Jump to content

Recommended Posts

# AdwCleaner v5.016 - Creato file registro eventi 01/11/2015 in 23:50:53

# Aggiornato 01/11/2015 da Xplode

# Database : 2015-11-01.2 [server]

# Sistema operativo : Windows 7 Home Premium Service Pack 1 (x86)

# Nome utente : Gakutenou - FROSTIE

# In esecuzione da : C:\Documents\Downloads\adwcleaner_5.016.exe

# Opzione : Analisi

# Supporto : http://toolslib.net/forum

***** [ Servizi ] *****

***** [ Cartelle ] *****

***** [ File ] *****

***** [ DLLs ] *****

***** [ Collegamenti ] *****

***** [ Attività pianificate ] *****

***** [ Registry ] *****

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{04F3C4CF-8DCD-4D80-92B5-6A016E316869}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{07202B0D-149C-4568-90DF-ACC2B4057809}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0722A2AC-4CF8-4310-AFEE-F87AA9BE10AA}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11F09AFE-75AD-4E52-AB43-E09E9351CE17}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{13B58989-8D66-4F69-922F-B608C38397C1}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1631550F-191D-4826-B069-D9439253D926}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{19BA983C-1D6E-4373-8675-C4371D0440AA}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1A1B64F9-2033-49BF-A3B9-0FE0F1953BDC}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1A6DC111-B030-4C3E-BE65-299284128B91}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1E905554-CF1D-4C5B-9085-A74F8E76A042}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1ED65C88-1259-484B-A9FA-6731E0D15743}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{291A109C-1B6A-4E04-8538-DF15E9F599C3}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{293A63F7-C3B6-423A-9845-901AC0A7EE6E}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2D891923-34B7-4186-9B47-752624535DC1}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3475D2C4-BBD1-4255-A70D-4125A4D30956}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{397CFDD8-762F-44D4-9517-E3969F89639E}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3A6BE320-DC9B-4D24-A6E8-621B81544F4B}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3C490BF5-4244-4310-B4A7-3361F288DAC5}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{41069220-F72A-40EA-A8F3-BCD5E1FBC8F0}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{416AE1CB-7257-484A-B912-AEBC7FDAD4CE}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{467013BB-D67E-45BE-A7D7-C29E3CCA8AAD}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4A0BA746-D4D6-41A6-81EF-413E52B5F8D6}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4AD44D3E-7316-4251-B754-9B10EC96AF92}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4AE33511-8993-448C-8BA7-69E252D69207}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4F383657-A595-4DF9-9AB3-FF69312BE9CC}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{547395D9-934A-CED6-B851-F238C86079E5}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{558B5DEA-A789-4BDE-A83F-2046EE1F64ED}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{57F9FEF0-6EAE-4030-A68A-30FDC38B1B13}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{586D895F-13B4-4202-8C5D-F075F2505676}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5911488E-9D1E-40EC-8CBB-06B231CC153F}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{59802B67-952A-45A2-A5D4-054417ED4A2C}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5BE1ED16-E6DD-4C4E-A596-6CFD5EE7C1EE}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5DE59E4B-12D4-4BF0-B3C0-B1E8730DC70B}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{61E0EF7A-9BC0-45EA-9B2F-F3E9F02692BD}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6704E2EA-6213-4D17-BB3D-4AE9E3609536}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{69A72A8A-84ED-4A75-8CE7-263DBEF3E5D3}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6D301CB8-19E8-4EA1-A648-63E43F577CD0}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6E13D095-45C3-4271-9475-F3B48227DD9F}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6FACFC3D-5C5E-4A12-828F-5F9CBA84CF17}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{703740C1-0F1A-4CEC-A4DF-D78DB0158477}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{70C6E9DE-F30E-4A40-8A6F-9572C2328320}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{759EE566-C608-434F-A186-DDB68BB1C724}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7A66EB91-F7D3-4DE2-8CA9-12C12AF3D5F2}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7DA17D5A-5718-4130-A605-FC316C827836}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7FF99715-3016-4381-84CE-E4E4C9673020}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{8270927A-FB8B-4647-8E21-C9459BB2610D}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{82EA3E77-7BD2-4744-A8F2-670770767EC5}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{84395E42-9FF9-4B85-9264-B1762D069593}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{856E12B5-22D7-4E22-9ACA-EA9A008DD65B}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{91C1AE56-D2C9-4017-8BF1-75EA182CEB38}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{963B125B-8B21-49A2-A3A8-E37092276531}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{99079A25-328F-4BD4-BE04-00955ACAA0A7}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9D717F81-9148-4F12-8568-69135F087DB0}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9E09CCCC-5C2B-4E45-8BF7-401B9181BFF2}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A0E8BC7D-6959-40B6-8E05-204D9768AD6E}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A5877FA8-A875-41DB-AEF5-B1124CEF74B6}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A7543596-01C2-4323-B1C9-BF0FCC7833DE}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A83C3565-302C-4BF8-B000-6B6F1811D892}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AA74D58F-ACD0-450D-A85E-6C04B171C044}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AB6BD08C-DB6B-4F02-8A22-4BD343E990FF}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AB720781-0670-4E46-B82E-376AEF228F25}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{ACC01A56-70E3-472E-9C4F-83B1DA817DD8}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{ADE1FF98-B82B-4954-B447-0E513C675441}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B1DF652F-3A33-4F9F-B809-59870C4E9027}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B278D9F8-0FA9-465E-9938-0C392605D8E3}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B6EF6C45-5E8D-4C3B-B580-A5073261A381}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B7D3F515-9DBD-4C56-A743-89D5C0927443}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B939CF93-F2CB-443D-956C-DC523D85C9DB}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{BFF6582B-F558-4964-B4C7-10BFBA9B8790}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{C0A13BA0-B498-46EE-8DE0-B66FEC9FB86E}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{C23B756A-BD9F-4CA6-ADED-17AB8CCF3E8B}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{C4BF6897-41A2-454B-AC3B-437F30BEA671}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CBF53489-AD8D-4637-965A-413861EEC7CF}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CC01FC6C-2319-A88B-FCF7-416288B4E61A}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CD5B3EA2-522A-45B2-84A4-FCBEF03E8237}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CF23C8EF-82FA-4524-9B69-952794B18314}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D281251E-9D68-4B62-B751-64DFE15FCD6A}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D9291F9E-7010-4D7A-8DF6-455DEEF8EF51}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DA742A73-CFA7-4DE2-BF28-1FC51CF214BC}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DB536AF2-E422-402D-B7FD-887297F1A198}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DE4E75D3-60AA-4F02-A0E4-C8A40576574C}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DFEFCDEE-CF1A-4FC8-89AF-189327213627}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E2E7733E-F86C-4A47-BEF1-7A6268831EE1}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E2E94F8D-4323-4943-A269-2E9EF6280434}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E8DAAA30-6CAA-4B58-9603-8E54238219E2}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{EA4AF226-01C2-442D-B204-7B55EFD072F1}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{EB4A577D-BCAD-4B1C-8AF2-9A74B8DD3431}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{F4FE8DB4-7FC9-4C50-A25D-033A02D36298}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{F52C6F92-7033-438F-BE30-20C87E2D9978}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{F9E44926-2497-46F3-8A25-928136AC079E}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{FC36B0BD-27F0-4CDD-8AB1-50651EFC3EFD}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{FF6439F4-B6D5-41A9-97B6-69D650D265FD}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11111111-1111-1111-1111-110011431152}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AE48C704-8876-4EB2-9227-6CA5382694C5}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D3626E66-B13B-C628-ACDF-BDABCFA265E1}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0CB66BA8-5E1F-4963-93D1-E1D6B78FE9A2}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E99D4D0C-EB54-46AF-B62A-3AA1F31D53E5}

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4D367733-AFF9-4943-9757-D37DAD8F33EB}

***** [ Browser web ] *****

########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [14178 byte] ##########

(Subsequent scans turned up clean - MBAM Chameleon and JRT scans resulted clean)

Link to post
Share on other sites

(Scan was performed after ADW, JRT and MBAM scans, rebooting after the first two - I'm aware of the Adobe entry in the hosts file, I haven't been able to remove it yet for personal reasons)

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:31-10-2015

Ran by Gakutenou (administrator) on FROSTIE (02-11-2015 10:56:29)

Running from C:\Documents\Downloads

Loaded Profiles: Gakutenou (Available Profiles: Gakutenou)

Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Italiano (Italia)

Internet Explorer Version 11 (Default browser: FF)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe

(AMD) C:\Windows\System32\atiesrxx.exe

(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchService.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Microsoft Corporation) C:\Windows\System32\wisptis.exe

(Comodo) C:\Program Files\COMODO\Dragon\dragon_updater.exe

(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

(Microsoft Corporation) C:\Windows\System32\wisptis.exe

(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe

(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe

(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe

(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe

(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe

(Advanced Micro Devices Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\MOM.exe

(The Pidgin developer community) C:\Program Files\Pidgin\pidgin.exe

(Dropbox, Inc.) C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Advanced Micro Devices Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\CCC.exe

(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe

(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1713152 2010-02-10] (VIA)

HKLM\...\Run: [AdobeCS4ServiceManager] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)

HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1361088 2015-08-07] (COMODO)

HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2015-03-31] (Apple Inc.)

HKLM\...\Run: [startCCC] => C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-09-04] (Advanced Micro Devices, Inc.)

HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2015-09-11] (Apple Inc.)

HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-22] (Oracle Corporation)

HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\Run: [Pidgin] => C:\Program Files\Pidgin\pidgin.exe [60176 2014-11-23] (The Pidgin developer community)

HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\Run: [Dropbox Update] => C:\Users\Gakutenou\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-19] (Dropbox, Inc.)

HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\MountPoints2: {c21ebcb2-55c1-11e4-9d1e-0015834d078b} - E:\CMADownloader.exe

HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\MountPoints2: {e963ec6a-0c8e-11e0-a8f4-0002720a4462} - E:\Setup.exe

HKU\S-1-5-21-272638289-1113591862-871824825-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [878592 2010-11-20] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)

Startup: C:\Users\Gakutenou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-10-17]

ShortcutTarget: Dropbox.lnk -> C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 activate.adobe.com

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 62.101.93.101 83.103.25.250

Tcpip\..\Interfaces\{6D0F3120-29BF-4C8E-8D62-D7ECF0110863}: [NameServer] 156.154.70.25,156.154.71.25

Tcpip\..\Interfaces\{6D0F3120-29BF-4C8E-8D62-D7ECF0110863}: [DhcpNameServer] 192.168.1.254 62.101.93.101 83.103.25.250

Tcpip\..\Interfaces\{D02B0216-D50C-4AD5-9A71-15CB1ACDA42E}: [DhcpNameServer] 192.168.1.1

Internet Explorer:

==================

HKU\S-1-5-21-272638289-1113591862-871824825-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.it/

HKU\S-1-5-21-272638289-1113591862-871824825-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://it.msn.com/?ocid=iehp

SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-21-272638289-1113591862-871824825-1000 -> {852D8FC4-0542-4AC4-874C-C0B27AC721F7} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}

BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)

BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)

FireFox:

========

FF ProfilePath: C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default

FF DefaultSearchEngine: Yahoo

FF Session Restore: -> is enabled.

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()

FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)

FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]

FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)

FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.4 -> C:\Program Files\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)

FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.5 -> C:\Program Files\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)

FF Plugin: @wacom.com/wtPlugin,version=2.0.0.1 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2011-05-31] (Wacom)

FF Plugin HKU\S-1-5-21-272638289-1113591862-871824825-1000: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2011-05-31] (Wacom)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-09-11] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-09-11] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-09-11] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-09-11] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-09-11] (Apple Inc.)

FF Extension: BarTab Lite X - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\bartablitex@szabolcs.hubai.xpi [2015-06-03]

FF Extension: Ghostery - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\firefox@ghostery.com.xpi [2015-09-19]

FF Extension: Tumblr Savior - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\jid1-W5guVoyeUR0uBg@jetpack.xpi [2015-05-29]

FF Extension: The Addon Bar (restored) - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\the-addon-bar@GeekInTraining-GiT.xpi [2015-05-29]

FF Extension: Session Manager - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2015-10-30]

FF Extension: X-notifier - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2015-10-27] [not signed]

FF Extension: NoScript - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-10-26]

FF Extension: LJlogin - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{ad4ee9e5-49c7-4589-acf3-db9fa76a95c9}.xpi [2011-10-26] [not signed]

FF Extension: Adblock Plus - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-24]

FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2015-10-16] [not signed]

FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2015-10-16] [not signed]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4353840 2015-09-08] (COMODO)

S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664704 2015-08-07] (COMODO)

R2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [1984696 2015-10-14] (Comodo)

S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2012-07-22] (Flexera Software, Inc.)

S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)

R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

S3 npggsvc; C:\Windows\system32\GameMon.des [4101624 2011-03-14] (INCA Internet Co., Ltd.) [File not signed]

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ATHDFU; C:\Windows\System32\Drivers\AthDfu.sys [43680 2011-03-31] (Windows ® Win 7 DDK provider) [File not signed]

R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17064 2015-08-05] (COMODO)

R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [626776 2015-08-05] (COMODO)

R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41736 2015-08-05] (COMODO)

S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)

R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91176 2015-08-05] (COMODO)

R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [94936 2015-10-22] (Malwarebytes)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-22] (Malwarebytes)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2015-11-02] (Malwarebytes)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-22] (Malwarebytes Corporation)

R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [13216 2009-07-16] ()

R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-12-21] () [File not signed]

R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1119232 2010-01-11] (VIA Technologies, Inc.)

S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [465408 2009-07-14] (Microsoft Corporation)

R3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [22104 2015-07-28] (SplitmediaLabs Limited)

S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X]

S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X]

S3 btath_avdt; system32\drivers\btath_avdt.sys [X]

S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]

S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X]

S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X]

S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X]

S3 BtFilter; system32\DRIVERS\btfilter.sys [X]

S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]

S3 XDva403; \??\C:\Windows\system32\XDva403.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-02 10:55 - 2015-11-02 10:56 - 00000000 ____D C:\FRST

2015-11-01 13:36 - 2015-11-01 13:36 - 00001001 _____ C:\Users\Public\Desktop\qBittorrent.lnk

2015-11-01 13:36 - 2015-11-01 13:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent

2015-11-01 13:32 - 2015-11-01 13:32 - 00012022 _____ C:\Users\Gakutenou\Desktop\To LOVEる-とらぶる-ダークネス2nd [第2巻] [720p].torrent

2015-10-28 10:08 - 2015-10-28 10:08 - 00001067 _____ C:\Users\Public\Desktop\XSplit Broadcaster.lnk

2015-10-28 10:08 - 2015-10-28 10:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit

2015-10-25 13:22 - 2015-11-02 09:58 - 00000239 _____ C:\Users\Gakutenou\BullseyeCoverageError.txt

2015-10-25 13:22 - 2015-10-25 13:22 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\join.me.launcher

2015-10-24 13:40 - 2015-10-24 13:53 - 00001546 _____ C:\Users\Public\Desktop\Quake.lnk

2015-10-24 13:40 - 2015-10-24 13:40 - 00001574 _____ C:\Users\Public\Desktop\Quake - Scourge of Armagon.lnk

2015-10-24 13:40 - 2015-10-24 13:40 - 00001568 _____ C:\Users\Public\Desktop\Quake - Dissolution of Eternity.lnk

2015-10-22 23:46 - 2015-10-22 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack

2015-10-22 23:46 - 2015-10-22 23:46 - 00000000 ____D C:\Program Files\Combined Community Codec Pack

2015-10-22 21:26 - 2015-10-22 21:26 - 00000000 ____D C:\Program Files\Common Files\Java

2015-10-18 23:59 - 2015-10-18 23:59 - 00000000 ____D C:\Users\Gakutenou\Documents\ARC SYSTEM WORKS

2015-10-17 00:38 - 2015-10-17 00:38 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

2015-10-16 10:21 - 2015-11-02 10:11 - 00002679 _____ C:\Windows\setupact.log

2015-10-16 10:21 - 2015-10-22 20:51 - 00001770 _____ C:\Windows\PFRO.log

2015-10-16 10:21 - 2015-10-16 10:21 - 00000000 _____ C:\Windows\setuperr.log

2015-10-16 09:47 - 2015-10-16 10:16 - 00000000 ____D C:\Program Files\Mozilla Firefox

2015-10-15 21:38 - 2015-11-02 10:39 - 00000327 _____ C:\DelFix.txt

2015-10-15 13:18 - 2015-10-15 13:18 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2015-10-15 13:18 - 2015-10-15 13:18 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2015-10-15 13:18 - 2015-10-15 13:18 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2015-10-15 13:18 - 2015-10-15 13:18 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2015-10-15 13:18 - 2015-10-15 13:18 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2015-10-15 13:18 - 2015-10-15 13:18 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2015-10-15 13:18 - 2015-10-15 13:18 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2015-10-13 18:39 - 2015-10-13 18:39 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll

2015-10-13 18:39 - 2015-10-13 18:39 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll

2015-10-13 18:38 - 2015-10-13 18:39 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 03990976 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe

2015-10-13 18:38 - 2015-10-13 18:38 - 03936192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-10-13 18:38 - 2015-10-13 18:38 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2015-10-13 18:38 - 2015-10-13 18:38 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2015-10-13 18:38 - 2015-10-13 18:38 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00139096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-10-13 18:38 - 2015-10-13 18:38 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2015-10-13 18:38 - 2015-10-13 18:38 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2015-10-13 18:38 - 2015-10-13 18:38 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2015-10-13 18:38 - 2015-10-13 18:38 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-10-13 18:38 - 2015-10-13 18:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2015-10-13 18:38 - 2015-10-13 18:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-10-13 18:38 - 2015-10-13 18:38 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll

2015-10-13 18:38 - 2015-10-13 18:38 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-10-13 18:37 - 2015-10-13 18:37 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-10-13 18:37 - 2015-10-13 18:37 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-10-13 18:37 - 2015-10-13 18:37 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 20357632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 12853760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 04527616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 02279936 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-10-13 18:36 - 2015-10-13 18:36 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-10-13 18:36 - 2015-10-13 18:36 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-10-13 18:36 - 2015-10-13 18:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00345688 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-10-13 18:36 - 2015-10-13 18:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2015-10-13 18:36 - 2015-10-13 18:36 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2015-10-13 18:36 - 2015-10-13 18:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2015-10-13 18:36 - 2015-10-13 18:36 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2015-10-13 18:36 - 2015-10-13 18:36 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2015-10-13 18:36 - 2015-10-13 18:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2015-10-13 18:36 - 2015-09-16 04:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-10-13 18:36 - 2015-09-16 04:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-10-05 17:59 - 2015-10-05 17:59 - 00000000 ____D C:\Users\Gakutenou\Documents\Telltale Games

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-02 10:50 - 2014-12-24 02:41 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat

2015-11-02 10:41 - 2015-06-19 08:30 - 00000934 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-272638289-1113591862-871824825-1000UA.job

2015-11-02 10:34 - 2012-11-17 16:29 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\.purple

2015-11-02 10:20 - 2014-05-21 00:09 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-11-02 10:19 - 2009-07-14 05:34 - 00015344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-11-02 10:19 - 2009-07-14 05:34 - 00015344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-11-02 10:14 - 2015-03-26 17:13 - 00000978 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2015-11-02 10:14 - 2012-11-17 13:29 - 01659984 _____ C:\Windows\WindowsUpdate.log

2015-11-02 10:14 - 2010-11-26 11:48 - 01790318 _____ C:\Windows\system32\PerfStringBackup.INI

2015-11-02 10:14 - 2009-07-14 09:21 - 00741336 _____ C:\Windows\system32\perfh010.dat

2015-11-02 10:14 - 2009-07-14 09:21 - 00147442 _____ C:\Windows\system32\perfc010.dat

2015-11-02 10:12 - 2010-11-28 23:46 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Dropbox

2015-11-02 10:10 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2015-11-02 10:03 - 2013-01-05 23:13 - 00000975 _____ C:\Users\Gakutenou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\join.me.lnk

2015-11-02 10:03 - 2013-01-05 23:13 - 00000967 _____ C:\Users\Gakutenou\Desktop\join.me.lnk

2015-11-02 10:03 - 2013-01-05 23:13 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\join.me

2015-11-02 10:00 - 2011-07-06 17:58 - 00000000 ____D C:\Program Files\CCleaner

2015-11-02 01:35 - 2010-12-01 02:10 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Skype

2015-11-02 00:41 - 2015-06-19 08:30 - 00000882 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-272638289-1113591862-871824825-1000Core.job

2015-11-01 20:24 - 2010-11-27 19:01 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\CDisplayEx

2015-11-01 13:42 - 2013-06-30 16:22 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\qBittorrent

2015-11-01 13:36 - 2013-06-30 16:21 - 00000000 ____D C:\Program Files\qBittorrent

2015-11-01 00:16 - 2010-02-18 17:08 - 00000000 ____D C:\Data

2015-11-01 00:12 - 2010-12-27 19:28 - 00000000 ____D C:\Program Files\Steam

2015-10-30 16:58 - 2012-04-11 07:40 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\CrashDumps

2015-10-27 22:01 - 2010-02-19 13:54 - 00000000 ____D C:\Games

2015-10-27 14:57 - 2010-02-16 17:51 - 00000000 ____D C:\Emulators

2015-10-26 18:24 - 2015-07-10 19:16 - 00000000 ____D C:\ProgramData\69B6DBD2-8E05-476F-B662-CF8D235FD499

2015-10-26 18:20 - 2014-06-07 14:58 - 00000000 ____D C:\Users\Gakutenou\Documents\University

2015-10-25 13:22 - 2010-11-26 11:48 - 00000000 ____D C:\Users\Gakutenou

2015-10-24 13:40 - 2012-12-23 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com

2015-10-24 13:40 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-10-22 21:26 - 2014-10-15 07:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-10-22 21:26 - 2013-09-13 18:20 - 00000000 ____D C:\ProgramData\Oracle

2015-10-22 21:25 - 2015-08-29 09:39 - 00000000 ____D C:\Users\Gakutenou\.oracle_jre_usage

2015-10-22 21:25 - 2015-07-15 09:11 - 00097888 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll

2015-10-22 21:25 - 2010-11-27 18:51 - 00000000 ____D C:\Program Files\Java

2015-10-22 20:51 - 2014-05-21 00:09 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware

2015-10-22 20:51 - 2010-12-27 19:28 - 00000000 ____D C:\Program Files\Common Files\Steam

2015-10-22 20:30 - 2014-05-21 00:09 - 00001060 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-10-22 20:30 - 2014-05-21 00:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-10-22 20:29 - 2014-05-21 00:09 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys

2015-10-22 20:29 - 2014-05-21 00:09 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2015-10-22 20:29 - 2014-05-21 00:09 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys

2015-10-17 09:14 - 2015-03-26 17:13 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe

2015-10-17 09:14 - 2015-03-26 17:13 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

2015-10-16 10:40 - 2014-11-02 11:27 - 00001179 _____ C:\Users\Gakutenou\Desktop\SyncBackFree.lnk

2015-10-16 10:36 - 2014-11-27 12:09 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\MPC-HC

2015-10-16 10:21 - 2012-04-25 13:13 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service

2015-10-16 10:18 - 2013-07-11 08:52 - 00000000 ____D C:\Users\Gakutenou\Documents\CC Backups

2015-10-16 10:12 - 2010-11-26 12:27 - 00075568 _____ C:\Users\Gakutenou\AppData\Local\GDIPFONTCACHEV1.DAT

2015-10-16 10:08 - 2009-07-14 05:33 - 02257936 _____ C:\Windows\system32\FNTCACHE.DAT

2015-10-16 10:04 - 2011-04-13 20:37 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared

2015-10-16 09:55 - 2011-04-13 20:42 - 00000000 ____D C:\Users\Gakutenou\Documents\Autodesk

2015-10-16 09:55 - 2011-04-13 20:37 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\Autodesk

2015-10-16 09:55 - 2011-04-13 20:37 - 00000000 ____D C:\ProgramData\Autodesk

2015-10-16 09:55 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Help

2015-10-16 09:49 - 2011-04-13 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk

2015-10-16 09:49 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET

2015-10-15 17:40 - 2015-04-15 12:43 - 00000000 ____D C:\Windows\system32\appraiser

2015-10-15 17:40 - 2014-05-02 10:18 - 00000000 ___SD C:\Windows\system32\CompatTel

2015-10-14 20:04 - 2014-10-22 17:51 - 00000000 ____D C:\Program Files\COMODO

2015-10-14 02:18 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache

2015-10-13 20:00 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\it-IT

2015-10-13 19:57 - 2013-07-13 02:01 - 00000000 ____D C:\Windows\system32\MRT

2015-10-13 19:50 - 2010-11-27 16:43 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-10-11 18:17 - 2015-04-25 20:38 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Audacity

2015-10-08 10:24 - 2009-07-14 05:53 - 00032556 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Files in the root of some directories =======

2011-07-10 20:24 - 2011-07-10 20:26 - 0000015 _____ () C:\Program Files\plugin.ini

2013-08-23 19:07 - 2013-08-10 06:59 - 0012005 _____ () C:\Users\Gakutenou\AppData\Roaming\alsoft.ini

2011-01-24 18:22 - 2011-01-24 18:32 - 0000742 _____ () C:\Users\Gakutenou\AppData\Roaming\net.telestream.ustreamproducer.prefs.xml

2012-08-11 17:05 - 2014-08-01 17:43 - 0005120 _____ () C:\Users\Gakutenou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2011-04-14 17:04 - 2011-04-14 17:04 - 0000048 _____ () C:\ProgramData\.SimImages

1999-07-07 01:00 - 1999-07-07 01:00 - 0000006 __RSH () C:\ProgramData\4690C72B-FD52-46BD-BB70-A7B9C359EFD3

1999-07-07 01:00 - 1999-07-07 01:00 - 0000006 __RSH () C:\ProgramData\808E7E11-B8F8-4EE0-8929-9B241425315C

1999-07-07 01:00 - 1999-07-07 01:00 - 0000006 __RSH () C:\ProgramData\D81EDBF9-D167-4011-B77D-211DF920EB80

2010-12-01 02:12 - 2010-12-01 02:12 - 0000056 ____H () C:\ProgramData\ezsidmv.dat

2011-07-19 00:14 - 2011-05-20 00:14 - 0000032 ____R () C:\ProgramData\hash.dat

Files to move or delete:

====================

C:\ProgramData\hash.dat

Some files in TEMP:

====================

C:\Users\Gakutenou\AppData\Local\Temp\AcDeltree.exe

C:\Users\Gakutenou\AppData\Local\Temp\BullseyeCoverage-2-x86.dll

C:\Users\Gakutenou\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpql0kv4.dll

C:\Users\Gakutenou\AppData\Local\Temp\jre-8u65-windows-au.exe

C:\Users\Gakutenou\AppData\Local\Temp\SkypeSetup.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\system32\winlogon.exe => File is digitally signed

C:\Windows\system32\wininit.exe => File is digitally signed

C:\Windows\system32\svchost.exe => File is digitally signed

C:\Windows\system32\services.exe => File is digitally signed

C:\Windows\system32\User32.dll => File is digitally signed

C:\Windows\system32\userinit.exe => File is digitally signed

C:\Windows\system32\rpcss.dll => File is digitally signed

C:\Windows\system32\dnsapi.dll => File is digitally signed

C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-31 01:37

==================== End of FRST.txt ============================

Link to post
Share on other sites

Sorry, I think NoScript messed with the formatting upon posting. Here goes.

 

# AdwCleaner v5.016 - Creato file registro eventi 01/11/2015 in 23:50:53
# Aggiornato 01/11/2015 da Xplode
# Database : 2015-11-01.2 [server]
# Sistema operativo : Windows 7 Home Premium Service Pack 1 (x86)
# Nome utente : Gakutenou - FROSTIE
# In esecuzione da : C:\Documents\Downloads\adwcleaner_5.016.exe
# Opzione : Analisi
# Supporto : http://toolslib.net/forum

***** [ Servizi ] *****


***** [ Cartelle ] *****


***** [ File ] *****


***** [ DLLs ] *****


***** [ Collegamenti ] *****


***** [ Attività pianificate ] *****


***** [ Registry ] *****

Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{04F3C4CF-8DCD-4D80-92B5-6A016E316869}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{07202B0D-149C-4568-90DF-ACC2B4057809}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0722A2AC-4CF8-4310-AFEE-F87AA9BE10AA}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11F09AFE-75AD-4E52-AB43-E09E9351CE17}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{13B58989-8D66-4F69-922F-B608C38397C1}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1631550F-191D-4826-B069-D9439253D926}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{19BA983C-1D6E-4373-8675-C4371D0440AA}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1A1B64F9-2033-49BF-A3B9-0FE0F1953BDC}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1A6DC111-B030-4C3E-BE65-299284128B91}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1E905554-CF1D-4C5B-9085-A74F8E76A042}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1ED65C88-1259-484B-A9FA-6731E0D15743}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{291A109C-1B6A-4E04-8538-DF15E9F599C3}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{293A63F7-C3B6-423A-9845-901AC0A7EE6E}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2D891923-34B7-4186-9B47-752624535DC1}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{397CFDD8-762F-44D4-9517-E3969F89639E}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3A6BE320-DC9B-4D24-A6E8-621B81544F4B}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3C490BF5-4244-4310-B4A7-3361F288DAC5}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{41069220-F72A-40EA-A8F3-BCD5E1FBC8F0}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{416AE1CB-7257-484A-B912-AEBC7FDAD4CE}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{467013BB-D67E-45BE-A7D7-C29E3CCA8AAD}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4A0BA746-D4D6-41A6-81EF-413E52B5F8D6}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4AD44D3E-7316-4251-B754-9B10EC96AF92}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4AE33511-8993-448C-8BA7-69E252D69207}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4F383657-A595-4DF9-9AB3-FF69312BE9CC}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{547395D9-934A-CED6-B851-F238C86079E5}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{558B5DEA-A789-4BDE-A83F-2046EE1F64ED}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{57F9FEF0-6EAE-4030-A68A-30FDC38B1B13}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{586D895F-13B4-4202-8C5D-F075F2505676}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{59802B67-952A-45A2-A5D4-054417ED4A2C}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5BE1ED16-E6DD-4C4E-A596-6CFD5EE7C1EE}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5DE59E4B-12D4-4BF0-B3C0-B1E8730DC70B}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{61E0EF7A-9BC0-45EA-9B2F-F3E9F02692BD}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6704E2EA-6213-4D17-BB3D-4AE9E3609536}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{69A72A8A-84ED-4A75-8CE7-263DBEF3E5D3}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6D301CB8-19E8-4EA1-A648-63E43F577CD0}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6FACFC3D-5C5E-4A12-828F-5F9CBA84CF17}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{703740C1-0F1A-4CEC-A4DF-D78DB0158477}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{70C6E9DE-F30E-4A40-8A6F-9572C2328320}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{759EE566-C608-434F-A186-DDB68BB1C724}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7A66EB91-F7D3-4DE2-8CA9-12C12AF3D5F2}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7DA17D5A-5718-4130-A605-FC316C827836}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{7FF99715-3016-4381-84CE-E4E4C9673020}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{8270927A-FB8B-4647-8E21-C9459BB2610D}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{82EA3E77-7BD2-4744-A8F2-670770767EC5}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{84395E42-9FF9-4B85-9264-B1762D069593}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{856E12B5-22D7-4E22-9ACA-EA9A008DD65B}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{91C1AE56-D2C9-4017-8BF1-75EA182CEB38}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{963B125B-8B21-49A2-A3A8-E37092276531}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9D717F81-9148-4F12-8568-69135F087DB0}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9E09CCCC-5C2B-4E45-8BF7-401B9181BFF2}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A0E8BC7D-6959-40B6-8E05-204D9768AD6E}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A5877FA8-A875-41DB-AEF5-B1124CEF74B6}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A7543596-01C2-4323-B1C9-BF0FCC7833DE}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A83C3565-302C-4BF8-B000-6B6F1811D892}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AB6BD08C-DB6B-4F02-8A22-4BD343E990FF}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AB720781-0670-4E46-B82E-376AEF228F25}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{ACC01A56-70E3-472E-9C4F-83B1DA817DD8}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{ADE1FF98-B82B-4954-B447-0E513C675441}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B1DF652F-3A33-4F9F-B809-59870C4E9027}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B278D9F8-0FA9-465E-9938-0C392605D8E3}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B6EF6C45-5E8D-4C3B-B580-A5073261A381}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B7D3F515-9DBD-4C56-A743-89D5C0927443}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B939CF93-F2CB-443D-956C-DC523D85C9DB}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{BFF6582B-F558-4964-B4C7-10BFBA9B8790}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{C0A13BA0-B498-46EE-8DE0-B66FEC9FB86E}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{C23B756A-BD9F-4CA6-ADED-17AB8CCF3E8B}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{C4BF6897-41A2-454B-AC3B-437F30BEA671}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CBF53489-AD8D-4637-965A-413861EEC7CF}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CC01FC6C-2319-A88B-FCF7-416288B4E61A}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CD5B3EA2-522A-45B2-84A4-FCBEF03E8237}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{CF23C8EF-82FA-4524-9B69-952794B18314}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D281251E-9D68-4B62-B751-64DFE15FCD6A}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D9291F9E-7010-4D7A-8DF6-455DEEF8EF51}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DA742A73-CFA7-4DE2-BF28-1FC51CF214BC}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DB536AF2-E422-402D-B7FD-887297F1A198}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DE4E75D3-60AA-4F02-A0E4-C8A40576574C}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DFEFCDEE-CF1A-4FC8-89AF-189327213627}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E2E7733E-F86C-4A47-BEF1-7A6268831EE1}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E2E94F8D-4323-4943-A269-2E9EF6280434}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E8DAAA30-6CAA-4B58-9603-8E54238219E2}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{EA4AF226-01C2-442D-B204-7B55EFD072F1}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{EB4A577D-BCAD-4B1C-8AF2-9A74B8DD3431}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{F4FE8DB4-7FC9-4C50-A25D-033A02D36298}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{F52C6F92-7033-438F-BE30-20C87E2D9978}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{F9E44926-2497-46F3-8A25-928136AC079E}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{FC36B0BD-27F0-4CDD-8AB1-50651EFC3EFD}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{FF6439F4-B6D5-41A9-97B6-69D650D265FD}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11111111-1111-1111-1111-110011431152}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{AE48C704-8876-4EB2-9227-6CA5382694C5}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{D3626E66-B13B-C628-ACDF-BDABCFA265E1}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0CB66BA8-5E1F-4963-93D1-E1D6B78FE9A2}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{E99D4D0C-EB54-46AF-B62A-3AA1F31D53E5}
Chiave Trovato : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4D367733-AFF9-4943-9757-D37DAD8F33EB}

***** [ Browser web ] *****


########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [14178 byte] ##########

 

(Subsequent scans turned up clean - MBAM Chameleon and JRT scans resulted clean)

Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:31-10-2015
Ran by Gakutenou (administrator) on FROSTIE (02-11-2015 10:56:29)
Running from C:\Documents\Downloads
Loaded Profiles: Gakutenou (Available Profiles: Gakutenou)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) Language: Italiano (Italia)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Comodo) C:\Program Files\COMODO\Dragon\dragon_updater.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Advanced Micro Devices Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\MOM.exe
(The Pidgin developer community) C:\Program Files\Pidgin\pidgin.exe
(Dropbox, Inc.) C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\CCC.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1713152 2010-02-10] (VIA)
HKLM\...\Run: [AdobeCS4ServiceManager] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1361088 2015-08-07] (COMODO)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2015-03-31] (Apple Inc.)
HKLM\...\Run: [startCCC] => C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-09-04] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2015-09-11] (Apple Inc.)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-22] (Oracle Corporation)
HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\Run: [Pidgin] => C:\Program Files\Pidgin\pidgin.exe [60176 2014-11-23] (The Pidgin developer community)
HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\Run: [Dropbox Update] => C:\Users\Gakutenou\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-19] (Dropbox, Inc.)
HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\MountPoints2: {c21ebcb2-55c1-11e4-9d1e-0015834d078b} - E:\CMADownloader.exe
HKU\S-1-5-21-272638289-1113591862-871824825-1000\...\MountPoints2: {e963ec6a-0c8e-11e0-a8f4-0002720a4462} - E:\Setup.exe
HKU\S-1-5-21-272638289-1113591862-871824825-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [878592 2010-11-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
Startup: C:\Users\Gakutenou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-10-17]
ShortcutTarget: Dropbox.lnk -> C:\Users\Gakutenou\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 activate.adobe.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 62.101.93.101 83.103.25.250
Tcpip\..\Interfaces\{6D0F3120-29BF-4C8E-8D62-D7ECF0110863}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{6D0F3120-29BF-4C8E-8D62-D7ECF0110863}: [DhcpNameServer] 192.168.1.254 62.101.93.101 83.103.25.250
Tcpip\..\Interfaces\{D02B0216-D50C-4AD5-9A71-15CB1ACDA42E}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-272638289-1113591862-871824825-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.it/
HKU\S-1-5-21-272638289-1113591862-871824825-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://it.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-272638289-1113591862-871824825-1000 -> {852D8FC4-0542-4AC4-874C-C0B27AC721F7} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default
FF DefaultSearchEngine: Yahoo
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.4 -> C:\Program Files\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.5 -> C:\Program Files\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.0.0.1 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2011-05-31] (Wacom)
FF Plugin HKU\S-1-5-21-272638289-1113591862-871824825-1000: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2011-05-31] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-09-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-09-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-09-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-09-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-09-11] (Apple Inc.)
FF Extension: BarTab Lite X - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\bartablitex@szabolcs.hubai.xpi [2015-06-03]
FF Extension: Ghostery - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\firefox@ghostery.com.xpi [2015-09-19]
FF Extension: Tumblr Savior - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\jid1-W5guVoyeUR0uBg@jetpack.xpi [2015-05-29]
FF Extension: The Addon Bar (restored) - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\the-addon-bar@GeekInTraining-GiT.xpi [2015-05-29]
FF Extension: Session Manager - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2015-10-30]
FF Extension: X-notifier - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2015-10-27] [not signed]
FF Extension: NoScript - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-10-26]
FF Extension: LJlogin - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{ad4ee9e5-49c7-4589-acf3-db9fa76a95c9}.xpi [2011-10-26] [not signed]
FF Extension: Adblock Plus - C:\Users\Gakutenou\AppData\Roaming\Mozilla\Firefox\Profiles\h8iwbwr6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-24]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2015-10-16] [not signed]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2015-10-16] [not signed]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4353840 2015-09-08] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664704 2015-08-07] (COMODO)
R2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [1984696 2015-10-14] (Comodo)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2012-07-22] (Flexera Software, Inc.)
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 npggsvc; C:\Windows\system32\GameMon.des [4101624 2011-03-14] (INCA Internet Co., Ltd.) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ATHDFU; C:\Windows\System32\Drivers\AthDfu.sys [43680 2011-03-31] (Windows ® Win 7 DDK provider) [File not signed]
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17064 2015-08-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [626776 2015-08-05] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41736 2015-08-05] (COMODO)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91176 2015-08-05] (COMODO)
R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [94936 2015-10-22] (Malwarebytes)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-22] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2015-11-02] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-22] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [13216 2009-07-16] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-12-21] () [File not signed]
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1119232 2010-01-11] (VIA Technologies, Inc.)
S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [465408 2009-07-14] (Microsoft Corporation)
R3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [22104 2015-07-28] (SplitmediaLabs Limited)
S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]
S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X]
S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X]
S3 BtFilter; system32\DRIVERS\btfilter.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 XDva403; \??\C:\Windows\system32\XDva403.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-02 10:55 - 2015-11-02 10:56 - 00000000 ____D C:\FRST
2015-11-01 13:36 - 2015-11-01 13:36 - 00001001 _____ C:\Users\Public\Desktop\qBittorrent.lnk
2015-11-01 13:36 - 2015-11-01 13:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2015-11-01 13:32 - 2015-11-01 13:32 - 00012022 _____ C:\Users\Gakutenou\Desktop\To LOVEる-とらぶる-ダークネス2nd [第2巻] [720p].torrent
2015-10-28 10:08 - 2015-10-28 10:08 - 00001067 _____ C:\Users\Public\Desktop\XSplit Broadcaster.lnk
2015-10-28 10:08 - 2015-10-28 10:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
2015-10-25 13:22 - 2015-11-02 09:58 - 00000239 _____ C:\Users\Gakutenou\BullseyeCoverageError.txt
2015-10-25 13:22 - 2015-10-25 13:22 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\join.me.launcher
2015-10-24 13:40 - 2015-10-24 13:53 - 00001546 _____ C:\Users\Public\Desktop\Quake.lnk
2015-10-24 13:40 - 2015-10-24 13:40 - 00001574 _____ C:\Users\Public\Desktop\Quake - Scourge of Armagon.lnk
2015-10-24 13:40 - 2015-10-24 13:40 - 00001568 _____ C:\Users\Public\Desktop\Quake - Dissolution of Eternity.lnk
2015-10-22 23:46 - 2015-10-22 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
2015-10-22 23:46 - 2015-10-22 23:46 - 00000000 ____D C:\Program Files\Combined Community Codec Pack
2015-10-22 21:26 - 2015-10-22 21:26 - 00000000 ____D C:\Program Files\Common Files\Java
2015-10-18 23:59 - 2015-10-18 23:59 - 00000000 ____D C:\Users\Gakutenou\Documents\ARC SYSTEM WORKS
2015-10-17 00:38 - 2015-10-17 00:38 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-16 10:21 - 2015-11-02 10:11 - 00002679 _____ C:\Windows\setupact.log
2015-10-16 10:21 - 2015-10-22 20:51 - 00001770 _____ C:\Windows\PFRO.log
2015-10-16 10:21 - 2015-10-16 10:21 - 00000000 _____ C:\Windows\setuperr.log
2015-10-16 09:47 - 2015-10-16 10:16 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-15 21:38 - 2015-11-02 10:39 - 00000327 _____ C:\DelFix.txt
2015-10-15 13:18 - 2015-10-15 13:18 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-15 13:18 - 2015-10-15 13:18 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-15 13:18 - 2015-10-15 13:18 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-15 13:18 - 2015-10-15 13:18 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-15 13:18 - 2015-10-15 13:18 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-15 13:18 - 2015-10-15 13:18 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-15 13:18 - 2015-10-15 13:18 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-13 18:39 - 2015-10-13 18:39 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-13 18:39 - 2015-10-13 18:39 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-13 18:38 - 2015-10-13 18:39 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 03990976 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-10-13 18:38 - 2015-10-13 18:38 - 03936192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-13 18:38 - 2015-10-13 18:38 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-13 18:38 - 2015-10-13 18:38 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-13 18:38 - 2015-10-13 18:38 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00139096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-13 18:38 - 2015-10-13 18:38 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-13 18:38 - 2015-10-13 18:38 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-13 18:38 - 2015-10-13 18:38 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-13 18:38 - 2015-10-13 18:38 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-13 18:38 - 2015-10-13 18:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-13 18:38 - 2015-10-13 18:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-13 18:38 - 2015-10-13 18:38 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-13 18:38 - 2015-10-13 18:38 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-13 18:37 - 2015-10-13 18:37 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-13 18:37 - 2015-10-13 18:37 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-13 18:37 - 2015-10-13 18:37 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 20357632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 12853760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 04527616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 02279936 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-13 18:36 - 2015-10-13 18:36 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-10-13 18:36 - 2015-10-13 18:36 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-13 18:36 - 2015-10-13 18:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00345688 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-13 18:36 - 2015-10-13 18:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-10-13 18:36 - 2015-10-13 18:36 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-13 18:36 - 2015-10-13 18:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-13 18:36 - 2015-10-13 18:36 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-13 18:36 - 2015-10-13 18:36 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-13 18:36 - 2015-10-13 18:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-10-13 18:36 - 2015-09-16 04:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-13 18:36 - 2015-09-16 04:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-05 17:59 - 2015-10-05 17:59 - 00000000 ____D C:\Users\Gakutenou\Documents\Telltale Games

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-02 10:50 - 2014-12-24 02:41 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2015-11-02 10:41 - 2015-06-19 08:30 - 00000934 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-272638289-1113591862-871824825-1000UA.job
2015-11-02 10:34 - 2012-11-17 16:29 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\.purple
2015-11-02 10:20 - 2014-05-21 00:09 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-02 10:19 - 2009-07-14 05:34 - 00015344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-02 10:19 - 2009-07-14 05:34 - 00015344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-02 10:14 - 2015-03-26 17:13 - 00000978 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-02 10:14 - 2012-11-17 13:29 - 01659984 _____ C:\Windows\WindowsUpdate.log
2015-11-02 10:14 - 2010-11-26 11:48 - 01790318 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-02 10:14 - 2009-07-14 09:21 - 00741336 _____ C:\Windows\system32\perfh010.dat
2015-11-02 10:14 - 2009-07-14 09:21 - 00147442 _____ C:\Windows\system32\perfc010.dat
2015-11-02 10:12 - 2010-11-28 23:46 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Dropbox
2015-11-02 10:10 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-02 10:03 - 2013-01-05 23:13 - 00000975 _____ C:\Users\Gakutenou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\join.me.lnk
2015-11-02 10:03 - 2013-01-05 23:13 - 00000967 _____ C:\Users\Gakutenou\Desktop\join.me.lnk
2015-11-02 10:03 - 2013-01-05 23:13 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\join.me
2015-11-02 10:00 - 2011-07-06 17:58 - 00000000 ____D C:\Program Files\CCleaner
2015-11-02 01:35 - 2010-12-01 02:10 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Skype
2015-11-02 00:41 - 2015-06-19 08:30 - 00000882 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-272638289-1113591862-871824825-1000Core.job
2015-11-01 20:24 - 2010-11-27 19:01 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\CDisplayEx
2015-11-01 13:42 - 2013-06-30 16:22 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\qBittorrent
2015-11-01 13:36 - 2013-06-30 16:21 - 00000000 ____D C:\Program Files\qBittorrent
2015-11-01 00:16 - 2010-02-18 17:08 - 00000000 ____D C:\Data
2015-11-01 00:12 - 2010-12-27 19:28 - 00000000 ____D C:\Program Files\Steam
2015-10-30 16:58 - 2012-04-11 07:40 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\CrashDumps
2015-10-27 22:01 - 2010-02-19 13:54 - 00000000 ____D C:\Games
2015-10-27 14:57 - 2010-02-16 17:51 - 00000000 ____D C:\Emulators
2015-10-26 18:24 - 2015-07-10 19:16 - 00000000 ____D C:\ProgramData\69B6DBD2-8E05-476F-B662-CF8D235FD499
2015-10-26 18:20 - 2014-06-07 14:58 - 00000000 ____D C:\Users\Gakutenou\Documents\University
2015-10-25 13:22 - 2010-11-26 11:48 - 00000000 ____D C:\Users\Gakutenou
2015-10-24 13:40 - 2012-12-23 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-10-24 13:40 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-10-22 21:26 - 2014-10-15 07:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-22 21:26 - 2013-09-13 18:20 - 00000000 ____D C:\ProgramData\Oracle
2015-10-22 21:25 - 2015-08-29 09:39 - 00000000 ____D C:\Users\Gakutenou\.oracle_jre_usage
2015-10-22 21:25 - 2015-07-15 09:11 - 00097888 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-10-22 21:25 - 2010-11-27 18:51 - 00000000 ____D C:\Program Files\Java
2015-10-22 20:51 - 2014-05-21 00:09 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-10-22 20:51 - 2010-12-27 19:28 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-10-22 20:30 - 2014-05-21 00:09 - 00001060 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-10-22 20:30 - 2014-05-21 00:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-22 20:29 - 2014-05-21 00:09 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-10-22 20:29 - 2014-05-21 00:09 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-10-22 20:29 - 2014-05-21 00:09 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-10-17 09:14 - 2015-03-26 17:13 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-17 09:14 - 2015-03-26 17:13 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-16 10:40 - 2014-11-02 11:27 - 00001179 _____ C:\Users\Gakutenou\Desktop\SyncBackFree.lnk
2015-10-16 10:36 - 2014-11-27 12:09 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\MPC-HC
2015-10-16 10:21 - 2012-04-25 13:13 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-16 10:18 - 2013-07-11 08:52 - 00000000 ____D C:\Users\Gakutenou\Documents\CC Backups
2015-10-16 10:12 - 2010-11-26 12:27 - 00075568 _____ C:\Users\Gakutenou\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-16 10:08 - 2009-07-14 05:33 - 02257936 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-16 10:04 - 2011-04-13 20:37 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2015-10-16 09:55 - 2011-04-13 20:42 - 00000000 ____D C:\Users\Gakutenou\Documents\Autodesk
2015-10-16 09:55 - 2011-04-13 20:37 - 00000000 ____D C:\Users\Gakutenou\AppData\Local\Autodesk
2015-10-16 09:55 - 2011-04-13 20:37 - 00000000 ____D C:\ProgramData\Autodesk
2015-10-16 09:55 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Help
2015-10-16 09:49 - 2011-04-13 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2015-10-16 09:49 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-10-15 17:40 - 2015-04-15 12:43 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-15 17:40 - 2014-05-02 10:18 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-14 20:04 - 2014-10-22 17:51 - 00000000 ____D C:\Program Files\COMODO
2015-10-14 02:18 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2015-10-13 20:00 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\it-IT
2015-10-13 19:57 - 2013-07-13 02:01 - 00000000 ____D C:\Windows\system32\MRT
2015-10-13 19:50 - 2010-11-27 16:43 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-11 18:17 - 2015-04-25 20:38 - 00000000 ____D C:\Users\Gakutenou\AppData\Roaming\Audacity
2015-10-08 10:24 - 2009-07-14 05:53 - 00032556 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Files in the root of some directories =======

2011-07-10 20:24 - 2011-07-10 20:26 - 0000015 _____ () C:\Program Files\plugin.ini
2013-08-23 19:07 - 2013-08-10 06:59 - 0012005 _____ () C:\Users\Gakutenou\AppData\Roaming\alsoft.ini
2011-01-24 18:22 - 2011-01-24 18:32 - 0000742 _____ () C:\Users\Gakutenou\AppData\Roaming\net.telestream.ustreamproducer.prefs.xml
2012-08-11 17:05 - 2014-08-01 17:43 - 0005120 _____ () C:\Users\Gakutenou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-04-14 17:04 - 2011-04-14 17:04 - 0000048 _____ () C:\ProgramData\.SimImages
1999-07-07 01:00 - 1999-07-07 01:00 - 0000006 __RSH () C:\ProgramData\4690C72B-FD52-46BD-BB70-A7B9C359EFD3
1999-07-07 01:00 - 1999-07-07 01:00 - 0000006 __RSH () C:\ProgramData\808E7E11-B8F8-4EE0-8929-9B241425315C
1999-07-07 01:00 - 1999-07-07 01:00 - 0000006 __RSH () C:\ProgramData\D81EDBF9-D167-4011-B77D-211DF920EB80
2010-12-01 02:12 - 2010-12-01 02:12 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-07-19 00:14 - 2011-05-20 00:14 - 0000032 ____R () C:\ProgramData\hash.dat

Files to move or delete:
====================
C:\ProgramData\hash.dat


Some files in TEMP:
====================
C:\Users\Gakutenou\AppData\Local\Temp\AcDeltree.exe
C:\Users\Gakutenou\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
C:\Users\Gakutenou\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpql0kv4.dll
C:\Users\Gakutenou\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Gakutenou\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-31 01:37

==================== End of FRST.txt ============================

 

(Scan was performed after AdwCleaner, JRT and MBAM scans, rebooting after the first two - I'm aware of the Adobe entry in the hosts file, I haven't been able to remove it yet for personal reasons)

Addition.txt

Shortcut.txt

Link to post
Share on other sites

Yes the activation hack in hosts together with evidence of P2P activity and several Torrents showing is a direct breach of Forum Protocol, no further help is offered. Your thread will be locked and closed out...

 

Thank you,

 

Kevin.

Link to post
Share on other sites

Wait, please. I can't do anything about the activation hack for now because I haven't been able to afford a copy of Photoshop CS4 for my university work yet, but could I redo the scans after getting rid of the torrents? It's probably a stupid question, but I don't know who else to turn to...

Link to post
Share on other sites
  • Root Admin

Unfortunately stealing because you don't have money does not make it right. There are other free products that do similar tasks. Since you do not wish to remove the hack I'm sorry we cannot assist you at this time.

 

Thank you

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.