Jump to content

Malwarebytes Keeps popping up when using any google related service?


bandan11
 Share

Recommended Posts

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
Ran by Daniel (administrator) on DANIEL-PC (21-09-2015 17:50:04)
Running from C:\Users\Daniel\Downloads
Loaded Profiles: Daniel (Available Profiles: Daniel)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(American Megatrends Inc.) C:\Program Files\AMI\DuOS\AndServMgr.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.9.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
() C:\Program Files\WindowsApps\Microsoft.XboxApp_9.9.16003.0_x64__8wekyb3d8bbwe\XboxApp.exe
(Valve Corporation) D:\Extra Stuff (D)\Steam\Steam.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.915.17170.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Valve Corporation) D:\Extra Stuff (D)\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\Extra Stuff (D)\Steam\bin\steamwebhelper.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
(ESET) C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() E:\LeagueOfLegends\League of Legends\RADS\system\rads_user_kernel.exe
() E:\LeagueOfLegends\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.255\deploy\LoLLauncher.exe
() E:\LeagueOfLegends\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.39\deploy\LoLPatcher.exe
() E:\LeagueOfLegends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.160\deploy\LolClient.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
 

==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [shadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [40184 2015-02-26] (Panda Security, S.L.)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Google Update] => C:\Users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [f.lux] => C:\Users\Daniel\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5142664 2014-12-21] (Plex, Inc.)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1331456 2015-02-04] (Bogdan Sharkov)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [spotify Web Helper] => C:\Users\Daniel\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-06] (Spotify Ltd)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7249976 2015-08-30] (GOG.com)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\...\Run: [spybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-08-25]
ShortcutTarget: Curse.lnk -> C:\Users\Daniel\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
BootExecute: autocheck autochk * sdnclean64.exe
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{74c223ea-0a46-4ed4-ad2d-1b5193729025}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{cd04afef-d51d-4c7a-bf05-5f184df20caa}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{cd04afef-d51d-4c7a-bf05-5f184df20caa}: [DhcpNameServer] 192.168.2.1
 
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1832614277-906616445-1083069313-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-ca/?ocid=iehp
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-01-13] (LastPass)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30] (Oracle Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30] (Oracle Corporation)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-01-13] (LastPass)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-01-13] (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-01-13] (LastPass)
 
FireFox:
========
FF ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-30] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-01-13] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-30] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-01-13] (LastPass)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @vizzed.com/VizzedRGR -> C:\Program Files (x86)\Vizzed\Vizzed Retro Game Room\NpVizzedRgr.dll [2013-01-11] (Vizzed.com)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @hola.org/vlc,version=1.8.28 -> C:\Users\Daniel\AppData\Local\Hola\firefox\app\vlc [2015-05-27] ()
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Daniel\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @talk.google.com/O1DPlugin -> C:\Users\Daniel\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Daniel\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Daniel\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Daniel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1832614277-906616445-1083069313-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-08-04] ()
FF Plugin ProgramFiles/Appdata: C:\Users\Daniel\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Daniel\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Extension: LastPass - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\support@lastpass.com [2015-09-04]
FF Extension: ZenMate Security, Privacy & Unblock VPN - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\firefox@zenmate.com.xpi [2015-05-28]
FF Extension: Enhanced Steam - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid0-SmvlvxGpvCyG252KbVMqIKR79Uc@jetpack.xpi [2015-02-15]
FF Extension: Hide Fedora - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid1-tg9TKUYM47PZpg@jetpack.xpi [2015-02-15]
FF Extension: Reddit Enhancement Suite - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2015-02-10]
FF Extension: Enhanced Steam - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\jid1-YdiFiTEkQgInxA@jetpack.xpi [2015-02-12]
FF Extension: uBlock Origin - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\uBlock0@raymondhill.net.xpi [2015-05-13]
FF Extension: Password Exporter - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fggnd8z4.default-1423623861041\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2015-02-15]
 
Chrome:
=======
CHR HomePage: Default -> hxxp://loking.net/
CHR StartupUrls: Default -> "hxxp://www.lolking.net/","hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-100&v=n8883-113&t=4"
CHR NewTab: Default -> "chrome-extension://ncdfeghkpohnalmpblddmnppfooljekh/core/newpage-pop.html"
CHR DefaultSearchKeyword: Default -> d
CHR Profile: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-10]
CHR Extension: (Hide Fedora) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\acjgabfifnnmmlckmnijdbijgbfpedde [2015-01-10]
CHR Extension: (BetterTTV) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-01-10]
CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-10]
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-10]
CHR Extension: (Cloud To Butt Plus) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apmlngnhgbnjpajelfkmabhkfapgnoai [2015-01-10]
CHR Extension: (Manga Viewer) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bebalkdfejapnfbngpmhchkboajaofen [2015-07-21]
CHR Extension: (TV) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2015-01-10]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-03-14]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-10]
CHR Extension: (Sad Panda) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc [2015-01-10]
CHR Extension: (DuckDuckGo for Chrome) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpphkkgodbfncbcpgopijlfakfgmclao [2015-01-10]
CHR Extension: (Halo 4 Theme) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cenafinbdpjeekhgifoicckecljgelob [2015-01-10]
CHR Extension: (uBlock Origin) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-06-12]
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-10]
CHR Extension: (Pandora Listener) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\danjmbbdjabpapehlajpomcignjnoidp [2015-01-10]
CHR Extension: (Anime/Cartoon Direct Link Extension.) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcipbhpdbjjkioehjlbnkgffcfhlckig [2015-01-10]
CHR Extension: (Tampermonkey) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-08-27]
CHR Extension: (ICE Quick Stream) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpioikmjnfipgphjldakcaocbbpnfabl [2015-01-10]
CHR Extension: (ZenMate Security, Privacy & Unblock VPN) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2015-05-28]
CHR Extension: (Google Sheets) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-10]
CHR Extension: (Pluto TV: TV for the Internet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjimjcdcjpelckcneochchfmnojdhdkh [2015-06-19]
CHR Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2015-01-10]
CHR Extension: (Tampermonkey BETA) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcalenpjmijncebpfijmoaglllgpjagf [2015-01-10]
CHR Extension: (Google Docs Offline) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-03]
CHR Extension: (AdBlock) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-10]
CHR Extension: (Hover Free) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcmnnggnaofmhflgomfjfbndngdoogkj [2015-01-10]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-01-13]
CHR Extension: (Terms of Service; Didn’t Read) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjdoplcnndgiblooccencgcggcoihigg [2015-06-07]
CHR Extension: (Crackle) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2015-01-10]
CHR Extension: (Google Play Music) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2015-01-10]
CHR Extension: (The Weather Channel for Chrome) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iflpcokdamgefbghpdipcibmhlkdopop [2015-01-10]
CHR Extension: (Twitch Live) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\imcjibojeokeogfofjgaajlobobagbeg [2015-01-10]
CHR Extension: (Essentials for KissAnime) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaicfjhjlblbkhejmkfimkafjchdnafm [2015-08-29]
CHR Extension: (Google Forms) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2015-01-10]
CHR Extension: (Speed Dial 2) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2015-01-10]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-01-10]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (3D Virtual Tabletop) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\licmdffhclmmbgnepnapjnmpkgnpblgl [2015-01-10]
CHR Extension: (AudioSauna) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2015-01-10]
CHR Extension: (Google Maps) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-01-10]
CHR Extension: (SmoothScroll) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbokbjkabcmbfdlbddjidfmibcpneigj [2015-07-16]
CHR Extension: (Incredible StartPage - Productive Start Page) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdfeghkpohnalmpblddmnppfooljekh [2015-06-18]
CHR Extension: (Tom's Hardware - My Threads) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddbmgcnelmmhlfibkmfnhnfeccaliip [2015-01-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-10]
CHR Extension: (Battlelog Emblem Editor Extended) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\noagedoiolkfaoaknohhepocfeooibjb [2015-01-10]
CHR Extension: (Enhanced Steam) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2015-01-10]
CHR Extension: (Bastion) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohphhdkahjlioohbalmicpokoefkgid [2015-01-10]
CHR Extension: (AlienTube for YouTube™) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\opgodjgjgojjkhlmmhdlojfehcemknnp [2015-01-10]
CHR Extension: (Rdio) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchjhmiapbbphflbgejhigbmfmmgbngn [2015-01-10]
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-10]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AndServMgr; C:\Program Files\AMI\DuOS\AndServMgr.exe [82384 2015-08-06] (American Megatrends Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-22] ()
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-30] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6920248 2015-08-30] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [File not signed]
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-09-02] (SurfRight B.V.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-07-29] (Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142584 2015-02-26] (Panda Security, S.L.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-03] (Electronic Arts)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2014-10-09] (Panda Security, S.L.)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2015-09-01] ()
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75064 2015-09-01] ()
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-02-26] (Panda Security, S.L.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-29] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-07-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 Alpham1; C:\Windows\System32\drivers\Alpham164.sys [52992 2007-07-23] (Ideazon Corporation)
R3 Alpham2; C:\Windows\System32\drivers\Alpham264.sys [21760 2007-03-20] (Ideazon Corporation)
R3 CMUSBDAC; C:\Windows\system32\DRIVERS\CMUSBDAC.sys [595456 2014-09-19] (C-MEDIA)
R1 DuoVMDrv; C:\Windows\system32\DRIVERS\DuoVMDrv.sys [239536 2015-07-31] (American Megatrends Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-21] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-07-29] (Microsoft Corporation)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [93968 2015-02-09] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [202000 2015-02-09] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [110864 2015-02-09] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [116496 2015-02-09] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [49936 2014-12-31] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [99600 2015-02-09] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [69904 2015-02-09] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [124176 2015-02-09] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [299792 2015-02-09] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [166160 2015-02-09] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [113424 2015-02-09] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [257296 2015-02-09] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [106256 2015-02-09] (Panda Security, S.L.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [163576 2015-06-17] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [121616 2015-02-25] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [197392 2015-02-25] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [124176 2015-02-25] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [133904 2015-02-25] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [107792 2015-02-25] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [61712 2015-05-22] (Panda Security, S.L.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys [X]
S3 cpuz138; \??\C:\Users\Daniel\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-09-21 17:50 - 2015-09-21 17:50 - 00033185 _____ C:\Users\Daniel\Downloads\FRST.txt
2015-09-21 17:38 - 2015-09-21 17:50 - 00000000 ____D C:\FRST
2015-09-21 17:35 - 2015-09-21 17:35 - 02191360 _____ (Farbar) C:\Users\Daniel\Downloads\FRST64.exe
2015-09-21 17:11 - 2015-09-21 17:11 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Daniel\Downloads\revosetup.exe
2015-09-21 17:10 - 2015-09-21 17:10 - 02870984 _____ (ESET) C:\Users\Daniel\Downloads\esetsmartinstaller_enu.exe
2015-09-21 17:10 - 2015-09-21 17:10 - 00000000 ____D C:\Program Files\Common Files\AV
2015-09-21 17:10 - 2015-09-21 17:10 - 00000000 ____D C:\Program Files (x86)\ESET
2015-09-21 17:10 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2015-09-21 17:07 - 2015-09-21 17:17 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-09-21 17:07 - 2015-09-21 17:07 - 00001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-09-21 17:07 - 2015-09-21 17:07 - 00001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-09-21 17:07 - 2015-09-21 17:07 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-09-21 17:07 - 2015-09-21 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-09-21 17:07 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2015-09-21 17:06 - 2015-09-21 17:10 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-09-21 17:05 - 2015-09-21 17:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Daniel\Downloads\spybot-2.4.exe
2015-09-21 16:48 - 2015-09-21 16:48 - 00016148 _____ C:\WINDOWS\system32\DANIEL-PC_Daniel_HistoryPrediction.bin
2015-09-20 17:50 - 2015-09-20 17:50 - 00000000 _____ C:\Users\Daniel\Desktop\New Text Document.txt
2015-09-20 09:47 - 2015-09-20 09:48 - 00000000 ____D C:\Users\Daniel\Desktop\Dwarf Fortress 40_24 Starter Pack r16
2015-09-20 09:46 - 2015-09-20 09:47 - 145036938 _____ C:\Users\Daniel\Downloads\Dwarf Fortress 40_24 Starter Pack r16.zip
2015-09-18 08:54 - 2015-09-21 17:39 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-18 08:52 - 2015-09-18 08:52 - 00019272 _____ C:\Users\Daniel\Documents\cc_20150918_085228.reg
2015-09-18 00:34 - 2015-09-21 16:53 - 00000000 ____D C:\Users\Daniel\Desktop\Tamriel
2015-09-18 00:07 - 2015-09-18 00:07 - 00362812 _____ C:\Users\Daniel\Downloads\skse_1_07_03_installer.exe
2015-09-18 00:07 - 2015-09-18 00:07 - 00001191 _____ C:\Users\Daniel\Desktop\Skyrim (SKSE).lnk
2015-09-18 00:02 - 2015-09-18 00:02 - 00047145 _____ C:\Users\Daniel\Downloads\Tamriel Online Server-67038-1-1-8.zip
2015-09-18 00:00 - 2015-09-18 00:00 - 01287787 _____ C:\Users\Daniel\Downloads\Tamriel Online Client-67038-1-1-9-3.zip
2015-09-17 23:58 - 2015-09-17 23:58 - 01380341 _____ C:\Users\Daniel\Downloads\ScriptDragon for 1.9.32.0 and below-54819-1-9-32-0.zip
2015-09-17 01:45 - 2015-09-17 01:45 - 00000000 ____D C:\Users\Daniel\Documents\Amnesia
2015-09-17 01:45 - 2015-09-17 01:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\fltk.org
2015-09-17 01:45 - 2015-09-17 01:45 - 00000000 ____D C:\ProgramData\fltk.org
2015-09-09 12:11 - 2015-09-09 12:11 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Unity
2015-09-09 11:26 - 2015-09-01 21:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 11:26 - 2015-09-01 20:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 11:26 - 2015-09-01 20:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 11:26 - 2015-08-27 02:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 11:26 - 2015-08-27 02:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 11:26 - 2015-08-27 02:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 11:26 - 2015-08-27 01:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 11:26 - 2015-08-27 01:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 11:26 - 2015-08-27 01:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 11:26 - 2015-08-27 01:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 11:26 - 2015-08-27 01:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 11:26 - 2015-08-27 01:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 11:26 - 2015-08-27 01:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 11:26 - 2015-08-27 01:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 11:26 - 2015-08-27 01:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 11:26 - 2015-08-27 01:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 11:26 - 2015-08-27 01:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 11:26 - 2015-08-27 01:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 11:26 - 2015-08-27 01:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 11:26 - 2015-08-27 01:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 11:26 - 2015-08-27 01:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 11:26 - 2015-08-27 01:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 11:26 - 2015-08-27 01:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 11:26 - 2015-08-27 01:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 11:26 - 2015-08-27 01:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 11:26 - 2015-08-27 01:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 11:26 - 2015-08-27 01:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 11:26 - 2015-08-27 01:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 11:26 - 2015-08-27 01:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 11:26 - 2015-08-27 01:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 11:26 - 2015-08-27 01:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 11:26 - 2015-08-27 01:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 11:25 - 2015-09-09 11:25 - 01089320 _____ (Unity Technologies ApS) C:\Users\Daniel\Downloads\UnityWebPlayer.exe
2015-09-09 11:25 - 2015-09-09 11:25 - 00000000 ____D C:\Users\Daniel\AppData\Local\Unity
2015-09-09 09:52 - 2015-09-09 09:52 - 01145672 _____ (DeadZ ) C:\Users\Daniel\Downloads\deadzsetup.exe
2015-09-09 09:48 - 2015-09-09 09:48 - 00624000 _____ C:\Users\Daniel\Downloads\CoreParkingManager.zip
2015-09-09 09:48 - 2014-02-20 03:15 - 00000000 ____D C:\Users\Daniel\Desktop\CoreParkingManager
2015-09-09 09:46 - 2015-09-09 09:46 - 00546199 _____ C:\Users\Daniel\Downloads\Unpark-CPU-App.zip
2015-09-09 09:46 - 2011-05-03 13:40 - 00000000 ____D C:\Users\Daniel\Desktop\Unpark-CPU-App
2015-09-05 23:31 - 2015-09-21 17:49 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{87B85256-F27F-4CEF-8C1C-026DEED1DDB0}
2015-09-05 18:53 - 2015-09-17 00:39 - 00003132 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2015-09-05 18:48 - 2015-09-05 18:48 - 00000000 ____D C:\Users\Daniel\jagexcache
2015-09-05 18:48 - 2015-09-05 18:48 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2015-09-05 18:47 - 2015-09-05 18:47 - 24219648 _____ C:\Users\Daniel\Downloads\RuneScape.msi
2015-09-05 16:11 - 2015-09-05 16:11 - 00302076 _____ C:\Users\Daniel\Documents\cc_20150905_161111.reg
2015-09-05 12:21 - 2015-09-05 12:21 - 00000548 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2015-09-03 22:30 - 2015-09-03 22:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-09-02 00:34 - 2015-09-02 00:34 - 00561679 _____ C:\Users\Daniel\Documents\UWT4.zip
2015-09-01 13:45 - 2015-09-01 13:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-01 13:45 - 2015-09-01 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-01 13:44 - 2015-09-01 13:44 - 01494048 _____ (Skype Technologies S.A.) C:\Users\Daniel\Documents\SkypeSetup.exe
2015-09-01 12:48 - 2015-09-01 12:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Logitech
2015-09-01 12:43 - 2015-09-01 12:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-09-01 12:43 - 2015-09-01 12:43 - 00000000 ____D C:\Program Files\Logitech
2015-09-01 12:43 - 2015-09-01 12:43 - 00000000 ____D C:\Program Files\Common Files\Logitech
2015-08-30 20:24 - 2015-08-30 20:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout [GOG.com]
2015-08-30 13:34 - 2015-08-30 13:34 - 00000000 _____ C:\WINDOWS\SysWOW64\RENFA37.tmp
2015-08-30 13:33 - 2015-08-30 13:33 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Sun
2015-08-30 13:33 - 2015-08-30 13:33 - 00000000 ____D C:\Users\Daniel\.oracle_jre_usage
2015-08-30 12:44 - 2015-08-30 12:44 - 00000000 ____D C:\Program Files (x86)\Microsoft Chart Controls
2015-08-30 10:42 - 2015-09-03 22:30 - 00000000 ____D C:\ProgramData\Hi-Rez Studios
2015-08-30 10:42 - 2015-08-30 10:42 - 00000218 _____ C:\Users\Daniel\AppData\Local\recently-used.xbel
2015-08-30 01:21 - 2015-08-30 01:21 - 00056221 _____ C:\Users\Daniel\Documents\[HorribleSubs] Shimoneta - 09 [1080p].mkv.torrent
2015-08-30 00:44 - 2015-08-30 00:44 - 00056561 _____ C:\Users\Daniel\Documents\[HorribleSubs] Shimoneta - 08 [1080p].mkv.torrent
2015-08-28 16:20 - 2015-08-20 02:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-28 16:20 - 2015-08-20 02:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-28 16:20 - 2015-08-20 02:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-28 16:20 - 2015-08-20 01:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-28 16:20 - 2015-08-20 01:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 16:20 - 2015-08-20 01:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-28 16:20 - 2015-08-20 01:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-28 16:20 - 2015-08-18 03:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 16:20 - 2015-08-18 03:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-28 16:20 - 2015-08-18 03:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-28 16:20 - 2015-08-18 03:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-28 16:20 - 2015-08-18 03:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-28 16:20 - 2015-08-18 03:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-28 16:20 - 2015-08-18 03:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-28 16:20 - 2015-08-18 03:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-28 16:20 - 2015-08-18 03:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-28 16:20 - 2015-08-18 03:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-28 16:20 - 2015-08-18 03:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-28 16:20 - 2015-08-18 02:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-28 16:20 - 2015-08-18 02:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-28 16:20 - 2015-08-18 02:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-28 16:20 - 2015-08-18 02:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-28 16:20 - 2015-08-18 02:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-28 16:20 - 2015-08-18 02:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-28 16:20 - 2015-08-18 02:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-28 16:20 - 2015-08-18 02:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-28 16:20 - 2015-08-18 02:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-28 16:20 - 2015-08-18 02:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-28 16:20 - 2015-08-18 02:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-28 16:20 - 2015-08-18 02:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-28 16:20 - 2015-08-18 02:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-28 16:20 - 2015-08-18 02:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-28 16:20 - 2015-08-18 02:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-28 16:20 - 2015-08-18 02:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-28 16:20 - 2015-08-18 02:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-28 16:20 - 2015-08-18 02:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-28 16:20 - 2015-08-18 02:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-28 16:20 - 2015-08-18 00:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-27 17:12 - 2015-05-22 04:45 - 00061712 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2015-08-27 17:11 - 2015-08-27 17:12 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus.lnk
2015-08-27 17:11 - 2015-08-27 17:11 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Panda Security
2015-08-27 17:11 - 2015-08-27 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
2015-08-27 17:11 - 2015-08-27 17:11 - 00000000 ____D C:\Program Files (x86)\Panda Security
2015-08-27 17:10 - 2015-08-27 17:11 - 00000000 ____D C:\ProgramData\Panda Security
2015-08-27 17:09 - 2015-08-27 17:10 - 62220008 _____ C:\Users\Daniel\Documents\FREEAV.exe
2015-08-26 00:11 - 2015-08-26 00:11 - 00002200 _____ C:\Users\Daniel\Documents\NA_Chicago_Network_Diagnostic.bat
2015-08-25 21:10 - 2015-09-18 08:56 - 00007597 _____ C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2015-08-25 20:57 - 2015-09-20 12:42 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Curse Client
2015-08-25 20:57 - 2015-08-25 20:57 - 00001123 _____ C:\Users\Daniel\Desktop\Curse.lnk
2015-08-25 20:57 - 2015-08-25 20:57 - 00001109 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2015-08-25 20:56 - 2015-08-25 20:56 - 61000248 _____ (Curse) C:\Users\Daniel\Documents\CurseClientSetup.exe
2015-08-25 20:56 - 2015-08-25 20:56 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Curse
2015-08-24 01:24 - 2015-08-11 00:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-08-23 10:45 - 2015-08-23 10:53 - 00282296 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2015-08-23 10:45 - 2015-08-23 10:45 - 00000000 ____D C:\Users\Daniel\Documents\BFBC2
2015-08-23 10:43 - 2015-09-01 13:19 - 02434856 _____ C:\WINDOWS\SysWOW64\pbsvc.exe
2015-08-23 10:43 - 2015-08-23 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Bad Company 2
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-09-21 17:40 - 2015-03-12 17:19 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-21 17:32 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-21 17:20 - 2015-01-08 19:34 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-21 17:15 - 2015-01-20 19:43 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001UA.job
2015-09-21 17:13 - 2015-04-29 11:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Black_Tree_Gaming
2015-09-21 17:07 - 2015-01-10 14:25 - 00000926 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-21 16:54 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-21 12:15 - 2015-01-20 19:43 - 00000880 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001Core.job
2015-09-21 12:06 - 2015-01-10 14:25 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-21 11:51 - 2015-01-08 16:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2015-09-20 19:45 - 2015-01-29 02:38 - 00000000 ____D C:\Users\Daniel\AppData\Local\Battle.net
2015-09-20 19:45 - 2015-01-29 02:38 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-09-20 18:41 - 2015-01-23 02:40 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TS3Client
2015-09-20 18:37 - 2015-04-15 00:20 - 00000080 _____ C:\Users\Daniel\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-09-20 13:45 - 2015-03-11 22:46 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Spotify
2015-09-20 13:40 - 2015-03-11 22:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Spotify
2015-09-20 12:42 - 2015-07-29 14:06 - 00000000 ____D C:\Users\Daniel\OneDrive
2015-09-20 09:48 - 2015-03-24 11:13 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Python-Eggs
2015-09-19 01:53 - 2015-01-08 22:31 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-19 01:17 - 2015-01-08 22:31 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-09-18 20:02 - 2015-01-08 17:49 - 00000000 ____D C:\ProgramData\Origin
2015-09-18 09:31 - 2015-04-24 15:16 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Kodi
2015-09-17 23:56 - 2015-01-09 03:50 - 00000000 ____D C:\Users\Daniel\AppData\Local\Skyrim
2015-09-17 23:52 - 2015-04-29 11:47 - 00000000 ____D C:\Users\Daniel\Documents\Nexus Mod Manager
2015-09-17 22:30 - 2015-04-15 00:20 - 00000000 ____D C:\Program Files\Rockstar Games
2015-09-17 22:30 - 2015-04-15 00:20 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-09-17 22:22 - 2015-06-07 15:41 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-09-17 00:45 - 2015-07-29 13:51 - 01005662 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-17 00:39 - 2015-07-29 13:52 - 00000000 ____D C:\Users\Daniel
2015-09-17 00:39 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-17 00:39 - 2015-01-08 16:49 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-16 12:26 - 2015-07-10 05:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-09-16 12:10 - 2015-01-20 19:43 - 00004054 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001UA
2015-09-16 12:10 - 2015-01-20 19:43 - 00003678 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1832614277-906616445-1083069313-1001Core
2015-09-16 12:01 - 2015-01-10 14:25 - 00003984 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 12:01 - 2015-01-10 14:25 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 11:43 - 2015-07-29 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2015-09-12 04:31 - 2015-07-10 08:20 - 00247664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-12 04:30 - 2015-07-10 09:14 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-12 04:30 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-11 15:48 - 2015-07-29 14:06 - 00002376 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-10 15:44 - 2015-01-10 14:25 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2015-09-09 12:34 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-09 12:33 - 2015-01-12 18:07 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-09 09:52 - 2015-08-10 01:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeadZ Launcher
2015-09-09 00:19 - 2015-01-08 17:07 - 00000000 ____D C:\Users\Daniel\Documents\my games
2015-09-05 12:21 - 2015-05-27 01:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2015-09-05 02:20 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-09-03 22:30 - 2015-01-20 01:23 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-03 21:12 - 2015-01-08 22:07 - 00226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-09-03 21:10 - 2015-01-08 17:48 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-03 18:43 - 2015-01-20 00:52 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\vlc
2015-09-03 12:21 - 2015-01-08 19:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Arma 3
2015-09-03 10:23 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-03 00:48 - 2015-03-31 23:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\Arma 3 Launcher
2015-09-02 00:53 - 2015-07-29 14:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-02 00:45 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-01 13:45 - 2015-01-08 16:59 - 00000000 ____D C:\ProgramData\Skype
2015-09-01 13:43 - 2015-01-08 22:22 - 00076152 _____ C:\WINDOWS\system32\PnkBstrA.exe
2015-09-01 13:42 - 2015-01-08 22:07 - 00226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-09-01 13:19 - 2015-01-08 22:07 - 00075064 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-08-30 15:01 - 2015-01-18 17:28 - 00000000 ____D C:\ProgramData\Oracle
2015-08-30 13:34 - 2015-04-05 23:50 - 00000000 ____D C:\Program Files\Java
2015-08-30 13:34 - 2015-01-18 17:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-30 13:34 - 2015-01-18 17:28 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-30 13:33 - 2015-04-05 23:50 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-08-30 10:42 - 2015-07-05 20:33 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\deluge
2015-08-26 20:37 - 2015-07-29 14:52 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-26 20:37 - 2015-07-29 14:52 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-26 20:36 - 2015-07-29 14:52 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-26 20:36 - 2015-07-29 14:52 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 18:37 - 2015-01-12 18:07 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-24 20:17 - 2015-04-07 15:53 - 00000000 ____D C:\Users\Daniel\Documents\Mount&Blade Warband Savegames
2015-08-24 12:17 - 2015-07-08 19:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Gyazo
2015-08-24 10:42 - 2015-05-09 20:06 - 00000847 ____H C:\Users\Daniel\.swfinfo
2015-08-24 01:02 - 2015-03-23 23:21 - 00000000 ____D C:\Users\Daniel\Desktop\games
2015-08-23 10:45 - 2015-01-08 22:12 - 00000000 ____D C:\Users\Daniel\AppData\Local\PunkBuster
 
==================== Files in the root of some directories =======
 
2015-01-13 00:01 - 2015-01-13 00:01 - 14147584 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2015-01-10 16:52 - 2015-06-05 00:20 - 0002198 _____ () C:\Users\Daniel\AppData\Roaming\SpeedRunnersLog.txt
2015-05-08 11:19 - 2015-05-18 21:56 - 0003284 _____ () C:\Users\Daniel\AppData\Roaming\TargetInvocationLog.txt
2015-08-30 10:42 - 2015-08-30 10:42 - 0000218 _____ () C:\Users\Daniel\AppData\Local\recently-used.xbel
2015-08-25 21:10 - 2015-09-18 08:56 - 0007597 _____ () C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2015-07-29 13:47 - 2015-07-29 13:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-09-02 00:38 - 2015-09-02 01:42 - 0019535 _____ () C:\ProgramData\empty.ico
 
Some files in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\Nexus Mod Manager-0.60.3.exe
 

==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 

LastRegBack: 2015-09-21 01:38
 
==================== End of FRST.txt ============================
 
What can I do about this?
Link to post
Share on other sites

  • 2 weeks later...

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.