Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:28-11-2015
- Ran by Nybruger (administrator) on BASIMOVICH (29-11-2015 15:04:33)
- Running from C:\Users\Nybruger\Downloads
- Loaded Profiles: Nybruger & UpdatusUser (Available Profiles: Nybruger & UpdatusUser)
- Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Dansk (Danmark)
- Internet Explorer Version 11 (Default browser: Chrome)
- Boot Mode: Normal
- Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Processes (Whitelisted) =================
- (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
- (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
- (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
- (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
- (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
- (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
- (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
- (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
- () C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
- (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
- (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- (Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
- (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
- (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
- (WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
- (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
- (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
- (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
- (Spotify Ltd) C:\Users\Nybruger\AppData\Roaming\Spotify\SpotifyWebHelper.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
- (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
- (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
- (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
- (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
- (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
- (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
- (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
- (Spotify Ltd) C:\Users\Nybruger\AppData\Roaming\Spotify\Spotify.exe
- (Spotify Ltd) C:\Users\Nybruger\AppData\Roaming\Spotify\SpotifyCrashService.exe
- (Spotify Ltd) C:\Users\Nybruger\AppData\Roaming\Spotify\Spotify.exe
- (Spotify Ltd) C:\Users\Nybruger\AppData\Roaming\Spotify\Spotify.exe
- (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
- (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
- ==================== Registry (Whitelisted) ===========================
- (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
- HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-07-06] (Realtek Semiconductor)
- HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
- HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-27] (Intel Corporation)
- HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
- HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
- HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [917112 2015-10-08] (BlueStack Systems, Inc.)
- HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-10-06] (Oracle Corporation)
- HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [509216 2015-10-12] (QFX Software Corporation)
- HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\Run: [Spotify Web Helper] => C:\Users\Nybruger\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2345584 2015-11-27] (Spotify Ltd)
- HKU\S-1-5-21-343862810-3332788532-1706303923-1003\...\MountPoints2: {56a04615-e34e-11e4-ae7c-806e6f6e6963} - E:\Run.exe
- ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
- ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
- ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
- ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-15] (AVAST Software)
- InternetURL: C:\Users\Nybruger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2.com.url -> 0
- Startup: C:\Users\Nybruger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2015-07-29]
- ==================== Internet (Whitelisted) ====================
- (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
- Tcpip\Parameters: [DhcpNameServer] 89.150.129.22 89.150.129.10
- Tcpip\..\Interfaces\{323C8541-10F5-47A4-80F6-0BF02151B974}: [DhcpNameServer] 89.150.129.22 89.150.129.10
- Tcpip\..\Interfaces\{EF5C365C-B02A-412D-9797-CFCD63610427}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
- Internet Explorer:
- ==================
- HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
- HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
- HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
- HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
- HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
- HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
- HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
- HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
- HKU\S-1-5-21-343862810-3332788532-1706303923-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
- HKU\S-1-5-21-343862810-3332788532-1706303923-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
- HKU\S-1-5-21-343862810-3332788532-1706303923-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
- HKU\S-1-5-21-343862810-3332788532-1706303923-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
- SearchScopes: HKU\S-1-5-21-343862810-3332788532-1706303923-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH
- SearchScopes: HKU\S-1-5-21-343862810-3332788532-1706303923-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH
- SearchScopes: HKU\S-1-5-21-343862810-3332788532-1706303923-1003 -> {B79B20A6-0222-49de-88AE-6BC10503758B} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A7941509802&ie=UTF-8&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A7941509802&q={searchTerms}
- SearchScopes: HKU\S-1-5-21-343862810-3332788532-1706303923-1003 -> {E9C5909B-9724-4087-BCC6-03E5EEEBA7DE} URL = hxxp://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBDSV
- BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-15] (AVAST Software)
- BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
- BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-10-23] (Oracle Corporation)
- BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-15] (AVAST Software)
- BHO-x32: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
- BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
- BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-10-23] (Oracle Corporation)
- Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
- Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
- StartMenuInternet: IEXPLORE.EXE - iexplore.exe
- FireFox:
- ========
- FF ProfilePath: C:\Users\Nybruger\AppData\Roaming\Mozilla\Firefox\Profiles\r0vxr7ii.default
- FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-23] ()
- FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
- FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-23] ()
- FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-10-23] (Oracle Corporation)
- FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-10-23] (Oracle Corporation)
- FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
- FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
- FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-11-22] (Nexon)
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
- FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
- FF Plugin HKU\S-1-5-21-343862810-3332788532-1706303923-1000: @nsroblox.roblox.com/launcher -> C:\Users\Nybruger\AppData\Local\Roblox\Versions\version-cdc47f439edb4527\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
- FF Plugin HKU\S-1-5-21-343862810-3332788532-1706303923-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\Nybruger\AppData\Local\Roblox\Versions\version-cdc47f439edb4527\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
- FF Plugin HKU\S-1-5-21-343862810-3332788532-1706303923-1000: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Nybruger\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1503240-0-npoctoshape.dll [2015-03-24] (Octoshape ApS)
- FF Plugin ProgramFiles/Appdata: C:\Users\Nybruger\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2015-07-06] (Octoshape ApS)
- FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
- FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-15] [not signed]
- Chrome:
- =======
- CHR Profile: C:\Users\Nybruger\AppData\Local\Google\Chrome\User Data\Default
- CHR Extension: (Skype Click to Call) - C:\Users\Nybruger\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-11-29]
- CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Nybruger\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-11-29]
- CHR Extension: (Chrome Web Store Payments) - C:\Users\Nybruger\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-29]
- CHR HKU\S-1-5-21-343862810-3332788532-1706303923-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
- CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-15]
- CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
- ==================== Services (Whitelisted) ========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-07-29] (Adobe Systems) [File not signed]
- R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
- S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
- R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-15] (AVAST Software)
- S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.)
- R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.)
- R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.)
- R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
- R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
- S3 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [63968 2015-05-21] (CyberGhost S.R.L)
- S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
- R2 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1972408 2015-10-05] ()
- S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
- S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
- S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
- R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
- R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [File not signed]
- R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
- S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580144 2015-08-06] (WiseCleaner.com)
- ===================== Drivers (Whitelisted) ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
- R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-15] (AVAST Software)
- R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-15] (AVAST Software)
- R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-15] (AVAST Software)
- R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-15] (AVAST Software)
- R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
- R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
- R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-15] (AVAST Software)
- R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-15] (AVAST Software)
- R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-10-08] (BlueStack Systems)
- S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
- S3 gdrv; C:\Windows\gdrv.sys [0 2015-10-31] () <==== ATTENTION (zero byte File/Folder)
- S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-10-31] ()
- R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-07-06] (REALiX(tm))
- R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [224720 2015-08-18] (QFX Software Corporation)
- R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [42016 2013-11-27] (Visicom Media Inc.)
- R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
- S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-29] (Malwarebytes)
- S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
- R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35232 2013-12-06] (Visicom Media Inc.)
- R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2015-07-06] (Intel Corporation)
- S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
- R3 RecFltr; C:\Windows\System32\drivers\RecFltr.sys [44800 2015-07-06] (Razer USA Ltd.)
- S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
- S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [117768 2015-10-02] (Oracle Corporation)
- S3 WiseHDInfo; C:\Windows\WiseHDInfo64.dll [14800 2015-07-23] (wisecleaner.com)
- S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
- ==================== NetSvcs (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ==================== One Month Created files and folders ========
- (If an entry is included in the fixlist, the file/folder will be moved.)
- 2015-11-29 15:04 - 2015-11-29 15:04 - 00019654 _____ C:\Users\Nybruger\Downloads\FRST.txt
- 2015-11-29 15:00 - 2015-11-29 15:00 - 00002269 _____ C:\Users\Public\Desktop\Google Chrome.lnk
- 2015-11-29 15:00 - 2015-11-29 15:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
- 2015-11-29 14:59 - 2015-11-29 14:59 - 00929872 _____ (Google Inc.) C:\Users\Nybruger\Downloads\ChromeSetup.exe
- 2015-11-29 11:06 - 2015-11-29 15:04 - 00000000 ____D C:\FRST
- 2015-11-29 11:00 - 2015-11-29 11:05 - 02349056 _____ (Farbar) C:\Users\Nybruger\Downloads\FRST64.exe
- 2015-11-29 11:00 - 2015-11-29 11:00 - 01720320 _____ (Farbar) C:\Users\Nybruger\Downloads\FRST.exe
- 2015-11-29 10:39 - 2015-11-29 10:47 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
- 2015-11-29 10:39 - 2015-11-29 10:39 - 00001118 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
- 2015-11-29 10:39 - 2015-11-29 10:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
- 2015-11-29 10:39 - 2015-11-29 10:39 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
- 2015-11-29 10:39 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
- 2015-11-29 10:39 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
- 2015-11-29 10:39 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
- 2015-11-29 01:30 - 2015-11-29 01:30 - 00191546 _____ C:\Users\Nybruger\Desktop\Paper Clip w Nearly Maxed TH10 Clash of Clans Champion COC Name Change Lvl 124 _ eBay.html
- 2015-11-29 01:30 - 2015-11-29 01:30 - 00000000 ____D C:\Users\Nybruger\Desktop\Paper Clip w Nearly Maxed TH10 Clash of Clans Champion COC Name Change Lvl 124 _ eBay_files
- 2015-11-26 21:43 - 2015-11-13 13:35 - 00000000 ____D C:\Users\Nybruger\Desktop\InstaKrack
- 2015-11-25 16:28 - 2015-11-25 16:28 - 00058016 _____ C:\Users\Nybruger\AppData\Local\GDIPFONTCACHEV1.DAT
- 2015-11-25 16:27 - 2015-11-25 16:27 - 04888504 _____ C:\Windows\system32\FNTCACHE.DAT
- 2015-11-24 22:58 - 2015-11-24 22:58 - 00000000 ____D C:\Program Files\Microsoft Office 15
- 2015-11-23 15:30 - 2015-11-23 15:30 - 00000000 ____D C:\Users\Nybruger\Desktop\combat
- 2015-11-22 14:33 - 2015-11-22 14:33 - 00000000 ____D C:\ProgramData\Nexon
- 2015-11-22 00:16 - 2015-11-29 09:58 - 00000000 ____D C:\Users\Nybruger\AppData\Local\NXEPassportClient
- 2015-11-22 00:16 - 2015-11-22 00:16 - 00001638 _____ C:\Users\Public\Desktop\Combat Arms EU.lnk
- 2015-11-22 00:16 - 2015-11-22 00:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
- 2015-11-22 00:15 - 2015-11-22 14:45 - 00000000 ____D C:\ProgramData\NexonEU
- 2015-11-22 00:15 - 2015-11-22 00:15 - 00000000 ____D C:\Nexon
- 2015-11-21 21:16 - 2015-11-21 21:17 - 00696832 _____ C:\Users\Nybruger\Desktop\LAWIN.exe
- 2015-11-21 21:03 - 2015-11-21 21:03 - 00000000 ____D C:\Users\Nybruger\AppData\Local\Akamai
- 2015-11-16 22:18 - 2015-11-16 22:19 - 00000000 ____D C:\Users\Nybruger\Desktop\screenshots
- 2015-11-16 22:18 - 2015-11-16 22:18 - 00000000 ____D C:\Users\Nybruger\Desktop\money
- 2015-11-16 22:15 - 2015-11-16 22:16 - 00000000 ____D C:\Users\Nybruger\Desktop\ALL MY HAX SHIT
- 2015-11-15 00:37 - 2015-11-15 00:42 - 00000000 _____ C:\Users\Nybruger\AppData\Local\windowsmediaplayer.exe
- 2015-11-15 00:37 - 2015-11-15 00:37 - 00024072 _____ C:\Users\Nybruger\AppData\Local\cZHw
- 2015-11-12 19:49 - 2015-11-12 19:49 - 00000000 ____D C:\Users\Nybruger\AppData\Local\Blizzard
- 2015-11-12 19:49 - 2015-11-12 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
- 2015-11-12 19:36 - 2015-11-21 10:24 - 00000000 ____D C:\Program Files (x86)\Hearthstone
- 2015-11-12 19:35 - 2015-11-21 11:03 - 00000000 ____D C:\Users\Nybruger\AppData\Local\Battle.net
- 2015-11-12 19:35 - 2015-11-12 19:36 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Battle.net
- 2015-11-12 19:35 - 2015-11-12 19:35 - 00000000 ____D C:\Users\Nybruger\AppData\Local\Blizzard Entertainment
- 2015-11-12 19:35 - 2015-11-12 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
- 2015-11-12 19:35 - 2015-11-12 19:35 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
- 2015-11-12 19:34 - 2015-11-21 10:24 - 00000000 ____D C:\Program Files (x86)\Battle.net
- 2015-11-12 19:32 - 2015-11-12 19:32 - 00000000 ____D C:\ProgramData\Battle.net
- 2015-11-12 14:34 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
- 2015-11-11 14:53 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
- 2015-11-11 14:53 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
- 2015-11-11 14:53 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
- 2015-11-11 14:53 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
- 2015-11-11 14:53 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
- 2015-11-11 14:53 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
- 2015-11-11 14:53 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
- 2015-11-11 14:53 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
- 2015-11-11 14:53 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
- 2015-11-11 14:53 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
- 2015-11-11 14:53 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
- 2015-11-11 14:53 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
- 2015-11-11 14:53 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
- 2015-11-11 14:53 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
- 2015-11-11 14:53 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
- 2015-11-11 14:53 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
- 2015-11-11 14:53 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
- 2015-11-11 14:53 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
- 2015-11-11 14:53 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
- 2015-11-11 14:53 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
- 2015-11-11 14:53 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
- 2015-11-11 14:53 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
- 2015-11-11 14:53 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
- 2015-11-11 14:53 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
- 2015-11-11 14:53 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
- 2015-11-11 14:53 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
- 2015-11-11 14:53 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
- 2015-11-11 14:53 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
- 2015-11-11 14:53 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
- 2015-11-11 14:53 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
- 2015-11-11 14:53 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
- 2015-11-11 14:53 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
- 2015-11-11 14:53 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
- 2015-11-11 14:53 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
- 2015-11-11 14:53 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
- 2015-11-11 14:53 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
- 2015-11-11 14:53 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
- 2015-11-11 14:53 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
- 2015-11-11 14:53 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
- 2015-11-11 14:53 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
- 2015-11-11 14:53 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
- 2015-11-11 14:53 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
- 2015-11-11 14:53 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
- 2015-11-11 14:53 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
- 2015-11-11 14:53 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
- 2015-11-11 14:53 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
- 2015-11-11 14:53 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
- 2015-11-11 14:53 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
- 2015-11-11 14:53 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
- 2015-11-11 14:53 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
- 2015-11-11 14:53 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
- 2015-11-11 14:53 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
- 2015-11-11 14:53 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
- 2015-11-11 14:53 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
- 2015-11-11 14:53 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
- 2015-11-11 14:53 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
- 2015-11-11 14:53 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
- 2015-11-11 14:53 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
- 2015-11-11 14:53 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
- 2015-11-11 14:53 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
- 2015-11-11 14:53 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
- 2015-11-11 14:53 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
- 2015-11-11 14:53 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
- 2015-11-11 14:53 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
- 2015-11-11 14:53 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
- 2015-11-11 14:53 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
- 2015-11-11 14:53 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
- 2015-11-11 14:53 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
- 2015-11-11 14:53 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
- 2015-11-11 14:53 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
- 2015-11-11 14:53 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
- 2015-11-11 14:53 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
- 2015-11-11 14:53 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
- 2015-11-11 14:53 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
- 2015-11-11 14:53 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
- 2015-11-11 14:53 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
- 2015-11-11 14:53 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
- 2015-11-11 14:53 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
- 2015-11-11 14:53 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
- 2015-11-11 14:53 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
- 2015-11-11 14:52 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
- 2015-11-11 14:52 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
- 2015-11-11 14:52 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
- 2015-11-11 14:52 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
- 2015-11-11 14:52 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
- 2015-11-11 14:52 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
- 2015-11-11 14:52 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
- 2015-11-11 14:52 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
- 2015-11-11 14:52 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
- 2015-11-11 14:52 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
- 2015-11-11 14:52 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
- 2015-11-11 14:52 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
- 2015-11-11 14:52 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
- 2015-11-11 14:52 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
- 2015-11-11 14:52 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
- 2015-11-11 14:52 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
- 2015-11-11 14:52 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
- 2015-11-11 14:52 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
- 2015-11-11 14:52 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
- 2015-11-11 14:52 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
- 2015-11-11 14:52 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
- 2015-11-11 14:52 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
- 2015-11-11 14:52 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
- 2015-11-11 14:52 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
- 2015-11-11 14:52 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
- 2015-11-11 14:52 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
- 2015-11-11 14:52 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
- 2015-11-11 14:52 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
- 2015-11-11 14:52 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
- 2015-11-11 14:52 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
- 2015-11-11 14:52 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
- 2015-11-11 14:52 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
- 2015-11-11 14:52 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
- 2015-11-11 14:52 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
- 2015-11-11 14:51 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
- 2015-11-11 14:51 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
- 2015-11-11 14:51 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
- 2015-11-11 14:51 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
- 2015-11-11 14:51 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
- 2015-11-11 14:51 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
- 2015-11-10 22:05 - 2015-11-10 22:05 - 00000000 ____D C:\Users\Nybruger\Documents\MKGame
- 2015-11-10 18:32 - 2015-11-10 18:32 - 00003106 _____ C:\Windows\System32\Tasks\{22CC4B11-D1DE-476A-8B18-D956C42214F8}
- 2015-11-10 15:34 - 2015-11-10 18:34 - 00000000 ____D C:\Users\Nybruger\Documents\MK-LOL
- 2015-11-10 15:34 - 2015-11-10 15:34 - 00000058 _____ C:\Windows\JQHApp.dat
- 2015-11-10 15:34 - 2015-11-10 15:34 - 00000000 ____D C:\Users\Nybruger\Documents\MKJogo
- 2015-11-10 15:33 - 2015-11-10 15:33 - 00001105 _____ C:\Users\Nybruger\Desktop\MK LOL.lnk
- 2015-11-10 15:33 - 2015-11-10 15:33 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
- 2015-11-10 15:33 - 2015-11-10 15:33 - 00000000 ____D C:\Program Files (x86)\MKJogo
- 2015-11-07 16:51 - 2015-11-07 17:31 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Apple Computer
- 2015-11-07 16:51 - 2015-11-07 16:51 - 00000000 ____D C:\Users\Nybruger\AppData\Local\Apple Computer
- 2015-11-07 16:51 - 2015-11-07 16:51 - 00000000 ____D C:\ProgramData\Apple Computer
- 2015-11-07 16:50 - 2015-11-07 16:51 - 00000000 ____D C:\Program Files\Common Files\Apple
- 2015-11-07 16:50 - 2015-11-07 16:50 - 00002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
- 2015-11-07 16:50 - 2015-11-07 16:50 - 00000000 ____D C:\Windows\System32\Tasks\Apple
- 2015-11-07 16:50 - 2015-11-07 16:50 - 00000000 ____D C:\Users\Nybruger\AppData\Local\Apple
- 2015-11-07 16:50 - 2015-11-07 16:50 - 00000000 ____D C:\Program Files\Bonjour
- 2015-11-07 16:50 - 2015-11-07 16:50 - 00000000 ____D C:\Program Files (x86)\Bonjour
- 2015-11-07 16:50 - 2015-11-07 16:50 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
- 2015-11-05 21:02 - 2015-11-05 21:04 - 00000000 _____ C:\Users\Nybruger\AppData\Local\notepad.exe
- 2015-11-05 21:02 - 2015-11-05 21:02 - 00227336 _____ C:\Users\Nybruger\AppData\Local\JwXuG
- 2015-11-03 21:41 - 2015-11-03 21:41 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\QFX Software
- 2015-11-03 21:41 - 2015-11-03 21:41 - 00000000 ____D C:\ProgramData\QFX Software
- 2015-11-03 21:40 - 2015-11-03 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
- 2015-11-03 21:40 - 2015-11-03 21:40 - 00000000 ____D C:\Program Files (x86)\KeyScrambler
- 2015-11-03 21:40 - 2015-08-18 17:25 - 00224720 _____ (QFX Software Corporation) C:\Windows\system32\Drivers\keyscrambler.sys
- 2015-11-02 22:10 - 2015-11-29 14:42 - 00002066 _____ C:\Users\Public\Desktop\Wise Care 365.lnk
- 2015-10-30 15:30 - 2015-10-31 10:49 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
- ==================== One Month Modified files and folders ========
- (If an entry is included in the fixlist, the file/folder will be moved.)
- 2015-11-29 15:04 - 2015-04-22 14:06 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Spotify
- 2015-11-29 15:02 - 2015-04-22 16:11 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Skype
- 2015-11-29 15:00 - 2015-04-15 14:56 - 00000000 ____D C:\Program Files (x86)\Google
- 2015-11-29 14:57 - 2015-07-17 17:07 - 00000394 _____ C:\Windows\Tasks\update-S-1-5-21-343862810-3332788532-1706303923-1000.job
- 2015-11-29 14:48 - 2015-10-23 15:32 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
- 2015-11-29 14:47 - 2011-02-14 08:01 - 00509160 _____ C:\Windows\system32\perfh006.dat
- 2015-11-29 14:47 - 2011-02-14 08:01 - 00098212 _____ C:\Windows\system32\perfc006.dat
- 2015-11-29 14:47 - 2009-07-14 06:13 - 01379448 _____ C:\Windows\system32\PerfStringBackup.INI
- 2015-11-29 14:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
- 2015-11-29 14:44 - 2015-04-15 14:41 - 00000000 ____D C:\Users\UpdatusUser
- 2015-11-29 14:42 - 2015-07-23 14:40 - 00000406 _____ C:\Windows\Tasks\Wise Care 365.job
- 2015-11-29 14:42 - 2015-07-23 14:37 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Wise Care 365
- 2015-11-29 14:42 - 2015-04-22 14:07 - 00000000 ____D C:\Users\Nybruger\AppData\Local\Spotify
- 2015-11-29 14:42 - 2015-04-15 14:56 - 00000928 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- 2015-11-29 14:42 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
- 2015-11-29 14:41 - 2015-04-15 13:15 - 00001160 _____ C:\Users\Nybruger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
- 2015-11-29 14:41 - 2009-07-14 05:45 - 00020864 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
- 2015-11-29 14:41 - 2009-07-14 05:45 - 00020864 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
- 2015-11-29 14:36 - 2015-04-15 14:56 - 00000932 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- 2015-11-29 11:16 - 2015-07-17 17:07 - 00000394 _____ C:\Windows\Tasks\update-sys.job
- 2015-11-29 11:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
- 2015-11-29 10:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Web
- 2015-11-29 10:44 - 2015-09-20 23:01 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\mssecurity
- 2015-11-29 01:51 - 2015-06-02 21:15 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\SoftGrid Client
- 2015-11-28 23:27 - 2015-07-02 17:48 - 00000000 ____D C:\Program Files (x86)\Steam
- 2015-11-28 13:37 - 2015-08-20 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
- 2015-11-27 21:49 - 2015-10-11 15:38 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
- 2015-11-19 14:36 - 2015-08-22 06:54 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
- 2015-11-18 16:19 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
- 2015-11-17 17:41 - 2015-04-15 15:00 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
- 2015-11-16 22:18 - 2015-08-15 15:22 - 00000000 ____D C:\Users\Nybruger\Desktop\GAMES
- 2015-11-16 22:16 - 2015-07-02 17:28 - 00000000 ____D C:\Users\Nybruger\AppData\Local\CrashDumps
- 2015-11-13 14:39 - 2015-10-18 10:42 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Agarp
- 2015-11-11 15:05 - 2015-04-15 10:35 - 00000000 ____D C:\Windows\system32\MRT
- 2015-11-11 15:04 - 2015-04-15 13:47 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
- 2015-11-11 15:00 - 2015-04-15 13:17 - 01354030 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
- 2015-11-11 15:00 - 2010-11-21 08:17 - 00000000 ____D C:\Program Files\Windows Journal
- 2015-11-09 17:15 - 2015-04-22 15:19 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\.minecraft
- 2015-11-07 16:50 - 2015-05-26 12:57 - 00000000 ____D C:\ProgramData\Apple
- 2015-11-07 08:19 - 2015-04-22 16:10 - 00000000 ____D C:\ProgramData\Skype
- 2015-11-06 15:37 - 2015-04-15 15:00 - 01059656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
- 2015-11-06 15:37 - 2015-04-15 15:00 - 00449992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
- 2015-11-02 22:11 - 2015-10-14 22:10 - 00000000 ____D C:\Windows\System32\Tasks\Update
- 2015-11-02 22:11 - 2015-08-15 15:21 - 00000000 ____D C:\Users\Nybruger\Desktop\CAN USE THIS WHEN FIX
- 2015-11-02 22:11 - 2015-08-01 17:15 - 00000000 ____D C:\ProgramData\BlueStacksSetup
- 2015-11-02 22:11 - 2015-05-29 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
- 2015-11-02 22:11 - 2015-05-27 16:59 - 00000000 ____D C:\Users\Nybruger\Desktop\SHIT I DONT NEED
- 2015-11-02 22:11 - 2015-05-11 14:31 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\BitTorrent
- 2015-11-02 22:10 - 2015-07-23 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
- 2015-11-02 22:08 - 2015-10-26 18:59 - 00000000 ____D C:\Program Files (x86)\Popcorn Time
- 2015-11-02 22:07 - 2015-04-22 06:10 - 00000000 ____D C:\Users\Nybruger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
- 2015-10-31 23:28 - 2015-04-15 14:52 - 00000000 _____ C:\Windows\gdrv.sys
- 2015-10-31 10:49 - 2015-04-15 14:52 - 00030528 _____ C:\Windows\GVTDrv64.sys
- 2015-10-30 15:43 - 2015-10-11 15:38 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
- ==================== Files in the root of some directories =======
- 2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\Nybruger\AppData\Roaming\33UzoGNL
- 2015-11-05 21:02 - 2015-11-05 21:02 - 0099678 _____ () C:\Users\Nybruger\AppData\Local\chrome.ico
- 2015-11-15 00:37 - 2015-11-15 00:37 - 0024072 _____ () C:\Users\Nybruger\AppData\Local\cZHw
- 2015-11-05 21:02 - 2015-11-05 21:02 - 0227336 _____ () C:\Users\Nybruger\AppData\Local\JwXuG
- 2015-11-05 21:02 - 2015-11-05 21:04 - 0000000 _____ () C:\Users\Nybruger\AppData\Local\notepad.exe
- 2015-07-17 17:07 - 2015-07-17 17:07 - 0000003 _____ () C:\Users\Nybruger\AppData\Local\updater.log
- 2015-07-17 17:07 - 2015-10-03 21:19 - 0000424 _____ () C:\Users\Nybruger\AppData\Local\UserProducts.xml
- 2015-11-15 00:37 - 2015-11-15 00:42 - 0000000 _____ () C:\Users\Nybruger\AppData\Local\windowsmediaplayer.exe
- ==================== Bamital & volsnap =================
- (There is no automatic fix for files that do not pass verification.)
- C:\Windows\system32\winlogon.exe => File is digitally signed
- C:\Windows\system32\wininit.exe => File is digitally signed
- C:\Windows\SysWOW64\wininit.exe => File is digitally signed
- C:\Windows\explorer.exe => File is digitally signed
- C:\Windows\SysWOW64\explorer.exe => File is digitally signed
- C:\Windows\system32\svchost.exe => File is digitally signed
- C:\Windows\SysWOW64\svchost.exe => File is digitally signed
- C:\Windows\system32\services.exe => File is digitally signed
- C:\Windows\system32\User32.dll => File is digitally signed
- C:\Windows\SysWOW64\User32.dll => File is digitally signed
- C:\Windows\system32\userinit.exe => File is digitally signed
- C:\Windows\SysWOW64\userinit.exe => File is digitally signed
- C:\Windows\system32\rpcss.dll => File is digitally signed
- C:\Windows\system32\dnsapi.dll => File is digitally signed
- C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
- C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
- LastRegBack: 2015-11-18 16:12
- ==================== End of FRST.txt ============================
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-11-2015
- Ran by Nybruger (2015-11-29 15:04:46)
- Running from C:\Users\Nybruger\Downloads
- Windows 7 Home Premium Service Pack 1 (X64) (2015-04-15 12:15:18)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-343862810-3332788532-1706303923-500 - Administrator - Disabled)
- Gæst (S-1-5-21-343862810-3332788532-1706303923-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-343862810-3332788532-1706303923-1002 - Limited - Enabled)
- Nybruger (S-1-5-21-343862810-3332788532-1706303923-1000 - Administrator - Enabled) => C:\Users\Nybruger
- UpdatusUser (S-1-5-21-343862810-3332788532-1706303923-1003 - Limited - Enabled) => C:\Users\UpdatusUser
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
- AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- @BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.24 - GIGABYTE)
- Adobe Acrobat Reader DC - Dansk (HKLM-x32\...\{AC76BA86-7AD7-1030-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
- Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
- Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
- Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
- Akamai NetSession Interface (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
- Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
- Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
- Apple-programunderstøttelse (32 bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
- Apple-programunderstøttelse (64 bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
- AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
- AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
- Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
- Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
- Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
- Bitcoin Core (64-bit) (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\Bitcoin Core (64-bit)) (Version: 0.11.0 - Bitcoin Core project)
- BitTorrent (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\BitTorrent) (Version: 7.9.5.41203 - BitTorrent Inc.)
- BlueStacks App Player (HKLM-x32\...\{D7E3588F-25E6-4A93-8B1C-596F7951CA38}) (Version: 0.10.7.5601 - BlueStack Systems, Inc.)
- Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
- Combat Arms EU (HKLM-x32\...\Combat Arms EU) (Version: - )
- Comodo IceDragon (HKLM-x32\...\Comodo IceDragon) (Version: 40.1.1.18 - COMODO)
- Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
- Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve)
- Counter-Strike: Condition Zero Deleted Scenes (HKLM-x32\...\Steam App 100) (Version: - Valve)
- Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
- Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
- CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
- Easy Tune 6 B12.0402.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
- Easy Tune 6 B12.0402.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
- Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
- Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
- Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
- Infinite HD™ App (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
- Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
- Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
- Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
- Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
- Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
- KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.8.2.0 - QFX Software Corporation)
- League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
- League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
- Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
- Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
- ManyCam 4.0.78 (HKLM-x32\...\ManyCam) (Version: 4.0.78 - Visicom Media Inc.)
- Microsoft .NET Framework 4.5.2 (DAN) (HKLM\...\{3EFD251A-C655-35D8-81D9-65E5A70A5D80}) (Version: - )
- Microsoft .NET Framework 4.5.2 (dansk) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.5.51209 - Microsoft Corporation)
- Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
- Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
- Microsoft Office Klik og kør 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
- Microsoft Office Starter 2010 - dansk (HKLM-x32\...\{90140011-0066-0406-0000-0000000FF1CE}) (Version: 14.0.5128.5002 - Microsoft Corporation)
- Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0406-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
- MK LOL (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\MK LOL) (Version: - )
- Mozilla Firefox 41.0.2 (x86 da) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 da)) (Version: 41.0.2 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla)
- MyBrowser 1.0.2V15.08 (HKLM-x32\...\MyBrowser 1.0.2V15.08) (Version: 1.36.01.22 - MyBrowser 1.0.2V15.08) <==== ATTENTION
- NVIDIA 3D Vision Controllerdriver 305.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 305.27 - NVIDIA Corporation)
- NVIDIA Opdateringer 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
- NVIDIA PhysX-systemsoftware 9.12.0613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0613 - NVIDIA Corporation)
- ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
- Python 3.5.0 (32-bit) (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\{1197d2bb-6cf8-488a-b994-d5bf6d7efe7b}) (Version: 3.5.150.0 - Python Software Foundation)
- Python 3.5.0 Core Interpreter (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Development Libraries (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Documentation (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Executables (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Launcher (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 pip Bootstrap (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Standard Library (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Tcl/Tk Support (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Test Suite (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Python 3.5.0 Utility Scripts (32-bit) (x32 Version: 3.5.150.0 - Python Software Foundation) Hidden
- Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7512 - Realtek Semiconductor Corp.)
- Remote Administrator Start Pack v.1 (HKLM-x32\...\{DE11CA45-64AB-48D9-8978-8611F98DDA45}) (Version: 1.00.0000 - Legends Hacking Group)
- ROBLOX Player for Nybruger (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
- ROBLOX Studio for Nybruger (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
- ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 10.2.0 - ShareX Team)
- Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
- Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
- Spotify (HKU\S-1-5-21-343862810-3332788532-1706303923-1000\...\Spotify) (Version: 1.0.19.106.gb8a7150f - Spotify AB)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
- TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
- Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
- Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
- WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
- WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
- Wireshark 1.12.7 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.7 - The Wireshark developer community, hxxp://www.wireshark.org)
- Wise Care 365 3.91 (HKLM-x32\...\Wise Care 365_is1) (Version: 3.91 - WiseCleaner.com, Inc.)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-343862810-3332788532-1706303923-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Nybruger\AppData\Local\Roblox\Versions\version-cdc47f439edb4527\RobloxProxy64.dll (ROBLOX Corporation)
- ==================== Restore Points =========================
- 29-11-2015 14:40:55 Restore Point Created by FRST
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {01907AF4-0E45-4FAA-AB6B-AF85565CA656} - System32\Tasks\avastBCLRestart_chrome.exe => Chrome.exe
- Task: {0C0C2D30-7900-4066-B608-3166A23D5776} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
- Task: {143D6CBC-6923-46E1-8EDB-CDCCA6D005A6} - \SmartWeb Upgrade Trigger Task -> No File <==== ATTENTION
- Task: {1E84B1CB-3753-4E89-BBB1-1D35498EB1F9} - \APSnotifierPP1 -> No File <==== ATTENTION
- Task: {2AD24BAA-485F-48E0-BE65-2079C558771D} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {3471F75C-5236-42E6-BB1E-54517CB44298} - \Crossbrowse -> No File <==== ATTENTION
- Task: {3A8F2A40-FC3E-4B0A-8A41-70686B6F1A9F} - System32\Tasks\update-S-1-5-21-343862810-3332788532-1706303923-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
- Task: {4497F7D7-A447-4B4B-9EB7-4193B3AFF8A7} - System32\Tasks\{22CC4B11-D1DE-476A-8B18-D956C42214F8} => pcalua.exe -a "C:\Program Files (x86)\MKJogo\MK IM\Bin\uInst.exe"
- Task: {47C39102-4891-480F-95EC-BC4EEF3BF0D4} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {499E25C8-F49F-4D8E-B28F-D907ACEFA2DE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
- Task: {53CA723D-3342-49A8-9F1C-192DE2B65A02} - \APSnotifierPP3 -> No File <==== ATTENTION
- Task: {5CF1820B-2636-4774-AFD2-3D6F8DA848B7} - System32\Tasks\Wise Care 365 => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2015-08-18] (WiseCleaner.com)
- Task: {84906183-1A40-4BB1-944C-7E85B88598E6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-15] (AVAST Software)
- Task: {A1E86C80-31BB-4680-8CEE-66902A1823C3} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
- Task: {BCD1198B-DC1A-4369-9101-A0ECB78E76D7} - \APSnotifierPP2 -> No File <==== ATTENTION
- Task: {BEBF8FF4-EF5D-4C10-8C4A-893F9E3684D7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-23] (Adobe Systems Incorporated)
- Task: {C7CEB919-5698-4008-AB41-98C0383F86DE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-27] (Google Inc.)
- Task: {F724CE02-2A0F-4008-B47D-08FC45C7981F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-27] (Google Inc.)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\update-S-1-5-21-343862810-3332788532-1706303923-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- Task: C:\Windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-04-15 13:09 - 2015-05-28 05:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2015-10-13 05:45 - 2015-10-13 05:45 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
- 2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
- 2015-10-05 15:17 - 2015-10-05 15:17 - 01972408 _____ () C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
- 2015-10-15 19:30 - 2015-10-15 19:30 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
- 2015-10-15 19:30 - 2015-10-15 19:30 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
- 2015-11-29 09:47 - 2015-11-29 09:47 - 02996736 _____ () C:\Program Files\AVAST Software\Avast\defs\15112900\algo.dll
- 2015-10-15 19:30 - 2015-10-15 19:30 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
- 2015-04-22 14:07 - 2015-11-27 22:08 - 50679920 _____ () C:\Users\Nybruger\AppData\Roaming\Spotify\libcef.dll
- 2015-04-22 14:07 - 2015-11-27 22:08 - 01882224 _____ () C:\Users\Nybruger\AppData\Roaming\Spotify\libglesv2.dll
- 2015-04-22 14:07 - 2015-11-27 22:08 - 00082544 _____ () C:\Users\Nybruger\AppData\Roaming\Spotify\libegl.dll
- 2015-04-15 14:47 - 2015-04-15 14:47 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\92a1650dbe9fad5f46633b835420e1a8\IsdiInterop.ni.dll
- 2015-04-15 14:47 - 2011-11-29 19:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-343862810-3332788532-1706303923-1000\Control Panel\Desktop\\Wallpaper ->
- DNS Servers: 8.8.8.8 - 8.8.4.4
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
- MSCONFIG\startupreg: Clownfish => "C:\Program Files (x86)\Clownfish\Clownfish.exe"
- MSCONFIG\startupreg: CyberGhost => "C:\Program Files\CyberGhost 5\CyberGhost.EXE" /autostart
- MSCONFIG\startupreg: GoogleChromeAutoLaunch_6F869CEC1DBAC92B523CD8F817912CAC => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
- MSCONFIG\startupreg: Launch LCore =>
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [{87766354-E4A1-422D-83F9-1066A9C3FCD9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
- FirewallRules: [{343C08CA-6091-4AF0-A968-F06B69433CB8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
- FirewallRules: [{86C04190-3035-4672-8A1B-92AB8EC9E61A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{014DF78F-97BC-44E6-ADF9-5677BBDE555A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{D7C51F85-B284-4773-9E14-717340DF785B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{E955B0AC-E117-4E01-B8AB-F85A288257AE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{83677C2F-FFB1-41E1-994C-504A2068C18E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{560107AD-6350-4549-B213-2A23C9705E57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [TCP Query User{086D6196-47B3-4EEC-8B1D-1797C4A47167}C:\users\nybruger\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nybruger\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{FBA3FB2B-C9C2-405C-9B37-8452E72ED731}C:\users\nybruger\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nybruger\appdata\roaming\spotify\spotify.exe
- FirewallRules: [TCP Query User{592A1D3B-896C-41E9-9D78-FEE6FF33767C}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{42BDEBC0-5458-4537-A664-A965B5FADDEF}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [TCP Query User{20D0E8C9-CABA-48A8-BFD6-22BD6CBD185E}C:\users\nybruger\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\nybruger\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
- FirewallRules: [UDP Query User{215A1123-9D30-4C16-812A-D4BEC73B2CB1}C:\users\nybruger\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\nybruger\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
- FirewallRules: [{CE7FF98C-4145-443C-9BCD-BEECDA265551}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [{70D042B9-2D60-4728-A7B5-47067D95E5B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
- FirewallRules: [{5AFB290C-EBD2-4713-A32D-32990E90AB43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
- FirewallRules: [{65C401B5-5EA5-483C-939B-14EE6D6855AA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{29F33E02-B482-4EEC-8682-B7D26244E5BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{BF724046-7FE4-4E8F-A806-E3306813E1C1}] => (Allow) C:\Users\Nybruger\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{979651C4-508A-4392-AAB6-9FB11403D67B}] => (Allow) C:\Users\Nybruger\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{F56B6560-8423-45FF-B811-A76EAC2CADB0}] => (Allow) C:\Users\Nybruger\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{1D185DEB-29A1-46DB-AE77-63F15439432E}] => (Allow) C:\Users\Nybruger\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{2E5D56FF-4AAB-41BF-A6F0-1968B6EA700A}] => (Allow) C:\Users\Nybruger\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{DDB9B16C-07A6-45EC-9A70-4677657D558E}] => (Allow) C:\Users\Nybruger\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{EC0C95D4-7C6C-4BF8-AFE6-31279D73EBCC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [TCP Query User{EED3AF7D-8F66-4005-BB9C-D93702928187}C:\Program Files\Bitcoin\bitcoin-qt.exe] => (Allow) C:\Program Files\Bitcoin\bitcoin-qt.exe
- FirewallRules: [UDP Query User{5ABC3596-E8C3-4FD7-BD59-91C5D1B42FD7}C:\Program Files\Bitcoin\bitcoin-qt.exe] => (Allow) C:\Program Files\Bitcoin\bitcoin-qt.exe
- FirewallRules: [{43E65270-D7C3-40F5-8F1E-F21E44153AD5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{4DD31EE7-35BC-48EC-989A-14DF170AA9B4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{7005CD6C-BE27-4C5D-BFAD-C65829E15CAF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{B413B9B2-51BB-4422-AEFE-4B075D952CB1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{8ACB77A5-BB7F-44A6-A38F-9DE34E26D024}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
- FirewallRules: [{62BE9013-D230-4065-BF8A-29664DF1F0A1}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
- FirewallRules: [{134EF189-0ED3-41BC-8D0D-3B30DD0FBED3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{4204E6F2-4580-4476-AC76-3454C3641C82}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{97CA799B-609A-4535-A269-E5D58A0B5E7C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{39A04C3B-F15E-4DF3-85F6-46B4BDA0204B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [TCP Query User{E0B3C2E4-E4E4-46A5-8D39-81558CA275BE}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
- FirewallRules: [UDP Query User{959EEB77-CE6C-4ECA-84DF-97F857B6C5CD}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
- FirewallRules: [TCP Query User{48B76EDF-EB9B-4CBB-8E48-A78CBA54EB89}C:\users\nybruger\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nybruger\appdata\local\akamai\netsession_win.exe
- FirewallRules: [UDP Query User{B7D9BED7-651F-4F63-AE4D-EB1B392269AF}C:\users\nybruger\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nybruger\appdata\local\akamai\netsession_win.exe
- FirewallRules: [TCP Query User{C4545E7B-94DE-4A20-951F-E79F6D345BF2}C:\users\nybruger\desktop\all my hax shit\ll\luminositylink.exe] => (Allow) C:\users\nybruger\desktop\all my hax shit\ll\luminositylink.exe
- FirewallRules: [UDP Query User{D5F544DF-6A9F-4827-B559-7019D828497E}C:\users\nybruger\desktop\all my hax shit\ll\luminositylink.exe] => (Allow) C:\users\nybruger\desktop\all my hax shit\ll\luminositylink.exe
- FirewallRules: [{2CB192F6-E3ED-48B4-B8BE-2445075F90B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
- FirewallRules: [{331BA980-FE6A-45F6-8D71-CF0BBC5B0C99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
- FirewallRules: [{C7CCACBB-1FC2-491E-8945-17295E28B965}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
- FirewallRules: [{5D5F197E-A19B-478A-A914-B424AEBFF22D}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
- FirewallRules: [{A60223CD-4AC1-4B6C-A49C-49C0F2F498E6}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe
- FirewallRules: [{60994E05-4717-4E61-97AF-412FE252C916}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe
- FirewallRules: [TCP Query User{E0248871-AB26-4FF4-94D1-28EC78A9D458}C:\users\nybruger\desktop\all my hax shit\njrat7\njrat v0.7d.exe] => (Allow) C:\users\nybruger\desktop\all my hax shit\njrat7\njrat v0.7d.exe
- FirewallRules: [UDP Query User{11985ABB-8FFA-47BB-BBFD-EDDE54BB36A5}C:\users\nybruger\desktop\all my hax shit\njrat7\njrat v0.7d.exe] => (Allow) C:\users\nybruger\desktop\all my hax shit\njrat7\njrat v0.7d.exe
- FirewallRules: [{176E11B1-D8CC-4ED9-BF34-C03F5C9F2D5A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (11/29/2015 02:42:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (11/29/2015 02:40:49 PM) (Source: VSS) (EventID: 8194) (User: )
- Description: Fejl i tjenesten Øjebliksbillede af diskenhed: Uventet fejl under forespørgsel efter IVssWriterCallback-grænsefladen. hr = 0x80070005, Adgang nægtet.
- .
- Fejlen opstår normalt pga. forkerte sikkerhedsindstillinger i skrive- eller forespørgselsprocessen.
- Handling:
- Indsamler skriverdata
- Kontekst:
- Klasse-id for skriver: {e8132975-6f93-4464-a53e-1050253ae220}
- Navn på skriver: System Writer
- Forekomst-id for skriver: {844620b4-f996-433b-bd75-ccc0dee45d51}
- Error: (11/29/2015 10:45:25 AM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (11/29/2015 09:47:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (11/28/2015 01:19:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (11/28/2015 08:12:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (11/27/2015 09:48:55 PM) (Source: MsiInstaller) (EventID: 1024) (User: BASIMOVICH)
- Description: Produkt: Adobe Acrobat Reader DC - Dansk - Opdateringen '{AC76BA86-7AD7-0000-2550-AC0F094E6F00}' kunne ikke installeres. Fejlkode 1625. Windows Installer kan oprette logfiler som hjælp til fejlfinding af problemer ved installation af softwarepakker. Brug følgende link for at få oplysninger om, hvordan logføring slås til: http://go.microsoft.com/fwlink/?LinkId=23127
- Error: (11/27/2015 02:32:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (11/26/2015 02:18:49 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (11/25/2015 04:28:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- System errors:
- =============
- Error: (11/29/2015 02:42:02 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
- Description: Følgende boot-start- eller system-start-driver kunne ikke indlæses:
- VBoxNetAdp
- Error: (11/29/2015 02:41:29 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
- Description: Tjenestekontrolstyring prøvede at foretage en korrigerende handling (Genstart tjenesten) efter den uventede afbrydelse af tjenesten Windows Search, men denne handling mislykkedes med følgende fejl:
- %%1056
- Error: (11/29/2015 02:41:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Tjenesten Application Virtualization Client afsluttede uventet. Dette er sket 1 gang(e).
- Error: (11/29/2015 02:41:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Tjenesten Softwarebeskyttelse blev afbrudt uventet. Dette er sket 1 gange. Følgende korrigerende handling foretages om 120000 millisekunder: Genstart tjenesten.
- Error: (11/29/2015 02:41:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Tjenesten Windows Media Player Network Sharing Service blev afbrudt uventet. Dette er sket 1 gange. Følgende korrigerende handling foretages om 30000 millisekunder: Genstart tjenesten.
- Error: (11/29/2015 02:41:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Tjenesten NVIDIA Update Service Daemon afsluttede uventet. Dette er sket 1 gang(e).
- Error: (11/29/2015 02:41:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Tjenesten Intel(R) Rapid Storage Technology afsluttede uventet. Dette er sket 1 gang(e).
- Error: (11/29/2015 02:40:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Tjenesten Windows Search blev afbrudt uventet. Dette er sket 1 gange. Følgende korrigerende handling foretages om 30000 millisekunder: Genstart tjenesten.
- Error: (11/29/2015 02:40:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Tjenesten Client Virtualization Handler afsluttede uventet. Dette er sket 1 gang(e).
- Error: (11/29/2015 02:40:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Tjenesten Update service afsluttede uventet. Dette er sket 1 gang(e).
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
- Percentage of memory in use: 32%
- Total physical RAM: 8139.27 MB
- Available physical RAM: 5516.38 MB
- Total Virtual: 16276.75 MB
- Available Virtual: 13576.9 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:111.69 GB) (Free:3.78 GB) NTFS
- Drive d: () (Fixed) (Total:921.51 GB) (Free:920.23 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 2A708C53)
- Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
- ========================================================
- Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2A708C75)
- Partition 1: (Not Active) - (Size=921.5 GB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=10 GB) - (Type=27)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement