API tools faq
paste
Advertisement
Guest User

Log

a guest
Aug 30th, 2015
440
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 43.53 KB | None | 0 0
raw download clone embed print report
  1.  
  2. Zoek.exe v5.0.0.0 Updated 04-May-2015
  3. Tool run by Alastor on Sat 08/29/2015 at 23:47:52.05.
  4. Microsoft Windows 8.1 6.3.9600 x64
  5. Running in: Normal Mode Internet Access Detected
  6. Launched: C:\Users\Alastor\Desktop\zoek.exe [Scan all users] [Checkboxes used]
  7.  
  8. ==== System Restore Info ======================
  9.  
  10. 8/29/2015 11:48:56 PM Zoek.exe System Restore Point Created Successfully.
  11.  
  12. ==== Running Processes ======================
  13.  
  14. C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
  15. C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
  16. C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
  17. C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  18. C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
  19. C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
  20. C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  21. C:\Program Files (x86)\Origin\Origin.exe
  22. C:\Program Files (x86)\Skype\Phone\Skype.exe
  23. C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
  24. C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
  25. C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
  26. C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe
  27. C:\Users\Alastor\Desktop\zoek.exe
  28. C:\WINDOWS\SysWOW64\cmd.exe
  29. C:\WINDOWS\SysWOW64\cmd.exe
  30. C:\WINDOWS\SysWOW64\cmd.exe
  31.  
  32. ==== System Specs ======================
  33.  
  34. Windows: Windows Version 6.2 (Build 9200)
  35. Memory (RAM): 8137 MB
  36. CPU Info: Intel(R) Core(TM) i7-4770K CPU @ 3.50GHz
  37. CPU Speed: 3500.3 MHz
  38. Sound Card: Speakers (Realtek High Definiti |
  39. Display Adapters: AMD Radeon HD 7800 Series | AMD Radeon HD 7800 Series | AMD Radeon HD 7800 Series | AMD Radeon HD 7800 Series | AMD Radeon HD 7800 Series | AMD Radeon HD 7800 Series
  40. Monitors: 1x; Dell E2414H (Analog - VGA) |
  41. Screen Resolution: 1920 X 1080 - 32 bit
  42. Network: Network Present
  43. Network Adapters: Microsoft Hosted Network Virtual Adapter | NETGEAR WNDA3100v2 N600 Wireless Dual Band USB Adapter | Realtek PCIe GBE Family Controller
  44. CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SH-224DB
  45. Ports: COM1 LPT1
  46. Mouse: 5 Button Wheel Mouse Present
  47. Hard Disks: C: 931.2GB
  48. Hard Disks - Free: C: 327.3GB
  49. Manufacturer *: American Megatrends Inc.
  50. BIOS Info: AT/AT COMPATIBLE | 04/26/13 | ALASKA - 1072009
  51. Time Zone: Mountain Standard Time
  52. Motherboard *: MSI Z87-G41 PC Mate(MS-7850)
  53. Country: United States
  54. Language: ENU
  55.  
  56. ==== System Specs (Software) ======================
  57.  
  58. Anti-Virus: Norton Security On-access scanning disabled (Outdated)
  59. Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
  60. Anti-Spyware: Windows Defender disabled (Outdated)
  61. Anti-Spyware: Norton Security disabled (Outdated)
  62. Firewall: Norton Security disabled
  63. Default Browser: Firefox 40.0.3
  64. Internet Explorer Version: 11.0.9600.17842
  65. Mozilla Firefox version: 40.0.3 (x86 en-US)
  66. Sun Java version: 1.8.0_45 (32-bit)
  67. Sun Java version: 1.8.0_45 (64-bit)
  68. Flash Player version: 18.0.0.232
  69.  
  70. ==== Files Recently Created / Modified ======================
  71.  
  72. ====== C:\WINDOWS ====
  73. ====== C:\Users\Alastor\AppData\Local\Temp ====
  74. ====== Java Cache =====
  75. ====== C:\WINDOWS\SysWOW64 =====
  76. ====== C:\WINDOWS\SysWOW64\drivers =====
  77. ====== C:\WINDOWS\Sysnative =====
  78. 2015-08-29 07:03:27 8265CD5C67D0A35DFC40F3D1A8AC994C 94656 ----a-w- C:\WINDOWS\Sysnative\WPRO_41_2001woem.tmp
  79. ====== C:\WINDOWS\Sysnative\drivers =====
  80. 2015-08-29 18:36:42 EBEE2CD97C1CEBB8CA53FBFECFF328E9 8214 ----a-w- C:\WINDOWS\Sysnative\drivers\SYMEVENT64x86.CAT
  81. 2015-08-29 18:36:42 6DF8F618B93C821630C9BAA8DA3FAAAF 111344 ----a-w- C:\WINDOWS\Sysnative\drivers\SYMEVENT64x86.SYS
  82. 2015-08-29 18:36:42 43687EBC193F837182769BEA27427142 855 ----a-w- C:\WINDOWS\Sysnative\drivers\SYMEVENT64x86.INF
  83. ====== C:\WINDOWS\Tasks ======
  84. ====== C:\WINDOWS\Temp ======
  85. ======= C:\Program Files =====
  86. ======= C:\PROGRA~2 =====
  87. 2015-08-29 00:14:34 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service
  88. ======= C: =====
  89. ====== C:\Users\Alastor\AppData\Roaming ======
  90. 2015-08-29 16:26:21 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CrashDumps
  91. 2015-08-29 06:55:42 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Temp
  92. 2015-08-29 06:50:28 -------- d-----w- C:\Users\Alastor\AppData\Local\NPE
  93. ====== C:\Users\Alastor ======
  94. 2015-08-30 03:55:05 AA4D5044E44A74CA5143BBFAA07EB348 2186752 ----a-w- C:\Users\Alastor\Desktop\FRST64.exe
  95. 2015-08-30 03:54:26 F49EC052F20332CC9DBFB01816C1262A 1690624 ----a-w- C:\Users\Alastor\Desktop\FRST.exe
  96. 2015-08-29 18:24:49 D3893975FBFD7F397B1B26158F48638F 129780392 ----a-w- C:\Users\Alastor\Downloads\NS-TW-22.5.0-EN-US.exe
  97. 2015-08-29 06:55:43 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp
  98. 2015-08-29 06:50:04 77A7519F29E8A4B06FA02F54DE9FE556 3088296 ----a-w- C:\Users\Alastor\Downloads\NPE.exe
  99. 2015-08-26 05:00:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  100.  
  101. ====== C: exe-files ==
  102. 2015-08-29 05:56:31 B1DF5AA4A1CCE20A6C88C4A24DE6E3E0 24560 ----a-w- C:\Program Files (x86)\Origin\igoproxy.exe
  103. 2015-08-29 05:56:31 5062B201067854695CA4B6E4531DCDAC 101368 ----a-w- C:\Program Files (x86)\Origin\UpdateTool.exe
  104. 2015-08-29 00:14:35 CC11EEB7AF4617D65DF0E9A21FC1ABD0 149160 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
  105. 2015-08-29 00:14:35 610D3AEBF5A6B99BB9DEDD593B8B9A47 88670 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe
  106. 2015-08-26 08:11:06 FF8F91506481B87511ED073C3114BA33 6038904 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\GIANTS_Editor_6.0.3_win64.exe
  107. 2015-08-26 08:11:06 9A15F1B90CF0D568651BCACBF4D74E36 5278288 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\GIANTS_Editor_6.0.3_win32.exe
  108. 2015-08-26 08:11:06 7B1CDAA3EBC1F33096398E43E7780416 3245744 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\giantsSDKPanel.exe
  109. 2015-08-26 08:11:06 7414EDE4B6431396CA3700B6AB39DECB 1652400 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\dedicatedServer.exe
  110. 2015-08-26 08:11:06 650EABDB3C60E7E87E91EE2A57CFE459 5534376 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\x86\FarmingSimulator2015Game.exe
  111. 2015-08-26 08:11:06 5F5BA6000C82BC4005341F9AF0F667BB 444592 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\FarmingSimulator2015.exe
  112. 2015-08-26 08:11:06 43D6EDD5DE7744F67281697E34FF6409 3620272 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\blender_i3d_export_6.0.2_win.exe
  113. 2015-08-26 08:11:06 41F4B5181D416F3C140CC1EF2F2CAE8E 9784592 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\max_i3d_export_6.0.2_win.exe
  114. 2015-08-26 08:11:06 09D03780C598F917472C4FFBA3E101BB 6613224 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
  115. 2015-08-26 08:11:06 035CFDBBC5C97F165A45B2A849F9027A 8714632 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\maya_i3d_export_6.0.2_win.exe
  116. 2015-08-26 08:11:03 BF3F290275C21BDD3951955C9C3CF32C 517976 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\_CommonRedist\DirectX\Jun2010\DXSETUP.exe
  117. 2015-08-25 22:33:58 CBA8D3818E9EFA0127C4C26A19A1401B 39592 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\appsharinghookcontroller64.exe
  118. 2015-08-25 22:33:58 2AF758F121FC60DDAF85A473A8390683 1134296 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\olicenseheartbeat.exe
  119. 2015-08-25 22:33:57 C18CE8C7F28584600C8A4A9A25CFCF8B 550584 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\msosqm.exe
  120. 2015-08-25 22:33:55 9B0774D82D4F152803F347224E874FFC 84208 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
  121. 2015-08-25 22:33:55 5D858660962C7EB8988CBD6EF81DD684 5767896 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\cmigrate.exe
  122. 2015-08-25 22:33:54 C1C83DDF46ABE62AFA9EBBE7D584C782 474344 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dwtrig20.exe
  123. 2015-08-25 22:33:54 BF03BC8867B80284A82922C218B5CB03 7886552 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\cmigrate.exe
  124. 2015-08-25 22:33:54 6081EDF1034BB90FD8E8732DCACEC782 842448 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dw20.exe
  125. 2015-08-25 22:33:51 BF86055AE9457B40E0E4C2B8AE0775CB 1923232 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\winword.exe
  126. 2015-08-25 22:33:50 1C8ACFAF61121D60E9FDCD7733C88F3B 911016 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\ucmapi.exe
  127. 2015-08-25 22:33:49 92FAD266D88530BC6C18E702DA87C265 528584 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\vpreview.exe
  128. 2015-08-25 22:33:48 BE953AF147A381A5567AE3B361B0A8BF 18996392 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\outlook.exe
  129. 2015-08-25 22:33:47 4F3B7BEF36C1D880621A0FD66D0E5455 1846960 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\powerpnt.exe
  130. 2015-08-25 22:33:47 2159DF7D4CBC69B4770A1B9749CC69BA 874160 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe
  131. 2015-08-25 22:33:47 16BE056CD7D714DFCD21873A612E0395 480984 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\selfcert.exe
  132. 2015-08-25 22:33:40 6D014B13661E482C79AF4EB111AEB2E3 8736960 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\groove.exe
  133. 2015-08-25 22:33:40 5A8165E50FEDB7CD3BAD4E3F8BEF265E 517360 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\iecontentservice.exe
  134. 2015-08-25 22:33:40 23EEC6286CA3F0534853F41978DA15A1 6737064 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\lynchtmlconv.exe
  135. 2015-08-25 22:33:39 86577112ED2C9D9131090527BA45646E 569592 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\orgchart.exe
  136. 2015-08-25 22:33:37 B7C90235D87EB10185419A081A19C5A9 1763496 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\onenote.exe
  137. 2015-08-25 22:33:37 42DB0EC3FC3D3B87BBC7612F37E02E97 1544920 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\ocpubmgr.exe
  138. 2015-08-25 22:33:37 2A9577C88480519794ED2905ED518521 161480 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\msosrec.exe
  139. 2015-08-25 22:33:37 25C0A7EA906302A835ED1516D55F4C8D 15519912 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\msaccess.exe
  140. 2015-08-25 22:33:36 E02E443A0704291514E35C0359FF0499 24055464 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\lync.exe
  141. 2015-08-25 22:33:36 957A0772C7AC1B2215F25248E6D8AC75 21938336 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe
  142. 2015-08-25 22:33:35 D640EB9759D69BE3AB0BB99EA43A7AA4 25722016 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excel.exe
  143. 2015-08-25 22:33:31 9A513223FA9D3A12404054B46AD47579 631504 ----a-w- C:\Program Files\Microsoft Office 15\root\integration\integrator.exe
  144. 2015-08-25 22:33:31 2D271487369D8F9B06F5EB78287DD594 33448 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\appsharinghookcontroller.exe
  145. === C: other files ==
  146. 2015-08-27 15:07:09 246BAAE7D68F4C0DB0420165E2042B70 19279374 ----a-w- C:\Program Files (x86)\Steam\userdata\24730877\ugc\referenced\692780739181471306\mod\extendedtimeline.zip
  147. 2015-08-26 08:11:06 B8971D9511C5414FAA3FE1D63D47D3A5 4897892 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\sampleMod.zip
  148. 2015-08-26 08:11:06 AA416ACEE95CD4F6171E4AB962740A3C 22807924 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\pdlc\FS15_newHollandLoaderPack.zip
  149. 2015-08-26 08:11:06 0D6C4EE5F7CFC6EB2AD96F52746ABF29 2536921 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Farming Simulator 15\sdk\modMapSDK.zip
  150. 2015-08-25 22:34:24 ED47A19853A9C65F93A2EECD53A0D23E 86707 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\Microsoft.Lync.Model.zip
  151.  
  152. ==== Startup Registry Enabled ======================
  153.  
  154. [HKEY_USERS\S-1-5-21-380600775-3345600272-3058747539-1001\Software\Microsoft\Windows\CurrentVersion\Run]
  155. "Steam"="C:\Program Files (x86)\Steam\steam.exe -silent"
  156. "EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
  157. "BitTorrent"="C:\Users\Alastor\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED"
  158. "Spotify Web Helper"="C:\Users\Alastor\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
  159. "Spotify"="C:\Users\Alastor\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized"
  160. "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
  161.  
  162. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  163. "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
  164. "Super-Charger"="C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
  165.  
  166. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  167. "Steam"="C:\Program Files (x86)\Steam\steam.exe -silent"
  168. "EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
  169. "BitTorrent"="C:\Users\Alastor\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED"
  170. "Spotify Web Helper"="C:\Users\Alastor\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
  171. "Spotify"="C:\Users\Alastor\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized"
  172. "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
  173.  
  174. ==== Startup Registry Enabled x64 ======================
  175.  
  176. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  177. "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
  178. "MouseDriver"="TiltWheelMouse.exe"
  179.  
  180. ==== Startup Folders ======================
  181.  
  182. 2013-07-29 21:41:02 2054 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk
  183. 2013-08-26 20:50:48 1187 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk
  184.  
  185. ==== Task Scheduler Jobs ======================
  186.  
  187. C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [08/25/2015 04:47 PM]
  188. C:\WINDOWS\tasks\Guard-{67E160EA-8771-4172-86EB-AF21ADC868B9}.job --a-------- C:\Program Files (x86)\KeyDownload\KeyPlayr\start_svc.exe []
  189.  
  190. ==== Other Scheduled Tasks ======================
  191.  
  192. "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
  193. "C:\WINDOWS\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" [C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe]
  194. "C:\WINDOWS\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon" ["C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe"]
  195. "C:\WINDOWS\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton Security\Engine\22.5.0.124\WSCStub.exe"]
  196. "C:\WINDOWS\SysNative\tasks\RunAsStdUser Task" [C:\Users\Alastor\Desktop\Sins of A Solar Empire.exe]
  197. "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{BB46AD16-0B77-4720-87EA-9BF4E79E795E}" [C:\WINDOWS\system32\msfeedssync.exe]
  198. "C:\WINDOWS\SysNative\tasks\Norton Internet Security\Norton Error Analyzer" [C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe]
  199. "C:\WINDOWS\SysNative\tasks\Norton Internet Security\Norton Error Processor" [C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe]
  200. "C:\WINDOWS\SysNative\tasks\Norton Security\Norton Error Analyzer" [C:\Program Files (x86)\Norton Security\Engine\22.5.0.124\SymErr.exe]
  201. "C:\WINDOWS\SysNative\tasks\Norton Security\Norton Error Processor" [C:\Program Files (x86)\Norton Security\Engine\22.5.0.124\SymErr.exe]
  202.  
  203. ==== Firefox Extensions Registry ======================
  204.  
  205. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
  206. "{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.0.124\coFFPlgn" [08/29/2015 12:36 PM]
  207. [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
  208. "DSE"="true" []
  209.  
  210. ==== Firefox Extensions ======================
  211.  
  212. AppDir: C:\Program Files (x86)\Mozilla Firefox
  213. - Undetermined - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
  214. - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
  215. - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  216.  
  217. ==== Firefox Plugins ======================
  218.  
  219. Profilepath: C:\Users\Alastor\AppData\Roaming\Mozilla\Firefox\Profiles\7szpotgy.default-1440885650524
  220. 18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013
  221. 9291708CCD967887AF94BE708B43D64D - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll - Microsoft Office 2013
  222. EC55112EDB2CE5BC2BFCACDB9C2150F4 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll - Shockwave Flash
  223.  
  224.  
  225. ==== Chromium Look ======================
  226.  
  227. HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
  228. cjabmdjcfcfdmffimndhafhblfmpjdpe - C:\Program Files (x86)\Norton Security\Engine\22.5.0.124\Exts\Chrome.crx[06/05/2015 12:55 AM]
  229. iikflkcanblccfahdhdonehdalibjnif - No path found[]
  230. lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[08/06/2013 05:34 PM]
  231.  
  232. HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
  233. bmkckgpgekmanipelfidlhmkfcjicion - No path found[]
  234.  
  235. Google Docs - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
  236. Google Drive - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
  237. YouTube - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
  238. Bing Search Engine - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmkckgpgekmanipelfidlhmkfcjicion
  239. Google Search - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
  240. Skype Click to Call - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
  241. Vegas World - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkfngbagahkfkhdkaelphbgkaalajhim
  242. Google Wallet - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
  243. Gmail - Alastor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
  244.  
  245. ==== Chromium Startpages ======================
  246.  
  247. C:\Users\Alastor\AppData\Local\Google\Chrome\User Data\Default\Preferences
  248. rue,"active_permissions":{"api":["notifications"],"manifest_permissions":[]},"app_launcher_ordinal":"x","content_settings":[],"creation_flags":137,"disable_reasons":1,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13073613581463855","lastpingday":"13085218800167916","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"en_US","default_locale":"en","description":"Fast, searchable email with less spam.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":0,"was_installed_by_default":true,"was_installed_by_oem":false}}},"pinned_tabs":[],"prefs":{"preference_reset_time":"13081376488846794"},"protection":{"macs":{"browser":{"show_home_button":"2DDFFD85D4D46BCB8A56104FF9BCAC3DD5AEF82B32CC667DCBA553ADBD838B36"},"default_search_provider":{"keyword":"F7F981DAB08188166A3075DDE603647EFB23F77D9C43B2AF3164B1482A8EE5C9","name":"EDA1ADB0FC9D013444AF42C4332D9E2FAC831F144920045E32BFFD94B94C2A49","search_url":"DBF43B20CCCE34956A2C05E5BF7F8854C306F2E13C53272733EB583549B7E900"},"default_search_provider_data":{"template_url_data":"30E556C4EC74AB726C4F00F8403C52160E6D207CB99711E72A8CAD1FC54AE3C2"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"08715651E2266DA51446B1F735C553DD1DCA98CC54C970ED5A364D04DAEF8FD0","aohghmighlieiainnegkcijnfilokake":"89A4CAF65100CC818C532F73025A46115B925C375718485B0D1883B932354E47","apdfllckaahabafndbhieahigkjlhalf":"BF2512230FF544EAA5ACD23DC6F30B0D3C2130CBD11A115958654218C105C9C7","bepbmhgboaologfdajaanbcjmnhjmhfn":"4D3CAC008C61EC2CC63B8AE7A84F17D4A2C8ED350B13F10F2BEA08FB5035C371","blpcfgokakmgnkcojhhkbfbldkacnbeo":"0AD02F4F51D846FE5D33349539F3E4EC15AC3B19E2DB7912D97E341660306562","bmkckgpgekmanipelfidlhmkfcjicion":"88E2216F6E18E3A807320FC1079AA4B9ECEBAC55AA0EAAA357F164AF397AE7D1","bpimjanmknifnoiajikmhmhmlihdccbd":"7D9E4F294E1FDC6EFB5B9932CD3B3EC6C64CA754CBFE78BE2A7A4039B6FAD1F6","coobgpohoikkiipiblmjeljniedjpjpf":"2DA03E4002708096F4B93FFB4311FD63A22ED2687C7F83219A1E5FCEC855DFD9","dlggapfljcnbmajohkhhapaoajopbncm":"3D32B9C9D3CA234ED7A7EA78FD8D5294EC5C83BBE2CBCBC282D3DD9C9701D126","dnhpdliibojhegemfjheidglijccjfmc":"4EEF91346E87AC817190131413B8EC06DA6929C392AC76F53FEEBF5C1CBF725B","eemcgdkfndhakfknompkggombfjjjeno":"765CB66B7361A693C5879AF7821EC4A1F9707E40EA6BB7DABB5636D775B462CD","ehloibeiaffhibffchiobihgcainmcep":"B44961021DF164ECA33B0CB825693CC1ABBB509753386AEE867745A031D89C5C","ennkphjdgehloodpbhlhldgbnhmacadg":"C1C3406951DCE806A613CCF431E0E7122FD874E069957349F52AF26B0194F1E8","fdkednngfjmpnljkolbapdednncafhen":"3982579745F9F8FD57B81A9EF448E866A2CD512BA0C848B9C8CA3F767808531D","gfdkimpbcpahaombhbimeihdjnejgicl":"7D33A45C9956CB745A69AF4840E824E3940CEEAD8C6F54C608FD5271A3CFAFEB","ginepjojjbmfbfiibfdebddmbkjmgfle":"4AA004A615117AF1CEBA85F1D005C35D24D3B3243A75B98809DB1829D0C4D860","ibgbdgngjflpkahkoabmiijlaggkinaj":"E933A449226F21379A941C52F623561A235A47962C8A8F7EB0DCEE9EF1C7EF32","ijfmpmbomipgbofogcnnljiccilncinl":"B2C7FA12610194D38BED4C8A516F1FFE256A0A556F526BD8AD154CB3575A7EF8","kmendfapggjehodndflmmgagdbamhnfd":"8F0A840AA5640E5F73AF958E28B00C8C972F65113FF00901CE1890B773706986","lifbcibllhkdhoafpjfnlhfpfgnpldfl":"6374FE33113FB83DD2D35F5AAA7010AC839C402D4074CFE2A93DA38D20BC4BBE","lkfngbagahkfkhdkaelphbgkaalajhim":"3BECBC43D42D0701A64A9CD543322D2893709B32EDCC850E4D61BD394E648A40","lojpenhmoajbiciapkjkiekmobleogjc":"C38CB81FCC08080E81C8E438EAE1130FAD4E6C24067C86F03F83A7A14242C587","mfehgcgbbipciphmccgaenjidiccnmng":"14F288968C2D5AD7EA8448A1B980F5A0CFBF93E73E5785F871FB21A83AFADEAC","mgndgikekgjfcpckkfioiadnlibdjbkf":"7A4B9215ADDF75E1291550A970BC577ECFDECAFC6AA74B8537FC63B850AACC42","mmebmmnpohfhoknnlpohjaembcipocaa":"AFFBDB09499DDE7376A75FA173E76EA8784EBA736B1B879419E6D7F6CDA808CF","neajdppkdcdipfabeoofebfddakdcjhd":"E3ACB92F66964309820598CF011F69EE98E1610C3AE282AA06F4C8F3909E2CDD","nkeimhogjdpnpccoofpliimaahmaaome":"F6AE816DB74A684AAE19F9192044DA569CD7C4FE8F608E0EE1B5358EC3F41536","nmmhkkegccagdldgiimedpiccmgmieda":"8FFD1EAD0A3CD9654A5691D772413AECCD2C344FBC47DEFDE052C68E0808068D","ogminpmldncgcmokldnmmapddoccmhfl":"D3FACD75588229ACF80E2947C85E2C194BAE2A8DCF7FF99C585EAD2D3CB571DD","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"40D23DC9B0B84775F61AC1CA77C41D1DD7B5B2C34DF918F4A93836C028B0FCF9","pjkljhegncpnkpknbcohdijeoejaedia":"911A7B6AFF200EC1BD8329E0949EF7FC21F4821DCF9136D566F9BC780DF75E93"}},"google":{"services":{"last_username":"10AC1CF699F536C0E4AF8F295EC6E5E9F9979399F2569BB803891D31F25FEA1B","username":"6C02D3EC349AFEF0D08D9991585CA526D1A54F3EE16BB90485C307FCC2094DAD"}},"homepage":"6309B3E1542C2EB3DDE88E955F0D90CE8DB1297BB44D25552938142B8D402B6C","homepage_is_newtabpage":"64060770FF087C59F8EB3F9586FC1F4455F122C5A423D529F4B37E95801D8054","pinned_tabs":"958B5E571637B40C690C719DCA0C9997ED7173D6F2AF29D693E391F904433BDC","prefs":{"preference_reset_time":"410EF0A02B5BBADDA85337DB31E8821F5C0400A8105C0A240CCDE06DCC32EF0D"},"profile":{"reset_prompt_memento":"9115AB5B5166ED491896976262D9A252AE14AF175DFB08D1B8BAB553CC71084F"},"safebrowsing":{"incidents_sent":"B3BA77AE7DF8A13A69989AED4A36083472C51128C4F2FECF935DF75AA1C137EC"},"search_provider_overrides":"9D24277F348CA0A4BCEEAB24F6776AC38F188862A6288AD27B11B902161568EE","session":{"restore_on_startup":"199F19653EE2B4C803AE0D68D3FDE63CF4A360D4076012CF59B4439415190593","startup_urls":"B4BCC6D8228F2E2AC9C92A5ACB478E6D041D3556DDF66E4DFA08D6DDAAC2D69D"},"software_reporter":{"prompt_reason":"BA6F9C5B45A49B4131D7FCC28AFD1994DE41E6FC3E1894B930F2604E1F060692","prompt_seed":"8E158D8BC25C304743A425A8C9C0FDE629E2E400DD8C746A39E382F70512DD24","prompt_version":"9A5CE6AB26B913E5ED340D69F742B4EA6BB17F65E1C1EAF6AE908570351667A6"},"sync":{"remaining_rollback_tries":"9742AE8335B58F5B59B8CC420BDDC1C73E619BA40D14FA4636CAB87B90F85E10"}},"super_mac":"9A55CD9966B40DCEF2638FC209EC26C2F62D4D55FD4F7331309B3659D4AF766B"},"session":{"urls_to_restore_on_startup":null},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601","prompt_version":"3.21.0"}}
  249. rue,"active_permissions":{"api":["notifications"],"manifest_permissions":[]},"app_launcher_ordinal":"x","content_settings":[],"creation_flags":137,"disable_reasons":1,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13073613581463855","lastpingday":"13085218800167916","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"en_US","default_locale":"en","description":"Fast, searchable email with less spam.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":0,"was_installed_by_default":true,"was_installed_by_oem":false}}},"pinned_tabs":[],"prefs":{"preference_reset_time":"13081376488846794"},"protection":{"macs":{"browser":{"show_home_button":"2DDFFD85D4D46BCB8A56104FF9BCAC3DD5AEF82B32CC667DCBA553ADBD838B36"},"default_search_provider":{"keyword":"F7F981DAB08188166A3075DDE603647EFB23F77D9C43B2AF3164B1482A8EE5C9","name":"EDA1ADB0FC9D013444AF42C4332D9E2FAC831F144920045E32BFFD94B94C2A49","search_url":"DBF43B20CCCE34956A2C05E5BF7F8854C306F2E13C53272733EB583549B7E900"},"default_search_provider_data":{"template_url_data":"30E556C4EC74AB726C4F00F8403C52160E6D207CB99711E72A8CAD1FC54AE3C2"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"08715651E2266DA51446B1F735C553DD1DCA98CC54C970ED5A364D04DAEF8FD0","aohghmighlieiainnegkcijnfilokake":"89A4CAF65100CC818C532F73025A46115B925C375718485B0D1883B932354E47","apdfllckaahabafndbhieahigkjlhalf":"BF2512230FF544EAA5ACD23DC6F30B0D3C2130CBD11A115958654218C105C9C7","bepbmhgboaologfdajaanbcjmnhjmhfn":"4D3CAC008C61EC2CC63B8AE7A84F17D4A2C8ED350B13F10F2BEA08FB5035C371","blpcfgokakmgnkcojhhkbfbldkacnbeo":"0AD02F4F51D846FE5D33349539F3E4EC15AC3B19E2DB7912D97E341660306562","bmkckgpgekmanipelfidlhmkfcjicion":"88E2216F6E18E3A807320FC1079AA4B9ECEBAC55AA0EAAA357F164AF397AE7D1","bpimjanmknifnoiajikmhmhmlihdccbd":"7D9E4F294E1FDC6EFB5B9932CD3B3EC6C64CA754CBFE78BE2A7A4039B6FAD1F6","coobgpohoikkiipiblmjeljniedjpjpf":"2DA03E4002708096F4B93FFB4311FD63A22ED2687C7F83219A1E5FCEC855DFD9","dlggapfljcnbmajohkhhapaoajopbncm":"3D32B9C9D3CA234ED7A7EA78FD8D5294EC5C83BBE2CBCBC282D3DD9C9701D126","dnhpdliibojhegemfjheidglijccjfmc":"4EEF91346E87AC817190131413B8EC06DA6929C392AC76F53FEEBF5C1CBF725B","eemcgdkfndhakfknompkggombfjjjeno":"765CB66B7361A693C5879AF7821EC4A1F9707E40EA6BB7DABB5636D775B462CD","ehloibeiaffhibffchiobihgcainmcep":"B44961021DF164ECA33B0CB825693CC1ABBB509753386AEE867745A031D89C5C","ennkphjdgehloodpbhlhldgbnhmacadg":"C1C3406951DCE806A613CCF431E0E7122FD874E069957349F52AF26B0194F1E8","fdkednngfjmpnljkolbapdednncafhen":"3982579745F9F8FD57B81A9EF448E866A2CD512BA0C848B9C8CA3F767808531D","gfdkimpbcpahaombhbimeihdjnejgicl":"7D33A45C9956CB745A69AF4840E824E3940CEEAD8C6F54C608FD5271A3CFAFEB","ginepjojjbmfbfiibfdebddmbkjmgfle":"4AA004A615117AF1CEBA85F1D005C35D24D3B3243A75B98809DB1829D0C4D860","ibgbdgngjflpkahkoabmiijlaggkinaj":"E933A449226F21379A941C52F623561A235A47962C8A8F7EB0DCEE9EF1C7EF32","ijfmpmbomipgbofogcnnljiccilncinl":"B2C7FA12610194D38BED4C8A516F1FFE256A0A556F526BD8AD154CB3575A7EF8","kmendfapggjehodndflmmgagdbamhnfd":"8F0A840AA5640E5F73AF958E28B00C8C972F65113FF00901CE1890B773706986","lifbcibllhkdhoafpjfnlhfpfgnpldfl":"6374FE33113FB83DD2D35F5AAA7010AC839C402D4074CFE2A93DA38D20BC4BBE","lkfngbagahkfkhdkaelphbgkaalajhim":"3BECBC43D42D0701A64A9CD543322D2893709B32EDCC850E4D61BD394E648A40","lojpenhmoajbiciapkjkiekmobleogjc":"C38CB81FCC08080E81C8E438EAE1130FAD4E6C24067C86F03F83A7A14242C587","mfehgcgbbipciphmccgaenjidiccnmng":"14F288968C2D5AD7EA8448A1B980F5A0CFBF93E73E5785F871FB21A83AFADEAC","mgndgikekgjfcpckkfioiadnlibdjbkf":"7A4B9215ADDF75E1291550A970BC577ECFDECAFC6AA74B8537FC63B850AACC42","mmebmmnpohfhoknnlpohjaembcipocaa":"AFFBDB09499DDE7376A75FA173E76EA8784EBA736B1B879419E6D7F6CDA808CF","neajdppkdcdipfabeoofebfddakdcjhd":"E3ACB92F66964309820598CF011F69EE98E1610C3AE282AA06F4C8F3909E2CDD","nkeimhogjdpnpccoofpliimaahmaaome":"F6AE816DB74A684AAE19F9192044DA569CD7C4FE8F608E0EE1B5358EC3F41536","nmmhkkegccagdldgiimedpiccmgmieda":"8FFD1EAD0A3CD9654A5691D772413AECCD2C344FBC47DEFDE052C68E0808068D","ogminpmldncgcmokldnmmapddoccmhfl":"D3FACD75588229ACF80E2947C85E2C194BAE2A8DCF7FF99C585EAD2D3CB571DD","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"40D23DC9B0B84775F61AC1CA77C41D1DD7B5B2C34DF918F4A93836C028B0FCF9","pjkljhegncpnkpknbcohdijeoejaedia":"911A7B6AFF200EC1BD8329E0949EF7FC21F4821DCF9136D566F9BC780DF75E93"}},"google":{"services":{"last_username":"10AC1CF699F536C0E4AF8F295EC6E5E9F9979399F2569BB803891D31F25FEA1B","username":"6C02D3EC349AFEF0D08D9991585CA526D1A54F3EE16BB90485C307FCC2094DAD"}},"homepage":"6309B3E1542C2EB3DDE88E955F0D90CE8DB1297BB44D25552938142B8D402B6C","homepage_is_newtabpage":"64060770FF087C59F8EB3F9586FC1F4455F122C5A423D529F4B37E95801D8054","pinned_tabs":"958B5E571637B40C690C719DCA0C9997ED7173D6F2AF29D693E391F904433BDC","prefs":{"preference_reset_time":"410EF0A02B5BBADDA85337DB31E8821F5C0400A8105C0A240CCDE06DCC32EF0D"},"profile":{"reset_prompt_memento":"9115AB5B5166ED491896976262D9A252AE14AF175DFB08D1B8BAB553CC71084F"},"safebrowsing":{"incidents_sent":"B3BA77AE7DF8A13A69989AED4A36083472C51128C4F2FECF935DF75AA1C137EC"},"search_provider_overrides":"9D24277F348CA0A4BCEEAB24F6776AC38F188862A6288AD27B11B902161568EE","session":{"restore_on_startup":"199F19653EE2B4C803AE0D68D3FDE63CF4A360D4076012CF59B4439415190593","startup_urls":"B4BCC6D8228F2E2AC9C92A5ACB478E6D041D3556DDF66E4DFA08D6DDAAC2D69D"},"software_reporter":{"prompt_reason":"BA6F9C5B45A49B4131D7FCC28AFD1994DE41E6FC3E1894B930F2604E1F060692","prompt_seed":"8E158D8BC25C304743A425A8C9C0FDE629E2E400DD8C746A39E382F70512DD24","prompt_version":"9A5CE6AB26B913E5ED340D69F742B4EA6BB17F65E1C1EAF6AE908570351667A6"},"sync":{"remaining_rollback_tries":"9742AE8335B58F5B59B8CC420BDDC1C73E619BA40D14FA4636CAB87B90F85E10"}},"super_mac":"9A55CD9966B40DCEF2638FC209EC26C2F62D4D55FD4F7331309B3659D4AF766B"},"session":{"urls_to_restore_on_startup":null},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601","prompt_version":"3.21.0"}}
  250.  
  251.  
  252. ==== IE Start and Search Settings ======================
  253.  
  254. [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
  255. "Start Page"="http://homepage.aol.com/?mtmhp=txtlnkusaolp00000800"
  256. [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
  257. "Start Page"="http://homepage.aol.com/?mtmhp=txtlnkusaolp00000800"
  258. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
  259. "Start Page"="http://homepage.aol.com/?mtmhp=txtlnkusaolp00000800"
  260. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
  261. "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
  262.  
  263. ==== All HKCU SearchScopes ======================
  264.  
  265. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
  266. {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox"
  267. {23D37A78-4960-4F46-8560-C6E0A079E854} Yahoo Url="https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=667671&p={searchTerms}"
  268. {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} WebSearch Url="http://websearch.searchtheglobe.info/?l=1&q={searchTerms}&pid=724&r=2015/01/28&hid=5186769530584434207&lg=EN&cc=US"
  269.  
  270. ==== HijackThis Entries ======================
  271.  
  272. F2 - REG:system.ini: UserInit=userinit.exe
  273. O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
  274. O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.5.0.124\coIEPlg.dll
  275. O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
  276. O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.5.0.124\coIEPlg.dll
  277. O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
  278. O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
  279. O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
  280. O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
  281. O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Alastor\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
  282. O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Alastor\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
  283. O4 - HKCU\..\Run: [Spotify] "C:\Users\Alastor\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
  284. O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
  285. O4 - Global Startup: iSCTsysTray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
  286. O4 - Global Startup: NETGEAR WNDA3100v2 Genie.lnk = C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
  287. O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
  288. O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
  289. O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
  290. O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
  291. O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
  292. O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
  293. O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
  294. O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
  295. O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  296. O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
  297. O15 - Trusted Zone: *.clonewarsadventures.com
  298. O15 - Trusted Zone: *.freerealms.com
  299. O15 - Trusted Zone: *.soe.com
  300. O15 - Trusted Zone: *.sony.com
  301. O17 - HKLM\System\CCS\Services\Tcpip\..\{8E7C5FF4-4CCB-4939-8D75-2BE50E3A77F1}: NameServer = 199.203.131.145,82.163.143.167
  302. O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
  303. O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  304. O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
  305. O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  306. O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
  307. O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
  308. O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
  309. O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
  310. O23 - Service: Google Update Service (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
  311. O23 - Service: Google Update Service (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
  312. O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
  313. O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
  314. O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
  315. O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
  316. O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
  317. O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
  318. O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
  319. O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
  320. O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
  321. O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  322. O23 - Service: Joyous Convert - Unknown owner - C:\Program Files (x86)\Joyous Convert\Joyous Convert.exe (file missing)
  323. O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  324. O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  325. O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
  326. O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
  327. O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
  328. O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
  329. O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  330. O23 - Service: Norton PC Checkup Application Launcher - Symantec Corporation - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
  331. O23 - Service: Norton Security (NS) - Symantec Corporation - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe
  332. O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
  333. O23 - Service: Overwolf Updater Service (OverwolfUpdaterService) - Overwolf Ltd - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
  334. O23 - Service: Common Client Job Manager Service (PCCUJobMgr) - Symantec Corporation - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
  335. O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
  336. O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  337. O23 - Service: Shaky Priest - Unknown owner - C:\Program Files (x86)\Shaky Priest\Shaky Priest.exe (file missing)
  338. O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  339. O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
  340. O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
  341. O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
  342. O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
  343. O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  344. O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\WINDOWS\servicing\TrustedInstaller.exe (file missing)
  345. O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
  346. O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  347. O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
  348. O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
  349. O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
  350. O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
  351. O23 - Service: Whopping Man - Unknown owner - C:\Program Files (x86)\Whopping Man\Whopping Man.exe (file missing)
  352. O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
  353. O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
  354. O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
  355. O23 - Service: WSWNDA3100v2 - Unknown owner - C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
  356.  
  357. ==== C:\zoek_backup content ======================
  358.  
  359. C:\zoek_backup (files=0 folders=0 0 bytes)
  360.  
  361. ==== EOF on Sat 08/29/2015 at 23:55:04.00 ======================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!