Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Malwarebytes Anti-Malware Log:
- [spoiler]Malwarebytes Anti-Malware 1.70.0.1100
- www.malwarebytes.org
- Database version: v2013.03.27.08
- Windows 8 x64 NTFS
- Internet Explorer 10.0.9200.16519
- RMM31_000 :: FRINKEL-PC [administrator]
- 3/27/2013 11:15:31 AM
- mbam-log-2013-03-27 (11-15-31).txt
- Scan type: Quick scan
- Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
- Scan options disabled: P2P
- Objects scanned: 284858
- Time elapsed: 10 minute(s), 54 second(s)
- Memory Processes Detected: 0
- (No malicious items detected)
- Memory Modules Detected: 0
- (No malicious items detected)
- Registry Keys Detected: 4
- HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Software.Updater) -> Quarantined and deleted successfully.
- HKCR\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Software.Updater) -> Quarantined and deleted successfully.
- HKCR\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Software.Updater) -> Quarantined and deleted successfully.
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} (PUP.Software.Updater) -> Quarantined and deleted successfully.
- Registry Values Detected: 0
- (No malicious items detected)
- Registry Data Items Detected: 0
- (No malicious items detected)
- Folders Detected: 0
- (No malicious items detected)
- Files Detected: 3
- C:\Users\Antec-04\AppData\Local\SwvUpdater\Updater.exe (PUP.Software.Updater) -> Quarantined and deleted successfully.
- C:\Users\Antec-04\Local Settings\Temporary Internet Files\Content.IE5\K1N1OCL4\pricepeep_50001_1001[1].exe (Adware.Shopper) -> Quarantined and deleted successfully.
- C:\Windows\Tasks\AmiUpdXp.job (PUP.Software.Updater) -> Quarantined and deleted successfully.
- (end)[/spoiler]
- Farbar MiniToolBox Log:
- [spoiler]MiniToolBox by Farbar Version:05-03-2013
- Ran by RMM31_000 (administrator) on 27-03-2013 at 11:40:13
- Running from "C:\Users\RMM31_000\Desktop"
- Windows 8 Pro (X64)
- Boot Mode: Normal
- ***************************************************************************
- ========================= Flush DNS: ===================================
- Windows IP Configuration
- Successfully flushed the DNS Resolver Cache.
- ========================= IE Proxy Settings: ==============================
- Proxy is not enabled.
- No Proxy Server is set.
- "Reset IE Proxy Settings": IE Proxy Settings were reset.
- ========================= FF Proxy Settings: ==============================
- "Reset FF Proxy Settings": Firefox Proxy settings were reset.
- ========================= Hosts content: =================================
- 127.0.0.1 localhost
- ========================= IP Configuration: ================================
- Realtek RTL8139/810x Family Fast Ethernet NIC = Ethernet (Connected)
- TeamViewer VPN Adapter = Local Area Connection (Media disconnected)
- Bluetooth Device (Personal Area Network) = Bluetooth Network Connection 2 (Media disconnected)
- # ----------------------------------
- # IPv4 Configuration
- # ----------------------------------
- pushd interface ipv4
- reset
- set global icmpredirects=enabled
- set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
- set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
- set interface interface="Local Area Connection* 17" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
- set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
- set interface interface="Bluetooth Network Connection 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
- popd
- # End of IPv4 configuration
- Windows IP Configuration
- Host Name . . . . . . . . . . . . : Frinkel-PC
- Primary Dns Suffix . . . . . . . :
- Node Type . . . . . . . . . . . . : Hybrid
- IP Routing Enabled. . . . . . . . : No
- WINS Proxy Enabled. . . . . . . . : No
- DNS Suffix Search List. . . . . . : gateway.pace.com
- Ethernet adapter Bluetooth Network Connection 2:
- Media State . . . . . . . . . . . : Media disconnected
- Connection-specific DNS Suffix . :
- Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network) #2
- Physical Address. . . . . . . . . : 00-15-83-15-A3-10
- DHCP Enabled. . . . . . . . . . . : Yes
- Autoconfiguration Enabled . . . . : Yes
- Ethernet adapter Local Area Connection:
- Media State . . . . . . . . . . . : Media disconnected
- Connection-specific DNS Suffix . :
- Description . . . . . . . . . . . : TeamViewer VPN Adapter
- Physical Address. . . . . . . . . : 00-FF-82-3E-59-4A
- DHCP Enabled. . . . . . . . . . . : Yes
- Autoconfiguration Enabled . . . . : Yes
- Ethernet adapter Ethernet:
- Connection-specific DNS Suffix . : gateway.pace.com
- Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC
- Physical Address. . . . . . . . . : 00-19-21-88-63-65
- DHCP Enabled. . . . . . . . . . . : Yes
- Autoconfiguration Enabled . . . . : Yes
- Link-local IPv6 Address . . . . . : fe80::10a4:aff5:761:f8ba%12(Preferred)
- IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred)
- Subnet Mask . . . . . . . . . . . : 255.255.255.0
- Lease Obtained. . . . . . . . . . : Wednesday, March 27, 2013 11:31:10 AM
- Lease Expires . . . . . . . . . . : Thursday, March 28, 2013 11:31:11 AM
- Default Gateway . . . . . . . . . : 192.168.1.254
- DHCP Server . . . . . . . . . . . : 192.168.1.254
- DHCPv6 IAID . . . . . . . . . . . : 251664673
- DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-AB-4C-1C-00-19-21-88-63-65
- DNS Servers . . . . . . . . . . . : 8.8.8.8
- 8.8.4.4
- NetBIOS over Tcpip. . . . . . . . : Enabled
- Tunnel adapter isatap.gateway.pace.com:
- Media State . . . . . . . . . . . : Media disconnected
- Connection-specific DNS Suffix . : gateway.pace.com
- Description . . . . . . . . . . . : Microsoft ISATAP Adapter
- Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
- DHCP Enabled. . . . . . . . . . . : No
- Autoconfiguration Enabled . . . . : Yes
- Tunnel adapter Teredo Tunneling Pseudo-Interface:
- Connection-specific DNS Suffix . :
- Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
- Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
- DHCP Enabled. . . . . . . . . . . : No
- Autoconfiguration Enabled . . . . : Yes
- IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:2039:3ac2:3f57:febf(Preferred)
- Link-local IPv6 Address . . . . . : fe80::2039:3ac2:3f57:febf%14(Preferred)
- Default Gateway . . . . . . . . . : ::
- NetBIOS over Tcpip. . . . . . . . : Disabled
- Server: google-public-dns-a.google.com
- Address: 8.8.8.8
- Name: google.com
- Addresses: 2001:4860:4001:802::1005
- 74.125.224.46
- 74.125.224.41
- 74.125.224.36
- 74.125.224.34
- 74.125.224.38
- 74.125.224.37
- 74.125.224.39
- 74.125.224.32
- 74.125.224.35
- 74.125.224.40
- 74.125.224.33
- Pinging google.com [74.125.224.46] with 32 bytes of data:
- Reply from 74.125.224.46: bytes=32 time=14ms TTL=54
- Reply from 74.125.224.46: bytes=32 time=13ms TTL=54
- Ping statistics for 74.125.224.46:
- Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
- Approximate round trip times in milli-seconds:
- Minimum = 13ms, Maximum = 14ms, Average = 13ms
- Server: google-public-dns-a.google.com
- Address: 8.8.8.8
- Name: yahoo.com
- Addresses: 206.190.36.45
- 98.138.253.109
- 98.139.183.24
- Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
- Reply from 206.190.36.45: bytes=32 time=546ms TTL=50
- Reply from 206.190.36.45: bytes=32 time=526ms TTL=50
- Ping statistics for 206.190.36.45:
- Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
- Approximate round trip times in milli-seconds:
- Minimum = 526ms, Maximum = 546ms, Average = 536ms
- Pinging 127.0.0.1 with 32 bytes of data:
- Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
- Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
- Ping statistics for 127.0.0.1:
- Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
- Approximate round trip times in milli-seconds:
- Minimum = 0ms, Maximum = 0ms, Average = 0ms
- ===========================================================================
- Interface List
- 24...00 15 83 15 a3 10 ......Bluetooth Device (Personal Area Network) #2
- 21...00 ff 82 3e 59 4a ......TeamViewer VPN Adapter
- 12...00 19 21 88 63 65 ......Realtek RTL8139/810x Family Fast Ethernet NIC
- 1...........................Software Loopback Interface 1
- 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
- 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
- ===========================================================================
- IPv4 Route Table
- ===========================================================================
- Active Routes:
- Network Destination Netmask Gateway Interface Metric
- 0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.64 20
- 127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
- 127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
- 127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
- 192.168.1.0 255.255.255.0 On-link 192.168.1.64 276
- 192.168.1.64 255.255.255.255 On-link 192.168.1.64 276
- 192.168.1.255 255.255.255.255 On-link 192.168.1.64 276
- 224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
- 224.0.0.0 240.0.0.0 On-link 192.168.1.64 276
- 255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
- 255.255.255.255 255.255.255.255 On-link 192.168.1.64 276
- ===========================================================================
- Persistent Routes:
- None
- IPv6 Route Table
- ===========================================================================
- Active Routes:
- If Metric Network Destination Gateway
- 14 306 ::/0 On-link
- 1 306 ::1/128 On-link
- 14 306 2001::/32 On-link
- 14 306 2001:0:9d38:953c:2039:3ac2:3f57:febf/128
- On-link
- 12 276 fe80::/64 On-link
- 14 306 fe80::/64 On-link
- 12 276 fe80::10a4:aff5:761:f8ba/128
- On-link
- 14 306 fe80::2039:3ac2:3f57:febf/128
- On-link
- 1 306 ff00::/8 On-link
- 14 306 ff00::/8 On-link
- 12 276 ff00::/8 On-link
- ===========================================================================
- Persistent Routes:
- None
- ========================= Winsock entries =====================================
- Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
- Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
- Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
- Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
- Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
- Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
- Catalog5 08 C:\Windows\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
- Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
- x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
- x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
- x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
- x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
- x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
- x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
- x64-Catalog5 08 C:\Windows\System32\wshbth.dll [64000] (Microsoft Corporation)
- x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- x64-Catalog9 11 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
- ========================= Event log errors: ===============================
- Application errors:
- ==================
- Error: (03/27/2013 10:17:20 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: FRINKEL-PC)
- Description: App microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos did not launch within its allotted time.
- System errors:
- =============
- Error: (03/27/2013 11:31:18 AM) (Source: Service Control Manager) (User: )
- Description: The PDF Architect Service service terminated with the following error:
- %%2147500037
- Error: (03/27/2013 11:29:56 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
- Description: 0xc000014d0
- Error: (03/27/2013 10:12:21 AM) (Source: Service Control Manager) (User: )
- Description: The PDF Architect Service service terminated with the following error:
- %%2147500037
- Error: (03/27/2013 10:11:23 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
- Description: 0xc000014d0
- Error: (03/27/2013 10:10:33 AM) (Source: Service Control Manager) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the FontCache3.0.0.0 service.
- Error: (03/27/2013 10:08:46 AM) (Source: Service Control Manager) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SolutoService service.
- Error: (03/27/2013 10:08:16 AM) (Source: Service Control Manager) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SolutoService service.
- Error: (03/27/2013 10:07:46 AM) (Source: Service Control Manager) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SolutoService service.
- Error: (03/27/2013 10:07:16 AM) (Source: Service Control Manager) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SolutoService service.
- Error: (03/27/2013 10:06:46 AM) (Source: Service Control Manager) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SolutoService service.
- Microsoft Office Sessions:
- =========================
- Error: (03/27/2013 10:17:20 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: FRINKEL-PC)
- Description: microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos
- =========================== Installed Programs ============================
- Tools for .Net 3.5 (Version: 3.11.50727)
- µTorrent (Version: 3.3.0.29082)
- 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
- Adobe AIR (Version: 3.6.0.6090)
- Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
- Adobe Flash Professional CS6 (Version: 12.0)
- Adobe Help Manager (Version: 4.0.244)
- Adobe Photoshop CS6 (Version: 13.0)
- Adobe Reader XI (11.0.02) (Version: 11.0.02)
- Aiseesoft 3D Converter 6.3.18
- Apple Application Support (Version: 2.3.3)
- Apple Mobile Device Support (Version: 6.1.0.13)
- Apple Software Update (Version: 2.1.3.127)
- Audacity 2.0.3 (Version: 2.0.3)
- avast! Free Antivirus (Version: 8.0.1483.0)
- Bamboo Dock (Version: 4.1)
- Bamboo Dock (Version: 4.1.0)
- Blend for Visual Studio 2012 (Version: 5.0.30709.0)
- Blend for Visual Studio 2012 ENU resources (Version: 5.0.30709.0)
- Bonjour (Version: 3.0.0.10)
- DefaultTab (Version: 2.2.3.0)
- Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
- DorkPMV
- Dotfuscator and Analytics Community Edition (Version: 5.5.4521.29298)
- Entity Framework Designer for Visual Studio 2012 - enu (Version: 11.1.20702.00)
- ESET Online Scanner v3
- Ezvid (Version: 0.9.3.6)
- Firefall
- Free Video to Flash Converter version 5.0.22.128 (Version: 5.0.22.128)
- Freemake Video Downloader (Version: 3.5.0)
- Garry's Mod
- GIMP 2.8.2 (Version: 2.8.2)
- Google Chrome (Version: 25.0.1364.172)
- Google Drive (Version: 1.8.4357.4863)
- Google Update Helper (Version: 1.3.21.135)
- Gyazo 1.0
- HexChat (x64) (Version: 2.9.4)
- IIS 8.0 Express (Version: 8.0.1557)
- IIS Express Application Compatibility Database for x64
- IIS Express Application Compatibility Database for x86
- InstallShield 2012 Spring Limited Edition (Version: 19.00.0000)
- InstantStorm 2.0 (Version: 2.0.0)
- iTunes (Version: 11.0.2.26)
- Java 7 Update 13 (Version: 7.0.130)
- Java Auto Updater (Version: 2.1.9.0)
- KeyBar 1.6 Toolbar (Version: 6.11.2.6)
- Kits Configuration Installer (Version: 8.59.25584)
- KWorld Editing Device Driver
- Lagarith lossless video codec (Remove Only)
- LAME v3.99.3 (for Windows)
- LocalESPC (Version: 8.59.25584)
- LocalESPCui for en-us (Version: 8.59.25584)
- Lua for Windows 5.1.4-46 (Version: 5.1.4.46)
- Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
- Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
- Microsoft .NET Framework 4.5 Multi-Targeting Pack (Version: 4.5.50709)
- Microsoft .NET Framework 4.5 SDK (Version: 4.5.50709)
- Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update (Version: 3.0.30710.0)
- Microsoft ASP.NET MVC 3 (Version: 3.0.20105.0)
- Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools (Version: 4.0.20710.0)
- Microsoft ASP.NET MVC 4 Runtime (Version: 4.0.20710.0)
- Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools (Version: 1.0.20710.0)
- Microsoft ASP.NET Web Pages (Version: 1.0.20105.0)
- Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools (Version: 2.0.20710.0)
- Microsoft ASP.NET Web Pages 2 Runtime (Version: 2.0.20710.0)
- Microsoft Help Viewer 2.0 (Version: 2.0.50727)
- Microsoft LightSwitch for Visual Studio 2012 Core (Version: 11.0.50727)
- Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU (Version: 11.0.50727)
- Microsoft NuGet - Visual Studio 2012 (Version: 2.0.30625.9003)
- Microsoft Office 2010 Service Pack 1 (SP1)
- Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Live Meeting 2007 (Version: 8.0.6362.215)
- Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
- Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
- Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
- Microsoft Portable Library Multi-Targeting Pack (Version: 11.0.50709.17929)
- Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (Version: 11.0.50709.17929)
- Microsoft Report Viewer Add-On for Visual Studio 2012 (Version: 11.1.2802.16)
- Microsoft Silverlight (Version: 5.1.20125.0)
- Microsoft Silverlight 4 SDK (Version: 4.0.60310.0)
- Microsoft Silverlight 5 SDK (Version: 5.0.61118.0)
- Microsoft SQL Server 2012 Command Line Utilities (Version: 11.0.2100.60)
- Microsoft SQL Server 2012 Data-Tier App Framework (Version: 11.0.2316.0)
- Microsoft SQL Server 2012 Express LocalDB (Version: 11.0.2100.60)
- Microsoft SQL Server 2012 Management Objects (Version: 11.0.2100.60)
- Microsoft SQL Server 2012 Management Objects (x64) (Version: 11.0.2100.60)
- Microsoft SQL Server 2012 Native Client (Version: 11.0.2100.60)
- Microsoft SQL Server 2012 Transact-SQL Compiler Service (Version: 11.0.2100.60)
- Microsoft SQL Server 2012 Transact-SQL ScriptDom (Version: 11.0.2100.60)
- Microsoft SQL Server 2012 T-SQL Language Service (Version: 11.0.2100.60)
- Microsoft SQL Server Compact 4.0 SP1 x64 ENU (Version: 4.0.8876.1)
- Microsoft SQL Server Data Tools - enu (11.1.20627.00) (Version: 11.1.20627.00)
- Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00) (Version: 11.1.20627.00)
- Microsoft SQL Server System CLR Types (Version: 10.50.1600.1)
- Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1600.1)
- Microsoft System CLR Types for SQL Server 2012 (Version: 11.0.2100.60)
- Microsoft System CLR Types for SQL Server 2012 (x64) (Version: 11.0.2100.60)
- Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
- Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
- Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
- Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727 (Version: 11.0.50727)
- Microsoft Visual C++ 2012 Compilers - ENU Resources (Version: 11.0.50727)
- Microsoft Visual C++ 2012 Compilers (Version: 11.0.50727)
- Microsoft Visual C++ 2012 Core Libraries (Version: 11.0.50727)
- Microsoft Visual C++ 2012 Extended Libraries (Version: 11.0.50727)
- Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries (Version: 11.0.50727)
- Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
- Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727 (Version: 11.0.50727)
- Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
- Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
- Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727 (Version: 11.0.50727)
- Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
- Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50727)
- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303)
- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308)
- Microsoft Visual Studio 2012 Devenv (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Devenv Resources (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Performance Collection Tools - ENU (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Performance Collection Tools (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Preparation (Version: 11.0.50727)
- Microsoft Visual Studio 2012 SharePoint Developer Tools (Version: 11.0.50727)
- Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Shell (Minimum) (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Shell (Minimum) Resources (Version: 11.0.50727)
- Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU (Version: 4.0.8876.1)
- Microsoft Visual Studio Professional 2012 - ENU (Version: 11.0.50727)
- Microsoft Visual Studio Professional 2012 (Version: 11.0.50727)
- Microsoft Visual Studio Professional 2012 (Version: 11.0.50727.1)
- Microsoft Visual Studio Team Foundation Server 2012 Object Model (Version: 11.0.50727)
- Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU (Version: 11.0.50727)
- Microsoft Visual Studio Team Foundation Server 2012 Team Explorer (Version: 11.0.50727)
- Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU (Version: 11.0.50727)
- Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core (Version: 11.0.50727)
- Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources (Version: 11.0.50727)
- Microsoft Web Deploy 3.0 (Version: 3.1236.1631)
- Microsoft Web Deploy dbSqlPackage Provider - enu (Version: 10.3.20225.0)
- Microsoft Web Developer Tools - Visual Studio 2012 (Version: 1.0.30710.0)
- Microsoft Web Platform Installer 4.0 (Version: 4.0.1622)
- Microsoft Windows Build 9200 Retail Debugging Symbols for x64 (Version: 9200)
- Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
- Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
- Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
- Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
- Mozilla Maintenance Service (Version: 17.0.4)
- Mozilla Thunderbird 17.0.4 (x86 en-US) (Version: 17.0.4)
- MP3 Skype Recorder (Version: 3.1.3)
- Mumble 1.2.3 (Version: 1.2.3)
- Notepad++ (Version: 6.3)
- NVIDIA 3D Vision Controller Driver 310.90 (Version: 310.90)
- NVIDIA 3D Vision Driver 310.90 (Version: 310.90)
- NVIDIA Control Panel 310.90 (Version: 310.90)
- NVIDIA GeForce Experience 1.0.1 (BETA) (Version: 1.0.1 (BETA))
- NVIDIA Graphics Driver 310.90 (Version: 310.90)
- NVIDIA Install Application (Version: 2.1002.95.599)
- NVIDIA PhysX (Version: 9.12.1031)
- NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
- NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1090)
- NVIDIA Update 2.47.62 (Version: 2.47.62)
- NVIDIA Update Components (Version: 2.47.62)
- OpenAL
- Path of Exile (Version: 0.10.1.22906)
- PDF Architect (Version: 1.0.52.8917)
- PDF Settings CS6 (Version: 11.0)
- PDFCreator (Version: 1.6.2)
- PMV Dork HD
- PreEmptive Analytics Visual Studio Components (Version: 1.0.2180.1)
- Prerequisites for SSDT (Version: 11.0.2100.60)
- PricePeep (Version: 2.1.0.22)
- Search Protect by conduit (Version: 1.4.1.12)
- Secure Download Manager (Version: 3.1.0)
- Skype Highlighter (Version: 0.9.5)
- Skype™ 6.1 (Version: 6.1.129)
- Soluto (Version: 1.3.1161.1)
- Steam (Version: 1.0.0.0)
- Synthesia (Version: 8.5)
- TeamViewer 8 (Version: 8.0.17292)
- The Sims™ 3 (Version: 1.0.632)
- Ubisoft Game Launcher (Version: 1.0.0.0)
- Update for (KB2504637) (Version: 1)
- Update for Microsoft Office 2010 (KB2553065)
- Update for Microsoft Office 2010 (KB2553092)
- Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2566458)
- Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
- Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
- Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
- Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
- Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
- Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
- Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
- Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
- Update for Microsoft Visual Studio 2012 (KB2781514) (Version: 11.0.51219)
- Ventrilo Client for Windows x64 (Version: 3.0.8.0)
- Virtual VCR
- Visual Studio 2012 Prerequisites - ENU Language Pack (Version: 11.0.50727)
- Visual Studio 2012 Prerequisites (Version: 11.0.50727)
- Visual Studio Extensions for Windows Library for JavaScript (Version: 1.0.8514.0)
- Wacom (Version: 5.3.2-1)
- WCF Data Services 5.0 (for OData v3) Primary Components (Version: 5.0.50628.0)
- WCF Data Services Tools for Microsoft Visual Studio 2012 (Version: 5.0.50710.0)
- WCF RIA Services V1.0 SP2 (Version: 4.1.61829.0)
- WebTablet FB Plugin 32 bit (Version: 2.1.0.2)
- WebTablet FB Plugin 64 bit (Version: 2.1.0.2)
- Windows App Certification Kit Native Components (Version: 8.59.25584)
- Windows App Certification Kit x64 (Version: 8.59.25584)
- Windows Debugging VS Integration (Version: 8.59.25584)
- Windows Driver Frameworks Update Packages (Version: 8.0.0.0)
- Windows Driver Kit (Version: 8.59.25584)
- Windows Runtime Intellisense Content - en-us (Version: 8.59.25584)
- Windows Software Development Kit (Version: 8.59.25584)
- Windows Software Development Kit DirectX x64 Remote (Version: 8.59.25584)
- Windows Software Development Kit DirectX x86 Remote (Version: 8.59.25584)
- Windows Software Development Kit for Windows Store Apps (Version: 8.59.25584)
- Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.25584)
- Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (Version: 8.59.25584)
- WinPcap 4.1.2 (Version: 4.1.0.2001)
- XAMPP 1.8.1
- X-Chat 2.8.6-2 (Version: 2.8.6-2)
- Xiph.Org Open Codecs 0.85.17777 (Version: 0.85.17777)
- ========================= Devices: ================================
- Name: High Definition Audio Controller
- Description: High Definition Audio Controller
- Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
- Manufacturer: Microsoft
- Service: HDAudBus
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- ========================= Memory info: ===================================
- Percentage of memory in use: 57%
- Total physical RAM: 2039.3 MB
- Available physical RAM: 863.14 MB
- Total Pagefile: 4727.3 MB
- Available Pagefile: 3406.25 MB
- Total Virtual: 4095.88 MB
- Available Virtual: 3964.33 MB
- ========================= Partitions: =====================================
- 1 Drive c: () (Fixed) (Total:79.29 GB) (Free:9.24 GB) NTFS
- 2 Drive d: () (Fixed) (Total:110.63 GB) (Free:2.33 GB) NTFS
- 3 Drive e: (FRiNKEL) (Fixed) (Total:186.31 GB) (Free:0.36 GB) NTFS
- ========================= Users: ========================================
- User accounts for \\FRINKEL-PC
- Administrator Antec-04 Guest
- ledbe_000 RMM31_000 UpdatusUser
- **** End of log ****
- [/spoiler]
- Farbar Service Scanner Log:
- [spoiler]Farbar Service Scanner Version: 03-03-2013
- Ran by RMM31_000 (administrator) on 27-03-2013 at 11:44:27
- Running from "C:\Users\RMM31_000\Desktop"
- Windows 8 Pro (X64)
- Boot Mode: Normal
- ****************************************************************
- Internet Services:
- ============
- Connection Status:
- ==============
- Localhost is accessible.
- LAN connected.
- Google IP is accessible.
- Google.com is accessible.
- Yahoo IP is accessible.
- Yahoo.com is accessible.
- Windows Firewall:
- =============
- Firewall Disabled Policy:
- ==================
- System Restore:
- ============
- System Restore Disabled Policy:
- ========================
- Action Center:
- ============
- Windows Update:
- ============
- wuauserv Service is not running. Checking service configuration:
- The start type of wuauserv service is set to Demand. The default start type is Auto.
- The ImagePath of wuauserv service is OK.
- The ServiceDll of wuauserv service is OK.
- Windows Autoupdate Disabled Policy:
- ============================
- Windows Defender:
- ==============
- WinDefend Service is not running. Checking service configuration:
- The start type of WinDefend service is set to Demand. The default start type is Auto.
- The ImagePath of WinDefend service is OK.
- Windows Defender Disabled Policy:
- ==========================
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
- "DisableAntiSpyware"=DWORD:1
- Other Services:
- ==============
- File Check:
- ========
- C:\Windows\System32\nsisvc.dll => MD5 is legit
- C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
- C:\Windows\System32\dhcpcore.dll => MD5 is legit
- C:\Windows\System32\drivers\afd.sys => MD5 is legit
- C:\Windows\System32\drivers\tdx.sys => MD5 is legit
- C:\Windows\System32\Drivers\tcpip.sys
- [2013-03-15 15:50] - [2013-02-02 03:28] - 2226408 ____A (Microsoft Corporation) F4F78B7F39BD56BD0BFE4C4399398F6F
- C:\Windows\System32\dnsrslvr.dll => MD5 is legit
- C:\Windows\System32\mpssvc.dll => MD5 is legit
- C:\Windows\System32\bfe.dll => MD5 is legit
- C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
- C:\Windows\System32\SDRSVC.dll => MD5 is legit
- C:\Windows\System32\vssvc.exe => MD5 is legit
- C:\Windows\System32\wscsvc.dll => MD5 is legit
- C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
- C:\Windows\System32\wuaueng.dll => MD5 is legit
- C:\Windows\System32\qmgr.dll => MD5 is legit
- C:\Windows\System32\es.dll => MD5 is legit
- C:\Windows\System32\cryptsvc.dll => MD5 is legit
- C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
- C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
- C:\Windows\System32\ipnathlp.dll => MD5 is legit
- C:\Windows\System32\iphlpsvc.dll => MD5 is legit
- C:\Windows\System32\svchost.exe => MD5 is legit
- C:\Windows\System32\rpcss.dll => MD5 is legit
- **** End of log ****[/spoiler]
- AdwCleaner Log:
- [spoiler]# AdwCleaner v2.115 - Logfile created 03/27/2013 at 11:45:42
- # Updated 17/03/2013 by Xplode
- # Operating system : Windows 8 Pro (64 bits)
- # User : RMM31_000 - FRINKEL-PC
- # Boot Mode : Normal
- # Running from : C:\Users\RMM31_000\Desktop\AdwCleaner.exe
- # Option [Delete]
- ***** [Services] *****
- Stopped & Deleted : CltMngSvc
- ***** [Files / Folders] *****
- File Deleted : C:\END
- File Deleted : C:\Users\Antec-04\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
- File Deleted : C:\Users\Antec-04\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
- Folder Deleted : C:\Program Files (x86)\KeyBar_1.6
- Folder Deleted : C:\Program Files (x86)\SearchProtect
- Folder Deleted : C:\Users\Antec-04\AppData\Local\Conduit
- Folder Deleted : C:\Users\Antec-04\AppData\Local\SwvUpdater
- Folder Deleted : C:\Users\Antec-04\AppData\LocalLow\Conduit
- Folder Deleted : C:\Users\Antec-04\AppData\Roaming\DefaultTab
- Folder Deleted : C:\Users\Antec-04\AppData\Roaming\SearchProtect
- Folder Deleted : C:\Users\ledbe_000\AppData\LocalLow\KeyBar_1.6
- Folder Deleted : C:\Users\ledbe_000\AppData\Roaming\SearchProtect
- Folder Deleted : C:\Users\RMM31_000\AppData\LocalLow\KeyBar_1.6
- Folder Deleted : C:\Users\RMM31_000\AppData\Roaming\SearchProtect
- ***** [Registry] *****
- Key Deleted : HKCU\Software\AppDataLow\Software\KeyBar_1.6
- Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{65F9F6B7-2DAE-46FC-BFAF-F88E4AF1BECA}
- Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
- Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{65F9F6B7-2DAE-46FC-BFAF-F88E4AF1BECA}
- Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
- Key Deleted : HKCU\Software\SearchProtect
- Key Deleted : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
- Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3BF3DED5-0FC8-4207-AC09-AA7B5AF4E408}
- Key Deleted : HKLM\Software\KeyBar_1.6
- Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
- Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3E2E670-AEE3-4ED8-A380-1E7284307F73}
- Key Deleted : HKLM\Software\SearchProtect
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{65F9F6B7-2DAE-46FC-BFAF-F88E4AF1BECA}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D3E2E670-AEE3-4ED8-A380-1E7284307F73}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{58E13B70-E2C0-4705-88E5-F483DC21C80E}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{798A6C0E-0C0B-4887-A66B-F6253832CF7B}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{65F9F6B7-2DAE-46FC-BFAF-F88E4AF1BECA}
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\KeyBar_1.6 Toolbar
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep
- Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
- Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
- Key Deleted : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
- Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
- Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{65F9F6B7-2DAE-46FC-BFAF-F88E4AF1BECA}]
- Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{65F9F6B7-2DAE-46FC-BFAF-F88E4AF1BECA}]
- ***** [Internet Browsers] *****
- -\\ Internet Explorer v10.0.9200.16519
- [OK] Registry is clean.
- -\\ Mozilla Firefox v19.0.2 (en-US)
- File : C:\Users\RMM31_000\AppData\Roaming\Mozilla\Firefox\Profiles\qn82j26n.default\prefs.js
- [OK] File is clean.
- -\\ Google Chrome v25.0.1364.172
- File : C:\Users\Antec-04\AppData\Local\Google\Chrome\User Data\Default\Preferences
- Deleted [l.2161] : homepage = "hxxp://search.conduit.com/?ctid=CT3284668&SearchSource=48&CUI=UN17802457592147025&UM[...]
- Deleted [l.2635] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3284668&SearchSource=48&CUI[...]
- File : C:\Users\RMM31_000\AppData\Local\Google\Chrome\User Data\Default\Preferences
- [OK] File is clean.
- File : C:\Users\ledbe_000\AppData\Local\Google\Chrome\User Data\Default\Preferences
- [OK] File is clean.
- *************************
- AdwCleaner[S1].txt - [5076 octets] - [27/03/2013 11:45:42]
- ########## EOF - C:\AdwCleaner[S1].txt - [5136 octets] ##########
- [/spoiler]
- Autoruns Log:
- [spoiler]"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit" "" "" ""
- + "c:\program files\soluto\soluto.exe /userinit" "Soluto" "Soluto" "c:\program files\soluto\soluto.exe"
- "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
- + "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
- "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
- + "AdobeCS6ServiceManager" "Adobe CS6 Service Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\cs6servicemanager\cs6servicemanager.exe"
- + "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
- + "avast" "avast! Antivirus" "AVAST Software" "c:\program files\avast software\avast\avastui.exe"
- + "BCSSync" "Microsoft Office 2010 component" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\bcssync.exe"
- + "OtShot" "OtShot MFC Application" "" "c:\program files (x86)\otshot\otshot.exe"
- + "SunJavaUpdateSched" "Java(TM) Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
- + "SwitchBoard" "SwitchBoard Server (32 bit)" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\switchboard\switchboard.exe"
- "HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
- + "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
- "HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
- + "Adobe Reader User Settings" "Acrobat Install On Demand" "Adobe Systems, Inc." "c:\program files (x86)\adobe\reader 11.0\esl\aiodlite.dll"
- + "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\25.0.1364.172\installer\chrmstp.exe"
- + "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
- "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
- + "GoogleDriveSync" "Google Drive" "Google" "c:\program files (x86)\google\drive\googledrivesync.exe"
- + "Spotify" "Spotify" "Spotify Ltd" "c:\users\antec-04\appdata\roaming\spotify\spotify.exe"
- + "Spotify Web Helper" "SpotifyWebHelper" "Spotify Ltd" "c:\users\antec-04\appdata\roaming\spotify\data\spotifywebhelper.exe"
- + "Steam" "Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win32@winslave04)" "Valve Corporation" "e:\xp program files\steam\steam.exe"
- "HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
- + "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
- "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
- + "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
- + "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
- + "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
- + "ANotepad++64" "ShellHandler for Notepad++ (64 bit)" "" "c:\program files (x86)\notepad++\nppshell_05.dll"
- + "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
- + "GDContextMenu" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\contextmenu64.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
- + "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
- + "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
- + "PDFArchitectExtension" "PDF Architect Shell Extension" "pdfforge GbR" "c:\program files (x86)\pdf architect\contextmenuext.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
- + "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
- + "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
- + "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
- + "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
- + "GDContextMenu" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\contextmenu64.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
- + "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
- + "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
- "HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
- + "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
- "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
- + "NvCplDesktopContext" "NVIDIA Display Shell Extension" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
- + "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
- "HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
- + "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
- + "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
- + "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
- + "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
- + "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
- + "GDriveBlacklistedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
- + "GDriveSharedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
- + "GDriveSyncedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
- + "GDriveSyncingOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
- + "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
- + "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- + "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
- + "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie64.dll"
- + "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
- + "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
- "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
- + "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
- + "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
- + "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
- + "Java(tm) Plug-In 2 SSV Helper" "Java(TM) Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
- + "Java(tm) Plug-In SSV Helper" "Java(TM) Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
- + "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
- + "PDF Architect Helper" "PDF Architect Helper" "pdfforge GbR" "c:\program files (x86)\pdf architect\pdfiehelper.dll"
- "HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
- + "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie64.dll"
- "HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
- + "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
- + "PDF Architect Toolbar" "PDF Architect Toolbar" "pdfforge GbR" "c:\program files (x86)\pdf architect\pdfieplugin.dll"
- "HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
- + "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
- + "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
- "HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
- + "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
- + "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
- "Task Scheduler" "" "" ""
- + "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.6 r602" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
- + "\AdobeAAMUpdater-1.0-MicrosoftAccount-RMM3117@aol.com" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
- + "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
- + "\avast! Emergency Update" "avast! Emergency Update" "AVAST Software" "c:\program files\avast software\avast\avastemupdate.exe"
- X "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
- + "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
- + "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
- + "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
- "HKLM\System\CurrentControlSet\Services" "" "" ""
- + "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
- + "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
- + "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
- + "avast! Antivirus" "Manages and implements avast! antivirus services for this computer. This includes the resident protection, the virus chest and the scheduler." "AVAST Software" "c:\program files\avast software\avast\avastsvc.exe"
- + "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
- + "FreemakeVideoCapture" "CaptureLibService" "Ellora Assets Corp." "c:\program files (x86)\freemake\capturelib\capturelibservice.exe"
- + "fussvc" "Fast User Switching Utility Service" "Microsoft Corporation" "c:\program files (x86)\windows kits\8.0\app certification kit\fussvc.exe"
- + "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
- + "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
- + "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
- + "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
- + "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
- + "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
- + "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
- + "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
- + "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
- + "PDF Architect Helper Service" "PDF Architect Helper Service" "pdfforge GbR" "c:\program files (x86)\pdf architect\helperservice.exe"
- + "PDF Architect Service" "PDF Architect Conversion Service" "pdfforge GbR" "c:\program files (x86)\pdf architect\conversionservice.exe"
- + "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
- + "SolutoLauncherService" "Soluto Launcher Service" "Soluto" "c:\program files\soluto\solutolauncherservice.exe"
- + "SolutoRemoteService" "Soluto Remote Access Service" "Soluto" "c:\program files\soluto\solutoremoteservice.exe"
- + "SolutoService" "Soluto PCGenome Core Service" "Soluto" "c:\program files\soluto\solutoservice.exe"
- + "SQLWriter" "Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlwriter.exe"
- + "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
- + "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
- + "SwitchBoard" "Adobe SwitchBoard" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\switchboard\switchboard.exe"
- + "Te.Service" "Wex.Services [v2.9.3k]" "Microsoft Corporation" "c:\program files (x86)\windows kits\8.0\testing\runtimes\taef\wex.services.exe"
- + "TeamViewer8" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files (x86)\teamviewer\version8\teamviewer_service.exe"
- + "WinDefend" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\msmpeng.exe"
- + "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
- + "WTabletServiceCon" "Driver for Wacom Tablets" "Wacom Technology, Corp." "c:\program files\tablet\pen\wtabletservicecon.exe"
- "HKLM\System\CurrentControlSet\Services" "" "" ""
- + "3ware" "LSI 3ware SCSI Storport Driver" "LSI" "c:\windows\system32\drivers\3ware.sys"
- + "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
- + "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
- + "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
- + "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
- + "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
- + "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
- + "arc" "Adaptec RAID Storport Driver" "PMC-Sierra, Inc." "c:\windows\system32\drivers\arc.sys"
- + "arcsas" "Adaptec SAS RAID WS03 Driver" "PMC-Sierra, Inc." "c:\windows\system32\drivers\arcsas.sys"
- + "aswFsBlk" "avast! mini-filter driver (aswFsBlk)" "AVAST Software" "c:\windows\system32\drivers\aswfsblk.sys"
- + "aswKbd" "avast! keyboard filter driver (aswKbd)" "AVAST Software" "c:\windows\system32\drivers\aswkbd.sys"
- + "aswMonFlt" "avast! mini-filter driver (aswMonFlt)" "AVAST Software" "c:\windows\system32\drivers\aswmonflt.sys"
- + "aswRdr" "avast! WFP Redirect driver" "AVAST Software" "c:\windows\system32\drivers\aswrdr2.sys"
- + "aswRvrt" "avast! Revert" "" "c:\windows\system32\drivers\aswrvrt.sys"
- + "aswSnx" "avast! virtualization driver (aswSnx)" "AVAST Software" "c:\windows\system32\drivers\aswsnx.sys"
- + "aswSP" "avast! Self Protection" "AVAST Software" "c:\windows\system32\drivers\aswsp.sys"
- + "aswTdi" "avast! Network Shield TDI driver" "AVAST Software" "c:\windows\system32\drivers\aswtdi.sys"
- + "aswVmm" "avast! VM Monitor" "" "c:\windows\system32\drivers\aswvmm.sys"
- + "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
- + "cpuz136" "" "" "File not found: C:\Windows\TEMP\cpuz136\cpuz136_x64.sys"
- + "dot4" "IEEE-1284.4-1999 Driver" "Windows (R) Win 7 DDK provider" "c:\windows\system32\drivers\dot4.sys"
- + "Dot4Print" "IEEE-1284.4 Print Class Driver" "Windows (R) Win 7 DDK provider" "c:\windows\system32\drivers\dot4prt.sys"
- + "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
- + "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
- + "hidkmdf" "Filter Driver for HID-KMDF Interface" "Windows (R) Win 7 DDK provider" "c:\windows\system32\drivers\hidkmdf.sys"
- + "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
- + "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
- + "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
- + "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
- + "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
- + "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
- + "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
- + "LSI_SSS" "LSI SSS PCIe/Flash Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sss.sys"
- + "megasas" "MEGASAS RAID Controller Driver for Windows" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
- + "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
- + "MonitorFunction" "TVMonitor.sys" "TeamViewer GmbH" "c:\windows\system32\drivers\tvmonitor.sys"
- + "mvumis" "Marvell Flash Controller Driver" "Marvell Semiconductor, Inc." "c:\windows\system32\drivers\mvumis.sys"
- + "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
- + "npf" "npf.sys (NT5/6 AMD64) Kernel Driver" "CACE Technologies, Inc." "c:\windows\system32\drivers\npf.sys"
- + "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 310.90 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
- + "nvraid" "NVIDIA® nForce(TM) RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
- + "nvstor" "NVIDIA® nForce(TM) Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
- + "RTL8023x64" "Realtek 10/100 X64 Driver " "Realtek Semiconductor Corporation " "c:\windows\system32\drivers\rtnic64.sys"
- + "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
- + "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
- + "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
- + "Soluto" "Soluto Mini-Filter Driver" "Soluto LTD." "c:\windows\system32\drivers\soluto.sys"
- + "stexstor" "Promise SuperTrak EX Series Driver for Windows x64" "Promise Technology, Inc." "c:\windows\system32\drivers\stexstor.sys"
- + "teamviewervpn" "TeamViewerVPN Network Adapter" "TeamViewer GmbH" "c:\windows\system32\drivers\teamviewervpn.sys"
- + "USB28xxBGA" "USB 28xx BDA Driver" "eMPIA Technology, Inc." "c:\windows\system32\drivers\embda64.sys"
- + "USB28xxOEM" "USB 28xx BDA Lower filter" "eMPIA Technology, Inc." "c:\windows\system32\drivers\emoem64.sys"
- + "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
- + "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
- + "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
- + "VSPerfDrv110" "VSPerf Profiling Control Driver" "Microsoft Corporation" "d:\win8 program files (x86)\microsoft visual studio 11.0\team tools\performance tools\x64\vsperfdrv110.sys"
- + "VSTXRAID" "VIA StorX RAID Controller Driver" "VIA Corporation" "c:\windows\system32\drivers\vstxraid.sys"
- + "WacHidRouter" "Wacom HID Router" "Wacom Technology" "c:\windows\system32\drivers\wachidrouter.sys"
- + "wacmoumonitor" "Wacom HID Mouse Monitor Filter Driver" "Wacom Technology" "c:\windows\system32\drivers\wacmoumonitor.sys"
- + "wacomrouterfilter" "Wacom Router Filter Driver" "Wacom Technology" "c:\windows\system32\drivers\wacomrouterfilter.sys"
- "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
- + "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
- "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
- + "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
- + "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
- + "VIDC.LAGS" "Lagarith" " " "c:\windows\syswow64\lagarith.dll"
- + "vidc.VP60" "VP6 VIDEO FOR WINDOWS CODEC " "On2.com" "c:\windows\syswow64\vp6vfw.dll"
- + "vidc.VP61" "VP6 VIDEO FOR WINDOWS CODEC " "On2.com" "c:\windows\syswow64\vp6vfw.dll"
- "HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
- + "Theora Encode Filter" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsftheoraencoder.dll"
- + "WebM Muxer Filter" "WebM Multiplexer Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\webmmux.dll"
- + "WebM Splitter Filter" "Webm Splitter Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\webmsplit.dll"
- + "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\vp8decoder.dll"
- + "WebM VP8 Encoder Filter" "WebM VP8 Encoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\vp8encoder.dll"
- + "Xiph.Org FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfflacdecoder.dll"
- + "Xiph.Org FLAC Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfflacencoder.dll"
- + "Xiph.Org Native FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfnativeflacsource.dll"
- + "Xiph.Org Ogg Demuxer" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfoggdemux2.dll"
- + "Xiph.Org Ogg Muxer" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfoggmux.dll"
- + "Xiph.Org Speex Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfspeexdecoder.dll"
- + "Xiph.Org Speex Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfspeexencoder.dll"
- + "Xiph.Org Theora Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsftheoradecoder.dll"
- + "Xiph.Org Vorbis Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfvorbisdecoder.dll"
- + "Xiph.Org Vorbis Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfvorbisencoder.dll"
- "HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
- + "Audio Resample" "DirectShow Audio Resample Filter" "digtv.ws" "c:\program files (x86)\virtual vcr\filters\audioresample.ax"
- + "Audio Scope" "Audio Scope" " " "c:\program files (x86)\virtual vcr\filters\scope.ax"
- + "Bytescout Screen Capturing Filter" "Bytescout Virtual Camera Filter acts like a video capture source." "Bytescout" "c:\windows\syswow64\bytescoutscreencapturingfilter.dll"
- + "Bytescout Video Mixer Filter" "Bytescout Video Mixer Filter mixes two video streams into one." "Bytescout" "c:\windows\syswow64\bytescoutvideomixerfilter.dll"
- + "Colour Histogram" "VirtualVCR Video Histogram Filter" "digtv.ws" "c:\program files (x86)\virtual vcr\filters\histogram.ax"
- + "Flow Meter" "VirtualVCR FlowMeter Filter" "www.DigTV.ws" "c:\program files (x86)\virtual vcr\filters\flowmeter.ax"
- + "Theora Encode Filter" "" "" "c:\program files (x86)\xiph.org\open codecs\dsftheoraencoder.dll"
- + "Video Crop" "VirtualVCR Video Crop Filter" "digtv.ws" "c:\program files (x86)\virtual vcr\filters\videocrop.ax"
- + "WebM Muxer Filter" "WebM Multiplexer Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\webmmux.dll"
- + "WebM Splitter Filter" "Webm Splitter Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\webmsplit.dll"
- + "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\vp8decoder.dll"
- + "WebM VP8 Encoder Filter" "WebM VP8 Encoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\vp8encoder.dll"
- + "Xiph.Org FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfflacdecoder.dll"
- + "Xiph.Org FLAC Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfflacencoder.dll"
- + "Xiph.Org Native FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfnativeflacsource.dll"
- + "Xiph.Org Ogg Demuxer" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfoggdemux2.dll"
- + "Xiph.Org Ogg Muxer" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfoggmux.dll"
- + "Xiph.Org Speex Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfspeexdecoder.dll"
- + "Xiph.Org Speex Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfspeexencoder.dll"
- + "Xiph.Org Theora Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsftheoradecoder.dll"
- + "Xiph.Org Vorbis Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfvorbisdecoder.dll"
- + "Xiph.Org Vorbis Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfvorbisencoder.dll"
- "HKLM\Software\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
- + "{5FDD51E2-A9D0-44CE-8C8D-162BA0C591A0}" "Microsoft Camera Codec Pack" "Microsoft Corporation" "c:\program files\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
- "HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
- + "Photoshop Codec" "PSDCodec" "Microsoft Corporation" "d:\win8 program files (x86)\microsoft visual studio 11.0\blend\imaging\psdcodec.dll"
- + "{5FDD51E2-A9D0-44CE-8C8D-162BA0C591A0}" "Microsoft Camera Codec Pack" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
- "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" ""
- + "C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL" "" "" "File not found: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL"
- "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" ""
- + "C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll" "" "" "File not found: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll"
- "HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" ""
- + "_Wow64" "" "" "File not found: C:\Windows\syswow64\Wow64.dll"
- + "_Wow64cpu" "" "" "File not found: C:\Windows\syswow64\Wow64cpu.dll"
- + "_Wow64win" "" "" "File not found: C:\Windows\syswow64\Wow64win.dll"
- "HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
- + "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
- "HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
- + "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
- "HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
- + "PCL hpz3llhn" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3llhn.dll"
- + "pdfcmon" "pdfcmon" "pdfforge GbR" "c:\windows\system32\pdfcmon.dll"
- "C:\Users\RMM31_000\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
- + "Avast! antivirus monitor" "Avast! antivirus sidebar gadget." "AVAST Software" "C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget\Gadget.xml"[/spoiler]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement