API tools faq
paste
Guest User

Untitled

a guest
Jul 20th, 2016
86
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 37.24 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-07-2016
  2. Ran by X-Gaming (administrator) on X-GAMING-PC (20-07-2016 20:51:31)
  3. Running from C:\Users\X-Gaming\Desktop
  4. Loaded Profiles: X-Gaming (Available Profiles: X-Gaming & Administrator)
  5. Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Anglais (États-Unis)
  6. Internet Explorer Version 11 (Default browser: Chrome)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  15. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  16. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  17. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  18. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
  19. (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
  20. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  21. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
  22. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  23. (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
  24. (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
  25. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  26. (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
  27. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
  28. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
  29. (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
  30. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
  31. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
  32. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
  33. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
  34. (Microsoft Corporation) C:\Windows\System32\msiexec.exe
  35. (Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
  36. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  37. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  38. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  39. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  40. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  41. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  42. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  43. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  44. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  45. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  46. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  47. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  48. (Microsoft Corporation) C:\Windows\System32\rundll32.exe
  49.  
  50.  
  51. ==================== Registry (Whitelisted) ===========================
  52.  
  53. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  54.  
  55. HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
  56. HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
  57. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7575256 2014-05-12] (Realtek Semiconductor)
  58. HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)
  59. HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [630912 2012-05-04] (Advanced Micro Devices, Inc.)
  60. HKLM-x32\...\Run: [win_en_77] => [X]
  61. HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
  62. ShellExecuteHooks: - {6710C780-E20E-4C49-A87D-321850ED3D7C} - C:\Users\X-Gaming\AppData\Roaming\Microsoft\Windows\Cookies\sasersh.dll [375296 2016-07-20] ()
  63. GroupPolicy: Restriction - Chrome <======= ATTENTION
  64. GroupPolicyScripts: Restriction <======= ATTENTION
  65. GroupPolicyScripts\User: Restriction <======= ATTENTION
  66. CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
  67.  
  68. ==================== Internet (Whitelisted) ====================
  69.  
  70. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  71.  
  72. Winsock: Catalog5 09 C:\Windows\SysWOW64\PrxerNsp.dll [84040 2015-03-28] ()
  73. Winsock: Catalog5-x64 09 C:\Windows\system32\PrxerNsp.dll [96840 2015-03-28] ()
  74. Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
  75. Tcpip\..\Interfaces\{AE70ECFC-85CE-4EA7-A8B0-ED856A9F465A}: [DhcpNameServer] 192.168.1.1 192.168.1.1
  76.  
  77. Internet Explorer:
  78. ==================
  79. HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
  80. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
  81. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
  82. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
  83. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
  84. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
  85. HKU\S-1-5-21-1717493791-2988471067-4108899974-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
  86. SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  87. SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  88. SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  89. SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  90. SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  91. SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  92. SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  93. SearchScopes: HKU\S-1-5-21-1717493791-2988471067-4108899974-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  94. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
  95. BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
  96. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
  97. BHO-x32: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03] (Adobe Systems Incorporated)
  98. BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
  99.  
  100. FireFox:
  101. ========
  102. FF ProfilePath: C:\Users\X-Gaming\AppData\Roaming\Profiles\mhycvud8.default
  103. FF Keyword.URL: user_pref("keyword.URL", true);
  104. FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
  105. FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
  106. FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2014-12-10] (Microsoft Corporation)
  107. FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
  108. FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2014-12-10] (Microsoft Corporation)
  109. FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-23] (NVIDIA Corporation)
  110. FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-23] (NVIDIA Corporation)
  111. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
  112. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
  113. FF Plugin HKU\S-1-5-21-1717493791-2988471067-4108899974-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\X-Gaming\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-10-20] (Unity Technologies ApS)
  114. FF SearchPlugin: C:\Users\X-Gaming\AppData\Roaming\Mozilla\Firefox\Profiles\mHAUJtGT.default\searchplugins\pecg7ben.xml [2016-07-20]
  115. FF SearchPlugin: C:\Users\X-Gaming\AppData\Roaming\Mozilla\Firefox\Profiles\mHAUJtGT.default\searchplugins\yahoo! powered.xml [2016-07-11]
  116. FF SearchPlugin: C:\Users\X-Gaming\AppData\Roaming\Profiles\n4h105nv.default\searchplugins\mkyp3q38.xml [2016-07-19]
  117. FF SearchPlugin: C:\Users\X-Gaming\AppData\Roaming\Profiles\n4h105nv.default\searchplugins\yahoo! powered.xml [2016-07-11]
  118. FF SearchPlugin: C:\Users\X-Gaming\AppData\Roaming\Profiles\mhycvud8.default\searchplugins\mkyp3q38.xml [2016-07-19]
  119. FF SearchPlugin: C:\Users\X-Gaming\AppData\Roaming\Profiles\mhycvud8.default\searchplugins\pecg7ben.xml [2016-07-20]
  120. FF SearchPlugin: C:\Users\X-Gaming\AppData\Roaming\Profiles\mhycvud8.default\searchplugins\yahoo! powered.xml [2016-07-11]
  121. FF Extension: Steam Inventory Helper - C:\Users\X-Gaming\AppData\Roaming\Mozilla\Firefox\Profiles\mHAUJtGT.default\Extensions\sih@vplghost.xpi [2015-10-19] [not signed]
  122. FF Extension: Steam Inventory Helper - C:\Users\X-Gaming\AppData\Roaming\Profiles\n4h105nv.default\Extensions\sih@vplghost.xpi [2015-10-19] [not signed]
  123. FF Extension: Steam Inventory Helper - C:\Users\X-Gaming\AppData\Roaming\Profiles\mhycvud8.default\Extensions\sih@vplghost.xpi [2015-10-19] [not signed]
  124.  
  125. Chrome:
  126. =======
  127. CHR HomePage: Profile 1 -> hxxp://www.google.com
  128. CHR StartupUrls: Profile 1 -> "hxxp://www.google.com/"
  129. CHR Profile: C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default
  130. CHR Extension: (YouTube) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
  131. CHR Extension: (Adblock Plus) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-30]
  132. CHR Extension: (Tanki Online) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo [2015-06-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
  133. CHR Extension: (Google Search) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
  134. CHR Extension: (Google Docs Offline) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-24]
  135. CHR Extension: (Cryptocat) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\gonbigodpnfghidmnphnadhepmbabhij [2015-06-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
  136. CHR Extension: (Google Wallet) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
  137. CHR Extension: (Bitdefender QuickScan) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2015-06-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
  138. CHR Extension: (Gmail) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
  139. CHR Profile: C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Profile 1
  140. CHR Extension: (Adblock Plus) - C:\Users\X-Gaming\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-07-20]
  141. CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
  142.  
  143. ==================== Services (Whitelisted) ========================
  144.  
  145. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  146.  
  147. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1863688 2016-04-09] ()
  148. S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [233776 2015-05-17] (EasyAntiCheat Ltd) [File not signed]
  149. R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
  150. R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2554376 2016-07-20] (LogMeIn Inc.)
  151. R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-07-20] (LogMeIn, Inc.)
  152. R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
  153. R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
  154. R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
  155. S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-10] (Electronic Arts)
  156. S4 rakeryomarymntNqs.exe; C:\Program Files (x86)\Grakat\rakeryomarymntNqs.exe [710368 2016-07-19] ()
  157. R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
  158. S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [818672 2016-05-11] (Tunngle.net GmbH)
  159. S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation)
  160. S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
  161. S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe /launchService [X]
  162.  
  163. ===================== Drivers (Whitelisted) ==========================
  164.  
  165. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  166.  
  167. S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
  168. R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-07-19] (REALiX(tm))
  169. R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
  170. R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
  171. R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [39464 2016-04-27] (Tunngle.net GmbH)
  172. U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-07-19] ()
  173. R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [117768 2015-11-10] (Oracle Corporation)
  174. R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [194976 2015-11-10] (Oracle Corporation)
  175. S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125008 2015-11-10] (Oracle Corporation)
  176. S2 AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
  177. S3 MSICDSetup; \??\F:\CDriver64.sys [X]
  178. S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
  179. S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
  180. S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
  181. S3 VGPU; System32\drivers\rdvgkmd.sys [X]
  182.  
  183. ==================== NetSvcs (Whitelisted) ===================
  184.  
  185. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  186.  
  187.  
  188. ==================== One Month Created files and folders ========
  189.  
  190. (If an entry is included in the fixlist, the file/folder will be moved.)
  191.  
  192. 2016-07-20 20:51 - 2016-07-20 20:52 - 00016853 _____ C:\Users\X-Gaming\Desktop\FRST.txt
  193. 2016-07-20 20:48 - 2016-07-20 20:51 - 00000000 ____D C:\FRST
  194. 2016-07-20 20:45 - 2016-07-20 20:45 - 00003040 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe
  195. 2016-07-20 20:45 - 2016-07-20 20:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_point64_01009.Wdf
  196. 2016-07-20 20:45 - 2016-07-20 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Souris Microsoft
  197. 2016-07-20 20:44 - 2016-07-20 20:44 - 00000000 ____D C:\Program Files\Microsoft IntelliPoint
  198. 2016-07-20 20:43 - 2016-07-20 20:43 - 22363520 _____ (Microsoft Corporation) C:\Users\X-Gaming\Downloads\IPx64_1036_8.20.468.0.exe
  199. 2016-07-20 20:27 - 2016-07-20 20:17 - 02393600 _____ (Farbar) C:\Users\X-Gaming\Desktop\FRST64.exe
  200. 2016-07-20 20:17 - 2016-07-20 20:17 - 02393600 _____ (Farbar) C:\Users\X-Gaming\Downloads\FRST64.exe
  201. 2016-07-20 16:03 - 2016-07-20 16:03 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\X-Gaming\Downloads\iExplore.exe
  202. 2016-07-20 16:03 - 2016-07-20 16:03 - 01106888 _____ (Bleeping Computer, LLC) C:\Users\X-Gaming\Downloads\iExplore64.exe
  203. 2016-07-20 15:55 - 2016-07-20 15:55 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  204. 2016-07-20 15:55 - 2016-07-20 15:55 - 00002257 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  205. 2016-07-20 15:52 - 2016-07-20 15:52 - 03482800 _____ (Enigma Software Group USA, LLC.) C:\Users\X-Gaming\Downloads\SpyHunter-Installer.exe
  206. 2016-07-20 15:16 - 2016-07-20 15:16 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subinacl.exe
  207. 2016-07-20 15:16 - 2016-07-20 15:16 - 00000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA
  208. 2016-07-20 15:15 - 2016-07-20 15:15 - 00752296 _____ C:\Users\X-Gaming\Downloads\Adware Removal Tool by TSA.exe
  209. 2016-07-20 15:08 - 2016-07-20 15:08 - 01610560 _____ (Malwarebytes) C:\Users\X-Gaming\Downloads\JRT.exe
  210. 2016-07-20 15:04 - 2016-07-20 15:04 - 03712064 _____ C:\Users\X-Gaming\Downloads\adwcleaner_5.201.exe
  211. 2016-07-20 14:53 - 2016-07-20 14:53 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
  212. 2016-07-20 14:52 - 2016-07-20 14:52 - 00002283 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  213. 2016-07-20 14:52 - 2016-07-20 14:52 - 00002253 _____ C:\Users\Administrator\Desktop\Google Chrome.lnk
  214. 2016-07-20 14:52 - 2016-07-20 14:52 - 00001413 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
  215. 2016-07-20 14:52 - 2016-07-20 14:52 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
  216. 2016-07-20 14:52 - 2016-07-20 14:52 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
  217. 2016-07-20 14:51 - 2016-07-20 14:52 - 00000000 ____D C:\Users\Administrator
  218. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000258 __RSH C:\Users\Administrator\ntuser.pol
  219. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
  220. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000000 _SHDL C:\Users\Administrator\My Documents
  221. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000000 _SHDL C:\Users\Administrator\Documents\My Videos
  222. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000000 _SHDL C:\Users\Administrator\Documents\My Pictures
  223. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000000 _SHDL C:\Users\Administrator\Documents\My Music
  224. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
  225. 2016-07-20 14:51 - 2016-07-20 14:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA
  226. 2016-07-20 14:51 - 2016-07-19 15:32 - 00000000 ____D C:\Users\Administrator\AppData\Local\LogMeIn Hamachi
  227. 2016-07-20 14:51 - 2015-01-07 22:56 - 00000000 ____D C:\Users\Administrator\Documents\Visual Studio 2010
  228. 2016-07-20 14:51 - 2009-07-14 09:45 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Media Center Programs
  229. 2016-07-20 14:39 - 2016-07-20 14:40 - 00000000 ____D C:\Program Files (x86)\Teneentgratuck
  230. 2016-07-20 14:39 - 2016-07-20 14:39 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\sikadomzukidomreireward
  231. 2016-07-20 14:38 - 2016-07-20 14:38 - 00001994 _____ C:\Windows\System32\Tasks\vwe3034
  232. 2016-07-20 14:37 - 2016-07-20 14:37 - 00000000 ____D C:\Program Files\2be819a87a33db2b5cb2aebefe53c727
  233. 2016-07-20 14:30 - 2016-07-20 14:29 - 00001215 _____ C:\Windows\system32\Drivers\etc\hp.bak
  234. 2016-07-20 14:27 - 2016-07-20 14:27 - 00000165 _____ C:\Windows\SysWOW64\MUpdater.exe.config
  235. 2016-07-20 14:27 - 2016-07-20 14:27 - 00000165 _____ C:\Windows\SysWOW64\GameCenter.exe.config
  236. 2016-07-20 12:40 - 2016-07-20 13:24 - 322122547 _____ C:\Users\X-Gaming\Downloads\plaza-company.of.heroes.2.master.collection.part6.rar
  237. 2016-07-19 17:26 - 2016-07-19 17:27 - 02691853 _____ C:\Users\X-Gaming\Downloads\Luminosity Link.rar
  238. 2016-07-19 15:26 - 2016-07-20 20:30 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
  239. 2016-07-19 15:26 - 2016-07-20 20:30 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
  240. 2016-07-19 15:10 - 2016-07-19 15:10 - 00003586 _____ C:\Windows\System32\Tasks\klcp_update
  241. 2016-07-19 15:10 - 2016-07-19 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
  242. 2016-07-19 15:10 - 2016-07-19 15:10 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
  243. 2016-07-19 15:08 - 2016-07-19 15:09 - 25353288 _____ C:\Users\X-Gaming\Downloads\RogueKillerX64.exe
  244. 2016-07-19 15:04 - 2016-07-19 15:05 - 36207790 _____ (KLCP ) C:\Users\X-Gaming\Downloads\K-Lite_Codec_Pack_1225_Full.exe
  245. 2016-07-19 14:47 - 2016-07-19 20:05 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\HandBrake
  246. 2016-07-19 14:47 - 2016-07-19 14:47 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\HandBrake Team
  247. 2016-07-19 14:45 - 2016-07-19 14:45 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
  248. 2016-07-19 14:45 - 2016-07-19 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
  249. 2016-07-19 14:45 - 2016-07-19 14:45 - 00000000 ____D C:\Program Files\Handbrake
  250. 2016-07-19 14:44 - 2016-07-19 14:44 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\Apps\2.0
  251. 2016-07-19 14:43 - 2016-07-19 14:44 - 16520043 _____ C:\Users\X-Gaming\Downloads\HandBrake-0.10.5-x86_64-Win_GUI-1.exe
  252. 2016-07-19 14:41 - 2016-07-19 14:41 - 00637017 _____ C:\Users\X-Gaming\Downloads\FreeMake Serial Keys.txt.rar
  253. 2016-07-19 14:27 - 2016-07-19 14:27 - 00000290 __RSH C:\Users\X-Gaming\ntuser.pol
  254. 2016-07-19 14:14 - 2016-07-19 14:16 - 25353288 _____ C:\Users\X-Gaming\Downloads\RogueKillerX64 (1).exe
  255. 2016-07-19 13:33 - 2016-07-19 13:33 - 00987728 _____ (Google Inc.) C:\Users\X-Gaming\Downloads\ChromeSetup.exe
  256. 2016-07-19 13:28 - 2016-07-19 13:32 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\uhitghojotypcsp
  257. 2016-07-19 13:28 - 2016-07-19 13:30 - 00000000 ____D C:\ProgramData\ProductData
  258. 2016-07-19 13:27 - 2016-07-19 13:30 - 00000000 ____D C:\Users\X-Gaming\AppData\LocalLow\IObit
  259. 2016-07-19 13:27 - 2016-07-19 13:30 - 00000000 ____D C:\Program Files (x86)\DiskPower
  260. 2016-07-19 13:27 - 2016-07-19 13:27 - 00963232 _____ (Microsoft Corporation) C:\Windows\msvcr120.dll
  261. 2016-07-19 13:27 - 2016-07-19 13:27 - 00082944 _____ (Open Source Software community LGPL) C:\Windows\pthreadVC2.dll
  262. 2016-07-19 13:27 - 2016-07-19 13:27 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
  263. 2016-07-19 13:27 - 2016-07-19 13:27 - 00000000 ____D C:\Windows\IObit
  264. 2016-07-19 13:27 - 2016-07-19 13:27 - 00000000 ____D C:\Windows\Azart
  265. 2016-07-19 13:27 - 2016-07-19 13:27 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\IObit
  266. 2016-07-19 13:27 - 2016-07-19 13:27 - 00000000 ____D C:\ProgramData\IObit
  267. 2016-07-19 13:26 - 2016-07-19 13:26 - 00073216 _____ C:\Windows\taskmgr.exe
  268. 2016-07-19 13:26 - 2016-07-19 13:26 - 00028819 _____ C:\Windows\decred.cl
  269. 2016-07-19 13:25 - 2016-07-19 15:24 - 00000000 ____D C:\Program Files (x86)\Grakat
  270. 2016-07-19 13:24 - 2016-07-19 13:24 - 02240851 _____ C:\Users\X-Gaming\Downloads\4Free_Video_Converter_3.rar
  271. 2016-07-19 13:19 - 2016-07-19 13:19 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\4Free
  272. 2016-07-19 13:14 - 2016-07-19 13:17 - 34184010 _____ (4Free Studio ) C:\Users\X-Gaming\Downloads\4free_video_converter.exe
  273. 2016-07-18 15:51 - 2016-07-18 15:51 - 00128159 _____ C:\Windows\aba9dd70b5f784d44d7600995d6f89c6.exe
  274. 2016-07-18 15:50 - 2016-07-18 15:50 - 00079952 _____ C:\Windows\system32\Drivers\0bdcd12df071200af564fe98d1a8b3b5.sys
  275. 2016-07-15 20:04 - 2016-07-15 20:04 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Five Nights at Freddy's
  276. 2016-07-15 20:04 - 2016-07-15 20:04 - 00000000 ____D C:\Program Files (x86)\Five Nights at Freddy's
  277. 2016-07-15 19:53 - 2016-07-15 19:53 - 466404675 _____ C:\Users\X-Gaming\Downloads\Five Nights At Freddy's 4.exe
  278. 2016-07-15 19:30 - 2016-07-15 19:30 - 229915398 _____ () C:\Users\X-Gaming\Downloads\Five_Nights_at_Freddys_1.exe
  279. 2016-07-15 15:18 - 2016-07-15 15:18 - 00000000 ____D C:\Users\X-Gaming\aTubeCatcher
  280. 2016-07-15 15:16 - 2016-07-15 15:16 - 00001190 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
  281. 2016-07-15 15:16 - 2008-08-18 19:18 - 00077824 _____ (Fox Magic Software) C:\Windows\SysWOW64\fmcodec.DLL
  282. 2016-07-14 22:32 - 2016-07-14 22:36 - 17463680 _____ (DsNET Corp ) C:\Users\X-Gaming\Downloads\aTubeCatcher.exe
  283. 2016-07-14 17:38 - 2015-07-23 21:25 - 00000000 ____D C:\Users\X-Gaming\Downloads\Five.Nights.at.Freddys.4
  284. 2016-07-14 17:29 - 2016-07-14 17:33 - 468391320 _____ C:\Users\X-Gaming\Downloads\Five.Nights.at.Freddys.4.rar
  285. 2016-07-14 17:24 - 2016-07-15 20:04 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\MMFApplications
  286. 2016-07-14 17:23 - 2015-03-13 18:03 - 00000000 ____D C:\Users\X-Gaming\Downloads\Five.Nights.at.Freddys.3.v1.02
  287. 2016-07-14 17:14 - 2016-07-14 17:16 - 118801816 _____ C:\Users\X-Gaming\Downloads\Five.Nights.at.Freddys.3.v1.02.zip
  288. 2016-07-14 16:32 - 2016-07-14 16:54 - 627458406 _____ C:\Users\X-Gaming\Downloads\Mr.Robot.S02E01.FASTSUB.VOSTFR.720p.HDTV.x264-ZT.www.Zone-Telechargement.com.mkv
  289. 2016-07-13 16:15 - 2016-07-13 16:15 - 00000000 ____D C:\Users\X-Gaming\AppData\LocalLow\Blizzard Entertainment
  290. 2016-07-07 21:40 - 2016-07-07 21:42 - 00000000 ____D C:\Program Files (x86)\Driver Checker
  291. 2016-07-03 18:22 - 2016-07-07 13:33 - 00000000 ____D C:\Program Files (x86)\Half Life 2
  292. 2016-07-03 18:22 - 2016-07-03 18:22 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Half Life Source
  293. 2016-07-03 18:22 - 2016-07-03 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Half Life Source
  294. 2016-07-01 20:20 - 2016-07-01 20:20 - 00000000 ____D C:\Program Files (x86)\MSECache
  295. 2016-06-27 19:26 - 2016-06-27 19:27 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\Chromium
  296. 2016-06-23 14:35 - 2016-06-23 14:35 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\The Creative Assembly
  297. 2016-06-23 12:28 - 2016-06-23 13:04 - 00000000 ____D C:\ProgramData\Tunngle
  298. 2016-06-23 12:28 - 2016-04-27 00:49 - 00039464 _____ (Tunngle.net GmbH) C:\Windows\system32\Drivers\tap0901t.sys
  299. 2016-06-21 12:50 - 2016-06-21 12:50 - 00000569 _____ C:\Users\Public\Desktop\Total War Attila.lnk
  300. 2016-06-21 12:50 - 2016-06-21 12:50 - 00000569 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total War Attila.lnk
  301.  
  302. ==================== One Month Modified files and folders ========
  303.  
  304. (If an entry is included in the fixlist, the file/folder will be moved.)
  305.  
  306. 2016-07-20 20:51 - 2014-12-10 16:09 - 00000000 ____D C:\Program Files (x86)\Steam
  307. 2016-07-20 20:45 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
  308. 2016-07-20 20:44 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
  309. 2016-07-20 20:41 - 2009-07-14 06:45 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  310. 2016-07-20 20:41 - 2009-07-14 06:45 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  311. 2016-07-20 20:40 - 2015-06-07 13:52 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\ElevatedDiagnostics
  312. 2016-07-20 20:33 - 2015-06-18 17:33 - 00065536 _____ C:\Windows\system32\Ikeext.etl
  313. 2016-07-20 20:33 - 2014-12-22 16:58 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\LogMeIn Hamachi
  314. 2016-07-20 20:32 - 2014-12-10 18:07 - 00000000 ____D C:\ProgramData\NVIDIA
  315. 2016-07-20 20:32 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
  316. 2016-07-20 20:11 - 2013-10-03 04:48 - 00000000 ____D C:\AdwCleaner
  317. 2016-07-20 15:11 - 2015-01-21 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
  318. 2016-07-20 15:11 - 2015-01-21 14:37 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
  319. 2016-07-20 14:52 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
  320. 2016-07-20 14:50 - 2014-12-10 16:13 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\Skype
  321. 2016-07-20 14:34 - 2014-12-17 14:45 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\CrashDumps
  322. 2016-07-20 13:22 - 2015-10-22 18:44 - 00000000 ____D C:\Users\X-Gaming\Documents\Visual Studio 2015
  323. 2016-07-20 12:32 - 2014-12-10 20:57 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\TS3Client
  324. 2016-07-20 12:08 - 2015-01-21 14:37 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
  325. 2016-07-19 19:29 - 2014-12-17 22:02 - 00000000 ____D C:\Users\X-Gaming\.VirtualBox
  326. 2016-07-19 17:27 - 2015-06-02 19:12 - 00000000 ____D C:\Users\X-Gaming\Documents\Zenith
  327. 2016-07-19 16:38 - 2014-12-17 22:04 - 00000000 ____D C:\Users\X-Gaming\VirtualBox VMs
  328. 2016-07-19 16:08 - 2014-12-15 21:31 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
  329. 2016-07-19 15:58 - 2015-05-03 12:59 - 00000000 ____D C:\Program Files (x86)\SpeedFan
  330. 2016-07-19 14:43 - 2015-05-13 20:59 - 00000000 ____D C:\ProgramData\Freemake
  331. 2016-07-19 14:43 - 2015-05-13 20:59 - 00000000 ____D C:\Program Files (x86)\Freemake
  332. 2016-07-19 14:27 - 2014-12-10 15:53 - 00000000 ____D C:\Users\X-Gaming
  333. 2016-07-19 13:27 - 2014-12-11 18:48 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\Adobe
  334. 2016-07-19 13:26 - 2015-08-18 21:32 - 00002826 __RSH C:\ProgramData\ntuser.pol
  335. 2016-07-19 13:25 - 2009-07-14 05:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
  336. 2016-07-19 13:11 - 2014-12-10 17:01 - 00745440 _____ C:\Windows\system32\perfh00C.dat
  337. 2016-07-19 13:11 - 2014-12-10 17:01 - 00149364 _____ C:\Windows\system32\perfc00C.dat
  338. 2016-07-19 13:11 - 2009-07-14 07:13 - 01668256 _____ C:\Windows\system32\PerfStringBackup.INI
  339. 2016-07-18 19:22 - 2014-12-12 17:52 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\.minecraft
  340. 2016-07-15 15:16 - 2015-05-13 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
  341. 2016-07-15 15:07 - 2015-12-12 22:54 - 00000000 ____D C:\Users\X-Gaming\AppData\Local\Battle.net
  342. 2016-07-15 14:23 - 2015-12-12 23:20 - 00000000 ____D C:\Program Files (x86)\Hearthstone
  343. 2016-07-15 14:12 - 2015-12-12 22:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
  344. 2016-07-14 14:58 - 2015-03-27 16:31 - 00000000 ____D C:\Users\X-Gaming\AppData\LocalLow\Heroes and Generals
  345. 2016-07-11 20:33 - 2014-12-10 16:13 - 00000000 ____D C:\ProgramData\Skype
  346. 2016-07-04 09:16 - 2009-07-14 07:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
  347. 2016-07-03 18:26 - 2015-05-09 20:57 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
  348. 2016-07-03 11:56 - 2015-12-22 17:27 - 00000000 ____D C:\Users\X-Gaming\Documents\Iso Linux
  349. 2016-07-02 13:57 - 2016-05-16 15:16 - 00000000 ____D C:\Users\X-Gaming\Documents\Command & Conquer 3 Les guerres du Tiberium
  350. 2016-07-01 20:33 - 2015-08-10 22:15 - 00000000 ____D C:\Users\X-Gaming\Documents\Tor Browser
  351. 2016-07-01 20:16 - 2015-06-07 14:06 - 00000000 ____D C:\Users\X-Gaming\Documents\Backup verbatim
  352. 2016-06-27 19:26 - 2015-05-13 20:59 - 00000000 ____D C:\Users\X-Gaming\Documents\Freemake
  353. 2016-06-27 19:26 - 2014-12-24 11:37 - 00000000 ___HD C:\Windows\msdownld.tmp
  354. 2016-06-23 17:51 - 2016-02-12 17:57 - 00000000 ____D C:\Users\X-Gaming\BrawlhallaReplays
  355. 2016-06-23 13:13 - 2015-09-05 21:43 - 00000000 ____D C:\Users\X-Gaming\AppData\Roaming\Tunngle
  356. 2016-06-23 12:32 - 2015-09-05 21:43 - 00000000 ____D C:\Program Files (x86)\Tunngle
  357. 2016-06-23 12:28 - 2015-09-05 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
  358. 2016-06-22 13:51 - 2014-12-10 21:36 - 00000000 ____D C:\ProgramData\Steam
  359.  
  360. ==================== Files in the root of some directories =======
  361.  
  362. 2015-09-15 21:00 - 2015-09-15 21:00 - 0000132 _____ () C:\Users\X-Gaming\AppData\Roaming\Adobe AIFF Format CS5 Prefs
  363. 2015-08-31 11:02 - 2015-08-31 11:50 - 0000132 _____ () C:\Users\X-Gaming\AppData\Roaming\Adobe BMP Format CS5 Prefs
  364. 2015-11-14 19:57 - 2015-12-02 22:42 - 0000132 _____ () C:\Users\X-Gaming\AppData\Roaming\Adobe GIF Format CS5 Prefs
  365. 2015-09-15 21:01 - 2015-11-02 19:13 - 0000132 _____ () C:\Users\X-Gaming\AppData\Roaming\Adobe PNG Format CS5 Prefs
  366. 2015-04-18 17:22 - 2016-03-17 17:51 - 0000297 _____ () C:\Users\X-Gaming\AppData\Roaming\BreakingPoint_Login.ini
  367. 2015-04-18 17:23 - 2016-03-17 17:54 - 0001465 _____ () C:\Users\X-Gaming\AppData\Roaming\BreakingPoint_Options.ini
  368. 2014-12-16 19:11 - 2014-03-21 00:49 - 1170056 _____ (Microsoft Corporation) C:\Users\X-Gaming\AppData\Roaming\cftmons.exe
  369. 2005-04-08 04:16 - 2014-12-16 23:00 - 0044399 ____H () C:\Users\X-Gaming\AppData\Roaming\logs.dat
  370. 2015-01-17 17:27 - 2015-01-17 17:27 - 0001262 _____ () C:\Users\X-Gaming\AppData\Roaming\Roaming - Raccourci.lnk
  371. 2015-08-06 21:46 - 2015-08-06 21:49 - 0105658 ___SH () C:\Users\X-Gaming\AppData\Local\CSIDL_
  372. 2015-06-27 22:31 - 2015-06-27 22:31 - 0459264 ____H (mNyPSVNlP) C:\Users\X-Gaming\AppData\Local\Microsoft.exe
  373. 2015-07-23 18:15 - 2016-01-06 15:07 - 0007601 _____ () C:\Users\X-Gaming\AppData\Local\Resmon.ResmonCfg
  374. 2014-12-10 16:03 - 2014-12-10 16:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
  375.  
  376. Some files in TEMP:
  377. ====================
  378. C:\Users\X-Gaming\AppData\Local\Temp\183B.tmp.exe
  379. C:\Users\X-Gaming\AppData\Local\Temp\63MMTSGD8G.exe
  380. C:\Users\X-Gaming\AppData\Local\Temp\6RU3A6AKWS.exe
  381. C:\Users\X-Gaming\AppData\Local\Temp\A27.tmp.exe
  382. C:\Users\X-Gaming\AppData\Local\Temp\AB35.tmp.exe
  383. C:\Users\X-Gaming\AppData\Local\Temp\B3.exe
  384. C:\Users\X-Gaming\AppData\Local\Temp\ContentPushSetup.exe
  385. C:\Users\X-Gaming\AppData\Local\Temp\D0D9.tmp.exe
  386. C:\Users\X-Gaming\AppData\Local\Temp\diskpower-installer.exe
  387. C:\Users\X-Gaming\AppData\Local\Temp\DLFFL2WXA4.exe
  388. C:\Users\X-Gaming\AppData\Local\Temp\dllnt_dump.dll
  389. C:\Users\X-Gaming\AppData\Local\Temp\DriverBoosterSetup.exe
  390. C:\Users\X-Gaming\AppData\Local\Temp\lbQUdEGdYrAAvGUx.exe
  391. C:\Users\X-Gaming\AppData\Local\Temp\M530XAUKQU.exe
  392. C:\Users\X-Gaming\AppData\Local\Temp\MPC_Setup.exe
  393. C:\Users\X-Gaming\AppData\Local\Temp\nsv5529.tmp.exe
  394. C:\Users\X-Gaming\AppData\Local\Temp\nszC85.tmp.exe
  395. C:\Users\X-Gaming\AppData\Local\Temp\OZRN68F4P1.exe
  396. C:\Users\X-Gaming\AppData\Local\Temp\prepreinstaller_win.exe
  397. C:\Users\X-Gaming\AppData\Local\Temp\sdf480D.exe
  398. C:\Users\X-Gaming\AppData\Local\Temp\sdfEC37.exe
  399. C:\Users\X-Gaming\AppData\Local\Temp\setup (1).exe
  400. C:\Users\X-Gaming\AppData\Local\Temp\setup (2).exe
  401. C:\Users\X-Gaming\AppData\Local\Temp\setup.exe
  402. C:\Users\X-Gaming\AppData\Local\Temp\setupfa_4435.exe
  403. C:\Users\X-Gaming\AppData\Local\Temp\sfamcc00001.dll
  404. C:\Users\X-Gaming\AppData\Local\Temp\SkypeSetup.exe
  405. C:\Users\X-Gaming\AppData\Local\Temp\trotux.exe
  406. C:\Users\X-Gaming\AppData\Local\Temp\ts.exe
  407. C:\Users\X-Gaming\AppData\Local\Temp\vk_ok_adblock.exe
  408. C:\Users\X-Gaming\AppData\Local\Temp\wajam_install.exe
  409. C:\Users\X-Gaming\AppData\Local\Temp\WeatherChicknInstaller.exe
  410.  
  411.  
  412. ==================== Bamital & volsnap =================
  413.  
  414. (There is no automatic fix for files that do not pass verification.)
  415.  
  416. C:\Windows\system32\winlogon.exe => File is digitally signed
  417. C:\Windows\system32\wininit.exe => File is digitally signed
  418. C:\Windows\SysWOW64\wininit.exe => File is digitally signed
  419. C:\Windows\explorer.exe => File is digitally signed
  420. C:\Windows\SysWOW64\explorer.exe => File is digitally signed
  421. C:\Windows\system32\svchost.exe => File is digitally signed
  422. C:\Windows\SysWOW64\svchost.exe => File is digitally signed
  423. C:\Windows\system32\services.exe => File is digitally signed
  424. C:\Windows\system32\User32.dll => File is digitally signed
  425. C:\Windows\SysWOW64\User32.dll => File is digitally signed
  426. C:\Windows\system32\userinit.exe => File is digitally signed
  427. C:\Windows\SysWOW64\userinit.exe => File is digitally signed
  428. C:\Windows\system32\rpcss.dll => File is digitally signed
  429. C:\Windows\system32\dnsapi.dll => File is digitally signed
  430. C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
  431. C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
  432.  
  433.  
  434. LastRegBack: 2016-07-17 13:14
  435.  
  436. ==================== End of FRST.txt ============================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!