API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 11th, 2014
231
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 37.54 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-10-2014 01
  2. Ran by User (administrator) on USER-KOMPUTER on 11-10-2014 21:26:44
  3. Running from C:\Users\User\Desktop\SkyBlock1.1\FRST
  4. Loaded Profiles: User & UpdatusUser (Available profiles: User & UpdatusUser)
  5. Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Polski (Polska)
  6. Internet Explorer Version 11
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  15. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  16. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  17. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  18. (Microsoft Corporation) C:\Windows\System32\rundll32.exe
  19. (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
  20. (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
  21. (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
  22. (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
  23. () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
  24. () C:\ProgramData\Trusted Publisher\GS_Booster\GS_Booster.exe
  25. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
  26. (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
  27. (MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
  28. (MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
  29. (Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
  30. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
  31. () C:\Program Files (x86)\screenSHU\screenSHU.exe
  32. (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
  33. (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
  34. (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe
  35. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  36. (MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
  37. (Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
  38. (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
  39. (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
  40. (Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
  41. (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
  42. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  43. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  44. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  45. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  46. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  47. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  48. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  49. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  50. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  51. (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccsvchst.exe
  52. (Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
  53. (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccsvchst.exe
  54. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
  55. (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
  56. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  57. (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
  58. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  59.  
  60.  
  61. ==================== Registry (Whitelisted) ==================
  62.  
  63. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  64.  
  65. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7016520 2013-02-05] (Realtek Semiconductor)
  66. HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [506864 2013-03-08] (MSI)
  67. HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
  68. HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [85600 2013-12-13] (Nullsoft, Inc.)
  69. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-06-16] (Oracle Corporation)
  70. HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3802448 2014-09-04] (LogMeIn Inc.)
  71. HKU\S-1-5-21-277565421-3351107386-1916313416-1000\...\Run: [screenSHU] => C:\Program Files (x86)\screenSHU\screenSHU.exe [2112000 2013-09-04] ()
  72. HKU\S-1-5-21-277565421-3351107386-1916313416-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [39712 2014-09-21] (Overwolf LTD)
  73. HKU\S-1-5-21-277565421-3351107386-1916313416-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
  74. HKU\S-1-5-21-277565421-3351107386-1916313416-1000\...\Run: [LiveSupport] => "C:\Program Files (x86)\LiveSupport\LiveSupport.exe" /noshow /log
  75. AppInit_DLLs: C:\Program Files (x86)\GS_BOO~1\ASSIST~2.DLL => C:\Program Files (x86)\GS_Booster\Assistant_x64.dll [4210176 2014-10-10] ()
  76. AppInit_DLLs-x32: c:\program files (x86)\gs_boo~1\assist~1.dll => c:\program files (x86)\GS_Booster\Assistant.dll [4296192 2014-10-10] ()
  77. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk
  78. ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe (Intel Corporation)
  79.  
  80. ==================== Internet (Whitelisted) ====================
  81.  
  82. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  83.  
  84. HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://pl.msn.com/?pc=UP97&ocid=UP97DHP
  85. HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=181&d=20140919
  86. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=181&d=20140919
  87. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation)
  88. BHO: GoSuaVeo -> {96949466-ef45-4aaa-95c4-b0bc6095c8b5} -> C:\Program Files (x86)\GoSuaVeo\yUnlgFZ88jTCgi.x64.dll ()
  89. BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  90. BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
  91. BHO: NextCoUP -> {cfbdcd55-7207-4c4d-9b45-e6e8ed8fcc6d} -> C:\Program Files (x86)\NextCoUP\J3ReFAHIJiFvhE.x64.dll ()
  92. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
  93. BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll (Symantec Corporation)
  94. BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\IPS\IPSBHO.DLL (Symantec Corporation)
  95. BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
  96. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
  97. BHO-x32: GoSuaVeo -> {96949466-ef45-4aaa-95c4-b0bc6095c8b5} -> C:\Program Files (x86)\GoSuaVeo\yUnlgFZ88jTCgi.dll ()
  98. BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
  99. BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  100. BHO-x32: NextCoUP -> {cfbdcd55-7207-4c4d-9b45-e6e8ed8fcc6d} -> C:\Program Files (x86)\NextCoUP\J3ReFAHIJiFvhE.dll ()
  101. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  102. Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  103. Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
  104. Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll (Symantec Corporation)
  105. Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  106. DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
  107. Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
  108. Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  109.  
  110. FireFox:
  111. ========
  112. FF Plugin: @java.com/DTPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  113. FF Plugin: @java.com/JavaPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
  114. FF Plugin: @microsoft.com/GENUINE -> disabled No File
  115. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  116. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  117. FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  118. FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  119. FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
  120. FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
  121. FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
  122. FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  123. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
  124. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
  125. FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
  126. FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  127. FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
  128. FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2014-07-19]
  129. FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
  130. FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2014-10-11]
  131. FF HKCU\...\Firefox\Extensions: [{C8C336AC-B49E-5D60-02C8-6320C85D1196}] - C:\Program Files (x86)\ver5BlockAndSurf\176.xpi
  132.  
  133. Chrome:
  134. =======
  135. CHR HomePage: Default -> D5028131E1BF350B121230DB372C9998A1991F2E3BE25E9A5397E0D2D8712C2A
  136. CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
  137. CHR Extension: (Norton Security Toolbar) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc [2014-07-29]
  138. CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2014-09-02]
  139. CHR Extension: (No Name) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\eoemcpjainkjjheofgajjdgbdjcobmkn [2014-10-11]
  140. CHR Extension: (GOSave) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepdmmgibgmdifbemeliidgjchfdmfhh [2014-10-10]
  141. CHR Extension: (Wolfram Alpha Official) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\icncamkooinmbehmkeilcccmoljfkdhp [2014-10-10]
  142. CHR Extension: (Watch Online) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnanplinmmnjhobaliikmelmmjpoogkb [2014-08-08]
  143. CHR Extension: (iLivid) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf [2014-10-09]
  144. CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-19]
  145. CHR Extension: (No Name) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\eoemcpjainkjjheofgajjdgbdjcobmkn\1.0 [2014-10-11]
  146. CHR Extension: (GOSave) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepdmmgibgmdifbemeliidgjchfdmfhh\2.0 [2014-10-10]
  147. CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\Exts\Chrome.crx [2014-07-28]
  148. CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
  149.  
  150. ==================== Services (Whitelisted) =================
  151.  
  152. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  153.  
  154. R2 4d349a54; c:\program files (x86)\GS_Booster\AssistantSvc.dll [174928 2014-10-10] () [File not signed]
  155. R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
  156. R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
  157. R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
  158. S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
  159. R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [149032 2012-08-16] ()
  160. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
  161. R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-08-08] (LogMeIn, Inc.)
  162. R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161264 2013-02-20] (MSI)
  163. R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-03-20] (MICRO-STAR INTERNATIONAL CO., LTD.)
  164. R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
  165. R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe [123320 2012-08-13] (Symantec Corporation)
  166. S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [998176 2014-09-21] (Overwolf LTD)
  167. R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe [126392 2012-08-13] (Symantec Corporation)
  168. S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
  169. S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
  170.  
  171. ==================== Drivers (Whitelisted) ====================
  172.  
  173. (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
  174.  
  175. R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-07-18] (Symantec Corporation)
  176. R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
  177. R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-19] (Symantec Corporation)
  178. R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142128 2014-07-19] (Symantec Corporation)
  179. R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20120611.002\IDSVia64.sys [509088 2012-06-11] (Symantec Corporation)
  180. R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [20968 2012-08-16] ()
  181. R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [19944 2012-08-16] ()
  182. R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46016 2012-08-16] ()
  183. S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140718.009\ENG64.SYS [126040 2014-07-19] (Symantec Corporation)
  184. S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140718.009\EX64.SYS [2099288 2014-07-19] (Symantec Corporation)
  185. R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
  186. S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1405000.01C\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
  187. R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
  188. R3 SymDS; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
  189. R3 SymEFA; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
  190. R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2014-07-28] (Symantec Corporation)
  191. R3 SymIRON; C:\Windows\system32\drivers\NISx64\1405000.01C\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
  192. R3 SymNetS; C:\Windows\System32\Drivers\NISx64\1405000.01C\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
  193. R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-10-11] ()
  194.  
  195. ==================== NetSvcs (Whitelisted) ===================
  196.  
  197. (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
  198.  
  199.  
  200. ==================== One Month Created Files and Folders ========
  201.  
  202. (If an entry is included in the fixlist, the file\folder will be moved.)
  203.  
  204. 2014-10-11 21:12 - 2014-10-11 21:12 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
  205. 2014-10-11 21:11 - 2014-10-11 21:11 - 03766272 _____ () C:\Windows\SysWOW64\setup.exe
  206. 2014-10-11 21:11 - 2014-10-11 21:11 - 00000000 ____D () C:\ProgramData\NextCoUP
  207. 2014-10-11 21:11 - 2014-10-11 21:11 - 00000000 ____D () C:\Program Files (x86)\NextCoUP
  208. 2014-10-11 16:38 - 2014-10-11 16:52 - 1076478032 _____ () C:\Users\User\Desktop\Video 2014-10-11 16-38-52.avi
  209. 2014-10-11 09:39 - 2014-10-11 16:38 - 00003952 _____ () C:\Windows\windefendam.log
  210. 2014-10-11 09:39 - 2014-10-11 16:38 - 00000020 _____ () C:\Windows\capsys184523.log
  211. 2014-10-11 09:39 - 2014-10-11 09:39 - 20547896 _____ (Mirillis Ltd.) C:\Users\User\Downloads\action_1_19_2_setup.exe
  212. 2014-10-11 09:39 - 2014-10-11 09:39 - 00002045 _____ () C:\Users\Public\Desktop\Action!.lnk
  213. 2014-10-11 09:39 - 2014-10-11 09:39 - 00000000 ____D () C:\Users\User\Documents\Action!
  214. 2014-10-11 09:39 - 2014-10-11 09:39 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mirillis
  215. 2014-10-11 09:39 - 2014-10-11 09:39 - 00000000 ____D () C:\Users\User\AppData\Local\Mirillis
  216. 2014-10-11 09:39 - 2014-10-11 09:39 - 00000000 ____D () C:\ProgramData\Mirillis
  217. 2014-10-11 09:39 - 2014-10-11 09:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
  218. 2014-10-11 09:39 - 2014-10-11 09:39 - 00000000 ____D () C:\Program Files (x86)\Mirillis
  219. 2014-10-11 09:38 - 2014-10-11 21:12 - 00000264 _____ () C:\Windows\Tasks\RegClean Pro_UPDATES.job
  220. 2014-10-11 09:38 - 2014-10-11 15:02 - 00000256 _____ () C:\Windows\Tasks\RegClean Pro_DEFAULT.job
  221. 2014-10-11 09:38 - 2014-10-11 09:38 - 00003014 _____ () C:\Windows\System32\Tasks\RegClean Pro_UPDATES
  222. 2014-10-11 09:38 - 2014-10-11 09:38 - 00002858 _____ () C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
  223. 2014-10-11 09:37 - 2014-10-11 21:21 - 00003090 _____ () C:\Windows\System32\Tasks\RegClean Pro
  224. 2014-10-11 09:37 - 2014-10-11 09:37 - 00001350 _____ () C:\Users\User\Desktop\Wyczyść rejestr za darmo!.lnk
  225. 2014-10-11 09:37 - 2014-10-11 09:37 - 00000991 _____ () C:\Users\Public\Desktop\RegClean Pro.lnk
  226. 2014-10-11 09:37 - 2014-08-29 17:02 - 00020296 _____ () C:\Windows\system32\roboot64.exe
  227. 2014-10-11 09:36 - 2014-10-11 09:36 - 00753704 _____ ( ) C:\Users\User\Downloads\pobierz-action_1_19_2_setup.exe
  228. 2014-10-10 21:20 - 2014-10-11 21:12 - 00000474 ____H () C:\Windows\Tasks\GS_Booster-S-576482620.job
  229. 2014-10-10 21:20 - 2014-10-10 21:20 - 00002720 _____ () C:\Windows\System32\Tasks\GS_Booster-S-576482620
  230. 2014-10-10 21:20 - 2014-10-10 21:20 - 00000000 ____D () C:\ProgramData\Trusted Publisher
  231. 2014-10-10 21:20 - 2014-10-10 21:20 - 00000000 ____D () C:\Program Files (x86)\GS_Booster
  232. 2014-10-10 21:19 - 2014-10-11 21:12 - 00000000 ____D () C:\ProgramData\YouetubeAdBlocke
  233. 2014-10-10 21:19 - 2014-10-11 21:10 - 00000000 ____D () C:\Program Files (x86)\YouetubeAdBlocke
  234. 2014-10-10 21:18 - 2014-10-10 21:18 - 00000000 ____D () C:\ProgramData\GoSuaVeo
  235. 2014-10-10 21:18 - 2014-10-10 21:18 - 00000000 ____D () C:\Program Files (x86)\GoSuaVeo
  236. 2014-10-10 21:17 - 2014-10-11 21:11 - 00000000 ____D () C:\ProgramData\f71376c0c47876f8
  237. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\User\AppData\Local\Torch
  238. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\User\AppData\Local\Comodo
  239. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\User\AppData\Local\Chromatic Browser
  240. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Torch
  241. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
  242. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
  243. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Chromatic Browser
  244. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
  245. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
  246. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
  247. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
  248. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\HomeGroupUser$
  249. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Gość\AppData\Local\Torch
  250. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Gość\AppData\Local\Google
  251. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Gość\AppData\Local\Comodo
  252. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Gość\AppData\Local\Chromatic Browser
  253. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Gość
  254. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
  255. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
  256. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
  257. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
  258. 2014-10-10 21:17 - 2014-10-10 21:17 - 00000000 ____D () C:\Users\Administrator
  259. 2014-10-10 21:16 - 2014-10-10 21:16 - 00821760 _____ () C:\Users\User\Downloads\Parias - Hip Hop vs Peja (Instrumental_beat).mp3.exe
  260. 2014-10-09 17:37 - 2014-10-09 17:37 - 02733349 _____ () C:\Users\User\Desktop\LordRossiolPlays- Gruby pojazd z LAVA.mp4
  261. 2014-10-09 17:36 - 2014-10-09 17:37 - 02733349 _____ () C:\Users\User\Downloads\LordRossiolPlays- Gruby pojazd z LAVA.mp4
  262. 2014-10-03 14:50 - 2014-10-03 14:50 - 00000000 ____D () C:\Users\User\Documents\Firefall
  263. 2014-10-03 14:50 - 2014-10-03 14:50 - 00000000 ____D () C:\Users\User\AppData\Local\Red 5 Studios
  264. 2014-10-03 14:50 - 2014-10-03 14:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
  265. 2014-10-03 14:50 - 2014-10-03 14:50 - 00000000 ____D () C:\Program Files (x86)\Xiph.Org
  266. 2014-10-03 14:49 - 2014-10-03 14:49 - 00017475 _____ () C:\Windows\DirectX.log
  267. 2014-10-01 18:14 - 2014-10-11 21:12 - 00005576 _____ () C:\Windows\PFRO.log
  268. 2014-10-01 18:14 - 2014-10-11 21:12 - 00000896 _____ () C:\Windows\setupact.log
  269. 2014-10-01 18:14 - 2014-10-01 18:14 - 00000000 _____ () C:\Windows\setuperr.log
  270. 2014-10-01 11:27 - 2014-10-01 11:28 - 00000000 ____D () C:\AdwCleaner
  271. 2014-10-01 11:27 - 2014-10-01 11:27 - 01375089 _____ () C:\Users\User\Downloads\adwcleaner_3.311 (1).exe
  272. 2014-10-01 11:27 - 2014-10-01 11:27 - 00000000 ____D () C:\Windows\system32\appmgmt
  273. 2014-10-01 11:25 - 2014-10-01 11:26 - 01375089 _____ () C:\Users\User\Downloads\adwcleaner_3.311.exe
  274. 2014-10-01 07:54 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
  275. 2014-10-01 07:54 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
  276. 2014-09-28 16:12 - 2014-09-28 16:14 - 04001324 _____ () C:\Users\User\Downloads\Audio 2014-09-28 16-08-49.wav
  277. 2014-09-28 16:05 - 2014-09-28 16:05 - 00002517 _____ () C:\Users\Public\Desktop\Skype.lnk
  278. 2014-09-28 16:05 - 2014-09-28 16:05 - 00000000 ____D () C:\ProgramData\Skype
  279. 2014-09-28 16:05 - 2014-09-28 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  280. 2014-09-28 16:05 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
  281. 2014-09-28 16:05 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
  282. 2014-09-28 16:02 - 2014-09-28 16:03 - 01678440 _____ (Skype Technologies S.A.) C:\Users\User\Downloads\SkypeSetup.exe
  283. 2014-09-28 15:44 - 2014-10-11 16:45 - 00000400 _____ () C:\Users\User\Desktop\Query.txt
  284. 2014-09-27 23:17 - 2014-09-27 23:17 - 00038784 _____ () C:\Users\User\Desktop\Stone++.txt
  285. 2014-09-27 08:16 - 2014-09-27 08:19 - 04650240 _____ () C:\Users\User\Downloads\ItemShop.rar
  286. 2014-09-26 22:14 - 2014-09-28 15:45 - 00000000 ____D () C:\Users\User\AppData\Roaming\FileZilla
  287. 2014-09-26 22:13 - 2014-09-26 22:14 - 06655293 _____ () C:\Users\User\Downloads\Isnragoth.zip
  288. 2014-09-26 22:08 - 2014-09-28 15:56 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
  289. 2014-09-26 22:08 - 2014-09-26 22:08 - 00590737 _____ () C:\Users\User\Downloads\Medieval Town by Anthony10.zip
  290. 2014-09-26 22:07 - 2014-10-11 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
  291. 2014-09-26 22:07 - 2014-09-26 22:07 - 00000000 ____D () C:\Users\User\AppData\Roaming\Systweak
  292. 2014-09-26 22:00 - 2014-09-26 22:01 - 10242417 _____ () C:\Users\User\Downloads\Battleship Fleet.zip
  293. 2014-09-26 20:15 - 2014-09-26 20:16 - 01514851 _____ () C:\Users\User\Downloads\Dramo panel SMS ItemShop.zip
  294. 2014-09-25 14:23 - 2014-01-17 00:22 - 02530401 _____ () C:\Users\User\Desktop\forge-1.7.2-10.12.0.997-installer.jar
  295. 2014-09-25 14:22 - 2014-09-25 14:23 - 03228910 _____ () C:\Users\User\Downloads\1.7.2 Shader Mod + Shader Packs + Forge.zip
  296. 2014-09-25 11:35 - 2014-10-11 21:13 - 00000000 ____D () C:\Users\User\AppData\Roaming\Skype
  297. 2014-09-25 11:35 - 2014-09-28 16:07 - 00000000 ___RD () C:\Program Files (x86)\Skype
  298. 2014-09-25 11:35 - 2014-09-25 11:35 - 00000000 ____D () C:\Users\User\AppData\Local\Skype
  299. 2014-09-23 16:12 - 2014-09-23 16:13 - 04920202 _____ () C:\Users\User\Downloads\bukkit-1.7.2-R0.2.jar
  300. 2014-09-23 16:12 - 2014-09-23 16:12 - 01648928 _____ () C:\Users\User\Downloads\Skript.jar
  301. 2014-09-19 12:36 - 2014-09-19 12:36 - 91931728 _____ (The GIMP Team ) C:\Users\User\Downloads\gimp-2.8.14-setup-1.exe
  302. 2014-09-19 12:29 - 2014-09-19 12:29 - 00747456 _____ ( ) C:\Users\User\Downloads\GIMP(13219)-dp (1).exe
  303. 2014-09-19 12:28 - 2014-09-19 12:28 - 00747456 _____ ( ) C:\Users\User\Downloads\GIMP(13219)-dp.exe
  304. 2014-09-18 19:00 - 2014-09-28 15:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
  305. 2014-09-18 19:00 - 2014-09-18 19:00 - 00003726 _____ () C:\Windows\System32\Tasks\Overwolf Updater Task
  306. 2014-09-18 19:00 - 2014-09-18 19:00 - 00000000 ____D () C:\ProgramData\Overwolf
  307. 2014-09-18 18:56 - 2014-10-11 21:13 - 00000000 ____D () C:\Users\User\AppData\Local\Overwolf
  308. 2014-09-18 18:49 - 2014-09-18 18:49 - 12984745 _____ () C:\Users\User\Downloads\Nodus_2.0-1.7.x.zip
  309. 2014-09-17 13:23 - 2014-09-28 15:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
  310. 2014-09-17 13:23 - 2014-09-17 13:24 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
  311. 2014-09-17 13:23 - 2014-09-17 13:23 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
  312. 2014-09-17 13:22 - 2014-10-10 21:23 - 00000000 ____D () C:\Users\User\Desktop\Virtual Audio Cable 4.10
  313. 2014-09-17 13:22 - 2014-09-17 13:22 - 00380021 _____ () C:\Users\User\Downloads\Virtual Audio Cable 4.10.rar
  314. 2014-09-13 18:45 - 2014-09-13 18:45 - 00048733 _____ () C:\Users\User\Downloads\8.New ! AVA ! _@.rar
  315. 2014-09-13 18:43 - 2014-09-13 18:43 - 00003962 _____ () C:\Users\User\Downloads\AdminIcons.rar
  316. 2014-09-13 18:41 - 2014-09-13 18:41 - 00351087 _____ () C:\Users\User\Downloads\25-TeamSpeak-Rank-Icons-v1.01.zip
  317. 2014-09-13 18:39 - 2014-09-13 18:39 - 00119019 _____ () C:\Users\User\Downloads\Free Rank Icons 16x16.rar
  318. 2014-09-13 18:38 - 2014-09-13 18:38 - 00100830 _____ () C:\Users\User\Downloads\CF Rank Icon Pack Download.rar
  319. 2014-09-13 18:38 - 2014-09-13 18:38 - 00040770 _____ () C:\Users\User\Downloads\Ikony_Ts3_by_Krad90.rar
  320.  
  321. ==================== One Month Modified Files and Folders =======
  322.  
  323. (If an entry is included in the fixlist, the file\folder will be moved.)
  324.  
  325. 2014-10-11 21:26 - 2014-08-02 08:38 - 00000000 ____D () C:\FRST
  326. 2014-10-11 21:26 - 2014-07-27 10:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\TS3Client
  327. 2014-10-11 21:21 - 2009-07-14 06:45 - 00031280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  328. 2014-10-11 21:21 - 2009-07-14 06:45 - 00031280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  329. 2014-10-11 21:18 - 2011-02-04 19:38 - 00743770 _____ () C:\Windows\system32\perfh015.dat
  330. 2014-10-11 21:18 - 2011-02-04 19:38 - 00157252 _____ () C:\Windows\system32\perfc015.dat
  331. 2014-10-11 21:18 - 2009-07-14 07:13 - 01679202 _____ () C:\Windows\system32\PerfStringBackup.INI
  332. 2014-10-11 21:17 - 2014-07-19 17:37 - 00360174 _____ () C:\Windows\WindowsUpdate.log
  333. 2014-10-11 21:14 - 2014-07-19 12:03 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  334. 2014-10-11 21:12 - 2014-08-01 14:27 - 00000000 ____D () C:\Users\User\AppData\Local\LogMeIn Hamachi
  335. 2014-10-11 21:12 - 2014-07-27 22:47 - 00000000 ____D () C:\Users\User\AppData\Local\screenSHU
  336. 2014-10-11 21:12 - 2014-07-19 12:09 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
  337. 2014-10-11 21:12 - 2014-07-19 12:03 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  338. 2014-10-11 21:12 - 2014-07-19 11:54 - 00000000 ____D () C:\ProgramData\NVIDIA
  339. 2014-10-11 21:12 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
  340. 2014-10-11 21:11 - 2014-08-01 14:39 - 00000402 __RSH () C:\ProgramData\ntuser.pol
  341. 2014-10-11 20:55 - 2014-07-19 12:23 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
  342. 2014-10-11 18:28 - 2014-07-27 13:04 - 00000000 ____D () C:\Program Files (x86)\Steam
  343. 2014-10-11 17:25 - 2014-08-10 15:38 - 00000000 ____D () C:\Users\User\AppData\Local\WMTools Downloaded Files
  344. 2014-10-11 17:01 - 2014-08-10 15:36 - 00004608 _____ () C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  345. 2014-10-11 16:59 - 2014-08-08 18:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\Winamp
  346. 2014-10-11 13:09 - 2014-07-27 10:50 - 00000000 ____D () C:\Users\User\AppData\Roaming\.minecraft
  347. 2014-10-11 09:37 - 2014-07-27 11:22 - 00000000 ____D () C:\Program Files (x86)\RCP
  348. 2014-10-10 21:21 - 2014-07-27 11:24 - 00000000 ____D () C:\Program Files (x86)\Opera
  349. 2014-10-10 21:17 - 2014-07-19 12:03 - 00000000 ____D () C:\Users\User\AppData\Local\Google
  350. 2014-10-10 21:17 - 2014-07-19 12:03 - 00000000 ____D () C:\Program Files (x86)\Google
  351. 2014-10-10 21:17 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
  352. 2014-10-01 18:24 - 2014-08-01 19:50 - 00007596 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
  353. 2014-10-01 08:21 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
  354. 2014-10-01 07:47 - 2014-08-02 12:52 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
  355. 2014-09-30 11:42 - 2009-07-14 07:08 - 00032520 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
  356. 2014-09-29 10:08 - 2014-09-10 19:02 - 00000870 _____ () C:\Users\Public\Desktop\CCleaner.lnk
  357. 2014-09-29 09:22 - 2014-07-19 12:04 - 00002199 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
  358. 2014-09-28 16:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
  359. 2014-09-28 15:56 - 2014-09-10 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
  360. 2014-09-28 15:56 - 2014-07-19 12:11 - 00000000 ____D () C:\ProgramData\Norton
  361. 2014-09-28 15:56 - 2014-07-19 12:09 - 00000000 ___HD () C:\SuperChargerProfile
  362. 2014-09-28 15:56 - 2014-07-19 12:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
  363. 2014-09-28 15:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
  364. 2014-09-28 15:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
  365. 2014-09-25 14:29 - 2014-01-17 00:26 - 00000000 ____D () C:\Users\User\Desktop\shaderpacks
  366. 2014-09-24 13:55 - 2014-07-19 12:23 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
  367. 2014-09-24 13:55 - 2014-07-19 12:23 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
  368. 2014-09-24 13:55 - 2014-07-19 12:23 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
  369. 2014-09-23 16:55 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini
  370. 2014-09-23 16:53 - 2014-08-13 13:56 - 00000000 ____D () C:\Users\User\Desktop\SkyBlock1.1
  371. 2014-09-23 15:20 - 2014-08-02 08:40 - 00028971 _____ () C:\Users\User\Downloads\Addition.txt
  372. 2014-09-23 15:20 - 2014-08-02 08:38 - 00043625 _____ () C:\Users\User\Downloads\FRST.txt
  373. 2014-09-23 13:00 - 2014-07-27 11:46 - 00000000 ____D () C:\Program Files (x86)\Overwolf
  374. 2014-09-22 18:55 - 2014-08-02 08:35 - 02105856 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
  375. 2014-09-17 12:41 - 2012-05-23 03:55 - 00000000 ____D () C:\Users\User\Desktop\SkyBlock3.0
  376. 2014-09-15 09:06 - 2010-11-21 05:27 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
  377. 2014-09-14 14:20 - 2014-08-12 11:30 - 00000000 ____D () C:\Users\User\Desktop\HLDJ
  378. 2014-09-11 20:08 - 2014-07-27 13:30 - 00000000 ____D () C:\Users\User\Desktop\Nowy folder
  379.  
  380. Some content of TEMP:
  381. ====================
  382. C:\Users\User\AppData\Local\Temp\LiveSupport_setup.exe
  383. C:\Users\User\AppData\Local\Temp\optprosetup.exe
  384. C:\Users\User\AppData\Local\Temp\Quarantine.exe
  385.  
  386.  
  387. ==================== Bamital & volsnap Check =================
  388.  
  389. (There is no automatic fix for files that do not pass verification.)
  390.  
  391. C:\Windows\System32\winlogon.exe => File is digitally signed
  392. C:\Windows\System32\wininit.exe => File is digitally signed
  393. C:\Windows\SysWOW64\wininit.exe => File is digitally signed
  394. C:\Windows\explorer.exe => File is digitally signed
  395. C:\Windows\SysWOW64\explorer.exe => File is digitally signed
  396. C:\Windows\System32\svchost.exe => File is digitally signed
  397. C:\Windows\SysWOW64\svchost.exe => File is digitally signed
  398. C:\Windows\System32\services.exe => File is digitally signed
  399. C:\Windows\System32\User32.dll => File is digitally signed
  400. C:\Windows\SysWOW64\User32.dll => File is digitally signed
  401. C:\Windows\System32\userinit.exe => File is digitally signed
  402. C:\Windows\SysWOW64\userinit.exe => File is digitally signed
  403. C:\Windows\System32\rpcss.dll => File is digitally signed
  404. C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
  405.  
  406.  
  407. LastRegBack: 2014-10-06 16:49
  408.  
  409. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!