Jump to content

Malwarebytes Keeps popping up when using any google related service?

bandan11

By bandan11
in Resolved Malware Removal Logs

 Share

Recommended Posts

bandan11

bandan11

Posted
Posted

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
Ran by Daniel (administrator) on DANIEL-PC (21-09-2015 17:50:04)
Running from C:\Users\Daniel\Downloads
Loaded Profiles: Daniel (Available Profiles: Daniel)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(American Megatrends Inc.) C:\Program Files\AMI\DuOS\AndServMgr.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.9.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
() C:\Program Files\WindowsApps\Microsoft.XboxApp_9.9.16003.0_x64__8wekyb3d8bbwe\XboxApp.exe
(Valve Corporation) D:\Extra Stuff (D)\Steam\Steam.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.915.17170.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Valve Corporation) D:\Extra Stuff (D)\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\Extra Stuff (D)\Steam\bin\steamwebhelper.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
(ESET) C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() E:\LeagueOfLegends\League of Legends\RADS\system\rads_user_kernel.exe
() E:\LeagueOfLegends\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.255\deploy\LoLLauncher.exe
() E:\LeagueOfLegends\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.39\deploy\LoLPatcher.exe
() E:\LeagueOfLegends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.160\deploy\LolClient.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
 

==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [shadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [40184 2015-02-26] (Panda Security, S.L.)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Google Update] => C:\Users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [f.lux] => C:\Users\Daniel\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5142664 2014-12-21] (Plex, Inc.)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1331456 2015-02-04] (Bogdan Sharkov)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [spotify Web Helper] => C:\Users\Daniel\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-06] (Spotify Ltd)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7249976 2015-08-30] (GOG.com)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [spybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-08-25]
ShortcutTarget: Curse.lnk -> C:\Users\Daniel\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
BootExecute: autocheck autochk * sdnclean64.exe
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{74c223ea-0a46-4ed4-ad2d-1b5193729025}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{cd04afef-d51d-4c7a-bf05-5f184df20caa}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{cd04afef-d51d-4c7a-bf05-5f184df20caa}: [DhcpNameServer] 192.168.2.1
 
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-ca/?ocid=iehp
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-01-13] (LastPass)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30] (Oracle Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30] (Oracle Corporation)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-01-13] (LastPass)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-01-13] (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-01-13] (LastPass)
 
FireFox:
========
FF ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-30] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-01-13] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-30] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-01-13] (LastPass)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @vizzed.com/VizzedRGR -> C:\Program Files (x86)\Vizzed\Vizzed Retro Game Room\NpVizzedRgr.dll [2013-01-11] (Vizzed.com)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @hola.org/vlc,version=1.8.28 -> C:\Users\Daniel\AppData\Local\Hola\firefox\app\vlc [2015-05-27] ()
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Daniel\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @talk.google.com/O1DPlugin -> C:\Users\Daniel\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Daniel\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Daniel\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Daniel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-08-04] ()
FF Plugin ProgramFiles/Appdata: C:\Users\Daniel\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Daniel\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Extension: LastPass - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\support@lastpass.com [2015-09-04]
FF Extension: ZenMate Security, Privacy & Unblock VPN - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\firefox@zenmate.com.xpi [2015-05-28]
FF Extension: Enhanced Steam - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid0-SmvlvxGpvCyG252KbVMqIKR79Uc@jetpack.xpi [2015-02-15]
FF Extension: Hide Fedora - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid1-tg9TKUYM47PZpg@jetpack.xpi [2015-02-15]
FF Extension: Reddit Enhancement Suite - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2015-02-10]
FF Extension: Enhanced Steam - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid1-YdiFiTEkQgInxA@jetpack.xpi [2015-02-12]
FF Extension: uBlock Origin - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\uBlock0@raymondhill.net.xpi [2015-05-13]
FF Extension: Password Exporter - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2015-02-15]
 
Chrome:
=======
CHR HomePage: Default -> hxxp://loking.net/
CHR StartupUrls: Default -> "hxxp://www.lolking.net/","hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-100&v=n8883-113&t=4"
CHR NewTab: Default -> "chrome-extension://ncdfeghkpohnalmpblddmnppfooljekh/core/newpage-pop.html"
CHR DefaultSearchKeyword: Default -> d
CHR Profile: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-10]
CHR Extension: (Hide Fedora) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\acjgabfifnnmmlckmnijdbijgbfpedde [2015-01-10]
CHR Extension: (BetterTTV) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-01-10]
CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-10]
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-10]
CHR Extension: (Cloud To Butt Plus) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apmlngnhgbnjpajelfkmabhkfapgnoai [2015-01-10]
CHR Extension: (Manga Viewer) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bebalkdfejapnfbngpmhchkboajaofen [2015-07-21]
CHR Extension: (TV) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2015-01-10]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-03-14]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-10]
CHR Extension: (Sad Panda) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc [2015-01-10]
CHR Extension: (DuckDuckGo for Chrome) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpphkkgodbfncbcpgopijlfakfgmclao [2015-01-10]
CHR Extension: (Halo 4 Theme) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cenafinbdpjeekhgifoicckecljgelob [2015-01-10]
CHR Extension: (uBlock Origin) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-06-12]
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-10]
CHR Extension: (Pandora Listener) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\danjmbbdjabpapehlajpomcignjnoidp [2015-01-10]
CHR Extension: (Anime/Cartoon Direct Link Extension.) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcipbhpdbjjkioehjlbnkgffcfhlckig [2015-01-10]
CHR Extension: (Tampermonkey) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-08-27]
CHR Extension: (ICE Quick Stream) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpioikmjnfipgphjldakcaocbbpnfabl [2015-01-10]
CHR Extension: (ZenMate Security, Privacy & Unblock VPN) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2015-05-28]
CHR Extension: (Google Sheets) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-10]
CHR Extension: (Pluto TV: TV for the Internet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjimjcdcjpelckcneochchfmnojdhdkh [2015-06-19]
CHR Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2015-01-10]
CHR Extension: (Tampermonkey BETA) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcalenpjmijncebpfijmoaglllgpjagf [2015-01-10]
CHR Extension: (Google Docs Offline) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-03]
CHR Extension: (AdBlock) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-10]
CHR Extension: (Hover Free) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcmnnggnaofmhflgomfjfbndngdoogkj [2015-01-10]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-01-13]
CHR Extension: (Terms of Service; Didn’t Read) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjdoplcnndgiblooccencgcggcoihigg [2015-06-07]
CHR Extension: (Crackle) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2015-01-10]
CHR Extension: (Google Play Music) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2015-01-10]
CHR Extension: (The Weather Channel for Chrome) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iflpcokdamgefbghpdipcibmhlkdopop [2015-01-10]
CHR Extension: (Twitch Live) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\imcjibojeokeogfofjgaajlobobagbeg [2015-01-10]
CHR Extension: (Essentials for KissAnime) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaicfjhjlblbkhejmkfimkafjchdnafm [2015-08-29]
CHR Extension: (Google Forms) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2015-01-10]
CHR Extension: (Speed Dial 2) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2015-01-10]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-01-10]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (3D Virtual Tabletop) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\licmdffhclmmbgnepnapjnmpkgnpblgl [2015-01-10]
CHR Extension: (AudioSauna) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2015-01-10]
CHR Extension: (Google Maps) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-01-10]
CHR Extension: (SmoothScroll) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbokbjkabcmbfdlbddjidfmibcpneigj [2015-07-16]
CHR Extension: (Incredible StartPage - Productive Start Page) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdfeghkpohnalmpblddmnppfooljekh [2015-06-18]
CHR Extension: (Tom's Hardware - My Threads) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddbmgcnelmmhlfibkmfnhnfeccaliip [2015-01-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-10]
CHR Extension: (Battlelog Emblem Editor Extended) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\noagedoiolkfaoaknohhepocfeooibjb [2015-01-10]
CHR Extension: (Enhanced Steam) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2015-01-10]
CHR Extension: (Bastion) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohphhdkahjlioohbalmicpokoefkgid [2015-01-10]
CHR Extension: (AlienTube for YouTube™) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\opgodjgjgojjkhlmmhdlojfehcemknnp [2015-01-10]
CHR Extension: (Rdio) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchjhmiapbbphflbgejhigbmfmmgbngn [2015-01-10]
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-10]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AndServMgr; C:\Program Files\AMI\DuOS\AndServMgr.exe [82384 2015-08-06] (American Megatrends Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-22] ()
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-30] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6920248 2015-08-30] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [File not signed]
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-09-02] (SurfRight B.V.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-07-29] (Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142584 2015-02-26] (Panda Security, S.L.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-03] (Electronic Arts)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2014-10-09] (Panda Security, S.L.)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2015-09-01] ()
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75064 2015-09-01] ()
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-02-26] (Panda Security, S.L.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-29] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-07-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 Alpham1; C:\Windows\System32\drivers\Alpham164.sys [52992 2007-07-23] (Ideazon Corporation)
R3 Alpham2; C:\Windows\System32\drivers\Alpham264.sys [21760 2007-03-20] (Ideazon Corporation)
R3 CMUSBDAC; C:\Windows\system32\DRIVERS\CMUSBDAC.sys [595456 2014-09-19] (C-MEDIA)
R1 DuoVMDrv; C:\Windows\system32\DRIVERS\DuoVMDrv.sys [239536 2015-07-31] (American Megatrends Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-21] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-07-29] (Microsoft Corporation)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [93968 2015-02-09] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [202000 2015-02-09] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [110864 2015-02-09] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [116496 2015-02-09] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [49936 2014-12-31] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [99600 2015-02-09] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [69904 2015-02-09] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [124176 2015-02-09] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [299792 2015-02-09] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [166160 2015-02-09] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [113424 2015-02-09] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [257296 2015-02-09] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [106256 2015-02-09] (Panda Security, S.L.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [163576 2015-06-17] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [121616 2015-02-25] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [197392 2015-02-25] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [124176 2015-02-25] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [133904 2015-02-25] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [107792 2015-02-25] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [61712 2015-05-22] (Panda Security, S.L.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys [X]
S3 cpuz138; \??\C:\Users\Daniel\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-09-21 17:50 - 2015-09-21 17:50 - 00033185 _____ C:\Users\Daniel\Downloads\FRST.txt
2015-09-21 17:38 - 2015-09-21 17:50 - 00000000 ____D C:\FRST
2015-09-21 17:35 - 2015-09-21 17:35 - 02191360 _____ (Farbar) C:\Users\Daniel\Downloads\FRST64.exe
2015-09-21 17:11 - 2015-09-21 17:11 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Daniel\Downloads\revosetup.exe
2015-09-21 17:10 - 2015-09-21 17:10 - 02870984 _____ (ESET) C:\Users\Daniel\Downloads\esetsmartinstaller_enu.exe
2015-09-21 17:10 - 2015-09-21 17:10 - 00000000 ____D C:\Program Files\Common Files\AV
2015-09-21 17:10 - 2015-09-21 17:10 - 00000000 ____D C:\Program Files (x86)\ESET
2015-09-21 17:10 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2015-09-21 17:07 - 2015-09-21 17:17 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-09-21 17:07 - 2015-09-21 17:07 - 00001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-09-21 17:07 - 2015-09-21 17:07 - 00001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-09-21 17:07 - 2015-09-21 17:07 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-09-21 17:07 - 2015-09-21 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-09-21 17:07 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2015-09-21 17:06 - 2015-09-21 17:10 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-09-21 17:05 - 2015-09-21 17:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Daniel\Downloads\spybot-2.4.exe
2015-09-21 16:48 - 2015-09-21 16:48 - 00016148 _____ C:\WINDOWS\system32\DANIEL-PC_Daniel_HistoryPrediction.bin
2015-09-20 17:50 - 2015-09-20 17:50 - 00000000 _____ C:\Users\Daniel\Desktop\New Text Document.txt
2015-09-20 09:47 - 2015-09-20 09:48 - 00000000 ____D C:\Users\Daniel\Desktop\Dwarf Fortress 40_24 Starter Pack r16
2015-09-20 09:46 - 2015-09-20 09:47 - 145036938 _____ C:\Users\Daniel\Downloads\Dwarf Fortress 40_24 Starter Pack r16.zip
2015-09-18 08:54 - 2015-09-21 17:39 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-18 08:52 - 2015-09-18 08:52 - 00019272 _____ C:\Users\Daniel\Documents\cc_20150918_085228.reg
2015-09-18 00:34 - 2015-09-21 16:53 - 00000000 ____D C:\Users\Daniel\Desktop\Tamriel
2015-09-18 00:07 - 2015-09-18 00:07 - 00362812 _____ C:\Users\Daniel\Downloads\skse_1_07_03_installer.exe
2015-09-18 00:07 - 2015-09-18 00:07 - 00001191 _____ C:\Users\Daniel\Desktop\Skyrim (SKSE).lnk
2015-09-18 00:02 - 2015-09-18 00:02 - 00047145 _____ C:\Users\Daniel\Downloads\Tamriel Online Server-67038-1-1-8.zip
2015-09-18 00:00 - 2015-09-18 00:00 - 01287787 _____ C:\Users\Daniel\Downloads\Tamriel Online Client-67038-1-1-9-3.zip
2015-09-17 23:58 - 2015-09-17 23:58 - 01380341 _____ C:\Users\Daniel\Downloads\ScriptDragon for 1.9.32.0 and below-54819-1-9-32-0.zip
2015-09-17 01:45 - 2015-09-17 01:45 - 00000000 ____D C:\Users\Daniel\Documents\Amnesia
2015-09-17 01:45 - 2015-09-17 01:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\fltk.org
2015-09-17 01:45 - 2015-09-17 01:45 - 00000000 ____D C:\ProgramData\fltk.org
2015-09-09 12:11 - 2015-09-09 12:11 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Unity
2015-09-09 11:26 - 2015-09-01 21:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 11:26 - 2015-09-01 20:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 11:26 - 2015-09-01 20:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 11:26 - 2015-08-27 02:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 11:26 - 2015-08-27 02:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 11:26 - 2015-08-27 02:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 11:26 - 2015-08-27 01:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 11:26 - 2015-08-27 01:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 11:26 - 2015-08-27 01:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 11:26 - 2015-08-27 01:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 11:26 - 2015-08-27 01:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 11:26 - 2015-08-27 01:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 11:26 - 2015-08-27 01:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 11:26 - 2015-08-27 01:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 11:26 - 2015-08-27 01:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 11:26 - 2015-08-27 01:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 11:26 - 2015-08-27 01:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 11:26 - 2015-08-27 01:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 11:26 - 2015-08-27 01:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 11:26 - 2015-08-27 01:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 11:26 - 2015-08-27 01:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 11:26 - 2015-08-27 01:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 11:26 - 2015-08-27 01:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 11:26 - 2015-08-27 01:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 11:26 - 2015-08-27 01:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 11:26 - 2015-08-27 01:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 11:26 - 2015-08-27 01:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 11:26 - 2015-08-27 01:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 11:26 - 2015-08-27 01:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 11:26 - 2015-08-27 01:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 11:26 - 2015-08-27 01:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 11:26 - 2015-08-27 01:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 11:25 - 2015-09-09 11:25 - 01089320 _____ (Unity Technologies ApS) C:\Users\Daniel\Downloads\UnityWebPlayer.exe
2015-09-09 11:25 - 2015-09-09 11:25 - 00000000 ____D C:\Users\Daniel\AppData\Local\Unity
2015-09-09 09:52 - 2015-09-09 09:52 - 01145672 _____ (DeadZ ) C:\Users\Daniel\Downloads\deadzsetup.exe
2015-09-09 09:48 - 2015-09-09 09:48 - 00624000 _____ C:\Users\Daniel\Downloads\CoreParkingManager.zip
2015-09-09 09:48 - 2014-02-20 03:15 - 00000000 ____D C:\Users\Daniel\Desktop\CoreParkingManager
2015-09-09 09:46 - 2015-09-09 09:46 - 00546199 _____ C:\Users\Daniel\Downloads\Unpark-CPU-App.zip
2015-09-09 09:46 - 2011-05-03 13:40 - 00000000 ____D C:\Users\Daniel\Desktop\Unpark-CPU-App
2015-09-05 23:31 - 2015-09-21 17:49 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{87B85256-F27F-4CEF-8C1C-026DEED1DDB0}
2015-09-05 18:53 - 2015-09-17 00:39 - 00003132 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2015-09-05 18:48 - 2015-09-05 18:48 - 00000000 ____D C:\Users\Daniel\jagexcache
2015-09-05 18:48 - 2015-09-05 18:48 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2015-09-05 18:47 - 2015-09-05 18:47 - 24219648 _____ C:\Users\Daniel\Downloads\RuneScape.msi
2015-09-05 16:11 - 2015-09-05 16:11 - 00302076 _____ C:\Users\Daniel\Documents\cc_20150905_161111.reg
2015-09-05 12:21 - 2015-09-05 12:21 - 00000548 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2015-09-03 22:30 - 2015-09-03 22:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-09-02 00:34 - 2015-09-02 00:34 - 00561679 _____ C:\Users\Daniel\Documents\UWT4.zip
2015-09-01 13:45 - 2015-09-01 13:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-01 13:45 - 2015-09-01 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-01 13:44 - 2015-09-01 13:44 - 01494048 _____ (Skype Technologies S.A.) C:\Users\Daniel\Documents\SkypeSetup.exe
2015-09-01 12:48 - 2015-09-01 12:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Logitech
2015-09-01 12:43 - 2015-09-01 12:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-09-01 12:43 - 2015-09-01 12:43 - 00000000 ____D C:\Program Files\Logitech
2015-09-01 12:43 - 2015-09-01 12:43 - 00000000 ____D C:\Program Files\Common Files\Logitech
2015-08-30 20:24 - 2015-08-30 20:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout [GOG.com]
2015-08-30 13:34 - 2015-08-30 13:34 - 00000000 _____ C:\WINDOWS\SysWOW64\RENFA37.tmp
2015-08-30 13:33 - 2015-08-30 13:33 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Sun
2015-08-30 13:33 - 2015-08-30 13:33 - 00000000 ____D C:\Users\Daniel\.oracle_jre_usage
2015-08-30 12:44 - 2015-08-30 12:44 - 00000000 ____D C:\Program Files (x86)\Microsoft Chart Controls
2015-08-30 10:42 - 2015-09-03 22:30 - 00000000 ____D C:\ProgramData\Hi-Rez Studios
2015-08-30 10:42 - 2015-08-30 10:42 - 00000218 _____ C:\Users\Daniel\AppData\Local\recently-used.xbel
2015-08-30 01:21 - 2015-08-30 01:21 - 00056221 _____ C:\Users\Daniel\Documents\[HorribleSubs] Shimoneta - 09 [1080p].mkv.torrent
2015-08-30 00:44 - 2015-08-30 00:44 - 00056561 _____ C:\Users\Daniel\Documents\[HorribleSubs] Shimoneta - 08 [1080p].mkv.torrent
2015-08-28 16:20 - 2015-08-20 02:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-28 16:20 - 2015-08-20 02:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-28 16:20 - 2015-08-20 02:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-28 16:20 - 2015-08-20 01:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-28 16:20 - 2015-08-20 01:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 16:20 - 2015-08-20 01:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-28 16:20 - 2015-08-20 01:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-28 16:20 - 2015-08-18 03:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 16:20 - 2015-08-18 03:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-28 16:20 - 2015-08-18 03:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-28 16:20 - 2015-08-18 03:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-28 16:20 - 2015-08-18 03:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-28 16:20 - 2015-08-18 03:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-28 16:20 - 2015-08-18 03:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-28 16:20 - 2015-08-18 03:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-28 16:20 - 2015-08-18 03:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-28 16:20 - 2015-08-18 03:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-28 16:20 - 2015-08-18 03:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-28 16:20 - 2015-08-18 02:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-28 16:20 - 2015-08-18 02:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-28 16:20 - 2015-08-18 02:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-28 16:20 - 2015-08-18 02:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-28 16:20 - 2015-08-18 02:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-28 16:20 - 2015-08-18 02:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-28 16:20 - 2015-08-18 02:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-28 16:20 - 2015-08-18 02:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-28 16:20 - 2015-08-18 02:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-28 16:20 - 2015-08-18 02:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-28 16:20 - 2015-08-18 02:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-28 16:20 - 2015-08-18 02:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-28 16:20 - 2015-08-18 02:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-28 16:20 - 2015-08-18 02:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-28 16:20 - 2015-08-18 02:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-28 16:20 - 2015-08-18 02:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-28 16:20 - 2015-08-18 02:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-28 16:20 - 2015-08-18 02:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-28 16:20 - 2015-08-18 00:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-27 17:12 - 2015-05-22 04:45 - 00061712 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2015-08-27 17:11 - 2015-08-27 17:12 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus.lnk
2015-08-27 17:11 - 2015-08-27 17:11 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Panda Security
2015-08-27 17:11 - 2015-08-27 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
2015-08-27 17:11 - 2015-08-27 17:11 - 00000000 ____D C:\Program Files (x86)\Panda Security
2015-08-27 17:10 - 2015-08-27 17:11 - 00000000 ____D C:\ProgramData\Panda Security
2015-08-27 17:09 - 2015-08-27 17:10 - 62220008 _____ C:\Users\Daniel\Documents\FREEAV.exe
2015-08-26 00:11 - 2015-08-26 00:11 - 00002200 _____ C:\Users\Daniel\Documents\NA_Chicago_Network_Diagnostic.bat
2015-08-25 21:10 - 2015-09-18 08:56 - 00007597 _____ C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2015-08-25 20:57 - 2015-09-20 12:42 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Curse Client
2015-08-25 20:57 - 2015-08-25 20:57 - 00001123 _____ C:\Users\Daniel\Desktop\Curse.lnk
2015-08-25 20:57 - 2015-08-25 20:57 - 00001109 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2015-08-25 20:56 - 2015-08-25 20:56 - 61000248 _____ (Curse) C:\Users\Daniel\Documents\CurseClientSetup.exe
2015-08-25 20:56 - 2015-08-25 20:56 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Curse
2015-08-24 01:24 - 2015-08-11 00:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-08-23 10:45 - 2015-08-23 10:53 - 00282296 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2015-08-23 10:45 - 2015-08-23 10:45 - 00000000 ____D C:\Users\Daniel\Documents\BFBC2
2015-08-23 10:43 - 2015-09-01 13:19 - 02434856 _____ C:\WINDOWS\SysWOW64\pbsvc.exe
2015-08-23 10:43 - 2015-08-23 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Bad Company 2
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-09-21 17:40 - 2015-03-12 17:19 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-21 17:32 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-21 17:20 - 2015-01-08 19:34 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-21 17:15 - 2015-01-20 19:43 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001UA.job
2015-09-21 17:13 - 2015-04-29 11:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Black_Tree_Gaming
2015-09-21 17:07 - 2015-01-10 14:25 - 00000926 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-21 16:54 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-21 12:15 - 2015-01-20 19:43 - 00000880 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001Core.job
2015-09-21 12:06 - 2015-01-10 14:25 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-21 11:51 - 2015-01-08 16:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2015-09-20 19:45 - 2015-01-29 02:38 - 00000000 ____D C:\Users\Daniel\AppData\Local\Battle.net
2015-09-20 19:45 - 2015-01-29 02:38 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-09-20 18:41 - 2015-01-23 02:40 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TS3Client
2015-09-20 18:37 - 2015-04-15 00:20 - 00000080 _____ C:\Users\Daniel\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-09-20 13:45 - 2015-03-11 22:46 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Spotify
2015-09-20 13:40 - 2015-03-11 22:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Spotify
2015-09-20 12:42 - 2015-07-29 14:06 - 00000000 ____D C:\Users\Daniel\OneDrive
2015-09-20 09:48 - 2015-03-24 11:13 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Python-Eggs
2015-09-19 01:53 - 2015-01-08 22:31 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-19 01:17 - 2015-01-08 22:31 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-09-18 20:02 - 2015-01-08 17:49 - 00000000 ____D C:\ProgramData\Origin
2015-09-18 09:31 - 2015-04-24 15:16 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Kodi
2015-09-17 23:56 - 2015-01-09 03:50 - 00000000 ____D C:\Users\Daniel\AppData\Local\Skyrim
2015-09-17 23:52 - 2015-04-29 11:47 - 00000000 ____D C:\Users\Daniel\Documents\Nexus Mod Manager
2015-09-17 22:30 - 2015-04-15 00:20 - 00000000 ____D C:\Program Files\Rockstar Games
2015-09-17 22:30 - 2015-04-15 00:20 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-09-17 22:22 - 2015-06-07 15:41 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-09-17 00:45 - 2015-07-29 13:51 - 01005662 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-17 00:39 - 2015-07-29 13:52 - 00000000 ____D C:\Users\Daniel
2015-09-17 00:39 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-17 00:39 - 2015-01-08 16:49 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-16 12:26 - 2015-07-10 05:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-09-16 12:10 - 2015-01-20 19:43 - 00004054 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001UA
2015-09-16 12:10 - 2015-01-20 19:43 - 00003678 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001Core
2015-09-16 12:01 - 2015-01-10 14:25 - 00003984 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 12:01 - 2015-01-10 14:25 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 11:43 - 2015-07-29 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2015-09-12 04:31 - 2015-07-10 08:20 - 00247664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-12 04:30 - 2015-07-10 09:14 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-12 04:30 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-11 15:48 - 2015-07-29 14:06 - 00002376 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-10 15:44 - 2015-01-10 14:25 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2015-09-09 12:34 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-09 12:33 - 2015-01-12 18:07 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-09 09:52 - 2015-08-10 01:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeadZ Launcher
2015-09-09 00:19 - 2015-01-08 17:07 - 00000000 ____D C:\Users\Daniel\Documents\my games
2015-09-05 12:21 - 2015-05-27 01:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2015-09-05 02:20 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-09-03 22:30 - 2015-01-20 01:23 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-03 21:12 - 2015-01-08 22:07 - 00226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-09-03 21:10 - 2015-01-08 17:48 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-03 18:43 - 2015-01-20 00:52 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\vlc
2015-09-03 12:21 - 2015-01-08 19:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Arma 3
2015-09-03 10:23 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-03 00:48 - 2015-03-31 23:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\Arma 3 Launcher
2015-09-02 00:53 - 2015-07-29 14:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-02 00:45 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-01 13:45 - 2015-01-08 16:59 - 00000000 ____D C:\ProgramData\Skype
2015-09-01 13:43 - 2015-01-08 22:22 - 00076152 _____ C:\WINDOWS\system32\PnkBstrA.exe
2015-09-01 13:42 - 2015-01-08 22:07 - 00226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-09-01 13:19 - 2015-01-08 22:07 - 00075064 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-08-30 15:01 - 2015-01-18 17:28 - 00000000 ____D C:\ProgramData\Oracle
2015-08-30 13:34 - 2015-04-05 23:50 - 00000000 ____D C:\Program Files\Java
2015-08-30 13:34 - 2015-01-18 17:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-30 13:34 - 2015-01-18 17:28 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-30 13:33 - 2015-04-05 23:50 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-08-30 10:42 - 2015-07-05 20:33 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\deluge
2015-08-26 20:37 - 2015-07-29 14:52 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-26 20:37 - 2015-07-29 14:52 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-26 20:36 - 2015-07-29 14:52 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-26 20:36 - 2015-07-29 14:52 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 18:37 - 2015-01-12 18:07 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-24 20:17 - 2015-04-07 15:53 - 00000000 ____D C:\Users\Daniel\Documents\Mount&Blade Warband Savegames
2015-08-24 12:17 - 2015-07-08 19:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Gyazo
2015-08-24 10:42 - 2015-05-09 20:06 - 00000847 ____H C:\Users\Daniel\.swfinfo
2015-08-24 01:02 - 2015-03-23 23:21 - 00000000 ____D C:\Users\Daniel\Desktop\games
2015-08-23 10:45 - 2015-01-08 22:12 - 00000000 ____D C:\Users\Daniel\AppData\Local\PunkBuster
 
==================== Files in the root of some directories =======
 
2015-01-13 00:01 - 2015-01-13 00:01 - 14147584 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2015-01-10 16:52 - 2015-06-05 00:20 - 0002198 _____ () C:\Users\Daniel\AppData\Roaming\SpeedRunnersLog.txt
2015-05-08 11:19 - 2015-05-18 21:56 - 0003284 _____ () C:\Users\Daniel\AppData\Roaming\TargetInvocationLog.txt
2015-08-30 10:42 - 2015-08-30 10:42 - 0000218 _____ () C:\Users\Daniel\AppData\Local\recently-used.xbel
2015-08-25 21:10 - 2015-09-18 08:56 - 0007597 _____ () C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2015-07-29 13:47 - 2015-07-29 13:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-09-02 00:38 - 2015-09-02 01:42 - 0019535 _____ () C:\ProgramData\empty.ico
 
Some files in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\Nexus Mod Manager-0.60.3.exe
 

==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 

LastRegBack: 2015-09-21 01:38
 
==================== End of FRST.txt ============================
 
What can I do about this?
Link to post
Share on other sites
  • 2 weeks later...
exile360

exile360

Posted
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.