Qksee, aiuto!

fazzi

Nuovo Utente
29
1
Buongiorno a tutti, premetto che potrei aver sbagliato sezione ma non ho trovato nulla di più adatto di "sicurezza" XD
Ho un problema col programma Qksee, l'ho notato ieri per caso sul mio desktop e ho provato a rimuoverlo.
La disinstallazione andando su pannello di controllo non funzionava e manco ccleaner , quindi ho provato con Revo e pareva avesse funzionato.
Ma oggi provando a scaricare un immagine ho notato che si poteva salvare solo in formato "Qkseeviewer.gif" e che se provavo a creare una nuova cartella mi dava anche la possibilità di creare un file "Qkseeviewer.bmp", quindi ho supposto che qk non fosse stato eliminato del tutto.
Quindi ho riprovato con Revo, supponendo che fosse un problema di google ho provato anche con chrome software cleaner e adw cleaner.
Ho cambiato e reimpostato tuttle le impostazioni di google e ho verificato se ci fossero estensioni inutili ma niente Qksee continua ad infestare il mio pc.
Qualcuno ha un idea , io non so assolutamente più cosa fare.
Grazie in anticipo!
 
I

Il cecchino Jackson

Ospite
penso che arriverà qualcuno a consigliarti di fare una passata di malwarebytes free in mod provvisoria..quindi se vuoi , prova già a farlo..googolando sembra un adware


(io so a malapena accendere un pc)

- - - Updated - - -

qui altri articoli sugli strumenti utili per rimozione di cose indesiderate.


Strumenti di rimozione software antivirus / firewall di terze - Microsoft Community

http://answers.microsoft.com/it-it/...ome-devo/96083a66-936b-4a6d-9b19-1782caae8fa0

oppure devi aspettare qualche esperto che te lo rimuova "a mano" .ma intanto prova magari
 
  • Mi piace
Reazioni: Mursey

menatwork

Utente Attivo
1,303
232
prova a fare questa scansione, non elimina nulla, devi solo aspettare che controllo i due log e successivamente ti preparero' una procedura di rimozione personalizzata

scarica farbar-recovery e mettilo sul desktop


Devi scaricare la versione(32 o 64 bit) compatibile con il tuo sistema)

Avvialo e clicca su yes quando ti chiede di accettare le condizioni

Clicca su SCAN

Una volta terminata la scansione il tool creerà nella stessa directory di dove è posizionato FRST due log FRST.txt e Addition.txt

Allegali nella tua prossima risposta
 

fazzi

Nuovo Utente
29
1
Grazie ad entrambi per le risposte, malwarebytes non rileva niente T-T e anche facendo quello che c'era scritto negli articoli non ho risolto :(
Ho fatto la scan con farbar e questi sono i risultati:

addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01Ran by Fazzari (2016-03-26 01:51:35)
Running from C:\Users\Fazzari\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2015-06-15 14:08:53)
Boot Mode: Normal
==========================================================




==================== Accounts: =============================


Administrator (S-1-5-21-2977542406-82795762-3972309660-500 - Administrator - Disabled)
Fazzari (S-1-5-21-2977542406-82795762-3972309660-1000 - Administrator - Enabled) => C:\Users\Fazzari
Guest (S-1-5-21-2977542406-82795762-3972309660-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2977542406-82795762-3972309660-1002 - Limited - Enabled)


==================== Security Center ========================


(If an entry is included in the fixlist, it will be removed.)


AV: Emsisoft Anti-Malware (Enabled - Up to date) {15510D9D-6530-DA29-224F-7BA1BDD1CB58}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {AE30EC79-430A-D5A7-18FF-40D3C65681E5}


==================== Installed Programs ======================


(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)


7-Zip 15.14 (HKLM-x32\...\7-Zip) (Version: 15.14 - Igor Pavlov)
Adobe Acrobat Reader DC - Italiano (HKLM-x32\...\{AC76BA86-7AD7-1040-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.5.1.209 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.3.183.90 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.1 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.1.171 - Adobe Systems, Inc.)
Aggiornamenti NVIDIA 2.4.5.57 (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{97FCE17A-EE75-465B-A844-3D458CF8B801}) (Version: 4.2.60128.3 - Microsoft Corporation)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.23.0 - Asmedia Technology)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.237 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.237 - NC Interactive, LLC) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
D-Link DWA-131 Wireless N Nano USB Adapter (HKLM-x32\...\{98B82958-1DCA-4504-BE88-C91F1C7A7225}) (Version: 1 - D-LinSetup will installk)
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Emsisoft Anti-Malware (HKLM\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 11.0 - Emsisoft Ltd.)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.108 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.2.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.1.41 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware versione 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manga Studio Debut 4.0 (HKLM-x32\...\Manga Studio Debut 4.0) (Version: - )
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{D68E6605-F852-4936-AB64-04B80E0C85AD}) (Version: 2.2.0.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Update 1 (HKLM-x32\...\{1d03ad7c-fa27-4517-91b0-410bb49f94d9}) (Version: 14.0.24720.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.3.0.43 - Symantec Corporation)
Not A Hero (HKLM-x32\...\Not A Hero_is1) (Version: - )
NVIDIA Driver 3D Vision 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation)
NVIDIA Driver audio HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Driver del controller 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Driver grafico 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
One Night at Flumpty's: Dilogy (HKLM-x32\...\{281094C9-85E7-4594-870E-5DB61DE33E32}_is1) (Version: 1.0 - Jonochrome)
Pannello di controllo NVIDIA 353.30 (Version: 353.30 - NVIDIA Corporation) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28549 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.91.1119.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7354 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.5 - VS Revo Group, Ltd.)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24730 - Microsoft Corporation) Hidden
Sculptris Alpha 6 (HKLM-x32\...\Sculptris Alpha 6 Alpha 6) (Version: Alpha 6 - Pixologic)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.20.3137.0 - Hi-Rez Studios)
Software per periferiche con chipset Intel® (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.12.23 - Synaptics Incorporated)
Tavoletta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.14-1 - Wacom Technology Corp.)
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-2977542406-82795762-3972309660-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.11.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.10.0 - GOG.com)
TypeScript Power Tool (x32 Version: 1.7.6.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.6.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.6.0 (HKLM-x32\...\{5ee9a47a-3630-4016-b76d-dc752e9218dd}) (Version: 1.7.24809.0 - Microsoft Corporation)
Unity (HKLM-x32\...\Unity) (Version: 5.3.3f1 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-2977542406-82795762-3972309660-1000\...\UnityWebPlayer) (Version: 5.3.3f1 - Unity Technologies ApS)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes)
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Wick (HKLM-x32\...\Wick_is1) (Version: - )
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)


==================== Custom CLSID (Whitelisted): ==========================


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


CustomCLSID: HKU\S-1-5-21-2977542406-82795762-3972309660-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)


==================== Scheduled Tasks (Whitelisted) =============


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


Task: {0497A469-259B-45B4-B9A6-787AC65B37B8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {0654531F-7D0C-4B2E-B4E3-F75DD66A5EC2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-08] (Google Inc.)
Task: {177364D9-CE3B-4C31-9215-A051110943AF} - System32\Tasks\{0A1EBB65-078A-468C-8289-4FDA88E1D86E} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-01-19] (Skype Technologies S.A.)
Task: {290F6C4C-B6F7-40C9-B70D-0A5C48D13140} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-14] (AVAST Software)
Task: {3013F3D2-DF93-45D5-A5CC-A990237CDB9C} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\1CD96C272483FBA4414C06647C941BCC\Update\BrowserUpdate.exe [2016-03-17] (Tencent)
Task: {4948EDB0-C9D8-4714-8EAC-F95036AEA3A7} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-06] (AVAST Software)
Task: {4EA3E3BA-EBF5-4F40-93A8-50CA673583A6} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {86A484F7-7FD1-4D68-832F-AF49B89327E8} - System32\Tasks\Norton Security Scan for Fazzari => C:\Program Files (x86)\Norton Security Scan\Engine\4.3.0.43\Nss.exe [2015-07-07] (Symantec Corporation)
Task: {8709636B-7E06-4816-BB62-A69860041E54} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {88B9502F-132C-47B8-8843-CC7638777ED7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-08] (Google Inc.)
Task: {E044EE85-2123-4B89-942F-719309608215} - \task Update -> No File <==== ATTENTION


(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Security Scan for Fazzari.job => C:\PROGRA~2\NORTON~2\Engine\430~1.43\Nss.exe


==================== Shortcuts =============================


(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============


2015-06-30 20:19 - 2015-06-17 07:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-06-15 15:12 - 2014-01-28 04:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2015-11-05 01:11 - 2015-11-05 01:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-06-20 13:37 - 2008-06-26 18:09 - 00167936 _____ () C:\Program Files (x86)\D-Link\DWA-131\WlanWpsSvc.exe
2015-10-02 23:13 - 2015-08-21 19:33 - 01347264 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2016-02-13 17:29 - 2016-01-22 13:55 - 00553136 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-02-12 22:13 - 2016-02-12 22:13 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1040.dll
2016-02-13 17:29 - 2016-01-22 13:54 - 31420080 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-12-21 08:55 - 2015-12-21 08:55 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-08-14 23:39 - 2015-08-14 23:39 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-08-14 23:39 - 2015-08-14 23:39 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-03-25 13:06 - 2016-03-25 13:06 - 02857472 _____ () C:\Program Files\AVAST Software\Avast\defs\16032500\algo.dll
2016-03-25 23:17 - 2016-03-25 23:17 - 02857472 _____ () C:\Program Files\AVAST Software\Avast\defs\16032501\algo.dll
2015-06-15 15:12 - 2016-03-25 23:16 - 00035472 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2015-06-15 15:12 - 2014-01-28 04:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2015-06-30 19:53 - 2015-06-24 12:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-12-31 18:29 - 2015-12-22 08:49 - 00154712 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2016-03-25 13:56 - 2016-03-23 05:31 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.108\libglesv2.dll
2016-03-25 13:56 - 2016-03-23 05:31 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.108\libegl.dll
2012-08-25 05:43 - 2012-08-25 05:43 - 00014336 _____ () C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\FPSClient.dll
2016-01-06 02:11 - 2016-01-06 02:11 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-06-20 13:37 - 2013-12-04 09:46 - 00413696 _____ () C:\Program Files (x86)\D-Link\DWA-131\WlanDll.dll
2015-07-16 21:09 - 2015-07-16 21:09 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-02-13 17:29 - 2016-01-28 12:32 - 40523456 ____N () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2013-10-22 09:24 - 2013-10-22 09:24 - 24978944 _____ () C:\ProgramData\Razer\SwitchBlade\Resources\CEF1\libcef.dll
2013-10-22 09:24 - 2013-10-22 09:24 - 00736256 _____ () C:\ProgramData\Razer\SwitchBlade\Resources\CEF1\libglesv2.dll
2013-10-22 09:24 - 2013-10-22 09:24 - 00130048 _____ () C:\ProgramData\Razer\SwitchBlade\Resources\CEF1\libegl.dll
2016-02-13 17:29 - 2016-01-28 12:32 - 01365696 ____N () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libglesv2.dll
2016-02-13 17:29 - 2016-01-28 12:32 - 00219328 ____N () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libegl.dll
2016-01-21 00:22 - 2016-01-21 00:22 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-01-21 00:22 - 2016-01-21 00:22 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-01-21 00:23 - 2016-01-21 00:23 - 00121344 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-01-21 00:23 - 2016-01-21 00:23 - 00129536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-02-12 10:24 - 2016-02-12 10:24 - 00089280 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\native\ProxyResolverWin7.dll
2016-01-21 00:22 - 2016-01-21 00:22 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-12-01 20:14 - 2015-12-01 20:16 - 45069312 _____ () C:\Program Files (x86)\GalaxyClient\libcef.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00500224 _____ () C:\Program Files (x86)\GalaxyClient\PocoUtil.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00488960 _____ () C:\Program Files (x86)\GalaxyClient\PocoXML.dll
2015-12-01 20:14 - 2016-03-23 13:25 - 00144384 _____ () C:\Program Files (x86)\GalaxyClient\expat.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 01571840 _____ () C:\Program Files (x86)\GalaxyClient\PocoFoundation.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00415232 _____ () C:\Program Files (x86)\GalaxyClient\pcre.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00096768 _____ () C:\Program Files (x86)\GalaxyClient\zlib.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00324096 _____ () C:\Program Files (x86)\GalaxyClient\PocoJSON.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 01075712 _____ () C:\Program Files (x86)\GalaxyClient\PocoNet.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 01847808 _____ () C:\Program Files (x86)\GalaxyClient\PocoData.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00387072 _____ () C:\Program Files (x86)\GalaxyClient\PocoDataSQLite.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00672768 _____ () C:\Program Files (x86)\GalaxyClient\sqlite.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00290304 _____ () C:\Program Files (x86)\GalaxyClient\PocoNetSSL.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00153088 _____ () C:\Program Files (x86)\GalaxyClient\PocoCrypto.dll
2015-12-01 20:14 - 2016-03-23 13:26 - 00258560 _____ () C:\Program Files (x86)\GalaxyClient\PocoZip.dll
2015-12-01 20:14 - 2015-04-09 15:52 - 00107520 _____ () C:\Program Files (x86)\GalaxyClient\ZLIB1.dll
2016-02-18 14:34 - 2015-10-06 20:26 - 50656768 _____ () C:\Users\Fazzari\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-12-01 20:14 - 2015-12-01 20:16 - 01643008 _____ () C:\Program Files (x86)\GalaxyClient\libglesv2.dll
2015-12-01 20:14 - 2015-12-01 20:16 - 00074752 _____ () C:\Program Files (x86)\GalaxyClient\libegl.dll
2016-02-18 14:34 - 2015-10-06 20:26 - 01874944 _____ () C:\Users\Fazzari\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2016-02-18 14:34 - 2015-10-06 20:26 - 00075264 _____ () C:\Users\Fazzari\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2016-02-13 17:29 - 2016-01-08 03:05 - 00124416 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-02-13 17:29 - 2016-01-08 03:05 - 00121344 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2016-02-13 17:29 - 2016-01-08 03:05 - 00129536 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-02-13 17:29 - 2016-01-08 03:05 - 00188416 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-02-13 17:29 - 2016-01-28 13:03 - 00089280 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\native\ProxyResolverWin7.dll
2016-02-13 17:29 - 2016-01-08 03:05 - 00085504 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\bufferutil.node
2016-02-13 17:29 - 2016-01-08 03:05 - 00086016 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\validation.node
2016-02-13 17:29 - 2016-01-08 03:05 - 00081408 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-03-25 13:56 - 2016-03-23 05:31 - 17545880 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.108\PepperFlash\pepflashplayer.dll
2014-04-29 15:23 - 2014-04-29 15:23 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll


==================== Alternate Data Streams (Whitelisted) =========


(If an entry is included in the fixlist, only the ADS will be removed.)




==================== Safe Mode (Whitelisted) ===================


(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)




==================== EXE Association (Whitelisted) ===============


(If an entry is included in the fixlist, the registry item will be restored to default or removed.)




==================== Internet Explorer trusted/restricted ===============


(If an entry is included in the fixlist, it will be removed from the registry.)




==================== Hosts content: ===============================


(If needed Hosts: directive could be included in the fixlist to reset Hosts.)


2009-07-14 03:34 - 2016-01-24 02:15 - 00000822 ____A C:\Windows\system32\Drivers\etc\hosts


# ::1 localhost


==================== Other Areas ============================


(Currently there is no automatic fix for this section.)


HKU\S-1-5-21-2977542406-82795762-3972309660-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.


==================== MSCONFIG/TASK MANAGER disabled items ==


(Currently there is no automatic fix for this section.)




==================== FirewallRules (Whitelisted) ===============


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


FirewallRules: [{CEB17B91-BCE1-433A-A2B7-AF98C09B3497}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0892FB47-3EC2-4706-BD23-087B29AC4FC0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5C5D3B8E-A954-485C-A595-49AF46737969}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CF8141AF-CB3C-40BE-9E0B-6D6E76E77D09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A45E7112-36E5-465C-A7E9-2CDDB2F890C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D0D386A6-560E-41E9-B2B3-8186D3179CE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{182438C0-CC20-46B1-AC8F-72C037952A7A}] => (Allow) E:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{C9E613E9-0A33-485F-A110-9B896DB8A969}] => (Allow) E:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{0EBE122E-A29B-4257-A1F6-45A9B74CD0F9}E:\gbr_eng\tera\tera-launcher.exe] => (Allow) E:\gbr_eng\tera\tera-launcher.exe
FirewallRules: [UDP Query User{A5C4845E-5154-45D8-8F26-859C12E5E5F0}E:\gbr_eng\tera\tera-launcher.exe] => (Allow) E:\gbr_eng\tera\tera-launcher.exe
FirewallRules: [{468B9B08-0161-453D-AAA6-9A96B3E1CD9F}] => (Allow) E:\SteamLibrary\steamapps\common\Dungeon Souls\DungeonSouls.exe
FirewallRules: [{84769B9E-073A-4EDB-A432-3D487B764221}] => (Allow) E:\SteamLibrary\steamapps\common\Dungeon Souls\DungeonSouls.exe
FirewallRules: [{504C770E-DCE1-45A9-B72A-2026EABFE45E}] => (Allow) E:\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{CF78984E-3F0A-45AD-83C8-E820BE052884}] => (Allow) E:\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{757F7083-2F6B-40D4-826F-C08E58F9DA8B}] => (Allow) E:\SteamLibrary\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{E9A28EE2-3E01-4B2B-BBE0-4EA0AA99E0CA}] => (Allow) E:\SteamLibrary\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{B9007A79-670E-44B3-A426-D5077EC6B4C1}] => (Allow) E:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{5B8FC98A-5994-4626-B2C9-2DBA13AF3E65}] => (Allow) E:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{F1EF34BE-284C-4CC5-896B-2B4CF326DAE8}] => (Allow) E:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{E6885C83-A960-4397-B28D-3D77929E608D}] => (Allow) E:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{834F2BEF-B273-45FB-9128-83052CA9EC0A}E:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) E:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{22B0674E-CA13-4DB8-8329-DD3E9BEA7052}E:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) E:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{BE38C8D1-AA0D-45D9-9FFF-C4124CF1F5CF}] => (Block) E:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{6C968D75-BA25-48C0-96CE-57745B0D6D98}] => (Block) E:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{01634E44-5506-4CF5-83B2-AA1ED3D0F1C5}] => (Allow) E:\SteamLibrary\steamapps\common\Brick-Force ROW\InfernumLogin.exe
FirewallRules: [{A43158F2-37A6-4537-ACBD-AEAD967BF621}] => (Allow) E:\SteamLibrary\steamapps\common\Brick-Force ROW\InfernumLogin.exe
FirewallRules: [TCP Query User{717F4B7A-017D-42D0-9AF1-049B7B1FD9D4}E:\steamlibrary\steamapps\common\brick-force row\brickforce.exe] => (Allow) E:\steamlibrary\steamapps\common\brick-force row\brickforce.exe
FirewallRules: [UDP Query User{5A650EFC-C527-4D09-975F-7A8B7F5AC031}E:\steamlibrary\steamapps\common\brick-force row\brickforce.exe] => (Allow) E:\steamlibrary\steamapps\common\brick-force row\brickforce.exe
FirewallRules: [{58DB9450-0249-4048-8284-88CD8EAA2026}] => (Block) E:\steamlibrary\steamapps\common\brick-force row\brickforce.exe
FirewallRules: [{74BDB7FE-350F-4DF6-BC24-999320D85F9C}] => (Block) E:\steamlibrary\steamapps\common\brick-force row\brickforce.exe
FirewallRules: [{FDEC617C-96E4-4A81-A6C5-4BF0822F12CB}] => (Allow) E:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{7F43AA24-CB9B-4C1E-9901-4EE2C0F4B1B7}] => (Allow) E:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{4D569A57-8065-4C5A-AB64-CA5AF7F6CA40}] => (Allow) E:\SteamLibrary\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{FB6B5E76-C15D-4CC8-A23C-71A5D56F1EA0}] => (Allow) E:\SteamLibrary\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{5CE60A59-60B4-4148-9D8D-4F47DC640F56}] => (Allow) E:\SteamLibrary\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{FC562DFB-6049-43CE-8BF1-C212BE1FBB7D}] => (Allow) E:\SteamLibrary\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{DB4F7085-1DAE-4968-B5C0-63731022FF49}] => (Allow) E:\SteamLibrary\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{6CCAA6D8-5742-43A5-8CB4-7A6B541CA4D2}] => (Allow) E:\SteamLibrary\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{53D0534D-E3FD-46B6-AF1F-92613DDD2288}] => (Allow) E:\SteamLibrary\steamapps\common\Phantom Breaker Battle Grounds\bin\pbbg_win32.exe
FirewallRules: [{021C12EB-5E1C-4C46-B5EE-5716EDAE6DEE}] => (Allow) E:\SteamLibrary\steamapps\common\Phantom Breaker Battle Grounds\bin\pbbg_win32.exe
FirewallRules: [TCP Query User{353996E1-9172-4DDE-A11F-7CE38E1EE3F4}E:\hirezgames\smite\binaries\win32\smite.exe] => (Allow) E:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{B540E0C9-EBC6-4B49-87E4-F9801E9E8AB3}E:\hirezgames\smite\binaries\win32\smite.exe] => (Allow) E:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{AD85FB61-EBD9-4535-B988-8F72EDC0D4A5}] => (Block) E:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{22038F9D-8144-4BBA-8D22-8EA7CF6736B1}] => (Block) E:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{9D505571-CDC4-4A61-AD5F-CECF045FB358}] => (Allow) E:\SteamLibrary\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
FirewallRules: [{4776A1A9-255A-48FF-8ACE-7B735C11D10A}] => (Allow) E:\SteamLibrary\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
FirewallRules: [{B506CB81-BB39-4ECB-89E0-52DEDFEF80F5}] => (Allow) E:\SteamLibrary\steamapps\common\Vox Populi Vox Dei(a werewolf thriller) Episode 2\VP2.exe
FirewallRules: [{EE6EE85F-9D47-43E6-A1F1-D59C1CFCB01A}] => (Allow) E:\SteamLibrary\steamapps\common\Vox Populi Vox Dei(a werewolf thriller) Episode 2\VP2.exe
FirewallRules: [{B68FA86C-0F26-4FAF-A2C9-4092F7718EEF}] => (Allow) E:\SteamLibrary\steamapps\common\Costume Quest\Cq.exe
FirewallRules: [{FB683079-C5CF-4036-A9CC-4211809B3B61}] => (Allow) E:\SteamLibrary\steamapps\common\Costume Quest\Cq.exe
FirewallRules: [{0D71F8ED-8CCE-462A-A03F-62ED47033C6F}] => (Allow) E:\GameforgeLive\gfl_client.exe
FirewallRules: [{B79E10BF-8ACC-4BCA-A7CA-0706D8151FD3}] => (Allow) C:\Users\Fazzari\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{F238CDD8-AD50-4ACA-A928-85FD576F465E}] => (Allow) C:\Users\Fazzari\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{CD484E40-866A-4560-8677-438727C3E3A7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{6346C922-6556-453D-9A8E-148FC1659991}E:\games\ben.and.ed\benanded\binaries\win64\benanded.exe] => (Block) E:\games\ben.and.ed\benanded\binaries\win64\benanded.exe
FirewallRules: [UDP Query User{79B7ADF5-3B89-46F2-A52B-18672CAC4987}E:\games\ben.and.ed\benanded\binaries\win64\benanded.exe] => (Block) E:\games\ben.and.ed\benanded\binaries\win64\benanded.exe
FirewallRules: [TCP Query User{0A00FE8B-2E08-4A0D-BA90-1355B1D10CFC}E:\tom clancy's the division beta\thedivision.exe] => (Allow) E:\tom clancy's the division beta\thedivision.exe
FirewallRules: [UDP Query User{182C92B4-831A-4582-8DB7-F580D1B3BE60}E:\tom clancy's the division beta\thedivision.exe] => (Allow) E:\tom clancy's the division beta\thedivision.exe
FirewallRules: [{B08C0C43-0303-4A21-A8D6-55529D1067AC}] => (Block) E:\tom clancy's the division beta\thedivision.exe
FirewallRules: [{396B5934-3865-4743-9141-4377A5D094E8}] => (Block) E:\tom clancy's the division beta\thedivision.exe
FirewallRules: [TCP Query User{7DF6D928-D166-4E93-83C1-81F699F740B6}E:\!downloads\lumberyard\dev\bin64\assetprocessor_tmp.exe] => (Allow) E:\!downloads\lumberyard\dev\bin64\assetprocessor_tmp.exe
FirewallRules: [UDP Query User{98572E43-8E10-4D8A-AF78-561A21E0F382}E:\!downloads\lumberyard\dev\bin64\assetprocessor_tmp.exe] => (Allow) E:\!downloads\lumberyard\dev\bin64\assetprocessor_tmp.exe
FirewallRules: [{4B9C5900-1A1B-45FD-ADBB-B0C2A5899C82}] => (Block) E:\!downloads\lumberyard\dev\bin64\assetprocessor_tmp.exe
FirewallRules: [{C8E73BFD-3794-4C55-AF78-67AA6FE80D6C}] => (Block) E:\!downloads\lumberyard\dev\bin64\assetprocessor_tmp.exe
FirewallRules: [TCP Query User{DD73DE9D-1522-4AC3-830A-90C2B43AC393}E:\!downloads\lumberyard\dev\bin64\editor.exe] => (Allow) E:\!downloads\lumberyard\dev\bin64\editor.exe
FirewallRules: [UDP Query User{FD96016A-BF5B-4A52-886E-C1F05F339F9B}E:\!downloads\lumberyard\dev\bin64\editor.exe] => (Allow) E:\!downloads\lumberyard\dev\bin64\editor.exe
FirewallRules: [{E43F5106-14C3-4F6C-9327-0BE54FC6A9FA}] => (Block) E:\!downloads\lumberyard\dev\bin64\editor.exe
FirewallRules: [{2322AB83-807E-4B74-8706-11B3E7AD91C6}] => (Block) E:\!downloads\lumberyard\dev\bin64\editor.exe
FirewallRules: [{6C0A075F-ACA8-48C5-B23B-3AB900F75AE4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{BEF944A3-C4F7-4A53-8F1D-082E183FF8BC}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity\2015\UnityVS.OpenFile.exe
FirewallRules: [{977A5A62-F3E9-4A17-AD12-76D9C4977789}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{1A927935-33AE-4EDF-A111-6EF1ED7A0E8A}] => (Allow) E:\unity\Editor\Unity.exe
FirewallRules: [{B3FC2CA6-ABFE-4582-8433-373C78394AB7}] => (Allow) E:\!Downloads\steamzz\Steam.exe
FirewallRules: [{BFC77A99-3357-4945-9F63-F8DD4EB2D3FD}] => (Allow) E:\!Downloads\steamzz\Steam.exe
FirewallRules: [{0CD71406-74B2-4A27-B7AE-368CB920102E}] => (Allow) E:\!Downloads\steamzz\bin\steamwebhelper.exe
FirewallRules: [{38C3B4D1-D03C-4E47-9FA3-B96091C0315D}] => (Allow) E:\!Downloads\steamzz\bin\steamwebhelper.exe
FirewallRules: [{DC24F275-DEA2-4590-BCA6-BCA398EA461D}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{59E0CA48-83FD-457F-9850-3B54F0F3AAB3}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{FFDAA14B-83D8-479A-A832-B7842B6C2DD6}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{339AC202-F7DA-4E38-8F12-840B0DF9549B}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{AD503247-F786-4FC3-B4B5-56951C6DA5CB}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{64EA75CD-5D49-4E69-87EF-21B502AD8CAF}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{D4B5178D-4340-4C5E-A57C-C15FE67E4B8E}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{A0605190-26BD-4443-B562-099EA119DEA6}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{AA5CC604-77CF-4CF6-8055-255CB2A579E3}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{004CDE1A-99C0-4A46-9180-F5950FB0AC18}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{3AE49396-9371-4C15-8641-964C1327CE04}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{31E7FB27-8C16-4CEB-8BDD-91B02764323E}] => (Allow) E:\!Downloads\steamzz\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{DB34F19D-7077-4E61-BCBA-232249EF86E4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Restore Points =========================


09-03-2016 15:18:18 Windows Update
16-03-2016 15:25:44 Punto di controllo pianificato
24-03-2016 14:00:41 Punto di controllo pianificato
24-03-2016 19:51:12 Removed LogMeIn Hamachi
24-03-2016 19:54:14 Revo Uninstaller Pro's restore point - qksee


==================== Faulty Device Manager Devices =============




==================== Event log errors: =========================


Application errors:
==================
Error: (03/26/2016 12:29:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Il programma League of Legends.exe versione 6.6.137.4261 non interagisce più con Windows ed è stato chiuso. Per vedere se sono disponibili ulteriori informazioni sul problema, verificare la cronologia del problema in Centro operativo nel Pannello di controllo.


ID processo: 27e4


Ora di avvio: 01d186eddc33a89f


Ora di chiusura: 64


Percorso applicazione: E:\RADS\solutions\lol_game_client_sln\releases\0.0.1.125\deploy\League of Legends.exe


ID segnalazione:


Error: (03/25/2016 11:16:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (03/25/2016 02:35:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (03/25/2016 02:09:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (03/25/2016 01:05:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (03/24/2016 10:26:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (03/24/2016 07:54:14 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005, Accesso negato.
.
L'errore è spesso causato da impostazioni di sicurezza non corrette nel processo di scrittura o richiedente.




Operazione:
Raccolta dei dati del processo di scrittura


Contesto:
ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}
Nome del processo di scrittura: System Writer
ID dell'istanza del processo di scrittura: {534f24d2-e434-4561-b599-2046d1d54204}


Error: (03/24/2016 01:20:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (03/23/2016 10:16:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (03/23/2016 01:23:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003




System errors:
=============
Error: (03/25/2016 11:16:16 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Impossibile avviare il modulo di estendibilità WLAN.


Percorso modulo: C:\Windows\system32\Rtlihvs.dll
Codice di errore: 126


Error: (03/25/2016 02:35:49 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Impossibile avviare il modulo di estendibilità WLAN.


Percorso modulo: C:\Windows\system32\Rtlihvs.dll
Codice di errore: 126


Error: (03/25/2016 02:35:10 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Tentativo di eseguire un'azione di correzione (Riavvia il servizio) dopo l'arresto imprevista del servizio Windows Search. Tentativo non riuscito per l'errore:
%%1056


Error: (03/25/2016 02:34:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Intel(R) Dynamic Application Loader Host Interface Service. Questo evento si è già verificato 1 volta(e).


Error: (03/25/2016 02:34:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Intel(R) Rapid Storage Technology. Questo evento si è già verificato 1 volta(e).


Error: (03/25/2016 02:34:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Servizio di condivisione in rete Windows Media Player è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 30000 millisecondi: Riavvia il servizio.


Error: (03/25/2016 02:34:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio Disc Soft Lite Bus Service. Questo evento si è già verificato 1 volta(e).


Error: (03/25/2016 02:34:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Windows Search è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 30000 millisecondi: Riavvia il servizio.


Error: (03/25/2016 02:34:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Protezione software è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 120000 millisecondi: Riavvia il servizio.


Error: (03/25/2016 02:34:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Arresto imprevista del servizio WlanWpsSvc. Questo evento si è già verificato 1 volta(e).




==================== Memory info ===========================


Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 51%
Total physical RAM: 8132.49 MB
Available physical RAM: 3933.93 MB
Total Virtual: 16263.19 MB
Available Virtual: 11040.97 MB


==================== Drives ================================


Drive c: () (Fixed) (Total:119.14 GB) (Free:37.92 GB) NTFS
Drive e: (Volume) (Fixed) (Total:931.39 GB) (Free:533.92 GB) NTFS


==================== MBR & Partition Table ==================


========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E1D6EC22)


Partition: GPT.


========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: DAAC40D7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)


==================== End of Addition.txt ============================

La FRST è troppo lunga e non riesco a mandartela, ma soprattutto pur volendo tagliare qualcosa non so cosa sia essenziale e cosa no :(
 
Ultima modifica:
I

Il cecchino Jackson

Ospite
per la lunghezza: allega il file txt, non copiare e incollare
 
Ultima modifica da un moderatore:

menatwork

Utente Attivo
1,303
232
La FRST è troppo lunga e non riesco a mandartela, ma soprattutto pur volendo tagliare qualcosa non so cosa sia essenziale e cosa no


senza il log FRST.txt non possso andare avanti, per allegare il file trovi le indicazioni nella mia firma
 
I

Il cecchino Jackson

Ospite
Per curiosità posso chiederti se tutti quegli strumenti di rimozione non rilevavano nulla o non riuscivano a togliere il "virus"? Grazie
 

fazzi

Nuovo Utente
29
1
all'inizio non riuscivo proprio a disinstallarlo , dopo aver usato revo sono riuscito a disinstallarlo e da quel punto in poi tutto ciò che ho usato non ha rilevato niente T-T
 

menatwork

Utente Attivo
1,303
232
di Qksee nemmeno l'ombra evidentemente e' stato rimosso con le pulizie che hai fatto, dovresti comunque rieseguire adwcleaner, clicca prima su ''analizza'' poi su ''pulizia'' e allega il log poi fai anche questa scansione

Disattiva temporaneamente l'antivirus


scarica Junkware Removal Tool clicca sull'icona di JRT e attendi pazientemente la fine della scansione
Una volta terminata dovrebbe aprirsi il log sul desktop come JRT.txt

ora scarica sul desktop dove hai messo FRST il file in allegato , poi apri il programmino e clicca una sola volta FIX , alla fine verra' rilasciato ul log come fixlog.txt che dovrai allegare
 

Allegati

  • fixlist.txt
    640 bytes · Visualizzazioni: 116

fazzi

Nuovo Utente
29
1
Bhe sono contento che per lo meno non c'è niente sul pc xD
il risultato di adwcleaner è:
# AdwCleaner v5.105 - File di log creato 27/03/2016 a 01:01:43# Aggiornato 21/03/2016 da Xplode
# Database : 2016-03-26.1 [Server]
# Sistema operativo : Windows 7 Home Premium Service Pack 1 (x64)
# Nome utente : Fazzari - FAZZARI-PC
# Eseguendo da : C:\Users\Fazzari\Downloads\adwcleaner_5.105.exe
# Opzione : Pulizia
# Supporto : ToolsLib - Forum: Ask for help or share your experience.


***** [ Servizi ] *****




***** [ Cartelle ] *****




***** [ File ] *****




***** [ DLLs ] *****




***** [ Collegamenti ] *****




***** [ Attività pianificate ] *****




***** [ Registro ] *****




***** [ Browser web ] *****




*************************


:: "Tracce" di chiavi rimosse
:: Impostazioni Winsock ripristinate


*************************


C:\AdwCleaner\AdwCleaner[C1].txt - [4509 byte] - [25/03/2016 14:34:42]
C:\AdwCleaner\AdwCleaner[C2].txt - [1185 byte] - [27/03/2016 00:40:58]
C:\AdwCleaner\AdwCleaner[C3].txt - [893 byte] - [27/03/2016 01:01:43]
C:\AdwCleaner\AdwCleaner[S1].txt - [4095 byte] - [25/03/2016 14:33:50]
C:\AdwCleaner\AdwCleaner[S2].txt - [941 byte] - [25/03/2016 14:37:39]
C:\AdwCleaner\AdwCleaner[S3].txt - [1012 byte] - [27/03/2016 00:40:16]
C:\AdwCleaner\AdwCleaner[S4].txt - [1158 byte] - [27/03/2016 01:00:59]


########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [1251 byte] ##########

Il JRT:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.4 (03.14.2016)
Operating System: Windows 7 Home Premium x64
Ran by Fazzari (Administrator) on 27/03/2016 at 0:45:34,66
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~








File System: 24


Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2723J355 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4Q5CU5Z7 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8QFKBLWQ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BOU1R44A (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ED5E6999 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KIIOPYXP (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L2BQ1AB0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Fazzari\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZF520AD8 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2723J355 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4Q5CU5Z7 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8QFKBLWQ (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BOU1R44A (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ED5E6999 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KIIOPYXP (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L2BQ1AB0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZF520AD8 (Temporary Internet Files Folder)






Registry: 0










~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/03/2016 at 0:48:18,60
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

invece il fixlog:
Fix result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01Ran by Fazzari (2016-03-27 00:54:07) Run:1
Running from C:\Users\Fazzari\Downloads
Loaded Profiles: Fazzari (Available Profiles: Fazzari)
Boot Mode: Normal
==============================================


fixlist content:
*****************
start
HKU\S-1-5-21-2977542406-82795762-3972309660-1000\...\MountPoints2: {140fe881-afbb-11e5-948b-1c872c421e96} - F:\setup.exe
HKU\S-1-5-21-2977542406-82795762-3972309660-1000\...\MountPoints2: {231a54ed-2f9c-11e5-b464-1c872c421e96} - F:\Setup.exe
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
2016-03-25 23:17 - 2015-06-30 20:19 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-15 15:17 - 2015-06-15 15:17 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
C:\Windows\SysWOW64\Drivers\X6va029
Task: {E044EE85-2123-4B89-942F-719309608215} - \task Update -> No File <==== ATTENTION
end
EmptyTemp:
Reboot:










*****************


"HKU\S-1-5-21-2977542406-82795762-3972309660-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{140fe881-afbb-11e5-948b-1c872c421e96}" => key removed successfully
HKCR\CLSID\{140fe881-afbb-11e5-948b-1c872c421e96} => key not found.
"HKU\S-1-5-21-2977542406-82795762-3972309660-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{231a54ed-2f9c-11e5-b464-1c872c421e96}" => key removed successfully
HKCR\CLSID\{231a54ed-2f9c-11e5-b464-1c872c421e96} => key not found.
X6va029 => service removed successfully
C:\ProgramData\boost_interprocess => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Windows\SysWOW64\Drivers\X6va029" => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E044EE85-2123-4B89-942F-719309608215}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E044EE85-2123-4B89-942F-719309608215}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\task Update => key not found.
EmptyTemp: => 566.6 MB temporary data Removed.




The system needed a reboot.


==== End of Fixlog 00:54:41 ====

Ecco tutto ^-^ e comunque grazie a tutti per l'aiuto!
 

menatwork

Utente Attivo
1,303
232
fai pulizia con = > ccleaner registro compreso poi sempre con ccleaner vai su strumenti e ripristino sistema, cancella tutti i punti di ripristino, non cancellare quello in grigio

vai in C ed elimina la cartella FRST

se non riscontri altri problemi possiamo chiudere
 

fazzi

Nuovo Utente
29
1
Tutto fatto, ma ho ancora il problema principale, ossia che quando vado a salvare un immagine su chrome mi da solo il formato qkseeviewer, con explorer invece le salva in tutti i formati tranquillamente.
 

fazzi

Nuovo Utente
29
1
Scusa se tardo a rispondere ma ieri non ci sono stato, comunque ho disinstallato e reinstallato e ancora mi da lo stesso problema T-T
 

Entra

oppure Accedi utilizzando
Discord Ufficiale Entra ora!