Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-04-2015 04
Ran by Diolan (administrator) on DIOLAN-PC on 15-04-2015 21:25:28
Running from C:\Users\Diolan\Downloads
Loaded Profiles: Diolan (Available profiles: Diolan)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
() C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Spotify Ltd) C:\Users\Diolan\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Sony Computer Entertainment Inc.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe
() C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe
(Sony Computer Entertainment Inc.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMAWatcher.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Microsoft) C:\Users\Diolan\AppData\Local\Temp\win32ui\win32ui.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Cristi) C:\Program Files (x86)\Dual Monitor\DualMonitor.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Diolan\Desktop\Dolphin-x64\Dolphin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11613288 2010-11-19] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585536 2014-09-19] (Razer Inc.)
HKLM-x32\...\Run: [Winlogon] => C:\Users\Diolan\AppData\Roaming\SubFolder\SubFolder\winlogon.exe [3395584 2014-07-30] ()
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3129560 2014-02-24] (Disc Soft Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Spotify Web Helper] => C:\Users\Diolan\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1964088 2015-03-23] (Spotify Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Winlogon] => C:\Users\Diolan\AppData\Roaming\SubFolder\SubFolder\winlogon.exe [3395584 2014-07-30] ()
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [dualmonitor] => [X]
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [system] => C:\Users\Diolan\AppData\Roaming\sys32\win32ui.exe [282656 2014-07-31] (Microsoft)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [f.lux] => C:\Users\Diolan\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-15] (Flux Software LLC)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Spotify] => C:\Users\Diolan\AppData\Roaming\Spotify\Spotify.exe [6701624 2015-03-23] (Spotify Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3325824 2015-04-11] (Echobit LLC)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: H - H:\setup.exe
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: {09853d44-0d35-11e4-9abe-14dae9096cff} - H:\setup.exe
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: {a5f3410a-2e96-11e4-9d74-14dae9096cff} - H:\setup.exe
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: {ae21202b-0e06-11e4-9282-14dae9096cff} - I:\CMADownloader.exe
HKU\S-1-5-18\...\Run: [Backblaze] => "C:\Program Files (x86)\Backblaze\bzbui.exe" -quiet
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-09-25] (Microsoft Corporation)
HKU\S-1-5-18\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-18\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-18\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoStartMenuSubFolders] 0
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Content Manager Assistant for PlayStation(R).lnk
ShortcutTarget: Content Manager Assistant for PlayStation(R).lnk -> C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe (Sony Computer Entertainment Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hauppauge Device Properties.lnk
ShortcutTarget: Hauppauge Device Properties.lnk -> C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDCTrayTool.exe (Hauppauge Computer Works, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Configuration Utility.lnk
ShortcutTarget: Wireless Configuration Utility.lnk -> C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe ()
Startup: C:\Users\Diolan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
Startup: C:\Users\Diolan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Super_Smash_Bros_Melee_U_OneUp.lnk
ShortcutTarget: Super_Smash_Bros_Melee_U_OneUp.lnk -> C:\ProgramData\{fb696783-eda7-80fa-fb69-96783eda9e0f}\Super_Smash_Bros_Melee_U_OneUp.exe (No File)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?rd=1&ucc=CA&dcc=CA&opt=0&ocid=iehp
SearchScopes: HKU\S-1-5-21-1416841813-2958593455-3838444299-1000 -> {5A1C5AE9-DE83-41D4-8F0C-059125A34198} URL = https://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-03-02] (Oracle Corporation)
BHO: SoalePlus -> {92e9e0f3-2dc6-4050-a91e-479c671616ec} -> C:\Program Files (x86)\SoalePlus\7PjshDgTLBEPeo.x64.dll [2015-04-14] ()
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-03-02] (Oracle Corporation)
BHO: No Name -> {edc9325b-181b-4563-bcf8-cceeb8158c5a} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-19] (Oracle Corporation)
BHO-x32: SoalePlus -> {92e9e0f3-2dc6-4050-a91e-479c671616ec} -> C:\Program Files (x86)\SoalePlus\7PjshDgTLBEPeo.dll [2015-04-14] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-19] (Oracle Corporation)
BHO-x32: No Name -> {edc9325b-181b-4563-bcf8-cceeb8158c5a} -> No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{80A1ADCE-CC72-4A27-9684-87295C42B3F7}: [NameServer] 208.67.222.222,208.68.220.220
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-03-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-03-02] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-10-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-10-19] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [2015-01-30] (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Diolan\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-04] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> https://www.google.ca/
CHR StartupUrls: Default -> "hxxp://google.ca/", "hxxp://www.v9.com/?type=hppp&ts=1404232067&from=adks&uid=SamsungXSSDX840XEVOX120GB_S1D5NSADC63703E&I=psd&t=344fccf27", "hxxp://www.v9.com/?type=hppp&ts=1404322292&from=adks&uid=SamsungXSSDX840XEVOX120GB_S1D5NSADC63703E&I=psd&t=3450a9391", "hxxp://mysearch.avg.com?cid={32589852-F03E-4E63-BC83-40E2735FD50E}&mid=24ec2a0f3a1c47d299f5c593afed850c-deb18940266d4729decc18da223c5dbc7d73be3d&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-07-06 03:38:36&v=3.0.0.2&pid=wtu&sg=&sap=hp"
CHR Profile: C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (BetterTTV) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2014-07-09]
CHR Extension: (Media Hint) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\akipcefbjlmpbcejgdaopmmidpnjlhnb [2015-02-24]
CHR Extension: (Google Docs) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-09]
CHR Extension: (Faceit Customizer) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomgehfnddilfkjooooihdnjeabknepl [2015-04-04]
CHR Extension: (Google Drive) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-09]
CHR Extension: (Adguard AdBlocker) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2014-07-09]
CHR Extension: (YouTube) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-09]
CHR Extension: (Adblock Plus) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-09]
CHR Extension: (Google Search) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-09]
CHR Extension: (LoL Stream Browser) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\edidfaijmhpefkbnobdcepampbncgejp [2014-10-10]
CHR Extension: (FrankerFaceZ) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2014-07-09]
CHR Extension: (AudioBox Micro Player) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfmlbdkencbfhbekcehpkgmianmlgfe [2015-02-02]
CHR Extension: (AdBlock) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-09]
CHR Extension: (Lone Tree) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfmkllfplegemejikoabfpjdaoncphip [2014-09-14]
CHR Extension: (YouRepeat) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\idpjonelgkpmoamjkigojeifadlhlbna [2014-07-09]
CHR Extension: (Adblock Advisor) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iplojogpbcbnjoemcalepfmbcpnkpjjo [2014-07-09]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2014-07-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Until AM for Chrome) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjafmkicbmhcbapadecadciafbkecofl [2014-09-14]
CHR Extension: (Google Wallet) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-09]
CHR Extension: (Gmail) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-09]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 celavimushost; C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe [124632 2015-03-29] (altPUG LLC)
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-07-10] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2008-11-18] (Creative Technology Ltd) [File not signed]
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1581440 2015-04-11] (Echobit LLC)
R3 HcwDevCentralService; C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe [399120 2014-07-10] (Hauppauge Computer Works, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
R2 WlanWpsSvc; C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe [167936 2008-06-26] () [File not signed]
S2 WRSVC; "C:\Program Files\Webroot\WRSA.exe" -service [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 CMUSBDAC; C:\Windows\System32\DRIVERS\CMUSBDAC.sys [594944 2014-09-19] (C-MEDIA)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-28] (Disc Soft Ltd)
R3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2015-04-11] (Echobit, LLC)
S3 hcwE5bda; C:\Windows\System32\drivers\hcwE5bda.sys [969048 2014-04-29] (Hauppauge Computer Work, Inc.)
S0 hmUXjYgF; C:\Windows\System32\drivers\hmUXjYgF.sys [116736 2015-04-15] (Webroot)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2014-05-19] (Razer Inc)
S3 RZMAELSTROMVADService; C:\Windows\System32\drivers\RzMaelstromVAD.sys [32768 2014-06-09] (Windows (R) Win 7 DDK provider)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ESEADriver2; \??\C:\Users\Diolan\AppData\Local\Temp\ESEADriver2.sys [X]
U0 SR; No ImagePath
U2 srservice; No ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
R0 WRkrn; System32\drivers\WRkrn.sys [X]
S3 X6va022; \??\C:\Windows\SysWOW64\Drivers\X6va022 [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-15 21:25 - 2015-04-15 21:25 - 02097664 _____ (Farbar) C:\Users\Diolan\Downloads\FRST64.exe
2015-04-15 21:25 - 2015-04-15 21:25 - 00032767 _____ () C:\Users\Diolan\Downloads\FRST.txt
2015-04-15 21:25 - 2015-04-15 21:25 - 00000000 ____D () C:\FRST
2015-04-15 21:24 - 2015-04-15 21:25 - 150062624 _____ (Avast Software s.r.o.) C:\Users\Diolan\Downloads\avast_free_antivirus_setup.exe
2015-04-15 20:59 - 2015-04-15 20:59 - 00002794 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-15 20:59 - 2015-04-15 20:59 - 00000831 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-15 20:59 - 2015-04-15 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-15 20:59 - 2015-04-15 20:59 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-15 20:58 - 2015-04-15 20:59 - 05344528 _____ (Piriform Ltd) C:\Users\Diolan\Downloads\ccsetup504.exe
2015-04-15 20:56 - 2015-04-15 20:56 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2015-04-15 20:54 - 2015-04-15 20:54 - 00000000 ____D () C:\Imminent
2015-04-15 20:50 - 2015-04-15 20:50 - 00116736 _____ (Webroot) C:\Windows\system32\Drivers\hmUXjYgF.sys
2015-04-15 20:48 - 2015-04-15 20:48 - 00818096 _____ (Webroot) C:\Users\Diolan\Downloads\wsamgravt.exe
2015-04-15 20:46 - 2015-04-15 20:46 - 00000000 ____D () C:\Program Files\MotioninJoy
2015-04-15 20:46 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETFF98.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETFBF2.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETDB75.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETC98A.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETC2A8.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SET9AEC.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2015-04-15 20:46 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2015-04-15 20:45 - 2015-04-15 20:45 - 04117346 _____ () C:\Users\Diolan\Downloads\motioninjoy-0-7-1001-en-win.zip
2015-04-15 20:43 - 2015-04-15 20:43 - 02268888 _____ () C:\Users\Diolan\Downloads\DS3 Tool 1.0005 Win 64bit (1).7z
2015-04-15 20:41 - 2015-04-15 20:56 - 00000000 ____D () C:\Windows\LastGood
2015-04-15 20:39 - 2013-05-19 03:02 - 00039168 _____ (Scarlet.Crush Productions) C:\Windows\system32\Drivers\ScpVBus.sys
2015-04-15 20:39 - 2013-01-07 10:56 - 01002728 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2015-04-15 20:36 - 2015-04-15 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotionInJoy
2015-04-15 20:36 - 2015-04-15 20:36 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\MotioninJoy
2015-04-15 20:34 - 2015-04-15 20:34 - 02268888 _____ () C:\Users\Diolan\Downloads\DS3 Tool 1.0005 Win 64bit.7z
2015-04-14 19:12 - 2015-04-14 19:25 - 1020219424 _____ () C:\Users\Diolan\Downloads\Super Smash Bros. Melee (USA) (v1.02).7z
2015-04-14 19:07 - 2015-04-15 20:50 - 00000000 ____D () C:\Program Files (x86)\SoalePlus
2015-04-14 19:07 - 2015-04-14 19:07 - 00000000 ____D () C:\ProgramData\ibgbcibbebelcmilkemkojcfaflfgjjk
2015-04-14 19:07 - 2015-04-14 19:07 - 00000000 ____D () C:\ProgramData\4550243165891394748
2015-04-14 19:06 - 2015-04-15 20:50 - 00000000 ____D () C:\ProgramData\{fb696783-eda7-80fa-fb69-96783eda9e0f}
2015-04-14 19:06 - 2015-04-14 19:06 - 00374272 _____ () C:\Users\Diolan\Downloads\Super_Smash_Bros_Melee_U_OneUp.exe
2015-04-14 19:06 - 2015-04-14 19:06 - 00000000 ____D () C:\ProgramData\pplckchkbegbphedmogocpkmajicdglp
2015-04-14 19:00 - 2015-04-14 19:04 - 00000000 ____D () C:\Program Files\Dolphin
2015-04-14 19:00 - 2015-04-14 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2015-04-14 18:58 - 2015-04-14 18:58 - 10150809 _____ () C:\Users\Diolan\Downloads\dolphin-x64-4.0.2.exe
2015-04-14 18:54 - 2015-04-14 19:06 - 602023884 _____ () C:\Users\Diolan\Downloads\Super Smash Bros. Melee (USA) (v1.02) (1).7z.crdownload
2015-04-14 18:35 - 2015-04-14 18:35 - 00041188 _____ () C:\Users\Diolan\Downloads\70581-super-smash-bros-brawl-usa-wii-english.torrent
2015-04-14 18:29 - 2015-04-14 19:31 - 00000000 ____D () C:\Users\Diolan\Documents\Dolphin Emulator
2015-04-14 16:41 - 2015-04-14 16:41 - 00000000 ____D () C:\Users\Diolan\AppData\Local\openvr
2015-04-11 22:26 - 2015-04-11 22:27 - 00000000 ____D () C:\Halo Online
2015-04-11 21:48 - 2015-04-11 21:48 - 00021656 _____ (Echobit, LLC) C:\Windows\system32\Drivers\evolve.sys
2015-04-11 21:48 - 2015-04-11 21:48 - 00002034 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2015-04-11 21:48 - 2015-04-11 21:48 - 00002022 _____ () C:\Users\Public\Desktop\Evolve.lnk
2015-04-11 21:47 - 2015-04-11 21:47 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Echobit
2015-04-11 21:47 - 2015-04-11 21:47 - 00000000 ____D () C:\ProgramData\Echobit
2015-04-11 21:47 - 2015-04-11 21:47 - 00000000 ____D () C:\Program Files\Echobit
2015-04-08 03:29 - 2015-04-08 03:29 - 00000953 _____ () C:\Users\Diolan\Desktop\ESEA Client.lnk
2015-04-07 02:00 - 2015-04-07 02:00 - 00000982 _____ () C:\Users\Public\Desktop\Minecraft.lnk
2015-04-06 20:52 - 2015-04-15 21:17 - 00000000 ____D () C:\Users\Diolan\Desktop\Dolphin-x64
2015-04-06 20:52 - 2015-04-06 20:52 - 05104191 _____ () C:\Users\Diolan\Downloads\dolphin-master-4.0-5973-x64.7z
2015-04-04 22:00 - 2015-04-04 22:00 - 00341871 _____ () C:\Users\Diolan\Downloads\metal_gear_4.m4r
2015-04-04 21:59 - 2015-04-04 21:59 - 00476082 _____ () C:\Users\Diolan\Downloads\metal_gear_saga.m4r
2015-04-04 21:59 - 2015-04-04 21:59 - 00346084 _____ () C:\Users\Diolan\Downloads\borderlands_2 (1).m4r
2015-04-04 21:57 - 2015-04-04 21:57 - 00453174 _____ () C:\Users\Diolan\Downloads\sword_art_online.m4r
2015-04-04 21:57 - 2015-04-04 21:57 - 00265055 _____ () C:\Users\Diolan\Downloads\gnar_dance.m4r
2015-04-04 21:54 - 2015-04-04 21:54 - 00392574 _____ () C:\Users\Diolan\Downloads\borderlands_2.m4r
2015-04-04 21:53 - 2015-04-04 21:53 - 00475003 _____ () C:\Users\Diolan\Downloads\metal_gear_1.m4r
2015-04-04 21:48 - 2015-04-04 21:48 - 00292925 _____ () C:\Users\Diolan\Downloads\metal_gear_solid.m4r
2015-03-29 16:19 - 2015-03-29 16:20 - 00000000 ____D () C:\Users\Diolan\RuneLoader
2015-03-29 16:17 - 2015-03-29 16:19 - 00000000 ____D () C:\Users\Diolan\.runeloader_data
2015-03-18 09:27 - 2015-03-18 09:27 - 00000001 _____ () C:\Users\Diolan\rlvote.txt
2015-03-17 16:26 - 2015-03-17 16:26 - 00000000 ____D () C:\Users\Diolan\Tracing
2015-03-16 20:07 - 2015-03-16 20:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_ZuneDriver_01_09_00.Wdf
2015-03-16 20:07 - 2015-03-16 20:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-15 21:24 - 2014-07-09 20:18 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\Skype
2015-04-15 21:02 - 2015-02-24 23:06 - 00000000 ____D () C:\Users\Diolan\AppData\Local\CrashDumps
2015-04-15 21:02 - 2015-01-25 22:10 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\TS3Client
2015-04-15 21:02 - 2014-07-24 20:55 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\uTorrent
2015-04-15 21:02 - 2014-07-17 07:52 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\DAEMON Tools Pro
2015-04-15 21:02 - 2014-07-13 03:31 - 00000000 ____D () C:\Windows\Minidump
2015-04-15 21:02 - 2014-07-09 21:31 - 00000000 ____D () C:\Windows\Panther
2015-04-15 21:02 - 2014-07-09 19:19 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-15 20:57 - 2014-07-09 17:58 - 01103255 ____N () C:\Windows\WindowsUpdate.log
2015-04-15 20:51 - 2014-12-16 03:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-15 20:50 - 2015-02-01 07:47 - 00000000 ____D () C:\Program Files (x86)\DisplayFusion
2015-04-15 20:48 - 2014-07-09 18:18 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-15 17:48 - 2014-07-09 18:18 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-15 16:13 - 2009-07-14 01:13 - 00006346 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-15 16:07 - 2014-07-31 00:13 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\sys32
2015-04-15 16:07 - 2014-07-30 14:33 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Spotify
2015-04-15 16:07 - 2014-07-30 14:31 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\Spotify
2015-04-15 16:07 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-15 03:23 - 2014-07-10 04:02 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Battle.net
2015-04-14 18:36 - 2014-08-05 01:40 - 00000000 ____D () C:\Users\Diolan\Desktop\Games
2015-04-14 16:51 - 2014-12-16 03:03 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 16:51 - 2014-12-16 03:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-14 16:51 - 2014-12-16 03:03 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-13 21:24 - 2014-07-10 18:54 - 00000045 _____ () C:\Users\Diolan\jagex_cl_oldschool_LIVE.dat
2015-04-11 00:41 - 2014-08-24 06:08 - 00000072 _____ () C:\Users\Public\LMDebug.log
2015-04-10 21:40 - 2014-07-09 20:31 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\OBS
2015-04-10 02:09 - 2014-07-20 00:31 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\vlc
2015-04-10 01:30 - 2015-02-05 11:08 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\Curse Client
2015-04-09 23:04 - 2014-08-12 23:02 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\.minecraft
2015-04-09 14:36 - 2014-09-15 18:36 - 00000000 ____D () C:\ProgramData\Origin
2015-04-09 03:55 - 2009-07-14 00:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-09 03:55 - 2009-07-14 00:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-08 00:41 - 2015-03-14 23:57 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Deployment
2015-04-07 20:18 - 2014-07-10 04:02 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 02:00 - 2014-12-21 14:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-04-07 02:00 - 2014-12-21 14:20 - 00000000 ____D () C:\Program Files (x86)\Minecraft
2015-04-04 13:24 - 2009-07-14 01:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-29 16:19 - 2014-07-09 17:59 - 00000000 ____D () C:\Users\Diolan
2015-03-25 16:17 - 2014-07-09 20:31 - 00000000 ____D () C:\Program Files (x86)\OBS
2015-03-25 08:06 - 2014-07-30 17:49 - 00001713 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-03-25 08:06 - 2014-07-30 17:49 - 00000000 ____D () C:\Program Files\Rainmeter
2015-03-18 09:27 - 2014-11-27 01:56 - 00000000 _____ () C:\Users\Diolan\songList.txt
2015-03-17 16:40 - 2014-07-09 20:18 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-17 16:40 - 2014-07-09 20:18 - 00000000 ____D () C:\ProgramData\Skype
==================== Files in the root of some directories =======
2014-12-04 04:00 - 2014-12-04 04:00 - 0000030 _____ () C:\Users\Diolan\AppData\Roaming\.runescape_cache.dat
2015-01-20 00:56 - 2015-01-20 00:56 - 0007602 _____ () C:\Users\Diolan\AppData\Local\Resmon.ResmonCfg
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Diolan\AppData\Local\setup.txt
2015-04-04 21:38 - 2015-04-04 21:50 - 0082068 _____ () C:\Users\Diolan\AppData\Local\ZedgeLog.txt
Files to move or delete:
====================
C:\Users\Diolan\5FD64C77B7ECACC7315CD3FC2C86E70D.dat
C:\Users\Diolan\7A1920D61156ABC05A60135AEFE8BC67.dat
C:\Users\Diolan\829CFEFC69C06850A5725503FB7D9FF0.dat
C:\Users\Diolan\boomscape_cl_boomscape_LIVE.dat
C:\Users\Diolan\jagex_cl_oldschool_LIVE.dat
C:\Users\Diolan\jagex_cl_oldschool_LIVE1.dat
C:\Users\Diolan\jagex_cl_runescape_LIVE.dat
C:\Users\Diolan\random.dat
C:\Users\Diolan\system32log.dat
C:\Users\Diolan\YOUR CLIENT NAME HERE_runescape_preferences.dat
C:\Users\Diolan\YOUR CLIENT NAME HERE_runescape_preferences2.dat
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-04 17:56
==================== End Of Log ============================
Ran by Diolan (administrator) on DIOLAN-PC on 15-04-2015 21:25:28
Running from C:\Users\Diolan\Downloads
Loaded Profiles: Diolan (Available profiles: Diolan)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
() C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Spotify Ltd) C:\Users\Diolan\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Sony Computer Entertainment Inc.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe
() C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe
(Sony Computer Entertainment Inc.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMAWatcher.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Microsoft) C:\Users\Diolan\AppData\Local\Temp\win32ui\win32ui.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Cristi) C:\Program Files (x86)\Dual Monitor\DualMonitor.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Diolan\Desktop\Dolphin-x64\Dolphin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11613288 2010-11-19] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585536 2014-09-19] (Razer Inc.)
HKLM-x32\...\Run: [Winlogon] => C:\Users\Diolan\AppData\Roaming\SubFolder\SubFolder\winlogon.exe [3395584 2014-07-30] ()
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3129560 2014-02-24] (Disc Soft Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Spotify Web Helper] => C:\Users\Diolan\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1964088 2015-03-23] (Spotify Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Winlogon] => C:\Users\Diolan\AppData\Roaming\SubFolder\SubFolder\winlogon.exe [3395584 2014-07-30] ()
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [dualmonitor] => [X]
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [system] => C:\Users\Diolan\AppData\Roaming\sys32\win32ui.exe [282656 2014-07-31] (Microsoft)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [f.lux] => C:\Users\Diolan\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-15] (Flux Software LLC)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [Spotify] => C:\Users\Diolan\AppData\Roaming\Spotify\Spotify.exe [6701624 2015-03-23] (Spotify Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3325824 2015-04-11] (Echobit LLC)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: H - H:\setup.exe
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: {09853d44-0d35-11e4-9abe-14dae9096cff} - H:\setup.exe
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: {a5f3410a-2e96-11e4-9d74-14dae9096cff} - H:\setup.exe
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\...\MountPoints2: {ae21202b-0e06-11e4-9282-14dae9096cff} - I:\CMADownloader.exe
HKU\S-1-5-18\...\Run: [Backblaze] => "C:\Program Files (x86)\Backblaze\bzbui.exe" -quiet
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-09-25] (Microsoft Corporation)
HKU\S-1-5-18\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-18\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-18\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoStartMenuSubFolders] 0
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Content Manager Assistant for PlayStation(R).lnk
ShortcutTarget: Content Manager Assistant for PlayStation(R).lnk -> C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe (Sony Computer Entertainment Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hauppauge Device Properties.lnk
ShortcutTarget: Hauppauge Device Properties.lnk -> C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDCTrayTool.exe (Hauppauge Computer Works, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Configuration Utility.lnk
ShortcutTarget: Wireless Configuration Utility.lnk -> C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe ()
Startup: C:\Users\Diolan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
Startup: C:\Users\Diolan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Super_Smash_Bros_Melee_U_OneUp.lnk
ShortcutTarget: Super_Smash_Bros_Melee_U_OneUp.lnk -> C:\ProgramData\{fb696783-eda7-80fa-fb69-96783eda9e0f}\Super_Smash_Bros_Melee_U_OneUp.exe (No File)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1416841813-2958593455-3838444299-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?rd=1&ucc=CA&dcc=CA&opt=0&ocid=iehp
SearchScopes: HKU\S-1-5-21-1416841813-2958593455-3838444299-1000 -> {5A1C5AE9-DE83-41D4-8F0C-059125A34198} URL = https://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-03-02] (Oracle Corporation)
BHO: SoalePlus -> {92e9e0f3-2dc6-4050-a91e-479c671616ec} -> C:\Program Files (x86)\SoalePlus\7PjshDgTLBEPeo.x64.dll [2015-04-14] ()
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-03-02] (Oracle Corporation)
BHO: No Name -> {edc9325b-181b-4563-bcf8-cceeb8158c5a} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-19] (Oracle Corporation)
BHO-x32: SoalePlus -> {92e9e0f3-2dc6-4050-a91e-479c671616ec} -> C:\Program Files (x86)\SoalePlus\7PjshDgTLBEPeo.dll [2015-04-14] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-19] (Oracle Corporation)
BHO-x32: No Name -> {edc9325b-181b-4563-bcf8-cceeb8158c5a} -> No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{80A1ADCE-CC72-4A27-9684-87295C42B3F7}: [NameServer] 208.67.222.222,208.68.220.220
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-03-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-03-02] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-10-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-10-19] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [2015-01-30] (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Diolan\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-04] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> https://www.google.ca/
CHR StartupUrls: Default -> "hxxp://google.ca/", "hxxp://www.v9.com/?type=hppp&ts=1404232067&from=adks&uid=SamsungXSSDX840XEVOX120GB_S1D5NSADC63703E&I=psd&t=344fccf27", "hxxp://www.v9.com/?type=hppp&ts=1404322292&from=adks&uid=SamsungXSSDX840XEVOX120GB_S1D5NSADC63703E&I=psd&t=3450a9391", "hxxp://mysearch.avg.com?cid={32589852-F03E-4E63-BC83-40E2735FD50E}&mid=24ec2a0f3a1c47d299f5c593afed850c-deb18940266d4729decc18da223c5dbc7d73be3d&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-07-06 03:38:36&v=3.0.0.2&pid=wtu&sg=&sap=hp"
CHR Profile: C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (BetterTTV) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2014-07-09]
CHR Extension: (Media Hint) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\akipcefbjlmpbcejgdaopmmidpnjlhnb [2015-02-24]
CHR Extension: (Google Docs) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-09]
CHR Extension: (Faceit Customizer) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomgehfnddilfkjooooihdnjeabknepl [2015-04-04]
CHR Extension: (Google Drive) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-09]
CHR Extension: (Adguard AdBlocker) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2014-07-09]
CHR Extension: (YouTube) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-09]
CHR Extension: (Adblock Plus) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-09]
CHR Extension: (Google Search) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-09]
CHR Extension: (LoL Stream Browser) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\edidfaijmhpefkbnobdcepampbncgejp [2014-10-10]
CHR Extension: (FrankerFaceZ) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2014-07-09]
CHR Extension: (AudioBox Micro Player) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfmlbdkencbfhbekcehpkgmianmlgfe [2015-02-02]
CHR Extension: (AdBlock) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-09]
CHR Extension: (Lone Tree) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfmkllfplegemejikoabfpjdaoncphip [2014-09-14]
CHR Extension: (YouRepeat) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\idpjonelgkpmoamjkigojeifadlhlbna [2014-07-09]
CHR Extension: (Adblock Advisor) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iplojogpbcbnjoemcalepfmbcpnkpjjo [2014-07-09]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2014-07-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Until AM for Chrome) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjafmkicbmhcbapadecadciafbkecofl [2014-09-14]
CHR Extension: (Google Wallet) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-09]
CHR Extension: (Gmail) - C:\Users\Diolan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-09]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 celavimushost; C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe [124632 2015-03-29] (altPUG LLC)
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-07-10] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2008-11-18] (Creative Technology Ltd) [File not signed]
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1581440 2015-04-11] (Echobit LLC)
R3 HcwDevCentralService; C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe [399120 2014-07-10] (Hauppauge Computer Works, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
R2 WlanWpsSvc; C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe [167936 2008-06-26] () [File not signed]
S2 WRSVC; "C:\Program Files\Webroot\WRSA.exe" -service [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 CMUSBDAC; C:\Windows\System32\DRIVERS\CMUSBDAC.sys [594944 2014-09-19] (C-MEDIA)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-28] (Disc Soft Ltd)
R3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2015-04-11] (Echobit, LLC)
S3 hcwE5bda; C:\Windows\System32\drivers\hcwE5bda.sys [969048 2014-04-29] (Hauppauge Computer Work, Inc.)
S0 hmUXjYgF; C:\Windows\System32\drivers\hmUXjYgF.sys [116736 2015-04-15] (Webroot)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2014-05-19] (Razer Inc)
S3 RZMAELSTROMVADService; C:\Windows\System32\drivers\RzMaelstromVAD.sys [32768 2014-06-09] (Windows (R) Win 7 DDK provider)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ESEADriver2; \??\C:\Users\Diolan\AppData\Local\Temp\ESEADriver2.sys [X]
U0 SR; No ImagePath
U2 srservice; No ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
R0 WRkrn; System32\drivers\WRkrn.sys [X]
S3 X6va022; \??\C:\Windows\SysWOW64\Drivers\X6va022 [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-15 21:25 - 2015-04-15 21:25 - 02097664 _____ (Farbar) C:\Users\Diolan\Downloads\FRST64.exe
2015-04-15 21:25 - 2015-04-15 21:25 - 00032767 _____ () C:\Users\Diolan\Downloads\FRST.txt
2015-04-15 21:25 - 2015-04-15 21:25 - 00000000 ____D () C:\FRST
2015-04-15 21:24 - 2015-04-15 21:25 - 150062624 _____ (Avast Software s.r.o.) C:\Users\Diolan\Downloads\avast_free_antivirus_setup.exe
2015-04-15 20:59 - 2015-04-15 20:59 - 00002794 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-15 20:59 - 2015-04-15 20:59 - 00000831 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-15 20:59 - 2015-04-15 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-15 20:59 - 2015-04-15 20:59 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-15 20:58 - 2015-04-15 20:59 - 05344528 _____ (Piriform Ltd) C:\Users\Diolan\Downloads\ccsetup504.exe
2015-04-15 20:56 - 2015-04-15 20:56 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2015-04-15 20:54 - 2015-04-15 20:54 - 00000000 ____D () C:\Imminent
2015-04-15 20:50 - 2015-04-15 20:50 - 00116736 _____ (Webroot) C:\Windows\system32\Drivers\hmUXjYgF.sys
2015-04-15 20:48 - 2015-04-15 20:48 - 00818096 _____ (Webroot) C:\Users\Diolan\Downloads\wsamgravt.exe
2015-04-15 20:46 - 2015-04-15 20:46 - 00000000 ____D () C:\Program Files\MotioninJoy
2015-04-15 20:46 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETFF98.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETFBF2.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETDB75.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETC98A.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SETC2A8.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\SET9AEC.tmp
2015-04-15 20:46 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2015-04-15 20:46 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2015-04-15 20:45 - 2015-04-15 20:45 - 04117346 _____ () C:\Users\Diolan\Downloads\motioninjoy-0-7-1001-en-win.zip
2015-04-15 20:43 - 2015-04-15 20:43 - 02268888 _____ () C:\Users\Diolan\Downloads\DS3 Tool 1.0005 Win 64bit (1).7z
2015-04-15 20:41 - 2015-04-15 20:56 - 00000000 ____D () C:\Windows\LastGood
2015-04-15 20:39 - 2013-05-19 03:02 - 00039168 _____ (Scarlet.Crush Productions) C:\Windows\system32\Drivers\ScpVBus.sys
2015-04-15 20:39 - 2013-01-07 10:56 - 01002728 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2015-04-15 20:36 - 2015-04-15 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotionInJoy
2015-04-15 20:36 - 2015-04-15 20:36 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\MotioninJoy
2015-04-15 20:34 - 2015-04-15 20:34 - 02268888 _____ () C:\Users\Diolan\Downloads\DS3 Tool 1.0005 Win 64bit.7z
2015-04-14 19:12 - 2015-04-14 19:25 - 1020219424 _____ () C:\Users\Diolan\Downloads\Super Smash Bros. Melee (USA) (v1.02).7z
2015-04-14 19:07 - 2015-04-15 20:50 - 00000000 ____D () C:\Program Files (x86)\SoalePlus
2015-04-14 19:07 - 2015-04-14 19:07 - 00000000 ____D () C:\ProgramData\ibgbcibbebelcmilkemkojcfaflfgjjk
2015-04-14 19:07 - 2015-04-14 19:07 - 00000000 ____D () C:\ProgramData\4550243165891394748
2015-04-14 19:06 - 2015-04-15 20:50 - 00000000 ____D () C:\ProgramData\{fb696783-eda7-80fa-fb69-96783eda9e0f}
2015-04-14 19:06 - 2015-04-14 19:06 - 00374272 _____ () C:\Users\Diolan\Downloads\Super_Smash_Bros_Melee_U_OneUp.exe
2015-04-14 19:06 - 2015-04-14 19:06 - 00000000 ____D () C:\ProgramData\pplckchkbegbphedmogocpkmajicdglp
2015-04-14 19:00 - 2015-04-14 19:04 - 00000000 ____D () C:\Program Files\Dolphin
2015-04-14 19:00 - 2015-04-14 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2015-04-14 18:58 - 2015-04-14 18:58 - 10150809 _____ () C:\Users\Diolan\Downloads\dolphin-x64-4.0.2.exe
2015-04-14 18:54 - 2015-04-14 19:06 - 602023884 _____ () C:\Users\Diolan\Downloads\Super Smash Bros. Melee (USA) (v1.02) (1).7z.crdownload
2015-04-14 18:35 - 2015-04-14 18:35 - 00041188 _____ () C:\Users\Diolan\Downloads\70581-super-smash-bros-brawl-usa-wii-english.torrent
2015-04-14 18:29 - 2015-04-14 19:31 - 00000000 ____D () C:\Users\Diolan\Documents\Dolphin Emulator
2015-04-14 16:41 - 2015-04-14 16:41 - 00000000 ____D () C:\Users\Diolan\AppData\Local\openvr
2015-04-11 22:26 - 2015-04-11 22:27 - 00000000 ____D () C:\Halo Online
2015-04-11 21:48 - 2015-04-11 21:48 - 00021656 _____ (Echobit, LLC) C:\Windows\system32\Drivers\evolve.sys
2015-04-11 21:48 - 2015-04-11 21:48 - 00002034 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2015-04-11 21:48 - 2015-04-11 21:48 - 00002022 _____ () C:\Users\Public\Desktop\Evolve.lnk
2015-04-11 21:47 - 2015-04-11 21:47 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Echobit
2015-04-11 21:47 - 2015-04-11 21:47 - 00000000 ____D () C:\ProgramData\Echobit
2015-04-11 21:47 - 2015-04-11 21:47 - 00000000 ____D () C:\Program Files\Echobit
2015-04-08 03:29 - 2015-04-08 03:29 - 00000953 _____ () C:\Users\Diolan\Desktop\ESEA Client.lnk
2015-04-07 02:00 - 2015-04-07 02:00 - 00000982 _____ () C:\Users\Public\Desktop\Minecraft.lnk
2015-04-06 20:52 - 2015-04-15 21:17 - 00000000 ____D () C:\Users\Diolan\Desktop\Dolphin-x64
2015-04-06 20:52 - 2015-04-06 20:52 - 05104191 _____ () C:\Users\Diolan\Downloads\dolphin-master-4.0-5973-x64.7z
2015-04-04 22:00 - 2015-04-04 22:00 - 00341871 _____ () C:\Users\Diolan\Downloads\metal_gear_4.m4r
2015-04-04 21:59 - 2015-04-04 21:59 - 00476082 _____ () C:\Users\Diolan\Downloads\metal_gear_saga.m4r
2015-04-04 21:59 - 2015-04-04 21:59 - 00346084 _____ () C:\Users\Diolan\Downloads\borderlands_2 (1).m4r
2015-04-04 21:57 - 2015-04-04 21:57 - 00453174 _____ () C:\Users\Diolan\Downloads\sword_art_online.m4r
2015-04-04 21:57 - 2015-04-04 21:57 - 00265055 _____ () C:\Users\Diolan\Downloads\gnar_dance.m4r
2015-04-04 21:54 - 2015-04-04 21:54 - 00392574 _____ () C:\Users\Diolan\Downloads\borderlands_2.m4r
2015-04-04 21:53 - 2015-04-04 21:53 - 00475003 _____ () C:\Users\Diolan\Downloads\metal_gear_1.m4r
2015-04-04 21:48 - 2015-04-04 21:48 - 00292925 _____ () C:\Users\Diolan\Downloads\metal_gear_solid.m4r
2015-03-29 16:19 - 2015-03-29 16:20 - 00000000 ____D () C:\Users\Diolan\RuneLoader
2015-03-29 16:17 - 2015-03-29 16:19 - 00000000 ____D () C:\Users\Diolan\.runeloader_data
2015-03-18 09:27 - 2015-03-18 09:27 - 00000001 _____ () C:\Users\Diolan\rlvote.txt
2015-03-17 16:26 - 2015-03-17 16:26 - 00000000 ____D () C:\Users\Diolan\Tracing
2015-03-16 20:07 - 2015-03-16 20:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_ZuneDriver_01_09_00.Wdf
2015-03-16 20:07 - 2015-03-16 20:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-15 21:24 - 2014-07-09 20:18 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\Skype
2015-04-15 21:02 - 2015-02-24 23:06 - 00000000 ____D () C:\Users\Diolan\AppData\Local\CrashDumps
2015-04-15 21:02 - 2015-01-25 22:10 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\TS3Client
2015-04-15 21:02 - 2014-07-24 20:55 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\uTorrent
2015-04-15 21:02 - 2014-07-17 07:52 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\DAEMON Tools Pro
2015-04-15 21:02 - 2014-07-13 03:31 - 00000000 ____D () C:\Windows\Minidump
2015-04-15 21:02 - 2014-07-09 21:31 - 00000000 ____D () C:\Windows\Panther
2015-04-15 21:02 - 2014-07-09 19:19 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-15 20:57 - 2014-07-09 17:58 - 01103255 ____N () C:\Windows\WindowsUpdate.log
2015-04-15 20:51 - 2014-12-16 03:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-15 20:50 - 2015-02-01 07:47 - 00000000 ____D () C:\Program Files (x86)\DisplayFusion
2015-04-15 20:48 - 2014-07-09 18:18 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-15 17:48 - 2014-07-09 18:18 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-15 16:13 - 2009-07-14 01:13 - 00006346 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-15 16:07 - 2014-07-31 00:13 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\sys32
2015-04-15 16:07 - 2014-07-30 14:33 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Spotify
2015-04-15 16:07 - 2014-07-30 14:31 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\Spotify
2015-04-15 16:07 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-15 03:23 - 2014-07-10 04:02 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Battle.net
2015-04-14 18:36 - 2014-08-05 01:40 - 00000000 ____D () C:\Users\Diolan\Desktop\Games
2015-04-14 16:51 - 2014-12-16 03:03 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 16:51 - 2014-12-16 03:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-14 16:51 - 2014-12-16 03:03 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-13 21:24 - 2014-07-10 18:54 - 00000045 _____ () C:\Users\Diolan\jagex_cl_oldschool_LIVE.dat
2015-04-11 00:41 - 2014-08-24 06:08 - 00000072 _____ () C:\Users\Public\LMDebug.log
2015-04-10 21:40 - 2014-07-09 20:31 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\OBS
2015-04-10 02:09 - 2014-07-20 00:31 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\vlc
2015-04-10 01:30 - 2015-02-05 11:08 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\Curse Client
2015-04-09 23:04 - 2014-08-12 23:02 - 00000000 ____D () C:\Users\Diolan\AppData\Roaming\.minecraft
2015-04-09 14:36 - 2014-09-15 18:36 - 00000000 ____D () C:\ProgramData\Origin
2015-04-09 03:55 - 2009-07-14 00:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-09 03:55 - 2009-07-14 00:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-08 00:41 - 2015-03-14 23:57 - 00000000 ____D () C:\Users\Diolan\AppData\Local\Deployment
2015-04-07 20:18 - 2014-07-10 04:02 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 02:00 - 2014-12-21 14:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-04-07 02:00 - 2014-12-21 14:20 - 00000000 ____D () C:\Program Files (x86)\Minecraft
2015-04-04 13:24 - 2009-07-14 01:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-29 16:19 - 2014-07-09 17:59 - 00000000 ____D () C:\Users\Diolan
2015-03-25 16:17 - 2014-07-09 20:31 - 00000000 ____D () C:\Program Files (x86)\OBS
2015-03-25 08:06 - 2014-07-30 17:49 - 00001713 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-03-25 08:06 - 2014-07-30 17:49 - 00000000 ____D () C:\Program Files\Rainmeter
2015-03-18 09:27 - 2014-11-27 01:56 - 00000000 _____ () C:\Users\Diolan\songList.txt
2015-03-17 16:40 - 2014-07-09 20:18 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-17 16:40 - 2014-07-09 20:18 - 00000000 ____D () C:\ProgramData\Skype
==================== Files in the root of some directories =======
2014-12-04 04:00 - 2014-12-04 04:00 - 0000030 _____ () C:\Users\Diolan\AppData\Roaming\.runescape_cache.dat
2015-01-20 00:56 - 2015-01-20 00:56 - 0007602 _____ () C:\Users\Diolan\AppData\Local\Resmon.ResmonCfg
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Diolan\AppData\Local\setup.txt
2015-04-04 21:38 - 2015-04-04 21:50 - 0082068 _____ () C:\Users\Diolan\AppData\Local\ZedgeLog.txt
Files to move or delete:
====================
C:\Users\Diolan\5FD64C77B7ECACC7315CD3FC2C86E70D.dat
C:\Users\Diolan\7A1920D61156ABC05A60135AEFE8BC67.dat
C:\Users\Diolan\829CFEFC69C06850A5725503FB7D9FF0.dat
C:\Users\Diolan\boomscape_cl_boomscape_LIVE.dat
C:\Users\Diolan\jagex_cl_oldschool_LIVE.dat
C:\Users\Diolan\jagex_cl_oldschool_LIVE1.dat
C:\Users\Diolan\jagex_cl_runescape_LIVE.dat
C:\Users\Diolan\random.dat
C:\Users\Diolan\system32log.dat
C:\Users\Diolan\YOUR CLIENT NAME HERE_runescape_preferences.dat
C:\Users\Diolan\YOUR CLIENT NAME HERE_runescape_preferences2.dat
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-04 17:56
==================== End Of Log ============================