Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Again again and again


  • Please log in to reply
8 replies to this topic

#1 teebe

teebe

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 14 May 2015 - 08:56 AM

Windows update repetidetly fails to install some updates:

 

Update for Windows 7 for x64-based Systems (KB2994023)

Installation date: ‎14-‎May-‎15 16:06

Installation status: Failed

Error details: Code 80070570
-----------------------------------------

Security Update for Windows 7 for x64-based Systems (KB2984981)

Installation date: ‎14-‎May-‎15 15:59

Installation status: Failed

Error details: Code 80070570
-----------------------------------------

 

 

while other went through.

 

Many adv's not belonging to google like ask.com, mycommerce, inprice..

Restore from hybernate and also from sleep will fail, requireing to power-off laptop

Also, sticky appearance, like is desktop was accessed through remote desktop connection

 

Thank you

 

Teebe

 
 


BC AdBot (Login to Remove)

 


#2 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:06:08 PM

Posted 14 May 2015 - 11:24 AM

Hi there,

Let's have a look.

MiniToolbox by Farbar

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore Points
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

===

Security Check by screen317
  • Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt. Please copy and paste the contents of the log in your next reply.

Regards,
Alex

#3 teebe

teebe
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 14 May 2015 - 12:44 PM

RESULTS.TXT

 

MiniToolBox by Farbar  Version: 11-05-2015 01
Ran by alee (administrator) on 14-05-2015 at 23:52:04
Running from "C:\Users\alee\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 3 (X64)
Model: QIWG5 Manufacturer: LENOVO
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 www.adobeereg.com 127.0.0.1 www.wip3.adobe.com 127.0.0.1 www.wip4.adobe.com #192.150.18.200
127.0.0.1 125.252.224.90                       
127.0.0.1 125.252.224.91
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-2.adobe.com 127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-4.adobe.com 127.0.0.1 3dns-5.adobe.com 127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.com 127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com 127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip3.adobe.com 127.0.0.1 activate.wip4.adobe.com 127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe.activate.com
127.0.0.1 adobe.activate.com 127.0.0.1 adobeereg.com                        
127.0.0.1 adobeereg.com 127.0.0.1 ereg.adobe.com
127.0.0.1 ereg.adobe.com 127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 ereg.wip4.adobe.com 127.0.0.1 hl2rcv.adobe.com
127.0.0.1 hl2rcv.adobe.com 127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com

There are 5 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Qualcomm Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Hardware not present)
TAP-Windows Adapter V9 = Local Area Connection (Media disconnected)
Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.20) = CAT (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : alee-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Mixed
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : TAP-Windows Adapter V9 #4
   Physical Address. . . . . . . . . : 00-FF-5A-D6-D2-87
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter CAT:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : B8-88-E3-81-85-FF
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Qualcomm Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : 74-E5-43-33-71-4A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::492a:66e:46e3:9ac9%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.66.252(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, May 14, 2015 20:02:08
   Lease Expires . . . . . . . . . . : Friday, May 15, 2015 01:13:55
   Default Gateway . . . . . . . . . : 192.168.66.254
   DHCP Server . . . . . . . . . . . : 192.168.66.254
   DHCPv6 IAID . . . . . . . . . . . : 343205187
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-CE-13-FA-B8-88-E3-81-85-FF
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       208.67.222.222
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter VirtualBox Host-Only Network:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
   Physical Address. . . . . . . . . : 08-00-27-00-F0-68
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::460:decd:fdf:8aec%22(Preferred)
   Autoconfiguration IPv4 Address. . : 169.254.138.236(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.0.0
   Default Gateway . . . . . . . . . :
   DHCPv6 IAID . . . . . . . . . . . : 503840807
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-CE-13-FA-B8-88-E3-81-85-FF
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Reusable ISATAP Interface {F20B0CF7-886A-4B39-9E17-E8FFB190D855}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {42E4A242-53C9-457C-AE26-39CD293BBB54}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{CE583C2C-8961-4C11-8107-DED9159E47E7}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{5AD6D287-4790-40E7-AA94-DF4E643155E9}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  8.8.8.8

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Addresses:  2404:6800:4001:805::1003
      110.164.16.39
      110.164.16.30
      110.164.16.24
      110.164.16.59
      110.164.16.54
      110.164.16.34
      110.164.16.49
      110.164.16.50
      110.164.16.40
      110.164.16.20
      110.164.16.44
      110.164.16.29
      110.164.16.35
      110.164.16.55
      110.164.16.25
      110.164.16.45


Pinging google.com [110.164.16.39] with 32 bytes of data:
Reply from 110.164.16.39: bytes=32 time=36ms TTL=60
Reply from 110.164.16.39: bytes=32 time=36ms TTL=60

Ping statistics for 110.164.16.39:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 36ms, Maximum = 36ms, Average = 36ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    yahoo.com
Addresses:  98.138.253.109
      206.190.36.45
      98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=315ms TTL=51
Reply from 98.138.253.109: bytes=32 time=303ms TTL=51

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 303ms, Maximum = 315ms, Average = 309ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 29...00 ff 5a d6 d2 87 ......TAP-Windows Adapter V9 #4
 12...b8 88 e3 81 85 ff ......Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.20)
 11...74 e5 43 33 71 4a ......Qualcomm Atheros AR9285 Wireless Network Adapter
 22...08 00 27 00 f0 68 ......VirtualBox Host-Only Ethernet Adapter
  1...........................Software Loopback Interface 1
 31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 32...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0   192.168.66.254   192.168.66.252     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      169.254.0.0      255.255.0.0         On-link   169.254.138.236    276
  169.254.138.236  255.255.255.255         On-link   169.254.138.236    276
  169.254.255.255  255.255.255.255         On-link   169.254.138.236    276
     192.168.66.0    255.255.255.0         On-link    192.168.66.252    281
   192.168.66.252  255.255.255.255         On-link    192.168.66.252    281
   192.168.66.255  255.255.255.255         On-link    192.168.66.252    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link   169.254.138.236    276
        224.0.0.0        240.0.0.0         On-link    192.168.66.252    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link   169.254.138.236    276
  255.255.255.255  255.255.255.255         On-link    192.168.66.252    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 22    276 fe80::/64                On-link
 11    281 fe80::/64                On-link
 22    276 fe80::460:decd:fdf:8aec/128
                                    On-link
 11    281 fe80::492a:66e:46e3:9ac9/128
                                    On-link
  1    306 ff00::/8                 On-link
 22    276 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============
Error: (05/14/2015 11:50:25 PM) (Source: Service Control Manager) (User: )
Description: The Wondershare Application Framework Service service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2015-01-24 18:49:56.454
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-24 18:49:56.438
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-24 18:49:56.423
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-24 18:49:56.407
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-08 16:23:11.400
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-08 16:23:11.383
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-08 16:23:11.366
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-08 16:23:11.344
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-06 02:40:14.347
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-06 02:40:14.329
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

[navigasi.net]Garmin v2.67NT (HKLM-x32\...\Free Indonesia Map for Garmin NT_is1) (Version:  - )
µTorrent (HKCU\...\uTorrent) (Version: 3.4.3.40097 - BitTorrent Inc.)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.09 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.9.1.474 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\{15AE611F-5A40-4BD0-9291-1C6856BDB9A4}) (Version: 14.0.0.176 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{F2321021-08A2-44D6-B1DF-BDB415F23EC4}) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.4 64-bit (HKLM\...\{11A955CD-4398-405A-886D-E464C3618FBF}) (Version: 4.4.1 - Adobe)
Adobe Photoshop Lightroom 5.7 64-bit (HKLM\...\{1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD}) (Version: 5.7.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1492, 24.04.2015 - AIMP DevTeam)
ANT Drivers Installer x64 (HKLM\...\{431CE782-4C51-4996-B36F-5D98D5527538}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Assessments on Client (HKLM-x32\...\{C1C83898-5A60-AE9D-A3AB-7534375CA453}) (Version: 8.100.26629 - Microsoft) Hidden
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.9.9 - Atheros Communications Inc.)
Attachments Processor for Outlook (HKLM-x32\...\{2006DA28-2AC7-44C4-A04D-FE87DCB0AF66}) (Version: 4.4.0 - MAPILab Ltd.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Aureas v9.5 (HKLM-x32\...\Aureas95_is1) (Version: 9.5 - Aureas Paris)
Autosaviour v2.0.0 for Adobe™ Illustrator™ CS5-CC(2014) (HKLM\...\{24E59EC1-C23B-4B21-BBB1-01754A7E2980}) (Version: 2.0.0 - Astute Graphics Limited)
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.2 - GPL Public release.)
Blender (HKLM\...\Blender) (Version: 2.69 - Blender Foundation)
calibre (HKLM-x32\...\{35FF5DC5-A622-4055-A8BB-6D4F01AF6F57}) (Version: 1.22.0 - Kovid Goyal)
Capture NX-D (HKLM\...\{56E8726C-8674-4715-8535-011DE67F2A6D}) (Version: 0.9.1 - Nikon)
Celestia 1.5.1 (HKLM-x32\...\Celestia_is1) (Version:  - Shatters Software)
CGS17_Setup_x64 (HKLM\...\{83646B67-A878-4E95-BB4B-AF4A6E61F28C}) (Version: 17.0 - Corel Corporation) Hidden
ColliderScribe v1.2.4 for Adobe™ Illustrator™ CS5-CC(2014) (HKLM\...\{06F06E59-6F3C-404C-BA8F-86E2C3F4D4F9}) (Version: 1.2.4 - Astute Graphics Limited)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.32.50 - Conexant)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{FD4A43CE-ABAE-4161-83AC-314A3C804F42}) (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (HKLM\...\{2C91CB9D-323D-43E5-A433-229B71CFB773}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (HKLM\...\{9178F0A8-B6F6-4DA7-AD63-317CC4875F4B}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (HKLM\...\{BD036E95-A9CD-4DED-B744-95AB1DCAFF0C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (HKLM\...\{5162E418-BB43-4C8F-ACD6-069645EF98C3}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (HKLM\...\{2C0DDC74-5234-43DD-BB5A-0645B8FE5289}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x64) (HKLM\...\{3BB8EB77-737B-4B32-BAB9-08C7110C46BD}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (HKLM\...\{D10A5CFA-FE33-4F06-AE37-554604F00A52}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (HKLM\...\{5406029B-67AD-4F8E-9F2D-F1959CD9CD86}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (HKLM\...\{EF44BCCD-13F9-4974-862C-CCFAF43EE082}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (HKLM\...\{13179AB2-69FD-459B-800F-81865A501AD4}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (HKLM\...\{C922F325-DD52-4E22-B204-431A06E63E51}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (HKLM\...\{1A73168F-5983-46A6-AAAB-FD83BC231E02}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (HKLM\...\{C57EDB5A-AC8E-4E03-9F1A-DC013A2BB9B2}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (HKLM\...\{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (HKLM\...\{5672E0DC-7489-4EAC-8CFD-E01B3868FCB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (HKLM\...\{966996DC-D67C-40E3-8BD4-31FA0F093571}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (HKLM\...\{D63404AC-C2F1-4B3D-96EA-9727AC9D994C}) (Version: 17.0 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dassault Systemes Doc English CATIA B205 (HKLM-x32\...\Dassault Systemes Doc English B205) (Version:  - )
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{4439D662-3289-4946-9812-8121CC75BCF7}) (Version: 8.1.2 - Dassault Systemes)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.7000.11 - Dolby Laboratories Inc)
Dropbox (HKCU\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Duplicate Email Remover (HKLM-x32\...\{7AA36634-4324-4EF4-8C0C-D8EF1FC2BEA4}) (Version: 2.17.2 - MAPILab Ltd.)
Duplicates Remover for Outlook (HKLM-x32\...\{27A46318-2195-4B4F-9D5D-9ED27C2520A2}) (Version: 2.6.0 - MAPILab Ltd.)
DynamicSketch v1.6.5 for Adobe™ Illustrator™ CS5-CC (2014) (HKLM\...\{434AAF74-7132-491E-B69C-0C523B7F78A0}) (Version: 1.6.5 - Astute Graphics Limited)
EditPlus 3 (HKLM-x32\...\EditPlus 3) (Version:  - ES-Computing)
Elevated Installer (HKLM-x32\...\{7E73C9A3-24D9-4D7F-B4C7-7E4AFE0ADCCB}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.4 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.4 - Lenovo)
Epson Print Plug-In for Photoshop (HKLM-x32\...\{55C46E37-2E54-49A4-8395-C1C252B26D09}) (Version: 1.2.1.0 - SEIKO EPSON CORPORATION)
Epson Print Plug-In for SILKYPIX (HKLM-x32\...\{1E7BB5E4-30B7-4237-94BB-DC5CE594D5B2}) (Version: 1.0.3.0 - SEIKO EPSON CORPORATION)
Epson Stylus Photo R3000 Printer Uninstall (HKLM\...\Epson Stylus Photo R3000) (Version:  - SEIKO EPSON Corporation)
Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version:  - )
ExpertGPS 5.20.0.0 (HKLM-x32\...\ExpertGPS_is1) (Version: 5.20.0.0 - TopoGrafix)
ExpressPCB (HKLM-x32\...\{ED5F7AF9-347B-4440-A211-C6236508CC08}) (Version: 7.0.2 - ExpressPCB)
FileZilla Client 3.9.0.5 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.5 - Tim Kosse)
FileZilla Server (HKLM-x32\...\FileZilla Server) (Version: beta 0.9.41 - FileZilla Project)
FinePixViewer Resource (HKLM-x32\...\{B44529FF-501E-47CD-A06D-223C161BE058}) (Version: 1.2 - FUJIFILM Corporation)
FinePixViewer Ver.5.5 (HKLM-x32\...\{24ED4D80-8294-11D5-96CD-0040266301AD}) (Version: 5.5 - FUJIFILM Corporation)
FinePixViewer YTUPL (HKLM-x32\...\{65EB09A3-993B-401E-8936-C9708CBFAB26}) (Version: 1.0 - FUJIFILM Corporation)
FIRST AND LAST Co., Ltd. Thai Lottery Lucky Numbers Generator DEMO 9.0 (HKLM-x32\...\Thai Lottery Lucky Numbers Generator DEMO) (Version: 9.0 - FIRST AND LAST Co., Ltd.)
FreeHDL 0.0.8 binary package for Win32 (HKLM-x32\...\FreeHDL_is1) (Version:  - the Qucs team)
Garmin BaseCamp (HKLM-x32\...\{7C69F731-6471-48FE-899B-1C40F80042C7}) (Version: 4.4.2 - Garmin Ltd or its subsidiaries)
Garmin City Navigator Europe NT 2012.30 Update (HKLM-x32\...\{71401465-5DAD-4E95-BCFC-B13DFDD9771E}) (Version: 15.30.0.0 - Garmin Ltd or its subsidiaries)
Garmin City Navigator Europe NTU 2015.30 (HKLM-x32\...\{63F1BF21-7435-4055-AA71-7ED2B7948C8C}) (Version: 2.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{50755d67-ae60-4e47-b3d6-ce44d01b5a95}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{9FB8EC5B-03EE-463E-8F4F-84B525B986B7}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM-x32\...\{1D91CBB5-4CB1-4757-B0FD-2122AF8AAB9E}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin MapSource (HKLM-x32\...\{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}) (Version: 6.16.3 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)
GlassWire 1.0 (remove only) (HKLM-x32\...\GlassWire 1.0) (Version: 1.0.40 - SecureMix LLC)
GMapTool 0.8.186a (HKLM-x32\...\{1873789F-59D5-4002-8A2F-60A827B78F98}_is1) (Version:  - AP)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Chrome Canary (HKCU\...\Google Chrome SxS) (Version: 44.0.2401.0 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google SketchUp Pro 2014 v14.0.4900 (HKLM-x32\...\Google SketchUp Pro 2014 v14.0.490014.0.4900) (Version: 14.0.4900 - Friends in War)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.26.9 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Helix YUV Codecs (remove only) (HKLM-x32\...\HelixYUVCodecs) (Version:  - )
Hex Race (HKCU\...\hexrace-bdbe5bf528092de05a8922fc65d77242) (Version: 0.1 - Erlin Hysenbelliu)
i1Profiler (HKLM-x32\...\i1Profiler_is1) (Version: 1.5.6 - X-Rite)
Icarus Verilog 0.9.6 (HKLM-x32\...\Icarus Verilog 0.9.6_is1) (Version: 0.9.6 - Icarus)
ICC Profile Inspector 2.4.0 (HKLM-x32\...\ICC Profile Inspector_is1) (Version:  - Huanzhao Zeng)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.5.0 - LIGHTNING UK!)
InfraRecorder (HKLM-x32\...\InfraRecorder) (Version:  - Christian Kindahl)
InkQuest v1.1.4 for Adobe™ Illustrator™ CS5-CC 2014 (18) (HKLM\...\{F0752653-9226-4B23-9AC6-DF4FCB3CE6CE}) (Version: 1.1.4 - Astute Graphics Limited)
InkScribe v1.6.4 for Adobe™ Illustrator™ CS5-CC(2014) (HKLM\...\{76341042-6E81-4B58-A053-1DF17B328318}) (Version: 1.6.4 - Astute Graphics Limited)
Intel® C++ Redistributables for Windows* on Intel® 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
IPANow! Trial Version 1.1 (HKLM-x32\...\IPANow!_is1) (Version:  - PhoneticSoft)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
ISO Creator 1.0 (HKLM-x32\...\{78D80EAF-1ADB-46A8-AF6F-EBB18B6ADBCE}) (Version: 1.0.0 - Bunny-Wabbit)
IsoBuster 3.0 (HKLM-x32\...\IsoBuster_is1) (Version: 3.0 - Smart Projects)
Janus 4.3 (HKLM-x32\...\ST5UNST #1) (Version:  - )
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
JaVaWa Device Manager 3.7 (HKLM-x32\...\{4D700EE8-5A7D-43C1-B4E2-BC8A22B482DD}_is1) (Version: 3.7 - JaVaWa GPS-tools)
JaVaWa GMTK 3.8 (HKLM-x32\...\{75BC5466-3CE9-4316-B6E8-CD1F49C3B0BE}_is1) (Version: 3.8 - JaVaWa GPS-tools)
jMonkeyEngine SDK (HKLM\...\nbi-jmonkeyplatform-3.0.5.0.4) (Version:  - )
JPEG Recovery Pro 5.0 (HKLM-x32\...\JPEG Recovery Pro5.0) (Version: 5.0 - e.World Technology Limited)
Kits Configuration Installer (HKLM-x32\...\{B74E65FD-CC47-41C5-4B89-791A3F61942D}) (Version: 8.100.25984 - Microsoft) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Laos Version 4.00 (HKLM-x32\...\Laos_is1) (Version:  - Rotweiler)
LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version:  - LastPass)
Learn Thai V3.0 (HKLM-x32\...\{9348B839-EE7A-45B0-9316-09BA94635376}) (Version: 1.0.23 - Learn-Thai.Com)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0333}) (Version: 1.12.204.1 - Lenovo EasyCamera)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1519 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1519 - CyberLink Corp.)
Lenovo Solution Center (HKLM\...\{B73D2BF9-2C82-40A4-AFA8-32CE2E501640}) (Version: 2.2.002.00 - Lenovo Group Limited)
LINE (HKLM-x32\...\LINE) (Version: 4.0.1.313 - LINE Corporation)
LProf (remove only) (HKLM-x32\...\LProf) (Version:  - )
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MapReverseConverter 4.5 (HKLM-x32\...\{C38FFB73-2587-4697-BB64-F0D9E7393A0E}_is1) (Version: 4.5 - JaVaWa GPS-tools)
Mathematica Extras 9.0 (4092550) (HKLM\...\A-WIN-Extras 9.0.1 4092550_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
MediaInfo 0.7.71 (HKLM\...\MediaInfo) (Version: 0.7.71 - MediaArea.net)
Miami Night Ride 3D Racing (HKCU\...\miaminightride3dracing-0481548a1a5891215fd8e9a1bee65183) (Version:  - Rémi Vansteelandt)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{D553E8CC-5C56-4B06-AC1A-A443DFF31092}) (Version: 6.3.9723.0 - Microsoft Corporation)
Microsoft Flight Simulator X Demo (HKLM-x32\...\InstallShield_{B98A34C0-A6A2-4087-B272-557C1C6D0A07}) (Version: 10.0.60905 - Microsoft Game Studios)
Microsoft Flight Simulator X Steam Edition (HKLM-x32\...\Microsoft Flight Simulator X Steam Edition_is1) (Version:  - )
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM-x32\...\Office14.PRJPRO) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
MinGW32 C/C++ 0.0.2 binary package for Win32 (HKLM-x32\...\MinGW32 C/C++_is1) (Version:  - the Qucs team)
MiniTool Partition Wizard Home Edition 8.0 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
MirrorMe v1.1.4 for Adobe™ Illustrator™ CS5-CC(2014) (HKLM\...\{B4A03249-A6CF-484F-8DB3-F4B1F922A174}) (Version: 1.1.4 - Astute Graphics Limited)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker 6.0 for Windows 7 (64-bit) (HKLM\...\{A7395F20-2B22-4CB8-8510-B452C0F47E02}) (Version: 6.0.0 - Microsoft Corporation)
Mozilla Firefox 37.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 en-US)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MPC-HC 1.7.0 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.0.7858 - MPC-HC Team)
MPC-HC 1.7.7 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.7 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Myanmar Routable Ver. 1.26 (HKLM-x32\...\Rotweilers Myanmar_is1) (Version:  - Rotweiler)
Nalpeiron Service Update to 7.3.5 (HKLM-x32\...\{251D3D16-D48D-40E3-9B35-243274D64B78}) (Version: 7.3.5 - Nalpeiron) Hidden
Nalpeiron Service Update to 7.3.5 (HKLM-x32\...\Nalpeiron Service Update to 7.3.5) (Version: 7.3.5 - Nalpeiron)
Navit (HKLM-x32\...\Navit) (Version: 0.2.0 - The Navit Team)
NightRider Map (HKLM-x32\...\NightRider Map) (Version:  - )
NVIDIA Graphics Driver 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
Open Visual Traceroute version 1.6.0 (HKLM-x32\...\{74E0B6B8-9214-46A4-A0D7-6373A659A643}_is1) (Version: 1.6.0 - Leo Lewis)
OpenVPN 2.3.6-I601  (HKLM-x32\...\OpenVPN) (Version: 2.3.6-I601 - )
Opera Stable 29.0.1795.47 (HKLM-x32\...\Opera 29.0.1795.47) (Version: 29.0.1795.47 - Opera Software ASA)
Oracle VM VirtualBox 4.3.22 (HKLM\...\{F053F74A-A631-4CFA-A271-6D0747599BC9}) (Version: 4.3.22 - Oracle Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.107 - Panda Security)
PandoraRecovery (Remove Only) (HKLM-x32\...\PandoraRecovery) (Version:  - )
Pathuku (HKCU\...\pathuku-098360997bde3cfa934849d3924b85f9) (Version: 1.30 - Robert Baker)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Phantasm v3.1.4 for Adobe™ Illustrator™ CS5-CC 2014 (18) (HKLM\...\{7B18171A-466A-4766-ADFB-0AE326359FE7}) (Version: 3.1.4 - Astute Graphics Limited)
PhoneticFonts (HKLM-x32\...\PhoneticFonts_is1) (Version:  - Western Michigan University)
Photo Plan (HKLM-x32\...\{8B9F017D-1926-414D-A739-034F244A8DFC}) (Version: 1.01.0004 - Dr. Valentin EnergieSoftware GmbH)
PhotoLine 18.5.3.0 (HKLM\...\PhotoLine_is1) (Version: 18.5.3.0 - Computerinsel GmbH)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.0 - Nikon)
Piwigo Export Plug-in version 2.2.5 for Adobe Lightroom (HKLM-x32\...\Piwigo Export Plug-in for Adobe Lightroom_is1) (Version: 2.2 - AlloyPhoto)
Planetary, Lunar, and Stellar Visibility (HKLM-x32\...\{82D73838-E380-486A-A083-9D267ADFC5CB}) (Version: 3.1.0 - Alcyone Software)
PosteRazor (HKLM-x32\...\PosteRazor_is1) (Version: 1.5.2 - Alessandro Portale)
Process Hacker 2.33 (r5590) (HKLM\...\Process_Hacker2_is1) (Version: 2.33.0.5590 - wj32)
PRODUCTIONSERVER4 (HKLM-x32\...\{409EDC2F-749C-4B7F-B705-FA080FEEA6F4}) (Version: 4.04.0079 - ColorGATE Digital Output Solutions GmbH) Hidden
ProTiler 1.0 (HKLM-x32\...\ProTiler 1.0) (Version:  - )
PTLens (HKLM\...\{4B6787A4-B814-4C6E-832B-4D8634C4585F}) (Version: 3.0.659 - ePaperPress)
PureVPN (HKLM-x32\...\PureVPN_is1) (Version: 4.1.2.0 - PureVPN)
PVsyst (HKLM-x32\...\{B9C6C030-E8C5-4733-B368-03401C9BEF6F}) (Version: 6.3.0 - PVsyst SA)
Qimage Ultimate (HKLM-x32\...\Qimage Ultimate) (Version:  - )
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Quite Universal Circuit Simulator 0.0.17 binary package for Win32 (HKLM-x32\...\Qucs_is1) (Version:  - the Qucs team)
Rasterino v1.1.4 for Adobe™ Illustrator™ CS5-CC 2014 (18) (HKLM\...\{125583F9-9A11-426E-82C5-5399C5577DC8}) (Version: 1.1.4 - Astute Graphics Limited)
RAW FILE CONVERTER EX powered by SILKYPIX (HKLM-x32\...\{30B1CCDB-209B-4E94-8311-379F2E6B6B59}) (Version: 3 - Ichikawa Soft Laboratory) Hidden
RAW FILE CONVERTER EX powered by SILKYPIX (HKLM-x32\...\InstallShield_{30B1CCDB-209B-4E94-8311-379F2E6B6B59}) (Version: 3 - Ichikawa Soft Laboratory)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7601.39016 - Realtek Semiconductor Corp.)
RETScreen Suite (HKLM-x32\...\{D380321C-5C13-4049-9DE6-417FED84A47D}) (Version: 5.0.0.16623 - RETScreen International)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
Security Task Manager 1.8g (HKLM-x32\...\Security Task Manager) (Version: 1.8g - Neuber Software)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPRO_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version:  - Microsoft)
Shadows 4.0 (HKLM-x32\...\Shadows 4.0_is1) (Version:  - François BLATEYRON)
SILKYPIX Developer Studio Pro 6 English (HKLM\...\{ADB2068B-EA4D-463F-81FB-6B9BFC408B71}) (Version: 6 - Ichikawa Soft Laboratory) Hidden
SILKYPIX Developer Studio Pro 6 English (HKLM-x32\...\InstallShield_{ADB2068B-EA4D-463F-81FB-6B9BFC408B71}) (Version: 6 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio Pro 6 English Library (HKLM\...\{78175064-D7E5-45CA-AAEA-65CEC83F8B90}) (Version: 6.0.8.1 - Ichikawa Soft Laboratory) Hidden
SILKYPIX Developer Studio Pro 6 English Library (HKLM-x32\...\InstallShield_{78175064-D7E5-45CA-AAEA-65CEC83F8B90}) (Version:  - ) Hidden
SketchUp 2013 (HKLM-x32\...\{E74C0D09-8730-4714-8C6F-019FBF7F1B42}) (Version: 13.0.3689 - Trimble Navigation Limited)
SketchUp 2014 (HKLM-x32\...\{F246092E-FA0B-47C8-9D3E-CF8C210293C8}) (Version: 14.1.1282 - Trimble Navigation Limited)
SketchUp 2015 (HKLM\...\{319CD380-1AAB-4CAD-BE1D-59189A780FA6}) (Version: 15.2.685 - Trimble Navigation Limited)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
SketchUp Viewer (HKLM-x32\...\{6A4BE330-6778-4329-AB4E-69E86786DAB6}) (Version: 14.0.4900 - Trimble Navigation Limited)
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
Smart File Advisor 1.1.1 (HKLM-x32\...\Smart File Advisor_is1) (Version: 1.1.1 - Filefacts.net)
Solar Fire v9 (HKLM-x32\...\{93397832-4E51-47E9-A10D-6C17C50E1F17}) (Version: 9.0.17 - Esoteric Technologies Pty Ltd)
Solmetric SunEye (HKLM-x32\...\Solmetric SunEye) (Version: 4.80.7256 - Solmetric Corporation)
Sonic Visualiser (HKLM-x32\...\{49ECD2A3-7B85-4DCB-A900-44D64F5C5687}) (Version: 2.3.0 - Queen Mary, University of London)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Split and Tile Trial (HKLM-x32\...\Split and Tile Trial_is1) (Version:  - )
SSC Service Utility v4.30 (HKLM-x32\...\SSC Service Utility_is1) (Version:  - SSC Localization Group)
Stellarium 0.13.1 (HKLM\...\Stellarium_is1) (Version: 0.13.1 - Stellarium team)
StellariumZodiacPlugin 0.12.0 (HKLM-x32\...\StellariumZodiacPlugin_is1) (Version:  - )
Stylism v1.1.3 for Adobe™ Illustrator™ CS5-CC(2014) (HKLM\...\{B21FC043-C5D8-4BF3-B16E-57A0F2D3F0F7}) (Version: 1.1.3 - Astute Graphics Limited)
SubScribe v1.2.4 for Adobe™ Illustrator™ CS5-CC 2014 (18) (HKLM\...\{16217FBF-CEBC-4A58-8151-333782A291C4}) (Version: 1.2.4 - Astute Graphics Limited)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC)
SysTools OST Recovery 3.2 (HKLM-x32\...\{1ECEC1F7-EEDB-4DAA-8019-FA1EEEC347A2}_is1) (Version:  - SysTools Software)
SysTools OST Recovery version 4.3 (HKLM-x32\...\{9347D0A1-A9BF-4A36-8E35-E1D16D1C9737}_is1) (Version: 4.3 - SysTools Software)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
Toolkit Documentation (HKLM-x32\...\{6C870B12-6FF2-68FC-8C3B-DD177BBF3F92}) (Version: 8.100.26629 - Microsoft) Hidden
Topaz DeNoise 5 (HKLM-x32\...\Topaz DeNoise 5) (Version: 5.1.0 - Topaz Labs, LLC)
TortoiseGit 1.8.3.0 (64 bit) (HKLM\...\{C39D5E7E-0CA3-4090-AAE3-9F7F4D5D567A}) (Version: 1.8.3.0 - TortoiseGit)
TRNSYS 17 Demo (HKLM-x32\...\TRNSYS 17 Demo) (Version: 17.02.0003 Demo - University of Wisconsin - Solar Energy Laboratory)
UIF to ISO version 1.0 (HKLM-x32\...\{D1A56C98-DCAD-4735-8E61-02C867D92DE8}_is1) (Version: 1.0 - uiftoiso.com)
UltraISO Premium V9.53 (HKLM-x32\...\UltraISO_is1) (Version:  - )
UltraStar Creator (HKLM-x32\...\UltraStar Creator) (Version: 1.1.0 - usc Community)
Uninstall dispcalGUI (HKLM-x32\...\{4714199A-0D66-4E69-97FF-7B54BFF80B88}_is1) (Version: 2.1.0.0 - Florian Höch)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 5.0.0f4 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
VectorScribe v2.3.3 for Adobe™ Illustrator™ CS5-CC (2014) (HKLM\...\{5C05A853-E780-4225-93B6-1EC75ADCE3FD}) (Version: 2.3.3 - Astute Graphics Limited)
Virtual Audio Cable 4.14 (HKLM\...\Virtual Audio Cable 4.14) (Version:  - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VoipConnect (HKLM-x32\...\VoipConnect_is1) (Version: 4.14 build 760 - Finarea S.A. Switzerland)
VueScan x64 (HKLM\...\VueScan x64) (Version:  - )
WicReset version 3.0.1.1 (HKLM-x32\...\{20379D3A-321B-4830-96A6-37183B713AE8}_is1) (Version: 3.0.1.1 - TWOMANUALS)
WidthScribe v2.0.1 for Adobe™ Illustrator™ CS5-CC(2014) (HKLM\...\{A85CE705-6FE2-49CE-918F-328C68BA08D5}) (Version: 2.0.1 - Astute Graphics Limited)
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows Assessment and Deployment Kit for Windows 8.1 (HKLM-x32\...\{9277b0c4-2ca8-431b-b4e2-98daf4005ec0}) (Version: 8.100.26629 - Microsoft Corporation)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Driver Package - Lenovo (ACPIVPC) System  (12/15/2011 7.1.0.1) (HKLM\...\99841829BE839365AA67B2AD0E50D371F59F8A1E) (Version: 12/15/2011 7.1.0.1 - Lenovo)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Firewall Control (HKLM\...\Windows Firewall Control) (Version: 4.4.1.1 - BiniSoft.org)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Mobile Device Center (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows Mobile Device Center Driver Update (HKLM\...\{92DBCA36-9B41-4DD1-941A-AED149DD37F0}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WinSCP 5.5.5 (HKLM-x32\...\winscp3_is1) (Version: 5.5.5 - Martin Prikryl)
Wireshark 1.12.4 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.4 - The Wireshark developer community, http://www.wireshark.org)
Wolfram CDF Player (M-WIN-D 9.0.1 4092685) (HKLM-x32\...\M-WIN-D 9.0.1 4092685_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
Wondershare Dr.Fone for Android(Build 4.8.1.136) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 4.8.1.136 - Wondershare Software Co.,Ltd.)
Wondershare MobileGo(Version 7.4.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 7.4.0 - Wondershare)
Wondershare MobileTrans ( Version 7.0.1 ) (HKLM-x32\...\{18CDCEAA-A9E4-4A4C-AC0E-C15E87C30EA5}_is1) (Version: 7.0.1 - Wondershare)
WPT Redistributables (HKLM-x32\...\{64F3FB9A-9250-B2D6-00B4-50BE0358AEE8}) (Version: 8.100.26629 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{BFF81CB5-E8C7-4184-FBB4-74ADFBC6CCCB}) (Version: 8.100.26629 - Microsoft) Hidden
X-Rite Device Services Manager (HKLM-x32\...\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97}) (Version: 2.3.82 - X-Rite)
Zero Assumption Recovery Version 9 (HKLM-x32\...\Zero Assumption Recovery_is1) (Version:  - )
Zero Install (HKLM\...\Zero Install_is1) (Version: 2.7.1 - 0install.de)
ZynAddSubFX 2.2.0 (HKLM-x32\...\ZynAddSubFX) (Version: 2.2.0 - Nasca Octavian Paul)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden

========================= Devices: ================================

Name: PS/2 Compatible Mouse
Description: PS/2 Compatible Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Device ID: ACPI\ETD0613\4&1BC423EF&0
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Device ID: {5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\VWIFIMP\5&2A35193&0&01
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Generic Bluetooth Adapter
Description: Generic Bluetooth Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: GenericAdapter
Service: BTHUSB
Device ID: USB\VID_0CF3&PID_3002\6&22B44A84&0&3
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.


========================= Memory info: ===================================

Percentage of memory in use: 55%
Total physical RAM: 6009.77 MB
Available physical RAM: 2645.83 MB
Total Pagefile: 12017.75 MB
Available Pagefile: 8123.97 MB
Total Virtual: 4095.88 MB
Available Virtual: 3936.83 MB

========================= Partitions: =====================================

1 Drive c: (Lenovo) (Fixed) (Total:579.12 GB) (Free:116.95 GB) NTFS
2 Drive d: (Lenovo) (Fixed) (Total:97.66 GB) (Free:52.74 GB) NTFS

========================= Users: ========================================

User accounts for \\ALEE-PC

Administrator            alee                     Guest                    

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

13-05-2015 20:47:29 Windows Update
14-05-2015 01:22:48 Revo Uninstaller Pro's restore point - PRiiceMinus
14-05-2015 06:09:14 Revo Uninstaller Pro's restore point - Everything 1.3.4.686 (x64)
14-05-2015 06:35:54 Windows Update
14-05-2015 08:12:21 Windows Update

**** End of log ****

 

 

 

 

 

 

 

CHECKUP.TXT

 

 Results of screen317's Security Check version 1.001  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Panda Cloud Cleaner   
 Java 8 Update 45  
 JaVaWa Device Manager 3.7  
 JaVaWa GMTK 3.8   
 Adobe Flash Player 17.0.0.169  
 Mozilla Firefox (37.0.2)
 Google Chrome (42.0.2311.135)
 Google Chrome (42.0.2311.90)
````````Process Check: objlist.exe by Laurent````````  
 Windows Firewall Control wfc.exe   
 Windows Firewall Control wfcs.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````



#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:06:08 PM

Posted 14 May 2015 - 01:02 PM

Hi there,

Is it just me or you do not have a resident antivirus running?

Please uninstall the following software from Programs and Features:

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)

If you run into any trouble, let me know.

After that please run this.

Emsisoft Emergency Kit

Please download Emsisoft Emergency Kit and save it to your desktop. Double click on the EmsisoftEmergencyKit file you downloaded to extract its contents and create a shortcut on the desktop. Leave all settings as they are and click the Extract button at the bottom. A folder named EEK will be created in the root of the drive (usually c:\).
  • After extraction please double-click on the new Start Emsisoft Emergency Kit icon on your desktop.
  • The first time you launch it, Emsisoft Emergency Kit will recommend that you allow it to download updates. Please click Yes so that it downloads the latest database updates.
  • When the update process is complete, a new button will appear in the lower-left corner that says Back. Click on this button to return to the Overview screen.
  • Click on Scan to be taken to the scan options. If you are asked if you want the scanner to scan for Potentially Unwanted Programs, then click Yes.
  • Click on the Full Scan button to start the scan.
  • When the scan is completed click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
  • When the threats have been quarantined, click the View report button in the lower-right corner, and the scan log will be opened in Notepad.
  • Please save the log in Notepad on your desktop, and attach it to your next reply.
  • When you close Emsisoft Emergency Kit, it will give you an option to sign up for a newsletter. This is optional, and is not necessary for the malware removal process.
Regards,
Alex

#5 teebe

teebe
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 15 May 2015 - 10:39 AM

QA:

How to attach a file

Deleting/quarantining an installation file prevents from what

What av ? I tried many but no one give alarms on infections

 

priceminus adv is still alive and well

 

Regards



#6 RolandJS

RolandJS

  • Members
  • 4,552 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin TX metro area
  • Local time:11:08 AM

Posted 15 May 2015 - 10:53 AM

I use Avira and Avast on differing computers, I get plenty of alerts; which one have you tried?


"Take care of thy backups and thy restores shall take care of thee."  -- Ben Franklin revisited.

http://collegecafe.fr.yuku.com/forums/45/Computer-Technologies/

Backup, backup, backup! -- Lady Fitzgerald (w7forums)

Clone or Image often! Backup... -- RockE (WSL)


#7 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:06:08 PM

Posted 15 May 2015 - 11:17 AM

Hi there,

This area (Am I Infected) does not allow file attachments. Please copy and paste the contents of the logs in your reply.

Deleting/quarantining an installation file prevents it from installing its contents on your computer - I assume you are asking this because Emsisoft Emergency Kit quarantined some of your installers?

Adware are more commonly detected by anti-malware software - try Emsisoft and/or Malwarebytes' real time protection to detect them before they install on your machines.

Regards,
Alex

#8 teebe

teebe
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 15 May 2015 - 11:35 AM

How about priceminus pop wuindow?
 
Regarding malware, if the installer carries a malware, its installed prog can be clean?  (sorry for the ignorance)


 
 
Emsisoft Emergency Kit - Version 9.0
Last update: 15-May-15 05:19:38
User account: alee-PC\alee

Scan settings:

Scan type: Full Scan
Objects: Rootkits, Memory, Traces, C:\, D:\

Detect PUPs: On
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start: 15-May-15 05:27:03
C:\$RECYCLE.BIN\S-1-5-21-2915537779-2898195281-3898161190-1000\$RGCAL51.exe detected: Gen:Variant.Adware.MPLug.35 ( B)
C:\$RECYCLE.BIN\S-1-5-21-2915537779-2898195281-3898161190-1000\$RNLAKJL\PRiiceMinus.exe detected: Gen:Variant.Mikey.11576 (B )
C:\_dwnld_folders\__ADOBE__\-- Adobe Acrobat XI Pro v11.0.3\Acrobat 11.0.3 plus keygen\keygen.rar -> keygen.exe detected: Application.Keygen.DG (B )
C:\_dwnld_folders\__ADOBE__\-- Adobe Acrobat XI Pro v11.0.3\Acrobat 11.0.3 plus keygen\keygen.rar -> xf-mccs6.exe detected: Application.Keygen.EJ (B )
C:\_dwnld_folders\__ADOBE__\-- Adobe Acrobat XI Pro v11.0.3\CR@CK.rar -> CR@CK\keygen.exe detected: Application.Keygen.DG (B )
C:\_dwnld_folders\__ADOBE__\-- Adobe Acrobat XI Pro v11.0.3\CR@CK.rar -> CR@CK\xf-mccs6.exe detected: Application.Keygen.EJ (B )
C:\_dwnld_folders\__ADOBE__\-- Adobe Acrobat XI Pro v11.0.3\CR@CK\CORE10k.EXE detected: Riskware.Win32.Keygen (A )
C:\_dwnld_folders\__ADOBE__\-- Adobe Acrobat XI Pro v11.0.3\CR@CK\keygen.exe detected: Application.Keygen.DG (B )
C:\_dwnld_folders\__ADOBE__\-- Adobe Acrobat XI Pro v11.0.3\CR@CK\xf-mccs6.exe detected: Application.Keygen.EJ (B )
C:\_dwnld_folders\__ADOBE__\Adobe Acrobat X Pro 10.1.4 (English French German ) (keygen-CORE ) [ChingLiu]\Adobe Master Collection CS6 X-force keygen - working - 7.08.12\Crack - Win\xf-mccs6.exe detected: Application.Keygen.EJ (B )
C:\_dwnld_folders\__ADOBE__\Adobe Acrobat X Pro 10.1.4 (English French German ) (keygen-CORE ) [ChingLiu]\Adobe Master Collection CS6 X-force keygen - working - 7.08.12\Crack-OSX\xf-amcs6.dmg detected: Application.MAC.OSX.Keygen.B (B )
C:\_dwnld_folders\__AUTODESK__\autodesk autocad 2014 keygen\xf-adsk32\xf-adsk32.exe detected: Riskware.Win32.Keygen (A )
C:\_dwnld_folders\__AUTODESK__\autodesk autocad 2014 keygen\xf-adsk64\xf-adsk64.exe detected: Riskware.Win32.Keygen (A )
C:\_dwnld_folders\__AUTODESK__\AUTODESK.2013.PRODUCTS.UNIVERSAL.KEYGEN-XFORCE\Crack-Win\xf-adsk2013_x32.exe detected: Riskware.Win32.Keygen (A )
C:\_dwnld_folders\__AUTODESK__\AUTODESK.2013.PRODUCTS.UNIVERSAL.KEYGEN-XFORCE\Crack-Win\xf-adsk2013_x64.exe detected: Riskware.Win32.Keygen (A )
C:\_dwnld_folders\__AUTODESK__\Portable.Autodesk.AutoCAD.2010\Keygen\Keygen Autodesk 2010 x32.exe detected: Application.Keygen.CD (B )
C:\_dwnld_folders\__AUTODESK__\Portable.Autodesk.AutoCAD.2010\Keygen\Keygen Autodesk 2010 x64.exe detected: Trojan.Generic.12675450 (B )
C:\_Dwnlod_\Adjprog Exe__3038_i1358992432_il97889.exe detected: Gen:Variant.Application.Bundler.Amonetize.18 (B )
C:\_Dwnlod_\Adobe Acrobat XI Pro 11.0.9 Multilanguage [ChingLiu]\patch MPT\adobe.acrobat.xi.pro.patch-MPT.exe detected: Riskware.Win32.CrackTool (A )
C:\_Dwnlod_\Adobe Illustrator CS6 Crack .DLL Files RELOADED\64-bit (x64 )\amtlib.dll detected: Riskware.Win32.CrackTool (A )
C:\_Dwnlod_\AmbieraCopperCube.4.4.Professional.Edition.rar -> crack\coppercube.professional.4.2-MPT.exe detected: Gen:Variant.Application.Kazy.133014 (B )
C:\_Dwnlod_\AmbieraCopperCube_4_4_Professional_SilenT.rar -> AmbieraCopperCube_4_4_Professional_SilenT\crack\coppercube.professional.4.2-MPT.exe detected: Gen:Variant.Application.Kazy.133014 (B )
C:\_Dwnlod_\cbsidlm-cbsi183-Unit_Converter-ORG-10079877.exe detected: Application.Win32.InstallAd (A )
C:\_Dwnlod_\cbsidlm-cbsi188-Pandora_Recovery-BP-10694796.exe detected: Application.Win32.AppInstall (A )
C:\_Dwnlod_\Crack_Pvsyst_6_Forum_downloader.exe detected: Gen:Variant.Mikey.12297 (B )
C:\_Dwnlod_\iLividSetup-r1184-n-bf.exe detected: Application.InstallAd (A )
C:\_Dwnlod_\iLividSetup-r139-n-bc.exe detected: Application.Toolbar (A )
C:\_Dwnlod_\intel graphics and media control panel__3516_i731896054_il237701.exe detected: Gen:Variant.Application.Bundler.Amonetize.14 (B )
C:\_Dwnlod_\InternationalPrimoPDF.exe detected: Application.Win32.AdSweet (A )
C:\_Dwnlod_\jre-8u31-windows-i586-iftw.exe detected: Gen:Variant.Kazy.498718 (B )
C:\_Dwnlod_\password for navteq maps 2013 q3 update_10924_i824095_il345.exe detected: Adware.Generic.1133296 (B )
C:\_Dwnlod_\setup.exe detected: Gen:Variant.Application.Bundler.SoftPulse.8 (B )
C:\_Dwnlod_\SKETCHUP PRO 2015 PTBR www.ricmessimasters.com\SketchUp2015crack.rar -> su2015-32-patch.exe detected: Trojan.Generic.12396386 (B )
C:\_Dwnlod_\SKETCHUP PRO 2015 PTBR www.ricmessimasters.com\SketchUp2015crack.rar -> su2015-64-patch.exe detected: Dropped:Trojan.Generic.12448085 (B )
C:\_Dwnlod_\Solar.Fire.Gold.v7.0.1\Solar.Fire.Gold.v7.0.1.rar -> Solar.Fire.Gold.v7.0.1\Cracked Files (see NFO )\PLNTRIUM.exe detected: Trojan.Packed.11216 (B )
C:\_Dwnlod_\Solar.Fire.Gold.v7.0.1\Solar.Fire.Gold.v7.0.1.rar -> Solar.Fire.Gold.v7.0.1\Cracked Files (see NFO )\SOLARMAP.exe detected: Trojan.Generic.1909406 (B )
C:\CCE_Quarantine\{59C37D36-F75D-42C3-8BB6-9C0F1EED7A50} detected: Gen:Variant.Application.Bundler.Amonetize.14 (B )
C:\CCE_Quarantine\{EC9FCA15-93B9-4AA3-B453-CAB8790A804D} detected: Gen:Variant.Application.Bundler.Amonetize.14 (B )
C:\Program Files\Adobe\Adobe Illustrator CS6 (64 Bit )\Support Files\Contents\Windows\amtlib.dll detected: Riskware.Win32.CrackTool (A )
C:\Qoobox\Quarantine\C\Program Files (x86 )\9593a4b0-7f21-404c-9097-9eee801928b2\4080d22b-183c-49ee-8364-0520a33772d9.dll.vir detected: Application.Generic.1066060 (B )
C:\Qoobox\Quarantine\C\Program Files (x86 )\9593a4b0-7f21-404c-9097-9eee801928b2\9593a4b0-7f21-404c-9097-9eee801928b2.dll.vir detected: Application.Generic.1066060 (B )
C:\Users\alee\AppData\Local\Microsoft\Outlook\or_it\19990707-20040707.pst -> [Time: 2000/12/19 23:56:08][From: carloco] -> win driver4.32key.zip -> keygen.exe detected: Gen:Trojan.Heur.SFM.aGWbae8JRVfi (B )
C:\Users\alee\AppData\Local\Temp\Adjprog Exe__3038_i1358992432_il97889.exe detected: Gen:Variant.Application.Bundler.Amonetize.18 (B )
C:\Users\alee\AppData\Local\Temp\awh4497.tmp detected: Gen:Variant.Adware.Strictor.68509 (B )
C:\Users\alee\AppData\Local\Temp\awhDDD7.tmp detected: Gen:Variant.Adware.Strictor.68509 (B )
C:\Users\alee\AppData\Local\Temp\BF80\temp\whatsapp for pc download windows 78 computer without bluestacks(1 ).exe detected: Gen:Variant.Adware.Mplug.41 (B )
C:\Users\alee\AppData\Local\Temp\E860\temp\whatsapp for pc download windows 78 computer without bluestacks(1 ).exe detected: Gen:Variant.Adware.Mplug.41 (B )
C:\Users\alee\AppData\Local\Temp\nsd1B41.tmp\combofix latest update_10924_i20724715_il345.exe detected: Gen:Variant.Application.Jatif.107 (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\chrome\content\options.js detected: Trojan.Script.635497 (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\180.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\184.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\192.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\193.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\195.js detected: Application.Toolbar (A )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\200.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\221.js detected: Application.Toolbar (A )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\223.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\253.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\262.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\263.js detected: Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\281.js detected: Adware.JS.Agent.AC (B )
C:\Users\alee\Downloads\dfdownloader_TERbFV_.exe detected: Application.Win32.AdLoad (A )
C:\Users\alee\Downloads\SmileFiles_downloader.exe detected: Gen:Variant.Application.Bundler.ExpressDownloader.2 (B )
C:\Users\alee\Downloads\SysTools-OST-Recovery-v3 2-Full exe.exe detected: Gen:Variant.Adware.Mplug.36 (B )
C:\Users\alee\Downloads\whatsapp for pc download windows 78 computer without bluestacks(1 ).exe detected: Gen:Variant.Adware.Mplug.41 (B )
C:\Users\alee\Downloads\whatsapp for pc download windows 78 computer without bluestacks.exe detected: Gen:Variant.Adware.Mplug.41 (B )

Scanned 828083
Found 66

Scan end: 15-May-15 11:39:17
Scan time: 6:12:14

C:\Users\alee\Downloads\whatsapp for pc download windows 78 computer without bluestacks.exe Quarantined Gen:Variant.Adware.Mplug.41 (B )
C:\Users\alee\Downloads\whatsapp for pc download windows 78 computer without bluestacks(1 ).exe Quarantined Gen:Variant.Adware.Mplug.41 (B )
C:\Users\alee\Downloads\SysTools-OST-Recovery-v3 2-Full exe.exe Quarantined Gen:Variant.Adware.Mplug.36 (B )
C:\Users\alee\Downloads\SmileFiles_downloader.exe Quarantined Gen:Variant.Application.Bundler.ExpressDownloader.2 (B )
C:\Users\alee\Downloads\dfdownloader_TERbFV_.exe Quarantined Application.Win32.AdLoad (A )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\281.js Quarantined Adware.JS.Agent.AC (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\263.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\262.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\253.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\223.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\221.js Quarantined Application.Toolbar (A )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\200.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\195.js Quarantined Application.Toolbar (A )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\193.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\192.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\184.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\extensionData\plugins\180.js Quarantined Adware.JS.Crossrider.B (B )
C:\Users\alee\Desktop\Old Firefox Data\1enqe5wy.default-1413452192000\extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com\chrome\content\options.js Quarantined Trojan.Script.635497 (B )
C:\Users\alee\AppData\Local\Temp\nsd1B41.tmp\combofix latest update_10924_i20724715_il345.exe Quarantined Gen:Variant.Application.Jatif.107 (B )
C:\Users\alee\AppData\Local\Temp\E860\temp\whatsapp for pc download windows 78 computer without bluestacks(1 ).exe Quarantined Gen:Variant.Adware.Mplug.41 (B )
C:\Users\alee\AppData\Local\Temp\BF80\temp\whatsapp for pc download windows 78 computer without bluestacks(1 ).exe Quarantined Gen:Variant.Adware.Mplug.41 (B )
C:\Users\alee\AppData\Local\Temp\awhDDD7.tmp Quarantined Gen:Variant.Adware.Strictor.68509 (B )
C:\Users\alee\AppData\Local\Temp\awh4497.tmp Quarantined Gen:Variant.Adware.Strictor.68509 (B )
C:\Users\alee\AppData\Local\Temp\Adjprog Exe__3038_i1358992432_il97889.exe Quarantined Gen:Variant.Application.Bundler.Amonetize.18 (B )
C:\Users\alee\AppData\Local\Microsoft\Outlook\or_it\19990707-20040707.pst Quarantined Gen:Trojan.Heur.SFM.aGWbae8JRVfi (B )
C:\Qoobox\Quarantine\C\Program Files (x86 )\9593a4b0-7f21-404c-9097-9eee801928b2\9593a4b0-7f21-404c-9097-9eee801928b2.dll.vir Quarantined Application.Generic.1066060 (B )
C:\Qoobox\Quarantine\C\Program Files (x86 )\9593a4b0-7f21-404c-9097-9eee801928b2\4080d22b-183c-49ee-8364-0520a33772d9.dll.vir Quarantined Application.Generic.1066060 (B )
C:\Program Files\Adobe\Adobe Illustrator CS6 (64 Bit )\Support Files\Contents\Windows\amtlib.dll Quarantined Riskware.Win32.CrackTool (A )
C:\_Dwnlod_\Solar.Fire.Gold.v7.0.1\Solar.Fire.Gold.v7.0.1.rar Quarantined Trojan.Generic.1909406 (B )
C:\_Dwnlod_\SKETCHUP PRO 2015 PTBR www.ricmessimasters.com\SketchUp2015crack.rar Quarantined Dropped:Trojan.Generic.12448085 (B )
C:\_Dwnlod_\password for navteq maps 2013 q3 update_10924_i824095_il345.exe Quarantined Adware.Generic.1133296 (B )
C:\_Dwnlod_\Crack_Pvsyst_6_Forum_downloader.exe Quarantined Gen:Variant.Mikey.12297 (B )
C:\_dwnld_folders\__AUTODESK__\Portable.Autodesk.AutoCAD.2010\Keygen\Keygen Autodesk 2010 x64.exe Quarantined Trojan.Generic.12675450 (B )
C:\$RECYCLE.BIN\S-1-5-21-2915537779-2898195281-3898161190-1000\$RNLAKJL\PRiiceMinus.exe Quarantined Gen:Variant.Mikey.11576 (B )
C:\$RECYCLE.BIN\S-1-5-21-2915537779-2898195281-3898161190-1000\$RGCAL51.exe Quarantined Gen:Variant.Adware.MPLug.35 (B )
C:\_Dwnlod_\jre-8u31-windows-i586-iftw.exe Quarantined Gen:Variant.Kazy.498718 (B )

Quarantined 36

#9 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:06:08 PM

Posted 15 May 2015 - 11:53 AM

Hi there,

Please take a moment to read about the dangers of using pirated software.

Bleeping Computer does not allow the use of pirated software.

The practice of using keygenshacking toolscracking toolswareztorrents or any pirated software is not only considered illegal activity, but it is a serious security risk which can turn a computer into a virus honeypot or zombie.
 
When you use these kind of programs, be forewarned that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. In many cases, those sites are infested with a smörgåsbord of malware and an increasing source of system infection. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible, and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling the OS.
 
If you want to read on then the full post is here.

Regarding your question: For programs that carries actual malware (which are more often than not cracks, keygens and other illegal software), they can be useless programs that are made to lure you in and install the malware on your system. There are also functional programs that has been bundled with malware by criminals to infect your systems - it's a trade-off of sorts, you get free use of contents and in turn they make money on you with the malware.

Please run these next.

Malwarebytes Anti-Malware

Download Malwarebytes Anti-Malware from here.

Double click on the file mbam-setup-2.x.x.xxxx.exe to install the application. (x.x.xxxx is the version)
  • Follow the prompt. At the end place a checkmark in Launch Malwarebytes Anti-Malware, then choose Finish.
  • When MBAM opens it will says Your database is out of date. Choose Fix Now.
  • Click on the Scan tab at the top of the window, choose Threat Scan, then Scan Now.
  • If you receive a message that updates are available, choose Update Now button (the scan will start after updates are completed).
  • Please be patient as the scan will take some time.
  • If MBAM detected threats, choose Quarantine for all items, then click Apply Actions.
  • While still on the Scan tab, choose View detailed log. In the window that opens, click the Export button, choose Text file (*.txt) and save the log to your Desktop.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


===

ESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.
Regards,
Alex




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users