Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

free avg is not scaning and computer acting weird [Solved]


  • This topic is locked This topic is locked

#1
Mad_Night

Mad_Night

    Member

  • Member
  • PipPip
  • 67 posts

i updated comondo and restarted then it was acting weird so i was going do a scan with avg but it's not workin and it seys no working componets.

you know when you move something or delete it?  well when i do that it doesn't show anything has changed untill i refresh it.

i don't know what to do and i don't want to have to reformat this thing if i don't have to.


Edited by Mad_Night, 11 May 2014 - 08:47 PM.

  • 0

Advertisements


#2
Valinorum

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Hi Mad_Night, :)

:welcome:

My name is Valinorum and I will be the acolyte today. Before we proceed, please, acknowledge yourself the following(s):
  • Please do not create any new threads on this while we are working on your system as it wastes another volunteer's time. If you are being helped/have solved the issue/no longer wish to continue, notify me in your reply and I will quickly close this thread. Failing to comply will result in denial of future assistance.
  • Please do not install any new software while we are working on this system as it may hinder our process.
  • Malware removal is a complicated process so don't stop following the steps even if the symptoms are not found. Keep up with me until I declare you clean.
  • Please do not try to fix anything without being ask.
  • Please do not attach your logs or put them inside code/quote tags. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.
  • Please print or save the instructions I give you for quick reference. We may be using Safe mode which will cut you off from internet and you will not always be able to access this thread.
  • Back up your data. I will not knowingly suggest your any course that might damage your system but sometimes Malware infections are so severe that only option we have is to re-format and re-install the operating system.
  • If you are confused about any instruction stop and ask. Do not keep on going.
  • Do not repeat the steps if you face any problems.
  • I am not an omniscient. There are things even I cannot foresee. But what I know took years to learn and perfect the skill. This site is run by volunteers who help people in need in their own free time. I would ask you to respect their time and be patient as sometimes real life demands our time and replies to you can be delayed.
  • Private Message(PM) if and only if I have not responded to your thread within three days or your query is offtopic and personal. Do not PM me under any other circumstances. Your thread is the only medium of communication.
  • The fixes are for your system only. Please refrain from using these fixes on other system as it may do serious damage.
 
  • Step #1 Scan with OTL
    • Please download OldTimer's Listit by OldTimer from one of the following locations and save it to your Desktop.
      Download Link 1
      Download Link 2
      Downlaod LInk 3
    • Copy and Paste the following code inside the Custom Scans/Fixes box;
      netsvcs
      BASESERVICES
      %SYSTEMDRIVE%\*.exe
      dir "%systemdrive%\*" /S /A:L /C
      /md5start
      services.*
      explorer.exe
      winlogon.exe
      Userinit.exe
      svchost.exe
      rpcss.dll
      /md5stop
      CREATERESTOREPOINT
    • Click the Quick Scan button;
    • After the scan two logs will be produced;
    • Copy and paste the content of the logs in your next reply
 
  • Step #2 Scan with Security Check
    • Download Security Check by screen317 to your Desktop from any of the following location;
    • Right click on the program and choose Run as Administrator;
    • After the checking a log will appear;
    • Copy and Paste the content of the log in your next reply.
 
  • Required Log(s):
    • OTL Log(s) --
      • OTL.txt
      • Extras.txt
    • Security Check Log
Regards,
Valinorum
  • 0

#3
Mad_Night

Mad_Night

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts

ok i tried to scan with otl but after i hit quick scan the thing froze.  i can't get it to do anything.  so i tried the other step and it was going just fine till it got to the "Performing System Health check"  and stoped.  it's been there for a few hours.

is there anything i can do?


  • 0

#4
Valinorum

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
How long OTL stalls? Report me if it stalls for more than 40 minutes. Also, inform me about your Operating System (OS).
  • 0

#5
Mad_Night

Mad_Night

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts

i have windows 7.  sorry i forgot to say that in the first post.

anyway both things have been stalled for hours and no change


  • 0

#6
Valinorum

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Start the computer in Safe Mode (instructions here) and try to do the steps.
  • 0

#7
Mad_Night

Mad_Night

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts

ok it worked in safe mode.

 

OTL

OTL logfile created on: 5/12/2014 10:59:44 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Sy\Desktop
64bit- Home Premium Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.75 Gb Total Physical Memory | 3.19 Gb Available Physical Memory | 85.06% Memory free
7.50 Gb Paging File | 6.96 Gb Available in Paging File | 92.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 447.66 Gb Total Space | 12.20 Gb Free Space | 2.73% Space Free | Partition Type: NTFS
Drive G: | 1397.26 Gb Total Space | 1.19 Gb Free Space | 0.09% Space Free | Partition Type: NTFS
Drive H: | 442.98 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: UDF
Drive K: | 465.11 Gb Total Space | 1.64 Gb Free Space | 0.35% Space Free | Partition Type: NTFS
 
Computer Name: HITACHI | User Name: Sy | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/05/12 03:25:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Sy\Desktop\OTL.exe
 
 
========== Modules (No Company Name) ==========
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2014/04/16 16:12:45 | 006,817,544 | ---- | M] (COMODO) [Auto | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2014/03/25 14:22:18 | 002,264,280 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV:64bit: - [2012/09/08 17:50:26 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2010/09/22 21:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/08/19 18:43:23 | 000,386,344 | ---- | M] () [Auto | Stopped] -- C:\Program Files\CyberLink\Shared files\RichVideo64.exe -- (RichVideo64)
SRV:64bit: - [2010/01/28 18:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto | Stopped] -- C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe -- (Updater Service)
SRV:64bit: - [2010/01/21 02:53:42 | 000,496,232 | ---- | M] () [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)
SRV:64bit: - [2010/01/21 02:53:42 | 000,209,000 | ---- | M] () [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2014/04/27 16:37:59 | 001,801,240 | ---- | M] (AVG Secure Search) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe -- (vToolbarUpdater18.1.0)
SRV - [2014/04/03 09:49:12 | 001,809,720 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014/04/03 09:49:12 | 000,857,912 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/11/20 02:54:20 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2013/07/04 15:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/10/02 17:21:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/06/14 17:20:14 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 16:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/30 01:40:16 | 001,043,584 | ---- | M] (Hewlett-Packard Co.) [Auto | Stopped] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/01/15 16:08:38 | 000,935,208 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/10/09 21:59:08 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/08/28 04:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe -- (Greg_Service)
SRV - [2009/07/13 04:08:04 | 000,024,168 | ---- | M] (The Within Network, LLC) [Auto | Stopped] -- C:\Windows\UnsignedThemesSvc.exe -- (UnsignedThemes)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/05/12 02:05:52 | 000,247,808 | ---- | M] (Winstep Software Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Winstep\WsxService.exe -- (Winstep Xtreme Service)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2014/05/12 04:17:54 | 000,119,512 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014/04/27 16:37:59 | 000,050,464 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2014/04/15 13:35:26 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2014/04/03 09:51:16 | 000,063,192 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:64bit: - [2014/04/03 09:50:58 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2014/03/23 08:56:15 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013/11/25 02:48:36 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2013/10/23 02:05:08 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2013/10/15 12:38:24 | 000,140,560 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:64bit: - [2013/09/04 14:57:44 | 000,031,264 | ---- | M] (ThreatTrack Security) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\gfiutil.sys -- (gfiutil)
DRV:64bit: - [2013/07/20 01:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2013/07/20 01:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2013/07/20 01:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2013/07/01 01:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2013/05/23 08:39:24 | 000,041,032 | ---- | M] (ThreatTrack Security) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\gfiark.sys -- (gfiark)
DRV:64bit: - [2013/03/29 02:26:36 | 000,204,032 | ---- | M] (WinISO.com) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\WinisoCDBus.sys -- (WinisoCDBus)
DRV:64bit: - [2013/01/17 14:15:12 | 000,066,800 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGSHidFilt.Sys -- (LGSHidFilt)
DRV:64bit: - [2012/12/09 04:51:20 | 000,126,944 | ---- | M] (Power Software Ltd) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:64bit: - [2012/02/15 11:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/07/22 11:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 16:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/03/16 23:27:49 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2011/03/11 01:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/09/23 03:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/07/22 06:37:32 | 000,125,888 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AnyDVD.sys -- (AnyDVD)
DRV:64bit: - [2010/03/04 19:26:58 | 000,349,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:64bit: - [2010/01/01 12:20:28 | 000,034,472 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2009/11/23 19:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid)
DRV:64bit: - [2009/11/23 19:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (lgbusenum)
DRV:64bit: - [2009/09/29 08:15:02 | 000,016,384 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgbtpt64.sys -- (LgBttPort)
DRV:64bit: - [2009/09/29 08:15:00 | 000,017,408 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgvmdm64.sys -- (LGVMODEM)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 20:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 04:09:20 | 000,030,568 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\uxpatch.sys -- (uxpatch)
DRV:64bit: - [2009/06/11 00:34:38 | 001,208,320 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AGERESoftModem)
DRV:64bit: - [2009/06/10 15:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/02/13 14:02:52 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2008/06/17 11:22:24 | 000,040,464 | ---- | M] (H+H Software GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vcd10bus.sys -- (vcd10bus)
DRV:64bit: - [2008/01/09 10:22:24 | 000,124,928 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgmcobex.sys -- (lgmcobex)
DRV:64bit: - [2008/01/09 10:22:20 | 000,146,432 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgmcmdm.sys -- (lgmcmdm)
DRV:64bit: - [2008/01/09 10:22:20 | 000,130,048 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgmcmgmt.sys -- (lgmcmgmt)
DRV:64bit: - [2008/01/09 10:22:20 | 000,109,056 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lgmcbus.sys -- (lgmcbus)
DRV:64bit: - [2008/01/09 10:22:20 | 000,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgmcmdfl.sys -- (lgmcmdfl)
DRV:64bit: - [2007/02/15 19:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2012/02/10 19:09:20 | 000,021,712 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS -- (DrvAgent64)
DRV - [2010/07/22 06:37:32 | 000,125,888 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2010/07/04 14:51:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files (x86)\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007/02/15 19:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2002/07/17 10:53:02 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Stopped] -- C:\Windows\SysWOW64\drivers\ASPI32.SYS -- (Aspi32)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...75v135r45i1s21o
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...75v135r45i1s21o
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-re...q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...75v135r45i1s21o
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...75v135r45i1s21o
IE - HKLM\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co...ng}&rlz=1I7ACEW
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-re...q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT3072253
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...75v135r45i1s21o
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://homepage.emac...75v135r45i1s21o
IE - HKCU\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - No CLSID value found
IE - HKCU\..\URLSearchHook: {E634228A-03CF-4BC8-B0AB-668257F1FD8C} - C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll (Spigot, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co...1I7ACEW_enUS424
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7ACEW_enUS424
IE - HKCU\..\SearchScopes\{774AA30A-9387-49C3-8C23-A906EC532D18}: "URL" = http://us.search.yah...}&fr=chr-comodo
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.c...sa&d=2013-01-14 16:03:16&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-re...q={searchTerms}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...rchTerms}&SSPV=
IE - HKCU\..\SearchScopes\{EA4B13CA-FDBF-E716-8E65-65F1231BD0D7}: "URL" = http://www.bing.com/...UGO&form=ZGAIDF
IE - HKCU\..\SearchScopes\{EBC0A423-E3AD-4316-95CE-44651911AE81}: "URL" = http://websearch.ask...51-3A44352FBECC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultenginename,S: S", ""
FF - prefs.js..browser.search.defaultthis.engineName: "uTorrentControl2 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.order.1,S: S", ""
FF - prefs.js..browser.search.param.yahoo-fr: "chrf-comodo"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "chrf-comodo"
FF - prefs.js..browser.search.selectedEngine,S: S", ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://awesomestart....ic/anbu-itachi"
FF - prefs.js..extensions.enabledAddons: [email protected]:7.1
FF - prefs.js..extensions.enabledAddons: [email protected]:2.2.3
FF - prefs.js..extensions.enabledAddons: [email protected]:1.5
FF - prefs.js..extensions.enabledAddons: {469CEB59-8266-438b-91D9-82F56D595E15}:2.5
FF - prefs.js..extensions.enabledAddons: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.10
FF - prefs.js..extensions.enabledAddons: {F3281C6A-29E3-405D-BD66-614E70C0B6B9}:0.3.6
FF - prefs.js..extensions.enabledAddons: [email protected]:1.7.3
FF - prefs.js..extensions.enabledAddons: {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}:5.12.12.1
FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.22
FF - prefs.js..extensions.enabledAddons: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}:10.30.1.502
FF - prefs.js..extensions.enabledItems: [email protected]:1.1.2
FF - prefs.js..extensions.enabledItems: {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}:3.10.7.2
FF - prefs.js..extensions.enabledItems: {469CEB59-8266-438b-91D9-82F56D595E15}:1.5
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.7
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.10
FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.8.1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}:3.8.1.0
FF - prefs.js..extensions.enabledItems: [email protected]:3.3.3.2
FF - prefs.js..extensions.enabledItems: {ab91efd4-6975-4081-8552-1b3922ed79e2}:1.0.5.1
FF - prefs.js..extensions.enabledItems: [email protected]:1.0.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.6.2
FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:12.0.0.1865
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
 
 
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.0\\npsitesafety.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Sy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012/02/12 18:25:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.0.443 [2014/04/27 16:39:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/11/20 14:24:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/11/20 14:25:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/11/20 14:25:32 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/11/20 14:24:11 | 000,000,000 | ---D | M]
 
[2013/01/02 10:40:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Extensions
[2014/05/06 07:12:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions
[2013/12/16 08:49:19 | 000,000,000 | ---D | M] (IE Tab 2 (FF 3.6+)) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
[2013/08/01 10:13:52 | 000,000,000 | ---D | M] (FoxyTunes) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}
[2013/08/01 08:10:06 | 000,000,000 | ---D | M] (FEBE) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
[2014/05/06 07:12:25 | 000,000,000 | ---D | M] (Swag Bucks) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}
[2014/03/26 00:54:38 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011/11/05 19:42:44 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2013/01/01 09:29:26 | 000,000,000 | ---D | M] (SelectionLinks) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\[email protected]
[2012/07/05 11:26:27 | 000,123,385 | ---- | M] () (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\[email protected]
[2012/05/01 13:16:40 | 000,051,994 | ---- | M] () (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\[email protected]
[2013/10/26 08:18:02 | 000,348,260 | ---- | M] () (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\[email protected]
[2013/02/03 10:21:35 | 000,022,590 | ---- | M] () (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{469CEB59-8266-438b-91D9-82F56D595E15}.xpi
[2013/08/01 09:05:18 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/06/11 15:31:39 | 000,010,487 | ---- | M] () (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{F3281C6A-29E3-405D-BD66-614E70C0B6B9}.xpi
[2013/08/01 08:09:39 | 000,001,362 | ---- | M] () (No name found) -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\chrome\skin\xpinstallItemGeneric.png
[2012/01/03 17:27:44 | 000,002,333 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\askcom.xml
[2013/12/08 10:09:23 | 000,003,729 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\avg-secure-search.xml
[2011/03/30 01:01:54 | 000,001,919 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\bing-zugo.xml
[2011/03/06 05:59:20 | 000,002,059 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\daemon-search.xml
[2013/01/02 09:19:31 | 000,002,515 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\Search_Results.xml
[2014/05/07 07:17:34 | 000,001,540 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\swagbuckscom.xml
[2013/08/01 08:49:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/06/03 13:37:13 | 000,000,000 | ---D | M] (FreeRIP Toolbar) -- C:\PROGRAM FILES (X86)\FREERIP TOOLBAR\FF
[2012/06/14 17:20:49 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2009/11/06 11:37:19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll
[2012/02/18 16:00:57 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2009/11/06 11:37:20 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll
[2014/04/27 16:39:03 | 000,003,729 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/06/14 17:19:40 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/06/14 17:19:40 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
 
========== Chrome  ==========
 
CHR - default_search_provider: Conduit Search (Enabled)
CHR - default_search_provider: search_url = http://search.condui...rchTerms}&SSPV=
CHR - default_search_provider: suggest_url = http://suggest.searc...x={searchTerms},
CHR - homepage: http://google.com/
CHR - plugin: Error reading preferences file
CHR - Extension: Google Docs = C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Mickey Sketch Theme = C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkmaadlipkibabccamkbjjaklifnohhp\1.0_0\
CHR - Extension: Google Wallet = C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2011/08/01 19:47:53 | 000,435,030 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1    www.007guard.com
O1 - Hosts: 127.0.0.1    007guard.com
O1 - Hosts: 127.0.0.1    008i.com
O1 - Hosts: 127.0.0.1    www.008k.com
O1 - Hosts: 127.0.0.1    008k.com
O1 - Hosts: 127.0.0.1    www.00hq.com
O1 - Hosts: 127.0.0.1    00hq.com
O1 - Hosts: 127.0.0.1    010402.com
O1 - Hosts: 127.0.0.1    www.032439.com
O1 - Hosts: 127.0.0.1    032439.com
O1 - Hosts: 127.0.0.1    www.0scan.com
O1 - Hosts: 127.0.0.1    0scan.com
O1 - Hosts: 127.0.0.1    1000gratisproben.com
O1 - Hosts: 127.0.0.1    www.1000gratisproben.com
O1 - Hosts: 127.0.0.1    1001namen.com
O1 - Hosts: 127.0.0.1    www.1001namen.com
O1 - Hosts: 127.0.0.1    100888290cs.com
O1 - Hosts: 127.0.0.1    www.100888290cs.com
O1 - Hosts: 127.0.0.1    www.100sexlinks.com
O1 - Hosts: 127.0.0.1    100sexlinks.com
O1 - Hosts: 127.0.0.1    10sek.com
O1 - Hosts: 127.0.0.1    www.10sek.com
O1 - Hosts: 127.0.0.1    www.1-2005-search.com
O1 - Hosts: 127.0.0.1    1-2005-search.com
O1 - Hosts: 127.0.0.1    123fporn.info
O1 - Hosts: 14970 more lines...
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll File not found
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg64.dll (Google Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {300BEC06-B743-4D19-86B9-11DC711D7FFB} - No CLSID value found.
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll File not found
O2 - BHO: (Groove GFS Browser Helper) - {4DB74D06-491C-440D-305E-012400990F3E} - C:\Windows\SysWOW64\D3DCCompiler_36.dll ()
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll File not found
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll (Conduit Ltd.)
O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O2 - BHO: (GOM Player + Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (FreeRIP Toolbar) - {E634228A-03CF-4BC8-B0AB-668257F1FD8C} - C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (@C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll File not found
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (GOM Player + Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll File not found
O3 - HKLM\..\Toolbar: (FreeRIP Toolbar) - {E634228A-03CF-4BC8-B0AB-668257F1FD8C} - C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (GOM Player + Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll File not found
O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (COMODO)
O4:64bit: - HKLM..\Run: [HP Input Device Main Program] C:\Program Files\HP\HP Wireless Comfort Mobile Mouse\TSR\xDaemon.exe File not found
O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [RemoveShowDesktopButton] C:\Windows\w7sdbr.exe ()
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [Driver Genius]  File not found
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe ()
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [7 Taskbar Tweaker] C:\Users\Sy\AppData\Roaming\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe (RaMMicHaeL)
O4 - HKCU..\Run: [AnyDVD] C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [DesktopIconToy] C:\Program Files (x86)\Desktop Icon Toy\DesktopIconToy.exe (iDeskSoft)
O4 - HKCU..\Run: [NeXuS] C:\Program Files (x86)\Winstep\Nexus.exe (Winstep Software Technologies)
O4 - HKCU..\Run: [Rainlendar2] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe ()
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
O4 - Startup: C:\Users\Sy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk = C:\Program Files\Logitech Gaming Software\EReg\eReg.exe (Leader Technologies/Logitech)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll File not found
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL File not found
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: real.com ([rhap-app-4-0] https in Trusted sites)
O15 - HKCU\..Trusted Domains: real.com ([rhapreg] https in Trusted sites)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.co...sreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.co...iaSmartScan.cab (NVIDIA Smart Scan)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.7.2)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.syste...yri_4.5.1.0.cab (SysInfo Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F2D23429-C71E-400B-8437-B82424892032}: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F2D23429-C71E-400B-8437-B82424892032}: NameServer = 8.26.56.26,156.154.70.22
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll File not found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll File not found
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll (AVG Secure Search)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22:64bit: - SharedTaskScheduler: {73526E5A-FD53-4BE7-B5E2-D3C89D7413DC} - Ave's FolderBg - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/01/28 15:00:27 | 000,000,088 | ---- | M] () - H:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\Shell - "" = AutoRun
O33 - MountPoints2\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\Shell\AutoRun\command - "" = H:\WD SmartWare.exe -- [2010/01/21 19:13:40 | 003,330,848 | ---- | M] (Western Digital)
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\mint4win.exe --force-wubi --cdmenu --skipmd5check
O33 - MountPoints2\L\Shell - "" = AutoRun
O33 - MountPoints2\L\Shell\AutoRun\command - "" = L:\mint4win.exe --force-wubi --cdmenu --skipmd5check
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
 
CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/05/12 04:17:54 | 000,119,512 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/05/12 03:25:27 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Sy\Desktop\OTL.exe
[2014/05/11 22:19:51 | 000,031,264 | ---- | C] (ThreatTrack Security) -- C:\Windows\SysNative\drivers\gfiutil.sys
[2014/05/11 22:16:31 | 000,041,032 | ---- | C] (ThreatTrack Security) -- C:\Windows\SysNative\drivers\gfiark.sys
[2014/05/11 22:16:10 | 000,000,000 | ---D | C] -- C:\VIPRERESCUE
[2014/05/11 21:56:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/05/11 21:56:01 | 000,088,280 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014/05/11 21:56:01 | 000,063,192 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014/05/11 21:56:01 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014/05/11 21:56:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/05/11 21:56:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/05/11 21:53:15 | 017,305,616 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\Sy\Desktop\mbam-setup-2.0.1.1004.exe
[2014/05/11 20:44:41 | 000,000,000 | ---D | C] -- C:\Users\Sy\Desktop\MozBackup-1.5.1-EN
[2014/05/11 17:28:26 | 000,000,000 | ---D | C] -- C:\Users\Sy\AppData\Roaming\ERS Game Studios
[2014/05/11 14:37:58 | 000,000,000 | ---D | C] -- C:\Users\Sy\AppData\Roaming\Comodo
[2014/05/11 14:14:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Shared Space
[2014/05/11 14:04:22 | 000,352,984 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdvrt64.dll
[2014/05/11 14:04:22 | 000,284,888 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdvrt32.dll
[2014/05/11 14:04:22 | 000,045,784 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdkbd64.dll
[2014/05/11 14:04:22 | 000,040,664 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdkbd32.dll
[2014/04/27 16:38:51 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2014/04/25 09:16:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2014/04/21 17:23:42 | 000,000,000 | ---D | C] -- C:\Users\Sy\AppData\Roaming\MPC-HC
[2014/04/21 17:23:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
[2014/04/21 17:23:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MPC-HC
[2014/04/21 13:30:05 | 000,000,000 | ---D | C] -- C:\Users\Sy\AppData\Local\SoftUpdate
[2014/04/21 13:26:12 | 000,000,000 | ---D | C] -- C:\Users\Sy\AppData\Local\VisualBeeExe
[2014/04/21 13:25:55 | 000,000,000 | ---D | C] -- C:\ProgramData\VisualBee
[2014/04/21 13:25:51 | 000,000,000 | ---D | C] -- C:\Users\Sy\AppData\Local\emaze
[2014/04/15 13:35:26 | 000,240,952 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
[2011/03/16 23:27:49 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Sy\AppData\Roaming\pcouffin.sys
[2009/02/13 14:02:52 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Program Files\devcon_amd64.exe
 
========== Files - Modified Within 30 Days ==========
 
[2014/05/12 10:54:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/05/12 10:54:18 | 3019,399,168 | -HS- | M] () -- C:\hiberfil.sys
[2014/05/12 10:05:08 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/05/12 04:23:52 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/05/12 04:23:52 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/05/12 04:18:53 | 000,778,150 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/05/12 04:18:53 | 000,663,664 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/05/12 04:18:53 | 000,124,400 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/05/12 04:17:54 | 000,119,512 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/05/12 04:12:29 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/05/12 04:04:25 | 000,854,367 | ---- | M] () -- C:\Users\Sy\Desktop\SecurityCheck.exe
[2014/05/12 03:25:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Sy\Desktop\OTL.exe
[2014/05/11 22:21:52 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\SBRC.dat
[2014/05/11 21:56:12 | 000,001,111 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/05/11 21:55:31 | 017,305,616 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\Sy\Desktop\mbam-setup-2.0.1.1004.exe
[2014/05/11 20:51:55 | 000,850,631 | ---- | M] () -- C:\Users\Sy\Desktop\bookmarks-2014-05-11.json
[2014/05/11 20:44:28 | 000,782,052 | ---- | M] () -- C:\Users\Sy\Desktop\MozBackup-1.5.1-EN.zip
[2014/05/10 18:20:03 | 000,001,977 | ---- | M] () -- C:\Users\Sy\Desktop\7+ Taskbar Tweaker.lnk
[2014/05/07 19:12:00 | 000,000,420 | ---- | M] () -- C:\Windows\tasks\At1.job
[2014/05/03 07:10:10 | 000,001,014 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk
[2014/04/28 10:08:17 | 000,003,086 | ---- | M] () -- C:\Users\Sy\Desktop\01.asx
[2014/04/27 16:37:59 | 000,050,464 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2014/04/21 17:23:16 | 000,001,090 | ---- | M] () -- C:\Users\Sy\Desktop\MPC-HC.lnk
[2014/04/16 16:12:55 | 000,023,168 | ---- | M] (COMODO) -- C:\Windows\SysNative\drivers\cmderd.sys
[2014/04/15 13:35:26 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
 
========== Files Created - No Company Name ==========
 
[2014/05/12 04:04:17 | 000,854,367 | ---- | C] () -- C:\Users\Sy\Desktop\SecurityCheck.exe
[2014/05/11 22:21:52 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\SBRC.dat
[2014/05/11 21:56:12 | 000,001,111 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/05/11 20:51:49 | 000,850,631 | ---- | C] () -- C:\Users\Sy\Desktop\bookmarks-2014-05-11.json
[2014/05/11 20:44:21 | 000,782,052 | ---- | C] () -- C:\Users\Sy\Desktop\MozBackup-1.5.1-EN.zip
[2014/05/03 07:10:10 | 000,001,014 | ---- | C] () -- C:\Users\Sy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk
[2014/04/21 17:23:16 | 000,001,090 | ---- | C] () -- C:\Users\Sy\Desktop\MPC-HC.lnk
[2014/04/21 13:25:51 | 000,001,230 | ---- | C] () -- C:\Users\Sy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
[2013/12/23 17:58:21 | 000,000,261 | ---- | C] () -- C:\Windows\mp3merger.ini
[2013/11/20 14:13:55 | 000,205,979 | ---- | C] () -- C:\Windows\hpoins46.dat
[2013/06/26 12:14:35 | 000,003,715 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
[2013/05/15 15:50:32 | 000,003,474 | ---- | C] () -- C:\Users\Sy\.recently-used.xbel
[2013/04/21 15:25:31 | 000,000,041 | -HS- | C] () -- C:\ProgramData\.zreglib
[2013/02/02 10:55:07 | 000,001,850 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Mp2 and BwfMp2 codec.dat
[2013/02/02 10:55:04 | 000,001,230 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Wave64 Codec.dat
[2013/02/02 10:55:00 | 000,002,234 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBPoweramp tooLame MP2 codec.dat
[2013/02/02 10:54:57 | 000,011,479 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Real Audio (Helix) Encoder.dat
[2013/02/02 10:54:42 | 000,001,212 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Dalet Codec.dat
[2013/02/02 10:54:39 | 000,003,014 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp WavPack Codec.dat
[2013/02/02 10:54:29 | 000,003,071 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Ogg Vorbis Codec.dat
[2013/02/02 10:54:20 | 000,003,159 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp mp3 (Fraunhofer IIS) Codec.dat
[2013/02/02 10:54:11 | 000,003,113 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Monkeys Audio Codec.dat
[2013/02/02 10:54:01 | 000,002,993 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp FLAC Codec.dat
[2013/02/02 10:53:38 | 000,002,869 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [Tag From Filename] Codec.dat
[2013/02/02 10:53:30 | 000,002,900 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [ReplayGain] Codec.dat
[2013/02/02 10:53:22 | 000,003,002 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [Multi Encoder] Codec.dat
[2013/02/02 10:53:15 | 000,002,862 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [Length Split] Codec.dat
[2013/02/02 10:53:07 | 000,002,903 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [ID Tag Update] Codec.dat
[2013/02/02 10:52:55 | 000,002,999 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [Channel Split] Codec.dat
[2013/02/02 10:52:47 | 000,002,849 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [Calculate Audio CRC] Codec.dat
[2013/02/02 10:52:38 | 000,002,871 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [Audio Info] Codec.dat
[2013/02/02 10:52:10 | 000,002,879 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp [Arrange Audio] Codec.dat
[2013/02/02 10:50:58 | 000,012,502 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp DSP Effects.dat
[2013/02/02 10:50:39 | 000,510,840 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall.exe
[2013/02/02 10:50:39 | 000,018,038 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Music Converter.dat
[2013/02/02 10:27:29 | 000,000,389 | ---- | C] () -- C:\Windows\cdplayer.ini
[2013/02/02 10:19:13 | 000,001,534 | ---- | C] () -- C:\ProgramData\ss.ini
[2013/01/14 00:12:54 | 000,000,714 | ---- | C] () -- C:\Windows\eReg.dat
[2012/11/23 15:20:22 | 000,456,192 | ---- | C] () -- C:\Windows\SetACL.exe
[2011/03/22 20:06:11 | 000,870,128 | ---- | C] () -- C:\Users\Sy\AppData\Roaming\mcs.rma
[2011/03/22 20:06:11 | 000,000,004 | ---- | C] () -- C:\Users\Sy\AppData\Roaming\F35B01
[2011/03/16 23:27:49 | 000,099,384 | ---- | C] () -- C:\Users\Sy\AppData\Roaming\inst.exe
[2011/03/16 23:27:49 | 000,007,859 | ---- | C] () -- C:\Users\Sy\AppData\Roaming\pcouffin.cat
[2011/03/16 23:27:49 | 000,001,167 | ---- | C] () -- C:\Users\Sy\AppData\Roaming\pcouffin.inf
[2011/02/24 01:33:03 | 000,166,912 | ---- | C] () -- C:\Users\Sy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
========== ZeroAccess Check ==========
 
[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/10/03 09:01:29 | 019,242,496 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/10/03 09:00:20 | 017,947,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 20:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2012/02/24 17:31:07 | 000,000,000 | -HSD | M] -- C:\Users\Sy\AppData\Roaming\.#
[2014/04/11 15:19:21 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\.minecraft
[2013/09/19 18:05:44 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\1H1Q
[2013/01/01 09:30:12 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\7+ Taskbar Tweaker
[2011/10/19 15:47:25 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Alawar Entertainment
[2012/08/28 18:02:53 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Amaranth Games
[2012/08/29 20:28:36 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Amulet_of_time
[2012/02/18 20:29:51 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\AnvSoft
[2014/02/07 22:50:17 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\AppMinis
[2014/04/03 08:55:59 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Artifex Mundi
[2011/11/19 13:26:56 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\AVG
[2013/03/29 10:13:14 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\AVG2013
[2011/02/21 04:26:49 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\AVG9
[2012/02/04 14:16:07 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\avidemux
[2014/02/08 10:29:50 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\BBB
[2014/05/11 13:41:55 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Big Fish Games
[2012/08/29 20:43:23 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Boomzap
[2014/03/31 14:43:14 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\calibre
[2013/06/18 08:39:33 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\cerasus.media
[2014/03/23 09:04:12 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\DAEMON Tools Lite
[2013/02/02 12:27:58 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\dBpoweramp
[2013/02/03 10:07:54 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\DMCache
[2011/03/16 23:32:07 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\DVDFab
[2013/05/18 15:25:02 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\DVDVideoSoft
[2012/02/04 01:30:12 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\DVDVideoSoftIEHelpers
[2011/03/18 20:03:50 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\EA
[2013/06/30 18:41:32 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Eipix
[2013/07/28 20:07:38 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Elephant Games
[2014/05/11 17:28:26 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\ERS Game Studios
[2013/07/28 19:27:03 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Faerie Solitaire
[2014/05/12 10:40:26 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\foobar2000
[2013/01/02 09:20:29 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\FreeAudioPack
[2011/02/20 21:11:05 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Friday's games
[2011/03/19 16:11:35 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\funkitron
[2013/07/28 15:04:56 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\GameHouse
[2013/07/27 19:04:00 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Gamelab
[2013/07/28 15:05:49 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\GamesCafe
[2013/07/03 16:06:11 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Gogii
[2012/01/24 14:54:24 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\gtk-2.0
[2011/03/18 23:24:42 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Incredible Ink
[2011/02/20 03:36:08 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\IrfanView
[2012/02/29 14:50:27 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Islands
[2012/02/27 00:17:23 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Islands2
[2012/02/26 22:41:31 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Islands3
[2013/05/15 14:21:44 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Leadertech
[2012/10/12 14:44:24 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\LegacyInteractive
[2011/06/07 15:40:34 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\LG Electronics
[2013/10/20 10:12:15 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\LibreOffice
[2012/03/13 19:03:03 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Ludia
[2012/02/03 17:50:43 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\MAGIX
[2014/02/14 19:45:32 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\MoveFab
[2014/04/21 17:23:42 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\MPC-HC
[2012/04/01 16:45:04 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\MumboJumbo
[2013/06/26 20:00:24 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Nevosoft
[2011/02/20 02:34:43 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\OEM
[2013/05/18 15:24:40 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\OpenCandy
[2013/02/20 22:00:22 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\PetStorePanic
[2014/01/15 21:58:02 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\PlayFirst
[2012/04/27 17:42:58 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Pogo Games
[2013/01/14 17:05:08 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\PowerISO
[2013/07/02 14:27:38 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Princess Isabella CE
[2012/02/03 15:44:16 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Publish Providers
[2012/07/10 16:51:24 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Pucker Up Games
[2011/06/25 17:59:12 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\QuickStoresToolbar
[2011/02/21 04:05:23 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Rovio
[2011/03/29 15:03:20 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\SanDisk
[2012/03/02 11:22:43 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\ScreenSeven
[2012/02/03 15:44:12 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Sony
[2012/02/23 10:05:39 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Stand O'Food 3
[2012/02/21 22:57:20 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\SulusGames
[2011/06/28 00:21:17 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\SystemRequirementsLab
[2011/03/28 12:44:23 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\The Creative Assembly
[2013/03/29 10:08:43 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\TuneUp Software
[2011/08/01 16:37:08 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Ubisoft
[2011/02/20 03:00:23 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\URSoft
[2014/05/12 03:46:22 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\uTorrent
[2013/06/27 15:10:50 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\VendelGAMES
[2012/02/04 01:17:51 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\VideoReDo-TVSuite4
[2011/03/16 23:28:31 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Vso
[2011/03/30 02:12:28 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\WeatherBug
[2011/03/19 16:39:55 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Wildfire
[2011/02/21 05:50:20 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Windows Live Writer
[2013/04/21 12:59:19 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\WinISO Computing
[2013/03/20 12:27:13 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\World Of Goo
[2012/09/04 11:12:49 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\World-LooM
[2011/03/23 14:34:13 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\Xilisoft
[2011/06/07 15:40:34 | 000,000,000 | -H-D | M] -- C:\Users\Sy\AppData\Roaming\{D94BA408-F110-488B-A65E-3AE7945F79E6}
 
========== Purity Check ==========
 
 
 
========== Custom Scans ==========
 
< BASEERVICES >
[2009/07/14 00:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 00:08:49 | 000,032,676 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/02/20 02:56:50 | 000,000,358 | ---- | C] () -- C:\Windows\Tasks\eMachines Registration Reminder.job
[2011/03/22 20:47:22 | 000,000,894 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2011/03/22 20:47:23 | 000,000,898 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013/02/20 21:55:55 | 000,000,420 | ---- | C] () -- C:\Windows\Tasks\At1.job
 
========== Drive Information ==========
 
Physical Drives
---------------
 
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Hitachi HDT721050SLA SCSI Disk Device
Partitions: 3
Status: OK
Status Info: 0
 
Drive: \\\\.\\PHYSICALDRIVE1 -
Interface type: USB
Media Type:
Model: Generic- Compact Flash USB Device
Partitions: 0
Status: OK
Status Info: 0
 
Drive: \\\\.\\PHYSICALDRIVE2 -
Interface type: USB
Media Type:
Model: Multiple Flash Reader USB Device
Partitions: 0
Status: OK
Status Info: 0
 
Drive: \\\\.\\PHYSICALDRIVE3 -
Interface type: USB
Media Type:
Model: LGE MMC Flash Card USB Device
Partitions: 0
Status: OK
Status Info: 0
 
Drive: \\\\.\\PHYSICALDRIVE4 - External hard disk media
Interface type: USB
Media Type: External hard disk media
Model: WD My Book 1110 USB Device
Partitions: 1
Status: OK
Status Info: 0
 
Drive: \\\\.\\PHYSICALDRIVE5 - External hard disk media
Interface type: USB
Media Type: External hard disk media
Model: Seagate FA GoFlex Desk USB Device
Partitions: 1
Status: OK
Status Info: 0
 
Partitions
---------------
 
DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 18.00GB
Starting Offset: 1048576
Hidden sectors: 0
 
 
DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 19328401408
Hidden sectors: 0
 
 
DeviceID: Disk #0, Partition #2
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 448.00GB
Starting Offset: 19433259008
Hidden sectors: 0
 
 
DeviceID: Disk #4, Partition #0
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 465.00GB
Starting Offset: 1048576
Hidden sectors: 0
 
 
DeviceID: Disk #5, Partition #0
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 1,397.00GB
Starting Offset: 32256
Hidden sectors: 0
 
 
< dir "%systemdrive%\*" /S /A:L /C >
 Volume in drive C is eMachines
 Volume Serial Number is 50E8-EACE
 Directory of C:\
07/14/2009  12:08 AM    <JUNCTION>     Documents and Settings [C:\Users]
               0 File(s)              0 bytes
 
< MD5 for: EXPLORER.EXE  >
[2009/10/06 01:06:36 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=00B0358734CAA32C39D181FE6916B178 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_b8b0208ee0ce1889\explorer.exe
[2011/02/26 01:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011/02/26 00:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009/07/13 20:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011/02/26 00:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2010/01/05 15:35:48 | 002,641,408 | ---- | M] (Microsoft Corporation) MD5=275A17C9FBB57295E8A33483CE7930E4 -- C:\Users\Sy\Documents\z\Darkclear _7_(Final)_by_Caeszer\System Files\32-bit\Start Button\explorer.exe
[2011/02/26 00:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SysWOW64\explorer.exe
[2011/02/26 00:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011/02/25 01:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 01:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 07:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009/10/06 01:35:29 | 002,868,736 | ---- | M] (Microsoft Corporation) MD5=6D4F9E4B640B413C6F73414327484C80 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_addea9f19345cd81\explorer.exe
[2010/02/04 05:49:48 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2010/02/11 19:12:53 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=7A5AD3BB30BA435CCDCC98A519E6C8D0 -- C:\Users\Sy\Documents\z\Darkclear _7_(Final)_by_Caeszer\System Files\64-bit\Start Button\explorer.exe
[2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009/10/31 01:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2010/02/04 05:49:48 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010/11/20 08:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009/10/31 01:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2010/02/04 05:49:48 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/13 20:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 01:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009/10/06 01:31:09 | 002,868,736 | ---- | M] (Microsoft Corporation) MD5=CA17F8620815267DC838E30B68CB5052 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_ae5b763cac6d568e\explorer.exe
[2013/07/19 07:08:30 | 002,791,424 | ---- | M] (Microsoft Corporation) MD5=CDF617357E233E3F59C419F5350D5D89 -- C:\Windows\explorer.exe
[2011/02/26 01:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2010/02/04 05:49:48 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
[2009/10/06 00:53:03 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=FC89FACA0473641CB625EDA9277D0885 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_b8335443c7a68f7c\explorer.exe
 
< MD5 for: RPCSS.DLL  >
[2010/11/20 08:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=5C627D1B1138676C0A7AB2C2C190D123 -- C:\Windows\winsxs\amd64_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.1.7601.17514_none_c7f0e16b547f887d\rpcss.dll
[2009/07/13 20:41:53 | 000,509,440 | ---- | M] (Microsoft Corporation) MD5=7266972E86890E2B30C0C322E906B027 -- C:\Windows\SysNative\rpcss.dll
[2009/07/13 20:41:53 | 000,509,440 | ---- | M] (Microsoft Corporation) MD5=7266972E86890E2B30C0C322E906B027 -- C:\Windows\winsxs\amd64_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.1.7600.16385_none_c5bfcda3579104e3\rpcss.dll
 
< MD5 for: SERVICES  >
[2009/06/10 16:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services
 
< MD5 for: SERVICES.ASFX  >
[2010/12/10 16:32:28 | 000,000,234 | ---- | M] () MD5=1696C147D457EDECDC00DB98B8882AFC -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\ar_AE\Services\Services.asfx
[2010/12/10 17:57:36 | 000,000,230 | ---- | M] () MD5=2577B66F38E0DEA25F328DA4A0FED322 -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\fr_FR\Services\Services.asfx
[2010/12/10 16:32:28 | 000,000,243 | ---- | M] () MD5=3499ED59F2D80D4E1D0E0CB2E20F3BC7 -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\el_GR\Services\Services.asfx
 
< MD5 for: SERVICES.CFG  >
[2010/12/10 17:55:14 | 000,033,294 | ---- | M] () MD5=0029BB8E5F422A5E3BC2E69F76E61B70 -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Services\Services.cfg
 
< MD5 for: SERVICES.DLL  >
[2010/10/21 12:11:14 | 004,465,432 | ---- | M] (SmartSound Software Inc.) MD5=09CFB48DF9A22C5B02A249778546422C -- C:\Program Files (x86)\SmartSound Software\Quicktracks 5\Services.dll
 
< MD5 for: SERVICES.EXE  >
[2009/07/13 20:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/13 20:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
 
< MD5 for: SERVICES.EXE.MUI  >
[2009/07/13 21:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2009/07/13 21:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui
 
< MD5 for: SERVICES.LNK  >
[2009/07/13 23:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System\Administrative Tools\services.lnk
[2009/07/13 23:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\System\Administrative Tools\services.lnk
 
< MD5 for: SERVICES.LOG  >
[2011/06/23 12:40:30 | 000,060,471 | ---- | M] () MD5=C88E9BC1F18B77A21A132642D058E521 -- C:\ProgramData\HP\Installer\Temp\services.log
[2011/06/23 12:40:30 | 000,060,471 | ---- | M] () MD5=C88E9BC1F18B77A21A132642D058E521 -- C:\Users\All Users\HP\Installer\Temp\services.log
 
< MD5 for: SERVICES.MOF  >
[2009/06/10 15:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/10 15:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof
 
< MD5 for: SERVICES.MSC  >
[2009/07/13 21:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/10 15:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2009/07/13 21:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/10 16:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2009/07/13 21:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/10 15:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2009/07/13 21:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 16:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc
 
< MD5 for: SERVICES.PTXML  >
[2009/07/13 15:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/13 15:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml
 
< MD5 for: SERVICES.RDB  >
[2013/09/30 05:13:56 | 000,007,851 | ---- | M] () MD5=0806588AE99A22FE3ECA33AB1DF26D49 -- C:\Program Files (x86)\LibreOffice 4\URE\misc\services.rdb
[2013/09/30 08:43:24 | 000,183,343 | ---- | M] () MD5=325AF7E5657F32CBF9412FEA6960A3A2 -- C:\Program Files (x86)\LibreOffice 4\program\services\services.rdb
 
< MD5 for: SERVICES.SBS  >
[2013/07/16 12:21:30 | 000,034,818 | ---- | M] () MD5=E2ACBC77020C8D5CE97CA61D0D859A44 -- C:\Program Files (x86)\Spybot - Search & Destroy\Includes\Services.sbs
 
< MD5 for: SVCHOST.EXE  >
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2014/04/03 09:49:02 | 000,742,200 | ---- | M] (MalwareBytes) MD5=96820649733BFB2B0499C371904B7B40 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe
[2009/07/13 20:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/13 20:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
 
< MD5 for: WINLOGON.EXE  >
[2010/11/20 08:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009/07/13 20:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2014/04/03 09:49:02 | 000,742,200 | ---- | M] (MalwareBytes) MD5=96820649733BFB2B0499C371904B7B40 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe
[2009/10/28 02:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 01:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009/10/28 01:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
 
========== Files - Unicode (All) ==========
[2012/12/30 23:05:35 | 000,000,684 | ---- | M] ()(C:\Users\Sy\Documents\[Digital] ????? ????.rtf) -- C:\Users\Sy\Documents\[Digital] 이단옆차기 프로젝트.rtf
[2012/12/30 23:05:35 | 000,000,684 | ---- | C] ()(C:\Users\Sy\Documents\[Digital] ????? ????.rtf) -- C:\Users\Sy\Documents\[Digital] 이단옆차기 프로젝트.rtf
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 94 bytes -> C:\ProgramData\Temp:24FECE50
@Alternate Data Stream - 200 bytes -> C:\ProgramData\Temp:8E5EA40F
@Alternate Data Stream - 187 bytes -> C:\ProgramData\Temp:2D0C22DC
@Alternate Data Stream - 181 bytes -> C:\ProgramData\Temp:1A15E356
@Alternate Data Stream - 179 bytes -> C:\ProgramData\Temp:3ED5E595
@Alternate Data Stream - 176 bytes -> C:\ProgramData\Temp:58E38390
@Alternate Data Stream - 171 bytes -> C:\ProgramData\Temp:6EE8565A
@Alternate Data Stream - 171 bytes -> C:\ProgramData\Temp:1CE11B51
@Alternate Data Stream - 168 bytes -> C:\ProgramData\Temp:6E6A4F42
@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:3440EB47
@Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:66633281
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:0B4227B4
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:2CB9631F
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:2AE74FF9
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:ED2D63E4
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:A6F30843
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0888F409
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:D2DDC99D
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:1A28B4A2
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:D507B5A8
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:260575F1
@Alternate Data Stream - 105 bytes -> C:\ProgramData\Temp:E91ADC66

< End of report >
 

 

Extras

OTL Extras logfile created on: 5/12/2014 10:59:44 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Sy\Desktop
64bit- Home Premium Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.75 Gb Total Physical Memory | 3.19 Gb Available Physical Memory | 85.06% Memory free
7.50 Gb Paging File | 6.96 Gb Available in Paging File | 92.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 447.66 Gb Total Space | 12.20 Gb Free Space | 2.73% Space Free | Partition Type: NTFS
Drive G: | 1397.26 Gb Total Space | 1.19 Gb Free Space | 0.09% Space Free | Partition Type: NTFS
Drive H: | 442.98 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: UDF
Drive K: | 465.11 Gb Total Space | 1.64 Gb Free Space | 0.35% Space Free | Partition Type: NTFS
 
Computer Name: HITACHI | User Name: Sy | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L"
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [takeownership] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L"
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [takeownership] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01408DFD-2F02-4AB2-A252-AA28A91D9F60}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0D654588-6D53-416F-BC63-CCD603D95CDE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{135859FD-B878-477C-81AB-98D8355006DC}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{20744439-70DF-464F-B300-2112FF62B5C0}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3284A0CB-3A14-43E6-B294-673645659204}" = rport=138 | protocol=17 | dir=out | app=system |
"{39C0F27D-E783-4CC5-AE56-094A1FE64B9A}" = lport=139 | protocol=6 | dir=in | app=system |
"{3CA722A5-2416-4524-90AC-3471408381E0}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{40A0BA69-284E-4D36-A183-DCA095C1DDEC}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{58D28F21-299C-4EBF-9B5E-7B02D3003409}" = rport=139 | protocol=6 | dir=out | app=system |
"{632ED9F3-1843-4A0A-B0A0-FBE28995F8D4}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{64210993-679E-42FA-AA8B-4048F926419E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{79B53D4E-7D26-49B8-BC51-6E0D0C1F3ADB}" = lport=445 | protocol=6 | dir=in | app=system |
"{79E87634-566D-4C76-99C7-DBB10055EA20}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{8EEA2323-8AE7-42C0-88D2-F10F33A1BE23}" = lport=138 | protocol=17 | dir=in | app=system |
"{8FA46586-7BED-44C6-991C-D690E2934BF7}" = rport=10243 | protocol=6 | dir=out | app=system |
"{91271C73-D8F6-4B65-9165-1F81698315D0}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{9998C189-DC5E-4F7D-B590-F87FE77B6F55}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A72259FA-56E0-422B-9980-1EA148DFDD64}" = rport=445 | protocol=6 | dir=out | app=system |
"{AAF2FBC5-AA8C-46FC-A6C0-621122E5CE24}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AE1386BC-D8AE-4D3A-8009-A5745BA53368}" = lport=10243 | protocol=6 | dir=in | app=system |
"{AF433AE7-2F0B-4477-971E-2E99C0D7ABFE}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B3B148B5-EA4A-485D-9974-0A87FBE6843D}" = lport=137 | protocol=17 | dir=in | app=system |
"{BBA4536E-C318-4437-AD3C-4F7CE0CE4FB7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CC1CA866-8B5F-48F8-9183-453BC8E7EF3C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E77CD442-7B67-4633-9361-69ACE1A60607}" = rport=137 | protocol=17 | dir=out | app=system |
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{039F6E5B-3C12-4442-8221-821F6AC653E1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{041A17DC-5857-4441-B17D-76C7D28745D5}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{07CFB902-6BB4-4580-B1AB-229608E999BE}" = protocol=6 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{18D4300B-6267-4363-B20B-676BF4B39CAF}" = protocol=6 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\warlords\civ4warlords.exe |
"{18DFC674-0C5B-4F09-8653-042682FF5195}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{1911377B-BFEB-4784-872B-A3ABFA91815B}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{1A1C96AA-579D-4E6D-B445-A9A606ADC031}" = protocol=17 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\warlords\civ4warlords.exe |
"{1E82B261-5586-4CE0-ABFF-3C8AEC0071B7}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{28D9C02D-7E01-425C-BA22-A466DC3B4C61}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{2AAB55E2-6725-48A9-8B71-F0ABC82A9A4D}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{2C0200C1-87A7-4E21-B369-F70FC8838065}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{34E69ED2-062D-45D7-BFB8-33685C6EDE02}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{3665B33F-3509-42D7-9F7F-2FF5612035C4}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{369DA9B4-3CEA-413D-950A-A6A7686F95F6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{390655AC-2790-445D-9799-D0289D944A7A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{3CCAC052-657C-42D2-9FC1-EA2BCE8DC8F3}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{3DD35F3F-4A99-4C24-BC4F-51DCB96CD04E}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{3DE17402-05D8-4F29-A11C-AB625D18E6AC}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{41107A70-58C6-4D52-8894-ACAEE71BBDA1}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{41A75C95-74B4-4A40-A7DD-9A3040BCFD01}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{4358B45F-C6DF-42C5-B5CF-887F141F285C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{4564DBA2-4EE9-43D6-9E24-597C08C7D282}" = protocol=6 | dir=out | app=system |
"{45CF224C-5253-4924-A2E8-796261459439}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{545D5317-5DD1-4E72-AAF1-CC7A916426DD}" = protocol=6 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\civilization4.exe |
"{5735F1C0-3A6A-4112-8519-0C26B6C20BB0}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5E76F77C-F828-436B-BB1D-9E010C3CAEAE}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{655DB7E2-CA63-42FC-99A8-443B94F317C3}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{66019E75-C4BA-4E9D-B87C-DAAE9CF88D31}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd9\powerdvd9.exe |
"{671FA54B-56FE-467A-861A-831B15205014}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{69A63977-1809-4863-8209-7C29568E1D8E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6E19FA9C-ECFC-4356-9DB3-C53FE35E97D9}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{76ECB869-EE73-4F69-8363-C0B70944DFCD}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{7EC191D4-1B9B-4173-BE6F-13665BF586D4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7FA3D43B-F986-46D3-A768-79485FEDD4FE}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{80CA6531-9499-488A-AE50-7CC5CD291AD0}" = protocol=17 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\civilization4.exe |
"{82F7217B-83D6-4911-95C3-051BFA304F7E}" = protocol=6 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization iv colonization\colonization.exe |
"{882ED0B0-2B38-41A6-98DA-DEAC44380CA6}" = protocol=6 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\beyond the sword\civ4beyondsword.exe |
"{885FCD1D-90BD-4946-85B5-8A2D35D6698F}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{8982EBD6-3FEA-4C71-9E23-5553165A30E8}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{8A060466-25AD-48C9-A656-750D830471B5}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{8E96AEF9-AFBD-4B29-9AC6-EA154B907F62}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{95E9CC8F-D0C8-436E-990F-38CEAA0EE218}" = protocol=17 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization iv colonization\colonization.exe |
"{991374DE-82E7-4855-AB1E-7B76F846FB7D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{99743E33-A033-4A57-9122-9D9135CFAFDD}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{A0009F9F-E76D-4A3D-9884-640297BA491C}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{A863D4F8-CE88-4154-B171-98CEBFB0F409}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{AA22ED01-E9A3-4C5C-A1E5-31FF3FC65C8A}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{AB07F336-FC9E-4E9A-B434-231C4588AB83}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{AF7B1A98-A90E-4703-9EA5-17B3583279E4}" = protocol=1 | dir=in | [email protected],-28543 |
"{AF8BA80A-AAD8-467E-8156-C6311BDDFF4C}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{B0F095A2-1D27-4438-A155-0A866035CE1A}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{B13A5335-2BF6-4975-9ACD-A26537731101}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{B5269DBB-DD48-4D01-A162-C722FF557E0F}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B5B79E52-F4A8-42D1-9931-C586B4E67288}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{B84F41EF-5CD8-4AC0-8850-96503A5057F9}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{B9B9D2FA-C549-4939-8A6C-1777D1351AE6}" = dir=in | app=c:\program files\cyberlink\powerdirector10\pdr10.exe |
"{BCB8E8CE-2C8B-42D6-90CA-D33E18AD4AC0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C01A472E-0689-4EF4-A67F-1F4E8BF1D88B}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{C0EF247A-A716-4F6D-8D71-37F4A6104FDD}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{C32434E3-4259-4DD6-AD2E-0695D861DA6A}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{C4E97AC3-88EE-49A7-BE4B-1DD78272FF63}" = protocol=58 | dir=out | [email protected],-28546 |
"{CA081038-1E9E-48DA-9FD2-B2180B6E9B2F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{D14D3D6F-1FBE-443A-9E9D-73EA08245558}" = protocol=58 | dir=in | [email protected],-28545 |
"{D266E1A3-2743-4816-829C-6F45AE74512E}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D4A8276D-4D54-4CF8-B081-AEDE8234ACB1}" = protocol=17 | dir=in | app=c:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\beyond the sword\civ4beyondsword.exe |
"{D54DA15F-5F26-4136-AD2A-808CFF73DD7A}" = protocol=17 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{D6273A0B-43C7-4886-B949-71EDAACBD5A5}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{DBEB63D2-B67F-4BDE-BF6A-FE69F0C8FC2C}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{DCC98006-D094-4AB1-96AD-7CEE3375932F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
"{E624FE29-70ED-4387-A456-51CD2E341AB3}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{E763006E-B628-4E3A-A9F4-6DE5A2AD97DA}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{E939482D-3997-4F93-9340-E099C133052C}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{EC68D99A-ED58-4659-85B3-600853DAD819}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F0ABE862-F884-443D-8D54-3A420F803E77}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{F8D4B750-0C88-4709-8611-8AC1ED117502}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{FB8C0A40-01FE-4DD8-A6D6-47B9F865A49C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FF3531D7-A3FF-4DFE-B636-2AB9C10A0897}" = protocol=1 | dir=out | [email protected],-28544 |
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0987D7D5-747E-455A-84AF-80F058492FAD}" = AVG 2013
"{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}" = HP Deskjet F4500 All-in-One Driver Software 14.0 Rel. 6
"{1AAF3A3B-7B32-4DDF-8ABB-438DAEB46EEC}" = Windows Live Family Safety
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{24F93B56-61F5-415F-85B9-AA444DA34AFC}" = Microsoft Mouse and Keyboard Center
"{26A24AE4-039D-4CA4-87B4-2F86417045FF}" = Java 7 Update 45 (64-bit)
"{29AFE1B0-26A4-11E1-BFD4-F04DA23A5C58}" = MSVCRT Redists
"{331F3940-4093-11E1-9565-F04DA23A5C58}" = MSVCRT Redists
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{48C0866E-57EB-444C-8371-8E4321066BC3}" = Network64
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{64A3A4F4-B792-11D6-A78A-00B0D0170450}" = Java SE Development Kit 7 Update 45 (64-bit)
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7CBBEE56-EEF2-462D-B1CE-EACDBBF6457E}" = Oracle VM VirtualBox 4.3.0
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}" = UxStyle Core Beta
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B8AD779A-82DA-4365-A7D0-AD3DCFC55CFF}" = Apple Mobile Device Support
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CF8FFD12-602B-422D-AF1D-511B411E7632}" = iTunes
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{D8CC254C-C671-4664-9A38-FA368D1E2C97}" = SES Driver
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E8C64028-08E5-4BF0-B1C0-DBAAC6A77DF1}" = PowerDirector
"{EF13DB20-03BE-4EDD-9C48-05ED03E3E852}" = AVG 2013
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"422991454CB076E9B856C21BBF99AF2B82317EDA" = Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (03/06/2009 1.0.0008.0)
"AVG" = AVG 2013
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"ffdshow64_is1" = ffdshow x64 v1.1.4291 [2012-01-31]
"HP Imaging Device Functions" = HP Imaging Device Functions 14.0
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 14.0
"HPExtendedCapabilities" = HP Customer Participation Program 14.0
"Logitech Gaming Software" = Logitech Gaming Software 8.46
"LSI Soft Modem" = LSI PCI-SV92EX Soft Modem
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"NewBlue Art Effects for PDR10" = Art Effects for PDR10
"NVIDIA Drivers" = NVIDIA Drivers
"Shop for HP Supplies" = Shop for HP Supplies
"Speccy" = Speccy
"Unlocker" = Unlocker 1.9.2
"uTorrent" = µTorrent
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{04B83666-3A62-452B-85D3-70F8117F2329}_is1" = CamStudio version 2.7
"{050E67CD-52E4-413F-AAAA-E3A7CC984111}" = calibre
"{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B5154C0-8F00-4616-B0AB-6240AE80D9CE}" = SimCity™ Societies
"{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}" = DeviceDiscovery
"{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}" = HPProductAssistant
"{179324FF-7B16-4BA8-9836-055CAAEE4F08}" = SDFormatter
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1A2A15C2-6780-49c1-B296-503230E9DE00}" = The Sims™ 2 Mansion and Garden Stuff
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1F7424F8-F992-48BC-90EF-7C4DB0405E3F}" = Alcor Micro USB Card Reader
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{2376AAB2-F4D9-48D7-A42B-4E80B8967A8B}" = F4500
"{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = MPC-HC 1.7.4
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java™ 6 Update 31
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"{2FB9EA69-51D4-4913-9AD5-762C034DE811}" = Status
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{30D1F3D2-54CF-481D-A005-F94B0E98FEEC}" = Sid Meier's Civilization 4 Complete
"{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}" = CyberLink WaveEditor
"{32E4F0D2-C135-475E-A841-1D59A0D22989}" = Sid Meier's Civilization 4 - Beyond the Sword
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{336DD6B4-B100-4048-B2B7-FBA7059FD959}" = Yu-Gi-Oh! Power of Chaos JOEY THE PASSION
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3571656A-575D-4CED-809D-5547587121FF}" = Yu-Gi-Oh! Power of Chaos YUGI THE DESTINY
"{3a351e64-0f2e-4f51-919a-4f41ae58cd04}" = Nero 9 Essentials
"{4441574D-727E-4DD3-AAFD-4E240EE3B588}" = CyberLink Holiday Pack Vol. 3
"{4817189D-1785-4627-A33C-39FD90919300}" = The Sims 2 Pets
"{485C9280-B899-4D46-86F3-B3E459636EE5}" = Yu-Gi-Oh! Power of Chaos KAIBA THE REVENGE
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5AE81132-604F-4719-BBE6-FFE89A1E36CE}" = FreeRIP Toolbar v7.1
"{5C648FDB-0138-4619-B66E-230EF53E8E2C}" = The Sims™ 2 Teen Style Stuff
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{5DCF0E4B-F8EA-4229-A0BD-5CA6D4AFB749}" = SolutionCenter
"{6059C682-4C5F-4106-8487-943E98225D3B}" = LG MC USB Modem driver
"{611BD998-34B9-4DDA-00AE-0CB4632E86FA}" = SimCity 4 Rush Hour
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6522C636-B04C-4333-9BEB-9E0C0B6350D6}" = The Sims™ 2 Kitchen & Bath Interior Design Stuff
"{65761BAE-11E8-48FE-B30F-1F01011AB906}" = The Sims™ 3 Create a World Tool - Beta
"{65C0025A-2CDE-43C5-82D0-C7A56EF0DB39}" = Bing Bar Platform
"{67E03279-F703-408F-B4BF-46B5FC8D70CD}" = Microsoft Works
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6899C238-3E4A-4A04-B251-A0C9EDC7EDBC}_is1" = Pazera Free Audio Extractor 1.4
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BDD9CE6-D0A6-478A-BAD3-BA6945E89EB0}" = The Sims 2 Family Fun Stuff
"{6E17F9751-F056-4335-B718-8AF1B1092AFB}" = The Sims™ 2 IKEA® Home Stuff
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-emachines" = WildTangent Games App (eMachines Games)
"{71828142-5A24-4BD0-97E7-976DA08CE6CF}" = The Sims™ 3 High-End Loft Stuff
"{74DC0593-6BC6-4001-AD5F-D810AFB68D86}" = HP Update
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}" = The Sims 2 Open For Business
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = eMachines Recovery Management
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116400883}" = Way To Go! Bowling
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{84DDE556-43EF-43ed-B2DF-37AF9E5DDD75}" = The Sims™ 2 H&M® Fashion Stuff
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{85498904-0748-45AA-9482-6DB8EA971B91}" = DJ_AIO_06_F4500_SW_MIN
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{87F6C83D-F949-4d14-B5CB-DC8C75F8932D}" = The Sims™ 2 FreeTime
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EE94FD8-5F52-4463-A340-185D16328158}" = WebReg
"{8FD3F4BA-A4A6-4380-00A6-CC6853AB2DC2}" = The Sims 2 University
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{9B0F9788-3141-4009-846E-52E59843E963}" = SimCity™ Societies
"{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}" = Copy
"{9CDBC303-3EED-40b0-8E41-A7C65AA96C26}" = The Sims 2 Glamour Life Stuff
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A724605D-B399-4304-B8C7-33B3EF7D4677}" = Bully Scholarship Edition
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AABB78C0-A435-486A-84E3-17E6684828C2}" = CyberLink PowerDirector 10 Content Pack II
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}" = HPSSupply
"{AC76BA86-1025-0000-7760-000000000005}" = Adobe Acrobat X Professional - Middle Eastern, North African, Greek
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.5.1 MUI
"{AC7EE5F1-0DE4-4256-8E43-92B73C8E6019}" = LG Bluetooth Drivers
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{B6F5B704-06D3-4687-90F3-6195304AD755}" = The Sims™ 2 Apartment Life
"{B7B3E9B3-FB14-4927-894B-E9124509AF5A}" = Adobe Flash Player 10 ActiveX
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 World Adventures
"{BB3447F6-9553-4AA9-960E-0DB5310C5779}" = GPBaseService2
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7
"{C1A27135-69EB-8D44-7358-34727DD7B820}" = DoWnload. keeper
"{C22E50B4-B9D0-4a07-B1F3-12362514FEA7}" = The Sims™ 2 Double Deluxe
"{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Norton Online Backup
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{CD31E63D-47FD-491C-8117-CF201D0AFAB5}" = TrayApp
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D137B59C-551C-4659-8AA8-206FA650BF40}" = LG USB Modem Drivers
"{D1C7BB12-BE01-11DC-AAC9-EEBA55D89593}" = SimCity™ Societies Destinations
"{D360FA88-17C8-4F14-B67F-13AAF9607B12}" = MarketResearch
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D94BA408-F110-488B-A65E-3AE7945F79E6}_is1" = Uninstall LG PC Suite III
"{DD3CB916-F91A-41B9-B276-CAC090E91021}" = LibreOffice 4.1.2.3
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DEC269D0-0839-4b34-860C-8A38754F477E}_is1" = Bigasoft BlackBerry Ringtone Maker 1.7.2.3686
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = The Sims™ 2 Seasons
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}" = eBay Worldwide
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = eMachines Updater
"{EF36A836-BF89-4A4F-B079-057B0C68C1E0}" = Sid Meier's Civilization IV Colonization
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F248ADFA-64E0-4b03-8A83-059078BED6A0}" = The Sims™ 2 Bon Voyage
"{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}" = Nero ControlCenter
"{FA0FF682-CC70-4C57-93CD-E276F3E7537E}" = BufferChm
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"{FC053571-8507-44E4-8B6D-AACEAB8CA57C}" =  Sansa Media Converter
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"AC3Filter_is1" = AC3Filter 1.63b
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"Air Strike 3D" = GameHouse Games Collection: Air Strike 3D
"Aloha TriPeaks" = GameHouse Games Collection: Aloha TriPeaks
"ALZip_is1" = ALZip
"Amulet of Time - Shadow of la Rochelle1.0" = Amulet of Time - Shadow of la Rochelle
"Ancient Tri-Jong" = GameHouse Games Collection: Ancient Tri-Jong
"Ancient Tripeaks" = GameHouse Games Collection: Ancient Tripeaks
"Any Video Converter_is1" = Any Video Converter 3.3.4
"AnyDVD" = AnyDVD
"Aquascapes CE1.0" = Aquascapes CE
"ArtMoney SE_is1" = ArtMoney SE v7.35.1
"AVG Secure Search" = AVG Security Toolbar
"Avidemux 2.5" = Avidemux 2.5 (32-bit)
"AVS Update Manager_is1" = AVS Update Manager 1.0
"Awakening - Moonfell Wood1.0" = Awakening - Moonfell Wood
"Awakening 3 The Goblin Kingdom Collector’s Edition1.0" = Awakening 3 The Goblin Kingdom Collector’s Edition
"Awakening the Dreamless Castle 1.00" = Awakening the Dreamless Castle 1.00
"Bejeweled 2" = GameHouse Games Collection: Bejeweled 2
"Botanicula" = Botanicula
"Bounce Out Blitz" = GameHouse Games Collection: Bounce Out Blitz
"Cheat Engine 6.2_is1" = Cheat Engine 6.2
"CloneCD" = CloneCD
"CLUE Classic" = CLUE Classic
"Cooking Academy 2 - World Cuisine1.0" = Cooking Academy 2 - World Cuisine
"Coupon Printer for Windows5.0.0.0" = Coupon Printer for Windows
"Crystal Path" = GameHouse Games Collection: Crystal Path
"Cubis Gold 2" = GameHouse Games Collection: Cubis Gold 2
"Curse at Twilight Thief of Souls Collectors Edition 1.00" = Curse at Twilight Thief of Souls Collectors Edition 1.00
"Cut The Rope" = Cut The Rope
"DAEMON Tools Lite" = DAEMON Tools Lite
"dBpoweramp [Arrange Audio] Codec" = dBpoweramp [Arrange Audio] Codec
"dBpoweramp [Audio Info] Codec" = dBpoweramp [Audio Info] Codec
"dBpoweramp [Calculate Audio CRC] Codec" = dBpoweramp [Calculate Audio CRC] Codec
"dBpoweramp [Channel Split] Codec" = dBpoweramp [Channel Split] Codec
"dBpoweramp [ID Tag Update] Codec" = dBpoweramp [ID Tag Update] Codec
"dBpoweramp [Length Split] Codec" = dBpoweramp [Length Split] Codec
"dBpoweramp [Multi Encoder] Codec" = dBpoweramp [Multi Encoder] Codec
"dBpoweramp [ReplayGain] Codec" = dBpoweramp [ReplayGain] Codec
"dBpoweramp [Tag From Filename] Codec" = dBpoweramp [Tag From Filename] Codec
"dBpoweramp Dalet Codec" = dBpoweramp Dalet Codec
"dBpoweramp DSP Effects" = dBpoweramp DSP Effects
"dBpoweramp FLAC Codec" = dBpoweramp FLAC Codec
"dBpoweramp Monkeys Audio Codec" = dBpoweramp Monkeys Audio Codec
"dBpoweramp Mp2 and BwfMp2 codec" = dBpoweramp Mp2 and BwfMp2 codec
"dBpoweramp mp3 (Fraunhofer IIS) Codec" = dBpoweramp mp3 (Fraunhofer IIS) Codec
"dBpoweramp Music Converter" = dBpoweramp Music Converter
"dBpoweramp Ogg Vorbis Codec" = dBpoweramp Ogg Vorbis Codec
"dBpoweramp Real Audio (Helix) Encoder" = dBpoweramp Real Audio (Helix) Encoder
"dBPoweramp tooLame MP2 codec" = dBPoweramp tooLame MP2 codec
"dBpoweramp Wave64 Codec" = dBpoweramp Wave64 Codec
"dBpoweramp WavPack Codec" = dBpoweramp WavPack Codec
"Deadly Puzzles Toymaker 1.0" = Deadly Puzzles Toymaker 1.0
"Desktop Icon Toy_is1" = Desktop Icon Toy 4.5
"Digby's Donuts" = GameHouse Games Collection: Digby's Donuts
"Diner Dash1.0 (Cracked By CoffeeMan)" = Diner Dash
"DivX Setup" = DivX Setup
"Drawn 2 Dark Flight Collector's Edition [Updated]1.0" = Drawn 2 Dark Flight Collector's Edition [Updated]
"Drawn 3- Trail of Shadows CE1.0" = Drawn 3- Trail of Shadows CE
"Drawn The Painted Tower 1.00" = Drawn The Painted Tower 1.00
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"DVD Flick_is1" = DVD Flick 1.3.0.7
"DVDFab 8_is1" = DVDFab 8.0.4.0 (11/11/2010)
"EADM" = EA Download Manager
"eMachines Game Console" = eMachines Game Console
"eMachines Registration" = eMachines Registration
"eMachines Screensaver" = eMachines ScreenSaver
"eMachines Welcome Center" = Welcome Center
"Explorer Toolbar Editor" = Explorer Toolbar Editor
"Feeding Frenzy" = GameHouse Games Collection: Feeding Frenzy
"foobar2000" = foobar2000 v1.1.7
"Fortune Tiles Gold" = GameHouse Games Collection: Fortune Tiles Gold
"FoxyTunesForFirefox" = FoxyTunes for Firefox
"Free Burn MP3-CD_is1" = Free Burn MP3-CD v1.2
"Free Video to MP3 Converter_is1" = Free Video to MP3 Converter version 5.0.24.430
"Fresco Wizard" = GameHouse Games Collection: Fresco Wizard
"Gardenscapes - Mansion Makeover Collectors Edition1.0" = Gardenscapes - Mansion Makeover Collectors Edition
"GOM Player" = GOM Player
"Google Chrome" = Google Chrome
"Granny in Paradise" = GameHouse Games Collection: Granny in Paradise
"Gutterball" = GameHouse Games Collection: Gutterball
"Gutterball 2" = GameHouse Games Collection: Gutterball 2
"Half-Life 2 [DiGiTALZoNE]" = Half-Life 2 [DiGiTALZoNE]
"Half-Life Source" = Half-Life Source
"Half-Life_is1" = Half-Life
"Hamsterball" = GameHouse Games Collection: Hamsterball
"HDTVPump" = DVBPortal HDTVPump Filter and Plugin
"Hidden Secrets - The Nightmare1.0" = Hidden Secrets - The Nightmare
"Hotkey Utility" = Hotkey Utility
"HP Photo Creations" = HP Photo Creations
"Identity Card" = Identity Card
"Iggle Pop!" = GameHouse Games Collection: Iggle Pop!
"Incredible Ink" = GameHouse Games Collection: Incredible Ink
"Inspector Parker" = GameHouse Games Collection: Inspector Parker
"InstallShield_{1F7424F8-F992-48BC-90EF-7C4DB0405E3F}" = Alcor Micro USB Card Reader
"InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}" = CyberLink WaveEditor
"InstallShield_{A724605D-B399-4304-B8C7-33B3EF7D4677}" = Bully Scholarship Edition
"InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"InstallShield_{AABB78C0-A435-486A-84E3-17E6684828C2}" = CyberLink PowerDirector 10 Content Pack II
"InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"IrfanView" = IrfanView (remove only)
"Jewel Quest" = GameHouse Games Collection: Jewel Quest
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.9.0 (Full)
"Lemonade Tycoon" = GameHouse Games Collection: Lemonade Tycoon
"LogonStudio" = LogonStudio
"Love Chronicles Salvation Collectors Edition 1.00" = Love Chronicles Salvation Collectors Edition 1.00
"Machinarium" = Machinarium
"Mah Jong Adventures" = GameHouse Games Collection: Mah Jong Adventures
"Mah Jong Medley" = GameHouse Games Collection: Mah Jong Medley
"Mah Jong Quest" = GameHouse Games Collection: Mah Jong Quest
"Mahjong Towers Eternity" = GameHouse Games Collection: Mahjong Towers Eternity
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.0.1.1004
"Minecraft1.4.6" = Minecraft1.4.6
"Mozilla Firefox 13.0.1 (x86 en-US)" = Mozilla Firefox 13.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Mystery Case Files - Ravenhearst 1.00" = Mystery Case Files - Ravenhearst 1.00
"Mystery Trackers 5 - Silent Hollow Collector's EditionFinal" = Mystery Trackers 5 - Silent Hollow Collector's Edition
"Mythic Mahjong1.0" = Mythic Mahjong
"Myths of the World - Chinese Healer Collector's EditionFinal" = Myths of the World - Chinese Healer Collector's Edition
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"pcsx2-r5350" = PCSX2 - Playstation 2 Emulator
"Pizza Frenzy" = GameHouse Games Collection: Pizza Frenzy
"Platypus" = GameHouse Games Collection: Platypus
"PowerISO" = PowerISO
"Princess Isabella - Return of the Curse CE1.0" = Princess Isabella - Return of the Curse CE
"Princess Isabella Special Edition (SE) 1.00" = Princess Isabella Special Edition (SE) 1.00
"Princess Isabella The Rise of an Heir Collectors 1.00" = Princess Isabella The Rise of an Heir Collectors 1.00
"Rainlendar2" = Rainlendar2 (remove only)
"Reader's Digest Super Word Power" = GameHouse Games Collection: Reader's Digest Super Word Power
"RealAlt_is1" = Real Alternative 2.0.2 Lite
"Rhapsody" = Rhapsody
"Ricochet" = GameHouse Games Collection: Ricochet
"Ricochet Lost Worlds" = GameHouse Games Collection: Ricochet Lost Worlds
"Ricochet Lost Worlds: Recharged" = GameHouse Games Collection: Ricochet Lost Worlds - Recharged
"Roller Rush" = GameHouse Games Collection: Roller Rush
"Royal Envoy II CE1.0" = Royal Envoy II CE
"Saints & Sinners Bingo" = GameHouse Games Collection: Saints & Sinners Bingo
"Sandlot Games Client Services_is1" = Sandlot Games Client Services
"SCRABBLE" = GameHouse Games Collection: SCRABBLE
"Shape Shifter" = GameHouse Games Collection: Shape Shifter
"SimPE_is1" = SimPE 0.72 (alpha)
"SolveigMM AVI Trimmer 2.0.1201.11" = SolveigMM AVI Trimmer
"SP_eea72b4f" = ss helper 1.74
"Spelvin" = GameHouse Games Collection: Spelvin
"Splash" = GameHouse Games Collection: Splash
"Spring Sprang Sprung" = GameHouse Games Collection: Spring Sprang Sprung
"Stray Souls Dollhouse Story Collectors Edition 1.00" = Stray Souls Dollhouse Story Collectors Edition 1.00
"Super 5-Line Slots" = GameHouse Games Collection: Super 5-Line Slots
"Super Blackjack!" = GameHouse Games Collection: Super Blackjack!
"Super Bounce Out!" = GameHouse Games Collection: Super Bounce Out!
"Super Candy Cruncher" = GameHouse Games Collection: Super Candy Cruncher
"Super Fruit Frolic" = GameHouse Games Collection: Super Fruit Frolic
"Super Gem Drop" = GameHouse Games Collection: Super Gem Drop
"Super Glinx!" = GameHouse Games Collection: Super Glinx!
"Super Letter Linker" = GameHouse Games Collection: Super Letter Linker
"Super Nisqually" = GameHouse Games Collection: Super Nisqually
"Super PileUp!" = GameHouse Games Collection: Super PileUp!
"Super Pool" = GameHouse Games Collection: Super Pool
"Super Pop & Drop!" = GameHouse Games Collection: Super Pop & Drop!
"Super Rumble Cube" = GameHouse Games Collection: Super Rumble Cube
"Super TextTwist" = GameHouse Games Collection: Super TextTwist
"Super WHATword" = GameHouse Games Collection: Super WHATword
"SystemRequirementsLab" = System Requirements Lab
"Tag&Rename_is1" = Tag&Rename 3.5.4
"Tap a Jam" = GameHouse Games Collection: Tap a Jam
"TeamExtreme Minecraft Installer 1.3.2" = TeamExtreme Minecraft Installer 1.3.2
"Tennis Titans" = GameHouse Games Collection: Tennis Titans
"Tradewinds 2" = GameHouse Games Collection: Tradewinds 2
"Trivia Machine" = GameHouse Games Collection: Trivia Machine
"Tropical Swaps" = GameHouse Games Collection: Tropical Swaps
"Tulula Legend of a Volcano 1.00" = Tulula Legend of a Volcano 1.00
"Tumblebugs" = GameHouse Games Collection: Tumblebugs
"Turtle Bay" = GameHouse Games Collection: Turtle Bay
"Twistingo" = GameHouse Games Collection: Twistingo
"Ultimate Dominoes" = GameHouse Games Collection: Ultimate Dominoes
"Unlocker" = Unlocker 1.9.1
"uTorrent" = µTorrent
"uTorrentBar Toolbar" = uTorrentBar Toolbar
"VideoReDo4_is1" = VideoReDo TVSuite Version 4.20.7.629
"Virtual Villagers 5 New Believers B" = Virtual Villagers 5 New Believers B
"VLC media player" = VLC media player 1.1.11
"W7 - Sim Tracker" = W7 - Sim Tracker
"Warcraft III Reign of Chaos & The Frozen Throne" = Warcraft III Reign of Chaos & The Frozen Throne
"Wheel of Fortune" = GameHouse Games Collection: Wheel of Fortune
"WildTangent emachines Master Uninstall" = eMachines Games
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinISO" = WinISO
"WinLiveSuite" = Windows Live Essentials
"Winstep Xtreme_is1" = Nexus 10.9
"Word Jolt" = GameHouse Games Collection: Word Jolt
"Word Slinger" = GameHouse Games Collection: Word Slinger
"World Of Goo_R.G. Mechanics_is1" = World Of Goo
"Worlds Best Board Games1.0" = Worlds Best Board Games
"WT078910" = Bejeweled 2 Deluxe
"WT078930" = Zuma Deluxe
"WT078954" = Blackhawk Striker 2
"WT078962" = Bob the Builder Can-Do-Zoo
"WT079018" = Faerie Solitaire
"WT079066" = Jewel Quest Solitaire 3
"WT079098" = Monopoly
"WT079102" = Mystery P.I. - Lost in Los Angeles
"WT079106" = Penguins!
"WT079110" = Plants vs. Zombies
"WT079114" = Polar Bowler
"WT079118" = Polar Golfer
"WT079150" = Scrabble Plus
"WT079175" = Virtual Villagers - A New Home
"WT079180" = Yahtzee
"WT079283" = Build-a-lot 2
"WT079316" = Escape Rosecliff Island
"WT079418" = Virtual Families
"WTA-b342289c-d082-4e79-a764-78f605789c74" = OPERATION Mania
"x264vfw" = x264vfw - H.264/MPEG-4 AVC codec (remove only)
"Xilisoft iPhone Ringtone Maker" = Xilisoft iPhone Ringtone Maker
"YTdetect" = Yahoo! Detect
"YU2010_is1" = Your Uninstaller! 2010
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = GOM Player + Ask Toolbar Updater
"07140e809c2bb6df" = IPFilter Updater
"7 Taskbar Tweaker" = 7+ Taskbar Tweaker v4.5
"Sansa Updater" = Sansa Updater
"UnityWebPlayer" = Unity Web Player
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
OTL encountered an error while reading this event log. It may be corrupt.
 
< End of report >
 

 

Security check log

Results of screen317's Security Check version 0.99.83  
 Windows 7  x64 (UAC is disabled!)  
 Out of date service pack!!
``````````````Antivirus/Firewall Check:``````````````
 Windows Security Center service is not running! This report may not be accurate!
AVG AntiVirus Free Edition 2013   
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 MVPS Hosts File  
 Spybot - Search & Destroy
 AVG PC Tuneup 2011  
 Java™ 6 Update 31  
 Java 7 Update 7  
 Java version out of Date!
 Adobe Flash Player 10 Flash Player out of Date!
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox 13.0.1 Firefox out of Date!  
 Google Chrome 34.0.1847.116  
 Google Chrome 34.0.1847.131  
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
 


  • 0

#8
Valinorum

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Hi Mad_Night, :)

Perform the following steps in normal mode. If you encounter problem, inform myself and I will guide an alternative.
  • Step #3 Uninstall Programs
    I want you to uninstall the following program(s) listed below due to poor reputation we receive about them. To uninstall a program, go to Start > Control Panel > Uninstall a program or Start > Control Panel > Programs and Features. Wait for the list to fill up and double-click on the items I have listed below and follow the on-screen instruction to remove/uninstall them.
    • 7+ Taskbar Tweaker v4.5
    • IPFilter Updater
    • GOM Player + Ask Toolbar Updater
    • Your Uninstaller! 2010
    • uTorrentBar Toolbar
    • ss helper 1.74
    • AVG Security Toolbar
    • Spybot - Search & Destroy (Re-install if you wish after I rectify your problem)
    • Ask Toolbar
    • FreeRIP Toolbar v7.1
    • AVG PC Tuneup 2011
    • Java 6 Update 31
    • Java 7 Update 7 (Download updated version here
    • VLC media player 1.1.11 (Outdated version. Download updated version here
    • Mozilla Firefox 13.0.1 (Download updated version here
 
  • Step #4 Fix with AdwCleaner
    • Download AdwCleaner by Xplode to your Desktop from the following link.
    • Right-click on AdwCleaner.exe and choose Run as administrator;
    • Click on Scan and let the program run unhindered;
    • When done, click on Clean and allow the system to reboot after it is done;
    • A log will be opened automatically after the restart;
    • Copy and Paste the contents of this log in your reply.
 
  • Step #5 Fix with Junkware Removal Tool
    Download Junkware Removal Tool by thisisu to your Desktop from the link below.
    Download Link 1
    Download Link 2
    • Disable your anti-virus to avoid potential conflicts. For more information please acknowledge yourself this article;
    • Run the program either by double-clicking(Windows XP) or Right-clicking and choosing Run as administrator(Windows Vista and above);
    • Please be patient as the tool cleans your system;
    • After completion of the process a log named JRT.txt will automatically open and is save to your Desktop;
    • Copy and Paste the contents of the log in your next reply.
 
  • Step #6 Upload File(s) to Virus-Total
    I want you to upload the following suspicious file(s) to an online virus-scanner to scan.
    • Please go to www.virustotal.com
    • Click on Choose File;
    • Go to C:\Windows\explorer.exe;
    • Click on Open;
    • Click on Scan it;
    • Copy and Paste the link of the result page in your reply;
 
  • Step #7 Scan with CKScanner
    • Download CKScanner by askey127 to your Desktop from the link below.
      Download Link
    • Right-click on the program and choose Run as administrator;
    • Click Search for files;
    • After the scan is finished choose Save List to File;
    • You will get a notification that the file has been saved;
    • Double-click the CKFiles.txt on your Desktop and copy and paste the contents in your next reply.
 

Re-run OTL and click on Quick Scan and post the log after the scan.

 
  • Required Log(s):
    • AdwCleaner Log;
    • Junkware Removal Tool Log;
    • VirusTotal Scan Link;
    • CKScanner Log;
    • OTL.txt
Regards,
Valinorum
  • 0

#9
Mad_Night

Mad_Night

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts

ok i got the programs all the way to spybot uninstalled.  the problem is that after i did that i now get the message "please wait until the current program is finished uninstalling or being changed".  the window for it already closed and the was five minutes ago.  should i just go to the next step and get rid of the stuff later or yea...


  • 0

#10
Mad_Night

Mad_Night

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts

ok so i don't have the AdwCleaner because my cat stepped on the power when it was restarting and one didn't pop up. do you want me to run it again?
 

Junkware

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Sy on Mon 05/12/2014 at 15:02:37.73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\driver genius
Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\driver genius
Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440}
Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440}



~~~ Registry Keys

Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthelper.exe
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\AppID\secman.dll
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3642271321-3979327876-625235954-1000\Software\sweetim
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\cbsidlm-tr1_9-7_Taskbar_Tweaker-SEO2-10973305_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\cbsidlm-tr1_9-7_Taskbar_Tweaker-SEO2-10973305_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\YontooSetup-DropDownDeals-SilentInstaller-166C_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\YontooSetup-DropDownDeals-SilentInstaller-166C_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\cbsidlm-tr1_9-7_Taskbar_Tweaker-SEO2-10973305_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\cbsidlm-tr1_9-7_Taskbar_Tweaker-SEO2-10973305_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\YontooSetup-DropDownDeals-SilentInstaller-166C_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\YontooSetup-DropDownDeals-SilentInstaller-166C_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EA4B13CA-FDBF-E716-8E65-65F1231BD0D7}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EBC0A423-E3AD-4316-95CE-44651911AE81}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Failed to delete: [Registry Key] "hkey_local_machine\software\classes\appid\{9b0cb95c-933a-4b8c-b6d4-edcd19a43874}"
Failed to delete: [Registry Key] "hkey_local_machine\software\classes\interface\{ac71b60e-94c9-4ede-ba46-e146747bb67e}"
Failed to delete: [Registry Key] "hkey_local_machine\software\classes\wow6432node\appid\{9b0cb95c-933a-4b8c-b6d4-edcd19a43874}"
Failed to delete: [Registry Key] "hkey_local_machine\software\classes\wow6432node\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}"
Failed to delete: [Registry Key] "hkey_local_machine\software\classes\wow6432node\interface\{ac71b60e-94c9-4ede-ba46-e146747bb67e}"
Failed to delete: [Registry Key] "hkey_local_machine\software\wow6432node\classes\appid\{9b0cb95c-933a-4b8c-b6d4-edcd19a43874}"
Failed to delete: [Registry Key] "hkey_local_machine\software\wow6432node\classes\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}"
Failed to delete: [Registry Key] "hkey_local_machine\software\wow6432node\classes\interface\{ac71b60e-94c9-4ede-ba46-e146747bb67e}"



~~~ Files

Failed to delete: [File] "C:\Program Files (x86)\mozilla firefox\plugins\npcouponprinter.dll"
Failed to delete: [File] "C:\Program Files (x86)\mozilla firefox\plugins\npmozcouponprinter.dll"



~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\big fish"
Successfully deleted: [Folder] "C:\ProgramData\big fish games"
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\ProgramData\drivergenius"
Failed to delete: [Folder] "C:\ProgramData\tarma installer"
Failed to delete: [Folder] "C:\ProgramData\visualbee"
Successfully deleted: [Folder] "C:\Users\Sy\AppData\Roaming\big fish games"
Failed to delete: [Folder] "C:\Users\Sy\AppData\Roaming\opencandy"
Failed to delete: [Folder] "C:\Users\Sy\AppData\Roaming\quickstorestoolbar"
Failed to delete: [Folder] "C:\Program Files (x86)\coupons"
Failed to delete: [Folder] "C:\Program Files (x86)\driver-soft"
Failed to delete: [Folder] "C:\Program Files (x86)\freerip toolbar"
Successfully deleted: [Folder] "C:\bigfishcache"
Failed to delete: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ FireFox

Successfully deleted: [File] C:\Users\Sy\AppData\Roaming\mozilla\firefox\profiles\bvay5nu4.default\searchplugins\bing-zugo.xml
Failed to delete: [Folder] C:\Users\Sy\AppData\Roaming\mozilla\firefox\profiles\bvay5nu4.default\extensions\[email protected]
Failed to delete: [Folder] C:\Users\Sy\AppData\Roaming\mozilla\firefox\profiles\bvay5nu4.default\extensions\{8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}
Successfully deleted the following from C:\Users\Sy\AppData\Roaming\mozilla\firefox\profiles\bvay5nu4.default\prefs.js

user_pref("[email protected]", true);
Emptied folder: C:\Users\Sy\AppData\Roaming\mozilla\firefox\profiles\bvay5nu4.default\minidumps [26 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 05/12/2014 at 15:54:01.24
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

Virus-Total

https://www.virustot...sis/1399927818/

 

i tried to use CKScanner but when i clicked search files it freezes. the same happened with otl.

what do you want me to do now?


  • 0

Advertisements


#11
Valinorum

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Hi Mad_Night, :)
 

ok i got the programs all the way to spybot uninstalled. the problem is that after i did that i now get the message "please wait until the current program is finished uninstalling or being changed". the window for it already closed and the was five minutes ago. should i just go to the next step and get rid of the stuff later or yea...

Sometimes an uninstaller runs in the background. Try to uninstall the remaining programs.

Drive C: | 447.66 Gb Total Space | 12.20 Gb Free Space | 2.73% Space Free | Partition Type: NTFS
Drive G: | 1397.26 Gb Total Space | 1.19 Gb Free Space | 0.09% Space Free | Partition Type: NTFS
Drive H: | 442.98 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: UDF
Drive K: | 465.11 Gb Total Space | 1.64 Gb Free Space | 0.35% Space Free | Partition Type: NTFS

You have less than 3% space free in your HDD. This is another reason of slowness and unresponsiveness. Always try to keep at least 10% free space.

I have notices that you have more than one antivirus installed in your system. Well, this is one of the situations where more is not merrier. They tend to create conflict with each other and their different pattern on your system protection can deteriorate your system performance.
I have listed the anti-virus(es) you have in your system.
  • COMODO Internet Security
  • AVG 2013
 
  • Step #8 Fix with OTL
    • Re-run OTL by right clicking and choosing Run as administrator;
    • Under the Custom Scans/Fixes Box copy and paste the following contents inside the quote box. (Do not include the word 'quote').

      :Commands
      [createrestorepoint]

      :OTL
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...75v135r45i1s21o
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...75v135r45i1s21o
      IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-re...q={searchTerms}
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...75v135r45i1s21o
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...75v135r45i1s21o
      IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-re...q={searchTerms}
      IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT3072253
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...75v135r45i1s21o
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://homepage.emac...75v135r45i1s21o
      IE - HKCU\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - No CLSID value found
      IE - HKCU\..\URLSearchHook: {E634228A-03CF-4BC8-B0AB-668257F1FD8C} - C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll (Spigot, Inc.)
      IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.c...sa&d=2013-01-14 16:03:16&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
      IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-re...q={searchTerms}
      IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...rchTerms}&SSPV=
      IE - HKCU\..\SearchScopes\{EBC0A423-E3AD-4316-95CE-44651911AE81}: "URL" = http://websearch.ask...51-3A44352FBECC
      FF - prefs.js..browser.search.defaultengine: "Ask.com"
      FF - prefs.js..browser.search.defaultenginename: ""
      FF - prefs.js..browser.search.defaultenginename,S: S", ""
      FF - prefs.js..browser.search.defaultthis.engineName: "uTorrentControl2 Customized Web Search"
      FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
      FF - prefs.js..browser.startup.homepage: "http://awesomestart....ic/anbu-itachi"
      FF - prefs.js..extensions.enabledAddons: [email protected]:7.1
      FF - prefs.js..extensions.enabledAddons: [email protected]:2.2.3
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.5
      FF - prefs.js..extensions.enabledItems: [email protected]:3.3.3.2
      FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.0\\npsitesafety.dll File not found
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
      [2012/01/03 17:27:44 | 000,002,333 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\askcom.xml
      [2013/12/08 10:09:23 | 000,003,729 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\avg-secure-search.xml
      [2013/01/02 09:19:31 | 000,002,515 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\Search_Results.xml
      [2014/05/07 07:17:34 | 000,001,540 | ---- | M] () -- C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\swagbuckscom.xml
      [2013/06/03 13:37:13 | 000,000,000 | ---D | M] (FreeRIP Toolbar) -- C:\PROGRAM FILES (X86)\FREERIP TOOLBAR\FF
      [2009/11/06 11:37:19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll
      [2009/11/06 11:37:20 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll
      [2014/04/27 16:39:03 | 000,003,729 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
      O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll File not found
      O2 - BHO: (no name) - {300BEC06-B743-4D19-86B9-11DC711D7FFB} - No CLSID value found.
      O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll File not found
      O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
      O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll File not found
      O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll (Conduit Ltd.)
      O2 - BHO: (GOM Player + Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll File not found
      O2 - BHO: (FreeRIP Toolbar) - {E634228A-03CF-4BC8-B0AB-668257F1FD8C} - C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll (Spigot, Inc.)
      O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll File not found
      O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (GOM Player + Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll File not found
      O3 - HKLM\..\Toolbar: (FreeRIP Toolbar) - {E634228A-03CF-4BC8-B0AB-668257F1FD8C} - C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll (Spigot, Inc.)
      O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (GOM Player + Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll File not found
      O4:64bit: - HKLM..\Run: [RemoveShowDesktopButton] C:\Windows\w7sdbr.exe ()
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
      O4 - HKCU..\Run: [7 Taskbar Tweaker] C:\Users\Sy\AppData\Roaming\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe (RaMMicHaeL)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O15 - HKCU\..Trusted Domains: real.com ([rhap-app-4-0] https in Trusted sites)
      O15 - HKCU\..Trusted Domains: real.com ([rhapreg] https in Trusted sites)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.7.2)
      O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll (AVG Secure Search)
      O33 - MountPoints2\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\Shell - "" = AutoRun
      O33 - MountPoints2\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\Shell\AutoRun\command - "" = H:\WD SmartWare.exe -- [2010/01/21 19:13:40 | 003,330,848 | ---- | M] (Western Digital)
      O33 - MountPoints2\J\Shell - "" = AutoRun
      O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\mint4win.exe --force-wubi --cdmenu --skipmd5check
      O33 - MountPoints2\L\Shell - "" = AutoRun
      O33 - MountPoints2\L\Shell\AutoRun\command - "" = L:\mint4win.exe --force-wubi --cdmenu --skipmd5check
      [2014/04/27 16:38:51 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
      [2014/05/10 18:20:03 | 000,001,977 | ---- | M] () -- C:\Users\Sy\Desktop\7+ Taskbar Tweaker.lnk
      [2013/06/26 12:14:35 | 000,003,715 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
      [2013/02/02 10:50:39 | 000,510,840 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall.exe
      [2013/01/01 09:30:12 | 000,000,000 | ---D | M] -- C:\Users\Sy\AppData\Roaming\7+ Taskbar Tweaker

      :Commands
      [emptytemp]
      [resethosts]

    • Click on "Run Fix" and let the program run unhindered;
    • Your PC will reboot automatically and a log will be opened;
    • Please post it in your next reply.
 

The AdwCleaner log is located in C:\AdwCleaner[S*].txt. Post it.

 
  • Required Log(s):
    • OTL Fix Log
    • AdwCleaner Log
Regards,
Valinorum
  • 0

#12
Mad_Night

Mad_Night

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts

i'm planing to get uninstalling stuff after this. oh and i unplugged my two external drives because i wasn't using them so yea... anyway

 

OTL

All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Restore| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{687578b9-7132-4a7a-80e4-30ee31099e03} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{687578b9-7132-4a7a-80e4-30ee31099e03}\ not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}\ deleted successfully.
File move failed. C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EBC0A423-E3AD-4316-95CE-44651911AE81}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EBC0A423-E3AD-4316-95CE-44651911AE81}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "" removed from browser.search.defaultenginename
Prefs.js: S", "" removed from browser.search.defaultenginename,S
Prefs.js: "uTorrentControl2 Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "http://search.condui...={searchTerms}" removed from browser.search.defaulturl
Prefs.js: "http://awesomestart....ic/anbu-itachi" removed from browser.startup.homepage
Prefs.js: [email protected]:7.1 removed from extensions.enabledAddons
Prefs.js: [email protected]:2.2.3 removed from extensions.enabledAddons
Prefs.js: [email protected]:1.5 removed from extensions.enabledAddons
Prefs.js: [email protected]:3.3.3.2 removed from extensions.enabledItems
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11\ not found.
File C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll not found.
File C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\askcom.xml not found.
File C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\avg-secure-search.xml not found.
File C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\Search_Results.xml not found.
C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\swagbuckscom.xml moved successfully.
Folder move failed. C:\PROGRAM FILES (X86)\FREERIP TOOLBAR\FF scheduled to be moved on reboot.
C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll moved successfully.
C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll moved successfully.
File C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{300BEC06-B743-4D19-86B9-11DC711D7FFB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{300BEC06-B743-4D19-86B9-11DC711D7FFB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{53707962-6F74-2D53-2644-206D7942484F}\ not found.
File C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\ not found.
File C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}\ not found.
File C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{95B7759C-8C7F-4BF1-B163-73684A933233} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\ not found.
File C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}\ not found.
File C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\ not found.
File C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RemoveShowDesktopButton deleted successfully.
C:\Windows\w7sdbr.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\vProt not found.
File C:\Program Files (x86)\AVG Secure Search\vprot.exe not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\7 Taskbar Tweaker not found.
File C:\Users\Sy\AppData\Roaming\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\real.com\rhap-app-4-0\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\real.com\rhapreg\ deleted successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
File C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol\ not found.
File C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a83704dc-3cc6-11e0-bd04-00262d2f5f39}\ not found.
File H:\WD SmartWare.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\J\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\J\ not found.
File J:\mint4win.exe --force-wubi --cdmenu --skipmd5check not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\L\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\L\ not found.
File L:\mint4win.exe --force-wubi --cdmenu --skipmd5check not found.
Folder C:\ProgramData\AVG Secure Search\ not found.
File C:\Users\Sy\Desktop\7+ Taskbar Tweaker.lnk not found.
C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml moved successfully.
C:\Windows\SysWOW64\SpoonUninstall.exe moved successfully.
Folder C:\Users\Sy\AppData\Roaming\7+ Taskbar Tweaker\ not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Public
 
User: Sy
->Temp folder emptied: 26821953 bytes
->Temporary Internet Files folder emptied: 3408431 bytes
->Java cache emptied: 1019848 bytes
->FireFox cache emptied: 77930534 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 664 bytes
 
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 9066277 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 99058 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 113.00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.69.0 log created on 05132014_072608

Files\Folders moved on Reboot...
File\Folder C:\Program Files (x86)\FreeRIP Toolbar\IE\7.1\freeripToolbarIE.dll not found!
Folder move failed. C:\PROGRAM FILES (X86)\FREERIP TOOLBAR\FF scheduled to be moved on reboot.
C:\Users\Sy\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\Sy\AppData\Local\Temp\VGX405.tmp not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
 

 

i ran the adwcleaner like twice so i'll post both of those.

# AdwCleaner v3.208 - Report created 12/05/2014 at 13:38:37
# Updated 11/05/2014 by Xplode
# Operating System : Windows 7 Home Premium  (64 bits)
# Username : Sy - HITACHI
# Running from : C:\Users\Sy\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\Sy\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Sy\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url
File Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Extensions\[email protected]
File Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\invalidprefs.js
File Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\Askcom.xml
File Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\daemon-search.xml
File Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\searchplugins\Search_Results.xml
File Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\user.js
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\driver-soft
Folder Found : C:\Program Files (x86)\FreeRIP Toolbar
Folder Found : C:\Program Files (x86)\Search Toolbar
Folder Found : C:\ProgramData\DSearchLink
Folder Found : C:\ProgramData\FreeRIP
Folder Found : C:\ProgramData\Partner
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\ProgramData\Trymedia
Folder Found : C:\ProgramData\VisualBee
Folder Found : C:\ProgramData\WinterSoft
Folder Found : C:\Users\Sy\AppData\Local\emaze
Folder Found : C:\Users\Sy\AppData\Local\eSupport.com
Folder Found : C:\Users\Sy\AppData\Local\visualbeeexe
Folder Found : C:\Users\Sy\AppData\LocalLow\Conduit
Folder Found : C:\Users\Sy\AppData\LocalLow\FreeRIP
Folder Found : C:\Users\Sy\AppData\LocalLow\PriceGong
Folder Found : C:\Users\Sy\AppData\LocalLow\Search Settings
Folder Found : C:\Users\Sy\AppData\Roaming\1H1Q
Folder Found : C:\Users\Sy\AppData\Roaming\dvdvideosoftiehelpers
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Conduit
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\ConduitCommon
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\ConduitEngine
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\CT2260173
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Extensions\{8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Extensions\[email protected]
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Smartbar
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\ValueApps
Folder Found : C:\Users\Sy\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Sy\AppData\Roaming\QuickStoresToolbar
Folder Found : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Delta
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D425283-D487-4337-BAB6-AB8354A81457}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Key Found : HKCU\Software\Search Settings
Key Found : HKCU\Software\visualbee
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKCU\Software\Zugo
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Delta
Key Found : [x64] HKCU\Software\IGearSettings
Key Found : [x64] HKCU\Software\InstallCore
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : [x64] HKCU\Software\Search Settings
Key Found : [x64] HKCU\Software\visualbee
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\Zugo
Key Found : HKLM\SOFTWARE\5e68bd1e16dbf14
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{20E1481B-E285-4ABC-ADC7-AE24842B81CD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CD4D7B0F-45C6-4bb2-A1E7-54D1754E7FC5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{0194532A-A99C-4337-937E-2A452C8957BE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3072253
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{92E5039E-FF1E-4AFB-8F24-87592D20C383}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Driver-Soft
Key Found : HKLM\Software\dt soft\daemon tools toolbar
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FreeRIP3_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FreeRIP3_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\mconduitinstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\mconduitinstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchProtectINT_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchProtectINT_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\Software\Search Settings
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\Trymedia Systems
Key Found : HKLM\Software\visualbee
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0194532A-A99C-4337-937E-2A452C8957BE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{687578B9-7132-4A7A-80E4-30EE31099E03}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E634228A-03CF-4BC8-B0AB-668257F1FD8C}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{E634228A-03CF-4BC8-B0AB-668257F1FD8C}]

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16869


-\\ Mozilla Firefox v13.0.1 (en-US)

[ File : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\prefs.js ]

Line Found : user_pref("CT2260173..clientLogIsEnabled", false);
Line Found : user_pref("CT2260173..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2260173..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2260173.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2260173.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2260173.AppTrackingLastCheckTime", "Sun Jul 21 2013 16:45:28 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CT2260173.CT2260173", "CT2260173");
Line Found : user_pref("CT2260173.CT2260173.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2260173&octid=CT2260173&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_[...]
Line Found : user_pref("CT2260173.CommunitiesChangesLastCheckTime", "0");
Line Found : user_pref("CT2260173.ConfigurationLastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.CurrentServerDate", "11-11-2013");
Line Found : user_pref("CT2260173.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2260173.DialogsGetterLastCheckTime", "Sat Nov 09 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.DownloadReferralCookieData", "{\"BannerName\":\"\",\"BannerTypeId\":\"\",\"BannerCulture\":\"\",\"DownloadTime\":\"6/8/2011 11:25:58 PM\",\"SourceId\":0,\"OriginSource\":0,\"Refer[...]
Line Found : user_pref("CT2260173.EMailNotifierCheckInterval", "1");
Line Found : user_pref("CT2260173.EMailNotifierLabelLength", 6);
Line Found : user_pref("CT2260173.EMailNotifierPollDate", "Fri Aug 31 2012 09:34:23 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.EMailNotifierSound", "NONE");
Line Found : user_pref("CT2260173.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.FeedLastCount128940659599556287", 0);
Line Found : user_pref("CT2260173.FeedPollDate128940659196275477", "Wed Jun 08 2011 16:37:26 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.FeedPollDate128940659574712536", "Wed Jun 08 2011 15:27:18 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.FeedTTL128940659574712536", 40);
Line Found : user_pref("CT2260173.FirstServerDate", "8-6-2011");
Line Found : user_pref("CT2260173.FirstTime", true);
Line Found : user_pref("CT2260173.FirstTimeFF3", true);
Line Found : user_pref("CT2260173.FixPageNotFoundErrors", false);
Line Found : user_pref("CT2260173.GroupingInvalidateCache", false);
Line Found : user_pref("CT2260173.GroupingLastCheckTime", "0");
Line Found : user_pref("CT2260173.GroupingLastServerUpdateTime", "0");
Line Found : user_pref("CT2260173.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2260173.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2260173.HasUserGlobalKeys", true);
Line Found : user_pref("CT2260173.HomePageProtectorEnabled", false);
Line Found : user_pref("CT2260173.Initialize", true);
Line Found : user_pref("CT2260173.InitializeCommonPrefs", true);
Line Found : user_pref("CT2260173.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2260173.InstalledDate", "Wed Jun 08 2011 15:26:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.InvalidateCache", false);
Line Found : user_pref("CT2260173.IsAlertDBUpdated", true);
Line Found : user_pref("CT2260173.IsGrouping", false);
Line Found : user_pref("CT2260173.IsMulticommunity", false);
Line Found : user_pref("CT2260173.IsOpenThankYouPage", true);
Line Found : user_pref("CT2260173.IsOpenUninstallPage", true);
Line Found : user_pref("CT2260173.LanguagePackLastCheckTime", "Sun Nov 10 2013 09:15:53 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2260173.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2260173.LastLogin_3.12.0.7", "Mon Apr 30 2012 22:53:21 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.12.2.3", "Tue May 15 2012 13:40:16 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.13.0.6", "Sun Jul 15 2012 00:17:27 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.14.1.0", "Mon Aug 20 2012 21:17:51 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.15.1.0", "Tue Mar 05 2013 02:33:21 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.18.0.7", "Sun Jul 14 2013 19:27:04 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.19.0.3", "Tue Sep 10 2013 21:51:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.20.0.4", "Sun Nov 10 2013 22:35:32 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.3.5.1", "Sun Aug 21 2011 15:39:15 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.6.0.10", "Fri Sep 30 2011 11:13:56 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.7.0.6", "Tue Nov 15 2011 12:35:06 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.8.0.8", "Mon Dec 05 2011 07:20:18 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.8.1.0", "Fri Dec 30 2011 18:54:44 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.9.0.3", "Wed Feb 29 2012 23:04:31 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT2260173.Locale", "en");
Line Found : user_pref("CT2260173.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2260173.MCDetectTooltipShow", false);
Line Found : user_pref("CT2260173.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2260173.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2260173.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2260173.RadioIsPodcast", false);
Line Found : user_pref("CT2260173.RadioLastCheckTime", "0");
Line Found : user_pref("CT2260173.RadioLastUpdateIPServer", "0");
Line Found : user_pref("CT2260173.RadioLastUpdateServer", "0");
Line Found : user_pref("CT2260173.RadioMediaID", "10034");
Line Found : user_pref("CT2260173.RadioMediaType", "Media Player");
Line Found : user_pref("CT2260173.RadioMenuSelectedID", "EBRadioMenu_CT226017310034");
Line Found : user_pref("CT2260173.RadioStationName", "KCIS");
Line Found : user_pref("CT2260173.RadioStationURL", "hxxp://crista.streamguys.com/kcis");
Line Found : user_pref("CT2260173.RestartDialogFirstTime", "false");
Line Found : user_pref("CT2260173.SHRINK_TOOLBAR", 1);
Line Found : user_pref("CT2260173.SearchAPILastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.SearchBoxWidth", 150);
Line Found : user_pref("CT2260173.SearchEngine", "Web%20Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2260173&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Found : user_pref("CT2260173.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CT2260173.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2260173.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2260173&q=");
Line Found : user_pref("CT2260173.SearchInNewTabEnabled", false);
Line Found : user_pref("CT2260173.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2260173.SearchInNewTabLastCheckTime", "Tue Sep 10 2013 07:07:10 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT2260173.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2260173&octid=CT2260173&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Found : user_pref("CT2260173.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2260173.SearchInNewTabUserEnabled", false);
Line Found : user_pref("CT2260173.SearchProtectorEnabled", false);
Line Found : user_pref("CT2260173.SearchProtectorToolbarDisabled", false);
Line Found : user_pref("CT2260173.ServiceMapLastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.SettingsLastCheckTime", "Sun Nov 10 2013 22:13:25 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.SettingsLastUpdate", "1384053033");
Line Found : user_pref("CT2260173.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2260173.ThirdPartyComponentsLastCheck", "Wed Feb 29 2012 07:04:30 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.ThirdPartyComponentsLastUpdate", "1312887586");
Line Found : user_pref("CT2260173.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2260173.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2260173.UserID", "UN19623762586530746");
Line Found : user_pref("CT2260173.ValidationData_Search", 2);
Line Found : user_pref("CT2260173.ValidationData_Toolbar", 2);
Line Found : user_pref("CT2260173.WeatherNetwork", "");
Line Found : user_pref("CT2260173.WeatherPollDate", "Fri Aug 31 2012 09:33:25 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.WeatherUnit", "F");
Line Found : user_pref("CT2260173.addressBarTakeOverEnabledInHidden", "true");
Line Found : user_pref("CT2260173.alertChannelId", "657446");
Line Found : user_pref("CT2260173.approveUntrustedApps", true);
Line Found : user_pref("CT2260173.components.1000034", true);
Line Found : user_pref("CT2260173.components.1000082", false);
Line Found : user_pref("CT2260173.components.1000234", true);
Line Found : user_pref("CT2260173.components.128940646976625674", false);
Line Found : user_pref("CT2260173.components.128940658144557031", false);
Line Found : user_pref("CT2260173.components.128940659599556287", false);
Line Found : user_pref("CT2260173.components.128940706522681543", false);
Line Found : user_pref("CT2260173.components.128941655304875645", false);
Line Found : user_pref("CT2260173.components.128941656432219667", false);
Line Found : user_pref("CT2260173.components.128958271477056519", false);
Line Found : user_pref("CT2260173.components.128962387831475966", false);
Line Found : user_pref("CT2260173.components.128993342947475250", false);
Line Found : user_pref("CT2260173.components.129137782531242622", false);
Line Found : user_pref("CT2260173.components.129441809115231739", false);
Line Found : user_pref("CT2260173.components.129623230533828087", false);
Line Found : user_pref("CT2260173.countryCode", "US");
Line Found : user_pref("CT2260173.enableAlerts", "always");
Line Found : user_pref("CT2260173.firstTimeDialogOpened", true);
Line Found : user_pref("CT2260173.fixPageNotFoundErrorByUser", "false");
Line Found : user_pref("CT2260173.fixPageNotFoundErrorInHidden", "true");
Line Found : user_pref("CT2260173.fullUserID", "UN19623762586530746.UP.20450805");
Line Found : user_pref("CT2260173.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2260173.globalFirstTimeInfoLastCheckTime", "Wed Feb 29 2012 07:04:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2260173.initDone", true);
Line Found : user_pref("CT2260173.installType", "DirectDownload");
Line Found : user_pref("CT2260173.isAppTrackingManagerOn", true);
Line Found : user_pref("CT2260173.isCheckedStartAsHidden", true);
Line Found : user_pref("CT2260173.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":false}");
Line Found : user_pref("CT2260173.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT2260173.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT2260173.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Found : user_pref("CT2260173.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT2260173&octid=CT2260173&ISID=ISID_ID&SearchSource=15&CUI=UN19623762586530746&Lay=1[...]
Line Found : user_pref("CT2260173.lastVersion", "10.30.1.502");
Line Found : user_pref("CT2260173.myStuffEnabled", true);
Line Found : user_pref("CT2260173.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2260173.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2260173.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2260173.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2260173.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"\",\"EB_MAIN_FRAME_TITLE\":\"\",\"EB_SEARCH_TERM\":\"\",\"EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://SwagBucks.OurToolbar.com/\",\"EB_TOOLB[...]
Line Found : user_pref("CT2260173.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.oldAppsList", "128848965243869714,128848965243869715,111,128958821111237507,128940706283150316,129441809115231739,128940706522681543,128940651219556906,128941656432219667,12894165[...]
Line Found : user_pref("CT2260173.originalHomepage", "hxxp://awesomestart.com/bleach/");
Line Found : user_pref("CT2260173.originalSearchAddressUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CT2260173.originalSearchEngine", "Google");
Line Found : user_pref("CT2260173.performedDomainChangesMigration", "true");
Line Found : user_pref("CT2260173.revertSettingsEnabled", true);
Line Found : user_pref("CT2260173.search.searchCount", 2);
Line Found : user_pref("CT2260173.searchFromAddressBarEnabledByUser", "false");
Line Found : user_pref("CT2260173.searchInNewTabEnabledByUser", "false");
Line Found : user_pref("CT2260173.searchInNewTabEnabledInHidden", "true");
Line Found : user_pref("CT2260173.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2260173.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2260173.searchSuggestEnabledByUser", "false");
Line Found : user_pref("CT2260173.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2260173\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://SwagBucks.OurToolbar.com//xpi\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Swag Bucks \"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Line Found : user_pref("CT2260173.serviceLayer_services_Configuration_lastUpdate", "1399857994552");
Line Found : user_pref("CT2260173.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1395185907798");
Line Found : user_pref("CT2260173.serviceLayer_services_appsMetadata_lastUpdate", "1395185907990");
Line Found : user_pref("CT2260173.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1395185907920");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.20.101.5_lastUpdate", "1384229303299");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.21.1.507_lastUpdate", "1384489623494");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.22.3.518_lastUpdate", "1385083751936");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.22.5.510_lastUpdate", "1386859695898");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.23.0.822_lastUpdate", "1396352238336");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.29.0.520_lastUpdate", "1399338147593");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.30.1.502_lastUpdate", "1399915921979");
Line Found : user_pref("CT2260173.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1395185907853");
Line Found : user_pref("CT2260173.serviceLayer_services_searchAPI_lastUpdate", "1399857994377");
Line Found : user_pref("CT2260173.serviceLayer_services_serviceMap_lastUpdate", "1399857993375");
Line Found : user_pref("CT2260173.serviceLayer_services_toolbarContextMenu_lastUpdate", "1395185908025");
Line Found : user_pref("CT2260173.serviceLayer_services_toolbarSettings_lastUpdate", "1399915921835");
Line Found : user_pref("CT2260173.serviceLayer_services_translation_lastUpdate", "1399857993453");
Line Found : user_pref("CT2260173.settingsINI", true);
Line Found : user_pref("CT2260173.showToolbarPermission", "false");
Line Found : user_pref("CT2260173.smartbar.CTID", "CT2260173");
Line Found : user_pref("CT2260173.smartbar.Uninstall", "0");
Line Found : user_pref("CT2260173.smartbar.toolbarName", "Swag Bucks ");
Line Found : user_pref("CT2260173.testingCtid", "");
Line Found : user_pref("CT2260173.toolbarAppMetaDataLastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.toolbarBornServerTime", "8-6-2011");
Line Found : user_pref("CT2260173.toolbarContextMenuLastCheckTime", "Wed Feb 29 2012 07:04:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.toolbarCurrentServerTime", "12-5-2014");
Line Found : user_pref("CT2260173.toolbarLoginClientTime", "Mon Nov 11 2013 10:08:20 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.usagesFlag", 2);
Line Found : user_pref("CT2260173_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1399915898439,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Found : user_pref("CT2786678..clientLogIsEnabled", true);
Line Found : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2786678.CTID", "CT2786678");
Line Found : user_pref("CT2786678.CurrentServerDate", "21-2-2011");
Line Found : user_pref("CT2786678.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2786678.DownloadReferralCookieData", "");
Line Found : user_pref("CT2786678.EMailNotifierPollDate", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedLastCount5690698542593514850", 182);
Line Found : user_pref("CT2786678.FeedPollDate129301619375443753", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375443759", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444699", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444705", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444711", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444717", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444723", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444729", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444735", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444741", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444747", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedTTL129301619375444699", 10);
Line Found : user_pref("CT2786678.FeedTTL129301619375444723", 15);
Line Found : user_pref("CT2786678.FeedTTL129301619375444735", 5);
Line Found : user_pref("CT2786678.FeedTTL129301619375444747", 5);
Line Found : user_pref("CT2786678.FirstServerDate", "21-2-2011");
Line Found : user_pref("CT2786678.FirstTime", true);
Line Found : user_pref("CT2786678.FirstTimeFF3", true);
Line Found : user_pref("CT2786678.FixPageNotFoundErrors", false);
Line Found : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2786678.HasUserGlobalKeys", true);
Line Found : user_pref("CT2786678.Initialize", true);
Line Found : user_pref("CT2786678.InitializeCommonPrefs", true);
Line Found : user_pref("CT2786678.InstallationAndCookieDataSentCount", 1);
Line Found : user_pref("CT2786678.InstallationType", "UnknownIntegration");
Line Found : user_pref("CT2786678.InstalledDate", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.IsGrouping", false);
Line Found : user_pref("CT2786678.IsMulticommunity", false);
Line Found : user_pref("CT2786678.IsOpenThankYouPage", true);
Line Found : user_pref("CT2786678.IsOpenUninstallPage", false);
Line Found : user_pref("CT2786678.LanguagePackLastCheckTime", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2786678.LastLogin_3.2.5.2", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.LatestVersion", "3.2.5.2");
Line Found : user_pref("CT2786678.Locale", "en");
Line Found : user_pref("CT2786678.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2786678.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=");
Line Found : user_pref("CT2786678.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2786678.ServiceMapLastCheckTime", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.SettingsLastCheckTime", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.SettingsLastUpdate", "1297859874");
Line Found : user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1246790578");
Line Found : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/EB_ORIGINAL_CTID");
Line Found : user_pref("CT2786678.UserID", "UN41419970543389795");
Line Found : user_pref("CT2786678.WeatherNetwork", "");
Line Found : user_pref("CT2786678.WeatherPollDate", "Mon Feb 21 2011 00:42:12 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.WeatherUnit", "C");
Line Found : user_pref("CT2786678.alertChannelId", "1178763");
Line Found : user_pref("CT2786678.myStuffEnabled", true);
Line Found : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2786678.testingCtid", "");
Line Found : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.usagesFlag", 2);
Line Found : user_pref("CT3072253..clientLogIsEnabled", false);
Line Found : user_pref("CT3072253..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT3072253..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT3072253.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT3072253.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129572937280362976", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129573915102477663", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129749445530228833", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129749445881800338", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129805375651312503", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_1359634299000", true);
Line Found : user_pref("CT3072253.CTID", "CT3072253");
Line Found : user_pref("CT3072253.CurrentServerDate", "3-2-2013");
Line Found : user_pref("CT3072253.DSInstall", true);
Line Found : user_pref("CT3072253.DialogsAlignMode", "LTR");
Line Found : user_pref("CT3072253.DialogsGetterLastCheckTime", "Sat Feb 02 2013 09:07:59 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.DownloadReferralCookieData", "");
Line Found : user_pref("CT3072253.FirstServerDate", "1-5-2012");
Line Found : user_pref("CT3072253.FirstTime", true);
Line Found : user_pref("CT3072253.FirstTimeFF3", true);
Line Found : user_pref("CT3072253.FirstTimeHiddenVer", true);
Line Found : user_pref("CT3072253.FixPageNotFoundErrors", true);
Line Found : user_pref("CT3072253.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT3072253.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT3072253.HPInstall", false);
Line Found : user_pref("CT3072253.HasUserGlobalKeys", true);
Line Found : user_pref("CT3072253.Initialize", true);
Line Found : user_pref("CT3072253.InitializeCommonPrefs", true);
Line Found : user_pref("CT3072253.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT3072253.InstallationType", "Unknown");
Line Found : user_pref("CT3072253.InstalledDate", "Tue May 01 2012 11:06:53 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.IsGrouping", false);
Line Found : user_pref("CT3072253.IsInitSetupIni", true);
Line Found : user_pref("CT3072253.IsMulticommunity", false);
Line Found : user_pref("CT3072253.IsOpenThankYouPage", true);
Line Found : user_pref("CT3072253.IsOpenUninstallPage", true);
Line Found : user_pref("CT3072253.LanguagePackLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT3072253.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT3072253.LastLogin_3.12.2.3", "Tue May 15 2012 13:40:16 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.LastLogin_3.13.0.6", "Tue Jul 17 2012 11:06:29 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.LastLogin_3.14.1.0", "Wed Aug 29 2012 01:53:21 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.LastLogin_3.15.1.0", "Sun Feb 03 2013 08:37:24 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.LatestVersion", "3.16.0.3");
Line Found : user_pref("CT3072253.Locale", "en");
Line Found : user_pref("CT3072253.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT3072253.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT3072253.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT3072253.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT3072253.OriginalFirstVersion", "3.12.2.3");
Line Found : user_pref("CT3072253.SearchCaption", "uTorrentControl2 Customized Web Search");
Line Found : user_pref("CT3072253.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT3072253.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=");
Line Found : user_pref("CT3072253.SearchInNewTabEnabled", true);
Line Found : user_pref("CT3072253.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT3072253.SearchInNewTabLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT3072253.SearchInNewTabUserEnabled", false);
Line Found : user_pref("CT3072253.SearchProtectorToolbarDisabled", true);
Line Found : user_pref("CT3072253.SendProtectorDataViaLogin", true);
Line Found : user_pref("CT3072253.ServiceMapLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.SettingsLastCheckTime", "Sun Feb 03 2013 08:37:19 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.SettingsLastUpdate", "1359900701");
Line Found : user_pref("CT3072253.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072253&SearchSource=13");
Line Found : user_pref("CT3072253.ToolbarDisabled", true);
Line Found : user_pref("CT3072253.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT3072253.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072253");
Line Found : user_pref("CT3072253.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT3072253.UserID", "UN49387137642518586");
Line Found : user_pref("CT3072253.alertChannelId", "1463702");
Line Found : user_pref("CT3072253.autoDisableScopes", -1);
Line Found : user_pref("CT3072253.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT3072253.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT3072253.initDone", true);
Line Found : user_pref("CT3072253.myStuffEnabled", true);
Line Found : user_pref("CT3072253.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT3072253.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT3072253.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT3072253.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT3072253.navigateToUrlOnSearch", false);
Line Found : user_pref("CT3072253.revertSettingsEnabled", false);
Line Found : user_pref("CT3072253.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT3072253.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT3072253.testingCtid", "");
Line Found : user_pref("CT3072253.toolbarAppMetaDataLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.usagesFlag", 2);
Line Found : user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2260173");
Line Found : user_pref("CommunityToolbar.ConduitSearchList", "uTorrentControl2 Customized Web Search,uTorrentControl2 Customized Web Search,uTorrentControl2 Customized Web Search,uTorrentControl2 Customized Web Se[...]
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2260173/CT2260173", "\"1fbde7d03a712d210c3bce51cf99cffe3\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072253/CT3072253", "\"fe61912fbcb3af0d91696624157c46fc3\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1178763/1174448/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463702/1459356/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/657446/653307/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2260173", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2786678", "\"1285982114\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072253", "\"1336063965\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "0uSPYx+Kl2jpu8sJZMeHjw==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "ktZKgREPsk5m13TY9rsX+A==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "cTVrc75U9YwdI74PAhUYFw==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"0ea11bd291bce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"6a637346d78ccc1:1254\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.5.1", "\"07b2625f8cb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:144a\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:14f1\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"23c5489aa686ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"f414eeaa6bece1:16f8\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3.5.1", "\"07b2625f8cb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.0.10", "\"0ee90707f77cc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.0.6", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.0.8", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.1.0", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.9.0.3", "\"801a319dd78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2260173", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072253", "\"0697a2066791d3f9dfa6c976583f2c5c\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"634333631231730000\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/17/2011 12:59:49 PM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/2011 11:17:11 AM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2260173&octid=CT2260173", "\"1322481066\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2260173/CT2260173", "\"1312887586\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2786678/CT2786678", "\"1297859874\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"c26424af66029dc98cedc3b4514499d7\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"6d6e7780368a6882a638d6dae05b7497\"");
Line Found : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Line Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.EngineOwnerGuid", "[email protected]");
Line Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.IsEngineShown", false);
Line Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Sy\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\bvay5nu4.default\\conduitCommon\\modules\\3.19.0.3");
Line Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.19.0.3");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "[email protected]");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2786678,CT2260173,ConduitEngine,CT3072253");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678,CT2260173,CT3072253");
Line Found : user_pref("CommunityToolbar.ToolbarsList4", "CT3072253");
Line Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Wed Jun 08 2011 15:26:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CommunityToolbar.alert.alertEnabled", true);
Line Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Dec 13 2011 16:38:52 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.locale", "en");
Line Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Dec 13 2011 16:38:44 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Line Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.alert.userId", "f1319170-4bc7-4bee-b372-72be9e8b2f0e");
Line Found : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Wed Jun 08 2011 15:26:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CommunityToolbar.globalUserId", "9caf63f7-21cc-4548-9bda-64c3459bfbd6");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3072253");
Line Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sun Jul 28 2013 11:43:20 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.notifications.alertEnabled", true);
Line Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sun Jul 28 2013 17:40:51 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.locale", "en");
Line Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sun Jul 28 2013 17:40:43 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Line Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.notifications.userId", "e44e418f-da18-4ed9-b1ea-a616247635ff");
Line Found : user_pref("CommunityToolbar.originalHomepage", "hxxp://awesomestart.com/bleach/");
Line Found : user_pref("CommunityToolbar.originalSearchEngine", "Google");
Line Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Tue Dec 13 2011 16:39:02 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Dec 12 2011 07:12:32 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.FirstServerDate", "10/01/2011 00");
Line Found : user_pref("ConduitEngine.FirstTime", true);
Line Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Found : user_pref("ConduitEngine.Initialize", true);
Line Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Found : user_pref("ConduitEngine.InstalledDate", "Fri Sep 30 2011 15:59:59 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("ConduitEngine.IsMulticommunity", false);
Line Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Found : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.UserID", "UN02968007626946789");
Line Found : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Found : user_pref("ConduitEngine.engineLocale", "en-US");
Line Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.initDone", true);
Line Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Found : user_pref("ConduitEngine.usagesFlag", 2);
Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("Smartbar.keywordURLSelectedCTID", "CT3072253");
Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("browser.search.defaultengine", "Ask.com");
Line Found : user_pref("browser.search.defaultthis.engineName", "uTorrentControl2 Customized Web Search");
Line Found : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=3&q={searchTerms}");
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("extensions.crossrider.bic", "145858cabc28e02614ef6a66965f7cfd");
Line Found : user_pref("extensions.delta.admin", false);
Line Found : user_pref("extensions.delta.aflt", "babsst");
Line Found : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Line Found : user_pref("extensions.delta.autoRvrt", "false");
Line Found : user_pref("extensions.delta.dfltLng", "en");
Line Found : user_pref("extensions.delta.excTlbr", false);
Line Found : user_pref("extensions.delta.ffxUnstlRst", true);
Line Found : user_pref("extensions.delta.id", "50e8eace00000000000000262d2f5f39");
Line Found : user_pref("extensions.delta.instlDay", "15967");
Line Found : user_pref("extensions.delta.instlRef", "sst");
Line Found : user_pref("extensions.delta.newTab", false);
Line Found : user_pref("extensions.delta.prdct", "delta");
Line Found : user_pref("extensions.delta.prtnrId", "delta");
Line Found : user_pref("extensions.delta.rvrt", "false");
Line Found : user_pref("extensions.delta.smplGrp", "none");
Line Found : user_pref("extensions.delta.tlbrId", "base");
Line Found : user_pref("extensions.delta.tlbrSrchUrl", "");
Line Found : user_pref("extensions.delta.vrsn", "1.8.24.6");
Line Found : user_pref("extensions.delta.vrsnTs", "1.8.24.618:05:32");
Line Found : user_pref("extensions.delta.vrsni", "1.8.24.6");
Line Found : user_pref("extensions.delta_i.babExt", "");
Line Found : user_pref("extensions.delta_i.babTrack", "affID=119351&tsp=5010");
Line Found : user_pref("extensions.delta_i.srcExt", "ss");
Line Found : user_pref("extensions.enabledItems", "[email protected]:1.1.2,{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}:3.10.7.2,{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}:4.3.3,{469CEB59-8266-438b-91D9-82F56D5[...]
Line Found : user_pref("extentions.y2layers.installId", "813c3289-ef8c-46cd-b796-f75a334d70c7");
Line Found : user_pref("plugin.state.npconduitfirefoxplugin", 2);
Line Found : user_pref("quickstores.toolbar.affid", "2017");
Line Found : user_pref("quickstores.toolbar.guid", "{49586E3B-C488-1EC2-9ABE-3E164314B646}");
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2260173&q=");
Line Found : user_pref("smartbar.machineId", "56DO80RSF+B9WAGQUWFLNA76UL+MVDYC8PWZOVG4M+1ZXOFQFELIKL6+VDUJXR6FWGT2J0SDULKPRGFWOURXNQ");
Line Found : user_pref("smartbar.searchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2260173&q=");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");
Line Found : user_pref("valueApps.CT2260173.mam_gk_currentVersion", "312E31332E302E3137");
Line Found : user_pref("valueApps.CT2260173.mam_gk_currentVersion.storedInFile", false);
Line Found : user_pref("valueApps.CT2260173.mam_gk_globalKeysMigratedToLocalStorage", "31");
Line Found : user_pref("valueApps.CT2260173.mam_gk_globalKeysMigratedToLocalStorage.storedInFile", false);
Line Found : user_pref("valueApps.CT2260173.mam_gk_migrated_from_ls", "31");
Line Found : user_pref("valueApps.CT2260173.mam_gk_migrated_from_ls.storedInFile", false);
Line Found : user_pref("valueApps.CT2260173.mam_gk_userBornDate", "4E2F41");
Line Found : user_pref("valueApps.CT2260173.mam_gk_userBornDate.storedInFile", false);

-\\ Google Chrome v34.0.1847.131

[ File : C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof

*************************

AdwCleaner[R0].txt - [69214 octets] - [12/05/2014 13:38:37]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [69275 octets] ##########
 

 

2nd

# AdwCleaner v3.208 - Report created 12/05/2014 at 14:21:05
# Updated 11/05/2014 by Xplode
# Operating System : Windows 7 Home Premium  (64 bits)
# Username : Sy - HITACHI
# Running from : C:\Users\Sy\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\Sy\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Extensions\[email protected]
Folder Found : C:\Program Files (x86)\driver-soft
Folder Found : C:\Program Files (x86)\FreeRIP Toolbar
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\ProgramData\VisualBee
Folder Found : C:\Users\Sy\AppData\Local\eSupport.com
Folder Found : C:\Users\Sy\AppData\Roaming\1H1Q
Folder Found : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Extensions\[email protected]
Folder Found : C:\Users\Sy\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Sy\AppData\Roaming\QuickStoresToolbar
Folder Found : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{20E1481B-E285-4ABC-ADC7-AE24842B81CD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CD4D7B0F-45C6-4bb2-A1E7-54D1754E7FC5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0194532A-A99C-4337-937E-2A452C8957BE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0194532A-A99C-4337-937E-2A452C8957BE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{687578B9-7132-4A7A-80E4-30EE31099E03}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E634228A-03CF-4BC8-B0AB-668257F1FD8C}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{E634228A-03CF-4BC8-B0AB-668257F1FD8C}]

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16869


-\\ Mozilla Firefox v13.0.1 (en-US)

[ File : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\prefs.js ]

Line Found : user_pref("CT2260173..clientLogIsEnabled", false);
Line Found : user_pref("CT2260173..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2260173..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2260173.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2260173.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2260173.AppTrackingLastCheckTime", "Sun Jul 21 2013 16:45:28 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CT2260173.CT2260173", "CT2260173");
Line Found : user_pref("CT2260173.CT2260173.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2260173&octid=CT2260173&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_[...]
Line Found : user_pref("CT2260173.CommunitiesChangesLastCheckTime", "0");
Line Found : user_pref("CT2260173.ConfigurationLastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.CurrentServerDate", "11-11-2013");
Line Found : user_pref("CT2260173.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2260173.DialogsGetterLastCheckTime", "Sat Nov 09 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.DownloadReferralCookieData", "{\"BannerName\":\"\",\"BannerTypeId\":\"\",\"BannerCulture\":\"\",\"DownloadTime\":\"6/8/2011 11:25:58 PM\",\"SourceId\":0,\"OriginSource\":0,\"Refer[...]
Line Found : user_pref("CT2260173.EMailNotifierCheckInterval", "1");
Line Found : user_pref("CT2260173.EMailNotifierLabelLength", 6);
Line Found : user_pref("CT2260173.EMailNotifierPollDate", "Fri Aug 31 2012 09:34:23 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.EMailNotifierSound", "NONE");
Line Found : user_pref("CT2260173.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.FeedLastCount128940659599556287", 0);
Line Found : user_pref("CT2260173.FeedPollDate128940659196275477", "Wed Jun 08 2011 16:37:26 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.FeedPollDate128940659574712536", "Wed Jun 08 2011 15:27:18 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.FeedTTL128940659574712536", 40);
Line Found : user_pref("CT2260173.FirstServerDate", "8-6-2011");
Line Found : user_pref("CT2260173.FirstTime", true);
Line Found : user_pref("CT2260173.FirstTimeFF3", true);
Line Found : user_pref("CT2260173.FixPageNotFoundErrors", false);
Line Found : user_pref("CT2260173.GroupingInvalidateCache", false);
Line Found : user_pref("CT2260173.GroupingLastCheckTime", "0");
Line Found : user_pref("CT2260173.GroupingLastServerUpdateTime", "0");
Line Found : user_pref("CT2260173.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2260173.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2260173.HasUserGlobalKeys", true);
Line Found : user_pref("CT2260173.HomePageProtectorEnabled", false);
Line Found : user_pref("CT2260173.Initialize", true);
Line Found : user_pref("CT2260173.InitializeCommonPrefs", true);
Line Found : user_pref("CT2260173.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2260173.InstalledDate", "Wed Jun 08 2011 15:26:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.InvalidateCache", false);
Line Found : user_pref("CT2260173.IsAlertDBUpdated", true);
Line Found : user_pref("CT2260173.IsGrouping", false);
Line Found : user_pref("CT2260173.IsMulticommunity", false);
Line Found : user_pref("CT2260173.IsOpenThankYouPage", true);
Line Found : user_pref("CT2260173.IsOpenUninstallPage", true);
Line Found : user_pref("CT2260173.LanguagePackLastCheckTime", "Sun Nov 10 2013 09:15:53 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2260173.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2260173.LastLogin_3.12.0.7", "Mon Apr 30 2012 22:53:21 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.12.2.3", "Tue May 15 2012 13:40:16 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.13.0.6", "Sun Jul 15 2012 00:17:27 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.14.1.0", "Mon Aug 20 2012 21:17:51 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.15.1.0", "Tue Mar 05 2013 02:33:21 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.18.0.7", "Sun Jul 14 2013 19:27:04 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.19.0.3", "Tue Sep 10 2013 21:51:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.20.0.4", "Sun Nov 10 2013 22:35:32 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.3.5.1", "Sun Aug 21 2011 15:39:15 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.6.0.10", "Fri Sep 30 2011 11:13:56 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.LastLogin_3.7.0.6", "Tue Nov 15 2011 12:35:06 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.8.0.8", "Mon Dec 05 2011 07:20:18 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.8.1.0", "Fri Dec 30 2011 18:54:44 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LastLogin_3.9.0.3", "Wed Feb 29 2012 23:04:31 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT2260173.Locale", "en");
Line Found : user_pref("CT2260173.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2260173.MCDetectTooltipShow", false);
Line Found : user_pref("CT2260173.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2260173.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2260173.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2260173.RadioIsPodcast", false);
Line Found : user_pref("CT2260173.RadioLastCheckTime", "0");
Line Found : user_pref("CT2260173.RadioLastUpdateIPServer", "0");
Line Found : user_pref("CT2260173.RadioLastUpdateServer", "0");
Line Found : user_pref("CT2260173.RadioMediaID", "10034");
Line Found : user_pref("CT2260173.RadioMediaType", "Media Player");
Line Found : user_pref("CT2260173.RadioMenuSelectedID", "EBRadioMenu_CT226017310034");
Line Found : user_pref("CT2260173.RadioStationName", "KCIS");
Line Found : user_pref("CT2260173.RadioStationURL", "hxxp://crista.streamguys.com/kcis");
Line Found : user_pref("CT2260173.RestartDialogFirstTime", "false");
Line Found : user_pref("CT2260173.SHRINK_TOOLBAR", 1);
Line Found : user_pref("CT2260173.SearchAPILastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.SearchBoxWidth", 150);
Line Found : user_pref("CT2260173.SearchEngine", "Web%20Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2260173&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Found : user_pref("CT2260173.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CT2260173.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2260173.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2260173&q=");
Line Found : user_pref("CT2260173.SearchInNewTabEnabled", false);
Line Found : user_pref("CT2260173.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2260173.SearchInNewTabLastCheckTime", "Tue Sep 10 2013 07:07:10 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT2260173.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2260173&octid=CT2260173&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Found : user_pref("CT2260173.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2260173.SearchInNewTabUserEnabled", false);
Line Found : user_pref("CT2260173.SearchProtectorEnabled", false);
Line Found : user_pref("CT2260173.SearchProtectorToolbarDisabled", false);
Line Found : user_pref("CT2260173.ServiceMapLastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.SettingsLastCheckTime", "Sun Nov 10 2013 22:13:25 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.SettingsLastUpdate", "1384053033");
Line Found : user_pref("CT2260173.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2260173.ThirdPartyComponentsLastCheck", "Wed Feb 29 2012 07:04:30 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.ThirdPartyComponentsLastUpdate", "1312887586");
Line Found : user_pref("CT2260173.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2260173.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2260173.UserID", "UN19623762586530746");
Line Found : user_pref("CT2260173.ValidationData_Search", 2);
Line Found : user_pref("CT2260173.ValidationData_Toolbar", 2);
Line Found : user_pref("CT2260173.WeatherNetwork", "");
Line Found : user_pref("CT2260173.WeatherPollDate", "Fri Aug 31 2012 09:33:25 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT2260173.WeatherUnit", "F");
Line Found : user_pref("CT2260173.addressBarTakeOverEnabledInHidden", "true");
Line Found : user_pref("CT2260173.alertChannelId", "657446");
Line Found : user_pref("CT2260173.approveUntrustedApps", true);
Line Found : user_pref("CT2260173.components.1000034", true);
Line Found : user_pref("CT2260173.components.1000082", false);
Line Found : user_pref("CT2260173.components.1000234", true);
Line Found : user_pref("CT2260173.components.128940646976625674", false);
Line Found : user_pref("CT2260173.components.128940658144557031", false);
Line Found : user_pref("CT2260173.components.128940659599556287", false);
Line Found : user_pref("CT2260173.components.128940706522681543", false);
Line Found : user_pref("CT2260173.components.128941655304875645", false);
Line Found : user_pref("CT2260173.components.128941656432219667", false);
Line Found : user_pref("CT2260173.components.128958271477056519", false);
Line Found : user_pref("CT2260173.components.128962387831475966", false);
Line Found : user_pref("CT2260173.components.128993342947475250", false);
Line Found : user_pref("CT2260173.components.129137782531242622", false);
Line Found : user_pref("CT2260173.components.129441809115231739", false);
Line Found : user_pref("CT2260173.components.129623230533828087", false);
Line Found : user_pref("CT2260173.countryCode", "US");
Line Found : user_pref("CT2260173.enableAlerts", "always");
Line Found : user_pref("CT2260173.firstTimeDialogOpened", true);
Line Found : user_pref("CT2260173.fixPageNotFoundErrorByUser", "false");
Line Found : user_pref("CT2260173.fixPageNotFoundErrorInHidden", "true");
Line Found : user_pref("CT2260173.fullUserID", "UN19623762586530746.UP.20450805");
Line Found : user_pref("CT2260173.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2260173.globalFirstTimeInfoLastCheckTime", "Wed Feb 29 2012 07:04:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2260173.initDone", true);
Line Found : user_pref("CT2260173.installType", "DirectDownload");
Line Found : user_pref("CT2260173.isAppTrackingManagerOn", true);
Line Found : user_pref("CT2260173.isCheckedStartAsHidden", true);
Line Found : user_pref("CT2260173.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":false}");
Line Found : user_pref("CT2260173.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT2260173.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT2260173.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Found : user_pref("CT2260173.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT2260173&octid=CT2260173&ISID=ISID_ID&SearchSource=15&CUI=UN19623762586530746&Lay=1[...]
Line Found : user_pref("CT2260173.lastVersion", "10.30.1.502");
Line Found : user_pref("CT2260173.myStuffEnabled", true);
Line Found : user_pref("CT2260173.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2260173.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2260173.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2260173.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2260173.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxps%3A%2F%2Fwww.fanfiction.net%2Fs%2F9300512%2F5%2FNow-what-should-I-do-with-you\",\"EB_MAIN_FRAME_TITLE\":\"Now%20what%20shoul[...]
Line Found : user_pref("CT2260173.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.oldAppsList", "128848965243869714,128848965243869715,111,128958821111237507,128940706283150316,129441809115231739,128940706522681543,128940651219556906,128941656432219667,12894165[...]
Line Found : user_pref("CT2260173.originalHomepage", "hxxp://awesomestart.com/bleach/");
Line Found : user_pref("CT2260173.originalSearchAddressUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CT2260173.originalSearchEngine", "Google");
Line Found : user_pref("CT2260173.performedDomainChangesMigration", "true");
Line Found : user_pref("CT2260173.revertSettingsEnabled", true);
Line Found : user_pref("CT2260173.search.searchCount", 2);
Line Found : user_pref("CT2260173.searchFromAddressBarEnabledByUser", "false");
Line Found : user_pref("CT2260173.searchInNewTabEnabledByUser", "false");
Line Found : user_pref("CT2260173.searchInNewTabEnabledInHidden", "true");
Line Found : user_pref("CT2260173.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2260173.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2260173.searchSuggestEnabledByUser", "false");
Line Found : user_pref("CT2260173.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2260173\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://SwagBucks.OurToolbar.com//xpi\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Swag Bucks \"}");
Line Found : user_pref("CT2260173.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2260173.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Line Found : user_pref("CT2260173.serviceLayer_services_Configuration_lastUpdate", "1399857994552");
Line Found : user_pref("CT2260173.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1395185907798");
Line Found : user_pref("CT2260173.serviceLayer_services_appsMetadata_lastUpdate", "1395185907990");
Line Found : user_pref("CT2260173.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1395185907920");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.20.101.5_lastUpdate", "1384229303299");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.21.1.507_lastUpdate", "1384489623494");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.22.3.518_lastUpdate", "1385083751936");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.22.5.510_lastUpdate", "1386859695898");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.23.0.822_lastUpdate", "1396352238336");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.29.0.520_lastUpdate", "1399338147593");
Line Found : user_pref("CT2260173.serviceLayer_services_login_10.30.1.502_lastUpdate", "1399915921979");
Line Found : user_pref("CT2260173.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1395185907853");
Line Found : user_pref("CT2260173.serviceLayer_services_searchAPI_lastUpdate", "1399857994377");
Line Found : user_pref("CT2260173.serviceLayer_services_serviceMap_lastUpdate", "1399857993375");
Line Found : user_pref("CT2260173.serviceLayer_services_toolbarContextMenu_lastUpdate", "1395185908025");
Line Found : user_pref("CT2260173.serviceLayer_services_toolbarSettings_lastUpdate", "1399915921835");
Line Found : user_pref("CT2260173.serviceLayer_services_translation_lastUpdate", "1399857993453");
Line Found : user_pref("CT2260173.settingsINI", true);
Line Found : user_pref("CT2260173.showToolbarPermission", "false");
Line Found : user_pref("CT2260173.smartbar.CTID", "CT2260173");
Line Found : user_pref("CT2260173.smartbar.Uninstall", "0");
Line Found : user_pref("CT2260173.smartbar.toolbarName", "Swag Bucks ");
Line Found : user_pref("CT2260173.testingCtid", "");
Line Found : user_pref("CT2260173.toolbarAppMetaDataLastCheckTime", "Sun Nov 10 2013 09:15:54 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.toolbarBornServerTime", "8-6-2011");
Line Found : user_pref("CT2260173.toolbarContextMenuLastCheckTime", "Wed Feb 29 2012 07:04:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.toolbarCurrentServerTime", "12-5-2014");
Line Found : user_pref("CT2260173.toolbarLoginClientTime", "Mon Nov 11 2013 10:08:20 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT2260173.usagesFlag", 2);
Line Found : user_pref("CT2260173_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1399915898439,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Found : user_pref("CT2786678..clientLogIsEnabled", true);
Line Found : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2786678.CTID", "CT2786678");
Line Found : user_pref("CT2786678.CurrentServerDate", "21-2-2011");
Line Found : user_pref("CT2786678.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2786678.DownloadReferralCookieData", "");
Line Found : user_pref("CT2786678.EMailNotifierPollDate", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedLastCount5690698542593514850", 182);
Line Found : user_pref("CT2786678.FeedPollDate129301619375443753", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375443759", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444699", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444705", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444711", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444717", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444723", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444729", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444735", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444741", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedPollDate129301619375444747", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.FeedTTL129301619375444699", 10);
Line Found : user_pref("CT2786678.FeedTTL129301619375444723", 15);
Line Found : user_pref("CT2786678.FeedTTL129301619375444735", 5);
Line Found : user_pref("CT2786678.FeedTTL129301619375444747", 5);
Line Found : user_pref("CT2786678.FirstServerDate", "21-2-2011");
Line Found : user_pref("CT2786678.FirstTime", true);
Line Found : user_pref("CT2786678.FirstTimeFF3", true);
Line Found : user_pref("CT2786678.FixPageNotFoundErrors", false);
Line Found : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2786678.HasUserGlobalKeys", true);
Line Found : user_pref("CT2786678.Initialize", true);
Line Found : user_pref("CT2786678.InitializeCommonPrefs", true);
Line Found : user_pref("CT2786678.InstallationAndCookieDataSentCount", 1);
Line Found : user_pref("CT2786678.InstallationType", "UnknownIntegration");
Line Found : user_pref("CT2786678.InstalledDate", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.IsGrouping", false);
Line Found : user_pref("CT2786678.IsMulticommunity", false);
Line Found : user_pref("CT2786678.IsOpenThankYouPage", true);
Line Found : user_pref("CT2786678.IsOpenUninstallPage", false);
Line Found : user_pref("CT2786678.LanguagePackLastCheckTime", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2786678.LastLogin_3.2.5.2", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.LatestVersion", "3.2.5.2");
Line Found : user_pref("CT2786678.Locale", "en");
Line Found : user_pref("CT2786678.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2786678.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=");
Line Found : user_pref("CT2786678.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2786678.ServiceMapLastCheckTime", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.SettingsLastCheckTime", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.SettingsLastUpdate", "1297859874");
Line Found : user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Mon Feb 21 2011 00:42:09 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1246790578");
Line Found : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/EB_ORIGINAL_CTID");
Line Found : user_pref("CT2786678.UserID", "UN41419970543389795");
Line Found : user_pref("CT2786678.WeatherNetwork", "");
Line Found : user_pref("CT2786678.WeatherPollDate", "Mon Feb 21 2011 00:42:12 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.WeatherUnit", "C");
Line Found : user_pref("CT2786678.alertChannelId", "1178763");
Line Found : user_pref("CT2786678.myStuffEnabled", true);
Line Found : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2786678.testingCtid", "");
Line Found : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Mon Feb 21 2011 00:42:10 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Mon Feb 21 2011 00:42:11 GMT-0800 (Pacific Standard Time)");
Line Found : user_pref("CT2786678.usagesFlag", 2);
Line Found : user_pref("CT3072253..clientLogIsEnabled", false);
Line Found : user_pref("CT3072253..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT3072253..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT3072253.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT3072253.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129572937280362976", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129573915102477663", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129749445530228833", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129749445881800338", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_129805375651312503", true);
Line Found : user_pref("CT3072253.BrowserCompStateIsOpen_1359634299000", true);
Line Found : user_pref("CT3072253.CTID", "CT3072253");
Line Found : user_pref("CT3072253.CurrentServerDate", "3-2-2013");
Line Found : user_pref("CT3072253.DSInstall", true);
Line Found : user_pref("CT3072253.DialogsAlignMode", "LTR");
Line Found : user_pref("CT3072253.DialogsGetterLastCheckTime", "Sat Feb 02 2013 09:07:59 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.DownloadReferralCookieData", "");
Line Found : user_pref("CT3072253.FirstServerDate", "1-5-2012");
Line Found : user_pref("CT3072253.FirstTime", true);
Line Found : user_pref("CT3072253.FirstTimeFF3", true);
Line Found : user_pref("CT3072253.FirstTimeHiddenVer", true);
Line Found : user_pref("CT3072253.FixPageNotFoundErrors", true);
Line Found : user_pref("CT3072253.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT3072253.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT3072253.HPInstall", false);
Line Found : user_pref("CT3072253.HasUserGlobalKeys", true);
Line Found : user_pref("CT3072253.Initialize", true);
Line Found : user_pref("CT3072253.InitializeCommonPrefs", true);
Line Found : user_pref("CT3072253.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT3072253.InstallationType", "Unknown");
Line Found : user_pref("CT3072253.InstalledDate", "Tue May 01 2012 11:06:53 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.IsGrouping", false);
Line Found : user_pref("CT3072253.IsInitSetupIni", true);
Line Found : user_pref("CT3072253.IsMulticommunity", false);
Line Found : user_pref("CT3072253.IsOpenThankYouPage", true);
Line Found : user_pref("CT3072253.IsOpenUninstallPage", true);
Line Found : user_pref("CT3072253.LanguagePackLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT3072253.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT3072253.LastLogin_3.12.2.3", "Tue May 15 2012 13:40:16 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.LastLogin_3.13.0.6", "Tue Jul 17 2012 11:06:29 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.LastLogin_3.14.1.0", "Wed Aug 29 2012 01:53:21 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CT3072253.LastLogin_3.15.1.0", "Sun Feb 03 2013 08:37:24 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.LatestVersion", "3.16.0.3");
Line Found : user_pref("CT3072253.Locale", "en");
Line Found : user_pref("CT3072253.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT3072253.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT3072253.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT3072253.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT3072253.OriginalFirstVersion", "3.12.2.3");
Line Found : user_pref("CT3072253.SearchCaption", "uTorrentControl2 Customized Web Search");
Line Found : user_pref("CT3072253.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT3072253.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=");
Line Found : user_pref("CT3072253.SearchInNewTabEnabled", true);
Line Found : user_pref("CT3072253.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT3072253.SearchInNewTabLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT3072253.SearchInNewTabUserEnabled", false);
Line Found : user_pref("CT3072253.SearchProtectorToolbarDisabled", true);
Line Found : user_pref("CT3072253.SendProtectorDataViaLogin", true);
Line Found : user_pref("CT3072253.ServiceMapLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.SettingsLastCheckTime", "Sun Feb 03 2013 08:37:19 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.SettingsLastUpdate", "1359900701");
Line Found : user_pref("CT3072253.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072253&SearchSource=13");
Line Found : user_pref("CT3072253.ToolbarDisabled", true);
Line Found : user_pref("CT3072253.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT3072253.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072253");
Line Found : user_pref("CT3072253.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT3072253.UserID", "UN49387137642518586");
Line Found : user_pref("CT3072253.alertChannelId", "1463702");
Line Found : user_pref("CT3072253.autoDisableScopes", -1);
Line Found : user_pref("CT3072253.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT3072253.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT3072253.initDone", true);
Line Found : user_pref("CT3072253.myStuffEnabled", true);
Line Found : user_pref("CT3072253.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT3072253.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT3072253.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT3072253.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT3072253.navigateToUrlOnSearch", false);
Line Found : user_pref("CT3072253.revertSettingsEnabled", false);
Line Found : user_pref("CT3072253.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT3072253.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT3072253.testingCtid", "");
Line Found : user_pref("CT3072253.toolbarAppMetaDataLastCheckTime", "Sun Feb 03 2013 09:14:33 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CT3072253.usagesFlag", 2);
Line Found : user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2260173");
Line Found : user_pref("CommunityToolbar.ConduitSearchList", "uTorrentControl2 Customized Web Search,uTorrentControl2 Customized Web Search,uTorrentControl2 Customized Web Search,uTorrentControl2 Customized Web Se[...]
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2260173/CT2260173", "\"1fbde7d03a712d210c3bce51cf99cffe3\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072253/CT3072253", "\"fe61912fbcb3af0d91696624157c46fc3\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1178763/1174448/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463702/1459356/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/657446/653307/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2260173", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2786678", "\"1285982114\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072253", "\"1336063965\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "0uSPYx+Kl2jpu8sJZMeHjw==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "ktZKgREPsk5m13TY9rsX+A==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "cTVrc75U9YwdI74PAhUYFw==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"0ea11bd291bce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"6a637346d78ccc1:1254\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.5.1", "\"07b2625f8cb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:144a\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:14f1\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"23c5489aa686ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"f414eeaa6bece1:16f8\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3.5.1", "\"07b2625f8cb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.0.10", "\"0ee90707f77cc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.0.6", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.0.8", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.1.0", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.9.0.3", "\"801a319dd78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2260173", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072253", "\"0697a2066791d3f9dfa6c976583f2c5c\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"634333631231730000\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/17/2011 12:59:49 PM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/2011 11:17:11 AM", "634356118310000000");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2260173&octid=CT2260173", "\"1322481066\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2260173/CT2260173", "\"1312887586\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2786678/CT2786678", "\"1297859874\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"c26424af66029dc98cedc3b4514499d7\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"6d6e7780368a6882a638d6dae05b7497\"");
Line Found : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Line Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.EngineOwnerGuid", "[email protected]");
Line Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.IsEngineShown", false);
Line Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Sy\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\bvay5nu4.default\\conduitCommon\\modules\\3.19.0.3");
Line Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.19.0.3");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "[email protected]");
Line Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Line Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2786678,CT2260173,ConduitEngine,CT3072253");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678,CT2260173,CT3072253");
Line Found : user_pref("CommunityToolbar.ToolbarsList4", "CT3072253");
Line Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Wed Jun 08 2011 15:26:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CommunityToolbar.alert.alertEnabled", true);
Line Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Dec 13 2011 16:38:52 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.locale", "en");
Line Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Dec 13 2011 16:38:44 GMT-0600 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
Line Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.alert.userId", "f1319170-4bc7-4bee-b372-72be9e8b2f0e");
Line Found : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Wed Jun 08 2011 15:26:50 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("CommunityToolbar.globalUserId", "9caf63f7-21cc-4548-9bda-64c3459bfbd6");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3072253");
Line Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sun Jul 28 2013 11:43:20 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.notifications.alertEnabled", true);
Line Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sun Jul 28 2013 17:40:51 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.locale", "en");
Line Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sun Jul 28 2013 17:40:43 GMT-0500 (Central Standard Time)");
Line Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Line Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.notifications.userId", "e44e418f-da18-4ed9-b1ea-a616247635ff");
Line Found : user_pref("CommunityToolbar.originalHomepage", "hxxp://awesomestart.com/bleach/");
Line Found : user_pref("CommunityToolbar.originalSearchEngine", "Google");
Line Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Tue Dec 13 2011 16:39:02 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Line Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Dec 12 2011 07:12:32 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.FirstServerDate", "10/01/2011 00");
Line Found : user_pref("ConduitEngine.FirstTime", true);
Line Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Line Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line Found : user_pref("ConduitEngine.Initialize", true);
Line Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line Found : user_pref("ConduitEngine.InstalledDate", "Fri Sep 30 2011 15:59:59 GMT-0500 (Central Daylight Time)");
Line Found : user_pref("ConduitEngine.IsMulticommunity", false);
Line Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line Found : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Line Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.UserID", "UN02968007626946789");
Line Found : user_pref("ConduitEngine.componentAlertEnabled", false);
Line Found : user_pref("ConduitEngine.engineLocale", "en-US");
Line Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Tue Dec 13 2011 16:39:12 GMT-0600 (Central Standard Time)");
Line Found : user_pref("ConduitEngine.initDone", true);
Line Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line Found : user_pref("ConduitEngine.usagesFlag", 2);
Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Found : user_pref("Smartbar.keywordURLSelectedCTID", "CT3072253");
Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("browser.search.defaultengine", "Ask.com");
Line Found : user_pref("browser.search.defaultthis.engineName", "uTorrentControl2 Customized Web Search");
Line Found : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=3&q={searchTerms}");
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("extensions.crossrider.bic", "145858cabc28e02614ef6a66965f7cfd");
Line Found : user_pref("extensions.delta.admin", false);
Line Found : user_pref("extensions.delta.aflt", "babsst");
Line Found : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Line Found : user_pref("extensions.delta.autoRvrt", "false");
Line Found : user_pref("extensions.delta.dfltLng", "en");
Line Found : user_pref("extensions.delta.excTlbr", false);
Line Found : user_pref("extensions.delta.ffxUnstlRst", true);
Line Found : user_pref("extensions.delta.id", "50e8eace00000000000000262d2f5f39");
Line Found : user_pref("extensions.delta.instlDay", "15967");
Line Found : user_pref("extensions.delta.instlRef", "sst");
Line Found : user_pref("extensions.delta.newTab", false);
Line Found : user_pref("extensions.delta.prdct", "delta");
Line Found : user_pref("extensions.delta.prtnrId", "delta");
Line Found : user_pref("extensions.delta.rvrt", "false");
Line Found : user_pref("extensions.delta.smplGrp", "none");
Line Found : user_pref("extensions.delta.tlbrId", "base");
Line Found : user_pref("extensions.delta.tlbrSrchUrl", "");
Line Found : user_pref("extensions.delta.vrsn", "1.8.24.6");
Line Found : user_pref("extensions.delta.vrsnTs", "1.8.24.618:05:32");
Line Found : user_pref("extensions.delta.vrsni", "1.8.24.6");
Line Found : user_pref("extensions.delta_i.babExt", "");
Line Found : user_pref("extensions.delta_i.babTrack", "affID=119351&tsp=5010");
Line Found : user_pref("extensions.delta_i.srcExt", "ss");
Line Found : user_pref("extensions.enabledItems", "[email protected]:1.1.2,{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}:3.10.7.2,{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}:4.3.3,{469CEB59-8266-438b-91D9-82F56D5[...]
Line Found : user_pref("extentions.y2layers.installId", "813c3289-ef8c-46cd-b796-f75a334d70c7");
Line Found : user_pref("plugin.state.npconduitfirefoxplugin", 2);
Line Found : user_pref("quickstores.toolbar.affid", "2017");
Line Found : user_pref("quickstores.toolbar.guid", "{49586E3B-C488-1EC2-9ABE-3E164314B646}");
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2260173&q=");
Line Found : user_pref("smartbar.machineId", "56DO80RSF+B9WAGQUWFLNA76UL+MVDYC8PWZOVG4M+1ZXOFQFELIKL6+VDUJXR6FWGT2J0SDULKPRGFWOURXNQ");
Line Found : user_pref("smartbar.searchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2260173&q=");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");
Line Found : user_pref("valueApps.CT2260173.mam_gk_currentVersion", "312E31332E302E3137");
Line Found : user_pref("valueApps.CT2260173.mam_gk_currentVersion.storedInFile", false);
Line Found : user_pref("valueApps.CT2260173.mam_gk_globalKeysMigratedToLocalStorage", "31");
Line Found : user_pref("valueApps.CT2260173.mam_gk_globalKeysMigratedToLocalStorage.storedInFile", false);
Line Found : user_pref("valueApps.CT2260173.mam_gk_migrated_from_ls", "31");
Line Found : user_pref("valueApps.CT2260173.mam_gk_migrated_from_ls.storedInFile", false);
Line Found : user_pref("valueApps.CT2260173.mam_gk_userBornDate", "4E2F41");
Line Found : user_pref("valueApps.CT2260173.mam_gk_userBornDate.storedInFile", false);

-\\ Google Chrome v34.0.1847.131

[ File : C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [69520 octets] - [12/05/2014 13:38:37]
AdwCleaner[R1].txt - [59025 octets] - [12/05/2014 14:21:05]
AdwCleaner[S0].txt - [70321 octets] - [12/05/2014 13:46:18]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [59147 octets] ##########
 


Edited by Mad_Night, 13 May 2014 - 07:22 AM.

  • 0

#13
Valinorum

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Perform Step 4, 5 and, 6 again and post log. Also inform me which anti-virus you have decided to keep.
  • 0

#14
Mad_Night

Mad_Night

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts

I'm not sure witch one i'll keep.  Maybe comondo? Unless avg is better or there's a better one that comes with a good firewall. anyway

 

AdwCleaner

# AdwCleaner v3.208 - Report created 13/05/2014 at 13:11:20
# Updated 11/05/2014 by Xplode
# Operating System : Windows 7 Home Premium  (64 bits)
# Username : Sy - HITACHI
# Running from : C:\Users\Sy\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[!] Folder Deleted : C:\ProgramData\Tarma Installer
[!] Folder Deleted : C:\ProgramData\VisualBee
[!] Folder Deleted : C:\Program Files (x86)\driver-soft
[!] Folder Deleted : C:\Program Files (x86)\FreeRIP Toolbar
[!] Folder Deleted : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar
[!] Folder Deleted : C:\Users\Sy\AppData\Local\eSupport.com
[!] Folder Deleted : C:\Users\Sy\AppData\Roaming\1H1Q
[!] Folder Deleted : C:\Users\Sy\AppData\Roaming\OpenCandy
[!] Folder Deleted : C:\Users\Sy\AppData\Roaming\QuickStoresToolbar
[!] Folder Deleted : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Extensions\[email protected]
File Deleted : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\Extensions\[email protected]
File Deleted : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\invalidprefs.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{20E1481B-E285-4ABC-ADC7-AE24842B81CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD4D7B0F-45C6-4bb2-A1E7-54D1754E7FC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0194532A-A99C-4337-937E-2A452C8957BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0194532A-A99C-4337-937E-2A452C8957BE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16869


-\\ Mozilla Firefox v13.0.1 (en-US)

[ File : C:\Users\Sy\AppData\Roaming\Mozilla\Firefox\Profiles\bvay5nu4.default\prefs.js ]


-\\ Google Chrome v34.0.1847.131

[ File : C:\Users\Sy\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [69520 octets] - [12/05/2014 13:38:37]
AdwCleaner[R1].txt - [59336 octets] - [12/05/2014 14:21:05]
AdwCleaner[R2].txt - [8089 octets] - [12/05/2014 16:53:55]
AdwCleaner[R3].txt - [6719 octets] - [13/05/2014 13:06:02]
AdwCleaner[S0].txt - [70321 octets] - [12/05/2014 13:46:18]
AdwCleaner[S1].txt - [60684 octets] - [12/05/2014 14:23:04]
AdwCleaner[S2].txt - [8352 octets] - [12/05/2014 16:54:48]
AdwCleaner[S3].txt - [6714 octets] - [13/05/2014 13:11:20]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [6774 octets] ##########
 

 

Jrt

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Sy on Tue 05/13/2014 at 13:57:14.62
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\secman.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\{9b0cb95c-933a-4b8c-b6d4-edcd19a43874}"



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\big fish"
Successfully deleted: [Folder] "C:\ProgramData\tarma installer"
Successfully deleted: [Folder] "C:\ProgramData\visualbee"
Successfully deleted: [Folder] "C:\Users\Sy\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Sy\AppData\Roaming\quickstorestoolbar"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"
Successfully deleted: [Folder] "C:\Program Files (x86)\driver-soft"
Failed to delete: [Folder] "C:\Program Files (x86)\freerip toolbar"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Sy\AppData\Roaming\mozilla\firefox\profiles\bvay5nu4.default\extensions\[email protected]
Successfully deleted: [Folder] C:\Users\Sy\AppData\Roaming\mozilla\firefox\profiles\bvay5nu4.default\extensions\{8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 05/13/2014 at 15:18:10.93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

Virus scan

https://www.virustot...sis/1400011949/


  • 0

#15
Valinorum

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Choose one. AVG has lost its reputation over the year. If you are going for paid ones I'd recommend ESET NOD32 or avast! Pro. For free antivirus avast! is good with your built in Windows firewall. In the end it is your choice. Please provide me the choice and I will remove the other one since it is not recommended to keep multiple anti-virus.

Re-run OTL.exe and click on Quick Scan post the log when done. How is your system?
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP