CloseProcesses:
CreateRestorePoint:
C:\Program Files (x86)\Sendori
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Sendori Tray] => "C:\Program Files (x86)\Sendori\SendoriTray.exe"
Winsock: Catalog9 01 C:\windows\system32\Sendori.dll No File
Winsock: Catalog9 02 C:\windows\system32\Sendori.dll No File
Winsock: Catalog9 03 C:\windows\system32\Sendori.dll No File
Winsock: Catalog9 04 C:\windows\system32\Sendori.dll No File
Winsock: Catalog9 15 C:\windows\system32\Sendori.dll No File
SearchScopes: HKLM -> DefaultScope {75379EA4-2F6A-4C28-BDDD-CFC4D93246C8} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSND
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {75379EA4-2F6A-4C28-BDDD-CFC4D93246C8} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSND
SearchScopes: HKLM-x32 -> DefaultScope {2F297660-EFDC-4380-A348-0811B1B04BE5} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSND
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {2F297660-EFDC-4380-A348-0811B1B04BE5} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSND
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3225826
SearchScopes: HKU\S-1-5-21-2496118000-1725222440-1282827072-1000 -> DefaultScope {2F297660-EFDC-4380-A348-0811B1B04BE5} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7GGHP_en
SearchScopes: HKU\S-1-5-21-2496118000-1725222440-1282827072-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2496118000-1725222440-1282827072-1000 -> {3E660E37-BE69-4763-A772-0DF745D905E8} URL = hxxp://search.yahoo.com/search?p={searchterms}&ei=UTF-8&fr=w3i&type=W3i_DS,136,0_0,Search,20110624,6901,0,8,0
SearchScopes: HKU\S-1-5-21-2496118000-1725222440-1282827072-1000 -> {75379EA4-2F6A-4C28-BDDD-CFC4D93246C8} URL =
SearchScopes: HKU\S-1-5-21-2496118000-1725222440-1282827072-1000 -> {A0A271BD-F46C-442A-A1E2-1D60507360D4} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSND
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO-x32: No Name -> {9D425283-D487-4337-BAB6-AB8354A81457} -> No File
Toolbar: HKLM-x32 - No Name - {9D425283-D487-4337-BAB6-AB8354A81457} -  No File
Toolbar: HKU\S-1-5-21-2496118000-1725222440-1282827072-1000 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -  No File
Toolbar: HKU\S-1-5-21-2496118000-1725222440-1282827072-1000 -> No Name - {9D425283-D487-4337-BAB6-AB8354A81457} -  No File
R2 Application Sendori; C:\Program Files (x86)\Sendori\SendoriSvc.exe [118632 2012-11-26] (Sendori, Inc.) <==== ATTENTION
S2 Service Sendori; C:\Program Files (x86)\Sendori\Sendori.Service.exe [X]
S2 sndappv2; C:\Program Files (x86)\Sendori\sndappv2.exe [X] <==== ATTENTION
S3 ALSysIO; \??\C:\Users\STEVEN~1\AppData\Local\Temp\ALSysIO64.sys [X]
2015-11-30 10:52 - 2011-06-14 01:42 - 00000000 ____D C:\ProgramData\InstallMate
2015-11-19 16:57 - 2012-11-11 19:45 - 00000000 ____D C:\Program Files (x86)\Sendori
2015-11-18 16:56 - 2012-11-06 18:02 - 00000000 ____D C:\Users\stevenlaks\AppData\Local\Conduit
2015-11-18 16:35 - 2012-11-12 08:17 - 00000000 ____D C:\Users\stevenlaks\AppData\Roaming\BitTorrent
2015-11-18 16:35 - 2015-04-15 18:46 - 00003400 _____ C:\windows\System32\Tasks\BackgroundContainer Startup Task
Task: {520693F1-FFD0-4C89-8015-EA4915527F59} - System32\Tasks\BackgroundContainer Startup Task => Rundll32.exe "C:\Users\stevenlaks\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <==== ATTENTION
C:\Users\stevenlaks\AppData\Local\Conduit
Task: {A280AB26-97D2-48FC-BA92-5EBBECCC1B71} - System32\Tasks\FreeFileViewerUpdateChecker => C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe [2011-03-11] (Bitberry Software) <==== ATTENTION
C:\Program Files (x86)\FreeFileViewer
Task: C:\windows\Tasks\FreeFileViewerUpdateChecker.job => C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sndappv2 => ""="service"
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset catalog
CMD: ipconfig /flushdns
RemoveProxy:
hosts:
Emptytemp: