads\Street Fighter II Turbo - Hyper Fighting (USA).zip
  343. 2014-05-30 17:30 - 2014-05-30 17:30 - 03734829 _____ () C:\Users\Stefan\Downloads\street_fighter_alpha_2.7z
  344. 2014-05-28 20:00 - 2014-02-12 13:15 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\HexChat
  345. 2014-05-27 20:11 - 2012-11-06 21:30 - 00000000 ____D () C:\Users\Stefan\.VirtualBox
  346. 2014-05-27 18:31 - 2014-05-26 18:15 - 00000000 ____D () C:\Users\Stefan\Desktop\zsnes
  347. 2014-05-27 16:42 - 2014-04-30 17:17 - 00000000 ___RD () C:\Users\Stefan\Desktop\htmlpage
  348. 2014-05-27 12:12 - 2014-05-27 12:12 - 00409914 _____ () C:\Users\Stefan\Downloads\Uvod u Veb i Internet Tehnologije.zip
  349. 2014-05-27 01:45 - 2014-05-27 01:45 - 00003170 _____ () C:\Windows\System32\Tasks\{534355F6-A44F-494A-969C-FF0CD20DC0C5}
  350. 2014-05-27 01:45 - 2014-05-27 01:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
  351. 2014-05-27 01:44 - 2014-05-27 01:44 - 00000000 ____D () C:\Program Files\Oracle
  352. 2014-05-26 19:03 - 2012-11-07 22:40 - 00000000 ____D () C:\Program Files\CCleaner
  353. 2014-05-26 18:16 - 2014-05-26 18:16 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Z-Net I
  354. 2014-05-26 18:16 - 2014-05-26 18:16 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Z-Net I
  355. 2014-05-26 18:16 - 2014-05-26 18:16 - 00000000 ____D () C:\Program Files (x86)\Z-Net I
  356. 2014-05-26 18:15 - 2014-05-26 18:15 - 00668825 _____ (DarkAkuma of http://www.z-net.us/) C:\Users\Stefan\Downloads\Z-Net_I_v1.2.0.2_BETA_install.exe
  357. 2014-05-26 18:15 - 2014-05-26 18:15 - 00639711 _____ () C:\Users\Stefan\Downloads\zsnesw142.zip
  358. 2014-05-26 18:00 - 2014-05-26 18:00 - 00000000 ____D () C:\Users\Stefan\AppData\Local\LogMeIn
  359. 2014-05-26 18:00 - 2014-05-26 18:00 - 00000000 ____D () C:\ProgramData\LogMeIn
  360. 2014-05-26 09:03 - 2014-04-17 02:03 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
  361. 2014-05-25 21:31 - 2012-11-06 23:17 - 00000000 ____D () C:\Users\Stefan\AppData\Local\CrashDumps
  362. 2014-05-25 19:32 - 2013-07-27 16:12 - 00000000 ____D () C:\Users\Stefan\Desktop\Diana
  363. 2014-05-25 01:40 - 2014-04-23 00:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
  364. 2014-05-24 19:40 - 2014-05-24 19:40 - 00685546 _____ () C:\Users\Stefan\Downloads\Kisa.zip
  365. 2014-05-24 18:04 - 2014-02-24 22:58 - 00000000 ____D () C:\Users\Stefan\Desktop\eclipse
  366. 2014-05-24 18:03 - 2014-02-24 23:07 - 00000000 ____D () C:\Users\Stefan\Desktop\workspace
  367. 2014-05-22 22:42 - 2014-05-22 22:35 - 00000000 ____D () C:\Users\Stefan\Desktop\fxspace
  368. 2014-05-21 22:08 - 2012-12-09 21:14 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\QtProject
  369. 2014-05-21 01:55 - 2014-05-21 01:55 - 00000218 _____ () C:\Users\Stefan\AppData\Local\recently-used.xbel
  370. 2014-05-20 20:59 - 2012-11-05 01:16 - 00000000 ____D () C:\Users\Stefan\Documents\Bluetooth Folder
  371. 2014-05-20 20:32 - 2013-08-18 16:15 - 00000000 ____D () C:\Users\Stefan\AppData\Local\gtk-2.0
  372. 2014-05-20 16:40 - 2013-02-01 02:05 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
  373. 2014-05-19 10:55 - 2014-05-19 10:55 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
  374. 2014-05-19 10:51 - 2014-05-19 10:51 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Microsoft Help
  375. 2014-05-16 14:04 - 2014-05-27 01:45 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
  376. 2014-05-16 14:03 - 2014-05-27 01:45 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
  377. 2014-05-16 14:03 - 2014-05-16 14:03 - 00156448 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetFlt.sys
  378. 2014-05-16 14:03 - 2014-05-16 14:03 - 00141600 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp.sys
  379. 2014-05-16 14:01 - 2014-05-16 14:01 - 00204064 _____ (Oracle Corporation) C:\Windows\system32\VBoxNetFltNobj.dll
  380. 2014-05-15 23:03 - 2013-06-20 23:41 - 00000632 __RSH () C:\Users\Stefan\ntuser.pol
  381. 2014-05-15 23:03 - 2012-11-04 00:11 - 00000000 ___RD () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
  382. 2014-05-15 23:03 - 2012-11-04 00:11 - 00000000 ___RD () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
  383. 2014-05-15 23:03 - 2012-11-04 00:11 - 00000000 ____D () C:\Users\Stefan
  384. 2014-05-15 23:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
  385. 2014-05-15 22:52 - 2013-07-22 20:05 - 00000000 ____D () C:\Windows\system32\MRT
  386. 2014-05-15 22:49 - 2012-11-06 00:56 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
  387. 2014-05-15 21:50 - 2014-01-27 11:00 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
  388. 2014-05-15 21:50 - 2012-11-04 21:29 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
  389. 2014-05-15 21:50 - 2012-11-04 21:29 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
  390. 2014-05-13 17:43 - 2013-05-07 19:07 - 00045270 _____ () C:\Users\Stefan\AppData\Roaming\room_v3.dat
  391. 2014-05-13 16:21 - 2013-05-07 19:00 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\GarenaPlus
  392. 2014-05-13 16:21 - 2013-05-07 19:00 - 00000000 ____D () C:\ProgramData\GarenaMessenger
  393. 2014-05-13 16:20 - 2013-05-07 19:00 - 00000000 ____D () C:\Program Files (x86)\Garena Plus
  394. 2014-05-13 15:50 - 2014-05-13 15:50 - 00002254 _____ () C:\Users\Public\Desktop\JavaFX Scene Builder 1.1.lnk
  395. 2014-05-13 15:50 - 2014-05-13 15:50 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\JavaFX Scene Builder
  396. 2014-05-13 15:50 - 2014-05-13 15:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaFX Scene Builder
  397. 2014-05-13 15:49 - 2014-05-13 15:49 - 00000000 ____D () C:\Program Files (x86)\Oracle
  398. 2014-05-13 11:08 - 2013-05-09 23:27 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Media Player Classic
  399. 2014-05-13 00:09 - 2014-05-12 23:29 - 00000452 _____ () C:\index.html
  400. 2014-05-09 22:25 - 2012-11-04 18:10 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
  401. 2014-05-09 22:25 - 2012-11-04 18:10 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
  402. 2014-05-09 08:14 - 2014-05-25 01:18 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
  403. 2014-05-09 08:11 - 2014-05-25 01:18 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
  404. 2014-05-05 09:42 - 2012-11-09 19:47 - 00399816 _____ () C:\Windows\PFRO.log
  405. 2014-05-03 14:55 - 2012-11-05 02:06 - 00000000 ____D () C:\Program Files (x86)\Games
  406.  
  407. Files to move or delete:
  408. ====================
  409. C:\Users\Stefan\AppData\Roaming\CamLayout.ini
  410. C:\Users\Stefan\AppData\Roaming\CamShapes.ini
  411.  
  412.  
  413. Some content of TEMP:
  414. ====================
  415. C:\Users\Stefan\AppData\Local\Temp\ose00000.exe
  416. C:\Users\Stefan\AppData\Local\Temp\ose00001.exe
  417. C:\Users\Stefan\AppData\Local\Temp\tmp1CFA.tmp.exe
  418. C:\Users\Stefan\AppData\Local\Temp\tmp50E8.tmp.exe
  419. C:\Users\Stefan\AppData\Local\Temp\tmp7366.tmp.exe
  420.  
  421.  
  422. ==================== Bamital & volsnap Check =================
  423.  
  424. C:\Windows\System32\winlogon.exe => MD5 is legit
  425. C:\Windows\System32\wininit.exe => MD5 is legit
  426. C:\Windows\SysWOW64\wininit.exe => MD5 is legit
  427. C:\Windows\explorer.exe => MD5 is legit
  428. C:\Windows\SysWOW64\explorer.exe => MD5 is legit
  429. C:\Windows\System32\svchost.exe => MD5 is legit
  430. C:\Windows\SysWOW64\svchost.exe => MD5 is legit
  431. C:\Windows\System32\services.exe => MD5 is legit
  432. C:\Windows\System32\User32.dll => MD5 is legit
  433. C:\Windows\SysWOW64\User32.dll => MD5 is legit
  434. C:\Windows\System32\userinit.exe => MD5 is legit
  435. C:\Windows\SysWOW64\userinit.exe => MD5 is legit
  436. C:\Windows\System32\rpcss.dll => MD5 is legit
  437. C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
  438.  
  439.  
  440. LastRegBack: 2014-05-29 21:11
  441.  
  442. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!