API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 20th, 2020
1,301
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 47.42 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-01-2020
  2. Ran by Vaskez25 (administrator) on VASKEZ25-PC (21-01-2020 00:10:09)
  3. Running from C:\Users\Vaskez25\Desktop\New folder (2)
  4. Loaded Profiles: Vaskez25 (Available Profiles: Vaskez25)
  5. Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
  6. Internet Explorer Version 11 (Default browser: FF)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  15. (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
  16. (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
  17. (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
  18. (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
  19. (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
  20. (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
  21. (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  22. (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
  23. (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
  24. (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
  25. (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
  26. (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
  27. (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
  28. (Bitsum LLC -> Bitsum LLC) [File not signed] C:\Program Files\Process Lasso\ProcessGovernor.exe
  29. (Bitsum LLC -> Bitsum LLC) [File not signed] C:\Program Files\Process Lasso\ProcessLasso.exe
  30. (Discord Inc. -> Discord Inc.) C:\Users\Vaskez25\AppData\Local\Discord\app-0.0.304\Discord.exe
  31. (Discord Inc. -> Discord Inc.) C:\Users\Vaskez25\AppData\Local\Discord\app-0.0.304\Discord.exe
  32. (Discord Inc. -> Discord Inc.) C:\Users\Vaskez25\AppData\Local\Discord\app-0.0.304\Discord.exe
  33. (Discord Inc. -> Discord Inc.) C:\Users\Vaskez25\AppData\Local\Discord\app-0.0.304\Discord.exe
  34. (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
  35. (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
  36. (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
  37. (F.lux Software LLC -> f.lux Software LLC) C:\Users\Vaskez25\AppData\Local\FluxSoftware\Flux\flux.exe
  38. (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
  39. (Janos Mathe -> H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
  40. (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
  41. (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
  42. (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
  43. (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
  44. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DeviceDisplayObjectProvider.exe
  45. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
  46. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
  47. (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
  48. (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
  49. (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
  50. (MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe
  51. (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\AgentService.exe
  52. (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe
  53. (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\SMMonitor.exe
  54. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  55. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  56. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  57. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  58. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  59. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  60. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  61. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  62. (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\BackItUp.exe
  63. (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\NBService.exe
  64. (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
  65. (Notepad++ -> Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
  66. (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
  67. (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  68. (voidtools -> voidtools) C:\Program Files (x86)\Everything\Everything.exe
  69.  
  70. ==================== Registry (Whitelisted) ===================
  71.  
  72. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  73.  
  74. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
  75. HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  76. HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
  77. HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
  78. HKLM\...\Run: [XboxStat] => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
  79. HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
  80. HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe [700896 2020-01-07] (MiniTool Software Limited -> )
  81. HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
  82. HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [676608 2013-08-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
  83. HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
  84. HKLM-x32\...\Run: [] => [X]
  85. HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
  86. HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
  87. HKLM-x32\...\Run: [Nero BackItUp] => C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe [1164664 2017-09-12] (Nero AG -> Nero AG)
  88. HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [1710880 2019-02-04] (voidtools -> voidtools)
  89. HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
  90. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
  91. HKLM-x32\...\Run: [MTSM] => C:\Program Files\MiniTool ShadowMaker\SMMonitor.exe [1060320 2019-12-12] (MiniTool Software Limited -> )
  92. HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
  93. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [AdobeBridge] => [X]
  94. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [f.lux] => C:\Users\Vaskez25\AppData\Local\FluxSoftware\Flux\flux.exe [1376264 2019-04-03] (F.lux Software LLC -> f.lux Software LLC)
  95. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [Epic Privacy Browser Installer] => "C:\Users\Vaskez25\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe" /c
  96. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-08-27] (AVB Disc Soft, SIA -> Disc Soft Ltd)
  97. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36074896 2020-01-14] (Epic Games Inc. -> Epic Games, Inc.)
  98. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [Discord] => C:\Users\Vaskez25\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc. -> Discord Inc.)
  99. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [firefox] => "C:\Program Files (x86)\Common Files\ElementWeb\update.exe" about:robots <==== ATTENTION
  100. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
  101. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\MountPoints2: {a9bca5a7-ac79-11e8-b0b2-bc5ff475c96e} - J:\autorun.exe
  102. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\MountPoints2: {b4f1db07-acbf-11e8-8338-806e6f6e6963} - E:\ASRSetup.exe
  103. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\...\MountPoints2: {f64093f8-be2e-11e8-8bfe-bc5ff475c96e} - K:\setup.exe
  104. HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-09] (Google LLC -> Google LLC)
  105. IFEO\osppsvc.exe: [Debugger] SppExtComObjPatcher.exe
  106. IFEO\sppsvc.exe: [Debugger] SppExtComObjPatcher.exe
  107. Startup: C:\Users\Vaskez25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 2640 series.lnk [2020-01-20]
  108. ShortcutAndArgument: Monitor Ink Alerts - HP Deskjet 2640 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2640 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN37O1GG7D0601;CONNECTION=USB;MONITOR=1;
  109. FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
  110.  
  111. ==================== Scheduled Tasks (Whitelisted) ============
  112.  
  113. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  114.  
  115. Task: {0269A432-D0E5-4B50-933C-60C897B871BB} - System32\Tasks\Process Lasso Management Console (GUI) => C:\Program Files\Process Lasso\processlasso.exe [1583496 2019-06-28] (Bitsum LLC -> Bitsum LLC) [File not signed]
  116. Task: {11BB8AB0-38CD-45B1-A909-E311086C1117} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-30] (Google Inc -> Google Inc.)
  117. Task: {167888ED-6F15-4C17-92C9-60AEABB4075A} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-21] (Adobe Inc. -> Adobe)
  118. Task: {64866EE0-6117-4F24-AE5E-20D008CAC0E4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
  119. Task: {6A8A2C72-D0CD-4490-A3A9-869B27F49445} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  120. Task: {7D54C4EB-6317-40CF-B699-2A0EAE50A4C0} - System32\Tasks\Process Lasso Core Engine Only => C:\Program Files\Process Lasso\processgovernor.exe [1018256 2019-06-28] (Bitsum LLC -> Bitsum LLC) [File not signed]
  121. Task: {853A10FD-DE31-4A86-BB0C-A0DB25EB3FC0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-30] (Google Inc -> Google Inc.)
  122. Task: {85AA947A-800B-401D-832D-9F4F6CFC20F5} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6650744 2017-06-02] (Nero AG -> Nero AG)
  123. Task: {9A434F44-3504-40FD-8075-F54E8A0D22CC} - System32\Tasks\HPCustParticipation HP Deskjet 2640 series => C:\Program Files\HP\HP Deskjet 2640 series\Bin\HPCustPartic.exe [5432184 2013-05-09] (Hewlett Packard -> Hewlett-Packard Co.) [File not signed]
  124. Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe
  125. Task: {B94E00E8-C05E-4899-A130-F8742C712D77} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe [700896 2020-01-07] (MiniTool Software Limited -> )
  126. Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe
  127. Task: {CB2CF290-87E3-4621-B800-CEDC852EE38B} - System32\Tasks\{9FD536FC-870C-4289-9145-2D0F6A67EFF3} => C:\Windows\system32\pcalua.exe -a C:\Users\Vaskez25\Desktop\unetbootin-windows-661.exe -d C:\Users\Vaskez25\Desktop
  128. Task: {D73BF36E-D6AE-49EA-AC76-14F8D261707E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
  129. Task: {E339F5BA-3C85-4043-AACC-D4594B1EAE91} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
  130. Task: {F27D0EEF-02B1-4731-B1C8-AF077F770236} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
  131. Task: {F4D5450E-FBAC-4A1B-9822-CD7A8E2CA04A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
  132. Task: {F6129CFA-2A50-4DF1-A961-8805A891C182} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Vaskez25 => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5458008 2018-07-17] (Janos Mathe -> H.D.S. Hungary)
  133.  
  134. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  135.  
  136.  
  137. ==================== Internet (Whitelisted) ====================
  138.  
  139. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  140.  
  141. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
  142. Tcpip\..\Interfaces\{05608976-1214-4D44-B939-C81F280AF5FC}: [DhcpNameServer] 192.168.1.1 0.0.0.0
  143.  
  144. Internet Explorer:
  145. ==================
  146. HKU\S-1-5-21-2573124184-1113126814-107263514-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-xl/?ocid=iehp
  147. BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
  148. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-07-15] (Oracle America, Inc. -> Oracle Corporation)
  149. BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-08-30] (Google Inc -> Google Inc.)
  150. BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
  151. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-07-15] (Oracle America, Inc. -> Oracle Corporation)
  152. BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
  153. BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-08-30] (Google Inc -> Google Inc.)
  154. BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
  155. Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-08-30] (Google Inc -> Google Inc.)
  156. Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-08-30] (Google Inc -> Google Inc.)
  157. Toolbar: HKU\S-1-5-21-2573124184-1113126814-107263514-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-08-30] (Google Inc -> Google Inc.)
  158.  
  159. FireFox:
  160. ========
  161. FF DefaultProfile: twkcoews.default
  162. FF ProfilePath: C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default [2020-01-21]
  163. FF Notifications: Mozilla\Firefox\Profiles\twkcoews.default -> hxxps://www.facebook.com; hxxps://web.whatsapp.com; hxxps://mail.yahoo.com; hxxps://aternos.org
  164. FF Extension: (Tampermonkey) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\firefox@tampermonkey.net.xpi [2019-12-19]
  165. FF Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\sp@avast.com.xpi [2019-03-26] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/sp/update.json]
  166. FF Extension: (Avast Online Security) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\wrc@avast.com.xpi [2020-01-09]
  167. FF Extension: (View Image) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\{287dcf75-bec6-4eec-b4f6-71948a2eea29}.xpi [2019-11-03]
  168. FF Extension: (Popup Blocker Ultimate) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\{60B7679C-BED9-11E5-998D-8526BB8E7F8B}.xpi [2020-01-14]
  169. FF Extension: (Adblock Plus - free ad blocker) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-10-22]
  170. FF Extension: (Popup Blocker (strict)) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\{de22fd49-c9ab-4359-b722-b3febdc3a0b0}.xpi [2020-01-03]
  171. FF Extension: (Greasemonkey) - C:\Users\Vaskez25\AppData\Roaming\Mozilla\Firefox\Profiles\twkcoews.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2019-06-12]
  172. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-21] (Adobe Inc. -> )
  173. FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-07-15] (Oracle America, Inc. -> Oracle Corporation)
  174. FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-07-15] (Oracle America, Inc. -> Oracle Corporation)
  175. FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-10] (Microsoft Corporation -> Microsoft Corporation)
  176. FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
  177. FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
  178. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-21] (Adobe Inc. -> )
  179. FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-10] (Microsoft Corporation -> Microsoft Corporation)
  180. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
  181. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
  182. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
  183. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
  184. FF Plugin HKU\S-1-5-21-2573124184-1113126814-107263514-1000: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\Vaskez25\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [No File]
  185. FF Plugin HKU\S-1-5-21-2573124184-1113126814-107263514-1000: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\Vaskez25\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [No File]
  186.  
  187. Chrome:
  188. =======
  189. CHR HomePage: Default -> hxxp://www.youtube.com/
  190. CHR StartupUrls: Default -> "hxxp://www.youtube.com/"
  191. CHR Profile: C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default [2020-01-20]
  192. CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
  193. CHR Extension: (Tampermonkey) - C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-12-05]
  194. CHR Extension: (Adobe Acrobat) - C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-30]
  195. CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-12-18]
  196. CHR Extension: (Avast Online Security) - C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-01-16]
  197. CHR Extension: (Chrome Web Store Payments) - C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-30]
  198. CHR Extension: (Chrome Media Router) - C:\Users\Vaskez25\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-13]
  199. CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
  200. CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
  201. CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
  202.  
  203. ==================== Services (Whitelisted) ===================
  204.  
  205. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  206.  
  207. R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
  208. R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
  209. R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [241152 2013-08-30] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
  210. R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
  211. R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
  212. R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  213. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2019-11-28] (BattlEye Innovations e.K. -> )
  214. R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3730024 2018-08-27] (AVB Disc Soft, SIA -> Disc Soft Ltd)
  215. S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-06-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  216. R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
  217. R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
  218. R2 MTAgentService; C:\Program Files\MiniTool ShadowMaker\AgentService.exe [776160 2019-12-12] (MiniTool Software Limited -> )
  219. R2 MTSchedulerService; C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [226784 2019-12-12] (MiniTool Software Limited -> )
  220. R2 NeroBackItUpBackgroundService2018; C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\NBService.exe [287096 2017-09-12] (Nero AG -> Nero AG)
  221. S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
  222. S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
  223. R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2019-05-28] (Even Balance, Inc. -> )
  224. S2 QMEmulatorService; C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [148840 2019-10-17] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
  225. S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-09-12] (Rockstar Games, Inc. -> Rockstar Games)
  226. S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
  227. S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2017-08-09] (Microsoft Windows -> Microsoft Corporation)
  228. R2 wuauserv; C:\Windows\system32\wuaueng2.dll [2651136 2017-08-09] (Microsoft Corporation) [File not signed]
  229.  
  230. ===================== Drivers (Whitelisted) ===================
  231.  
  232. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  233.  
  234. R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11833856 2013-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
  235. R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [608768 2013-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
  236. R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [82560 2012-04-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
  237. R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [42624 2012-04-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
  238. R2 aow_drv; C:\Program Files\TxGameAssistant\UI\aow_drv_x64.sys [862880 2019-10-18] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
  239. R1 AsrAppCharger; C:\Windows\System32\DRIVERS\AsrAppCharger.sys [17192 2011-05-10] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
  240. R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  241. R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  242. R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  243. R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  244. R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  245. R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  246. R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  247. R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  248. R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  249. R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  250. R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  251. R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  252. R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  253. R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
  254. R3 athur; C:\Windows\System32\DRIVERS\athurx.sys [1847296 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
  255. R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96768 2013-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
  256. R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-08-30] (Disc Soft Ltd -> Disc Soft Ltd)
  257. R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-08-30] (Disc Soft Ltd -> Disc Soft Ltd)
  258. R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
  259. R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
  260. S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
  261. S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [11973 2019-05-24] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
  262. S3 tapwindscribe0901; C:\Windows\System32\DRIVERS\tapwindscribe0901.sys [45560 2018-07-13] (Windscribe Limited -> The OpenVPN Project)
  263. S3 tesrsdt; C:\Windows\system32\drivers\tesrsdt.sys [432840 2019-10-18] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
  264. S3 TesSafe; C:\Windows\system32\TesSafe.sys [545568 2019-12-01] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
  265. R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [56448 2012-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
  266. R3 VBAudioVACMME; C:\Windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
  267. R3 VBAudioVMAUXVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmauxvaio64_win7.sys [63936 2019-12-29] (Vincent Burel -> Windows (R) Win 7 DDK provider)
  268. R3 VBAudioVMVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmvaio64_win7.sys [63936 2019-12-29] (Vincent Burel -> Windows (R) Win 7 DDK provider)
  269. S3 MSICDSetup; \??\E:\CDriver64.sys [X]
  270. S3 VGPU; System32\drivers\rdvgkmd.sys [X]
  271.  
  272. ==================== NetSvcs (Whitelisted) ===================
  273.  
  274. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  275.  
  276.  
  277. ==================== One month (created) ===================
  278.  
  279. (If an entry is included in the fixlist, the file/folder will be moved.)
  280.  
  281. 2020-01-20 23:48 - 2020-01-21 00:10 - 000000000 ____D C:\FRST
  282. 2020-01-20 23:43 - 2020-01-21 00:10 - 000000000 ____D C:\Users\Vaskez25\Desktop\New folder (2)
  283. 2020-01-20 23:29 - 2020-01-20 23:29 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
  284. 2020-01-20 23:29 - 2020-01-20 23:29 - 000002820 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
  285. 2020-01-20 23:29 - 2020-01-20 23:29 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
  286. 2020-01-20 23:29 - 2020-01-20 23:29 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
  287. 2020-01-20 23:29 - 2020-01-20 23:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
  288. 2020-01-20 23:29 - 2020-01-20 23:29 - 000000000 ____D C:\Program Files\CCleaner
  289. 2020-01-20 23:28 - 2020-01-20 23:28 - 024581800 _____ (Piriform Software Ltd) C:\Users\Vaskez25\Downloads\cctrialsetup.exe
  290. 2020-01-20 23:18 - 2020-01-20 23:18 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Output
  291. 2020-01-20 23:18 - 2020-01-20 23:18 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\ff2
  292. 2020-01-20 23:18 - 2020-01-20 23:18 - 000000000 ____D C:\Users\Vaskez25\AppData\Local\AMozilla
  293. 2020-01-20 23:18 - 2018-08-07 00:55 - 011924306 _____ (InstallShield Software Corporation) C:\Users\Vaskez25\AppData\Roaming\pinnacle-setup.exe
  294. 2020-01-20 23:13 - 2020-01-20 23:14 - 000001547 _____ C:\Users\Vaskez25\Desktop\New Text Document.txt
  295. 2020-01-19 20:12 - 2020-01-20 11:27 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\QtProject
  296. 2020-01-19 20:12 - 2019-05-29 15:20 - 003600896 _____ C:\Windows\system32\pwNative.exe
  297. 2020-01-19 20:12 - 2019-05-29 15:20 - 000019152 _____ C:\Windows\system32\pwdrvio.sys
  298. 2020-01-19 20:12 - 2019-05-29 15:20 - 000012504 _____ C:\Windows\system32\pwdspio.sys
  299. 2020-01-19 20:11 - 2020-01-20 23:18 - 000003102 _____ C:\Windows\system32\Tasks\MiniToolPartitionWizard
  300. 2020-01-19 20:11 - 2020-01-19 20:13 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 11
  301. 2020-01-19 20:11 - 2020-01-19 20:11 - 000000987 _____ C:\Users\Public\Desktop\MiniTool Partition Wizard.lnk
  302. 2020-01-19 20:11 - 2020-01-19 20:11 - 000000987 _____ C:\ProgramData\Desktop\MiniTool Partition Wizard.lnk
  303. 2020-01-19 20:11 - 2020-01-19 20:11 - 000000941 _____ C:\Users\Public\Desktop\MiniTool ShadowMaker Free.lnk
  304. 2020-01-19 20:11 - 2020-01-19 20:11 - 000000941 _____ C:\ProgramData\Desktop\MiniTool ShadowMaker Free.lnk
  305. 2020-01-19 20:11 - 2020-01-19 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool ShadowMaker
  306. 2020-01-19 20:11 - 2020-01-19 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 11
  307. 2020-01-19 20:11 - 2020-01-19 20:11 - 000000000 ____D C:\Program Files\MiniTool ShadowMaker
  308. 2020-01-19 20:10 - 2020-01-19 20:10 - 006402792 _____ (MiniTool Software Limited ) C:\Users\Vaskez25\Downloads\pw11-free.exe
  309. 2020-01-19 20:09 - 2020-01-19 20:09 - 000477473 _____ C:\Users\Vaskez25\Downloads\USBUtil v2.0 Full (English).exe.zip
  310. 2020-01-19 20:09 - 2020-01-19 20:09 - 000000000 ____D C:\Users\Vaskez25\Desktop\USBUtil v2.0 Full (English).exe
  311. 2020-01-19 14:22 - 2020-01-19 20:29 - 000000000 ____D C:\Users\Vaskez25\Desktop\USBExtreme_wininst
  312. 2020-01-19 13:48 - 2020-01-19 13:48 - 000000000 ____D C:\Users\Vaskez25\Desktop\USBUtil v2.00 Full [English version]
  313. 2020-01-19 12:25 - 2020-01-19 12:30 - 000000000 ____D C:\Users\Vaskez25\Desktop\Comp-Decomp
  314. 2020-01-19 12:24 - 2020-01-19 12:24 - 000717778 _____ C:\Users\Vaskez25\Downloads\valve-tools.7z
  315. 2020-01-19 11:56 - 2020-01-19 11:56 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\MilkShape 3D 1.x.x
  316. 2020-01-19 11:55 - 2020-01-19 11:55 - 005530782 _____ C:\Users\Vaskez25\Downloads\ms3d184.zip
  317. 2020-01-19 11:39 - 2020-01-19 12:27 - 000000000 ____D C:\Program Files (x86)\Jed's Half-Life Model Viewer 1.3.6
  318. 2020-01-19 11:39 - 2020-01-19 11:39 - 000000000 ____D C:\Users\Vaskez25\Desktop\hlmv136_setup
  319. 2020-01-19 11:39 - 2020-01-19 11:39 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jed's Half-Life Model Viewer 1.3.6
  320. 2020-01-19 11:39 - 2020-01-19 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jed's Half-Life Model Viewer 1.3.6
  321. 2020-01-19 11:38 - 2020-01-19 11:38 - 000195825 _____ C:\Users\Vaskez25\Downloads\hlmv136_setup.zip
  322. 2020-01-18 23:43 - 2020-01-18 23:43 - 000000000 ____D C:\Users\Vaskez25\AppData\LocalLow\uTorrent
  323. 2020-01-18 11:45 - 2020-01-18 11:45 - 000001029 _____ C:\Users\Vaskez25\Desktop\Silent Hills PT.lnk
  324. 2020-01-18 10:34 - 2020-01-18 11:56 - 000001210 _____ C:\Users\Vaskez25\Desktop\Half-Life Anthology.lnk
  325. 2020-01-18 08:23 - 2020-01-18 08:24 - 1458432489 _____ C:\Users\Vaskez25\Downloads\Half-Life Anthology v8308.7z
  326. 2020-01-16 22:22 - 2020-01-16 22:22 - 012605617 _____ C:\Users\Vaskez25\Downloads\AT-cm_603355687.mp4
  327. 2020-01-16 08:41 - 2020-01-15 00:39 - 003335777 ____H C:\Users\Vaskez25\AppData\Local\IconCache - Copy (3).db
  328. 2020-01-16 08:21 - 2020-01-16 08:21 - 001521158 _____ C:\Users\Vaskez25\Downloads\SmartSteamEmu_v1.4.3_for_L4D2.7z
  329. 2020-01-16 08:02 - 2020-01-16 08:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Left 4 Dead 2
  330. 2020-01-16 07:56 - 2020-01-16 07:56 - 000000000 ____D C:\Users\Vaskez25\Desktop\16-9.part1
  331. 2020-01-15 20:56 - 2020-01-16 01:50 - 000000000 ____D C:\Users\Vaskez25\Downloads\16-9
  332. 2020-01-15 20:49 - 2020-01-15 20:49 - 000002050 _____ C:\Users\Vaskez25\Desktop\JDownloader 2.lnk
  333. 2020-01-15 20:49 - 2020-01-15 20:49 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
  334. 2020-01-15 20:48 - 2020-01-16 07:51 - 000000000 ____D C:\Users\Vaskez25\AppData\Local\JDownloader 2.0
  335. 2020-01-15 20:37 - 2020-01-15 20:37 - 000076504 _____ (AppWork GmbH) C:\Users\Vaskez25\Downloads\JDownloader2_Clean_Installer.exe
  336. 2020-01-15 12:19 - 2020-01-16 22:58 - 000000000 ____D C:\Users\Vaskez25\Desktop\PS2_Blue_Shift_Final_Version.1
  337. 2020-01-15 12:14 - 2020-01-15 12:19 - 251365560 _____ C:\Users\Vaskez25\Downloads\PS2_Blue_Shift_Final_Version.1.zip
  338. 2020-01-13 15:37 - 2020-01-13 15:37 - 000000000 ____D C:\Users\Vaskez25\Desktop\root
  339. 2020-01-11 10:06 - 2020-01-11 10:06 - 000000000 ____D C:\Users\Vaskez25\Desktop\myl4d2addons_hidden_melee_slot
  340. 2020-01-10 23:59 - 2020-01-10 23:59 - 000000000 ____D C:\Users\Vaskez25\Desktop\myl4d2addons_melee slot move
  341. 2020-01-10 18:36 - 2020-01-10 18:40 - 000000000 ____D C:\Users\Vaskez25\Desktop\5d08dc0e343b66be52b928481860da5816062d89
  342. 2020-01-09 23:07 - 2020-01-09 00:34 - 009831765 ____H C:\Users\Vaskez25\AppData\Local\IconCache - Copy (2).db
  343. 2020-01-09 17:19 - 2020-01-09 17:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Strogino CS Portal
  344. 2020-01-07 11:17 - 2020-01-07 11:17 - 011840839 _____ C:\Users\Vaskez25\Downloads\Windows6.1-KB2670838-x64.msu
  345. 2020-01-07 09:01 - 2020-01-07 09:01 - 000000223 _____ C:\Users\Vaskez25\Desktop\RESIDENT EVIL 2 R.P.D. Demo.url
  346. 2020-01-05 23:24 - 2020-01-16 08:19 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\vlc
  347. 2020-01-05 23:24 - 2020-01-05 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
  348. 2020-01-05 23:18 - 2020-01-05 23:24 - 042030736 _____ C:\Users\Vaskez25\Downloads\vlc-3.0.8-win64.exe
  349. 2019-12-30 16:23 - 2019-12-30 16:23 - 001139147 _____ C:\Users\Vaskez25\Downloads\VBCABLE_Driver_Pack43.zip
  350. 2019-12-30 16:23 - 2019-12-30 16:23 - 000000000 ____D C:\Users\Vaskez25\Desktop\VBCABLE_Driver_Pack43
  351. 2019-12-30 16:23 - 2014-09-02 17:01 - 000041192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vbaudio_cable64_win7.sys
  352. 2019-12-29 22:34 - 2019-12-30 17:38 - 000034288 _____ C:\Users\Vaskez25\AppData\Roaming\VoiceMeeterBananaDefault.xml
  353. 2019-12-29 22:21 - 2019-12-30 16:24 - 000000000 ____D C:\Program Files\VB
  354. 2019-12-29 22:21 - 2019-12-29 22:21 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio
  355. 2019-12-29 22:21 - 2019-12-29 22:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio
  356. 2019-12-29 22:20 - 2019-12-29 22:20 - 000063936 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vbaudio_vmvaio64_win7.sys
  357. 2019-12-29 22:20 - 2019-12-29 22:20 - 000063936 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vbaudio_vmauxvaio64_win7.sys
  358. 2019-12-29 22:20 - 2019-12-29 22:20 - 000000000 ____D C:\Users\Vaskez25\Desktop\VoicemeeterSetup_v2050
  359. 2019-12-29 22:20 - 2019-12-29 22:20 - 000000000 ____D C:\Program Files (x86)\VB
  360. 2019-12-29 15:16 - 2019-12-29 15:16 - 001098596 _____ (OBS ) C:\Users\Vaskez25\Downloads\OBS-VirtualCam2.0.4-Installer.exe
  361. 2019-12-28 09:52 - 2019-12-28 09:52 - 000000000 ____D C:\Users\Vaskez25\Documents\Codemasters
  362. 2019-12-28 09:50 - 2019-12-28 09:51 - 020157440 _____ C:\Users\Vaskez25\Downloads\PhysX-9.12.1031-SystemSoftware-Legacy.msi
  363. 2019-12-28 08:10 - 2019-12-28 08:10 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Codemasters
  364. 2019-12-28 07:58 - 2019-12-28 07:58 - 000000882 _____ C:\Users\Vaskez25\Desktop\Clive Barker's Jericho.lnk
  365. 2019-12-28 07:58 - 2019-12-28 07:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clive Barker's Jericho
  366. 2019-12-27 23:37 - 2019-12-28 07:26 - 000000000 ____D C:\Users\Vaskez25\Downloads\Clive Barker's Jericho [R] [TN]
  367. 2019-12-25 09:52 - 2019-12-25 09:52 - 000242437 _____ C:\Users\Vaskez25\Untitled Project.aep
  368. 2019-12-24 23:31 - 2019-12-24 23:32 - 000062996 _____ C:\Users\Vaskez25\Downloads\NoCableLauncher-master.zip
  369. 2019-12-24 19:19 - 2019-12-24 19:21 - 010275840 ____R C:\Users\Vaskez25\Downloads\RocksmithNoCable.exe
  370. 2019-12-24 18:50 - 2019-12-24 18:50 - 000041655 ____R C:\Users\Vaskez25\Downloads\Rocksmith2014_nocable.zip
  371.  
  372. ==================== One month (modified) ==================
  373.  
  374. (If an entry is included in the fixlist, the file/folder will be moved.)
  375.  
  376. 2020-01-21 00:01 - 2019-02-20 19:47 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Everything
  377. 2020-01-20 23:30 - 2019-10-04 20:55 - 000000000 ____D C:\Temp
  378. 2020-01-20 23:27 - 2018-08-30 18:40 - 000000000 ____D C:\Users\Vaskez25\AppData\Local\AVAST Software
  379. 2020-01-20 23:24 - 2009-07-14 05:45 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  380. 2020-01-20 23:24 - 2009-07-14 05:45 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  381. 2020-01-20 23:18 - 2019-10-03 18:33 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
  382. 2020-01-20 23:18 - 2019-09-11 19:39 - 000003000 _____ C:\Windows\system32\Tasks\Process Lasso Core Engine Only
  383. 2020-01-20 23:18 - 2019-09-11 19:39 - 000002994 _____ C:\Windows\system32\Tasks\Process Lasso Management Console (GUI)
  384. 2020-01-20 23:18 - 2018-10-27 13:09 - 000003950 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{B93A43EE-63E9-45B1-B54F-3767FBC9B37F}
  385. 2020-01-20 23:18 - 2018-10-26 20:24 - 000003168 _____ C:\Windows\system32\Tasks\{9FD536FC-870C-4289-9145-2D0F6A67EFF3}
  386. 2020-01-20 23:18 - 2018-09-26 10:05 - 000003148 _____ C:\Windows\system32\Tasks\SidebarExecute
  387. 2020-01-20 23:18 - 2018-08-30 20:33 - 000003632 _____ C:\Windows\system32\Tasks\HPCustParticipation HP Deskjet 2640 series
  388. 2020-01-20 23:18 - 2018-08-30 18:45 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
  389. 2020-01-20 23:18 - 2018-08-30 18:43 - 000004474 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
  390. 2020-01-20 23:18 - 2018-08-30 18:40 - 000003334 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
  391. 2020-01-20 23:18 - 2018-08-30 18:40 - 000003206 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
  392. 2020-01-20 23:18 - 2018-08-30 18:39 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
  393. 2020-01-20 14:19 - 2018-08-30 18:36 - 000000000 ____D C:\Users\Vaskez25\AppData\LocalLow\Mozilla
  394. 2020-01-20 11:28 - 2019-10-03 18:33 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
  395. 2020-01-20 11:28 - 2019-10-03 18:33 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
  396. 2020-01-20 11:25 - 2018-12-18 23:51 - 000000000 ____D C:\Users\Vaskez25\AppData\Local\LogMeIn Hamachi
  397. 2020-01-20 11:23 - 2018-08-30 18:43 - 000000000 ____D C:\Windows\SysWOW64\Macromed
  398. 2020-01-20 11:22 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
  399. 2020-01-20 00:27 - 2019-04-02 17:35 - 000000000 ____D C:\Program Files (x86)\Steam
  400. 2020-01-20 00:27 - 2019-02-21 00:49 - 000000000 ____D C:\Users\Vaskez25\AppData\Local\Everything
  401. 2020-01-20 00:27 - 2018-12-16 20:25 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\discord
  402. 2020-01-19 13:56 - 2018-11-20 23:19 - 000000000 ____D C:\Program Files (x86)\Hard Disk Sentinel
  403. 2020-01-19 13:53 - 2009-07-14 06:13 - 000785366 _____ C:\Windows\system32\PerfStringBackup.INI
  404. 2020-01-19 13:53 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
  405. 2020-01-19 00:50 - 2018-08-30 18:47 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\uTorrent
  406. 2020-01-18 12:02 - 2018-09-01 21:57 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\SmartSteamEmu
  407. 2020-01-18 11:54 - 2018-08-31 18:02 - 000000132 _____ C:\Users\Vaskez25\AppData\Roaming\Adobe PNG Format CS6 Prefs
  408. 2020-01-18 08:31 - 2019-05-24 13:51 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
  409. 2020-01-15 00:07 - 2018-09-02 07:16 - 000000000 ____D C:\Users\Vaskez25\AppData\Local\ElevatedDiagnostics
  410. 2020-01-14 19:54 - 2019-11-14 15:07 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\.minecraft
  411. 2020-01-14 19:53 - 2019-11-14 15:08 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\.tlauncher
  412. 2020-01-10 14:53 - 2019-12-06 15:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
  413. 2020-01-10 14:53 - 2018-08-30 18:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  414. 2020-01-09 23:33 - 2018-09-10 22:16 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  415. 2020-01-09 23:33 - 2018-09-10 22:16 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  416. 2020-01-09 23:33 - 2018-09-10 22:16 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
  417. 2020-01-09 23:06 - 2018-08-30 20:17 - 000001115 _____ C:\Users\Vaskez25\Desktop\Left 4 Dead 2.lnk
  418. 2020-01-09 17:19 - 2018-08-30 18:39 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
  419. 2020-01-07 08:44 - 2019-12-08 12:26 - 000000000 ____D C:\Users\Vaskez25\Desktop\ext2explore-2.2.71
  420. 2020-01-07 08:43 - 2018-09-17 08:04 - 000000000 ____D C:\Users\Vaskez25\Desktop\New folder
  421. 2020-01-05 23:24 - 2018-08-30 20:47 - 000000000 ____D C:\Program Files\VideoLAN
  422. 2020-01-04 20:26 - 2019-11-14 20:11 - 000000000 ____D C:\Users\Vaskez25\Desktop\pcsx2o_20120122_testing
  423. 2020-01-04 12:00 - 2019-10-30 16:41 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\obs-studio
  424. 2020-01-02 18:28 - 2018-08-30 17:56 - 000000000 ____D C:\Users\Vaskez25
  425. 2019-12-29 15:18 - 2019-10-30 16:41 - 000000000 ____D C:\Program Files\obs-studio
  426. 2019-12-24 18:30 - 2018-08-30 20:44 - 000000000 ____D C:\Users\Vaskez25\AppData\Roaming\Audacity
  427. 2019-12-23 15:13 - 2019-10-12 17:21 - 000000000 ____D C:\Users\Vaskez25\AppData\LocalLow\Unity
  428.  
  429. ==================== Files in the root of some directories ========
  430.  
  431. 2019-10-18 17:42 - 2019-10-19 20:04 - 001113600 _____ () C:\Users\Vaskez25\HoldShift.exe
  432. 2018-08-31 18:02 - 2020-01-18 11:54 - 000000132 _____ () C:\Users\Vaskez25\AppData\Roaming\Adobe PNG Format CS6 Prefs
  433. 2020-01-20 23:18 - 2018-08-07 00:55 - 011924306 _____ (InstallShield Software Corporation) C:\Users\Vaskez25\AppData\Roaming\pinnacle-setup.exe
  434. 2019-12-29 22:34 - 2019-12-30 17:38 - 000034288 _____ () C:\Users\Vaskez25\AppData\Roaming\VoiceMeeterBananaDefault.xml
  435. 2018-12-26 13:51 - 2018-12-26 13:51 - 000000000 _____ () C:\Users\Vaskez25\AppData\Local\oobelibMkey.log
  436. 2018-09-22 18:57 - 2019-01-06 21:00 - 000007611 _____ () C:\Users\Vaskez25\AppData\Local\Resmon.ResmonCfg
  437.  
  438. ==================== SigCheck ============================
  439.  
  440. (There is no automatic fix for files that do not pass verification.)
  441.  
  442.  
  443. LastRegBack: 2020-01-18 09:25
  444. ==================== End of FRST.txt ========================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!