Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-11-2015 Ran by Adiorz (administrator) on ADIORZ-PC (20-11-2015 14:31:22) Running from C:\Users\Adiorz\Desktop\fix Loaded Profiles: Adiorz & NeroMediaHomeUser.4 (Available Profiles: Adiorz & NeroMediaHomeUser.4) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (COMODO) D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe () C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe (Nero AG) D:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe (Unified Intents AB) D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Google Inc.) C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe (ATK) C:\Program Files\P4G\BatteryLife.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Oracle Corporation) C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySQLNotifier.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (Piriform Ltd) D:\Program Files\CCleaner\CCleaner64.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Dropbox, Inc.) C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\Dropbox.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (COMODO) D:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (COMODO) D:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [COMODO Internet Security] => D:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-08] (COMODO) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2085160 2010-03-05] (Synaptics Incorporated) HKLM\...\Run: [RunDLLEntry] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-01] (AlcorMicro Co., Ltd.) HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-06] (Logitech Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-12-18] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe [237693 2008-12-30] (Creative Technology Ltd) HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6998656 2009-10-27] (ASUS) HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2009-08-20] (ASUS) HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [Google Japanese Input Prelauncher] => C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe [1585552 2015-10-24] (Google Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-11-02] (Oracle Corporation) HKU\S-1-5-21-319641768-3134415942-743037567-1000\...\Run: [CCleaner Monitoring] => D:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd) HKU\S-1-5-21-319641768-3134415942-743037567-1000\...\Run: [Unified Remote V3] => D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [4278992 2015-06-01] (Unified Intents AB) HKU\S-1-5-21-319641768-3134415942-743037567-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-319641768-3134415942-743037567-1000\...\Run: [MySQL Notifier] => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySqlNotifier.exe [773120 2015-10-26] (Oracle Corporation) HKU\S-1-5-21-319641768-3134415942-743037567-1000\...\MountPoints2: {8d7d26b2-368e-11e4-aade-20cf3011c9b3} - G:\LGAutoRun.exe ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-28] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-28] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-28] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) Startup: C:\Users\Adiorz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-11-10] ShortcutTarget: Dropbox.lnk -> C:\Users\Adiorz\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{7F0DF2B8-8936-4E28-A20C-68D7B24B3C75}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-319641768-3134415942-743037567-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-11-02] (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-10-28] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-28] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-02] (Oracle Corporation) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-10-25] (Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation) BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL [2015-10-28] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-28] (Microsoft Corporation) BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-09-27] (Microsoft Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Adiorz\AppData\Roaming\Mozilla\Firefox\Profiles\ueqwki23.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] () FF Plugin: @java.com/DTPlugin,version=11.65.2 -> D:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-02] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> D:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-02] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-09-27] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-02] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-02] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2014-09-27] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) Chrome: ======= CHR Session Restore: Default -> is enabled. CHR Profile: C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-18] CHR Extension: (Google Docs) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-18] CHR Extension: (Google Drive) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-18] CHR Extension: (Session Manager) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcnbpafconjjigibnhbfmmgdbbkcjfi [2015-09-15] CHR Extension: (Simple Pomodoro®) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blidjjfbdbkcmegfnidmgndgdamhhelp [2015-09-15] CHR Extension: (YouTube) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-18] CHR Extension: (Advanced Font Settings) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\caclkomlalccbpcdllchkeecicepbmbm [2015-09-15] CHR Extension: (Google Search) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-18] CHR Extension: (Tampermonkey) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-11-10] CHR Extension: (Google Sheets) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-18] CHR Extension: (AdBlock) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-18] CHR Extension: (Spell Checker for Chrome) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfpdnkkdgghlpdgldicfgnnnkhdfhocg [2015-09-15] CHR Extension: (Tomatoes) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jijbhneeenepenoolcdalnekggeialeo [2015-09-15] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-09-07] CHR Extension: (Ashish Mishra) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnkdbjbjpnpjeciipoaflmpcddinpjjp [2015-09-15] CHR Extension: (Chrome Web Store Payments) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-07] CHR Extension: (Gmail) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-18] CHR Extension: (iReader) - C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppelffpjgkifjfgnbaaldcehkpajlmbc [2015-09-15] CHR Profile: C:\Users\Adiorz\AppData\Local\Google\Chrome\User Data\Profile 1 StartMenuInternet: Google Chrome.RG2MNBRS3NCDPQZKD7KRQXCF4A - C:\Users\Adiorz\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-03] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2780856 2015-10-28] (Microsoft Corporation) R2 cmdAgent; D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-09-21] (COMODO) R3 cmdvirth; D:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-08] (COMODO) S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-07-17] (Creative Labs) [File not signed] S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-07-17] (Creative Labs) [File not signed] S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed] S3 GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1738808 2015-09-21] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6943800 2015-09-21] (GOG.com) R2 GoogleIMEJaCacheService; C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe [840080 2015-10-24] (Google Inc.) R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [File not signed] R2 MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [38587904 2015-10-26] () [File not signed] R2 NeroMediaHomeService.4; D:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe [517416 2010-10-29] (Nero AG) R2 RemoteServerWin; D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [4278992 2015-06-01] (Unified Intents AB) S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed] R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [File not signed] S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [21184 2015-08-05] (COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [806032 2015-08-05] (COMODO) R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45856 2015-08-05] (COMODO) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-07-17] (DT Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105096 2015-08-05] (COMODO) R2 IntelHaxm; C:\Windows\System32\DRIVERS\IntelHaxm.sys [84992 2015-10-01] (Intel Corporation) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) S3 Rockusb; C:\Windows\System32\DRIVERS\rockusb.sys [67024 2013-03-12] (Fuzhou Rockchip Electronics Co,Ltd.) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-05] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-07-17] (Duplex Secure Ltd.) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-16] () R3 uvhid; C:\Windows\System32\DRIVERS\uvhid.sys [25592 2015-06-01] (Windows (R) Win 7 DDK provider) S3 VSPerfDrv110; D:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-13] (Microsoft Corporation) S3 VSPerfDrv120; D:\Program Files (x86)\Microsoft Visual Studio 12.0\Team Tools\Performance Tools\VSPerfDrv120.sys [94888 2013-09-23] (Microsoft Corporation) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-18 10:00 - 2015-11-20 14:31 - 00000000 ____D C:\FRST 2015-11-17 22:37 - 2015-11-20 14:31 - 00000000 ____D C:\Users\Adiorz\Desktop\fix 2015-11-17 22:34 - 2015-11-17 22:34 - 00000000 ____D C:\MATS 2015-11-17 22:31 - 2015-11-17 22:31 - 00347816 _____ (Microsoft Corporation) C:\Users\Adiorz\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.Run.exe 2015-11-17 22:22 - 2015-11-17 22:23 - 00000085 _____ C:\Windows\wininit.ini 2015-11-16 23:55 - 2015-11-18 09:55 - 00015662 _____ C:\Windows\PFRO.log 2015-11-16 23:18 - 2015-11-16 23:18 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-11-16 23:07 - 2015-11-20 09:26 - 00000280 _____ C:\Windows\setupact.log 2015-11-16 23:07 - 2015-11-16 23:07 - 00000000 _____ C:\Windows\setuperr.log 2015-11-16 23:02 - 2015-11-16 23:04 - 00000000 ____D C:\AdwCleaner 2015-11-16 20:21 - 2015-11-16 20:37 - 00000000 ____D C:\Users\Adiorz\Desktop\otl 2015-11-16 20:21 - 2015-11-16 20:21 - 00000269 _____ C:\Users\Adiorz\Desktop\steps.txt 2015-11-13 18:21 - 2015-11-13 18:21 - 00000000 ____D C:\Users\Adiorz\Desktop\java 2015-11-11 17:36 - 2015-11-11 17:37 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Subtitle Edit 2015-11-11 17:36 - 2015-11-11 17:36 - 00000986 _____ C:\Users\Adiorz\Desktop\Subtitle Edit.lnk 2015-11-11 17:36 - 2015-11-11 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Subtitle Edit 2015-11-11 17:35 - 2015-11-11 17:35 - 04745564 _____ (Nikse ) C:\Users\Adiorz\Desktop\SubtitleEdit-3.4.4-Setup.exe 2015-11-11 17:34 - 2015-11-11 17:34 - 04657805 _____ C:\Users\Adiorz\Desktop\SubtitleEdit-3.4.4-Setup.zip 2015-11-10 17:15 - 2015-11-10 17:15 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-11-10 11:25 - 2015-11-10 11:25 - 00000162 _____ C:\Users\Adiorz\Desktop\baza.txt 2015-11-10 11:24 - 2015-11-10 11:25 - 00000167 _____ C:\Users\Adiorz\Desktop\uznanie wykształcenia.txt 2015-11-10 11:24 - 2015-11-10 11:24 - 00000952 _____ C:\Users\Adiorz\Desktop\Android Studio.lnk 2015-11-08 22:19 - 2015-11-08 22:19 - 00000080 _____ C:\Users\Adiorz\Desktop\ftdi.txt 2015-11-07 15:12 - 2015-11-07 15:15 - 01088437 _____ (pendrivelinux.com) C:\Users\Adiorz\Desktop\Universal-USB-Installer-1.9.6.2.exe 2015-11-07 15:12 - 2015-10-21 12:46 - 1631322112 _____ C:\Users\Adiorz\Desktop\linuxmint-17.2-cinnamon-64bit.iso 2015-11-05 11:16 - 2015-11-16 20:22 - 00000000 ____D C:\Users\Adiorz\Documents\My CamStudio Temp Files 2015-11-05 10:48 - 2015-11-05 10:49 - 06762072 _____ (Piriform Ltd) C:\Users\Adiorz\Downloads\ccsetup511.exe 2015-11-05 10:43 - 2015-11-05 11:33 - 00004548 _____ C:\Users\Adiorz\AppData\Roaming\CamStudio.cfg 2015-11-05 10:43 - 2015-11-05 11:33 - 00000408 _____ C:\Users\Adiorz\AppData\Roaming\CamShapes.ini 2015-11-05 10:43 - 2015-11-05 11:33 - 00000408 _____ C:\Users\Adiorz\AppData\Roaming\CamLayout.ini 2015-11-05 10:43 - 2015-11-05 11:33 - 00000108 _____ C:\Users\Adiorz\AppData\Roaming\Camdata.ini 2015-11-05 10:35 - 2015-11-05 10:44 - 00000096 _____ C:\Users\Adiorz\AppData\Roaming\version2.xml 2015-11-04 11:34 - 2015-11-04 11:34 - 00000773 _____ C:\Users\Adiorz\Desktop\Eclipse Cpp Mars.lnk 2015-11-02 22:26 - 2015-11-02 22:26 - 00000000 ____D C:\Users\Adiorz\.tooling 2015-11-02 21:58 - 2015-11-04 11:34 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse 2015-11-02 21:58 - 2015-11-02 21:58 - 00000776 _____ C:\Users\Adiorz\Desktop\Eclipse Java Mars.lnk 2015-11-02 20:53 - 2015-11-02 20:53 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2015-11-02 20:39 - 2015-11-06 13:00 - 00000000 ____D C:\Users\Adiorz\.p2 2015-11-02 20:39 - 2015-11-04 11:51 - 00000000 ____D C:\Users\Adiorz\.eclipse 2015-11-02 20:04 - 2015-11-02 20:26 - 195629144 _____ (Oracle Corporation) C:\Users\Adiorz\Downloads\jdk-8u65-windows-x64.exe 2015-11-02 19:47 - 2015-11-02 19:49 - 46355176 _____ C:\Users\Adiorz\Downloads\eclipse-inst-win64.exe 2015-10-28 13:46 - 2015-10-28 13:46 - 00061309 _____ C:\Users\Adiorz\Downloads\FunBox-59CB.funbox 2015-10-28 11:18 - 2015-10-28 11:19 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\PortForward.com 2015-10-28 11:17 - 2015-10-28 11:17 - 01670800 _____ C:\Users\Adiorz\Downloads\setup-network-utilities.exe 2015-10-26 11:28 - 2015-10-26 11:28 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\MySQL 2015-10-26 10:48 - 2015-10-26 10:48 - 00000009 _____ C:\Users\Adiorz\Desktop\mySQL.txt 2015-10-26 10:45 - 2015-10-26 10:45 - 00000469 _____ C:\Windows\ODBCINST.INI 2015-10-26 10:35 - 2015-10-26 10:35 - 00003662 _____ C:\Windows\System32\Tasks\MySQLNotifierTask 2015-10-26 10:32 - 2015-10-26 10:46 - 00000000 ____D C:\Program Files\MySQL 2015-10-26 10:22 - 2015-10-26 10:22 - 00961192 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00883712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00064352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00062304 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2015-10-26 10:22 - 2015-10-26 10:22 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2015-10-26 10:13 - 2015-10-26 10:15 - 29495840 _____ (Python Software Foundation) C:\Users\Adiorz\Downloads\python-3.5.0-amd64.exe 2015-10-26 10:05 - 2015-10-26 10:49 - 00000000 ____D C:\ProgramData\MySQL 2015-10-26 10:05 - 2015-10-26 10:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL 2015-10-26 10:05 - 2015-10-26 10:46 - 00000000 ____D C:\Program Files (x86)\MySQL 2015-10-26 10:05 - 2015-10-26 10:05 - 00000000 ____D C:\Windows\System32\Tasks\MySQL 2015-10-26 09:41 - 2015-10-26 09:57 - 388521984 _____ C:\Users\Adiorz\Downloads\mysql-installer-community-5.7.9.0.msi 2015-10-25 13:25 - 2015-10-25 13:54 - 00000504 _____ C:\Users\Adiorz\Desktop\cpuz.ini 2015-10-25 13:25 - 2015-10-25 13:25 - 03332168 _____ (CPUID) C:\Users\Adiorz\Desktop\cpuz_x64.exe 2015-10-25 13:24 - 2015-10-25 13:24 - 02420272 _____ C:\Users\Adiorz\Downloads\cpu-z_1.74-en.zip 2015-10-21 22:59 - 2015-10-23 16:07 - 00000812 _____ C:\Users\Adiorz\Desktop\google.txt 2015-10-21 17:56 - 2015-10-21 17:56 - 00000000 ____D C:\Users\Adiorz\.m2 ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-20 14:28 - 2014-11-20 12:04 - 02245484 _____ C:\Windows\system32\Drivers\fvstore.dat 2015-11-20 14:26 - 2015-06-17 11:08 - 00000922 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-319641768-3134415942-743037567-1000UA.job 2015-11-20 14:22 - 2014-07-23 09:32 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-11-20 14:22 - 2013-11-04 11:24 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-20 14:22 - 2013-07-17 03:22 - 01646041 _____ C:\Windows\WindowsUpdate.log 2015-11-20 10:12 - 2015-09-07 12:55 - 00002349 _____ C:\Users\Adiorz\Desktop\Google Chrome.lnk 2015-11-20 09:34 - 2009-07-14 05:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-11-20 09:34 - 2009-07-14 05:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-11-20 09:33 - 2013-08-20 03:44 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Dropbox 2015-11-20 09:32 - 2015-06-01 15:59 - 00000000 ____D C:\ProgramData\Unified Remote 2015-11-20 09:32 - 2013-11-04 11:24 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-20 09:26 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-11-20 09:26 - 2009-07-14 05:45 - 00467376 _____ C:\Windows\system32\FNTCACHE.DAT 2015-11-18 11:30 - 2013-10-19 10:38 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\foobar2000 2015-11-18 10:04 - 2015-03-29 10:59 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-11-18 10:04 - 2013-07-31 18:07 - 00000000 ____D C:\Users\Adiorz\AppData\LocalLow\Temp 2015-11-18 10:04 - 2013-07-17 03:38 - 00000000 ____D C:\Users\Adiorz 2015-11-17 22:26 - 2013-10-23 13:49 - 00000000 ____D C:\Program Files (x86)\MSECache 2015-11-17 22:23 - 2013-10-26 17:25 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy 2015-11-17 22:20 - 2014-07-23 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-11-17 22:20 - 2014-02-09 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2015-11-17 22:18 - 2014-02-09 13:59 - 00000000 ____D C:\Program Files (x86)\Java 2015-11-17 08:50 - 2015-06-17 11:08 - 00000870 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-319641768-3134415942-743037567-1000Core.job 2015-11-17 08:38 - 2013-07-17 04:25 - 00001662 _____ C:\Windows\system32\ServiceFilter.ini 2015-11-16 23:15 - 2009-07-14 06:13 - 00782868 _____ C:\Windows\system32\PerfStringBackup.INI 2015-11-16 20:49 - 2013-07-19 16:04 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\vlc 2015-11-16 19:48 - 2014-02-08 16:26 - 00000000 ____D C:\Users\Adiorz\.android 2015-11-16 17:12 - 2013-09-26 20:03 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Skype 2015-11-11 12:57 - 2014-07-23 09:32 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-11-11 12:57 - 2014-01-21 20:56 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-11-11 12:57 - 2014-01-21 20:56 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-11-08 22:04 - 2013-07-18 23:41 - 00000000 ____D C:\Windows\Minidump 2015-11-08 21:58 - 2015-04-18 06:20 - 00000000 ____D C:\Users\Adiorz\AppData\Local\Eclipse 2015-11-05 10:51 - 2013-07-17 07:35 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\uTorrent 2015-11-05 10:50 - 2015-07-05 07:35 - 00000692 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-11-05 10:32 - 2015-04-25 16:46 - 00000000 ____D C:\Windows\Downloaded Installations 2015-11-05 10:32 - 2014-02-06 13:16 - 00000000 ____D C:\Users\Adiorz\AppData\Local\Downloaded Installations 2015-11-02 21:03 - 2015-10-01 13:47 - 00000000 ____D C:\Users\Adiorz\.oracle_jre_usage 2015-11-02 20:46 - 2014-02-08 18:48 - 00000000 ____D C:\ProgramData\Oracle 2015-11-02 20:43 - 2015-04-18 05:49 - 00000000 ____D C:\Program Files\Java 2015-11-02 19:57 - 2015-04-18 05:50 - 00326752 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2015-10-28 18:23 - 2014-09-27 04:45 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-10-28 17:56 - 2013-07-17 04:25 - 00002336 _____ C:\Windows\system32\AutoRunFilter.ini 2015-10-28 12:36 - 2014-04-07 18:46 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Comodo 2015-10-28 12:36 - 2013-07-17 03:50 - 00000000 ____D C:\ProgramData\Comodo 2015-10-26 10:35 - 2014-05-15 15:54 - 00000000 ____D C:\Users\Adiorz\AppData\Roaming\Oracle 2015-10-26 10:35 - 2013-07-31 18:57 - 00791262 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2015-10-26 10:31 - 2013-09-27 19:48 - 00000000 ____D C:\ProgramData\Package Cache 2015-10-25 13:21 - 2013-07-17 04:52 - 00000000 ____D C:\Users\Adiorz\AppData\Local\Deployment ==================== Files in the root of some directories ======= 2014-09-06 15:20 - 2014-09-06 15:22 - 0000118 _____ () C:\Users\Adiorz\AppData\Roaming\.ptbt0 2015-11-05 10:43 - 2015-11-05 11:33 - 0000108 _____ () C:\Users\Adiorz\AppData\Roaming\Camdata.ini 2015-11-05 10:43 - 2015-11-05 11:33 - 0000408 _____ () C:\Users\Adiorz\AppData\Roaming\CamLayout.ini 2015-11-05 10:43 - 2015-11-05 11:33 - 0000408 _____ () C:\Users\Adiorz\AppData\Roaming\CamShapes.ini 2015-11-05 10:43 - 2015-11-05 11:33 - 0004548 _____ () C:\Users\Adiorz\AppData\Roaming\CamStudio.cfg 2014-03-21 13:48 - 2015-06-17 12:04 - 0001007 _____ () C:\Users\Adiorz\AppData\Roaming\Currency Meter_Settings.ini 2015-04-25 16:42 - 2015-04-25 16:42 - 0000268 ___RH () C:\Users\Adiorz\AppData\Roaming\LaserPrinter 2015-04-25 16:44 - 2015-04-25 16:44 - 0000268 ___RH () C:\Users\Adiorz\AppData\Roaming\LaunchAgents 2015-04-25 16:42 - 2015-04-25 16:42 - 0000268 ___RH () C:\Users\Adiorz\AppData\Roaming\Legacy 2015-04-25 16:41 - 2015-04-25 16:41 - 0000268 ___RH () C:\Users\Adiorz\AppData\Roaming\Machines 2015-11-05 10:35 - 2015-11-05 10:44 - 0000096 _____ () C:\Users\Adiorz\AppData\Roaming\version2.xml 2013-11-05 13:16 - 2013-11-05 13:16 - 0003584 _____ () C:\Users\Adiorz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-04-21 00:25 - 2014-04-21 00:25 - 0000337 _____ () C:\Users\Adiorz\AppData\Local\Perfmon.PerfmonCfg 2015-04-25 16:42 - 2015-04-25 16:42 - 0000268 ___RH () C:\ProgramData\Licenses 2015-04-25 16:44 - 2015-04-25 16:44 - 0000268 ___RH () C:\ProgramData\Light Machine 2015-04-25 16:42 - 2015-04-25 16:42 - 0000268 ___RH () C:\ProgramData\Limiter 2015-04-25 16:41 - 2015-04-25 16:41 - 0000268 ___RH () C:\ProgramData\MediaFolder 2014-04-21 16:57 - 2014-04-21 16:57 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc 2015-04-25 16:41 - 2015-04-25 16:41 - 0000020 ____H () C:\ProgramData\PKP_DLeo.DAT 2015-04-25 16:44 - 2015-04-25 16:44 - 0000020 ____H () C:\ProgramData\PKP_DLes.DAT 2015-04-25 16:42 - 2015-04-26 14:36 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT 2015-04-25 16:42 - 2015-04-25 16:42 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT 2013-10-30 10:48 - 2013-10-30 10:48 - 0010443 _____ () C:\ProgramData\regid.2009-06.com.flexerasoftware_E8544335-72A1-47D2-B281-75B66D03EF81.swidtag Some files in TEMP: ==================== C:\Users\Adiorz\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmphh4y2p.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-11-10 09:10 ==================== End of FRST.txt ============================