Advertisement
Guest User

Untitled

a guest
Sep 6th, 2014
301
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 22.62 KB | None | 0 0
  1. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-09-2014
  2. Ran by SYSTEM on MININT-KIGFPCM on 07-09-2014 01:35:04
  3. Running from E:\
  4. Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
  5. Internet Explorer Version 11
  6. Boot Mode: Recovery
  7.  
  8. The current controlset is ControlSet001
  9. [b]ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.[/b]
  10.  
  11.  
  12. The only official download link for FRST:
  13. Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
  14. Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
  15. Download link from any site other than Bleeping Computer is unpermitted or outdated.
  16. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  17.  
  18. ==================== Registry (Whitelisted) ==================
  19.  
  20. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  21.  
  22. HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11786344 2011-05-05] (Realtek Semiconductor)
  23. HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
  24. HKLM-x32\...\Run: [] => [X]
  25. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585560 2014-06-23] (Razer Inc.)
  26. HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-07] (Apple Inc.)
  27. HKU\Default\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
  28. HKU\Default User\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
  29.  
  30. ==================== Services (Whitelisted) =================
  31.  
  32. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  33.  
  34. S3 Giraffic; C:\Program Files (x86)\Giraffic\GirafficWatchdog.exe [2245232 2013-05-13] (Giraffic)
  35. S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-09-05] ()
  36. S3 ufad-ws60; C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe [191024 2010-08-19] (VMware, Inc.)
  37.  
  38. ==================== Drivers (Whitelisted) ====================
  39.  
  40. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  41.  
  42. S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-03] ()
  43. S1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-05] ()
  44. S3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-05-05] (DT Soft Ltd)
  45. S1 HWiNFO32; C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS [30080 2011-09-21] (REALiX(tm))
  46. S3 Linksys_adapter_H; C:\Windows\System32\DRIVERS\AE2500w764.sys [1254464 2014-03-09] (Broadcom Corporation)
  47. S3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [33448 2014-05-18] (Razer Inc)
  48. S3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [31400 2014-05-18] (Razer Inc)
  49. S2 VMparport; C:\Windows\system32\drivers\VMparport.sys [30832 2011-03-25] (VMware, Inc.)
  50. S3 vna_ap; C:\Windows\System32\DRIVERS\vnaap.sys [161256 2010-09-26] (Check Point Software Technologies)
  51. S3 catchme; \??\C:\idan\catchme.sys [X]
  52. S3 mdareDriver_47; \??\C:\Users\Idan\AppData\Local\Temp\FCPreScan\mdare64_47.sys [X]
  53. S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]
  54. S3 VGPU; System32\drivers\rdvgkmd.sys [X]
  55.  
  56. ==================== NetSvcs (Whitelisted) ===================
  57.  
  58. (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
  59.  
  60.  
  61. ==================== One Month Created Files and Folders ========
  62.  
  63. (If an entry is included in the fixlist, the file\folder will be moved.)
  64.  
  65. 2014-09-07 01:34 - 2014-09-07 01:35 - 00000000 ____D () C:\FRST
  66. 2014-09-06 14:19 - 2014-09-06 14:19 - 02104832 _____ (Farbar) C:\Users\Idan\Downloads\FRST64.exe
  67. 2014-09-06 04:13 - 2014-09-06 04:13 - 00401920 _____ (Farbar) C:\Users\Idan\Downloads\MiniToolBox.exe
  68. 2014-09-06 04:13 - 2014-09-06 04:13 - 00040014 _____ () C:\Users\Idan\Downloads\Result.txt
  69. 2014-09-05 14:08 - 2014-09-05 14:08 - 00000000 ____D () C:\Users\Idan\AppData\Local\ESN
  70. 2014-09-05 11:37 - 2014-09-05 11:37 - 00013797 _____ () C:\Users\Idan\Desktop\dds.txt
  71. 2014-09-05 11:37 - 2014-09-05 11:37 - 00010042 _____ () C:\Users\Idan\Desktop\attach.txt
  72. 2014-09-05 11:34 - 2014-09-05 11:34 - 00688992 ____R (Swearware) C:\Users\Idan\Downloads\dds.com
  73. 2014-09-05 09:41 - 2014-09-05 09:41 - 00448512 _____ (OldTimer Tools) C:\Users\Idan\Downloads\TFC.exe
  74. 2014-09-04 13:17 - 2014-09-04 13:17 - 00027829 _____ () C:\Users\Idan\Desktop\JRT.txt
  75. 2014-09-04 13:13 - 2014-09-04 13:13 - 00000000 ____D () C:\Windows\ERUNT
  76. 2014-09-04 02:14 - 2014-09-04 02:14 - 00009829 _____ () C:\Users\Idan\Desktop\AdwCleaner[S0].txt
  77. 2014-09-03 15:32 - 2010-08-29 21:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
  78. 2014-08-29 10:10 - 2014-08-29 10:10 - 00000796 _____ () C:\Users\Public\Desktop\Speccy.lnk
  79. 2014-08-29 10:10 - 2014-08-29 10:10 - 00000000 ____D () C:\Program Files\Speccy
  80. 2014-08-28 00:45 - 2014-08-28 00:45 - 00007554 _____ () C:\a.log
  81. 2014-08-28 00:30 - 2014-08-22 18:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
  82. 2014-08-28 00:30 - 2014-08-22 17:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
  83. 2014-08-28 00:30 - 2014-08-22 16:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
  84. 2014-08-14 15:54 - 2014-07-31 15:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
  85. 2014-08-14 15:54 - 2014-07-31 15:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
  86. 2014-08-14 15:54 - 2014-07-25 06:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
  87. 2014-08-14 15:54 - 2014-07-25 06:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
  88. 2014-08-14 15:54 - 2014-07-25 06:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
  89. 2014-08-14 15:54 - 2014-07-25 05:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
  90. 2014-08-14 15:54 - 2014-07-25 05:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
  91. 2014-08-14 15:54 - 2014-07-25 05:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
  92. 2014-08-14 15:54 - 2014-07-25 05:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
  93. 2014-08-14 15:54 - 2014-07-25 05:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
  94. 2014-08-14 15:54 - 2014-07-25 05:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
  95. 2014-08-14 15:54 - 2014-07-25 05:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
  96. 2014-08-14 15:54 - 2014-07-25 05:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
  97. 2014-08-14 15:54 - 2014-07-25 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
  98. 2014-08-14 15:54 - 2014-07-25 05:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
  99. 2014-08-14 15:54 - 2014-07-25 05:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
  100. 2014-08-14 15:54 - 2014-07-25 05:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
  101. 2014-08-14 15:54 - 2014-07-25 04:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
  102. 2014-08-14 15:54 - 2014-07-25 04:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
  103. 2014-08-14 15:54 - 2014-07-25 04:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
  104. 2014-08-14 15:54 - 2014-07-25 04:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
  105. 2014-08-14 15:54 - 2014-07-25 04:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
  106. 2014-08-14 15:54 - 2014-07-25 04:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
  107. 2014-08-14 15:54 - 2014-07-25 04:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
  108. 2014-08-14 15:54 - 2014-07-25 04:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
  109. 2014-08-14 15:54 - 2014-07-25 04:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
  110. 2014-08-14 15:54 - 2014-07-25 04:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
  111. 2014-08-14 15:54 - 2014-07-25 04:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
  112. 2014-08-14 15:54 - 2014-07-25 04:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
  113. 2014-08-14 15:54 - 2014-07-25 04:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
  114. 2014-08-14 15:54 - 2014-07-25 04:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
  115. 2014-08-14 15:54 - 2014-07-25 04:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
  116. 2014-08-14 15:54 - 2014-07-25 04:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
  117. 2014-08-14 15:54 - 2014-07-25 04:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
  118. 2014-08-14 15:54 - 2014-07-25 04:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
  119. 2014-08-14 15:54 - 2014-07-25 04:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
  120. 2014-08-14 15:54 - 2014-07-25 03:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
  121. 2014-08-14 15:54 - 2014-07-25 03:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
  122. 2014-08-14 15:54 - 2014-07-25 03:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
  123. 2014-08-14 15:54 - 2014-07-25 03:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
  124. 2014-08-14 15:54 - 2014-07-25 03:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
  125. 2014-08-14 15:54 - 2014-07-25 03:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
  126. 2014-08-14 15:54 - 2014-07-25 03:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
  127. 2014-08-14 15:54 - 2014-07-25 03:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
  128. 2014-08-14 15:54 - 2014-07-25 03:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
  129. 2014-08-14 15:54 - 2014-07-25 03:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
  130. 2014-08-14 15:54 - 2014-07-25 03:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
  131. 2014-08-14 15:54 - 2014-07-25 03:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
  132. 2014-08-14 15:54 - 2014-07-25 03:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
  133. 2014-08-14 15:54 - 2014-07-25 03:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
  134. 2014-08-14 15:54 - 2014-07-25 02:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
  135. 2014-08-14 15:54 - 2014-07-25 02:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
  136. 2014-08-14 15:54 - 2014-07-25 02:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
  137. 2014-08-14 15:54 - 2014-07-25 02:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
  138. 2014-08-14 15:54 - 2014-07-25 02:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
  139. 2014-08-14 15:54 - 2014-07-25 02:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
  140. 2014-08-13 16:03 - 2014-06-30 14:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\System32\icardres.dll
  141. 2014-08-13 16:03 - 2014-06-30 14:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
  142. 2014-08-13 16:03 - 2014-06-05 22:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
  143. 2014-08-13 16:03 - 2014-06-05 22:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\System32\TsWpfWrp.exe
  144. 2014-08-13 16:03 - 2014-03-09 13:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\System32\icardagt.exe
  145. 2014-08-13 16:03 - 2014-03-09 13:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\System32\infocardapi.dll
  146. 2014-08-13 16:03 - 2014-03-09 13:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
  147. 2014-08-13 16:03 - 2014-03-09 13:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
  148. 2014-08-13 12:53 - 2014-07-15 19:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\tzres.dll
  149. 2014-08-13 12:53 - 2014-07-15 18:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
  150. 2014-08-13 12:53 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDYAK.DLL
  151. 2014-08-13 12:53 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDTAT.DLL
  152. 2014-08-13 12:53 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDRU1.DLL
  153. 2014-08-13 12:53 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDBASH.DLL
  154. 2014-08-13 12:53 - 2014-07-08 18:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\System32\KBDRU.DLL
  155. 2014-08-13 12:53 - 2014-07-08 17:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
  156. 2014-08-13 12:53 - 2014-07-08 17:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
  157. 2014-08-13 12:53 - 2014-07-08 17:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
  158. 2014-08-13 12:53 - 2014-07-08 17:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
  159. 2014-08-13 12:53 - 2014-07-08 17:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
  160. 2014-08-13 12:53 - 2014-07-08 14:38 - 00419992 _____ () C:\Windows\System32\locale.nls
  161. 2014-08-13 12:53 - 2014-07-08 14:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
  162. 2014-08-13 12:53 - 2014-06-24 18:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
  163. 2014-08-13 12:53 - 2014-06-24 17:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
  164. 2014-08-13 12:53 - 2014-06-15 18:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
  165. 2014-08-13 12:53 - 2014-06-03 02:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\System32\msi.dll
  166. 2014-08-13 12:53 - 2014-06-03 02:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\System32\authui.dll
  167. 2014-08-13 12:53 - 2014-06-03 02:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\System32\msihnd.dll
  168. 2014-08-13 12:53 - 2014-06-03 02:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\System32\consent.exe
  169. 2014-08-13 12:53 - 2014-06-03 01:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
  170. 2014-08-13 12:53 - 2014-06-03 01:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
  171. 2014-08-13 12:53 - 2014-06-03 01:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
  172. 2014-08-13 12:51 - 2014-08-06 18:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
  173. 2014-08-13 12:51 - 2014-08-06 18:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
  174. 2014-08-13 12:51 - 2014-07-13 18:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
  175. 2014-08-13 12:51 - 2014-07-13 17:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
  176.  
  177. ==================== One Month Modified Files and Folders =======
  178.  
  179. (If an entry is included in the fixlist, the file\folder will be moved.)
  180.  
  181. 2014-09-07 01:35 - 2014-09-07 01:34 - 00000000 ____D () C:\FRST
  182. 2014-09-06 14:32 - 2014-06-15 14:50 - 00003130 _____ () C:\Windows\setupact.log
  183. 2014-09-06 14:30 - 2011-05-05 07:51 - 01570019 _____ () C:\Windows\WindowsUpdate.log
  184. 2014-09-06 14:30 - 2009-07-13 20:45 - 00021472 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  185. 2014-09-06 14:30 - 2009-07-13 20:45 - 00021472 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  186. 2014-09-06 14:27 - 2009-07-13 21:13 - 00790790 _____ () C:\Windows\System32\PerfStringBackup.INI
  187. 2014-09-06 14:20 - 2011-08-27 23:58 - 00000000 ____D () C:\Users\Idan\AppData\Roaming\TS3Client
  188. 2014-09-06 14:19 - 2014-09-06 14:19 - 02104832 _____ (Farbar) C:\Users\Idan\Downloads\FRST64.exe
  189. 2014-09-06 04:13 - 2014-09-06 04:13 - 00401920 _____ (Farbar) C:\Users\Idan\Downloads\MiniToolBox.exe
  190. 2014-09-06 04:13 - 2014-09-06 04:13 - 00040014 _____ () C:\Users\Idan\Downloads\Result.txt
  191. 2014-09-05 14:24 - 2014-06-21 14:39 - 00013780 _____ () C:\Windows\PFRO.log
  192. 2014-09-05 14:17 - 2011-05-05 10:03 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
  193. 2014-09-05 14:14 - 2011-05-05 10:12 - 00000000 ____D () C:\Users\Idan\AppData\Local\PunkBuster
  194. 2014-09-05 14:14 - 2011-05-05 10:03 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
  195. 2014-09-05 14:08 - 2014-09-05 14:08 - 00000000 ____D () C:\Users\Idan\AppData\Local\ESN
  196. 2014-09-05 13:08 - 2013-11-05 05:50 - 00000000 ____D () C:\ProgramData\Package Cache
  197. 2014-09-05 13:08 - 2011-05-05 10:03 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
  198. 2014-09-05 13:06 - 2014-09-05 13:06 - 00018435 _____ () C:\Windows\DirectX.log
  199. 2014-09-05 12:31 - 2014-04-15 17:08 - 00001246 _____ () C:\Users\Public\Desktop\FIFA 14.lnk
  200. 2014-09-05 12:31 - 2014-04-15 16:35 - 00000000 ____D () C:\Program Files (x86)\Origin Games
  201. 2014-09-05 11:37 - 2014-09-05 11:37 - 00013797 _____ () C:\Users\Idan\Desktop\dds.txt
  202. 2014-09-05 11:37 - 2014-09-05 11:37 - 00010042 _____ () C:\Users\Idan\Desktop\attach.txt
  203. 2014-09-05 11:34 - 2014-09-05 11:34 - 00688992 ____R (Swearware) C:\Users\Idan\Downloads\dds.com
  204. 2014-09-05 10:45 - 2013-07-22 11:55 - 00000000 ____D () C:\TEMPP
  205. 2014-09-05 09:41 - 2014-09-05 09:41 - 00448512 _____ (OldTimer Tools) C:\Users\Idan\Downloads\TFC.exe
  206. 2014-09-04 13:17 - 2014-09-04 13:17 - 00027829 _____ () C:\Users\Idan\Desktop\JRT.txt
  207. 2014-09-04 13:13 - 2014-09-04 13:13 - 00000000 ____D () C:\Windows\ERUNT
  208. 2014-09-04 02:14 - 2014-09-04 02:14 - 00009829 _____ () C:\Users\Idan\Desktop\AdwCleaner[S0].txt
  209. 2014-09-01 14:16 - 2011-05-05 10:02 - 00000000 ____D () C:\Users\Idan\AppData\Roaming\uTorrent
  210. 2014-08-30 02:30 - 2014-06-14 04:56 - 00002249 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
  211. 2014-08-29 10:10 - 2014-08-29 10:10 - 00000796 _____ () C:\Users\Public\Desktop\Speccy.lnk
  212. 2014-08-29 10:10 - 2014-08-29 10:10 - 00000000 ____D () C:\Program Files\Speccy
  213. 2014-08-28 16:24 - 2014-06-07 08:52 - 04891592 _____ () C:\Windows\System32\FNTCACHE.DAT
  214. 2014-08-28 00:45 - 2014-08-28 00:45 - 00007554 _____ () C:\a.log
  215. 2014-08-22 18:07 - 2014-08-28 00:30 - 00404480 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
  216. 2014-08-22 17:45 - 2014-08-28 00:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
  217. 2014-08-22 16:59 - 2014-08-28 00:30 - 03163648 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
  218. 2014-08-20 13:52 - 2011-05-06 13:05 - 00000600 _____ () C:\Users\Idan\PUTTY.RND
  219. 2014-08-20 07:42 - 2011-06-02 09:23 - 00000000 ____D () C:\Users\Idan\AppData\Roaming\Skype
  220. 2014-08-15 07:42 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
  221. 2014-08-13 16:32 - 2013-07-17 16:00 - 00000000 ____D () C:\Windows\System32\MRT
  222. 2014-08-13 16:12 - 2011-05-05 08:34 - 99218768 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
  223. 2014-08-13 16:11 - 2011-05-27 23:20 - 00000000 ____D () C:\ProgramData\Microsoft Help
  224. 2014-08-13 16:02 - 2014-05-06 16:01 - 00000000 ___SD () C:\Windows\System32\CompatTel
  225. 2014-08-12 11:22 - 2011-06-04 08:28 - 00000000 ____D () C:\Program Files (x86)\Steam
  226. 2014-08-12 11:08 - 2012-10-08 19:55 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk
  227. 2014-08-12 05:48 - 2011-08-31 10:45 - 00000000 ____D () C:\Users\Idan\Documents\קבצי Outlook
  228. 2014-08-12 05:33 - 2014-07-21 02:01 - 00000000 ____D () C:\Users\Idan\AppData\Roaming\TeamViewer
  229. 2014-08-09 13:10 - 2011-06-02 09:23 - 00000000 ____D () C:\ProgramData\Skype
  230. 2014-08-08 00:46 - 2014-08-08 00:46 - 00063099 _____ () C:\Users\Idan\Downloads\פוליגונים ושמות מרחבים 07 07 14.xlsx
  231.  
  232. Some content of TEMP:
  233. ====================
  234. C:\Users\Idan\AppData\Local\Temp\sonarinst.exe
  235.  
  236.  
  237. ==================== Known DLLs (Whitelisted) ================
  238.  
  239.  
  240. ==================== Bamital & volsnap Check =================
  241.  
  242. (There is no automatic fix for files that do not pass verification.)
  243.  
  244. C:\Windows\System32\winlogon.exe => MD5 is legit
  245. C:\Windows\System32\wininit.exe => MD5 is legit
  246. C:\Windows\SysWOW64\wininit.exe => MD5 is legit
  247. C:\Windows\explorer.exe => MD5 is legit
  248. C:\Windows\SysWOW64\explorer.exe => MD5 is legit
  249. C:\Windows\System32\svchost.exe => MD5 is legit
  250. C:\Windows\SysWOW64\svchost.exe => MD5 is legit
  251. C:\Windows\System32\services.exe => MD5 is legit
  252. C:\Windows\System32\User32.dll => MD5 is legit
  253. C:\Windows\SysWOW64\User32.dll => MD5 is legit
  254. C:\Windows\System32\userinit.exe => MD5 is legit
  255. C:\Windows\SysWOW64\userinit.exe => MD5 is legit
  256. C:\Windows\System32\rpcss.dll => MD5 is legit
  257. C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
  258.  
  259. ==================== Restore Points =========================
  260.  
  261. Restore point made on: 2014-08-29 10:04:55
  262. Restore point made on: 2014-09-02 10:02:44
  263. Restore point made on: 2014-09-05 13:01:17
  264. Restore point made on: 2014-09-05 13:04:58
  265. Restore point made on: 2014-09-05 13:07:47
  266. Restore point made on: 2014-09-05 13:08:30
  267.  
  268. ==================== Memory info ===========================
  269.  
  270. Percentage of memory in use: 14%
  271. Total physical RAM: 4063.13 MB
  272. Available physical RAM: 3473.61 MB
  273. Total Pagefile: 4061.33 MB
  274. Available Pagefile: 3461.74 MB
  275. Total Virtual: 8192 MB
  276. Available Virtual: 8191.89 MB
  277.  
  278. ==================== Drives ================================
  279.  
  280. Drive c: () (Fixed) (Total:931.5 GB) (Free:157.78 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
  281. Drive e: () (Removable) (Total:29.82 GB) (Free:24.32 GB) NTFS
  282. Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
  283.  
  284. ==================== MBR & Partition Table ==================
  285.  
  286. ========================================================
  287. Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 19C819C7)
  288. Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
  289.  
  290. ========================================================
  291. Disk: 1 (Size: 29.8 GB) (Disk ID: DC2AFD97)
  292. Partition 1: (Active) - (Size=29.8 GB) - (Type=07 NTFS)
  293.  
  294.  
  295. LastRegBack: 2013-06-22 13:59
  296.  
  297. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement