Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

I think I have a virus.

Started by crownsteelCAD , Jul 17 2014 04:01 PM

  • Please log in to reply

#1
crownsteelCAD
Posted 17 July 2014 - 04:01 PM

crownsteelCAD

    Member

  • Member
  • PipPip
  • 26 posts

I am getting pounded by all kinds of avertisments to the point of locking up system. What should I do?

 

 

Here is my DXDiag:

 

 

 

------------------
System Information
------------------
Time of this report: 7/14/2014, 15:22:42
       Machine name: SD-PC
   Operating System: Windows 7 Home Premium 32-bit (6.1, Build 7601) Service Pack 1 (7601.win7sp1_gdr.130708-1532)
           Language: English (Regional Setting: English)
System Manufacturer: Dell Inc.
       System Model: Latitude D630                   
               BIOS: Phoenix ROM BIOS PLUS Version 1.10 A01
          Processor: Intel® Core™2 Duo CPU     T7300  @ 2.00GHz (2 CPUs), ~2.0GHz
             Memory: 2048MB RAM
Available OS Memory: 2038MB RAM
          Page File: 798MB used, 3277MB available
        Windows Dir: C:\Windows
    DirectX Version: DirectX 11
DX Setup Parameters: Not found
   User DPI Setting: Using System DPI
 System DPI Setting: 96 DPI (100 percent)
    DWM DPI Scaling: Disabled
     DxDiag Version: 6.01.7601.17514 32bit Unicode

------------
DxDiag Notes
------------
      Display Tab 1: The file igdumdx32.dll,igd10umd32.dll is not digitally signed, which means that it has not been tested by Microsoft's Windows Hardware Quality Labs (WHQL).  You may be able to get a WHQL logo'd driver from the hardware manufacturer.
        Sound Tab 1: The file HdAudio.sys is not digitally signed, which means that it has not been tested by Microsoft's Windows Hardware Quality Labs (WHQL).  You may be able to get a WHQL logo'd driver from the hardware manufacturer.
        Sound Tab 2: The file livecamv.sys is not digitally signed, which means that it has not been tested by Microsoft's Windows Hardware Quality Labs (WHQL).  You may be able to get a WHQL logo'd driver from the hardware manufacturer.
          Input Tab: No problems found.

--------------------
DirectX Debug Levels
--------------------
Direct3D:    0/4 (retail)
DirectDraw:  0/4 (retail)
DirectInput: 0/5 (retail)
DirectMusic: 0/5 (retail)
DirectPlay:  0/9 (retail)
DirectSound: 0/5 (retail)
DirectShow:  0/6 (retail)

---------------
Display Devices
---------------
          Card name: Mobile Intel® 965 Express Chipset Family
       Manufacturer: Intel Corporation
          Chip type: Mobile Intel® 965 Express Chipset Family
           DAC type: Internal
         Device Key: Enum\PCI\VEN_8086&DEV_2A02&SUBSYS_01F91028&REV_0C
     Display Memory: 358 MB
   Dedicated Memory: 0 MB
      Shared Memory: 358 MB
       Current Mode: 1280 x 768 (32 bit) (60Hz)
       Monitor Name: Generic PnP Monitor
      Monitor Model: unknown
         Monitor Id: AUO1444
        Native Mode: 1280 x 800(p) (60.039Hz)
        Output Type: Internal
        Driver Name: igdumdx32.dll,igd10umd32.dll
Driver File Version: 8.14.0010.1930 (English)
     Driver Version: 8.15.10.1930
        DDI Version: 10
       Driver Model: WDDM 1.1
  Driver Attributes: Final Retail
   Driver Date/Size: 9/23/2009 19:14:54, 536576 bytes
        WHQL Logo'd: No
    WHQL Date Stamp: None
  Device Identifier: {D7B78E66-6942-11CF-1274-F321ADC2C535}
          Vendor ID: 0x8086
          Device ID: 0x2A02
          SubSys ID: 0x01F91028
        Revision ID: 0x000C
 Driver Strong Name: oem1.inf:Intel.Mfg:i965GM0:8.15.10.1930:pci\ven_8086&dev_2a02
     Rank Of Driver: 00EC2001
        Video Accel: ModeMPEG2_A ModeMPEG2_C ModeWMV9_B ModeVC1_B
   Deinterlace Caps: {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {BF752EF6-8CC4-457A-BE1B-08BD1CAEEE9F}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_EdgeFiltering
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
       D3D9 Overlay: Not Supported
            DXVA-HD: Not Supported
       DDraw Status: Enabled
         D3D Status: Enabled
         AGP Status: Enabled

-------------
Sound Devices
-------------
            Description: Speakers (High Definition Audio Device)
 Default Sound Playback: Yes
 Default Voice Playback: Yes
            Hardware ID: HDAUDIO\FUNC_01&VEN_8384&DEV_76A0&SUBSYS_102801F9&REV_1002
        Manufacturer ID: 1
             Product ID: 65535
                   Type: WDM
            Driver Name: HdAudio.sys
         Driver Version: 6.01.7601.17514 (English)
      Driver Attributes: Final Retail
            WHQL Logo'd: No
          Date and Size: 11/20/2010 03:00:21, 304128 bytes
            Other Files:
        Driver Provider: Microsoft
         HW Accel Level: Basic
              Cap Flags: 0xF1F
    Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
 Static/Strm HW 3D Bufs: 0, 0
              HW Memory: 0
       Voice Management: No
 EAX™ 2.0 Listen/Src: No, No
   I3DL2™ Listen/Src: No, No
Sensaura™ ZoomFX™: No

            Description: Line 1 (Live! Cam Virtual)
 Default Sound Playback: No
 Default Voice Playback: No
            Hardware ID: SW\{60DD021C-57A7-42ae-B7CC-75E5B78F0A33}
        Manufacturer ID: 1
             Product ID: 100
                   Type: WDM
            Driver Name: livecamv.sys
         Driver Version:  ()
      Driver Attributes: Final Retail
            WHQL Logo'd: No
          Date and Size: 1/15/2007 17:57:08, 31616 bytes
            Other Files:
        Driver Provider: Creative Inc.
         HW Accel Level: Basic
              Cap Flags: 0xF1F
    Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
 Static/Strm HW 3D Bufs: 0, 0
              HW Memory: 0
       Voice Management: No
 EAX™ 2.0 Listen/Src: No, No
   I3DL2™ Listen/Src: No, No
Sensaura™ ZoomFX™: No

---------------------
Sound Capture Devices
---------------------
            Description: Microphone (High Definition Audio Device)
  Default Sound Capture: Yes
  Default Voice Capture: Yes
            Driver Name: HdAudio.sys
         Driver Version: 6.01.7601.17514 (English)
      Driver Attributes: Final Retail
          Date and Size: 11/20/2010 03:00:21, 304128 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF

            Description: Line 1 (Live! Cam Virtual)
  Default Sound Capture: No
  Default Voice Capture: No
            Driver Name: livecamv.sys
         Driver Version:  ()
      Driver Attributes: Final Retail
          Date and Size: 1/15/2007 17:57:08, 31616 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF

            Description: Mic 1 (Live! Cam Virtual)
  Default Sound Capture: No
  Default Voice Capture: No
            Driver Name: livecamv.sys
         Driver Version:  ()
      Driver Attributes: Final Retail
          Date and Size: 1/15/2007 17:57:08, 31616 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF

            Description: Line In (High Definition Audio Device)
  Default Sound Capture: No
  Default Voice Capture: No
            Driver Name: HdAudio.sys
         Driver Version: 6.01.7601.17514 (English)
      Driver Attributes: Final Retail
          Date and Size: 11/20/2010 03:00:21, 304128 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF

-------------------
DirectInput Devices
-------------------
      Device Name: Mouse
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a

      Device Name: Keyboard
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a

Poll w/ Interrupt: No

-----------
USB Devices
-----------
+ USB Root Hub
| Vendor/Product ID: 0x8086, 0x2835
| Matching Device ID: usb\root_hub
| Service: usbhub
| Driver: usbhub.sys, 3/24/2011 19:58:37, 258560 bytes
| Driver: usbd.sys, 3/24/2011 19:57:53, 5888 bytes

----------------
Gameport Devices
----------------

------------
PS/2 Devices
------------
+ Standard PS/2 Keyboard
| Matching Device ID: *pnp0303
| Service: i8042prt
| Driver: i8042prt.sys, 7/13/2009 16:11:24, 80896 bytes
| Driver: kbdclass.sys, 7/13/2009 18:20:36, 42576 bytes
|
+ Terminal Server Keyboard Driver
| Matching Device ID: root\rdp_kbd
| Upper Filters: kbdclass
| Service: TermDD
| Driver: i8042prt.sys, 7/13/2009 16:11:24, 80896 bytes
| Driver: kbdclass.sys, 7/13/2009 18:20:36, 42576 bytes
|
+ PS/2 Compatible Mouse
| Matching Device ID: *pnp0f13
| Service: i8042prt
| Driver: i8042prt.sys, 7/13/2009 16:11:24, 80896 bytes
| Driver: mouclass.sys, 7/13/2009 18:20:44, 41552 bytes
|
+ Terminal Server Mouse Driver
| Matching Device ID: root\rdp_mou
| Upper Filters: mouclass
| Service: TermDD
| Driver: termdd.sys, 11/20/2010 05:30:12, 53120 bytes
| Driver: sermouse.sys, 7/13/2009 16:45:08, 19968 bytes
| Driver: mouclass.sys, 7/13/2009 18:20:44, 41552 bytes

------------------------
Disk & DVD/CD-ROM Drives
------------------------
      Drive: C:
 Free Space: 36.8 GB
Total Space: 76.2 GB
File System: NTFS
      Model: ST980813AS ATA Device

      Drive: D:
      Model: TSSTcorp DVD+-RW TS-L632D ATA Device
     Driver: c:\windows\system32\drivers\cdrom.sys, 6.01.7601.17514 (English), 11/20/2010 01:38:10, 108544 bytes

--------------
System Devices
--------------
     Name: Intel® ICH8 Family PCI Express Root Port 2 - 2841
Device ID: PCI\VEN_8086&DEV_2841&SUBSYS_01F91028&REV_02\3&18D45AA6&0&E1
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 05:30:06, 153984 bytes

     Name: Intel® ICH8 Family USB Universal Host Controller - 2831
Device ID: PCI\VEN_8086&DEV_2831&SUBSYS_01F91028&REV_02\3&18D45AA6&0&E9
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.17586 (English), 3/24/2011 19:57:56, 24064 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:07, 284672 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:37, 258560 bytes

     Name: Intel® PRO/Wireless 3945ABG Network Connection
Device ID: PCI\VEN_8086&DEV_4222&SUBSYS_10208086&REV_02\4&3A76025E&0&00E1
   Driver: n/a

     Name: Intel® ICH8 Family PCI Express Root Port 1 - 283F
Device ID: PCI\VEN_8086&DEV_283F&SUBSYS_01F91028&REV_02\3&18D45AA6&0&E0
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 05:30:06, 153984 bytes

     Name: Intel® ICH8 Family USB Universal Host Controller - 2830
Device ID: PCI\VEN_8086&DEV_2830&SUBSYS_01F91028&REV_02\3&18D45AA6&0&E8
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.17586 (English), 3/24/2011 19:57:56, 24064 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:07, 284672 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:37, 258560 bytes

     Name: Mobile Intel® 965 Express Chipset Family
Device ID: PCI\VEN_8086&DEV_2A03&SUBSYS_01F91028&REV_0C\3&18D45AA6&0&11
   Driver: n/a

     Name: Intel® ICH8 Family SMBus Controller - 283E
Device ID: PCI\VEN_8086&DEV_283E&SUBSYS_01F91028&REV_02\3&18D45AA6&0&FB
   Driver: n/a

     Name: Intel® ICH8M 3 port Serial ATA Storage Controller - 2828
Device ID: PCI\VEN_8086&DEV_2828&SUBSYS_01F91028&REV_02\3&18D45AA6&0&FA
   Driver: C:\Windows\system32\DRIVERS\intelide.sys, 6.01.7600.16385 (English), 7/13/2009 18:20:36, 15424 bytes
   Driver: C:\Windows\system32\DRIVERS\pciidex.sys, 6.01.7600.16385 (English), 7/13/2009 18:19:03, 42560 bytes
   Driver: C:\Windows\system32\DRIVERS\atapi.sys, 6.01.7600.16385 (English), 7/13/2009 18:26:15, 21584 bytes
   Driver: C:\Windows\system32\DRIVERS\ataport.sys, 6.01.7601.18231 (English), 8/4/2013 18:56:47, 133056 bytes

     Name: Mobile Intel® 965 Express Chipset Family
Device ID: PCI\VEN_8086&DEV_2A02&SUBSYS_01F91028&REV_0C\3&18D45AA6&0&10
   Driver: C:\Windows\system32\DRIVERS\igdkmd32.sys, 8.14.0010.1930 (English), 9/23/2009 19:18:14, 4808192 bytes
   Driver: C:\Windows\system32\igdumd32.dll, 8.14.0010.1930 (English), 9/23/2009 19:18:08, 3829760 bytes
   Driver: C:\Windows\system32\igkrng400.bin, 9/23/2009 19:16:08, 2050952 bytes
   Driver: C:\Windows\system32\iglhxs32.vp, 9/23/2009 19:45:20, 39440 bytes
   Driver: C:\Windows\system32\iglhxo32.vp, 9/23/2009 18:45:12, 60015 bytes
   Driver: C:\Windows\system32\iglhxc32.vp, 9/23/2009 18:45:12, 60226 bytes
   Driver: C:\Windows\system32\iglhxg32.vp, 9/23/2009 18:45:12, 60254 bytes
   Driver: C:\Windows\system32\iglhxa32.vp, 9/23/2009 18:45:12, 1090 bytes
   Driver: C:\Windows\system32\iglhxa32.cpa, 9/23/2009 18:45:12, 1921265 bytes
   Driver: C:\Windows\system32\hccutils.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:04, 94208 bytes
   Driver: C:\Windows\system32\igfxsrvc.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:24, 51712 bytes
   Driver: C:\Windows\system32\igfxsrvc.exe, 8.14.0010.1930 (English), 9/23/2009 19:30:48, 252952 bytes
   Driver: C:\Windows\system32\igfxpph.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:42, 199680 bytes
   Driver: C:\Windows\system32\igfxcpl.cpl, 8.14.0010.1930 (English), 9/23/2009 18:49:34, 119296 bytes
   Driver: C:\Windows\system32\igfxcfg.exe, 8.14.0010.1930 (English), 9/23/2009 19:30:50, 672792 bytes
   Driver: C:\Windows\system32\igfxdev.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:00, 218112 bytes
   Driver: C:\Windows\system32\igfxdo.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:10, 130048 bytes
   Driver: C:\Windows\system32\igfxtray.exe, 8.14.0010.1930 (English), 9/23/2009 19:30:48, 141848 bytes
   Driver: C:\Windows\system32\hkcmd.exe, 8.14.0010.1930 (English), 9/23/2009 19:30:48, 173592 bytes
   Driver: C:\Windows\system32\igfxress.dll, 8.14.0010.1930 (English), 9/23/2009 18:48:52, 5702656 bytes
   Driver: C:\Windows\system32\igfxpers.exe, 8.14.0010.1930 (English), 9/23/2009 19:30:48, 150552 bytes
   Driver: C:\Windows\system32\igfxTMM.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:42, 257536 bytes
   Driver: C:\Windows\system32\TVWSetup.exe, 1.00.0001.0000 (English), 9/23/2009 19:30:50, 8198680 bytes
   Driver: C:\Windows\system32\igfxext.exe, 8.14.0010.1930 (English), 9/23/2009 19:30:48, 173080 bytes
   Driver: C:\Windows\system32\igfxexps.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:36, 23552 bytes
   Driver: C:\Windows\system32\oemdspif.dll, 8.14.0010.1930 (English), 9/23/2009 18:49:38, 59392 bytes
   Driver: C:\Windows\system32\igfxrara.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:08, 252416 bytes
   Driver: C:\Windows\system32\igfxrchs.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:10, 178176 bytes
   Driver: C:\Windows\system32\igfxrcht.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:10, 179712 bytes
   Driver: C:\Windows\system32\igfxrdan.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:10, 280576 bytes
   Driver: C:\Windows\system32\igfxrdeu.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:10, 303616 bytes
   Driver: C:\Windows\system32\igfxrenu.lrc, 8.14.0010.1930 (English), 9/23/2009 18:48:52, 275968 bytes
   Driver: C:\Windows\system32\igfxresp.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:12, 303104 bytes
   Driver: C:\Windows\system32\igfxrfin.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:12, 281088 bytes
   Driver: C:\Windows\system32\igfxrfra.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:12, 303616 bytes
   Driver: C:\Windows\system32\igfxrheb.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:14, 249856 bytes
   Driver: C:\Windows\system32\igfxrita.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:14, 304640 bytes
   Driver: C:\Windows\system32\igfxrjpn.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:14, 206848 bytes
   Driver: C:\Windows\system32\igfxrkor.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:14, 205312 bytes
   Driver: C:\Windows\system32\igfxrnld.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:16, 299520 bytes
   Driver: C:\Windows\system32\igfxrnor.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:16, 280064 bytes
   Driver: C:\Windows\system32\igfxrplk.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:16, 287744 bytes
   Driver: C:\Windows\system32\igfxrptb.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:16, 289280 bytes
   Driver: C:\Windows\system32\igfxrptg.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:18, 294912 bytes
   Driver: C:\Windows\system32\igfxrrus.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:18, 291328 bytes
   Driver: C:\Windows\system32\igfxrsky.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:18, 282624 bytes
   Driver: C:\Windows\system32\igfxrslv.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:18, 277504 bytes
   Driver: C:\Windows\system32\igfxrsve.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:18, 282624 bytes
   Driver: C:\Windows\system32\igfxrtha.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:20, 262656 bytes
   Driver: C:\Windows\system32\igfxrcsy.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:10, 282624 bytes
   Driver: C:\Windows\system32\igfxrell.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:12, 310784 bytes
   Driver: C:\Windows\system32\igfxrhun.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:14, 288256 bytes
   Driver: C:\Windows\system32\igfxrtrk.lrc, 8.14.0010.1930 (English), 9/23/2009 18:52:20, 279040 bytes
   Driver: C:\Windows\system32\ig4icd32.dll, 8.14.0010.1930 (English), 9/23/2009 18:58:12, 4104192 bytes
   Driver: C:\Windows\system32\ig4dev32.dll, 8.14.0010.1930 (English), 9/23/2009 18:58:38, 2686976 bytes
   Driver: C:\Windows\system32\igd10umd32.dll, 8.14.0010.1930 (English), 9/23/2009 19:09:58, 2551808 bytes
   Driver: C:\Windows\system32\igdumdx32.dll, 8.14.0010.1930 (English), 9/23/2009 19:14:54, 536576 bytes
   Driver: C:\Windows\system32\igfxCoIn_v1930.dll, 1.01.0017.0000 (English), 9/23/2009 19:27:44, 155648 bytes

     Name: Intel® ICH8 Family USB2 Enhanced Host Controller - 283A
Device ID: PCI\VEN_8086&DEV_283A&SUBSYS_01F91028&REV_02\3&18D45AA6&0&D7
   Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.17586 (English), 3/24/2011 19:57:58, 43008 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:07, 284672 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:37, 258560 bytes

     Name: Intel® ICH8M LPC Interface Controller - 2815
Device ID: PCI\VEN_8086&DEV_2815&SUBSYS_01F91028&REV_02\3&18D45AA6&0&F8
   Driver: C:\Windows\system32\DRIVERS\msisadrv.sys, 6.01.7600.16385 (English), 7/13/2009 18:20:43, 13888 bytes

     Name: Mobile Intel® PM965/GM965/GL960/GS965 Express Processor to DRAM Controller - 2A00
Device ID: PCI\VEN_8086&DEV_2A00&SUBSYS_01F91028&REV_0C\3&18D45AA6&0&00
   Driver: n/a

     Name: Intel® ICH8 Family USB2 Enhanced Host Controller - 2836
Device ID: PCI\VEN_8086&DEV_2836&SUBSYS_01F91028&REV_02\3&18D45AA6&0&EF
   Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.17586 (English), 3/24/2011 19:57:58, 43008 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:07, 284672 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:37, 258560 bytes

     Name: Intel® 82801 PCI Bridge - 2448
Device ID: PCI\VEN_8086&DEV_2448&SUBSYS_01F91028&REV_F2\3&18D45AA6&0&F0
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 05:30:06, 153984 bytes

     Name: Intel® ICH8M Ultra ATA Storage Controllers - 2850
Device ID: PCI\VEN_8086&DEV_2850&SUBSYS_01F91028&REV_02\3&18D45AA6&0&F9
   Driver: C:\Windows\system32\DRIVERS\intelide.sys, 6.01.7600.16385 (English), 7/13/2009 18:20:36, 15424 bytes
   Driver: C:\Windows\system32\DRIVERS\pciidex.sys, 6.01.7600.16385 (English), 7/13/2009 18:19:03, 42560 bytes
   Driver: C:\Windows\system32\DRIVERS\atapi.sys, 6.01.7600.16385 (English), 7/13/2009 18:26:15, 21584 bytes
   Driver: C:\Windows\system32\DRIVERS\ataport.sys, 6.01.7601.18231 (English), 8/4/2013 18:56:47, 133056 bytes

     Name: Intel® ICH8 Family USB Universal Host Controller - 2835
Device ID: PCI\VEN_8086&DEV_2835&SUBSYS_01F91028&REV_02\3&18D45AA6&0&D1
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.17586 (English), 3/24/2011 19:57:56, 24064 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:07, 284672 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:37, 258560 bytes

     Name: Broadcom NetXtreme 57xx Gigabit Controller
Device ID: PCI\VEN_14E4&DEV_1673&SUBSYS_01F91028&REV_02\4&DAD58C2&0&00E5
   Driver: n/a

     Name: High Definition Audio Controller
Device ID: PCI\VEN_8086&DEV_284B&SUBSYS_01F91028&REV_02\3&18D45AA6&0&D8
   Driver: C:\Windows\system32\DRIVERS\hdaudbus.sys, 6.01.7601.17514 (English), 11/20/2010 02:59:29, 108544 bytes

     Name: Intel® ICH8 Family USB Universal Host Controller - 2834
Device ID: PCI\VEN_8086&DEV_2834&SUBSYS_01F91028&REV_02\3&18D45AA6&0&D0
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.17586 (English), 3/24/2011 19:57:56, 24064 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:07, 284672 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:37, 258560 bytes

     Name: O2Micro OZ711EZ1/MZ1 MemoryCardBus Controller
Device ID: PCI\VEN_1217&DEV_7135&SUBSYS_01F91028&REV_21\4&571B4BA&0&08F0
   Driver: C:\Windows\system32\DRIVERS\pcmcia.sys, 6.01.7600.16385 (English), 7/13/2009 18:19:03, 180288 bytes

     Name: Intel® ICH8 Family PCI Express Root Port 6 - 2849
Device ID: PCI\VEN_8086&DEV_2849&SUBSYS_01F91028&REV_02\3&18D45AA6&0&E5
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 05:30:06, 153984 bytes

     Name: Intel® ICH8 Family USB Universal Host Controller - 2832
Device ID: PCI\VEN_8086&DEV_2832&SUBSYS_01F91028&REV_02\3&18D45AA6&0&EA
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.17586 (English), 3/24/2011 19:57:56, 24064 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:07, 284672 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.17586 (English), 3/24/2011 19:58:37, 258560 bytes

     Name: 1394 OHCI Compliant Host Controller
Device ID: PCI\VEN_1217&DEV_00F7&SUBSYS_01F91028&REV_02\4&571B4BA&0&0CF0
   Driver: C:\Windows\system32\DRIVERS\1394ohci.sys, 6.01.7601.17514 (English), 11/20/2010 03:01:12, 164864 bytes

------------------
DirectShow Filters
------------------

DirectShow Filters:
WMAudio Decoder DMO,0x00800800,1,1,WMADMOD.DLL,6.01.7601.17514
WMAPro over S/PDIF DMO,0x00600800,1,1,WMADMOD.DLL,6.01.7601.17514
WMSpeech Decoder DMO,0x00600800,1,1,WMSPDMOD.DLL,6.01.7601.17514
MP3 Decoder DMO,0x00600800,1,1,mp3dmod.dll,6.01.7600.16385
Mpeg4s Decoder DMO,0x00800001,1,1,mp4sdecd.dll,6.01.7600.16385
WMV Screen decoder DMO,0x00600800,1,1,wmvsdecd.dll,6.01.7601.17514
WMVideo Decoder DMO,0x00800001,1,1,wmvdecod.dll,6.01.7601.18221
Mpeg43 Decoder DMO,0x00800001,1,1,mp43decd.dll,6.01.7600.16385
Mpeg4 Decoder DMO,0x00800001,1,1,mpg4decd.dll,6.01.7600.16385
Nero Audible Decoder,0x00200000,1,1,NeAudible.ax,4.09.0004.0001
Nero Subpicture Decoder,0x00400000,1,1,NeSubpicture.ax,4.09.0004.0001
Nero Scene Detector 2,0x00200000,2,0,NeSceneDetector.ax,4.09.0004.0001
Nero Stream Buffer Sink,0x00200000,0,0,NeSBE.ax,4.09.0004.0001
Nero Subtitle,0x00200000,1,1,NeSubtitle.ax,4.09.0004.0001
DV Muxer,0x00400000,0,0,qdv.dll,6.06.7601.17514
Nero Smart3D Video Effect Filter,0x00200000,1,1,NSG_dxFilter.dll,1.07.0005.0000
DV Scenes,0x00200000,1,1,NVDV.dll,3.00.0004.0000
Color Space Converter,0x00400001,1,1,quartz.dll,6.06.7601.17713
WM ASF Reader,0x00400000,0,0,qasf.dll,12.00.7601.17514
VFW Sample Grabber,0x00200000,1,1,C0130Vfw.dll,1.00.0001.6784
Screen Capture filter,0x00200000,0,1,wmpsrcwp.dll,12.00.7601.17514
AVI Splitter,0x00600000,1,1,quartz.dll,6.06.7601.17713
Image Effects,0x00200000,2,1,viscomaudiodata.dll,
VGA 16 Color Ditherer,0x00400000,1,1,quartz.dll,6.06.7601.17713
SBE2MediaTypeProfile,0x00200000,0,0,sbe.dll,6.06.7601.17528
Nero FTC,0x00200000,1,1,NeFTC.ax,1.00.0000.0000
Microsoft DTV-DVD Video Decoder,0x005fffff,2,4,msmpeg2vdec.dll,12.00.9200.16426
AC3 Parser Filter,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
StreamBufferSink,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft TV Captions Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
Nero Resize,0x00400000,1,1,NeResize.ax,4.09.0004.0001
MJPEG Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.17713
CBVA DMO wrapper filter,0x00200000,1,1,cbva.dll,6.01.7601.17514
MPEG-I Stream Splitter,0x00600000,1,2,quartz.dll,6.06.7601.17713
SAMI (CC) Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
Nero AV Synchronizer,0x00200000,1,1,NeAVSync.ax,4.09.0004.0001
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514
Nero Audio Stream Renderer,0x00200000,1,0,NeRender.ax,4.09.0004.0001
MPEG-2 Splitter,0x005fffff,1,0,mpg2splt.ax,6.06.7601.17528
Closed Captions Analysis Filter,0x00200000,2,5,cca.dll,6.06.7601.17514
SBE2FileScan,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft MPEG-2 Video Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
Nero Digital AVC Audio Encoder,0x00200000,1,2,NeNDAud.ax,4.09.0004.0001
Nero Digital AVC File Writer,0x00200000,1,0,NeNDMux.ax,4.09.0004.0001
Nero Digital AVC Video Enc,0x00200000,1,2,NeNDVid.ax,4.09.0004.0001
Nero Digital AVC Null Renderer,0x00200000,1,0,NeNDMux.ax,4.09.0004.0001
Nero Digital AVC Muxer,0x00200000,2,1,NeNDMux.ax,4.09.0004.0001
Nero QuickTime™ Video Decoder,0x00400000,1,1,NeQTDec.ax,4.09.0004.0001
Nero Smart3D Transition Effect Filter,0x00200000,1,1,NSG_dxFilter.dll,1.07.0005.0000
VISCOM Wave Form Display Filter,0x00200000,1,0,viscomwaveform.dll,
Internal Script Command Renderer,0x00800001,1,0,quartz.dll,6.06.7601.17713
MPEG Audio Decoder,0x03680001,1,1,quartz.dll,6.06.7601.17713
Nero Digital AVC Subpicture Enc,0x00200000,1,0,NeNDMux.ax,4.09.0004.0001
Nero Format Converter,0x00200000,1,1,NeroFormatConv.ax,4.09.0004.0001
Nero Overlay Mixer,0x00200000,1,1,NeOverlayMixer.ax,4.09.0004.0001
Nero MP4 Splitter,0x00600000,1,1,NeMP4Splitter.ax,4.09.0004.0001
DV Splitter,0x00600000,1,2,qdv.dll,6.06.7601.17514
HighMAT and MPV Navigator Filter,0x00200000,0,3,HMNavigator.ax,4.09.0004.0001
Video Mixing Renderer 9,0x00200000,1,0,quartz.dll,6.06.7601.17713
Nero Photo Source,0x00200000,0,1,NePhotoSource.ax,4.09.0004.0001
VISCOM AudioEffect Filter,0x00200000,1,1,viscomaudio.dll,
Nero Video Analyzer,0x00200000,2,0,NeVideoAnalyzer.ax,4.09.0004.0001
Nero ES Video Reader,0x00600000,0,1,NDParser.ax,4.09.0004.0001
Microsoft MPEG-2 Encoder,0x00200000,2,1,msmpeg2enc.dll,6.01.7601.17514
DV Source Filter,0x00400000,0,1,NVDV.dll,3.00.0004.0000
MPEG-2 Stream Reader Filter,0x00200000,0,0,Mpeg2StreamReader.ax,1.04.0000.0000
Nero Audio CD Filter,0x00200000,0,1,NeAudCD.ax,4.09.0004.0001
Nero Smart3D Text Effect Filter,0x00200000,1,1,NSG_dxFilter.dll,1.07.0005.0000
Nero Video Renderer,0x00200000,1,0,NeVideoRenderer.ax,4.09.0004.0001
Nero PresentationGraphics Decoder,0x00600000,2,1,NeBDGraphic.ax,4.09.0004.0001
ACM Wrapper,0x00600000,1,1,quartz.dll,6.06.7601.17713
Video Renderer,0x00800001,1,0,quartz.dll,6.06.7601.17713
MPEG-2 Video Stream Analyzer,0x00200000,0,0,sbe.dll,6.06.7601.17528
Line 21 Decoder,0x00600000,1,1,qdvd.dll,6.06.7601.17713
Nero InteractiveGraphics Decoder,0x00600000,1,1,NeBDGraphic.ax,4.09.0004.0001
Video Port Manager,0x00600000,2,1,quartz.dll,6.06.7601.17713
Video Renderer,0x00400000,1,0,quartz.dll,6.06.7601.17713
Nero Sound Processor,0x00200000,1,1,NeSoundProc.ax,4.09.0004.0001
Nero Audio Sample Renderer,0x00200000,1,0,NeRender.ax,4.09.0004.0001
Nero Vcd Navigator,0x00600000,0,2,NeVCD.ax,4.09.0004.0001
VPS Decoder,0x00200000,0,0,WSTPager.ax,6.06.7601.17514
WM ASF Writer,0x00400000,0,0,qasf.dll,12.00.7601.17514
Nero Mpeg2 Encoder,0x00200000,2,1,NeVCR.ax,4.09.0004.0001
VBI Surface Allocator,0x00600000,1,1,vbisurf.ax,6.01.7601.17514
VFW Null Render Filter,0x00200000,1,0,C0130Vfw.dll,1.00.0001.6784
Nero Video Stream Renderer,0x00200000,1,0,NeRender.ax,4.09.0004.0001
File writer,0x00200000,1,0,qcap.dll,6.06.7601.17514
iTV Data Sink,0x00600000,1,0,itvdata.dll,6.06.7601.17514
Nero FLV Splitter,0x00600000,1,1,NeFLVSplitter.ax,4.09.0004.0001
iTV Data Capture filter,0x00600000,1,1,itvdata.dll,6.06.7601.17514
Nero Stream Buffer Source,0x00200000,0,0,NeSBE.ax,4.09.0004.0001
Nero PS Muxer,0x00200000,1,1,NePSMuxer.ax,4.09.0004.0001
DVD Navigator,0x00200000,0,3,qdvd.dll,6.06.7601.17713
Microsoft TV Subtitles Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
Overlay Mixer2,0x00200000,1,1,qdvd.dll,6.06.7601.17713
Nero Splitter,0x00600000,1,3,NeSplitter.ax,4.09.0004.0001
Nero Deinterlace,0x00200000,1,1,NeDeinterlace.ax,4.09.0004.0001
AVI Draw,0x00600064,9,1,quartz.dll,6.06.7601.17713
RDP DShow Redirection Filter,0xffffffff,1,0,DShowRdpFilter.dll,
Nero File Source / Splitter,0x00600000,0,3,NeFSource.ax,4.09.0004.0001
Microsoft MPEG-2 Audio Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
WST Pager,0x00200000,1,1,WSTPager.ax,6.06.7601.17514
MPEG-2 Demultiplexer,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
DV Video Decoder,0x00800000,1,1,qdv.dll,6.06.7601.17514
Creative Video Effect,0x00200000,1,1,CTEffect.ax,2.00.0001.0000
Nero Video Processor,0x00200000,1,1,NeroVideoProc.ax,4.09.0004.0001
SampleGrabber,0x00200000,1,1,qedit.dll,6.06.7601.18175
Null Renderer,0x00200000,1,0,qedit.dll,6.06.7601.18175
Nero Sound Switcher,0x00200000,1,1,NeSoundSwitch.ax,4.09.0004.0001
MPEG-2 Sections and Tables,0x005fffff,1,0,Mpeg2Data.ax,6.06.7601.17514
Microsoft AC3 Encoder,0x00200000,1,1,msac3enc.dll,6.01.7601.17514
Nero Audio CD Navigator,0x00200000,0,1,NeAudCD.ax,4.09.0004.0001
StreamBufferSource,0x00200000,0,0,sbe.dll,6.06.7601.17528
Smart Tee,0x00200000,1,2,qcap.dll,6.06.7601.17514
Nero Thumbnail Decoder,0x00600000,1,1,NeBDThumbnail.ax,4.09.0004.0001
Overlay Mixer,0x00200000,0,0,qdvd.dll,6.06.7601.17713
Nero Scene Detector,0x00200000,1,0,NeSceneDetector.ax,4.09.0004.0001
Nero Stream Control,0x00200000,1,1,NeStreamControl.ax,1.00.0000.0000
AVI Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.17713
NetBridge,0x00200000,2,0,netbridge.dll,6.01.7601.17514
Nero Sample Queue,0x00200000,1,1,NeSampleQueue.ax,1.00.0000.0000
AVI/WAV File Source,0x00400000,0,2,quartz.dll,6.06.7601.17713
Wave Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
MIDI Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
Multi-file Parser,0x00400000,1,1,quartz.dll,6.06.7601.17713
File stream renderer,0x00400000,1,1,quartz.dll,6.06.7601.17713
Nero File Source,0x00200000,0,1,NeFileSrc.ax,4.09.0004.0001
Nero QuickTime™ Audio Decoder,0x00400000,1,1,NeQTDec.ax,4.09.0004.0001
Nero File Source (Async.),0x00400000,0,1,NeFileSourceAsync.ax,4.09.0004.0001
Nero Ogg Splitter,0x00400000,1,1,NeOggSplitter.ax,4.09.0004.0001
Microsoft DTV-DVD Audio Decoder,0x005fffff,1,1,msmpeg2adec.dll,6.01.7140.0000
Nero Digital Parser,0x00600000,0,3,NDParser.ax,4.09.0004.0001
StreamBufferSink2,0x00200000,0,0,sbe.dll,6.06.7601.17528
AVI Mux,0x00200000,1,0,qcap.dll,6.06.7601.17514
Line 21 Decoder 2,0x00600002,1,1,quartz.dll,6.06.7601.17713
File Source (Async.),0x00400000,0,1,quartz.dll,6.06.7601.17713
File Source (URL),0x00400000,0,1,quartz.dll,6.06.7601.17713
Media Center Extender Encryption Filter,0x00200000,2,2,Mcx2Filter.dll,6.01.7601.17514
Nero MP3 Encoder,0x00200000,1,1,NeMp3Encoder.ax,4.09.0004.0001
AudioRecorder WAV Dest,0x00200000,0,0,WavDest.dll,
AudioRecorder Wave Form,0x00200000,0,0,WavDest.dll,
SoundRecorder Null Renderer,0x00200000,0,0,WavDest.dll,
Nero Frame Capture,0x00200000,1,1,NeCapture.ax,4.09.0004.0001
Nero Video Sample Renderer,0x00200000,1,0,NeRender.ax,4.09.0004.0001
HighMAT/MPV Navigator Client Filter,0x00200000,0,0,HMNavigator.ax,4.09.0004.0001
Infinite Pin Tee Filter,0x00200000,1,1,qcap.dll,6.06.7601.17514
Nero DV Splitter,0x00200000,1,2,NeDVSplitter.ax,4.09.0004.0001
Enhanced Video Renderer,0x00200000,1,0,evr.dll,6.01.7601.17514
BDA MPEG2 Transport Information Filter,0x00200000,2,0,psisrndr.ax,6.06.7601.17669
MPEG Video Decoder,0x40000001,1,1,quartz.dll,6.06.7601.17713

WDM Streaming Tee/Splitter Devices:
Tee/Sink-to-Sink Converter,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

Video Compressors:
WMVideo8 Encoder DMO,0x00600800,1,1,wmvxencd.dll,6.01.7600.16385
WMVideo9 Encoder DMO,0x00600800,1,1,wmvencod.dll,6.01.7600.16385
MSScreen 9 encoder DMO,0x00600800,1,1,wmvsencd.dll,6.01.7600.16385
DV Video Encoder,0x00200000,0,0,qdv.dll,6.06.7601.17514
MJPEG Compressor,0x00200000,0,0,quartz.dll,6.06.7601.17713
Cinepak Codec by Radius,0x00200000,1,1,qcap.dll,6.06.7601.17514
Intel IYUV codec,0x00200000,1,1,qcap.dll,6.06.7601.17514
Intel IYUV codec,0x00200000,1,1,qcap.dll,6.06.7601.17514
Microsoft RLE,0x00200000,1,1,qcap.dll,6.06.7601.17514
Microsoft Video 1,0x00200000,1,1,qcap.dll,6.06.7601.17514

Audio Compressors:
WM Speech Encoder DMO,0x00600800,1,1,WMSPDMOE.DLL,6.01.7600.16385
WMAudio Encoder DMO,0x00600800,1,1,WMADMOE.DLL,6.01.7600.16385
IMA ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.17713
PCM,0x00200000,1,1,quartz.dll,6.06.7601.17713
Microsoft ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.17713
GSM 6.10,0x00200000,1,1,quartz.dll,6.06.7601.17713
CCITT A-Law,0x00200000,1,1,quartz.dll,6.06.7601.17713
CCITT u-Law,0x00200000,1,1,quartz.dll,6.06.7601.17713
MPEG Layer-3,0x00200000,1,1,quartz.dll,6.06.7601.17713

Audio Capture Sources:
Microphone (High Definition Aud,0x00200000,0,0,qcap.dll,6.06.7601.17514
Line 1 (Live! Cam Virtual),0x00200000,0,0,qcap.dll,6.06.7601.17514
Line In (High Definition Audio ,0x00200000,0,0,qcap.dll,6.06.7601.17514
Mic 1 (Live! Cam Virtual),0x00200000,0,0,qcap.dll,6.06.7601.17514

PBDA CP Filters:
PBDA DTFilter,0x00600000,1,1,CPFilters.dll,6.06.7601.17528
PBDA ETFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528
PBDA PTFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528

Midi Renderers:
Default MidiOut Device,0x00800000,1,0,quartz.dll,6.06.7601.17713
Microsoft GS Wavetable Synth,0x00200000,1,0,quartz.dll,6.06.7601.17713

WDM Streaming Capture Devices:
HD Audio Muxed capture,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
Live! Cam Virtual 1,0x00200000,2,2,ksproxy.ax,6.01.7601.17514

WDM Streaming Rendering Devices:
HD Audio Headphone/Speakers,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
Live! Cam Virtual 1,0x00200000,2,2,ksproxy.ax,6.01.7601.17514

BDA Network Providers:
Microsoft ATSC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBS Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBT Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft Network Provider,0x00200000,0,1,MSNP.ax,6.06.7601.17514

Video Capture Sources:
Live! Cam Virtual,0x00200000,0,1,LiveCamVirtual.ocx,1.00.0000.0001
Live! Cam Notebook Ultra (VFW),0x00200000,0,0,qcap.dll,6.06.7601.17514

Multi-Instance Capable VBI Codecs:
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514

BDA Transport Information Renderers:
BDA MPEG2 Transport Information Filter,0x00600000,2,0,psisrndr.ax,6.06.7601.17669
MPEG-2 Sections and Tables,0x00600000,1,0,Mpeg2Data.ax,6.06.7601.17514

BDA CP/CA Filters:
Decrypt/Tag,0x00600000,1,1,EncDec.dll,6.06.7601.17708
Encrypt/Tag,0x00200000,0,0,EncDec.dll,6.06.7601.17708
PTFilter,0x00200000,0,0,EncDec.dll,6.06.7601.17708
XDS Codec,0x00200000,0,0,EncDec.dll,6.06.7601.17708

WDM Streaming Communication Transforms:
Tee/Sink-to-Sink Converter,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

Audio Renderers:
Speakers (High Definition Audio,0x00200000,1,0,quartz.dll,6.06.7601.17713
Default DirectSound Device,0x00800000,1,0,quartz.dll,6.06.7601.17713
Default WaveOut Device,0x00200000,1,0,quartz.dll,6.06.7601.17713
DirectSound: Line 1 (Live! Cam Virtual),0x00200000,1,0,quartz.dll,6.06.7601.17713
DirectSound: Speakers (High Definition Audio Device),0x00200000,1,0,quartz.dll,6.06.7601.17713
Line 1 (Live! Cam Virtual),0x00200000,1,0,quartz.dll,6.06.7601.17713

---------------
EVR Power Information
---------------
Current Setting: {5C67A112-A4C9-483F-B4A7-1D473BECAFDC} (Quality)
  Quality Flags: 2576
    Enabled:
    Force throttling
    Allow half deinterlace
    Allow scaling
    Decode Power Usage: 100
  Balanced Flags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 50
  PowerFlags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 0
 


  • 0

Advertisements

#2
zep516
Posted 17 July 2014 - 06:42 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
Hi! My name is zep516 and Welcome to Geekstogo!
I'll do the best I can to resolve your computer issue
Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, don't continue Stop and ask! Never be afraid to ask questions! :)

First

Please download OTL to your Desktop
  • Double click on the OTLicon.jpg to run the program. On Vista/Win7 or 8 right click select Run As Administrator to start the program. If prompted by UAC, please allow it.
  • Make sure all other windows are closed and to let it run uninterrupted.
  • Click the Scan All Users checkbox
    and
  • Check the option for All under the Extra Registry section
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan won't take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files and post them in your topic
  • OTL.txt <-- Will be opened, maximized
  • Extras.txt <-- Will be minimized on task bar.
Please post the contents of both OTL.txt and Extras.txt files in your next reply.
  • 0

#3
crownsteelCAD
Posted 18 July 2014 - 08:11 AM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

Ok. I am on it..


  • 0

#4
crownsteelCAD
Posted 18 July 2014 - 02:03 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

OTL Extras logfile created on: 7/18/2014 12:45:06 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\SD\Desktop
 Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
1.99 Gb Total Physical Memory | 1.11 Gb Available Physical Memory | 55.70% Memory free
3.98 Gb Paging File | 3.26 Gb Available in Paging File | 81.88% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.43 Gb Total Space | 34.51 Gb Free Space | 46.37% Space Free | Partition Type: NTFS
 
Computer Name: SD-PC | User Name: SD | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (All) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = comfile] -- "%1" %*
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\System32\mshta.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.inf [@ = inffile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\System32\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
 
[HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\System32\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0FE4C3CF-AA96-4CB2-938A-8FB2F1C99116}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1AB90AB7-D221-4C17-B50D-27C94CCE2CA4}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3E50BCAF-AE60-49B6-AEE3-CC0890EBADCA}" = protocol=6 | dir=in | app=c:\program files\symantec\symantec endpoint protection\smc.exe |
"{42E15E6C-1F41-4161-A9C0-12F9FF0053A5}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{7AFB0FB7-8D5A-4EA7-B16E-91253464AE31}" = protocol=17 | dir=in | app=c:\program files\symantec\symantec endpoint protection\snac.exe |
"{9C90AB7A-A48C-4812-A2E6-CA9D46875DA1}" = protocol=17 | dir=in | app=c:\program files\common files\symantec shared\ccapp.exe |
"{A77E6994-297C-408F-ADB7-48A6B79C6668}" = protocol=17 | dir=in | app=c:\program files\symantec\symantec endpoint protection\smc.exe |
"{B26DB4ED-CE74-4C0F-A2FB-7C389B6C9A88}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{C4C95984-701B-476C-8300-8E79F0A0CCB4}" = protocol=6 | dir=in | app=c:\program files\symantec\symantec endpoint protection\snac.exe |
"{D542A828-327E-4091-B213-5165D53928F9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E0D3E63D-9A67-4A11-868D-9296BE2BE66E}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E55730A5-4AC0-412D-BB10-77C1C90E58CE}" = protocol=6 | dir=in | app=c:\program files\common files\symantec shared\ccapp.exe |
"{F86D316A-9E96-4BA5-B79E-114BA4BD48A5}" = dir=in | app=c:\users\sd\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"TCP Query User{2663E3B4-656C-464E-B4F9-367D38E2FD2C}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{59100E74-59A7-4D1C-BD8E-97A0413A4D7C}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{FA4AEC4C-F28D-45D0-B339-46F96CD644C4}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{7302F18C-3433-476D-BC4F-A30CB3C96024}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{A0EB8626-177E-4B15-8EB8-42BDC3EA77F0}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{B4ED2FC0-0D81-42BA-AFB0-F92F6EE6A7E6}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{10A0E600-D246-BD63-F465-4C849C688998}" = SaveRAiddon
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}" = Live! Cam Avatar
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33
"{2D428867-5883-449B-86F3-7B7187061033}" = Nero 7 Essentials
"{349F8E48-F2D0-A1AC-529A-0FDABDE68470}" = PdfMaker
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40DC4B27-4588-C56F-7737-D03A0ACE4383}" = RoyaLCaoupon
"{459699C3-9430-4381-964B-4248D87B49F9}" = Apple Mobile Device Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58F9D852-9443-4955-A1ED-12C9E0504DD0}" = Mavis Beacon Teaches Typing Platinum 20
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}" = Facebook Video Calling 2.0.0.447
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}" = ZTE Mobile Connection Manager
"{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}" = Software Version Updater
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.10)
"{AE9B04F2-E9E8-162C-829B-52C116B3EFCC}" = LucikyShopppero
"{B0261E53-B6F1-474A-864B-E7C3CBF468E0}" = iTunes
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Click to Call with Skype
"{CBF53EDB-7176-40B5-919D-5A4A996C3170}" = ROXIOVHS3X86
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Apple Application Support
"{FA272494-8DEA-43CF-9BFF-652553C04265}" = Symantec Endpoint Protection
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 14 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Advanced Video FX Engine" = Advanced Video FX Engine
"Creative Live! Cam Center" = Creative Live! Cam Center
"Creative Live! Cam Doodling" = Creative Live! Cam Doodling
"Creative Live! Cam FX Creator" = Creative Live! Cam FX Creator
"Creative Live! Cam Manager" = Creative Live! Cam Manager
"Creative Photo Calendar" = Calendario de fotos de Creative
"Creative Photo Manager" = Creative Photo Manager
"Creative VC0130" = Creative Live! Cam Notebook Ultra Driver (1.02.01.00)  
"FilesFrog Update Checker" = FilesFrog Update Checker
"Google Chrome" = Google Chrome
"Guía del usuario de Creative Live! Cam Notebook Ultra Spanish" = Guía del usuario de Creative Live! Cam Notebook Ultra (Español)
"HDMI" = Intel® Graphics Media Accelerator Driver
"inethnfd" = Network System Driver
"LiveSupport_is1" = LiveSupport
"LiveUpdate" = LiveUpdate 3.3 (Symantec Corporation)
"MediaBuzzV1mode5379" = Media Buzz
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mobogenie" = Mobogenie
"MP3 Rocket" = MP3 Rocket
"Optimizer Pro_is1" = Optimizer Pro v3.2
"Plus-HD-9.3" = Plus-HD-9.3
"PROPLUS" = Microsoft Office Professional Plus 2007
"RichMediaViewV1release7578" = Rich Media View
"SearchProtect" = Search Protect
"TVWiz" = Intel® TV Wizard
"WinRAR archiver" = WinRAR archiver
 
========== HKEY_USERS Uninstall List ==========
 
[HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"Songr" = Songr
"UpdateChecker" = UpdateChecker
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 7/18/2014 12:36:00 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 12:36:01 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 12:36:02 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 12:36:04 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 1:43:35 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 1:43:36 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 1:43:38 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 1:43:39 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 1:43:40 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
Error - 7/18/2014 1:43:41 AM | Computer Name = SD-PC | Source = Microsoft-Windows-CAPI2 | ID = 256
Description = The Cryptographic Services service failed to initialize the Catalog
 Database. The error was: 1392 (0x570) : The file or directory is corrupted and
unreadable.  .
 
[ System Events ]
Error - 7/18/2014 3:39:48 PM | Computer Name = SD-PC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
   NetBIOS
 
Error - 7/18/2014 3:40:57 PM | Computer Name = SD-PC | Source = Service Control Manager | ID = 7000
Description = The NetBIOS Interface service failed to start due to the following
 error:   %%2
 
Error - 7/18/2014 3:41:05 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error - 7/18/2014 3:43:46 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error - 7/18/2014 3:50:41 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error - 7/18/2014 3:50:41 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error - 7/18/2014 3:50:41 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error - 7/18/2014 3:52:32 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error - 7/18/2014 3:52:32 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume C:.
 
Error - 7/18/2014 3:52:32 PM | Computer Name = SD-PC | Source = Ntfs | ID = 262199
Description = The file system structure on the disk is corrupt and unusable.  Please
 run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
 
< End of report >
 


  • 0

#5
crownsteelCAD
Posted 18 July 2014 - 02:03 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

OTL logfile created on: 7/18/2014 12:45:06 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\SD\Desktop
 Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
1.99 Gb Total Physical Memory | 1.11 Gb Available Physical Memory | 55.70% Memory free
3.98 Gb Paging File | 3.26 Gb Available in Paging File | 81.88% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.43 Gb Total Space | 34.51 Gb Free Space | 46.37% Space Free | Partition Type: NTFS
 
Computer Name: SD-PC | User Name: SD | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/07/18 07:12:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SD\Desktop\OTL.exe
PRC - [2014/06/16 11:52:58 | 000,162,304 | ---- | M] () -- C:\Windows\System32\netupdsrv.exe
PRC - [2014/06/16 11:52:36 | 000,180,224 | ---- | M] () -- C:\Windows\System32\nethtsrv.exe
PRC - [2014/05/08 04:20:58 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/04/17 13:09:04 | 000,748,736 | ---- | M] () -- C:\Program Files\Mobogenie\DaemonProcess.exe
PRC - [2014/03/18 12:06:04 | 001,005,056 | ---- | M] (PC Utilities Software Limited) -- C:\Program Files\LiveSupport\LiveSupport.exe
PRC - [2014/02/17 21:54:56 | 000,007,168 | ---- | M] () -- C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe
PRC - [2013/10/17 02:50:28 | 000,208,952 | ---- | M] (Somoto) -- C:\Users\SD\AppData\Local\FilesFrog Update Checker\update_checker.exe
PRC - [2013/02/26 22:05:53 | 000,101,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
PRC - [2012/11/22 19:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 05:16:54 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2010/08/05 19:11:44 | 001,885,488 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2010/08/05 19:05:52 | 001,459,568 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2010/07/01 17:17:24 | 001,832,072 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2010/05/06 17:21:54 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2009/07/13 18:14:44 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
PRC - [2007/06/07 14:01:38 | 000,155,648 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
PRC - [2007/03/12 14:49:46 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007/03/12 14:49:26 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2006/10/02 18:00:00 | 000,032,768 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\C0130Mon.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/04/17 13:09:04 | 000,748,736 | ---- | M] () -- C:\Program Files\Mobogenie\DaemonProcess.exe
MOD - [2014/04/17 13:09:04 | 000,474,816 | ---- | M] () -- C:\Program Files\Mobogenie\DCR.dll
MOD - [2014/04/17 13:09:04 | 000,065,728 | ---- | M] () -- C:\Program Files\Mobogenie\Device.dll
MOD - [2014/02/17 21:54:56 | 000,007,168 | ---- | M] () -- C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe
MOD - [2013/10/10 21:39:18 | 001,014,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\71d887ce964fb69b7f03c4fe7a3f28ff\System.Configuration.ni.dll
MOD - [2013/08/14 15:34:44 | 005,628,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\884bcbd22130ebeb1211bc7bcc3910c9\System.Xml.ni.dll
MOD - [2013/08/14 15:34:38 | 009,099,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\de853615c8224ba5d9aa9b76276c6d98\System.ni.dll
MOD - [2013/07/10 16:57:30 | 014,416,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\cf58670896c5313b9b52f026f4455a5d\mscorlib.ni.dll
MOD - [2011/11/02 00:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/02 00:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2004/01/22 18:36:28 | 000,120,832 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
 
 
========== Services (SafeList) ==========
 
SRV - [2014/07/08 11:59:38 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/06/16 11:52:58 | 000,162,304 | ---- | M] () [Auto | Running] -- C:\Windows\System32\netupdsrv.exe -- (ServiceUpdater)
SRV - [2014/06/16 11:52:36 | 000,180,224 | ---- | M] () [Auto | Running] -- C:\Windows\System32\nethtsrv.exe -- (NetHttpService)
SRV - [2014/05/08 04:20:58 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/05/26 21:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/02/28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/08/09 15:12:27 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/08/05 19:11:44 | 001,885,488 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2010/07/01 17:17:24 | 001,832,072 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2010/07/01 16:24:02 | 000,357,704 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2010/02/17 10:53:18 | 003,093,880 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2009/07/13 18:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2014/06/16 11:53:14 | 000,040,528 | ---- | M] (nethfdrv) [Kernel | System | Running] -- C:\Windows\System32\drivers\nethfdrv.sys -- (nethfdrv)
DRV - [2014/06/16 09:39:56 | 001,612,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20140717.008\NAVEX15.SYS -- (NAVEX15)
DRV - [2014/06/16 09:39:56 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20140717.008\NAVENG.SYS -- (NAVENG)
DRV - [2014/06/10 01:00:00 | 000,377,648 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2014/06/10 01:00:00 | 000,109,872 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012/09/30 18:03:24 | 000,174,056 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wpshelper.sys -- (WpsHelper)
DRV - [2011/08/09 17:03:48 | 000,125,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/11/20 03:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 02:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/08/05 19:11:48 | 000,099,696 | ---- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\SysPlant.sys -- (SysPlant)
DRV - [2010/08/05 19:08:14 | 000,043,376 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\WPSDRVnt.sys -- (WPS)
DRV - [2010/03/08 12:59:14 | 000,320,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2010/03/08 12:59:14 | 000,283,184 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2010/03/08 12:59:14 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2009/12/28 12:42:26 | 000,067,472 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Teefer2.sys -- (Teefer2)
DRV - [2009/12/18 15:42:12 | 000,421,424 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/09/03 16:03:48 | 000,188,080 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\symtdi.sys -- (SYMTDI)
DRV - [2009/09/03 16:03:48 | 000,026,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\symredrv.sys -- (SYMREDRV)
DRV - [2009/07/13 15:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009/07/10 14:23:10 | 000,105,344 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009/07/10 14:23:10 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009/07/10 14:23:10 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2007/06/10 18:01:00 | 000,142,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Afx.sys -- (VC0130Afx)
DRV - [2007/04/17 18:00:00 | 000,690,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Vid.sys -- (VC0130Dev)
DRV - [2007/03/27 18:00:00 | 000,094,976 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Aud.sys -- (VC0130Aud)
DRV - [2007/01/15 17:57:08 | 000,031,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\livecamv.sys -- (RLDesignVirtualAudioCableWdm)
DRV - [2006/06/19 18:05:00 | 000,006,912 | ---- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Vfx.sys -- (VC0130Vfx)
DRV - [2005/08/17 08:47:48 | 000,073,696 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdserd.sys -- (sscdserd)
DRV - [2005/08/17 08:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 08:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 08:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\..\SearchScopes,DefaultScope = {3263CB61-5DB4-4374-9915-094F0025CC23}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}: "URL" = http://search.mywebs...r={searchTerms}
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...00459E1EA&SSPV=
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://search.condui...00459E1EA&SSPV=
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{3263CB61-5DB4-4374-9915-094F0025CC23}: "URL" = http://search.condui...1451502827&UM=2
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}: "URL" = http://badoo.com/sta...q={searchTerms}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{A531D99C-5A22-449b-83DA-872725C6D0ED}: "URL" = http://search.alot.c...n=1.3.0001.0(B)
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{DBA92C81-0B14-4C16-9726-FA934BD121BE}: "URL" = http://websearch.ask...C4-8381B88D7D5D
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{EE5DF51A-8FF6-4C29-AF15-4C46CE0A32B8}: "URL" = http://www.mysearchr...q={searchTerms}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\SD\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\MediaBuzzV1\MediaBuzzV1mode5379\ff [2014/04/25 15:24:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\RichMediaViewV1\RichMediaViewV1release7578\ff [2014/05/14 15:16:54 | 000,000,000 | ---D | M]
 
[2013/10/28 14:31:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/09/08 08:27:45 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/09/08 08:27:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2014/04/25 15:24:29 | 000,000,000 | ---D | M] (Media Buzz) -- C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF
[2014/05/14 15:16:54 | 000,000,000 | ---D | M] (Rich Media View) -- C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF
 
========== Chrome  ==========
 
CHR - default_search_provider: Trovi search (Enabled)
CHR - default_search_provider: search_url = http://search.condui...rchTerms}&SSPV=
CHR - default_search_provider: suggest_url = http://suggest.searc...={searchTerms},
CHR - homepage: http://search.condui...00459E1EA&SSPV=
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\35.0.1916.153\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\35.0.1916.153\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8153_0\npSkypeChromePlugin.dll
CHR - plugin: Reallusion CT4Player for Mozilla (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npRLCT4Player.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: couponuPeaK = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\akcnenkcdfaofkejelnakmjombmnkpdm\3.1\
CHR - Extension: Youtube HD Enabler = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdiejhidnbholnbhiahjbbogcgmlihke\167\
CHR - Extension: Google Voice Search Hotword (Beta) = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5019_0\
CHR - Extension: Adblock Plus = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.3_0\
CHR - Extension: ShoppeRMaasiter = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhbiegbpjegbgeofmjdiehejankpappd\1.7\
CHR - Extension: Permanent Readability = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkoadlaadbnnaipkigapbbgbclcdhkaf\231\
CHR - Extension: Plus-HD-9.3 = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngfnjclpjflgomhidfecidndbfaniak\1.26.84_0\
CHR - Extension: TxtMakEEri = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianajbclejppiildmnfcemglggnifclj\1.6\
CHR - Extension: Media Buzz = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\idjgahopfhdbgokabpfcdmjfhnemfcol\1.1_0\
CHR - Extension: Google Wallet = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Rich Media View = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnlghnkkahhgbfnkhdgmljndfkpmifl\1.1_0\
 
O1 HOSTS File: ([2009/06/10 14:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (PdfMaker) - {75AC1D1F-101B-8D81-D787-2964E2B4479D} - C:\ProgramData\PdfMaker\PgkBxh.dll ()
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (LucikyShopppero) - {C1C87366-FFD9-923E-F7C6-2923A860FE06} - C:\ProgramData\LucikyShopppero\1.dll ()
O2 - BHO: (SaveRAiddon) - {C40439BD-4110-B1A2-0A3E-4B32D76BA185} - C:\ProgramData\SaveRAiddon\Evx.dll ()
O2 - BHO: (Rich Media View) - {cbb43159-b72c-46d2-a380-2760e6d53311} - C:\Program Files\RichMediaViewV1\RichMediaViewV1release7578\ie\RichMediaViewV1release7578.dll File not found
O2 - BHO: (RoyaLCaoupon) - {EFB5D8DC-A686-B7DC-0391-8EAD3253E505} - C:\ProgramData\RoyaLCaoupon\B.dll ()
O3 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe" File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BringMeSports Search Scope Monitor] "C:\PROGRA~1\BRINGM~2\bar\1.bin\1csrchmn.exe" /m=2 /w /h File not found
O4 - HKLM..\Run: [BringMeSports_1c Browser Plugin Loader] C:\PROGRA~1\BRINGM~2\bar\1.bin\1cbrmon.exe File not found
O4 - HKLM..\Run: [C0130Mon.exe] C:\Windows\C0130Mon.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [DictionaryBoss Browser Plugin Loader] C:\PROGRA~1\DICTIO~2\bar\1.bin\v4brmon.exe File not found
O4 - HKLM..\Run: [DictionaryBoss Search Scope Monitor] "C:\PROGRA~1\DICTIO~2\bar\1.bin\v4srchmn.exe" /m=2 /w /h File not found
O4 - HKLM..\Run: [Iminent] C:\Program Files\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C" File not found
O4 - HKLM..\Run: [IminentMessenger] C:\Program Files\Iminent\Iminent.Messengers.exe File not found
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PCFixSpeed] "C:\Program Files\PCFixSpeed\PCFixTray.exe" /startup File not found
O4 - HKLM..\Run: [SearchProtectAll] C:\Program Files\SearchProtect\bin\cltmng.exe File not found
O4 - HKLM..\Run: [SMessaging] C:\Users\SD\AppData\Local\Strongvault Online Backup\SMessaging.exe File not found
O4 - HKLM..\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe File not found
O4 - HKLM..\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [BackupAgent] C:\Program Files\Strongvault Online Backup\BackupAgent.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [bomlabio] C:\Windows\System32\regsvr32.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [CRE] rundll32 "C:\Users\SD\AppData\Local\Macromedia\CRE\aejb.dll",DllRegisterServer File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [Creative Live! Cam Manager] C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [Facebook Update] C:\Users\SD\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [LiveSupport] C:\Program Files\LiveSupport\LiveSupport.exe (PC Utilities Software Limited)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [Optimizer Pro] C:\Program Files\Optimizer Pro\OptProLauncher.exe (PC Utilities Software Limited)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [PC Health Kit] C:\Program Files\PC Health Kit\PCHKLauncher.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [PCSpeedUp] C:\Program Files\PC Speed Up\PCSUNotifier.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [SearchProtect] C:\Users\SD\AppData\Roaming\SearchProtect\bin\cltmng.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [UpdateChecker] C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A0B199DF-F524-4F07-B7AF-B389E3BAD1B9}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (c:\progra~1\optimi~1\optpro~1.dll) - c:\Program Files\Optimizer Pro\OptProCrash.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 14:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\Shell - "" = AutoRun
O33 - MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\Shell\AutoRun\command - "" = E:\iLinker.exe
O34 - HKLM BootExecute: (autocheck autochk /r \??\C:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/07/18 12:37:38 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\SD\Desktop\OTL.exe
[2014/07/15 15:42:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec Endpoint Protection
[2014/07/08 11:59:34 | 011,204,096 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerInstaller.exe
[2014/07/04 12:16:17 | 000,000,000 | ---D | C] -- C:\ProgramData\LucikyShopppero
[2014/06/20 17:50:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Config
[2014/04/29 15:22:52 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Users\SD\AppData\Roaming\vtkji.dll
[2013/10/28 12:24:12 | 000,699,536 | ---- | C] (MindSpark) -- C:\Program Files\64Uninstall TelevisionFanatic.dll
[43 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014/07/18 12:46:57 | 000,019,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/07/18 12:46:57 | 000,019,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/07/18 12:44:06 | 000,636,864 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/07/18 12:44:06 | 000,110,980 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/07/18 12:39:32 | 000,000,874 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/07/18 12:38:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/07/18 12:38:22 | 305,214,193 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014/07/18 12:38:22 | 1602,838,528 | -HS- | M] () -- C:\hiberfil.sys
[2014/07/18 07:12:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SD\Desktop\OTL.exe
[2014/07/17 22:30:58 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/07/17 21:58:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/07/17 20:51:00 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3582916375-2484087044-2242058153-1000UA.job
[2014/07/17 13:51:00 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3582916375-2484087044-2242058153-1000Core.job
[2014/07/11 17:16:29 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2014/07/08 11:59:37 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/07/08 11:59:37 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/07/08 11:59:34 | 011,204,096 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerInstaller.exe
[2014/07/02 13:56:14 | 000,002,229 | ---- | M] () -- C:\Users\SD\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/07/02 13:56:13 | 000,002,205 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[43 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014/07/01 21:52:58 | 000,001,199 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\StrongVaultApp.exe.lnk
[2014/06/16 11:52:58 | 000,162,304 | ---- | C] () -- C:\Windows\System32\netupdsrv.exe
[2014/06/16 11:52:48 | 000,111,104 | ---- | C] () -- C:\Windows\System32\installd.exe
[2014/06/16 11:52:36 | 000,180,224 | ---- | C] () -- C:\Windows\System32\nethtsrv.exe
[2014/06/16 11:52:28 | 000,108,544 | ---- | C] () -- C:\Windows\System32\hfnapi.dll
[2014/06/16 11:52:18 | 000,246,784 | ---- | C] () -- C:\Windows\System32\hfpapi.dll
[2014/04/25 15:25:18 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/10/28 12:24:12 | 000,172,456 | ---- | C] () -- C:\Program Files\64res.dll
[2013/08/13 20:51:28 | 000,000,258 | RHS- | C] () -- C:\Users\SD\ntuser.pol
[2012/08/23 21:39:33 | 000,000,139 | RHS- | C] () -- C:\ProgramData\3002.xml
[2012/06/12 16:40:08 | 000,011,904 | RHS- | C] () -- C:\ProgramData\3002.abs
[2011/11/02 20:48:09 | 000,003,584 | ---- | C] () -- C:\Users\SD\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/09 20:31:14 | 001,648,418 | ---- | C] () -- C:\Users\SD\AppData\Roaming\UserTile.png
[2011/08/09 15:58:53 | 000,000,000 | ---- | C] () -- C:\Users\SD\AppData\Roaming\wklnhst.dat
 
========== ZeroAccess Check ==========
 
[2009/07/13 21:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
"" = \\?\globalroot\Device\HarddiskVolume2\Users\SD\AppData\Local\Temp\sqxsqmc\sieewwi\wow.dll
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 18:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 05:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 18:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:373E1720

< End of report >
 


  • 0

#6
zep516
Posted 18 July 2014 - 05:43 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
Hello,

Please uninstall these programs from your programs an Features list.
1-Search Protect
2-Optimizer Pro v3.2
3-Java™ 6 Update 33

Next

We need to do a fix to delete some files using OTL
  • Double click on the OTLicon.jpg to open the program. On Vista/Win7/Win8 right click select Run As Administrator to start the program. If prompted by UAC, please allow it.
  • Under the Custom Scans/Fixes box at the bottom, paste in the following


    :COMMANDS
[CREATERESTOREPOINT]

:OTL
IE - HKLM\..\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...00459E1EA&SSPV=
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://search.condui...00459E1EA&SSPV=
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{3263CB61-5DB4-4374-9915-094F0025CC23}: "URL" = http://search.condui...1451502827&UM=2
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}: "URL" = http://badoo.com/sta...q={searchTerms}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{A531D99C-5A22-449b-83DA-872725C6D0ED}: "URL" = http://search.alot.c...n=1.3.0001.0(B)
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{DBA92C81-0B14-4C16-9726-FA934BD121BE}: "URL" = http://websearch.ask...C4-8381B88D7D5D
IE - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\SearchScopes\{EE5DF51A-8FF6-4C29-AF15-4C46CE0A32B8}: "URL" = http://www.mysearchr...q={searchTerms}
[2014/04/25 15:24:29 | 000,000,000 | ---D | M] (Media Buzz) -- C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF
[2014/05/14 15:16:54 | 000,000,000 | ---D | M] (Rich Media View) -- C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF
O2 - BHO: (Rich Media View) - {cbb43159-b72c-46d2-a380-2760e6d53311} - C:\Program Files\RichMediaViewV1\RichMediaViewV1release7578\ie\RichMediaViewV1release7578.dll File not found
O2 - BHO: (RoyaLCaoupon) - {EFB5D8DC-A686-B7DC-0391-8EAD3253E505} - C:\ProgramData\RoyaLCaoupon\B.dll ()
O3 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe" File not found
O4 - HKLM..\Run: [BringMeSports Search Scope Monitor] "C:\PROGRA~1\BRINGM~2\bar\1.bin\1csrchmn.exe" /m=2 /w /h File not found
O4 - HKLM..\Run: [BringMeSports_1c Browser Plugin Loader] C:\PROGRA~1\BRINGM~2\bar\1.bin\1cbrmon.exe File not found
O4 - HKLM..\Run: [DictionaryBoss Browser Plugin Loader] C:\PROGRA~1\DICTIO~2\bar\1.bin\v4brmon.exe File not found
O4 - HKLM..\Run: [DictionaryBoss Search Scope Monitor] "C:\PROGRA~1\DICTIO~2\bar\1.bin\v4srchmn.exe" /m=2 /w /h File not found
O4 - HKLM..\Run: [Iminent] C:\Program Files\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C" File not found
O4 - HKLM..\Run: [IminentMessenger] C:\Program Files\Iminent\Iminent.Messengers.exe File not found
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe ()
O4 - HKLM..\Run: [PCFixSpeed] "C:\Program Files\PCFixSpeed\PCFixTray.exe" /startup File not found
O4 - HKLM..\Run: [SearchProtectAll] C:\Program Files\SearchProtect\bin\cltmng.exe File not found
O4 - HKLM..\Run: [SMessaging] C:\Users\SD\AppData\Local\Strongvault Online Backup\SMessaging.exe File not found
O4 - HKLM..\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe File not found
O4 - HKLM..\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [BackupAgent] C:\Program Files\Strongvault Online Backup\BackupAgent.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [CRE] rundll32 "C:\Users\SD\AppData\Local\Macromedia\CRE\aejb.dll",DllRegisterServer File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [LiveSupport] C:\Program Files\LiveSupport\LiveSupport.exe (PC Utilities Software Limited)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [Optimizer Pro] C:\Program Files\Optimizer Pro\OptProLauncher.exe (PC Utilities Software Limited)
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [PC Health Kit] C:\Program Files\PC Health Kit\PCHKLauncher.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [PCSpeedUp] C:\Program Files\PC Speed Up\PCSUNotifier.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [SearchProtect] C:\Users\SD\AppData\Roaming\SearchProtect\bin\cltmng.exe File not found
O4 - HKU\S-1-5-21-3582916375-2484087044-2242058153-1000..\Run: [UpdateChecker] C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe ()
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Value error. File not found
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33) 
O20 - AppInit_DLLs: (c:\progra~1\optimi~1\optpro~1.dll) - c:\Program Files\Optimizer Pro\OptProCrash.dll ()
O33 - MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\Shell - "" = AutoRun
O33 - MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\Shell\AutoRun\command - "" = E:\iLinker.exe
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:373E1720

:Files

ipconfig /flushdns /c
C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe
C:\Program Files\Mobogenie\DaemonProcess.exe
C:\Users\SD\AppData\Local\FilesFrog Update Checker\update_checker.exe
C:\Program Files\Mobogenie\DCR.dll
C:\Program Files\Mobogenie\Device.dll


:Commands

[emptytemp]
[resethosts]
  • Make sure all other windows are closed.
  • Click the Run Fix button at the top
  • Let the program run uninterrupted. The computer should reboot when the scan is done. If not, please reboot the computer.
  • Post the log that is found in C:\_OTL\Moved Files in your next reply.
  • Open OTL again and click the Quick Scan button.
In your next reply post:

1- OTL Fix log, that will pop up in front of you after fix runs.
2- New OTL after quick scan is run.

Thanks
Joe :)
  • 0

#7
crownsteelCAD
Posted 24 July 2014 - 08:11 AM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

ok. will do.


  • 0

#8
crownsteelCAD
Posted 06 August 2014 - 02:09 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

OTL MOVED FILES:

 

 

All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8c9ef753-beb6-4582-b653-93ac59274437}\ not found.
HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{3263CB61-5DB4-4374-9915-094F0025CC23}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3263CB61-5DB4-4374-9915-094F0025CC23}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8A244612-A1F7-11E0-95C0-E71F4824019B}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8c9ef753-beb6-4582-b653-93ac59274437}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{A531D99C-5A22-449b-83DA-872725C6D0ED}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A531D99C-5A22-449b-83DA-872725C6D0ED}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DBA92C81-0B14-4C16-9726-FA934BD121BE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBA92C81-0B14-4C16-9726-FA934BD121BE}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EE5DF51A-8FF6-4C29-AF15-4C46CE0A32B8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE5DF51A-8FF6-4C29-AF15-4C46CE0A32B8}\ not found.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome\content\icons\default folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome\content\icons folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome\content folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome\content\icons\default folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome\content\icons folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome\content folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cbb43159-b72c-46d2-a380-2760e6d53311}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cbb43159-b72c-46d2-a380-2760e6d53311}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EFB5D8DC-A686-B7DC-0391-8EAD3253E505}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EFB5D8DC-A686-B7DC-0391-8EAD3253E505}\ deleted successfully.
C:\ProgramData\RoyaLCaoupon\B.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\BringMeSports Search Scope Monitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\BringMeSports_1c Browser Plugin Loader deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DictionaryBoss Browser Plugin Loader deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DictionaryBoss Search Scope Monitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Iminent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IminentMessenger deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon deleted successfully.
C:\Program Files\Mobogenie\DaemonProcess.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PCFixSpeed deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SearchProtectAll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SMessaging deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TelevisionFanatic Browser Plugin Loader deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TelevisionFanatic Search Scope Monitor deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\BackupAgent deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Badoo Desktop deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CRE deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\LiveSupport deleted successfully.
C:\Program Files\LiveSupport\LiveSupport.exe moved successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Optimizer Pro not found.
File C:\Program Files\Optimizer Pro\OptProLauncher.exe not found.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\PC Health Kit deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\PCSpeedUp deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\SearchProtect deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\UpdateChecker deleted successfully.
C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~1\optimi~1\optpro~1.dll deleted successfully.
File c:\Program Files\Optimizer Pro\OptProCrash.dll not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ not found.
File E:\iLinker.exe not found.
ADS C:\ProgramData\TEMP:373E1720 deleted successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\SD\Desktop\cmd.bat deleted successfully.
C:\Users\SD\Desktop\cmd.txt deleted successfully.
File\Folder C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe not found.
File\Folder C:\Program Files\Mobogenie\DaemonProcess.exe not found.
C:\Users\SD\AppData\Local\FilesFrog Update Checker\update_checker.exe moved successfully.
C:\Program Files\Mobogenie\DCR.dll moved successfully.
C:\Program Files\Mobogenie\Device.dll moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Public
 
User: SD
->Temp folder emptied: 6113133 bytes
->Temporary Internet Files folder emptied: 1922544604 bytes
->Java cache emptied: 149155 bytes
->Google Chrome cache emptied: 211016549 bytes
->Flash cache emptied: 128454 bytes
 
%systemdrive% .tmp files removed: 35037 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1762379309 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 3,722.00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.69.0 log created on 08062014_124045

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
 


  • 0

#9
crownsteelCAD
Posted 06 August 2014 - 02:10 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

OTL FIX LOG:

 

All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8c9ef753-beb6-4582-b653-93ac59274437}\ not found.
HKU\S-1-5-21-3582916375-2484087044-2242058153-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{3263CB61-5DB4-4374-9915-094F0025CC23}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3263CB61-5DB4-4374-9915-094F0025CC23}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8A244612-A1F7-11E0-95C0-E71F4824019B}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8c9ef753-beb6-4582-b653-93ac59274437}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8c9ef753-beb6-4582-b653-93ac59274437}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{A531D99C-5A22-449b-83DA-872725C6D0ED}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A531D99C-5A22-449b-83DA-872725C6D0ED}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DBA92C81-0B14-4C16-9726-FA934BD121BE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBA92C81-0B14-4C16-9726-FA934BD121BE}\ not found.
Registry key HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EE5DF51A-8FF6-4C29-AF15-4C46CE0A32B8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE5DF51A-8FF6-4C29-AF15-4C46CE0A32B8}\ not found.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome\content\icons\default folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome\content\icons folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome\content folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF\chrome folder moved successfully.
C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome\content\icons\default folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome\content\icons folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome\content folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF\chrome folder moved successfully.
C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cbb43159-b72c-46d2-a380-2760e6d53311}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cbb43159-b72c-46d2-a380-2760e6d53311}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EFB5D8DC-A686-B7DC-0391-8EAD3253E505}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EFB5D8DC-A686-B7DC-0391-8EAD3253E505}\ deleted successfully.
C:\ProgramData\RoyaLCaoupon\B.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\BringMeSports Search Scope Monitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\BringMeSports_1c Browser Plugin Loader deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DictionaryBoss Browser Plugin Loader deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DictionaryBoss Search Scope Monitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Iminent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IminentMessenger deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon deleted successfully.
C:\Program Files\Mobogenie\DaemonProcess.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PCFixSpeed deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SearchProtectAll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SMessaging deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TelevisionFanatic Browser Plugin Loader deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TelevisionFanatic Search Scope Monitor deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\BackupAgent deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Badoo Desktop deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CRE deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\LiveSupport deleted successfully.
C:\Program Files\LiveSupport\LiveSupport.exe moved successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Optimizer Pro not found.
File C:\Program Files\Optimizer Pro\OptProLauncher.exe not found.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\PC Health Kit deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\PCSpeedUp deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\SearchProtect deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3582916375-2484087044-2242058153-1000\Software\Microsoft\Windows\CurrentVersion\Run\\UpdateChecker deleted successfully.
C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~1\optimi~1\optpro~1.dll deleted successfully.
File c:\Program Files\Optimizer Pro\OptProCrash.dll not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b2e3f2ee-6839-11e2-bc8d-001641fdd8ab}\ not found.
File E:\iLinker.exe not found.
ADS C:\ProgramData\TEMP:373E1720 deleted successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\SD\Desktop\cmd.bat deleted successfully.
C:\Users\SD\Desktop\cmd.txt deleted successfully.
File\Folder C:\Users\SD\AppData\Local\UpdateChecker\UpdateCheckerApp.exe not found.
File\Folder C:\Program Files\Mobogenie\DaemonProcess.exe not found.
C:\Users\SD\AppData\Local\FilesFrog Update Checker\update_checker.exe moved successfully.
C:\Program Files\Mobogenie\DCR.dll moved successfully.
C:\Program Files\Mobogenie\Device.dll moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Public
 
User: SD
->Temp folder emptied: 6113133 bytes
->Temporary Internet Files folder emptied: 1922544604 bytes
->Java cache emptied: 149155 bytes
->Google Chrome cache emptied: 211016549 bytes
->Flash cache emptied: 128454 bytes
 
%systemdrive% .tmp files removed: 35037 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1762379309 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 3,722.00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.69.0 log created on 08062014_124045

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
 


  • 0

#10
crownsteelCAD
Posted 06 August 2014 - 02:11 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

OTL QUICK SCAN :

 

 

OTL logfile created on: 8/6/2014 12:54:56 PM - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\SD\Desktop
 Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
1.99 Gb Total Physical Memory | 1.31 Gb Available Physical Memory | 65.83% Memory free
3.98 Gb Paging File | 3.23 Gb Available in Paging File | 81.09% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.43 Gb Total Space | 38.52 Gb Free Space | 51.75% Space Free | Partition Type: NTFS
Drive E: | 1.92 Gb Total Space | 1.58 Gb Free Space | 82.10% Space Free | Partition Type: FAT
 
Computer Name: SD-PC | User Name: SD | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/07/18 07:12:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SD\Desktop\OTL.exe
PRC - [2014/05/08 04:20:58 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/11/22 19:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 05:16:54 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2010/08/05 19:11:44 | 001,885,488 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2010/08/05 19:05:52 | 001,459,568 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2010/07/01 17:17:24 | 001,832,072 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2010/05/06 17:21:54 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2007/06/07 14:01:38 | 000,155,648 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
PRC - [2007/03/12 14:49:46 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007/03/12 14:49:26 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2006/10/02 18:00:00 | 000,032,768 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\C0130Mon.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2011/11/02 00:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/02 00:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2004/01/22 18:36:28 | 000,120,832 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
 
 
========== Services (SafeList) ==========
 
SRV - File not found [Auto | Stopped] -- C:\Windows\system32\netupdsrv.exe -- (ServiceUpdater)
SRV - File not found [Auto | Stopped] -- C:\Windows\system32\nethtsrv.exe -- (NetHttpService)
SRV - [2014/07/08 11:59:38 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/05/08 04:20:58 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/05/26 21:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/02/28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/08/09 15:12:27 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/08/05 19:11:44 | 001,885,488 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2010/07/01 17:17:24 | 001,832,072 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2010/07/01 16:24:02 | 000,357,704 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2010/02/17 10:53:18 | 003,093,880 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2009/07/13 18:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2014/07/14 08:50:56 | 001,612,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20140805.017\NAVEX15.SYS -- (NAVEX15)
DRV - [2014/07/14 08:50:56 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20140805.017\NAVENG.SYS -- (NAVENG)
DRV - [2014/06/10 01:00:00 | 000,377,648 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2014/06/10 01:00:00 | 000,109,872 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012/10/02 23:32:22 | 000,174,056 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wpshelper.sys -- (WpsHelper)
DRV - [2011/08/09 17:03:48 | 000,125,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/11/20 03:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 02:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/08/05 19:11:48 | 000,099,696 | ---- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\SysPlant.sys -- (SysPlant)
DRV - [2010/08/05 19:08:14 | 000,043,376 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\WPSDRVnt.sys -- (WPS)
DRV - [2010/03/08 12:59:14 | 000,320,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2010/03/08 12:59:14 | 000,283,184 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2010/03/08 12:59:14 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2009/12/28 12:42:26 | 000,067,472 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Teefer2.sys -- (Teefer2)
DRV - [2009/12/18 15:42:12 | 000,421,424 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/09/03 16:03:48 | 000,188,080 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\symtdi.sys -- (SYMTDI)
DRV - [2009/09/03 16:03:48 | 000,026,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\symredrv.sys -- (SYMREDRV)
DRV - [2009/07/13 15:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009/07/10 14:23:10 | 000,105,344 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009/07/10 14:23:10 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009/07/10 14:23:10 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2007/06/10 18:01:00 | 000,142,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Afx.sys -- (VC0130Afx)
DRV - [2007/04/17 18:00:00 | 000,690,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Vid.sys -- (VC0130Dev)
DRV - [2007/03/27 18:00:00 | 000,094,976 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Aud.sys -- (VC0130Aud)
DRV - [2007/01/15 17:57:08 | 000,031,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\livecamv.sys -- (RLDesignVirtualAudioCableWdm)
DRV - [2006/06/19 18:05:00 | 000,006,912 | ---- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\C0130Vfx.sys -- (VC0130Vfx)
DRV - [2005/08/17 08:47:48 | 000,073,696 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdserd.sys -- (sscdserd)
DRV - [2005/08/17 08:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 08:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 08:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\..\SearchScopes,DefaultScope = {3263CB61-5DB4-4374-9915-094F0025CC23}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\SD\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\MediaBuzzV1\MediaBuzzV1mode5379\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\RichMediaViewV1\RichMediaViewV1release7578\ff
 
[2013/10/28 14:31:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/09/08 08:27:45 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/09/08 08:27:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MEDIABUZZV1\MEDIABUZZV1MODE5379\FF
File not found (No name found) -- C:\PROGRAM FILES\RICHMEDIAVIEWV1\RICHMEDIAVIEWV1RELEASE7578\FF
 
========== Chrome  ==========
 
CHR - default_search_provider: Trovi search (Enabled)
CHR - default_search_provider: search_url = http://search.condui...rchTerms}&SSPV=
CHR - default_search_provider: suggest_url = http://suggest.searc...={searchTerms},
CHR - homepage: http://search.condui...00459E1EA&SSPV=
CHR - plugin: Default Profile (Enabled) = default_plugin
CHR - plugin: Error reading preferences file
CHR - Extension: couponuPeaK = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\akcnenkcdfaofkejelnakmjombmnkpdm\3.1\
CHR - Extension: Youtube HD Enabler = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdiejhidnbholnbhiahjbbogcgmlihke\167\
CHR - Extension: Google Voice Search Hotword (Beta) = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5019_0\
CHR - Extension: Adblock Plus = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.3_0\
CHR - Extension: ShoppeRMaasiter = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhbiegbpjegbgeofmjdiehejankpappd\1.7\
CHR - Extension: Permanent Readability = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkoadlaadbnnaipkigapbbgbclcdhkaf\231\
CHR - Extension: Plus-HD-9.3 = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngfnjclpjflgomhidfecidndbfaniak\1.26.84_0\
CHR - Extension: TxtMakEEri = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianajbclejppiildmnfcemglggnifclj\1.6\
CHR - Extension: Media Buzz = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\idjgahopfhdbgokabpfcdmjfhnemfcol\1.1_0\
CHR - Extension: Remoku = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbcoebcjaiiejopnadjlknjhifadnlg\248\
CHR - Extension: Google Wallet = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Rich Media View = C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnlghnkkahhgbfnkhdgmljndfkpmifl\1.1_0\
 
O1 HOSTS File: ([2014/08/06 12:48:12 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1       localhost
O2 - BHO: (LuckkySuhOpper) - {5055118F-FB85-D4B0-9397-64D3B3F4D6F8} - C:\ProgramData\LuckkySuhOpper\HEu51Ww.dll ()
O2 - BHO: (PdfMaker) - {75AC1D1F-101B-8D81-D787-2964E2B4479D} - C:\ProgramData\PdfMaker\PgkBxh.dll ()
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (LucikyShopppero) - {C1C87366-FFD9-923E-F7C6-2923A860FE06} - C:\ProgramData\LucikyShopppero\1.dll ()
O2 - BHO: (SaveRAiddon) - {C40439BD-4110-B1A2-0A3E-4B32D76BA185} - C:\ProgramData\SaveRAiddon\Evx.dll ()
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [C0130Mon.exe] C:\Windows\C0130Mon.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [bomlabio] C:\Windows\System32\regsvr32.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Creative Live! Cam Manager] C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe (Creative Technology Ltd.)
O4 - HKCU..\Run: [Facebook Update] C:\Users\SD\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A0B199DF-F524-4F07-B7AF-B389E3BAD1B9}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 14:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk /r \??\C:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/08/06 12:40:45 | 000,000,000 | ---D | C] -- C:\_OTL
[2014/08/06 12:38:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\SD\Desktop\OTL.exe
[2014/08/04 16:18:26 | 000,000,000 | ---D | C] -- C:\ProgramData\LuckkySuhOpper
[2014/07/24 18:03:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec Endpoint Protection
[2014/07/24 18:01:57 | 000,000,000 | ---D | C] -- C:\Users\SD\AppData\Local\Symantec
[2014/07/24 18:00:59 | 000,000,000 | ---D | C] -- C:\Users\SD\AppData\Local\VirtualStore
[2014/04/29 15:22:52 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Users\SD\AppData\Roaming\vtkji.dll
[2013/10/28 12:24:12 | 000,699,536 | ---- | C] (MindSpark) -- C:\Program Files\64Uninstall TelevisionFanatic.dll
 
========== Files - Modified Within 30 Days ==========
 
[2014/08/06 12:58:11 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/08/06 12:57:32 | 000,019,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/08/06 12:57:32 | 000,019,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/08/06 12:54:45 | 000,636,864 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/08/06 12:54:45 | 000,110,980 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/08/06 12:50:19 | 000,000,874 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/08/06 12:50:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/08/06 12:49:57 | 1602,838,528 | -HS- | M] () -- C:\hiberfil.sys
[2014/08/06 12:48:12 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2014/08/06 12:18:32 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/08/05 21:08:41 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3582916375-2484087044-2242058153-1000UA.job
[2014/07/19 13:51:00 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3582916375-2484087044-2242058153-1000Core.job
[2014/07/18 12:38:22 | 305,214,193 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014/07/18 07:12:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SD\Desktop\OTL.exe
[2014/07/11 17:16:29 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
 
========== Files Created - No Company Name ==========
 
[2014/06/16 11:52:48 | 000,111,104 | ---- | C] () -- C:\Windows\System32\installd.exe
[2014/04/25 15:25:18 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/10/28 12:24:12 | 000,172,456 | ---- | C] () -- C:\Program Files\64res.dll
[2013/08/13 20:51:28 | 000,000,258 | RHS- | C] () -- C:\Users\SD\ntuser.pol
[2012/08/23 21:39:33 | 000,000,139 | RHS- | C] () -- C:\ProgramData\3002.xml
[2012/06/12 16:40:08 | 000,011,904 | RHS- | C] () -- C:\ProgramData\3002.abs
[2011/11/02 20:48:09 | 000,003,584 | ---- | C] () -- C:\Users\SD\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/09 20:31:14 | 001,648,418 | ---- | C] () -- C:\Users\SD\AppData\Roaming\UserTile.png
[2011/08/09 15:58:53 | 000,000,000 | ---- | C] () -- C:\Users\SD\AppData\Roaming\wklnhst.dat
 
========== ZeroAccess Check ==========
 
[2009/07/13 21:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
"" = \\?\globalroot\Device\HarddiskVolume2\Users\SD\AppData\Local\Temp\sqxsqmc\sieewwi\wow.dll
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 18:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 05:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 18:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2011/09/12 20:44:58 | 000,000,000 | ---D | M] -- C:\Users\SD\AppData\Roaming\Broderbund
[2014/07/29 21:36:24 | 000,000,000 | ---D | M] -- C:\Users\SD\AppData\Roaming\MP3Rocket
[2011/12/29 19:19:51 | 000,000,000 | ---D | M] -- C:\Users\SD\AppData\Roaming\OpenCandy
[2013/10/28 12:51:33 | 000,000,000 | ---D | M] -- C:\Users\SD\AppData\Roaming\Sammsoft
[2013/10/28 12:24:44 | 000,000,000 | ---D | M] -- C:\Users\SD\AppData\Roaming\Strongvault
[2011/10/12 21:30:27 | 000,000,000 | ---D | M] -- C:\Users\SD\AppData\Roaming\tmp
 
========== Purity Check ==========
 
 

< End of report >
 


  • 0

Advertisements

#11
zep516
Posted 07 August 2014 - 01:41 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
Hello,

Next

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
  • NOTE: If you get an error message, it means that nothing was found. Exit from AdwCleaner.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished and the PC has rebooted.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner
  • Next

    thisisujrt.gif Please download Junkware Removal Tool to your Desktop.

    Please close your security software to avoid potential conflicts.
    Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
    The tool will open and start scanning your system.
    Please be patient as this can take a while to complete, depending on your system's specifications.
    On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
    Please post the contents of JRT.txt into your reply.


    In your next reply post.

    1-AdwCleaner log
    1-JRT.txt log

    Thanks
    Joe :)

  • 0

#12
crownsteelCAD
Posted 11 August 2014 - 01:47 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

ok, Thanks Joe. I will do now.


  • 0

#13
crownsteelCAD
Posted 11 August 2014 - 02:19 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

Adwcleaner scan report:

 

# AdwCleaner v3.304 - Report created 11/08/2014 at 13:06:33
# Updated 08/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : SD - SD-PC
# Running from : C:\Users\SD\Desktop\adwcleaner_3.304.exe
# Option : Scan

***** [ Services ] *****

Service Found : NethxxpService
Service Found : ServiceUpdater

***** [ Files / Folders ] *****

File Found : \alotserviceruntime.log
File Found : \END
File Found : C:\alotserviceruntime.log
File Found : C:\END
File Found : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
File Found : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Found : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
File Found : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\SD\AppData\Roaming\LiveSupport.exe_log.txt
File Found : C:\Users\SD\AppData\Roaming\regsvr32.exe_log.txt
File Found : C:\Users\SD\daemonprocess.txt
File Found : C:\Users\SD\Desktop\LiveSupport.lnk
File Found : C:\Users\SD\Desktop\Sync Folder.lnk
Folder Found : C:\Program Files\Conduit
Folder Found : C:\Program Files\LiveSupport
Folder Found : C:\Program Files\MediaBuzzV1
Folder Found : C:\Program Files\Mobogenie
Folder Found : C:\Program Files\MyPC Backup
Folder Found : C:\Program Files\RichMediaViewV1
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\Conduit
Folder Found : C:\ProgramData\SaveRAiddon
Folder Found : C:\Users\SD\AppData\Local\Conduit
Folder Found : C:\Users\SD\AppData\Local\FilesFrog Update Checker
Folder Found : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngfnjclpjflgomhidfecidndbfaniak
Folder Found : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbcoebcjaiiejopnadjlknjhifadnlg
Folder Found : C:\Users\SD\AppData\Local\Mobogenie
Folder Found : C:\Users\SD\AppData\Local\savings explorer
Folder Found : C:\Users\SD\AppData\LocalLow\Conduit
Folder Found : C:\Users\SD\AppData\LocalLow\iac
Folder Found : C:\Users\SD\AppData\Roaming\OpenCandy
Folder Found : C:\Users\SD\AppData\Roaming\Strongvault
Folder Found : C:\Users\SD\Documents\Mobogenie
Folder Found : C:\Users\SD\Documents\Optimizer Pro
Folder Found : C:\Users\SD\Documents\PC Health Kit

***** [ Scheduled Tasks ] *****

Task Found : LaunchApp
Task Found : SomotoUpdateCheckerAutoStart

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Iminent
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKCU\Software\LiveSupport
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\conduit.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Popajar
Key Found : HKCU\Software\Somoto
Key Found : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Found : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Found : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Found : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Found : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Found : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Found : HKLM\SOFTWARE\Classes\SaveraAddoni.SaveraAddoni
Key Found : HKLM\SOFTWARE\Classes\SaveraAddoni.SaveraAddoni.4.7
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3289663
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Default Tab
Key Found : HKLM\Software\DefaultTab
Key Found : HKLM\Software\Iminent
Key Found : HKLM\Software\MediaBuzzV1
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\alotservice_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\alotservice_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\LiveSupport_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\livesupport_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-9_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-9_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\updatebomlabio_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\updatebomlabio_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\utilbomlabio_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\utilbomlabio_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2F4D7835-42B0-4BA7-9587-1B01393F78EE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Found : HKLM\Software\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16506


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [13406 octets] - [11/08/2014 13:06:33]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [13467 octets] ##########
 


  • 0

#14
crownsteelCAD
Posted 11 August 2014 - 02:20 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

Adwcleaner Clean log:

 

# AdwCleaner v3.304 - Report created 11/08/2014 at 13:11:00
# Updated 08/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : SD - SD-PC
# Running from : C:\Users\SD\Desktop\adwcleaner_3.304.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : NethxxpService
[#] Service Deleted : ServiceUpdater

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\ProgramData\SaveRAiddon
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\LiveSupport
Folder Deleted : C:\Program Files\MediaBuzzV1
Folder Deleted : C:\Program Files\Mobogenie
Folder Deleted : C:\Program Files\MyPC Backup
Folder Deleted : C:\Program Files\RichMediaViewV1
Folder Deleted : C:\Users\SD\AppData\Local\Conduit
Folder Deleted : C:\Users\SD\AppData\Local\FilesFrog Update Checker
Folder Deleted : C:\Users\SD\AppData\Local\Mobogenie
Folder Deleted : C:\Users\SD\AppData\Local\savings explorer
Folder Deleted : C:\Users\SD\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\SD\AppData\LocalLow\iac
Folder Deleted : C:\Users\SD\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\SD\AppData\Roaming\Strongvault
Folder Deleted : C:\Users\SD\Documents\Mobogenie
Folder Deleted : C:\Users\SD\Documents\Optimizer Pro
Folder Deleted : C:\Users\SD\Documents\PC Health Kit
Folder Deleted : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbcoebcjaiiejopnadjlknjhifadnlg
Folder Deleted : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngfnjclpjflgomhidfecidndbfaniak
File Deleted : C:\alotserviceruntime.log
File Deleted : C:\END
File Deleted : C:\Users\SD\daemonprocess.txt
File Deleted : C:\Users\SD\AppData\Roaming\LiveSupport.exe_log.txt
File Deleted : C:\Users\SD\AppData\Roaming\regsvr32.exe_log.txt
File Deleted : C:\Users\SD\Desktop\LiveSupport.lnk
File Deleted : C:\Users\SD\Desktop\Sync Folder.lnk
File Deleted : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
File Deleted : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
File Deleted : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

Task Deleted : LaunchApp
Task Deleted : SomotoUpdateCheckerAutoStart

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\conduit.com
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\alotservice_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\alotservice_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LiveSupport_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\livesupport_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-9_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-9_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updatebomlabio_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updatebomlabio_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\utilbomlabio_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\utilbomlabio_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\SaveraAddoni.SaveraAddoni
Key Deleted : HKLM\SOFTWARE\Classes\SaveraAddoni.SaveraAddoni.4.7
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289663
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2F4D7835-42B0-4BA7-9587-1B01393F78EE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C40439BD-4110-B1A2-0A3E-4B32D76BA185}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\LiveSupport
Key Deleted : HKCU\Software\Popajar
Key Deleted : HKCU\Software\Somoto
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\DefaultTab
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\MediaBuzzV1
Key Deleted : HKLM\Software\Speedchecker Limited
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16506


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\SD\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [13548 octets] - [11/08/2014 13:06:33]
AdwCleaner[S0].txt - [13763 octets] - [11/08/2014 13:11:00]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [13824 octets] ##########
 


  • 0

#15
crownsteelCAD
Posted 11 August 2014 - 02:29 PM

crownsteelCAD

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts

JRT TXT LOG:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x86
Ran by SD on Mon 08/11/2014 at 13:23:03.23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pchealthboost_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pchealthboost_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\strongvaultapp_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\strongvaultapp_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110211101158}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_02042013_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_02042013_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211101158}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\SD\Local Settings\Application Data\bomlabio"
Successfully deleted: [Folder] "C:\Users\SD\Local Settings\Application Data\cre"
Successfully deleted: [Folder] "C:\Program Files\bomlabio"
Successfully deleted: [Folder] "C:\Windows\system32\ai_recyclebin"
Successfully deleted: [Folder] "C:\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\SD\appdata\local\{76DB7326-D48C-424A-BB8C-6F191D86616D}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 08/11/2014 at 13:25:12.00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP