Hey, I ran HitmanPro. Detected FRST as false positive.
HitmanPro 3.7.9.221
www.hitmanpro.com
Computer name . . . . : XXXXX
Windows . . . . . . . : 6.3.0.9600.X64/4
User name . . . . . . : XXXXX\XXXXX
UAC . . . . . . . . . : Enabled
License . . . . . . . : Trial (17 days left)
Scan date . . . . . . : 2014-08-27 16:15:47
Scan mode . . . . . . : Normal
Scan duration . . . . : 4m 7s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No
Threats . . . . . . . : 0
Traces . . . . . . . : 2
Objects scanned . . . : 2.414.769
Files scanned . . . . : 22.789
Remnants scanned . . : 935.852 files / 1.456.128 keys
Suspicious files ____________________________________________________________
C:\Users\XXXXX\Desktop\FRST-OlderVersion\FRST64.exe
Size . . . . . . . : 2.101.760 bytes
Age . . . . . . . : 8.0 days (2014-08-19 17:14:29)
Entropy . . . . . : 7.5
SHA-256 . . . . . : 9F1800B31D22595C5CC7853BE2BF6ACC824059774CB83B1DB161BCB8CD6A0063
Needs elevation . : Yes
Fuzzy . . . . . . : 23.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Time indicates that the file appeared recently on this computer.
C:\Users\XXXXX\Desktop\FRST64.exe
Size . . . . . . . : 2.103.296 bytes
Age . . . . . . . : 3.7 days (2014-08-23 22:58:03)
Entropy . . . . . : 7.5
SHA-256 . . . . . : 1405F78FF116A9DC6E711F32582BCFBBE8B4B7EC5201E8E453CAC33824957D96
Needs elevation . : Yes
Source URL . . . . : hxxp://download.bleepingcomputer.com/dl/215de54f31d8bcae606cdad41a3e23fb/53f9005a/windows/security/security-utilities/f/farbar-recovery-scan-tool/64/FRST64.exe
Fuzzy . . . . . . : 27.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
The file is downloaded from the Internet to this computer.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Time indicates that the file appeared recently on this computer.
Forensic Cluster
-1.3s C:\Users\XXXXX\AppData\Local\Microsoft\Windows\INetCookies\P61W61YU.txt
-1.3s C:\Users\XXXXX\AppData\Local\Microsoft\Windows\INetCache\IE\ZLV9ZWQD\82[1].htm
-1.3s C:\Users\XXXXX\AppData\Local\Microsoft\Windows\INetCookies\9F4XK5YO.txt
-1.3s C:\Users\XXXXX\AppData\Local\Microsoft\Windows\INetCookies\9F4XK5YO.txt
-0.1s C:\Users\XXXXX\AppData\Local\Microsoft\Windows\INetCache\IE\I2RJ1WPS\FRST64[1].exe
0.0s C:\Users\XXXXX\Desktop\FRST64.exe
2.0s C:\Users\XXXXX\Desktop\FRST-OlderVersion\