ADVERTISEMENT

FRST.txt

Powered by Razer web/ Wirus z reklamami jak usunąć

Robiłem ADWcleaner i nic nie znalazł.


Download file - link to post

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015
Ran by Infekk (administrator) on INFEKK-PC on 17-06-2015 17:43:48
Running from C:\Users\Infekk\Downloads
Loaded Profiles: Infekk (Available Profiles: Infekk)
Platform: Windows 8.1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7575768 2014-05-14] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] = & gt; C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ProductUpdater] = & gt; C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [46592 2015-06-09] ()
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\Run: [Steam] = & gt; C:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\Run: [SteelSeries Engine] = & gt; C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\Run: [DAEMON Tools Lite] = & gt; C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\Run: [RGSC] = & gt; C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\Run: [Skype] = & gt; C:\Program Files (x86)\Skype\Phone\Skype.exe [31346784 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\MountPoints2: {974d3c92-fa41-11e4-8286-448a5bd1ebe6} - " E:\AutoRun.exe "
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\MountPoints2: {974d3d09-fa41-11e4-8286-448a5bd1ebe6} - " E:\AutoRun.exe "
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\MountPoints2: {974d3d39-fa41-11e4-8286-448a5bd1ebe6} - " E:\AutoRun.exe "
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\...\MountPoints2: {ff660a92-b8bc-11e4-825c-448a5bd1ebe6} - " E:\install.exe "
ShellIconOverlayIdentifiers: [00avast] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; No File
GroupPolicy: Group Policy on Chrome detected & lt; ======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction & lt; ======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-2383064507-221051407-2536449367-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp
URLSearchHook: HKLM-x32 - Default Value = {CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D}
SearchScopes: HKU\.DEFAULT - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype Click to Call for Internet Explorer - & gt; {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - & gt; C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Razor Web - & gt; {2e22e1c9-9ddb-40da-85c7-0753217fff76} - & gt; C:\Program Files (x86)\Razor Web\Extensions\2e22e1c9-9ddb-40da-85c7-0753217fff76.dll No File
BHO-x32: Skype Click to Call for Internet Explorer - & gt; {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - & gt; C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-25] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files\T-Mobile\InternetManager_H\OCx64\addon

Chrome:
=======
CHR Profile: C:\Users\Infekk\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\Infekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-05-25]
CHR Extension: (Steam inventory helper) - C:\Users\Infekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-06-13]
CHR Extension: (AgarioMods Evergreen Script) - C:\Users\Infekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2015-06-14]
CHR Extension: (Google Wallet) - C:\Users\Infekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-17]
CHR Extension: (Adblock Pro) - C:\Users\Infekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-05-25]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

Opera:
=======
OPR Extension: (Razor Web) - C:\Users\Infekk\AppData\Roaming\Opera Software\Opera Stable\Extensions\ljgajomlfccacbljbhocggijdgpablpc [2015-06-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-11-24] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-11-24] (Microsoft Corporation)
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
S2 Update Clock Hand; " C:\Program Files (x86)\Clock Hand\updateClockHand.exe " [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 athr; C:\Windows\system32\DRIVERS\athwnx.sys [3680256 2013-06-18] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2015-05-14] (Bytemobile, Inc.) [File not signed]
S3 DroidCam; C:\Windows\system32\DRIVERS\droidcam.sys [32568 2015-03-15] (Dev47Apps)
S3 DroidCamVideo; C:\Windows\system32\DRIVERS\droidcamvideo.sys [229176 2015-03-15] (Windows (R) Win 7 DDK provider)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-20] (Disc Soft Ltd)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-04-05] ()
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-06-17] ()
S3 huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [212992 2015-05-14] (Huawei Technologies Co., Ltd.)
S3 RTL8023x64; C:\Windows\system32\DRIVERS\Rtnic64.sys [51712 2013-06-18] (Realtek Semiconductor Corporation )
R3 SAlphamHid; C:\Windows\System32\drivers\SAlpham64.sys [39168 2014-10-08] (SteelSeries Corporation)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2015-05-14] (Bytemobile, Inc.) [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-11-24] (Microsoft Corporation)
S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-17 17:43 - 2015-06-17 17:44 - 00011573 _____ C:\Users\Infekk\Downloads\FRST.txt
2015-06-17 17:43 - 2015-06-17 17:43 - 00000000 ____D C:\FRST
2015-06-17 17:42 - 2015-06-17 17:42 - 02109952 _____ (Farbar) C:\Users\Infekk\Downloads\FRST64.exe
2015-06-17 14:17 - 2015-06-17 14:17 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\Malwarebytes
2015-06-17 14:15 - 2015-06-17 14:15 - 00001121 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-17 14:15 - 2015-06-17 14:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2015-06-17 14:15 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-17 14:13 - 2015-06-17 14:39 - 00021561 _____ C:\Windows\WindowsUpdate.log
2015-06-17 14:05 - 2015-06-17 14:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft
2015-06-17 14:05 - 2015-06-17 14:12 - 00000000 ____D C:\Program Files (x86)\Anvisoft
2015-06-17 13:59 - 2015-06-17 14:02 - 00043664 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2015-06-17 13:58 - 2015-06-17 13:58 - 00001306 _____ C:\Windows\system32\.crusader
2015-06-17 13:52 - 2015-06-17 13:58 - 00000000 ____D C:\ProgramData\HitmanPro
2015-06-17 12:21 - 2015-06-17 12:22 - 02605998 _____ C:\Users\Infekk\Desktop\csgo 2015-06-17 12-20-33-21.avi
2015-06-17 10:44 - 2015-06-17 10:44 - 02231296 _____ C:\Users\Infekk\Downloads\AdwCleaner.exe
2015-06-17 09:58 - 2015-06-17 10:38 - 00000000 ____D C:\Windows\system32\log
2015-06-16 23:43 - 2015-06-16 23:43 - 00000000 ____D C:\Users\Infekk\Documents\Freemake
2015-06-16 23:43 - 2015-06-16 23:43 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\RPEng
2015-06-16 23:43 - 2015-06-16 23:43 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-06-16 23:43 - 2015-06-16 23:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-06-16 23:43 - 2015-06-16 23:43 - 00000000 ____D C:\ProgramData\Freemake
2015-06-16 23:43 - 2015-06-16 23:43 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-06-16 23:37 - 2015-06-16 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2015-06-16 23:37 - 2015-06-16 23:37 - 00000000 ____D C:\Fraps
2015-06-16 16:39 - 2015-06-16 16:47 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\uTorrent
2015-06-01 20:25 - 2015-06-01 20:25 - 00002751 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
2015-06-01 20:25 - 2015-06-01 20:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-06-01 20:24 - 2015-06-01 20:24 - 00000000 ____D C:\Program Files (x86)\MSECache
2015-05-30 18:41 - 2015-06-04 14:47 - 00000080 _____ C:\Users\Infekk\AppData\Local???????????????????
2015-05-30 18:38 - 2015-05-30 18:38 - 00000000 ____D C:\ProgramData\ATI
2015-05-30 18:34 - 2015-05-30 18:34 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\library_dir
2015-05-30 18:32 - 2015-06-03 11:15 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-05-30 18:32 - 2015-05-30 18:32 - 00063792 _____ C:\Windows\SysWOW64\CCCInstall_201505301832487077.log
2015-05-30 18:32 - 2015-05-30 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-05-30 18:32 - 2015-05-30 18:32 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-05-30 18:31 - 2015-05-30 18:31 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-05-30 18:30 - 2015-05-30 18:31 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-05-30 18:29 - 2015-05-30 18:29 - 00059540 _____ C:\Windows\SysWOW64\CCCInstall_201505301829106589.log
2015-05-30 18:29 - 2015-05-30 18:29 - 00000000 ____D C:\Program Files (x86)\AMD

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-17 17:36 - 2015-02-17 21:42 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-17 17:08 - 2015-04-05 23:09 - 00000000 ____D C:\AdwCleaner
2015-06-17 17:05 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-17 16:59 - 2015-02-17 22:43 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-17 14:35 - 2015-02-17 21:40 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2383064507-221051407-2536449367-1001
2015-06-17 14:28 - 2015-02-18 04:30 - 00000000 ____D C:\Users\Infekk
2015-06-17 14:24 - 2015-02-17 21:42 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-17 14:24 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-17 14:15 - 2015-02-20 09:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-17 14:07 - 2015-05-14 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Manager
2015-06-17 14:07 - 2015-02-27 19:56 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Balabolka
2015-06-17 14:07 - 2015-02-20 09:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-06-17 14:07 - 2015-02-19 01:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2015-06-17 14:07 - 2015-02-18 04:20 - 00000000 ____D C:\Windows\Panther
2015-06-17 13:15 - 2015-02-17 22:12 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\TS3Client
2015-06-17 11:46 - 2015-02-17 21:41 - 00003992 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F65A6D55-918F-498E-892D-CE49B8B6A3B1}
2015-06-17 10:45 - 2015-03-12 00:58 - 00000000 ____D C:\Users\Infekk\Desktop\Programy
2015-06-17 10:00 - 2015-03-23 20:15 - 00000000 ____D C:\Users\Infekk\.thumbnails
2015-06-17 10:00 - 2015-03-11 11:18 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\Skype
2015-06-17 10:00 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2015-06-17 09:53 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-16 23:33 - 2015-05-05 15:22 - 00000000 ____D C:\Users\Infekk\Documents\Bandicam
2015-06-16 16:55 - 2015-03-15 00:18 - 00000000 ____D C:\ProgramData\AVAST Software
2015-06-16 06:16 - 2015-05-06 05:51 - 00000001 _____ C:\Windows\SysWOW64\SetupComponents.exe
2015-06-11 05:43 - 2015-02-17 22:43 - 00003874 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1424205796
2015-06-11 05:43 - 2015-02-17 22:43 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-06-11 05:43 - 2015-02-17 22:29 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-10 05:38 - 2015-02-17 21:45 - 00002209 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-08 05:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-05-30 18:43 - 2014-09-24 17:08 - 00005426 _____ C:\Windows\system32\PerfStringBackup.INI
2015-05-30 18:43 - 2014-09-24 16:35 - 00879358 _____ C:\Windows\system32\perfh015.dat
2015-05-30 18:43 - 2014-09-24 16:35 - 00187380 _____ C:\Windows\system32\perfc015.dat
2015-05-30 18:32 - 2015-02-17 21:50 - 00000000 ____D C:\Program Files\AMD
2015-05-30 18:29 - 2015-02-17 21:51 - 00000000 ____D C:\ProgramData\AMD
2015-05-30 18:26 - 2015-02-17 21:50 - 00000000 ____D C:\AMD
2015-05-28 12:08 - 2015-03-11 11:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-05-26 11:39 - 2015-05-06 11:18 - 00000000 ____D C:\Users\Infekk\AppData\Roaming\Audacity
2015-05-25 09:31 - 2015-02-17 21:42 - 00004048 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-25 09:31 - 2015-02-17 21:42 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

==================== Files in the root of some directories =======

2015-03-23 22:10 - 2015-03-23 22:10 - 0003744 _____ () C:\Users\Infekk\AppData\Local\recently-used.xbel
2015-02-17 23:10 - 2015-02-17 23:10 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-03-15 22:25 - 2015-03-15 22:27 - 0000028 _____ () C:\ProgramData\droidcam-settings

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe = & gt; File is digitally signed
C:\Windows\System32\wininit.exe = & gt; File is digitally signed
C:\Windows\explorer.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\explorer.exe = & gt; File is digitally signed
C:\Windows\System32\svchost.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\svchost.exe = & gt; File is digitally signed
C:\Windows\System32\services.exe = & gt; File is digitally signed
C:\Windows\System32\User32.dll = & gt; File is digitally signed
C:\Windows\SysWOW64\User32.dll = & gt; File is digitally signed
C:\Windows\System32\userinit.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\userinit.exe = & gt; File is digitally signed
C:\Windows\System32\rpcss.dll = & gt; File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys = & gt; File is digitally signed


LastRegBack: 2015-06-17 14:35

==================== End of log ============================