API tools faq
paste
Advertisement
Guest User

my virused up pc

a guest
Nov 25th, 2015
198
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 50.92 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-11-2015
  2. Ran by USER (administrator) on ISAAC (26-11-2015 02:51:07)
  3. Running from C:\Users\USER\Downloads
  4. Loaded Profiles: USER (Available Profiles: USER & Guest)
  5. Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
  6. Internet Explorer Version 11 (Default browser: Chrome)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
  15. (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
  16. () C:\Program Files (x86)\629C32CE-1448447894-E111-8BB9-505054503030\hnsf5B19.tmp
  17. () C:\Users\USER\AppData\Local\629C32CE-1448500480-E111-8BB9-505054503030\qnsh78E9.tmp
  18. (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
  19. (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
  20. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
  21. () C:\Program Files (x86)\629C32CE-1448447894-E111-8BB9-505054503030\jnsf4305.tmp
  22. () C:\Users\USER\AppData\Roaming\NetService\netservice.exe
  23. () C:\Windows\SysWOW64\PnkBstrA.exe
  24. (Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
  25. () C:\Program Files (x86)\Speedify\speedify.exe
  26. () C:\Users\USER\AppData\Local\629C32CE-1448494740-E111-8BB9-505054503030\snsqCE74.tmp
  27. (Intel Corporation) C:\Windows\System32\igfxtray.exe
  28. (Intel Corporation) C:\Windows\System32\hkcmd.exe
  29. () C:\Program Files (x86)\629C32CE-1448447894-E111-8BB9-505054503030\knsf287D.tmpfs
  30. (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
  31. (Intel Corporation) C:\Windows\System32\igfxpers.exe
  32. (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
  33. (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
  34. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  35. (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
  36. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  37. (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
  38. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  39. (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
  40. (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  41. (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  42. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  43. (Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
  44. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  45.  
  46.  
  47. ==================== Registry (Whitelisted) ===========================
  48.  
  49. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  50.  
  51. HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
  52. HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
  53. HKLM-x32\...\Run: [mbot_nz_24] => [X]
  54. Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
  55. HKU\S-1-5-21-1738731595-2660170980-3618024497-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
  56. HKU\S-1-5-21-1738731595-2660170980-3618024497-1000\...\Run: [GoogleChromeAutoLaunch_5F84849B2B55F3FB722B227E29B35DDB] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
  57. HKU\S-1-5-21-1738731595-2660170980-3618024497-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-17] (Piriform Ltd)
  58. ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-02] ()
  59. ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-02] ()
  60. ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-02] ()
  61. ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-02] ()
  62. ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-02] ()
  63. ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-02] ()
  64.  
  65. ==================== Internet (Whitelisted) ====================
  66.  
  67. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  68.  
  69. Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 0.0.0.0
  70. Tcpip\..\Interfaces\{728ACF2D-D1A4-466E-8E0F-DAF43451FB55}: [NameServer] 8.8.8.8
  71. Tcpip\..\Interfaces\{7BBEC9A4-EB14-4B2C-9B58-9CD6A6036830}: [NameServer] 8.8.8.8,8.8.4.4
  72. Tcpip\..\Interfaces\{7BBEC9A4-EB14-4B2C-9B58-9CD6A6036830}: [DhcpNameServer] 192.168.1.254 0.0.0.0
  73.  
  74. Internet Explorer:
  75. ==================
  76. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-12] (Oracle Corporation)
  77. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-12] (Oracle Corporation)
  78.  
  79. FireFox:
  80. ========
  81. FF ProfilePath: C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2nwdawu4.default
  82. FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
  83. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
  84. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
  85. FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-12] (Oracle Corporation)
  86. FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-12] (Oracle Corporation)
  87. FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
  88. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-20] (Google Inc.)
  89. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-20] (Google Inc.)
  90. FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-14] (VideoLAN)
  91. FF Plugin HKU\S-1-5-21-1738731595-2660170980-3618024497-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\USER\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-29] (Unity Technologies ApS)
  92. FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\3dt2721q.default\extensions\deskCutv2@gmail.com => not found
  93. FF HKLM-x32\...\Firefox\Extensions: [yahooprotected@gmail.com] - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\3dt2721q.default\extensions\yahooprotected@gmail.com => not found
  94.  
  95. Chrome:
  96. =======
  97. CHR HomePage: Default -> hxxps://www.google.com/
  98. CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.istartpageing.com/?type=hp&ts=1448453660&z=d20b42e054130ca16a4d0cdg4z3z7b4z5w2c1q5q7g&from=cmi&uid=HitachiXHDT721010SLA360_STF607MH36512K36512KX"
  99. CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default
  100. CHR Extension: (Google Docs) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-30]
  101. CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-30]
  102. CHR Extension: (MEGA) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-11-23]
  103. CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-30]
  104. CHR Extension: (Warframe Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\cibjbebkmdjkfafmijnljdefnhldclfh [2015-11-20]
  105. CHR Extension: (Bypass Surveys) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjakedkphmphnlilokfkgkdclmhakhjg [2015-11-17]
  106. CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
  107. CHR Extension: (Google Docs Offline) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
  108. CHR Extension: (AdBlock) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
  109. CHR Extension: (League of Legends Events) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfnfkjennojjkajjmghdgkibohcnefdk [2015-11-26]
  110. CHR Extension: (Messenger (Unofficial)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngabfpibok [2015-11-17]
  111. CHR Extension: (League of Legends Project Zed) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdgcilhemjhldjgekiomonckoomnoog [2015-11-26]
  112. CHR Extension: (Chrome Web Store Payments) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-30]
  113. CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-30]
  114.  
  115. ==================== Services (Whitelisted) ========================
  116.  
  117. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  118.  
  119. R2 cuzihece; C:\Program Files (x86)\629C32CE-1448447894-E111-8BB9-505054503030\hnsf5B19.tmp [398848 2015-11-25] () [File not signed]
  120. R2 hidekoqe; C:\Users\USER\AppData\Local\629C32CE-1448500480-E111-8BB9-505054503030\qnsh78E9.tmp [142336 2015-10-14] () [File not signed]
  121. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
  122. R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
  123. R2 mucifyfy; C:\Program Files (x86)\629C32CE-1448447894-E111-8BB9-505054503030\jnsf4305.tmp [377856 2015-11-25] () [File not signed]
  124. R2 NetTcpHandler; C:\Users\USER\AppData\Roaming\NetService\netservice.exe [173088 2015-07-09] ()
  125. R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
  126. R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2015-10-23] ()
  127. S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-08-15] ()
  128. R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-08-31] (Razer Inc.)
  129. R2 Speedify; C:\Program Files (x86)\Speedify\Speedify.exe [2456120 2015-10-08] ()
  130. R2 vuvidivi; C:\Users\USER\AppData\Local\629C32CE-1448494740-E111-8BB9-505054503030\snsqCE74.tmp [321536 2015-11-25] () [File not signed]
  131. S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
  132. R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-09-30] (Intel(R) Corporation)
  133. S2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe -s [X]
  134. R2 xyqejiwe; C:\Program Files (x86)\629C32CE-1448447894-E111-8BB9-505054503030\knsf287D.tmpfs [X]
  135.  
  136. ===================== Drivers (Whitelisted) ==========================
  137.  
  138. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  139.  
  140. S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-11] (Broadcom Corporation)
  141. R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
  142. R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [177952 2015-06-12] (Intel Corporation)
  143. R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
  144. R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
  145. R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-13] (Razer, Inc.)
  146. R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
  147. R3 tap0901cn; C:\Windows\System32\DRIVERS\tap0901cn.sys [39544 2015-07-30] (The OpenVPN Project)
  148. S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
  149. S1 swsedrvr_vt_1_10_0_25; system32\drivers\swsedrvr_vt_1_10_0_25.sys [X]
  150.  
  151. ==================== NetSvcs (Whitelisted) ===================
  152.  
  153. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  154.  
  155.  
  156. ==================== One Month Created files and folders ========
  157.  
  158. (If an entry is included in the fixlist, the file/folder will be moved.)
  159.  
  160. 2015-11-26 02:50 - 2015-11-26 02:50 - 22908888 _____ (Malwarebytes ) C:\Users\USER\Downloads\mbam-setup-2.2.0.1024.exe
  161. 2015-11-26 02:39 - 2015-11-26 02:51 - 00013952 _____ C:\Users\USER\Downloads\FRST.txt
  162. 2015-11-26 02:39 - 2015-11-26 02:40 - 00036346 _____ C:\Users\USER\Downloads\Addition.txt
  163. 2015-11-26 02:38 - 2015-11-26 02:51 - 00000000 ____D C:\FRST
  164. 2015-11-26 02:38 - 2015-11-26 02:38 - 02348544 _____ (Farbar) C:\Users\USER\Downloads\FRST64.exe
  165. 2015-11-26 02:36 - 2015-11-26 02:36 - 00000000 ____D C:\Users\USER\AppData\Roaming\Mozilla
  166. 2015-11-26 02:35 - 2015-11-26 02:45 - 00000000 ____D C:\Users\USER\AppData\Roaming\RunDir
  167. 2015-11-26 02:35 - 2015-11-26 02:35 - 00000000 ____D C:\Users\USER\AppData\Roaming\IObit
  168. 2015-11-26 01:46 - 2015-11-26 01:46 - 00000000 ____D C:\Users\USER\AppData\Roaming\LockHunter
  169. 2015-11-26 01:14 - 2015-11-26 01:14 - 00000000 ____D C:\Users\USER\AppData\Local\629C32CE-1448500480-E111-8BB9-505054503030
  170. 2015-11-26 00:40 - 2015-11-26 02:35 - 00000224 _____ C:\Windows\setupact.log
  171. 2015-11-26 00:40 - 2015-11-26 01:43 - 00002096 _____ C:\Windows\PFRO.log
  172. 2015-11-26 00:40 - 2015-11-26 00:40 - 00000000 ____D C:\ProgramData\LockHunter
  173. 2015-11-26 00:40 - 2015-11-26 00:40 - 00000000 ____D C:\ProgramData\LHService
  174. 2015-11-26 00:40 - 2015-11-26 00:40 - 00000000 _____ C:\Windows\setuperr.log
  175. 2015-11-26 00:39 - 2015-11-26 00:39 - 03029032 _____ (Crystal Rich Ltd ) C:\Users\USER\Downloads\lockhuntersetup_3-1-1.exe
  176. 2015-11-26 00:39 - 2015-11-26 00:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LockHunter
  177. 2015-11-26 00:39 - 2015-11-26 00:39 - 00000000 ____D C:\Program Files\LockHunter
  178. 2015-11-26 00:11 - 2015-11-26 00:20 - 00000000 ____D C:\Users\USER\AppData\Local\mbot_nz_24
  179. 2015-11-26 00:10 - 2015-11-26 00:54 - 00000000 ____D C:\ProgramData\7WMiniPro7
  180. 2015-11-26 00:10 - 2015-11-26 00:18 - 00000008 _____ C:\END
  181. 2015-11-26 00:10 - 2015-11-26 00:10 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
  182. 2015-11-26 00:09 - 2015-11-26 00:16 - 00000000 ____D C:\Users\USER\AppData\Local\Diner Virtual
  183. 2015-11-26 00:08 - 2015-11-26 00:08 - 00001136 _____ C:\Users\USER\Desktop\Continue ExtraFeatures Installation.lnk
  184. 2015-11-26 00:07 - 2015-11-26 00:07 - 01872359 _____ C:\Users\USER\Downloads\hldj64_1.7.0.zip
  185. 2015-11-25 23:51 - 2012-03-10 00:32 - 00000068 _____ C:\Users\USER\Desktop\homepage.url
  186. 2015-11-25 23:50 - 2015-11-25 23:50 - 00549492 _____ C:\Users\USER\Downloads\vac414.zip
  187. 2015-11-25 23:49 - 2015-11-25 23:49 - 03896168 _____ (foobar2000.org) C:\Users\USER\Downloads\foobar2000_v1.3.9.exe
  188. 2015-11-25 23:42 - 2015-11-25 23:42 - 02775766 _____ C:\Users\USER\Downloads\dj-streamer-13619180[W4L]_cracked.rar
  189. 2015-11-25 23:39 - 2015-11-26 02:45 - 00000000 ____D C:\Users\USER\AppData\Local\629C32CE-1448494740-E111-8BB9-505054503030
  190. 2015-11-25 23:38 - 2015-11-26 01:48 - 00000000 ____D C:\Users\USER\AppData\Roaming\NetService
  191. 2015-11-25 23:38 - 2015-11-25 23:38 - 00000000 ____D C:\Program Files (x86)\629C32CE-1448447894-E111-8BB9-505054503030
  192. 2015-11-25 23:38 - 2009-06-11 10:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hp.bak
  193. 2015-11-25 23:32 - 2015-11-25 23:33 - 02032112 _____ C:\Users\USER\Downloads\DJStreamer_Install-1 (1).exe
  194. 2015-11-25 23:30 - 2015-11-25 23:30 - 02032112 _____ C:\Users\USER\Downloads\DJStreamer_Install-1.exe
  195. 2015-11-25 14:28 - 2015-11-25 14:28 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
  196. 2015-11-25 14:28 - 2015-11-25 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
  197. 2015-11-25 14:28 - 2015-11-25 14:28 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
  198. 2015-11-25 14:27 - 2015-11-25 14:28 - 31017664 _____ (TeamSpeak Systems GmbH) C:\Users\USER\Downloads\TeamSpeak3-Client-win64-3.0.18.2.exe
  199. 2015-11-24 15:31 - 2015-11-25 20:01 - 00000000 ____D C:\Users\USER\Documents\Bandicam
  200. 2015-11-24 15:28 - 2015-11-24 15:28 - 00000992 _____ C:\Users\Public\Desktop\Bandicam.lnk
  201. 2015-11-24 15:28 - 2015-11-24 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
  202. 2015-11-24 15:28 - 2015-11-24 15:28 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
  203. 2015-11-24 15:28 - 2015-11-24 15:28 - 00000000 ____D C:\Program Files (x86)\Bandicam
  204. 2015-11-24 15:27 - 2015-11-24 15:28 - 15708072 _____ (Bandisoft) C:\Users\USER\Downloads\bdcamsetup.exe
  205. 2015-11-24 11:23 - 2015-11-26 01:43 - 00003050 _____ C:\Windows\System32\Tasks\ParkControl
  206. 2015-11-24 10:24 - 2015-11-24 10:24 - 00000000 ____D C:\Users\USER\AppData\Local\gegl-0.2
  207. 2015-11-24 02:01 - 2015-11-24 02:01 - 00118272 _____ C:\Users\USER\Downloads\BO2V33Stats.exe
  208. 2015-11-24 01:47 - 2015-11-24 01:47 - 00043147 _____ C:\Users\USER\Downloads\EBOLA 1.2.rar
  209. 2015-11-24 01:38 - 2015-11-24 01:38 - 00112866 _____ C:\Users\USER\Downloads\waterfall_v1.cpp
  210. 2015-11-24 01:36 - 2015-11-24 01:36 - 00092997 _____ C:\Users\USER\Downloads\Bossam V5 XBOX.rar
  211. 2015-11-24 01:35 - 2015-11-24 01:35 - 00056786 _____ C:\Users\USER\Downloads\PS3 & XBOX.rar
  212. 2015-11-24 01:30 - 2015-11-24 01:30 - 02305373 _____ C:\Users\USER\Downloads\BO2 RTM Tool 1.19 By Geo.rar
  213. 2015-11-24 00:58 - 2015-11-24 00:58 - 00001390 _____ C:\Users\Public\Desktop\Black Ops 2 - GSC Studio.lnk
  214. 2015-11-24 00:58 - 2015-11-24 00:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Ops 2 - GSC Studio
  215. 2015-11-24 00:58 - 2015-11-24 00:58 - 00000000 ____D C:\Program Files (x86)\iMCS Productions
  216. 2015-11-23 19:34 - 2015-11-23 19:34 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
  217. 2015-11-23 11:37 - 2015-11-23 11:37 - 00000000 ____D C:\Users\USER\AppData\Local\Intel Telemetry
  218. 2015-11-23 11:37 - 2015-11-23 11:37 - 00000000 ____D C:\ProgramData\Intel Telemetry
  219. 2015-11-21 18:04 - 2015-11-21 18:04 - 00002669 _____ C:\Users\Public\Desktop\Intel(R) Extreme Tuning Utility.lnk
  220. 2015-11-21 18:04 - 2015-11-21 18:04 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
  221. 2015-11-21 18:04 - 2015-11-21 18:04 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
  222. 2015-11-21 18:04 - 2015-11-21 18:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Extreme Tuning Utility
  223. 2015-11-21 18:03 - 2015-11-21 18:03 - 00000000 ____D C:\Windows\System32\Tasks\Intel
  224. 2015-11-21 18:03 - 2015-11-21 18:03 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
  225. 2015-11-21 18:03 - 2015-11-21 18:03 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
  226. 2015-11-21 18:03 - 2015-11-21 18:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
  227. 2015-11-21 18:03 - 2015-11-21 18:03 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
  228. 2015-11-21 13:22 - 2015-11-21 13:22 - 00092117 _____ C:\Users\USER\Documents\Animated Lol.themepack
  229. 2015-11-21 13:14 - 2015-11-21 13:14 - 00275360 _____ (Microsoft Corporation) C:\Windows\system32\DreamScene.dll
  230. 2015-11-21 13:14 - 2015-11-21 13:14 - 00008107 _____ C:\Windows\w7dsd.reg
  231. 2015-11-21 13:14 - 2015-11-21 13:14 - 00008089 _____ C:\Windows\w7dse.reg
  232. 2015-11-21 12:34 - 2015-11-21 12:35 - 01626109 _____ C:\Users\USER\Downloads\Yasuo.wmv
  233. 2015-11-18 18:17 - 2015-11-18 18:18 - 00000000 ____D C:\Program Files (x86)\SoundWire Server
  234. 2015-11-18 18:17 - 2015-11-18 18:17 - 00001102 _____ C:\Users\Public\Desktop\SoundWire Server.lnk
  235. 2015-11-18 18:17 - 2015-11-18 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundWire Server
  236. 2015-11-18 08:40 - 2015-11-21 13:20 - 00000000 ____D C:\Users\USER\AppData\Local\Deployment
  237. 2015-11-18 08:22 - 2015-11-18 08:22 - 00001569 _____ C:\Users\USER\Desktop\Play Outlast.lnk
  238. 2015-11-18 08:17 - 2015-11-18 08:17 - 00000000 ____D C:\Users\USER\Desktop\Outlast + Whistleblower
  239. 2015-11-18 00:00 - 2015-11-18 00:03 - 00000000 ___RD C:\Users\USER\Documents\MEGA
  240. 2015-11-18 00:00 - 2015-10-02 02:45 - 997688430 _____ C:\Users\USER\Desktop\Outlast + Whistleblower.zip
  241. 2015-11-17 23:59 - 2015-11-17 23:59 - 00001015 _____ C:\Users\USER\Desktop\MEGAsync.lnk
  242. 2015-11-17 23:59 - 2015-11-17 23:59 - 00000000 ____D C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
  243. 2015-11-17 23:59 - 2015-11-17 23:59 - 00000000 ____D C:\Users\USER\AppData\Local\MEGAsync
  244. 2015-11-17 23:59 - 2015-11-17 23:59 - 00000000 ____D C:\Users\USER\AppData\Local\Mega Limited
  245. 2015-11-17 23:42 - 2015-11-17 23:42 - 00000222 _____ C:\Users\USER\Desktop\Uebergame.url
  246. 2015-11-17 13:05 - 2015-11-25 13:52 - 00000000 ____D C:\Users\USER\AppData\Local\Warframe
  247. 2015-11-17 13:05 - 2015-11-17 13:05 - 00000222 _____ C:\Users\USER\Desktop\Dirty Bomb.url
  248. 2015-11-17 13:04 - 2015-11-17 13:04 - 00000222 _____ C:\Users\USER\Desktop\Warframe.url
  249. 2015-11-12 18:22 - 2015-11-12 18:22 - 00000000 ____D C:\Users\USER\AppData\Local\iMCS_Productions
  250. 2015-11-12 16:03 - 2015-11-12 16:03 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
  251. 2015-11-12 16:03 - 2015-11-12 16:03 - 00000000 ____D C:\Users\USER\AppData\LocalLow\Sun
  252. 2015-11-12 16:03 - 2015-11-12 16:03 - 00000000 ____D C:\Users\USER\.oracle_jre_usage
  253. 2015-11-12 16:03 - 2015-11-12 16:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  254. 2015-11-12 16:02 - 2015-11-12 16:03 - 00000000 ____D C:\ProgramData\Oracle
  255. 2015-11-12 00:10 - 2010-11-21 16:23 - 00345088 _____ (Microsoft Corporation) C:\Users\USER\Desktop\cmd.exe
  256. 2015-11-11 16:27 - 2015-10-20 14:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
  257. 2015-11-11 16:27 - 2015-10-20 14:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
  258. 2015-11-11 16:27 - 2015-10-20 14:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
  259. 2015-11-11 16:27 - 2015-10-20 14:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
  260. 2015-11-11 16:27 - 2015-10-20 14:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
  261. 2015-11-11 16:27 - 2015-10-20 14:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
  262. 2015-11-11 16:27 - 2015-10-20 14:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
  263. 2015-11-11 16:27 - 2015-10-20 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
  264. 2015-11-11 16:27 - 2015-10-20 14:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
  265. 2015-11-11 16:27 - 2015-10-20 14:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
  266. 2015-11-11 16:27 - 2015-10-20 14:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
  267. 2015-11-11 16:27 - 2015-10-20 14:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
  268. 2015-11-11 16:27 - 2015-10-20 14:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
  269. 2015-11-11 16:27 - 2015-10-20 14:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
  270. 2015-11-11 16:27 - 2015-10-20 14:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
  271. 2015-11-11 16:27 - 2015-10-20 14:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
  272. 2015-11-11 16:27 - 2015-10-20 14:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
  273. 2015-11-11 16:27 - 2015-10-20 14:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
  274. 2015-11-11 16:27 - 2015-10-20 14:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
  275. 2015-11-11 16:27 - 2015-10-20 14:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
  276. 2015-11-11 16:27 - 2015-10-20 14:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
  277. 2015-11-11 16:27 - 2015-10-20 14:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
  278. 2015-11-11 16:27 - 2015-10-20 14:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
  279. 2015-11-11 16:27 - 2015-10-20 14:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
  280. 2015-11-11 16:27 - 2015-10-20 14:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
  281. 2015-11-11 16:27 - 2015-10-20 14:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
  282. 2015-11-11 16:27 - 2015-10-20 14:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
  283. 2015-11-11 16:27 - 2015-10-20 14:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
  284. 2015-11-11 16:27 - 2015-10-20 14:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
  285. 2015-11-11 16:27 - 2015-10-20 14:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
  286. 2015-11-11 16:27 - 2015-10-20 14:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
  287. 2015-11-11 16:27 - 2015-10-20 14:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
  288. 2015-11-11 16:27 - 2015-10-20 14:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
  289. 2015-11-11 16:27 - 2015-10-20 13:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
  290. 2015-11-11 16:27 - 2015-10-20 13:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
  291. 2015-11-11 16:27 - 2015-10-20 13:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
  292. 2015-11-11 16:27 - 2015-10-20 13:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
  293. 2015-11-11 16:27 - 2015-10-20 13:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
  294. 2015-11-11 16:27 - 2015-10-20 13:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
  295. 2015-11-11 16:27 - 2015-10-20 13:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
  296. 2015-11-11 16:27 - 2015-10-20 13:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
  297. 2015-11-11 16:27 - 2015-10-20 13:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
  298. 2015-11-11 16:27 - 2015-10-20 13:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
  299. 2015-11-11 16:27 - 2015-10-20 13:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
  300. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
  301. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
  302. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
  303. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
  304. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
  305. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
  306. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
  307. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
  308. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
  309. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
  310. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
  311. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
  312. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
  313. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
  314. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
  315. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
  316. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
  317. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
  318. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
  319. 2015-11-11 16:27 - 2015-10-20 13:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
  320. 2015-11-11 16:27 - 2015-10-20 13:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
  321. 2015-11-11 16:27 - 2015-10-20 13:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
  322. 2015-11-11 16:27 - 2015-10-20 13:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
  323. 2015-11-11 16:27 - 2015-10-20 13:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
  324. 2015-11-11 16:27 - 2015-10-20 13:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
  325. 2015-11-11 16:27 - 2015-10-20 13:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
  326. 2015-11-11 16:27 - 2015-10-20 13:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
  327. 2015-11-11 16:27 - 2015-10-20 13:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
  328. 2015-11-11 16:27 - 2015-10-20 13:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
  329. 2015-11-11 16:27 - 2015-10-20 13:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
  330. 2015-11-11 16:27 - 2015-10-20 13:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
  331. 2015-11-11 16:27 - 2015-10-20 13:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
  332. 2015-11-11 16:27 - 2015-10-20 13:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
  333. 2015-11-11 16:27 - 2015-10-20 13:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
  334. 2015-11-11 16:27 - 2015-10-20 13:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
  335. 2015-11-11 16:27 - 2015-10-20 13:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
  336. 2015-11-11 16:27 - 2015-10-20 13:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
  337. 2015-11-11 16:27 - 2015-10-20 13:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
  338. 2015-11-11 16:27 - 2015-10-20 13:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
  339. 2015-11-11 16:27 - 2015-10-20 13:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
  340. 2015-11-11 16:27 - 2015-10-20 13:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
  341. 2015-11-11 16:27 - 2015-10-20 13:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
  342. 2015-11-11 16:27 - 2015-10-20 13:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
  343. 2015-11-11 16:27 - 2015-10-20 13:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
  344. 2015-11-11 16:27 - 2015-10-20 13:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
  345. 2015-11-11 16:27 - 2015-10-20 13:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
  346. 2015-11-11 16:27 - 2015-10-20 13:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
  347. 2015-11-11 16:27 - 2015-10-20 13:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
  348. 2015-11-11 16:27 - 2015-10-20 13:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
  349. 2015-11-11 16:27 - 2015-10-20 13:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
  350. 2015-11-11 16:27 - 2015-10-20 13:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
  351. 2015-11-11 16:27 - 2015-10-20 13:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
  352. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
  353. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
  354. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
  355. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
  356. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
  357. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
  358. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
  359. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
  360. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
  361. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
  362. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
  363. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
  364. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
  365. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
  366. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
  367. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
  368. 2015-11-11 16:27 - 2015-10-20 13:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
  369. 2015-11-11 16:27 - 2015-10-20 12:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
  370. 2015-11-11 16:27 - 2015-10-20 12:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
  371. 2015-11-11 16:27 - 2015-10-20 12:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
  372. 2015-11-11 16:27 - 2015-10-20 12:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
  373. 2015-11-11 16:27 - 2015-10-20 12:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
  374. 2015-11-11 16:27 - 2015-10-20 12:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
  375. 2015-11-11 16:27 - 2015-10-20 12:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
  376. 2015-11-11 16:27 - 2015-10-20 12:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
  377. 2015-11-11 16:27 - 2015-10-20 12:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
  378. 2015-11-11 16:27 - 2015-09-24 02:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
  379. 2015-11-11 16:27 - 2015-09-24 02:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
  380. 2015-11-11 16:27 - 2015-09-24 02:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
  381. 2015-11-11 16:13 - 2015-10-14 05:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
  382. 2015-11-11 16:13 - 2015-10-14 05:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
  383. 2015-11-11 16:05 - 2015-10-30 06:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
  384. 2015-11-11 16:05 - 2015-10-30 06:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
  385. 2015-11-11 16:05 - 2015-10-30 06:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
  386. 2015-11-11 16:05 - 2015-10-30 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
  387. 2015-11-11 16:05 - 2015-10-30 06:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
  388. 2015-11-11 16:05 - 2015-10-30 06:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
  389. 2015-11-11 16:05 - 2015-10-30 06:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
  390. 2015-11-11 15:49 - 2015-10-21 07:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
  391. 2015-11-11 15:49 - 2015-10-21 07:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
  392. 2015-11-11 15:49 - 2015-10-21 07:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
  393. 2015-11-11 15:49 - 2015-10-21 07:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
  394. 2015-11-11 15:49 - 2015-10-21 07:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
  395. 2015-11-11 15:49 - 2015-10-21 07:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
  396. 2015-11-11 15:49 - 2015-10-21 07:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
  397. 2015-11-11 15:49 - 2015-10-21 07:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
  398. 2015-11-11 15:49 - 2015-10-21 07:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
  399. 2015-11-11 15:49 - 2015-10-21 07:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
  400. 2015-11-11 15:49 - 2015-10-21 07:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
  401. 2015-11-11 15:49 - 2015-10-21 06:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
  402. 2015-11-11 15:49 - 2015-10-21 06:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
  403. 2015-11-11 15:49 - 2015-10-21 06:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
  404. 2015-11-11 15:49 - 2015-10-21 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
  405. 2015-11-11 15:49 - 2015-10-21 06:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
  406. 2015-11-11 15:25 - 2015-10-18 05:56 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
  407. 2015-11-11 15:25 - 2015-10-13 17:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
  408. 2015-11-11 15:25 - 2015-10-02 07:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
  409. 2015-11-11 15:25 - 2015-10-02 07:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
  410. 2015-11-11 15:25 - 2015-10-02 06:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
  411. 2015-11-11 08:16 - 2015-11-11 08:16 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
  412. 2015-11-11 08:16 - 2015-11-11 08:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
  413. 2015-11-11 08:16 - 2015-11-11 08:16 - 00000000 ____D C:\Program Files (x86)\VideoLAN
  414. 2015-11-11 01:21 - 2015-11-26 00:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
  415. 2015-11-10 22:58 - 2015-11-10 22:58 - 00000939 _____ C:\Users\USER\Desktop\Open Broadcaster Software.lnk
  416. 2015-11-10 22:58 - 2015-11-10 22:58 - 00000000 ____D C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
  417. 2015-11-10 22:57 - 2015-11-16 15:25 - 00000000 ____D C:\Program Files\OBS
  418. 2015-11-10 22:57 - 2015-11-10 22:58 - 00000000 ____D C:\Program Files (x86)\OBS
  419. 2015-11-10 15:12 - 2015-11-10 17:21 - 00000000 ____D C:\Fraps
  420. 2015-11-10 15:12 - 2015-11-10 15:12 - 00000562 _____ C:\Users\Public\Desktop\Fraps.lnk
  421. 2015-11-10 15:12 - 2015-11-10 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
  422. 2015-11-05 18:59 - 2015-11-05 18:59 - 00003132 _____ C:\Windows\System32\Tasks\{7F781FE4-9F20-41A6-86C3-BAF0E770BDDA}
  423. 2015-11-05 18:21 - 2015-11-05 18:21 - 00000000 ____D C:\Users\USER\AppData\LocalLow\Oracle
  424. 2015-11-04 17:32 - 2015-11-04 17:32 - 00000222 _____ C:\Users\USER\Desktop\Unturned.url
  425. 2015-11-03 15:15 - 2015-11-03 15:15 - 00000905 _____ C:\Users\USER\Desktop\update-csgo.lnk
  426. 2015-11-02 17:22 - 2015-11-02 17:22 - 00000000 ____D C:\Windows\System32\Tasks\Games
  427. 2015-11-02 17:19 - 2015-11-02 17:19 - 00000000 ____H C:\Users\USER\Documents\Default.rdp
  428. 2015-11-01 16:03 - 2015-11-22 15:48 - 00007595 _____ C:\Users\USER\AppData\Local\Resmon.ResmonCfg
  429. 2015-10-30 16:39 - 2015-10-30 16:39 - 00000000 ____D C:\Program Files\avast! sandbox
  430. 2015-10-30 15:44 - 2015-10-30 15:44 - 00000000 ____D C:\Users\USER\AppData\Local\GWX
  431. 2015-10-29 21:28 - 2015-10-29 21:28 - 00058416 _____ C:\Users\USER\AppData\Local\GDIPFONTCACHEV1.DAT
  432. 2015-10-29 21:27 - 2015-10-29 21:33 - 00000000 ____D C:\Users\Guest\AppData\Local\Speedify
  433. 2015-10-29 21:27 - 2015-10-29 21:27 - 00058416 _____ C:\Users\Guest\AppData\Local\GDIPFONTCACHEV1.DAT
  434. 2015-10-29 21:27 - 2015-10-29 21:27 - 00001413 _____ C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
  435. 2015-10-29 21:27 - 2015-10-29 21:27 - 00000020 ___SH C:\Users\Guest\ntuser.ini
  436. 2015-10-29 21:27 - 2015-10-29 21:27 - 00000000 ____D C:\Users\Guest\AppData\Roaming\Adobe
  437. 2015-10-29 21:27 - 2015-10-29 21:27 - 00000000 ____D C:\Users\Guest\AppData\Local\Google
  438. 2015-10-29 21:27 - 2015-10-29 21:27 - 00000000 ____D C:\Users\Guest
  439. 2015-10-29 21:27 - 2009-07-14 17:54 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  440. 2015-10-29 21:27 - 2009-07-14 17:49 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
  441. 2015-10-29 19:24 - 2015-11-18 08:40 - 00000000 ____D C:\Users\USER\AppData\Local\Apps\2.0
  442. 2015-10-29 19:22 - 2015-10-29 19:22 - 00000000 ____D C:\Users\USER\AppData\Local\Activision
  443. 2015-10-29 18:36 - 2015-10-29 18:36 - 00000000 ____D C:\Users\USER\AppData\Local\CEF
  444. 2015-10-29 18:34 - 2015-11-26 02:35 - 00000000 ____D C:\ProgramData\Speedify
  445. 2015-10-29 17:50 - 2015-11-12 16:02 - 00000000 ____D C:\Program Files (x86)\Java
  446. 2015-10-29 17:36 - 2015-04-25 02:45 - 01674929 _____ (TeamExtreme) C:\Users\USER\Desktop\Minecraft.exe
  447. 2015-10-28 16:47 - 2015-11-16 15:35 - 00000000 ____D C:\Users\USER\AppData\Local\Speedify
  448. 2015-10-28 16:47 - 2015-10-28 16:47 - 00001202 _____ C:\Users\Public\Desktop\Speedify.lnk
  449. 2015-10-28 16:47 - 2015-10-28 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speedify
  450. 2015-10-28 16:47 - 2015-10-28 16:47 - 00000000 ____D C:\Program Files (x86)\Speedify
  451. 2015-10-28 16:47 - 2015-07-30 04:21 - 00039544 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901cn.sys
  452. 2015-10-27 20:01 - 2015-10-27 20:01 - 00000000 ____D C:\Users\USER\AppData\LocalLow\Unity
  453. 2015-10-27 20:01 - 2015-10-27 20:01 - 00000000 ____D C:\Users\USER\AppData\Local\Unity
  454.  
  455. ==================== One Month Modified files and folders ========
  456.  
  457. (If an entry is included in the fixlist, the file/folder will be moved.)
  458.  
  459. 2015-11-26 02:43 - 2009-07-14 17:45 - 00024704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  460. 2015-11-26 02:43 - 2009-07-14 17:45 - 00024704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  461. 2015-11-26 02:42 - 2015-10-03 22:54 - 01596571 _____ C:\Windows\WindowsUpdate.log
  462. 2015-11-26 02:41 - 2009-07-14 18:13 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI
  463. 2015-11-26 02:35 - 2015-10-20 15:46 - 00000000 ____D C:\Program Files (x86)\Steam
  464. 2015-11-26 02:35 - 2015-10-20 15:27 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  465. 2015-11-26 02:35 - 2009-07-14 18:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
  466. 2015-11-26 01:32 - 2015-10-20 15:27 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  467. 2015-11-26 00:25 - 2015-10-23 21:17 - 00001231 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
  468. 2015-11-26 00:25 - 2015-10-23 21:17 - 00001231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
  469. 2015-11-26 00:25 - 2015-10-22 16:14 - 00001231 _____ C:\Users\USER\Desktop\Start Tor Browser.lnk
  470. 2015-11-26 00:25 - 2015-10-22 16:14 - 00001231 _____ C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
  471. 2015-11-26 00:25 - 2015-10-20 15:28 - 00001428 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  472. 2015-11-26 00:25 - 2015-10-03 07:57 - 00001252 _____ C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
  473. 2015-11-25 23:46 - 2009-07-14 18:08 - 00021044 _____ C:\Windows\Tasks\SCHEDLGU.TXT
  474. 2015-11-25 23:40 - 2015-10-22 19:40 - 00000000 ____D C:\ProgramData\Package Cache
  475. 2015-11-25 11:59 - 2015-10-22 17:15 - 00000000 ____D C:\Users\USER\AppData\LocalLow\uTorrent
  476. 2015-11-25 02:26 - 2015-10-21 16:56 - 00008819 _____ C:\Windows\system32\lvcoinst.log
  477. 2015-11-24 10:24 - 2015-10-21 19:55 - 00000000 ____D C:\Users\USER\.gimp-2.8
  478. 2015-11-23 18:42 - 2015-10-21 16:51 - 00000000 ____D C:\ProgramData\Skype
  479. 2015-11-21 18:04 - 2015-10-03 08:04 - 00000000 ____D C:\ProgramData\Intel
  480. 2015-11-21 18:03 - 2015-10-03 08:02 - 00000000 ____D C:\Program Files (x86)\Intel
  481. 2015-11-19 13:55 - 2015-10-24 14:46 - 00000043 _____ C:\Users\USER\jagex_cl_runescape_LIVE.dat
  482. 2015-11-18 08:23 - 2015-10-24 09:54 - 00000000 ____D C:\Users\USER\Documents\My Games
  483. 2015-11-18 08:22 - 2015-10-17 20:07 - 00000000 ____D C:\Games
  484. 2015-11-17 09:57 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\rescache
  485. 2015-11-16 19:51 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\NDF
  486. 2015-11-16 11:42 - 2009-07-14 17:45 - 00268392 _____ C:\Windows\system32\FNTCACHE.DAT
  487. 2015-11-13 08:17 - 2015-10-17 23:00 - 00000000 ____D C:\Windows\system32\MRT
  488. 2015-11-13 08:15 - 2015-10-17 23:00 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
  489. 2015-11-13 08:12 - 2010-11-21 20:17 - 00000000 ____D C:\Program Files\Windows Journal
  490. 2015-11-12 17:46 - 2015-10-23 21:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  491. 2015-11-10 23:25 - 2010-11-21 20:16 - 00000000 ___RD C:\Users\Public\Recorded TV
  492. 2015-11-10 15:16 - 2009-07-14 16:20 - 00000000 __RHD C:\Users\Public\Libraries
  493. 2015-11-03 16:20 - 2015-10-24 14:46 - 00000024 _____ C:\Users\USER\random.dat
  494. 2015-10-29 18:34 - 2015-10-20 15:28 - 00000000 ____D C:\Users\USER\AppData\Local\Google
  495. 2015-10-27 20:02 - 2015-10-23 21:17 - 00000000 ____D C:\Users\USER\AppData\Local\Mozilla
  496. 2015-10-27 18:05 - 2015-10-23 21:39 - 00111928 _____ C:\Windows\SysWOW64\PnkBstrB.exe
  497. 2015-10-27 16:33 - 2015-10-25 16:46 - 00000000 ____D C:\Program Files (x86)\Glyph
  498. 2015-10-27 14:53 - 2015-10-20 17:41 - 00000000 ____D C:\ProgramData\LogMeIn
  499.  
  500. ==================== Files in the root of some directories =======
  501.  
  502. 2015-11-01 16:03 - 2015-11-22 15:48 - 0007595 _____ () C:\Users\USER\AppData\Local\Resmon.ResmonCfg
  503. 2015-11-26 00:10 - 2015-11-26 00:10 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
  504.  
  505. Files to move or delete:
  506. ====================
  507. C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
  508.  
  509.  
  510. Some files in TEMP:
  511. ====================
  512. C:\Users\USER\AppData\Local\Temp\amt_oursurfing.exe
  513. C:\Users\USER\AppData\Local\Temp\avg534A.exe
  514. C:\Users\USER\AppData\Local\Temp\avgABE5.exe
  515. C:\Users\USER\AppData\Local\Temp\bitool.dll
  516. C:\Users\USER\AppData\Local\Temp\DJ+Streamer+1.3.6.19180__10924_i1756956672_il787848.exe
  517. C:\Users\USER\AppData\Local\Temp\Uninstall.exe
  518. C:\Users\USER\AppData\Local\Temp\UninstallModule.exe
  519.  
  520.  
  521. ==================== Bamital & volsnap =================
  522.  
  523. (There is no automatic fix for files that do not pass verification.)
  524.  
  525. C:\Windows\system32\winlogon.exe => File is digitally signed
  526. C:\Windows\system32\wininit.exe => File is digitally signed
  527. C:\Windows\SysWOW64\wininit.exe => File is digitally signed
  528. C:\Windows\explorer.exe => File is digitally signed
  529. C:\Windows\SysWOW64\explorer.exe => File is digitally signed
  530. C:\Windows\system32\svchost.exe => File is digitally signed
  531. C:\Windows\SysWOW64\svchost.exe => File is digitally signed
  532. C:\Windows\system32\services.exe => File is digitally signed
  533. C:\Windows\system32\User32.dll => File is digitally signed
  534. C:\Windows\SysWOW64\User32.dll => File is digitally signed
  535. C:\Windows\system32\userinit.exe => File is digitally signed
  536. C:\Windows\SysWOW64\userinit.exe => File is digitally signed
  537. C:\Windows\system32\rpcss.dll => File is digitally signed
  538. C:\Windows\system32\dnsapi.dll => File is digitally signed
  539. C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
  540. C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
  541.  
  542.  
  543. LastRegBack: 2015-11-20 08:52
  544.  
  545. ==================== End of FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!