Jump to content

I think I'm infected... maybe autorun.inf?


leafsa

Recommended Posts

Since yesterday, a pop-up has been appearing from Avira that says that Device\HardDiskVolume1\Autorun.inf has been blocked.
I'm afraid that whatever my laptop has, it has been slowly eating up my free disk space.
 
I ran a scan with Malwarebytes Anti-Malware. I used Farbar Recovery Scan Tool. I uninstalled uTorrent.
Can someone help me?
 
 
 
 
This is the FRST.txt log:
 
 
 
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-01-2015
Ran by Selenia (administrator) on L on 30-01-2015 23:24:54
Running from C:\Users\Selenia\Desktop
Loaded Profiles: Selenia (Available profiles: Selenia)
Platform: Windows 7 Home Premium (X64) OS Language: Italiano (Italia)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Soluto) C:\Program Files\Soluto\SolutoLauncherService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSpt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Soluto) C:\Program Files\Soluto\Soluto.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe
(ALPS) C:\Program Files\Apoint\Apvfb.exe
(Flux Software LLC) C:\Users\Selenia\AppData\Local\FluxSoftware\Flux\flux.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9636896 2009-12-16] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [208384 2009-11-04] (Alps Electric Co., Ltd.)
HKLM\...\Run: [soluto] => c:\program files\soluto\soluto.exe [1229280 2013-02-03] (Soluto)
HKLM-x32\...\Run: [iAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2009-11-21] (Intel Corporation)
HKLM-x32\...\Run: [iSBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [320880 2009-08-26] (Sony Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [702768 2014-12-04] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
Winlogon\Notify\VESWinlogon-x32: VESWinlogon.dll [X]
HKU\S-1-5-21-472740110-1783112255-465138923-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-472740110-1783112255-465138923-1001\...\Run: [f.lux] => C:\Users\Selenia\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-472740110-1783112255-465138923-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
ShellIconOverlayIdentifiers: [01MemopalBackedUp] -> {8ED3CC2D-6BC2-43AD-8C43-F51FBB413AE6} => C:\Program Files\Avira Secure Backup\ShellExtensionx64\ShellExtension.dll No File
ShellIconOverlayIdentifiers: [02MemopalToBackup] -> {2CDD871E-60EB-40BD-9721-A1CB57042F75} => C:\Program Files\Avira Secure Backup\ShellExtensionx64\ShellExtension.dll No File
ShellIconOverlayIdentifiers: [03MemopalPartiallyBackedUp] -> {95DDC869-FC98-4D47-BD34-2EDC9AA09C01} => C:\Program Files\Avira Secure Backup\ShellExtensionx64\ShellExtension.dll No File
ShellIconOverlayIdentifiers-x32: [01MemopalBackedUp] -> {8ED3CC2D-6BC2-43AD-8C43-F51FBB413AE6} => C:\Program Files\Avira Secure Backup\ShellExtension\ShellExtension.dll No File
ShellIconOverlayIdentifiers-x32: [02MemopalToBackup] -> {2CDD871E-60EB-40BD-9721-A1CB57042F75} => C:\Program Files\Avira Secure Backup\ShellExtension\ShellExtension.dll No File
ShellIconOverlayIdentifiers-x32: [03MemopalPartiallyBackedUp] -> {95DDC869-FC98-4D47-BD34-2EDC9AA09C01} => C:\Program Files\Avira Secure Backup\ShellExtension\ShellExtension.dll No File
ShellIconOverlayIdentifiers-x32: [04MemopalError] -> {B9CA6E12-7975-4997-B5BD-CA12ECE0FEAD} => C:\Program Files\Avira Secure Backup\ShellExtension\ShellExtension.dll No File
BootExecute: autocheck autochk /k:C * 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
SearchScopes: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> {7131AB3A-5EAC-46C9-B308-68FE32A27D3E} URL = http://rover.ebay.com/rover/1/724-42445-16445-8/4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> {76445FCE-1891-47D4-B411-81FE97ECAAB1} URL = http://www.zinio.com/search/index.jsp?s={searchTerms}&rf=sonyie8search
SearchScopes: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> {E2FF1CE2-F0B3-45E2-A872-EE756F047349} URL = http://it.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=608946&p={searchTerms}
BHO: Expat Shield Class -> {3706EE7C-3CAD-445D-8A43-03EBC3B75908} -> C:\Program Files (x86)\Expat Shield\HssIE\ExpatIE_64.dll No File
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
Toolbar: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKU\S-1-5-21-472740110-1783112255-465138923-1001 -> No Name - {4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1} -  No File
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\syswow64\urlmon.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5DB63988-98C6-4312-8B36-AA4B2FAA958F}: [NameServer] 8.8.8.8,8.8.4.4
 
FireFox:
========
FF ProfilePath: C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default
FF SelectedSearchEngine: Google
FF Homepage: file:///C:/Users/Selenia/Desktop/sfondi/Soft%20Google%20Startpage/home.htm
FF Keyword.URL: hxxp://www.google.com/search?&q=
FF NetworkProxy: "http", "86.1.2.145"
FF NetworkProxy: "http_port", 8085
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameeu.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-472740110-1783112255-465138923-1001: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Selenia\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1312180-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKU\S-1-5-21-472740110-1783112255-465138923-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Selenia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-472740110-1783112255-465138923-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF user.js: detected! => C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Selenia\AppData\Roaming\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF SearchPlugin: C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\searchplugins\saveswatts.xml
FF Extension: Low Quality Flash - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\low_quality_flash@pie2k.com [2014-08-26]
FF Extension: EPUBReader - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2015-01-10]
FF Extension: CheckPlaces - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\checkplaces@andyhalford.com.xpi [2011-11-23]
FF Extension: Pupe Helper - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\chibiusa@gmail.com.xpi [2011-08-24]
FF Extension: ChromEdit Plus - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\chromeditplus@webdesigns.ms11.net.xpi [2013-01-18]
FF Extension: Personas Plus - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\personas@christopher.beard.xpi [2011-11-25]
FF Extension: Stratiform - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\Stratiform@SoapySpew.xpi [2013-01-01]
FF Extension: XKit - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\xkit@studioxenix.com.xpi [2013-05-29]
FF Extension: Stylish - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2011-08-28]
FF Extension: NoScript - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-03-30]
FF Extension: NoUn Buttons - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}.xpi [2013-01-01]
FF Extension: Adblock Plus - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-09-28]
FF Extension: User Agent Switcher - C:\Users\Selenia\AppData\Roaming\Mozilla\Firefox\Profiles\964cr8og.default\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2013-03-28]
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSuggestURL: Default -> 
CHR Profile: C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (MEGA) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-01-28]
CHR Extension: (Adblock Plus) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-28]
CHR Extension: (Pulsanti Barra) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\depodjmgamlkfeokfapjnkbmjlkdhjhm [2015-01-28]
CHR Extension: (Tampermonkey) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-01-28]
CHR Extension: (Empty New Tab Page) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpjamkmjmigaoobjbekmfgabipmfilij [2015-01-28]
CHR Extension: (Stylish) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2015-01-28]
CHR Extension: (Poupee Helper) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllcfmkookkmkcedcnbdhcpmmeflmilc [2015-01-28]
CHR Extension: (XKit) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpfgeeomkfdefkckijiabdbogjkdaecd [2015-01-28]
CHR Extension: (Hola Better Internet) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-01-28]
CHR Extension: (Google Wallet) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-28]
CHR Extension: (Stylebot) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiaejidbmkiecgbjeifoejpgmdaleoha [2015-01-29]
CHR Extension: (No more Tumblr players) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Default\Extensions\olffebgbihkemhnlpeficnplfoiabljj [2015-01-28]
CHR Profile: C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4
CHR Extension: (Presentazioni Google) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-28]
CHR Extension: (Documenti Google) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-28]
CHR Extension: (Google Drive) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-28]
CHR Extension: (YouTube) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-28]
CHR Extension: (Ricerca Google) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-28]
CHR Extension: (Fogli Google) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-28]
CHR Extension: (Google Wallet) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-28]
CHR Extension: (Gmail) - C:\Users\Selenia\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-28]
CHR HKLM-x32\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [Not Found]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [431920 2014-12-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [431920 2014-12-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [993584 2014-12-04] (Avira Operations GmbH & Co. KG)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4225592 2011-01-19] (INCA Internet Co., Ltd.) [File not signed]
S3 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2011-05-04] ()
S4 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [257936 2010-08-12] (Sony Corporation)
S3 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
S3 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
S3 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
S4 SOHDBSvr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [70952 2009-10-15] (Sony Corporation)
S4 SOHPlMgr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [91432 2009-10-15] (Sony Corporation)
R2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [183264 2013-02-03] (Soluto)
S3 SolutoRemoteService; C:\Program Files\Soluto\SolutoRemoteService.exe [1239552 2013-02-03] (Soluto) [File not signed]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2010-06-17] (Microsoft Corporation) [File not signed]
S4 VAIO Entertainment TV Device Arbitration Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [69632 2009-09-14] (Sony Corporation) [File not signed]
S4 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [642416 2009-09-14] (Sony Corporation)
S4 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [821760 2009-11-25] (Sony Corporation) [File not signed]
S4 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [1223024 2010-04-09] (Sony Corporation)
S4 VzCdbSvc; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [206336 2009-09-14] (Sony Corporation) [File not signed]
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
R3 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [627992 2013-12-17] (Wacom Technology, Corp.)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-10-14] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131608 2014-10-14] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-04-08] (DT Soft Ltd)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [7778176 2009-12-16] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [244736 2009-12-16] (Intel® Corporation) [File not signed]
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2005-01-04] (INCA Internet Co., Ltd.) [File not signed]
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [513080 2011-03-30] () [File not signed]
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-11-12] ()
U3 aij7y5zy; C:\Windows\System32\Drivers\aij7y5zy.sys [0 ] (Intel Corporation) <==== ATTENTION (zero size file/folder)
S3 ALSysIO; \??\C:\Users\Selenia\AppData\Local\Temp\ALSysIO64.sys [X]
R3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 dump_wmimmc; \??\C:\Program Files\Gpotato\Flyff\GameGuard\dump_wmimmc.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U3 X6va001; \??\C:\Users\Selenia\AppData\Local\Temp\001A9C1.tmp
S3 X6va002; \??\C:\Users\Selenia\AppData\Local\Temp\002E90.tmp [X]
S3 X6va003; \??\C:\Users\Selenia\AppData\Local\Temp\003C42E.tmp [X]
S3 X6va005; \??\C:\Users\Selenia\AppData\Local\Temp\005D05A.tmp [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-30 23:19 - 2015-01-30 23:25 - 00025357 _____ () C:\Users\Selenia\Desktop\FRST.txt
2015-01-30 22:49 - 2015-01-30 23:25 - 00000000 ___DC () C:\FRST
2015-01-30 21:40 - 2015-01-30 21:43 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-30 21:40 - 2015-01-30 21:42 - 00001062 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-30 21:40 - 2015-01-30 21:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-30 21:40 - 2015-01-30 21:42 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-30 21:40 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-30 21:40 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-30 21:34 - 2015-01-30 21:35 - 02130432 _____ (Farbar) C:\Users\Selenia\Desktop\FRST64.exe
2015-01-30 21:11 - 2015-01-30 21:12 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Selenia\Downloads\mbam-setup-2-0-3-1025.exe
2015-01-29 21:13 - 2015-01-29 21:12 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-01-29 21:11 - 2015-01-29 21:11 - 00000000 ____D () C:\Program Files\Java
2015-01-29 20:57 - 2015-01-29 21:04 - 93427112 _____ (Oracle Corporation) C:\Users\Selenia\Downloads\jre-8u31-windows-x64.exe
2015-01-29 20:48 - 2015-01-29 20:48 - 00639400 _____ (Oracle Corporation) C:\Users\Selenia\Downloads\chromeinstall-8u31.exe
2015-01-27 22:06 - 2015-01-30 22:40 - 00001722 _____ () C:\Windows\PFRO.log
2015-01-27 02:44 - 2015-01-27 02:44 - 00000000 ____D () C:\Users\Selenia\Downloads\WordsforEvil_PC_1.1.2
2015-01-27 02:39 - 2015-01-27 02:43 - 71023969 _____ () C:\Users\Selenia\Downloads\WordsforEvil_PC_1.1.2.zip
2015-01-26 22:16 - 2015-01-26 22:16 - 00101184 _____ (Amazon.com, Inc.) C:\Windows\system32\stkMonitor.dll
2015-01-26 22:13 - 2015-01-26 22:14 - 04927768 _____ (Amazon.com, Inc.) C:\Users\Selenia\Downloads\SendToKindleForPC-installer.exe
2015-01-26 21:57 - 2015-01-26 21:57 - 00022223 _____ () C:\Users\Selenia\Downloads\ineptpdf_v01.4_plugin.zip
2015-01-26 21:56 - 2015-01-26 21:56 - 00011351 _____ () C:\Users\Selenia\Downloads\ineptepub_v01.7_plugin.zip
2015-01-26 21:37 - 2015-01-26 21:37 - 00000135 _____ () C:\Windows\SysWOW64\debug.log
2015-01-26 20:44 - 2015-01-26 20:44 - 01404847 _____ () C:\Users\Selenia\Downloads\North Country Confessional, The - Craig C. Charles.mobi
2015-01-25 04:46 - 2015-01-25 04:46 - 00233734 _____ () C:\Users\Selenia\Downloads\Logo 1.eps
2015-01-25 04:31 - 2015-01-25 04:31 - 01057670 _____ () C:\Users\Selenia\Downloads\FROM-THE-ASHES.mobi
2015-01-25 03:05 - 2015-01-30 22:40 - 00000504 _____ () C:\Windows\setupact.log
2015-01-25 03:05 - 2015-01-25 03:05 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-24 23:06 - 2015-01-24 23:06 - 00186275 _____ () C:\Users\Selenia\Downloads\speechwriter_edited_.prc
2015-01-19 13:56 - 2015-01-19 13:56 - 00610679 _____ () C:\Users\Selenia\Downloads\The Labyrinth by Dorian Zari - Dorian Zari.mobi
2015-01-18 19:19 - 2015-01-18 19:19 - 00299101 _____ () C:\Users\Selenia\Downloads\Fantasy_of_Frost__Kelly_St_Clare MOBI.mobi
2015-01-18 19:18 - 2015-01-18 19:18 - 01302206 _____ () C:\Users\Selenia\Downloads\Avant Nation - C. D. Verhoff.mobi
2015-01-17 00:01 - 2015-01-17 00:01 - 01396737 _____ () C:\Users\Selenia\Downloads\14851-mobi.mobi
2015-01-16 23:50 - 2015-01-16 23:50 - 00593604 _____ () C:\Users\Selenia\Downloads\Wizards, Woods and Gods Review Copy.zip
2015-01-15 17:31 - 2015-01-15 17:31 - 00458033 _____ () C:\Users\Selenia\Downloads\Dragon Dodgers - V. R. Cardoso.mobi
2015-01-15 16:23 - 2015-01-15 16:23 - 00093263 _____ () C:\Users\Selenia\Downloads\trojan-wolf-savages.epub
2015-01-15 16:21 - 2015-01-15 16:21 - 00196108 _____ () C:\Users\Selenia\Downloads\trojan-wolf-savages.mobi
2015-01-13 17:15 - 2015-01-13 17:17 - 69140480 _____ () C:\Users\Selenia\Downloads\calibre-64bit-2.16.0.msi
2015-01-13 16:19 - 2015-01-13 16:20 - 03657874 _____ () C:\Users\Selenia\Downloads\Tempting Will McGlashen by Liz Everly.mobi
2015-01-12 21:44 - 2015-01-12 21:44 - 10058724 _____ () C:\Users\Selenia\Downloads\Keaghan in the Tales of Dreamside - Batt.mobi
2015-01-12 20:26 - 2015-01-12 20:26 - 00656821 _____ () C:\Users\Selenia\Downloads\We Were Kings (1).mobi
2015-01-11 18:16 - 2015-01-11 18:16 - 02346020 _____ () C:\Users\Selenia\Downloads\The+Agony+of+the+Gods.mobi
2015-01-11 16:02 - 2015-01-11 16:02 - 00566274 _____ () C:\Users\Selenia\Downloads\Poisoned Waters - Ermisenda Alvarez.mobi
2015-01-11 15:09 - 2015-01-30 05:17 - 00000000 ____D () C:\Users\Selenia\Desktop\ontstarve
2015-01-10 09:25 - 2015-01-10 09:26 - 02634664 _____ () C:\Users\Selenia\Downloads\Solace-A-Novel-Kindle.mobi
2015-01-09 18:48 - 2015-01-09 18:48 - 02145116 _____ () C:\Users\Selenia\Downloads\Losing_My_Balance_by_Helena_Newbury.mobi
2015-01-09 18:29 - 2015-01-09 18:29 - 05298704 _____ () C:\Users\Selenia\Downloads\When+Love+Comes.mobi
2015-01-09 12:40 - 2015-01-09 12:40 - 00122581 _____ () C:\Users\Selenia\Downloads\trojan-wolf-olympia.epub
2015-01-09 10:55 - 2015-01-09 10:55 - 00248535 _____ () C:\Users\Selenia\Downloads\trojan-wolf-olympia.mobi
2015-01-08 09:52 - 2015-01-08 09:52 - 01798638 _____ () C:\Users\Selenia\Downloads\tools_v6.1.0.zip
2015-01-07 10:43 - 2015-01-07 10:43 - 04957964 _____ () C:\Users\Selenia\Downloads\Hopebreaker - Dean F. Wilson.mobi
2015-01-06 18:33 - 2015-01-06 18:34 - 00276910 _____ () C:\Users\Selenia\Downloads\Book of Love - Constance Bretes.mobi
2015-01-06 18:32 - 2015-01-06 18:32 - 00694573 _____ () C:\Users\Selenia\Downloads\TheOlympusProjectKindle.prc
2015-01-06 14:57 - 2015-01-06 14:57 - 00577886 _____ () C:\Users\Selenia\Downloads\GhostBox.mobi
2015-01-06 14:28 - 2015-01-06 14:28 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\Trine2
2015-01-06 13:59 - 2015-01-06 13:59 - 00000222 _____ () C:\Users\Selenia\Desktop\Girls Like Robots.url
2015-01-04 07:12 - 2015-01-04 07:12 - 01362598 _____ () C:\Users\Selenia\Downloads\lost_fragment.zip
2015-01-04 02:35 - 2015-01-04 02:36 - 00788131 _____ () C:\Users\Selenia\Downloads\wendy_shimeji_by_automb-d7ics12.zip
2015-01-03 02:27 - 2015-01-03 02:52 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\To the Moon - Freebird Games
2015-01-03 02:24 - 2015-01-03 02:24 - 00000222 _____ () C:\Users\Selenia\Desktop\To the Moon.url
2015-01-02 07:45 - 2015-01-02 07:45 - 01766705 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6307.mobi
2015-01-02 07:45 - 2015-01-02 07:45 - 01473761 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6259.mobi
2015-01-02 07:45 - 2015-01-02 07:45 - 01340660 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6569.mobi
2015-01-02 07:41 - 2015-01-02 07:41 - 01622605 _____ () C:\Users\Selenia\Downloads\feedbooks_book_3374.mobi
2015-01-02 07:41 - 2015-01-02 07:41 - 01266553 _____ () C:\Users\Selenia\Downloads\feedbooks_book_4570.mobi
2015-01-02 02:44 - 2015-01-02 02:44 - 00000000 ____D () C:\Users\Selenia\Documents\2K Play
2015-01-02 02:28 - 2015-01-02 02:32 - 36935967 _____ () C:\Users\Selenia\Downloads\ds_printable_diorama.zip
2015-01-02 00:08 - 2015-01-02 00:08 - 00000000 ____D () C:\Users\Selenia\Documents\Klei
2015-01-01 22:56 - 2015-01-01 22:56 - 00000221 _____ () C:\Users\Selenia\Desktop\The Misadventures of P.B. Winterbottom.url
2015-01-01 22:47 - 2015-01-01 22:47 - 00000222 _____ () C:\Users\Selenia\Desktop\Don't Starve.url
2015-01-01 03:32 - 2015-01-01 03:32 - 01161761 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6836.mobi
2015-01-01 03:31 - 2015-01-01 03:31 - 01530756 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6882.mobi
2015-01-01 03:31 - 2015-01-01 03:31 - 00952055 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6858.mobi
2015-01-01 03:30 - 2015-01-01 03:30 - 01235025 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6971.mobi
2015-01-01 03:29 - 2015-01-01 03:29 - 01274644 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6969.mobi
2015-01-01 03:29 - 2015-01-01 03:29 - 00978777 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6336.mobi
2015-01-01 03:27 - 2015-01-01 03:27 - 01853260 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6284.mobi
2015-01-01 03:27 - 2015-01-01 03:27 - 01316291 _____ () C:\Users\Selenia\Downloads\feedbooks_book_6320.mobi
2015-01-01 03:27 - 2015-01-01 03:27 - 00150265 _____ () C:\Users\Selenia\Downloads\feedbooks_book_3886.mobi
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-30 23:16 - 2010-05-11 17:05 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\uTorrent
2015-01-30 23:09 - 2010-02-21 18:37 - 00730048 _____ () C:\Windows\system32\perfh010.dat
2015-01-30 23:09 - 2010-02-21 18:37 - 00145930 _____ () C:\Windows\system32\perfc010.dat
2015-01-30 23:09 - 2009-07-14 06:13 - 01654790 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-30 22:48 - 2009-07-14 05:45 - 00019760 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-30 22:48 - 2009-07-14 05:45 - 00019760 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-30 22:44 - 2012-03-03 09:45 - 01210491 _____ () C:\Windows\WindowsUpdate.log
2015-01-30 22:40 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-30 22:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\IME
2015-01-30 22:30 - 2010-02-21 09:51 - 00001162 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-30 21:40 - 2011-12-24 18:35 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-30 21:06 - 2012-05-19 11:04 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-30 21:06 - 2011-07-13 21:25 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-30 09:16 - 2010-05-11 16:35 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\Skype
2015-01-30 08:05 - 2012-12-30 19:29 - 00000000 ____D () C:\Users\Selenia\Desktop\manga
2015-01-30 02:08 - 2014-04-24 11:44 - 00000000 ____D () C:\Users\Selenia\Desktop\anime
2015-01-29 23:49 - 2013-10-31 03:10 - 00000000 ____D () C:\Users\Selenia\Desktop\free
2015-01-29 21:14 - 2014-02-02 08:38 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-29 21:12 - 2013-12-12 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-01-29 15:30 - 2014-08-18 12:14 - 00000000 ____D () C:\Users\Selenia\Documents\My Kindle Content
2015-01-29 15:23 - 2012-04-27 00:17 - 00000000 ____D () C:\Users\Selenia\Desktop\ebook
2015-01-27 22:47 - 2014-11-21 21:57 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-27 01:02 - 2010-05-20 21:47 - 00000132 _____ () C:\Users\Selenia\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-01-27 00:39 - 2014-12-05 05:25 - 00000000 ____D () C:\Users\Selenia\AppData\Local\Adobe
2015-01-27 00:15 - 2012-12-31 15:14 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\vlc
2015-01-26 22:20 - 2014-12-07 19:30 - 00000000 ____D () C:\Users\Selenia\AppData\Local\Amazon
2015-01-26 22:16 - 2014-08-18 12:14 - 00000000 ____D () C:\Program Files (x86)\Amazon
2015-01-26 21:37 - 2010-05-11 16:19 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\Adobe
2015-01-24 22:43 - 2012-12-30 04:56 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-24 22:22 - 2010-12-30 00:21 - 00000000 ____D () C:\Users\Selenia\Tracing
2015-01-24 22:22 - 2010-09-27 17:00 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\DAEMON Tools Lite
2015-01-24 19:09 - 2012-04-23 11:47 - 00000000 ____D () C:\Users\Selenia\Desktop\materiale uni
2015-01-16 16:58 - 2012-01-14 02:53 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2015-01-15 01:00 - 2010-02-21 09:53 - 00000372 _____ () C:\Windows\Tasks\McDefragTask.job
2015-01-13 17:24 - 2014-03-24 00:10 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\calibre
2015-01-13 17:21 - 2014-03-24 00:10 - 00000930 _____ () C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
2015-01-13 17:21 - 2014-03-24 00:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2015-01-13 17:20 - 2014-03-24 00:09 - 00000000 ____D () C:\Program Files\Calibre2
2015-01-12 11:44 - 2014-12-17 18:29 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-01-11 14:47 - 2010-06-09 15:13 - 00354688 ____C () C:\test.xml
2015-01-09 18:23 - 2010-02-21 09:47 - 00000000 ____D () C:\ProgramData\Adobe
2015-01-03 02:19 - 2014-12-26 17:46 - 00000000 ____D () C:\Users\Selenia\AppData\Roaming\The Path
2015-01-01 01:00 - 2010-02-21 09:53 - 00000348 _____ () C:\Windows\Tasks\McQcTask.job
 
==================== Files in the root of some directories =======
 
2012-12-30 07:23 - 2012-12-30 07:34 - 0000132 _____ () C:\Users\Selenia\AppData\Roaming\Adobe BMP Format CS5 Prefs
2010-06-02 15:54 - 2012-05-14 06:49 - 0000132 _____ () C:\Users\Selenia\AppData\Roaming\Adobe GIF Format CS5 Prefs
2010-05-20 21:47 - 2015-01-27 01:02 - 0000132 _____ () C:\Users\Selenia\AppData\Roaming\Adobe PNG Format CS5 Prefs
2011-06-27 02:24 - 2011-06-27 02:24 - 0000000 _____ () C:\Users\Selenia\AppData\Roaming\wklnhst.dat
2010-08-30 02:52 - 2014-12-15 23:54 - 0007597 _____ () C:\Users\Selenia\AppData\Local\Resmon.ResmonCfg
2012-04-27 14:36 - 2012-04-27 14:36 - 0017408 _____ () C:\Users\Selenia\AppData\Local\WebpageIcons.db
2012-01-18 16:42 - 2012-01-18 16:42 - 0000000 _____ () C:\Users\Selenia\AppData\Local\{2B564126-1970-4345-87E0-B021E4DB975D}
2012-05-03 22:23 - 2012-05-03 22:30 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
 
Some content of TEMP:
====================
C:\Users\Selenia\AppData\Local\Temp\avgnt.exe
C:\Users\WOUTempAdmin\AppData\Local\Temp\avgnt.exe
C:\Users\WOUTempAdmin.L\AppData\Local\Temp\avgnt.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe
[2010-05-12 13:57] - [2012-12-30 08:51] - 2870272 ____A (Microsoft Corporation) E3330DF604A9F54FF6DE5E0BC92D0629
 
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-01-28 19:43
 
==================== End Of Log ============================
 
 
 
 
This is the Addition.txt log:
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-01-2015
Ran by Selenia at 2015-01-30 23:26:48
Running from C:\Users\Selenia\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Spybot - Search and Destroy (Disabled - Out of date) {1EAF1D03-5480-F3B2-EB14-11F0F5EE2699}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.2.151.49 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Italiano (HKLM-x32\...\{AC76BA86-7AD7-1040-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Aggiornamento della sicurezza per Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (KB2518870) (HKLM-x32\...\{25B473DB-CC8D-384A-ACE7-7CFB119B7E03}.KB2518870) (Version: 1 - Microsoft Corporation)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version:  - ALPS ELECTRIC CO., LTD.)
Amazon Kindle (HKLM-x32\...\Amazon Kindle) (Version:  - Amazon)
Amazon Send to Kindle (HKLM-x32\...\SendToKindle) (Version: 1.0.1.240 - Amazon)
Among Ripples (HKLM-x32\...\Steam App 341720) (Version:  - Eat Create Sleep)
Anime Studio Debut 8.2 (HKLM-x32\...\ASD820_is1) (Version: 8.2 - Smith Micro Software, Inc.)
Anki (HKLM-x32\...\Anki) (Version:  - )
ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.278 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{8D1163BE-5ECD-0303-87F7-35ED38BBB2E1}) (Version: 3.0.750.0 - ATI Technologies, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Bamboo Dock (HKLM-x32\...\Bamboo Dock) (Version: 4.1 - Wacom Co., Ltd.)
Bamboo Dock (x32 Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Tablets Tutorial (x32 Version: 3.0.20 - Wacom) Hidden
calibre 64bit (HKLM\...\{31ED17F1-B223-404B-9415-C31404A24CE9}) (Version: 2.16.0 - Kovid Goyal)
ccc-core-static (x32 Version: 2010.0113.2257.41150 - Nome società) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
Click to Disc MergeModules x64 (Version: 1.0.14230 - Sony Corporation) Hidden
Comical 0.8 (HKLM-x32\...\Comical_is1) (Version:  - James Athey)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
f.lux (HKU\S-1-5-21-472740110-1783112255-465138923-1001\...\Flux) (Version:  - )
Facemoods (x32 Version: 2.4370.00214 - Aedge Performance BCN SL) Hidden
Gestione alimentazione VAIO (HKLM-x32\...\{803E4FA5-A940-4420-B89D-A8BC2E160247}) (Version: 5.0.0.11300 - Sony Corporation)
Girls Like Robots (HKLM-x32\...\Steam App 263460) (Version:  - Popcannibal)
Go! Go! Nippon! ~My First Trip to Japan~ (HKLM-x32\...\Steam App 251870) (Version:  - OVERDRIVE)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.93 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Il cane di terracotta (HKLM-x32\...\Il cane di terracotta) (Version:  - )
Il ladro di merendine (HKLM-x32\...\Il ladro di merendine) (Version:  - )
Impostazioni di Programma di monitoraggio contenuto VAIO (HKLM-x32\...\{23825B69-36DF-4DAD-9CFD-118D11D80F16}) (Version: 2.4.1.09180 - Sony Corporation)
Impostazioni funzioni originali VAIO (HKLM-x32\...\{A63E7492-A0BC-4BB9-89A7-352965222380}) (Version: 2.0.0.07010 - Sony Corporation)
ImTOO HD Video Converter (HKLM-x32\...\ImTOO HD Video Converter) (Version: 7.1.0.20120222 - ImTOO)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.4.1001 - Intel Corporation)
Intel® Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.01.1002 - Intel Corporation)
Japanese Fonts Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5760-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version:  - )
K-Lite Codec Pack 10.0.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.5 - )
LEGO® Harry Potter™: Anni 1-4 (HKLM-x32\...\{C5A8DF48-580B-44D3-B2B2-E965A9368F28}) (Version: 1.0.0.0 - WB Games)
LEGO® Harry Potter™: Years 5-7 (HKLM-x32\...\{5C5A944F-096E-4ADD-B8E8-887F18BA6228}) (Version: 1.0.0.0 - WB Games)
Long Live the Queen (HKLM-x32\...\GOGPACKLLTQ_is1) (Version: 2.1.0.5 - GOG.com)
Magical Drop V (HKLM-x32\...\Steam App 204960) (Version:  - Golgoth Studio)
Malwarebytes Anti-Malware versione 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Manga Studio Debut 4.0 (HKLM-x32\...\{3D8D1A54-1A82-4876-985C-56986B47F15D}) (Version: 4.0.5 - Smith Micro)
Media Gallery (HKLM-x32\...\{DD88F979-FA58-41AC-980C-A6E1A82B61D9}) (Version: 1.1.1.11200 - Sony Corporation)
Media Gallery (x32 Version: 1.1.1.11200 - Sony Corporation) Hidden
Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (HKLM\...\Microsoft .NET Framework 4 Client Profile ITA Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended - Language Pack (ITA) (HKLM\...\Microsoft .NET Framework 4 Extended ITA Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 x64 English (HKLM\...\{F83779DF-E1F5-43A2-A7BE-732F856FADB7}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{34A08914-7A33-4040-A959-1577BF5AFF8A}) (Version: 9.7.0621 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 7.36 - mIRC Co. Ltd.)
Mobipocket Reader 6.2 (HKLM-x32\...\{342126E1-173C-4585-BFBE-3EBDD20E3E9E}) (Version: 6.2.608 - Mobipocket.com)
Mozilla Firefox 28.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
NVIDIA PhysX (HKLM-x32\...\{8A809006-C25A-4A3A-9DAB-94659BCDB107}) (Version: 9.10.0224 - NVIDIA Corporation)
Octoshape Streaming Services (HKU\S-1-5-21-472740110-1783112255-465138923-1001\...\Octoshape Streaming Services) (Version:  - Octoshape ApS)
ONE Full Voice English Localisation (HKLM-x32\...\English Patch for ONE FV Unyuu~) (Version: 1.4 - ONE Localisation Team)
OpenOffice.org 3.3 (HKLM-x32\...\{3E171899-0175-47CC-84C4-562ACDD4C021}) (Version: 3.3.9567 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 9.4.12.2807 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.0.00.10260 - Sony Corporation)
PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{88C252C8-A7EE-4B60-BF74-8E5919A8048F}) (Version: 1.0.00.09250 - Sony Corporation)
PMB VAIO Edition Guide (x32 Version: 1.0.00.09250 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 3.2.00.16060 - Sony Corporation)
PMB VAIO Edition plug-in (Click to Disc) (x32 Version: 3.2.00.16060 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Image Optimizer) (HKLM-x32\...\InstallShield_{1873FFC1-FDCB-47E1-B7C7-F418211E3530}) (Version: 1.0.00.10150 - Sony Corporation)
PMB VAIO Edition plug-in (VAIO Image Optimizer) (x32 Version: 1.0.00.10150 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 2.2.00.15250 - Sony Corporation)
PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.2.00.15250 - Sony Corporation) Hidden
Quartett! Standard Edition (HKLM-x32\...\InstallShield_{133FA1F4-EEFC-4E25-B7D0-FB9DE2EB2B2E}) (Version: 1.00.0000 - Littlewitch / MONOCHROMA Inc.)
Quartett! Standard Edition (x32 Version: 1.00.0000 - Littlewitch / MONOCHROMA Inc.) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 2.2 r1116 - )
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.5992 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5992 - Realtek Semiconductor Corp.)
Rimozione di CopyTrans Suite solamente (HKU\S-1-5-21-472740110-1783112255-465138923-1001\...\CopyTrans Suite) (Version: 2.37 - WindSolutions)
Setting Utility Series (HKLM-x32\...\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}) (Version: 5.1.0.11200 - Sony Corporation)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Soluto (HKLM\...\{70675CAC-C262-4765-BBCA-FB0D66252AF4}) (Version: 1.3.1149.0 - Soluto)
Sony Home Network Library (HKLM-x32\...\{D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}) (Version: 2.0.1.10160 - Sony Corporation)
Sony Home Network Library (x32 Version: 2.0.1.10160 - Sony Corporation) Hidden
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.0.12 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Supporto trasferimento VAIO (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.1.2.06030 - Sony Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Tagaini Jisho (HKLM-x32\...\Tagaini Jisho) (Version:  - )
The Misadventures of P.B. Winterbottom (HKLM-x32\...\Steam App 40930) (Version:  - The Odd Gentlemen)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
To the Moon (HKLM-x32\...\Steam App 206440) (Version:  - Freebird Games)
Transformice (HKLM-x32\...\Transformice) (Version: 1.0.0 - UNKNOWN)
Transformice (x32 Version: 1.0.0 - UNKNOWN) Hidden
TreeSize Free V3.0.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.0.1 - JAM Software)
Trine 2 Demo (HKLM-x32\...\Steam App 204260) (Version:  - Frozenbyte)
Unity Web Player (HKU\S-1-5-21-472740110-1783112255-465138923-1001\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update 4.0.3 for Microsoft .NET Framework 4 Client Profile (KB2600211) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600211) (Version: 1 - Microsoft Corporation)
Update 4.0.3 for Microsoft .NET Framework 4 Extended (KB2600211) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2600211) (Version: 1 - Microsoft Corporation)
VAIO Care (HKLM-x32\...\{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}) (Version: 6.3.0.09020 - Sony Corporation)
VAIO Care (x32 Version: 6.3.0.09020 - Sony Corporation) Hidden
VAIO Content Metadata Intelligent Analyzing Manager (HKLM-x32\...\{4882EBF5-CA37-4EF4-BCB8-9B0E78B907D0}) (Version: 3.6.0.09250 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (x32 Version: 3.6.0.09250 - Sony Corporation) Hidden
VAIO Content Metadata Intelligent Network Service Manager (HKLM-x32\...\{4427F384-B5BE-4769-B7D0-C784FC321EB1}) (Version: 3.6.0.09080 - Sony Corporation)
VAIO Content Metadata Intelligent Network Service Manager (x32 Version: 3.6.0.09080 - Sony Corporation) Hidden
VAIO Content Metadata Manager Settings (HKLM-x32\...\{12D0BE8D-538C-4AB1-86DE-C540308F50DA}) (Version: 3.6.0.09240 - Sony Corporation)
VAIO Content Metadata Manager Settings (x32 Version: 3.6.0.09240 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (HKLM-x32\...\{291FB4BF-EEC7-4CF9-8469-F39ED1DBC4D8}) (Version: 3.6.0.09080 - Sony Corporation)
VAIO Content Metadata XML Interface Library (x32 Version: 3.6.0.09080 - Sony Corporation) Hidden
VAIO Content Monitoring Settings (x32 Version: 2.4.1.09180 - Sony Corporation) Hidden
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.1.0.10160 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.2.0.09150 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.2.0.09150 - Sony Corporation) Hidden
VAIO DVD Menu Data (HKLM-x32\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 2.1.00.15050 - Sony Corporation)
VAIO Entertainment Platform (HKLM-x32\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 3.6.0.09150 - Sony Corporation)
VAIO Entertainment Platform (x32 Version: 3.6.0.09150 - Sony Corporation) Hidden
VAIO Event Service (HKLM-x32\...\{C7477742-DDB4-43E5-AC8D-0259E1E661B1}) (Version: 5.1.0.12010 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 1.2.0.09240 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 1.0.0.10290 - Sony Corporation)
VAIO Hardware Diagnostics (x32 Version: 3.9.1 - Sony Corporation) Hidden
VAIO Marketing Tools (HKLM-x32\...\MarketingTools) (Version:  - Sony Corporation)
VAIO Media plus (HKLM-x32\...\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}) (Version: 2.0.1.10160 - Sony Corporation)
VAIO Media plus Opening Movie (HKLM-x32\...\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}) (Version: 1.2.0.09100 - Sony Corporation)
VAIO Movie Story MergeModules x64 (Version: 1.0.14240 - Sony Corporation) Hidden
VAIO Movie Story Template Data (HKLM-x32\...\InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 2.2.00.15250 - Sony Corporation)
VAIO Movie Story Template Data (x32 Version: 2.0.00.09240 - Sony Corporation) Hidden
VAIO Original Function Settings (x32 Version: 2.0.0.07010 - Sony Corporation) Hidden
VAIO Personalization Manager (HKLM-x32\...\{A95187EF-BCF4-4468-B501-C0BAB976ADD1}) (Version: 2.0.0.06220 - Sony Corporation)
VAIO Personalization Manager (x32 Version: 2.0.0.06220 - Sony Corporation) Hidden
VAIO Premium Partners (HKLM-x32\...\VAIO Premium Partners) (Version: 1.0 - Sony Europe)
VAIO Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.2.2.3 - Sony Corporation)
VAIO Quick Web Access (x32 Version: 1.2.2.3 - Sony Corporation) Hidden
VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.1.0.11250 - Sony Corporation)
VAIO Update (HKLM-x32\...\{5BEE8F1F-BD32-4553-8107-500439E43BD7}) (Version: 5.1.1.04090 - Sony Corporation)
VAIO Wallpaper Contents (HKLM-x32\...\{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}) (Version: 2.0.0.06010 - Sony Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.3-2 - Wacom Technology Corp.)
Waterfox 34.0.1 (x64 en-US) (HKLM\...\Waterfox 34.0.1 (x64 en-US)) (Version: 34.0.1 - Mozilla)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.500 - Broadcom Corporation)
Windows Driver Package - Broadcom Bluetooth  (09/09/2009 6.2.0.9405) (HKLM\...\930E4792BDAEAFB62A9514EE7578775658A5D07C) (Version: 09/09/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Sync (HKLM-x32\...\{C89F2092-B9E4-46FD-83BB-C6F2D7838CED}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinRAR gestione archivi (HKLM\...\WinRAR archiver) (Version:  - )
Without Within (HKLM-x32\...\Steam App 345650) (Version:  - InvertMouse)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Selenia\AppData\Roaming\Dropbox\bin\Dropbox.exe No File
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{092dfa86-5807-5a94-bf3b-5a53ba9e5308}\InprocServer32 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\ooofilt_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\propertyhdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-472740110-1783112255-465138923-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
 
==================== Restore Points  =========================
 
28-01-2015 19:51:29 Punto di controllo pianificato
30-01-2015 23:17:16 Removed はがきデザインキット
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2014-12-04 01:34 - 00001747 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
0.0.0.0   rad.msn.com
127.0.0.1 rad.msn.com
127.0.0.1 live.rads.msn.com
127.0.0.1 ads1.msn.com
127.0.0.1 static.2mdn.net
127.0.0.1 g.msn.com
127.0.0.1 a.ads2.msads.net
127.0.0.1 b.ads2.msads.net
127.0.0.1 ac3.msn.co
127.0.0.1            rad.msn.com
127.0.0.1             ad-emea.doubleclick.net
127.0.0.1            apps.skype.com
127.0.0.1     rad.msn.com
127.0.0.1     g.msn.com
127.0.0.1     live.rads.msn.com
127.0.0.1     ads1.msn.com
127.0.0.1     static.2mdn.net
127.0.0.1     ads2.msads.net
127.0.0.1     a.ads2.msads.net
127.0.0.1     b.ads2.msads.net
127.0.0.1     ad.doubleclick.net
127.0.0.1     ac3.msn.com
127.0.0.1     ec.atdmt.com
127.0.0.1     msntest.serving-sys.com
127.0.0.1     sO.2mdn.net
127.0.0.1     aka-cdn-ns.adtech.de
127.0.0.1     secure.flashtalking.com
 
There are 1 more lines.
 
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {08A409D2-958C-4635-9052-6F618CC1D6EC} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-11-30] (Sony Corporation)
Task: {0CC61109-0977-4176-B97B-9A99674684E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {124A79D5-1CDB-4A3B-B5EB-F005E775E0D0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {17C20AEB-7D0C-48B5-A597-9CA18517C59C} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2009-11-20] (Sony Corporation)
Task: {268311F8-FEDD-43CA-B6DA-8B0FC1D8CC41} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {26CCD455-36E6-4FBA-8296-A11CB0845F40} - System32\Tasks\SONY\VAIO Update\VAIO Update 5 => C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe [2010-04-09] (Sony Corporation)
Task: {2C0061CF-059D-4098-8C6D-1748079A4658} - System32\Tasks\McQcTask => c:\PROGRA~2\mcafee\mqc\QcConsol.exe
Task: {34B14289-AF66-4381-9426-4EDE84CAEF9A} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-472740110-1783112255-465138923-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {37D9F153-8FAC-4251-AF23-C213CA6C38F0} - System32\Tasks\{35CBC71F-1F85-4C1D-A863-36277C1AE420} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-10-01] (Skype Technologies S.A.)
Task: {436E7FBA-8A8F-425E-8F53-4D709FDAB19C} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-11-30] (Sony Corporation)
Task: {4861554F-F400-43BD-BDDC-5AC090A91841} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-11-30] (Sony Corporation)
Task: {48B2B104-4E2E-4BE6-8431-618D05472C55} - System32\Tasks\{322FE0A9-A3AC-460B-945A-410E1BE60226} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=5.0.0.152.259&LastError=12002
Task: {49507400-5A16-487D-9296-F05DA98A5AAF} - System32\Tasks\VAIO Care Support => C:\Program Files\Sony\VAIO Care\VCSpt.exe [2010-08-12] (Sony Corporation)
Task: {495C0FB1-F626-4853-859E-1D13E49B87F7} - System32\Tasks\{5C84E756-30A2-4A01-AAE6-FBBC71FB29AD} => pcalua.exe -a C:\Users\Selenia\AppData\Roaming\FissaSearch\FissaUninstaller.exe -c /quiet
Task: {6E1F4942-FE4D-4B45-9713-A0E94D46CCF6} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2009-07-14] (Microsoft Corporation)
Task: {76392BEB-CBDF-4A0D-A609-DC05A7E4E4D8} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2009-11-20] (Sony Corporation)
Task: {82379108-B715-484D-A4B9-C0C37063E696} - System32\Tasks\AdobeAAMUpdater-1.0-L-Selenia => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {977D5498-1F89-4506-8F3E-2FD940AFF920} - System32\Tasks\SONY\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2009-09-24] (Sony Corporation)
Task: {A05C4897-A884-4BEC-8C93-81E71198D386} - System32\Tasks\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2010-09-02] (Sony Corporation)
Task: {B3555321-2E8B-4A58-A7C2-EC4539B2EE9B} - System32\Tasks\{0C9F5F0D-93F5-4F0B-8A12-AECC4689A694} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=5.0.0.152.259&LastError=12002
Task: {BCAB9C67-8A77-42B8-A0EE-293F38612CA9} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-472740110-1783112255-465138923-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {DCAF6C84-AE1C-4BEB-A919-43DB6B728C31} - System32\Tasks\McDefragTask => c:\PROGRA~2\mcafee\mqc\QcConsol.exe
Task: {F1607F7C-19DA-4123-A8B7-15C33823272D} - System32\Tasks\VCOneClick => C:\Program Files\Sony\VAIO Care\VCOneClick.exe [2010-08-12] ()
Task: {FF41C638-82BA-4EB2-809B-EE72924FD5F0} - System32\Tasks\{1559EFF1-6257-4AC0-9A4A-B694D18ED8BC} => pcalua.exe -a "C:\Users\Selenia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K21XAU2B\Firefox%20Setup%203.6.3[1].exe" -d C:\Users\Selenia\Desktop
Task: C:\Windows\Tasks\AppleSoftwareUpdate.job => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8b1b3a81640e.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfed43f19e61b9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff1c330d1e4c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\McDefragTask.job => C:\Windows\system32\defrag.exe
Task: C:\Windows\Tasks\McQcTask.job => c:\PROGRA~2\mcafee\mqc\QcConsol.exe
 
==================== Loaded Modules (whitelisted) =============
 
2013-03-16 20:51 - 2013-12-17 02:17 - 01356568 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
2013-02-04 11:26 - 2013-02-04 11:26 - 00237568 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGAppControlPlugin#\d2bc6eb33a7ce7a4efd4cf3c1b79d58c\PCGAppControlPluginLoader.ni.dll
2013-02-04 11:25 - 2013-02-04 11:25 - 01665024 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGPreCompiled\dbf62882e09603d0146cdad15ddb8cb0\PCGPreCompiled.ni.dll
2013-02-03 19:32 - 2013-02-03 19:32 - 00091192 _____ () C:\Program Files\Soluto\PCGDllExportInspector.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00274432 _____ () C:\Program Files\Sony\VAIO Care\CRM\ManagedVAIORecoveryMedia.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00171520 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIORecovery.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00070656 _____ () C:\Program Files\Sony\VAIO Care\CRM\Logging.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00058880 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIOCommon.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00214016 _____ () C:\Program Files\Sony\VAIO Care\CRM\OsServices.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00043008 _____ () C:\Program Files\Sony\VAIO Care\CRM\PluginFactory.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00043520 _____ () C:\Program Files\Sony\VAIO Care\CRM\XMLTools.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00059392 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIOInstallAppsDrivers.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00156160 _____ () C:\Program Files\Sony\VAIO Care\CRM\InstallDB.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00138240 _____ () C:\Program Files\Sony\VAIO Care\CRM\InstallationTools.dll
2010-09-28 15:59 - 2010-08-05 03:53 - 00024576 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIOUtility.dll
2010-01-29 22:55 - 2009-11-21 00:19 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\Services: ACDaemon => 3
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: btwdins => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PMBDeviceInfoProvider => 3
MSCONFIG\Services: Roxio UPnP Renderer 10 => 3
MSCONFIG\Services: Roxio Upnp Server 10 => 2
MSCONFIG\Services: SampleCollector => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SOHCImp => 2
MSCONFIG\Services: SOHDBSvr => 2
MSCONFIG\Services: SOHDms => 2
MSCONFIG\Services: SOHDs => 2
MSCONFIG\Services: SOHPlMgr => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\Services: VAIO Entertainment TV Device Arbitration Service => 3
MSCONFIG\Services: VCFw => 2
MSCONFIG\Services: VcmIAlzMgr => 2
MSCONFIG\Services: VcmINSMgr => 3
MSCONFIG\Services: VcmXmlIfHelper => 3
MSCONFIG\Services: VSNService => 2
MSCONFIG\Services: VUAgent => 3
MSCONFIG\Services: VzCdbSvc => 2
MSCONFIG\Services: WinDefend => 3
MSCONFIG\Services: WTabletServiceCon => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: BambooCore => C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
MSCONFIG\startupreg: CloneCDTray => "C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Desura => C:\Program Files (x86)\Desura\desura.exe -autostart
MSCONFIG\startupreg: DivX Download Manager => "C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe" start
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: MarketingTools => C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe
MSCONFIG\startupreg: NortonOnlineBackupReminder => "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
MSCONFIG\startupreg: Octoshape Streaming Services => "C:\Users\Selenia\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
MSCONFIG\startupreg: PMBVolumeWatcher => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SHTtray.exe => C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Java\jre6\bin\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: UnlockerAssistant => "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe"
MSCONFIG\startupreg: Wisdom-soft ScreenHunter 5.1 Free => 0
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-472740110-1783112255-465138923-500 - Administrator - Disabled)
Guest (S-1-5-21-472740110-1783112255-465138923-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-472740110-1783112255-465138923-1004 - Limited - Enabled)
Selenia (S-1-5-21-472740110-1783112255-465138923-1001 - Administrator - Enabled) => C:\Users\Selenia
 
==================== Faulty Device Manager Devices =============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (01/30/2015 11:10:26 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: È in corso l'interruzione del servizio Windows Search. Problema dell'indicizzatore, Fase di ripristino non riuscita.
 
Contesto: applicazione Windows, catalogo SystemIndex
 
Dettagli:
Chiusura del servizio Gatherer in corso.  (HRESULT : 0x80040d23) (0x80040d23)
 
Error: (01/30/2015 11:10:26 PM) (Source: Windows Search Service) (EventID: 3602) (User: )
Description: L'ID errore 1 si è verificato nella fese di recupero di Windows Search. Riavviare il servizio. Se l'errore persiste, ricreare l'indice.
 
Contesto: applicazione Windows, catalogo SystemIndex
 
Dettagli:
Chiusura del servizio Gatherer in corso.  (HRESULT : 0x80040d23) (0x80040d23)
 
Error: (01/30/2015 11:03:50 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Servizio Windows Search: impossibile creare il nuovo indice di ricerca. Errore interno <10, 0x80071a91, Impossibile salvare le modifiche a Crawl Scope Manager: >.
 
Error: (01/30/2015 11:03:50 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Servizio Windows Search: impossibile elaborare l'elenco di percorsi inclusi ed esclusi. Errore: <20, 0x80071a91, "">.
 
Error: (01/30/2015 11:03:33 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Servizio Windows Search: impossibile creare il nuovo indice di ricerca. Errore interno <10, 0x80071a91, Impossibile salvare le modifiche a Crawl Scope Manager: >.
 
Error: (01/30/2015 11:03:32 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Servizio Windows Search: impossibile elaborare l'elenco di percorsi inclusi ed esclusi. Errore: <20, 0x80071a91, "">.
 
Error: (01/30/2015 11:02:06 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Servizio Windows Search: impossibile creare il nuovo indice di ricerca. Errore interno <10, 0x80071a91, Impossibile salvare le modifiche a Crawl Scope Manager: >.
 
Error: (01/30/2015 11:02:06 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Servizio Windows Search: impossibile elaborare l'elenco di percorsi inclusi ed esclusi. Errore: <20, 0x80071a91, "">.
 
Error: (01/30/2015 11:01:58 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Servizio Windows Search: impossibile creare il nuovo indice di ricerca. Errore interno <10, 0x80071a91, Impossibile salvare le modifiche a Crawl Scope Manager: >.
 
Error: (01/30/2015 11:01:58 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Servizio Windows Search: impossibile elaborare l'elenco di percorsi inclusi ed esclusi. Errore: <20, 0x80071a91, "">.
 
 
System errors:
=============
Error: (01/30/2015 11:24:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Windows Search. Questo evento si è già verificato 35 volta(e).
 
Error: (01/30/2015 11:24:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Windows Search terminato con l'errore: 
%%6801
 
Error: (01/30/2015 11:24:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Windows Search. Questo evento si è già verificato 34 volta(e).
 
Error: (01/30/2015 11:24:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Windows Search terminato con l'errore: 
%%6801
 
Error: (01/30/2015 11:24:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Windows Search. Questo evento si è già verificato 33 volta(e).
 
Error: (01/30/2015 11:24:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Windows Search terminato con l'errore: 
%%6801
 
Error: (01/30/2015 11:23:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Windows Search. Questo evento si è già verificato 32 volta(e).
 
Error: (01/30/2015 11:23:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Windows Search terminato con l'errore: 
%%6801
 
Error: (01/30/2015 11:22:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Windows Search. Questo evento si è già verificato 31 volta(e).
 
Error: (01/30/2015 11:22:50 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Windows Search terminato con l'errore: 
%%6801
 
 
Microsoft Office Sessions:
=========================
Error: (01/30/2015 11:10:26 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Contesto: applicazione Windows, catalogo SystemIndex
 
Dettagli:
Chiusura del servizio Gatherer in corso.  (HRESULT : 0x80040d23) (0x80040d23)
Fase di ripristino non riuscita
 
Error: (01/30/2015 11:10:26 PM) (Source: Windows Search Service) (EventID: 3602) (User: )
Description: Contesto: applicazione Windows, catalogo SystemIndex
 
Dettagli:
Chiusura del servizio Gatherer in corso.  (HRESULT : 0x80040d23) (0x80040d23)
1
 
Error: (01/30/2015 11:03:50 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: 100x80071a91Impossibile salvare le modifiche a Crawl Scope Manager:
 
Error: (01/30/2015 11:03:50 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 200x80071a91
 
Error: (01/30/2015 11:03:33 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: 100x80071a91Impossibile salvare le modifiche a Crawl Scope Manager:
 
Error: (01/30/2015 11:03:32 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 200x80071a91
 
Error: (01/30/2015 11:02:06 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: 100x80071a91Impossibile salvare le modifiche a Crawl Scope Manager:
 
Error: (01/30/2015 11:02:06 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 200x80071a91
 
Error: (01/30/2015 11:01:58 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: 100x80071a91Impossibile salvare le modifiche a Crawl Scope Manager:
 
Error: (01/30/2015 11:01:58 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 200x80071a91
 
 
CodeIntegrity Errors:
===================================
  Date: 2011-07-02 10:38:10.819
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:38:10.803
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:38:10.784
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:38:10.768
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:37:22.020
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:37:22.004
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:37:21.987
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:37:21.969
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:36:37.635
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2011-07-02 10:36:37.619
  Description: Impossibile verificare l'integrita dell'immagine del file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core i3 CPU M 330 @ 2.13GHz
Percentage of memory in use: 34%
Total physical RAM: 3950.1 MB
Available physical RAM: 2584.76 MB
Total Pagefile: 7898.34 MB
Available Pagefile: 6202.79 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:455.34 GB) (Free:86.19 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7557AEB9)
Partition 1: (Not Active) - (Size=10.3 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=455.3 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

 

Link to post
Share on other sites

  • Root Admin

Unfortunately you have a lot of pirated software on this system. As such if you wish to receive help you will need to remove all pirated software from the system.

 

This topic will now be closed due to evidence of cracked or pirated software on this system.

Piracy Policy
 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.