Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Total Ad Performance persistently returning in Chrome.


  • Please log in to reply
27 replies to this topic

#1 sparky2000

sparky2000

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 18 June 2015 - 06:23 AM

Can someone help me please? 

 

This pops up different ads in a new tab periodically.

Multiple attempts have been made to clean it.

 

I tried MBAM, ADWCleaner, etc and uninstalling and re-installing Chrome. I have tried to get help on these forums also but it still persists.

 

 



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:08 PM

Posted 18 June 2015 - 08:50 AM

Download and run wipe  and system ninja,

 

https://privacyroot.com/software/www/en/wipe.php

https://singularlabs.com/software/system-ninja/

 

Then.....

 

Go ahead and install ccleaner Now that you have the program installed go ahead and run the cleaner function.

https://www.piriform.com/ccleaner/download
kwLN4uv.png


Now that you have cleaned out some temp files, lets go ahead and disable all of the items starting up with your machine except your antivirus. To do this you will need to click on tools then start up select each item then disable.

GjWwvEu.png

Now that you have disabled those un-needed start ups lets go into the settings, we will have Ccleaner run when your machine boots, so that you will never have to worry about cleaning temp files again.

To do this:

  • Hit options.
  • Settings.
  • Place a tick to run Ccleaner when the computer starts.


Lxioao1.png

Now go to the advanced tab, and select close program after cleaning, now run the cleaner again this will close Ccleaner.

SnqZ2JW.png

 

Reboot your machine and then follow the  instructions below.

 

Step 1: eScanAV.

 

Disable your antivirus prior to this scan.

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

Download the eScanAV Anti-Virus Toolkit (MWAV)
http://www.escanav.com/english/content/products/downloadlink/downloadcounter.asp?pcode=MWAV&src=english_dwn&type=alter

 

Source

http://www.escanav.com/english/content/products/downloadlink/downloadproduct.asp?pcode=MWAV
Save the file to your desktop.
Right click run as administrator.
A new icon will appear on your desktop.
Right click run as administrator on new icon.
Click on the update tab.
ZCDJtZN.png
Once you have updated the program, make sure the settings are the same as the picture below.
7DUFn5c.png
Once you have made sure the settings match the picture, hit the Scan & Clean button.
Upon scan completion, click View Log.
ApSVXsQ.png
Copy and paste entire log into your next reply.

Note: Reboot after you remove infections.

 

Step 2: Zemana

 

Run a full scan with Zemana antimalware.

http://www.zemana.us/product/zemana-antimalware/default.aspx

Install and select deep scan.

jdmyscF.jpg

Remove any infections found.

Then click on the icon in the pic below.

DOLGyto.jpg

Double click on the scan log, copy and paste here in your reply.

Note: Reboot after you remove infections.

 

 

Step 3: Junkware Removal Tool.
 
Please download Junkware Removal Tool and save it on your desktop.

Source

http://thisisudax.org/

  • Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log is saved to your desktop and will automatically open.
  • Please post the JRT log.

Step 4: Adware Cleaner.
 
Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


#3 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 22 June 2015 - 06:07 AM

Thanks. I'm running these now.



#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:08 PM

Posted 22 June 2015 - 01:39 PM

:guitar:



#5 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 24 June 2015 - 05:19 AM

This MWAV has been scanning for over 11 hours. Picked up a few things. Still scanning.



#6 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 24 June 2015 - 10:30 AM

23 Jun 2015 21:35:26 [0cc8] - **********************************************************
23 Jun 2015 21:35:26 [0cc8] - MWAV - eScanAV AntiVirus Toolkit.
23 Jun 2015 21:35:26 [0cc8] - Copyright © MicroWorld Technologies
23 Jun 2015 21:35:26 [0cc8] - **********************************************************
23 Jun 2015 21:35:26 [0cc8] - Version 14.0.178 (C:\USERS\MARK PACKARD BELL\APPDATA\LOCAL\TEMP\MWAVSCAN.EXE)
23 Jun 2015 21:35:26 [0cc8] - Log File: C:\Users\Mark Packard Bell\AppData\Local\Temp\LOG\MWAV.LOG
23 Jun 2015 21:35:26 [0cc8] - Last Scan Date and Time: 10.04.2015 15:53:04
23 Jun 2015 21:35:26 [0cc8] - MWAV Registered: TRUE
23 Jun 2015 21:35:26 [0cc8] - User Account: Mark Packard Bell (Administrator Mode)
23 Jun 2015 21:35:26 [0cc8] - OS Type: Windows Workstation [InstallType: Client]
23 Jun 2015 21:35:26 [0cc8] - OS: Windows 7 64-Bit [OS Install Date: 01 Aug 2011 17:02:58]
23 Jun 2015 21:35:26 [0cc8] - Ver: Personal Service Pack 1 (Build 7601)
23 Jun 2015 21:35:26 [0cc8] - System Up Time: 11 Minutes, 49 Seconds
 
 
23 Jun 2015 21:35:26 [0cc8] - Parent Process Name : c:\Windows\explorer.exe
23 Jun 2015 21:35:26 [0cc8] - Windows Root  Folder: C:\Windows
23 Jun 2015 21:35:26 [0cc8] - Windows Sys32 Folder: C:\Windows\system32
23 Jun 2015 21:35:26 [0cc8] - DHCP NameServer: 212.10.10.4 212.10.24.252 212.10.10.5
23 Jun 2015 21:35:26 [0cc8] - Interface0 DHCPNameServer: 212.10.10.4 212.10.24.252 212.10.10.5
23 Jun 2015 21:35:26 [0cc8] - Local Fixed Drives: c:\
23 Jun 2015 21:35:26 [0cc8] - MWAV Mode(A): Scan and Clean files (for viruses, adware and spyware)
23 Jun 2015 21:35:27 [0cc8] - [CREATED ZIP FILE: C:\Users\Mark Packard Bell\AppData\Local\Temp\pinfect.zip]
23 Jun 2015 21:35:28 [0cc8] - Latest Date of files inside MWAV: Mon Jun 22 20:31:57 2015.
23 Jun 2015 21:35:29 [0cc8] - Loading/Creating FileScan Cache Database C:\ProgramData\MicroWorld\MWAV\ESCANDBY.MDB [Log: C:\Users\Mark Packard Bell\AppData\Local\Temp\LOG\ESCANDB.LOG]
23 Jun 2015 21:35:34 [0cc8] - Loaded/Created FileScan Cache Database...
23 Jun 2015 21:35:34 [0cc8] - Loading AV Library [DB]...
23 Jun 2015 21:36:11 [0cc8] - ERROR!!! MS_Initialize return 8004025f
23 Jun 2015 21:36:21 [0cc8] - ERROR!!! Unable to load AV!
23 Jun 2015 21:36:55 [0b28] - **********************************************************
23 Jun 2015 21:36:55 [0b28] - MWAV - eScanAV AntiVirus Toolkit.
23 Jun 2015 21:36:55 [0b28] - Copyright © MicroWorld Technologies
23 Jun 2015 21:36:55 [0b28] - **********************************************************
23 Jun 2015 21:36:55 [0b28] - Source: C:\Users\MARKPA~1\Desktop\mwav.exe
23 Jun 2015 21:36:55 [0b28] - Version 14.0.178 (C:\USERS\MARK PACKARD BELL\APPDATA\LOCAL\TEMP\MEXE.COM)
23 Jun 2015 21:36:55 [0b28] - Log File: C:\Users\Mark Packard Bell\AppData\Local\Temp\LOG\MWAV.LOG
23 Jun 2015 21:36:55 [0b28] - Last Scan Date and Time: 10.04.2015 15:53:04
23 Jun 2015 21:36:55 [0b28] - MWAV Registered: TRUE
23 Jun 2015 21:36:55 [0b28] - User Account: Mark Packard Bell (Administrator Mode)
23 Jun 2015 21:36:55 [0b28] - OS Type: Windows Workstation [InstallType: Client]
23 Jun 2015 21:36:55 [0b28] - OS: Windows XP 64-Bit [OS Install Date: 01 Aug 2011 17:02:58]
23 Jun 2015 21:36:55 [0b28] - Ver: Personal Service Pack 2 (Build 2600)
23 Jun 2015 21:36:55 [0b28] - System Up Time: 13 Minutes, 17 Seconds
 
 
23 Jun 2015 21:36:55 [0b28] - Windows Root  Folder: C:\Windows
23 Jun 2015 21:36:55 [0b28] - Windows Sys32 Folder: C:\Windows\system32
23 Jun 2015 21:36:55 [0b28] - DHCP NameServer: 212.10.10.4 212.10.24.252 212.10.10.5
23 Jun 2015 21:36:55 [0b28] - Interface0 DHCPNameServer: 212.10.10.4 212.10.24.252 212.10.10.5
23 Jun 2015 21:36:55 [0b28] - Local Fixed Drives: c:\
23 Jun 2015 21:36:55 [0b28] - MWAV Mode(A): Scan and Clean files (for viruses, adware and spyware)
23 Jun 2015 21:36:55 [0b28] - [CREATED ZIP FILE: C:\Users\Mark Packard Bell\AppData\Local\Temp\pinfect.zip]
23 Jun 2015 21:36:55 [0b28] - Latest Date of files inside MWAV: Mon Mar  2 17:13:53 2015.
23 Jun 2015 21:36:55 [0b28] - ** Create Value of "1001" in "HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" : DWORD:1
23 Jun 2015 21:36:55 [0b28] - ** Create Value of "1004" in "HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" : DWORD:3
23 Jun 2015 21:36:55 [0b28] - ** Deleted Value of "RPSessionInterval" in "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore". Its value was DWORD:1.
23 Jun 2015 21:36:55 [0b28] - ** Deleted Value of "UpdateCount" in "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\UAS". Its value was DWORD:0.
23 Jun 2015 21:36:55 [0b28] - Loading/Creating FileScan Cache Database C:\ProgramData\MicroWorld\MWAV\ESCANDBY.MDB [Log: C:\Users\Mark Packard Bell\AppData\Local\Temp\LOG\ESCANDB.LOG]
23 Jun 2015 21:36:55 [0b28] - Loaded/Created FileScan Cache Database...
23 Jun 2015 21:36:55 [0b28] - Loading AV Library [DB]...
23 Jun 2015 21:38:05 [0b28] - ArchiveScan: DISABLED
23 Jun 2015 21:38:07 [0b28] - AV Library Loaded - MultiThreaded - 2 : [DB-DIRECT].
23 Jun 2015 21:38:07 [0b28] - MWAV doing self scanning...
23 Jun 2015 21:38:07 [0b28] - MWAV files are clean.
23 Jun 2015 21:38:08 [0b28] - ArchiveScan: DISABLED
23 Jun 2015 21:38:08 [0b28] - Virus Database Date: 02 Mar 2015
23 Jun 2015 21:38:08 [0b28] - Virus Database Count: 6701505
23 Jun 2015 21:38:08 [0b28] - Sign Version: 7.59505 [518257]
23 Jun 2015 21:38:14 [0b28] - Downloading AntiVirus and Anti-Spyware Databases...
23 Jun 2015 23:38:26 [0b28] - Update Not Successful!
 
23 Jun 2015 23:39:37 [0b28] - **********************************************************
23 Jun 2015 23:39:37 [0b28] - MWAV - eScanAV AntiVirus Toolkit.
23 Jun 2015 23:39:37 [0b28] - Copyright © MicroWorld Technologies
23 Jun 2015 23:39:37 [0b28] - 
23 Jun 2015 23:39:37 [0b28] - Support: support@escanav.com
23 Jun 2015 23:39:37 [0b28] - Web: http://www.escanav.com
23 Jun 2015 23:39:37 [0b28] - **********************************************************
23 Jun 2015 23:39:37 [0b28] - Version 14.0.178[DB] (C:\USERS\MARK PACKARD BELL\APPDATA\LOCAL\TEMP\MEXE.COM)
23 Jun 2015 23:39:37 [0b28] - Log File: C:\Users\Mark Packard Bell\AppData\Local\Temp\LOG\MWAV.LOG
23 Jun 2015 23:39:37 [0b28] - User Account: Mark Packard Bell (Administrator Mode)
23 Jun 2015 23:39:37 [0b28] - Windows Root  Folder: C:\Windows
23 Jun 2015 23:39:37 [0b28] - Windows Sys32 Folder: C:\Windows\system32
23 Jun 2015 23:39:37 [0b28] - OS: Windows XP 64-Bit [OS Install Date: 01 Aug 2011 17:02:58]
23 Jun 2015 23:39:37 [0b28] - Ver: Personal Service Pack 2 (Build 2600)
23 Jun 2015 23:39:37 [0b28] - Latest Date of files inside MWAV: Mon Mar  2 17:13:53 2015.
 
23 Jun 2015 23:39:37 [0878] - Options Selected by User:
23 Jun 2015 23:39:37 [0878] - Memory Check: Enabled
23 Jun 2015 23:39:37 [0878] - Registry Check: Enabled
23 Jun 2015 23:39:37 [0878] - StartUp Folder Check: Enabled
23 Jun 2015 23:39:37 [0878] - System Folder Check: Enabled
23 Jun 2015 23:39:37 [0878] - Services Check: Enabled
23 Jun 2015 23:39:37 [0878] - Scan Spyware: Enabled
23 Jun 2015 23:39:37 [0878] - Scan Archives: Disabled
23 Jun 2015 23:39:37 [0878] - Drive Check: Enabled
23 Jun 2015 23:39:37 [0878] - All Drive Check :Disabled
23 Jun 2015 23:39:37 [0878] - Drive Selected = C:\
23 Jun 2015 23:39:37 [0878] - Folder Check: Disabled
23 Jun 2015 23:39:37 [0878] - SCAN: All_Files [ANSI]
23 Jun 2015 23:39:37 [0878] - MWAV Mode(B): Scan and Clean files (for viruses, adware and spyware)
 
23 Jun 2015 23:39:37 [0878] - Scanning DNS Records...
23 Jun 2015 23:39:37 [0878] - Scanning Master Boot Record (User)...
23 Jun 2015 23:39:42 [0878] - Scanning Logical Boot Records...
23 Jun 2015 23:39:49 [0878] - ***** Scanning For Hidden Rootkit Processes *****
23 Jun 2015 23:39:49 [0878] - ***** Scanning For Hidden Rootkit Services *****
23 Jun 2015 23:40:00 [0878] - Walk through registry failed!
 
23 Jun 2015 23:40:00 [0878] - ***** Scanning Memory Files *****
23 Jun 2015 23:40:19 [0878] - ScanFile (C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\21.7.0.11\COSVCPLG.DLL) took 7035 ms
 
23 Jun 2015 23:40:43 [0878] - ***** Scanning Registry Files *****
23 Jun 2015 23:40:48 [0878] - ERROR(3)!!! Invalid Entry cmdline = %SystemRoot%\system32\ntvdm.exe (in key HKLM64\SYSTEM\CurrentControlSet\Control\WOW). Action Taken: Removing it.
23 Jun 2015 23:40:49 [0878] - ERROR(3)!!! Invalid Entry vidc.iv50 = ir50_32.dll (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
23 Jun 2015 23:40:49 [0878] - ERROR(3)!!! Invalid Entry vidc.iv41 = ir41_32.ax (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
23 Jun 2015 23:40:49 [0878] - ERROR(3)!!! Invalid Entry vidc.iv32 = ir32_32.dll (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
23 Jun 2015 23:40:49 [0878] - ERROR(3)!!! Invalid Entry vidc.iv31 = ir32_32.dll (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
23 Jun 2015 23:40:49 [0878] - ERROR(3)!!! Invalid Entry msacm.iac2 = C:\Windows\system32\iac25_32.ax (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
 
23 Jun 2015 23:40:50 [0878] - ***** Scanning StartUp Folders *****
23 Jun 2015 23:41:33 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Desktop\mwav.exe) took 5304 ms
23 Jun 2015 23:41:54 [1068] - ScanFile (C:\Users\Mark Packard Bell\Desktop\Utilities\DmailerBackupForVerbatim.exe) took 8393 ms
23 Jun 2015 23:53:16 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Roaming\Dropbox\bin\Dropbox.exe) took 9609 ms
23 Jun 2015 23:53:16 [1068] - ScanFile (C:\Users\Mark Packard Bell\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe) took 7020 ms
23 Jun 2015 23:53:56 [1068] - ScanFile (C:\Users\Mark Packard Bell\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll) took 30857 ms
23 Jun 2015 23:53:56 [1068] - Scanning of C:\Users\Mark Packard Bell\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll Timed out!!!
23 Jun 2015 23:53:56 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll) took 30576 ms
23 Jun 2015 23:53:56 [0b70] - Scanning of C:\Users\Mark Packard Bell\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll Timed out!!!
23 Jun 2015 23:56:30 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Roaming\Mozilla\Firefox\Profiles\umqorouy.default-1433188102237\gmp-eme-adobe\11\eme-adobe.dll) took 10936 ms
23 Jun 2015 23:56:59 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Roaming\Spotify\Spotify.exe) took 6100 ms
23 Jun 2015 23:57:28 [0b70] - Scanning File C:\Users\Mark Packard Bell\AppData\Roaming\XBMC\addons\skin.neon\media\extras\Studios\Zespól Filmowy Tor.png
23 Jun 2015 23:57:28 [1068] - Scanning File C:\Users\Mark Packard Bell\AppData\Roaming\XBMC\addons\skin.neon\media\extras\Studios\Zespól Filmowy Oko.png
23 Jun 2015 23:57:28 [0b70] - Scanning File C:\Users\Mark Packard Bell\AppData\Roaming\XBMC\addons\skin.neon\media\extras\Studios\Ceská televize.png
24 Jun 2015 00:01:09 [1068] - ScanFile (C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\QBackup\{DE2D9AB0-96B1-406F-A69E-94EFE39484C7}\{72A64E51-5817-486D-B5AB-A59C9D26FD41}.qbi) took 5179 ms
24 Jun 2015 00:02:08 [0b70] - ScanFile (C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\QBackup\{DE2D9AB0-96B1-406F-A69E-94EFE39484C7}\{788599C0-512B-4B0D-94A1-118D32F001AA}.qbi) took 6069 ms
 
24 Jun 2015 00:05:20 [0878] - ***** Scanning Service Files *****
24 Jun 2015 00:05:27 [0878] - ERROR(2)!!! Invalid Entry %SystemRoot%\System32\appmgmts.dll. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\AppMgmt.
24 Jun 2015 00:07:23 [0878] - ERROR(2)!!! Invalid Entry \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\cpuz136.
24 Jun 2015 00:07:57 [0878] - ScanFile (C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe) took 7129 ms
24 Jun 2015 00:08:03 [0878] - ERROR(2)!!! Invalid Entry \??\C:\Windows\system32\drivers\EUBAKUP0.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\EUBAKUP0.
24 Jun 2015 00:08:04 [0878] - ERROR(2)!!! Invalid Entry \??\C:\Windows\system32\drivers\EUBKMON0.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\EUBKMON0.
24 Jun 2015 00:08:07 [0878] - ERROR(2)!!! Invalid Entry system32\DRIVERS\ewusbmdm.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\hwdatacard.
24 Jun 2015 00:08:08 [0878] - ERROR(2)!!! Invalid Entry system32\DRIVERS\ewusbfake.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\hwusbfake.
24 Jun 2015 00:08:08 [0878] - ERROR(2)!!! Invalid Entry system32\DRIVERS\KeyCrypt64.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\keycrypt.
24 Jun 2015 00:08:33 [0878] - ERROR(2)!!! Invalid Entry \SystemRoot\system32\DRIVERS\vmci.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\vmci.
24 Jun 2015 00:08:34 [0878] - ERROR(2)!!! Invalid Entry system32\DRIVERS\vmnetadapter.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\VMnetAdapter.
24 Jun 2015 00:08:37 [0878] - ERROR(2)!!! Invalid Entry \??\C:\Program Files (x86)\IObit\Game Booster\Driver\WinRing0x64.sys. Action Taken: Removing HKLM64\SYSTEM\CurrentControlSet\Services\WinRing0_1_2_0.
 
24 Jun 2015 00:08:38 [0878] - ***** Scanning Registry and File system for Adware/Spyware *****
24 Jun 2015 00:08:41 [0878] - Loading Spyware Signatures from new External Database [Name: C:\Users\MARKPA~1\AppData\Local\Temp\spydb.avs, Size: 464717]...
24 Jun 2015 00:08:41 [0878] - Indexed Spyware Databases Successfully Created...
 
24 Jun 2015 00:09:12 [0878] - Offending file found: C:\Users\Mark Packard Bell\AppData\Roaming\Samsung\Kies\FirmwareUpdateTemp\AGENT\Agent.dll
24 Jun 2015 00:09:12 [0878] - System found infected with Popcornnet/movieland Spyware/Adware (Agent.dll)! Action taken: File Deleted.
24 Jun 2015 00:09:12 [0878] - Object "Popcornnet/movieland Spyware/Adware" found in File System! Action Taken: File Deleted.
 
24 Jun 2015 00:09:30 [0878] - Offending file found: C:\Users\Mark Packard Bell\Downloads\cpr.exe
24 Jun 2015 00:09:30 [0878] - System found infected with AdRoar Spyware/Adware (cpr.exe)! Action taken: File Deleted.
24 Jun 2015 00:09:30 [0878] - Object "AdRoar Spyware/Adware" found in File System! Action Taken: File Deleted.
 
24 Jun 2015 00:10:13 [0878] - Offending file found: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\Logs\LU.dat
24 Jun 2015 00:10:13 [0878] - System found infected with ImIServer IEPlugin Spyware/Adware (LU.dat)! Action taken: File Deleted.
24 Jun 2015 00:10:13 [0878] - Object "ImIServer IEPlugin Spyware/Adware" found in File System! Action Taken: File Deleted.
 
24 Jun 2015 00:10:25 [0878] - Offending Registry Entry found: HKCU\Software\Microsoft\OLE
24 Jun 2015 00:10:25 [0878] - System found infected with Backdoor (IRCBot) Trojans Spyware/Adware (HKCU\Software\Microsoft\OLE)! Action taken: Entries Removed.
24 Jun 2015 00:10:25 [0878] - Object "Backdoor (IRCBot) Trojans Spyware/Adware" found in File System! Action Taken: Entries Removed.
 
24 Jun 2015 00:10:26 [0878] - Offending Registry Entry found: HKCU\Software\Microsoft\Windows\CurrentVersion\Drivers
24 Jun 2015 00:10:26 [0878] - System found infected with AntiSpyware Pro XP Corrupted Adware/Spyware (HKCU\Software\Microsoft\Windows\CurrentVersion\Drivers)! Action taken: Entries Removed.
24 Jun 2015 00:10:26 [0878] - Object "AntiSpyware Pro XP Corrupted Adware/Spyware" found in File System! Action Taken: Entries Removed.
 
 
24 Jun 2015 00:10:26 [0878] - ***** Scanning Registry Files *****
24 Jun 2015 00:10:28 [0878] - ERROR(3)!!! Invalid Entry vidc.iv50 = ir50_32.dll (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
24 Jun 2015 00:10:28 [0878] - ERROR(3)!!! Invalid Entry vidc.iv41 = ir41_32.ax (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
24 Jun 2015 00:10:28 [0878] - ERROR(3)!!! Invalid Entry vidc.iv32 = ir32_32.dll (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
24 Jun 2015 00:10:28 [0878] - ERROR(3)!!! Invalid Entry vidc.iv31 = ir32_32.dll (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
24 Jun 2015 00:10:28 [0878] - ERROR(3)!!! Invalid Entry msacm.iac2 = C:\Windows\system32\iac25_32.ax (in key HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
24 Jun 2015 00:10:29 [0878] - ** Value in HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\main/Start Page = http://www.google.com
24 Jun 2015 00:10:29 [0878] - ** Value in 64-bit HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\main/Start Page = http://www.google.com
24 Jun 2015 00:10:29 [0878] - ** Value in HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\main/Start Page = http://www.google.com
24 Jun 2015 00:10:29 [0878] - ** Value in 64-bit HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\main/Start Page = about:blank
24 Jun 2015 00:10:29 [0878] - ** Value in HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\main/Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
24 Jun 2015 00:10:29 [0878] - ** Value in 64-bit HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\main/Start Page = about:blank
 
24 Jun 2015 00:10:29 [0878] - ***** Scanning System32 Folders *****
24 Jun 2015 00:10:54 [1068] - ScanFile (C:\Windows\SysWOW64\FlashPlayerApp.exe) took 8939 ms
 
 
24 Jun 2015 00:14:34 [0878] - ***** Scanning Drive C:\ *****
24 Jun 2015 00:16:12 [1068] - ScanFile (C:\android-sdk\platform-tools\llvm-rs-cc.exe) took 5475 ms
24 Jun 2015 00:18:37 [0b70] - ScanFile (C:\OEM\Preload\Autorun\DRV\AMD VGA Chip MADISON_PRO\Packages\Drivers\Display\W76A_INF\B107547\atioglxx.dl_) took 5475 ms
24 Jun 2015 00:18:44 [1068] - ScanFile (C:\OEM\Preload\Autorun\DRV\AMD VGA Chip MADISON_PRO\Packages\Drivers\Display\W7_INF\B107547\atioglxx.dl_) took 5818 ms
24 Jun 2015 00:20:02 [0b70] - ScanFile (C:\OEM\Preload\Autorun\DRV\Realtek Audio Codec ALC272X\WDM\RTHDCPL.exe) took 6428 ms
24 Jun 2015 00:20:04 [1068] - ScanFile (C:\OEM\Preload\Autorun\DRV\Realtek Audio Codec ALC272X\WDM\RTLCPL.exe) took 5631 ms
24 Jun 2015 00:21:16 [0b70] - ScanFile (C:\Program Files\CCleaner\CCleaner.exe) took 5195 ms
24 Jun 2015 00:23:25 [1068] - ScanFile (C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\OfficeViewer.exe) took 5117 ms
24 Jun 2015 00:29:27 [0b70] - ScanFile (C:\Program Files\Microsoft Office\Office15\lync.exe) took 9344 ms
24 Jun 2015 00:31:32 [0b70] - ScanFile (C:\Program Files\Microsoft Xbox 360 Accessories\x86\Xusb21.sys) took 6458 ms
24 Jun 2015 00:32:19 [0b70] - ScanFile (C:\Program Files\Oracle\VirtualBox\x86\VBoxClient-x86.dll) took 24070 ms
24 Jun 2015 00:32:19 [0b70] - Scanning of C:\Program Files\Oracle\VirtualBox\x86\VBoxClient-x86.dll Timed out!!!
24 Jun 2015 00:32:19 [1068] - ScanFile (C:\Program Files\Oracle\VirtualBox\x86\VBoxRT-x86.dll) took 23852 ms
24 Jun 2015 00:32:19 [1068] - Scanning of C:\Program Files\Oracle\VirtualBox\x86\VBoxRT-x86.dll Timed out!!!
24 Jun 2015 00:32:39 [1068] - ScanFile (C:\Program Files\Packard Bell\Packard Bell Recovery Management\CloseHandleW.exe) took 13588 ms
24 Jun 2015 00:33:31 [0b70] - ScanFile (C:\Program Files\SUPERAntiSpyware\RUNSAS.EXE) took 10374 ms
24 Jun 2015 00:36:01 [1068] - ScanFile (C:\Program Files (x86)\Adobe\Acrobat.com\Acrobat.com.exe) took 6895 ms
24 Jun 2015 00:53:40 [0b70] - ScanFile (C:\Program Files (x86)\ccTapanifiedChampionship Manager 01-02\cm0102_GDI.exe) took 18283 ms
24 Jun 2015 00:53:40 [1068] - ScanFile (C:\Program Files (x86)\ccTapanifiedChampionship Manager 01-02\cm0102.exe) took 19422 ms
24 Jun 2015 00:54:02 [1068] - ScanFile (C:\Program Files (x86)\ccTapanifiedChampionship Manager 01-02\Editor\cm0102ed.exe) took 6755 ms
24 Jun 2015 00:54:11 [0b70] - ScanFile (C:\Program Files (x86)\ccTapanifiedChampionship Manager 01-02\Editor\ZipSFX.bin) took 9703 ms
24 Jun 2015 01:03:10 [1068] - ScanFile (C:\Program Files (x86)\cDontknowChampionship Manager 01-02\cm0102.exe) took 39593 ms
24 Jun 2015 01:03:10 [0b70] - ScanFile (C:\Program Files (x86)\cDontknowChampionship Manager 01-02\cm0102_GDI.exe) took 38626 ms
24 Jun 2015 01:03:10 [1068] - Scanning of C:\Program Files (x86)\cDontknowChampionship Manager 01-02\cm0102.exe Timed out!!!
24 Jun 2015 01:03:10 [0b70] - Scanning of C:\Program Files (x86)\cDontknowChampionship Manager 01-02\cm0102_GDI.exe Timed out!!!
24 Jun 2015 01:03:28 [0b70] - ScanFile (C:\Program Files (x86)\cDontknowChampionship Manager 01-02\Editor\cm0102ed.exe) took 6443 ms
24 Jun 2015 01:03:32 [1068] - ScanFile (C:\Program Files (x86)\cDontknowChampionship Manager 01-02\Editor\ZipSFX.bin) took 5054 ms
24 Jun 2015 01:13:10 [1068] - ScanFile (C:\Program Files (x86)\cHarcjesterChampionship Manager 01-02\cm0102_GDI.exe) took 48189 ms
24 Jun 2015 01:13:10 [0b70] - ScanFile (C:\Program Files (x86)\cHarcjesterChampionship Manager 01-02\cm0102.exe) took 49016 ms
24 Jun 2015 01:13:10 [1068] - Scanning of C:\Program Files (x86)\cHarcjesterChampionship Manager 01-02\cm0102_GDI.exe Timed out!!!
24 Jun 2015 01:13:10 [0b70] - Scanning of C:\Program Files (x86)\cHarcjesterChampionship Manager 01-02\cm0102.exe Timed out!!!
24 Jun 2015 01:13:27 [1068] - ScanFile (C:\Program Files (x86)\cHarcjesterChampionship Manager 01-02\Editor\cm0102ed.exe) took 7207 ms
24 Jun 2015 01:13:32 [0b70] - ScanFile (C:\Program Files (x86)\cHarcjesterChampionship Manager 01-02\Editor\ZipSFX.bin) took 5678 ms
24 Jun 2015 01:15:47 [1068] - ScanFile (C:\Program Files (x86)\Cisco Packet Tracer 6.0.1\bin\accessible\qtaccessiblewidgets4.dll) took 12621 ms
24 Jun 2015 01:15:47 [0b70] - ScanFile (C:\Program Files (x86)\Cisco Packet Tracer 6.0.1\bin\imageformats\qgif4.dll) took 11903 ms
24 Jun 2015 01:25:38 [0b70] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT 3\cleanup\CleanUp.exe) took 7784 ms
24 Jun 2015 01:25:56 [0b70] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT 3\DFA.dll) took 17784 ms
24 Jun 2015 01:25:57 [1068] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT 3\dbxLive32.dll) took 23883 ms
24 Jun 2015 01:25:57 [1068] - Scanning of C:\Program Files (x86)\Codemasters\DiRT 3\dbxLive32.dll Timed out!!!
24 Jun 2015 01:26:15 [1068] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT 3\dirt3_game.exe) took 17394 ms
24 Jun 2015 01:37:51 [1068] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT2\dirt2_efigs_1_1.exe) took 6146 ms
24 Jun 2015 01:37:53 [0b70] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT2\dirt2_game.exe) took 6068 ms
24 Jun 2015 01:39:31 [1068] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT2\GE_integrator\ge_integrator.exe) took 19220 ms
24 Jun 2015 01:40:22 [1068] - ScanFile (C:\Program Files (x86)\Codemasters\DiRT2\rld.dll) took 8564 ms
24 Jun 2015 01:44:15 [1068] - ScanFile (C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe) took 24227 ms
24 Jun 2015 01:44:15 [1068] - Scanning of C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe Timed out!!!
24 Jun 2015 01:50:34 [0b70] - ScanFile (C:\Program Files (x86)\cTestChampionship Manager 01-02\cm0102_GDI.exe) took 5289 ms
24 Jun 2015 01:50:34 [1068] - ScanFile (C:\Program Files (x86)\cTestChampionship Manager 01-02\cm0102.exe) took 5382 ms
24 Jun 2015 02:02:01 [1068] - ScanFile (C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.1.1 Home Edition\bin\adds\TbExportSdk.dll) took 5585 ms
24 Jun 2015 02:04:36 [0b70] - ScanFile (C:\Program Files (x86)\EaseUS\Todo Backup\BUILDPE\EaseUS\tb\lib\gtk-2.0\2.10.0\engines\libuitheme.dll) took 5616 ms
24 Jun 2015 02:06:55 [0b70] - ScanFile (C:\Program Files (x86)\epson\escndv\setup\sures.dll) took 10983 ms
24 Jun 2015 02:06:55 [1068] - ScanFile (C:\Program Files (x86)\epson\escndv\escndv.exe) took 11840 ms
24 Jun 2015 02:14:44 [1068] - ScanFile (C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe) took 6770 ms
24 Jun 2015 02:15:03 [1068] - ScanFile (C:\Program Files (x86)\Football Manager 2014\berkelium.dll) took 8346 ms
24 Jun 2015 02:20:10 [1068] - ScanFile (C:\Program Files (x86)\Football Manager 2014\fm.exe) took 15819 ms
24 Jun 2015 02:20:10 [0b70] - ScanFile (C:\Program Files (x86)\Football Manager 2014\helper.dll) took 9844 ms
24 Jun 2015 02:50:54 [1068] - ScanFile (C:\Program Files (x86)\MetaGeek\inSSIDer 3\inSSIDer.exe) took 8876 ms
24 Jun 2015 02:52:14 [0b70] - ScanFile (C:\Program Files (x86)\Microsoft Office\Office14\1033\EXPTOOWS.XLA) took 5943 ms
24 Jun 2015 02:52:48 [1068] - ScanFile (C:\Program Files (x86)\Microsoft Office\Office14\PROOF\1036\MSGR3FR.DLL) took 5336 ms
24 Jun 2015 02:55:04 [1068] - ScanFile (C:\Program Files (x86)\Mobile Action\Android Sync Manager WiFi\AMAgentWIFI.apk) took 6162 ms
24 Jun 2015 02:58:29 [0b70] - ScanFile (C:\Program Files (x86)\Nero\Nero 9\Nero Express\NeroExpress.exe) took 5912 ms
24 Jun 2015 03:05:32 [0b70] - Scanning File C:\Program Files (x86)\Packard Bell\Registration\Packard Bell\Languages\Lietuviu_LT.ui
24 Jun 2015 03:05:33 [0b70] - Scanning File C:\Program Files (x86)\Packard Bell\Registration\Packard Bell\Languages\Româna_RO.ui
24 Jun 2015 03:05:33 [1068] - Scanning File C:\Program Files (x86)\Packard Bell\Registration\Packard Bell\Languages\Slovencina_SK.ui
24 Jun 2015 03:05:34 [0b70] - Scanning File C:\Program Files (x86)\Packard Bell\Registration\Packard Bell\Languages\Ceština_CS.ui
24 Jun 2015 03:10:35 [0b70] - ScanFile (C:\Program Files (x86)\Samsung\Kies\External\TransModules\SelfMV.exe) took 5538 ms
24 Jun 2015 03:11:44 [0b70] - ScanFile (C:\Program Files (x86)\Skype\Phone\Skype.exe) took 5694 ms
24 Jun 2015 03:12:17 [1068] - ScanFile (C:\Program Files (x86)\Steam\bin\libcef.dll) took 5803 ms
24 Jun 2015 03:14:17 [0b70] - ScanFile (C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\Data Mod\Extras\Online\Activate\PES2015.exe) took 10671 ms
24 Jun 2015 03:14:24 [1068] - ScanFile (C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\Data Mod\Extras\Online\Deactivate\PES2015.exe) took 14617 ms
24 Jun 2015 03:14:32 [0b70] - ScanFile (C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\Data Mod\Extras\Online Original\Activate\PES2015.exe) took 12496 ms
24 Jun 2015 03:14:37 [1068] - ScanFile (C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\Data Mod\Extras\Online Original\Deactivate\PES2015.exe) took 12168 ms
24 Jun 2015 03:15:21 [1068] - ScanFile (C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\PES2015.exe) took 19344 ms
24 Jun 2015 03:17:21 [0b70] - Scanning File C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\PTE Patch Addons\Tools\S_File_Explorer_2014_full_1.0.3.4_Jenkey1002\PES File Explorer.exe
24 Jun 2015 03:17:21 [0b70] - ScanFile (C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\PTE Patch Addons\Tools\S_File_Explorer_2014_full_1.0.3.4_Jenkey1002\PES File Explorer.exe) took 6037 ms
24 Jun 2015 03:17:23 [0b70] - File C:\Program Files (x86)\Steam\SteamApps\common\Pro Evolution Soccer 2015\PTE Patch Addons\Tools\S_File_Explorer_2014_full_1.0.3.4_Jenkey1002\PES File Explorer.exe infected by "Trojan.GenericKD.1773312 (DB)" Virus! Action Taken: File Renamed.
 
24 Jun 2015 03:34:23 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-CC5E5BA2-CABF-4BB7-9F57-95E3317F39D1.html) took 9704 ms
24 Jun 2015 03:34:47 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-D2752D17-91EE-411B-BFAC-186BA299EDB6.html) took 7442 ms
24 Jun 2015 03:36:34 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-EBB0A48C-C95D-4ABC-98CE-67F1744B8083.html) took 29282 ms
24 Jun 2015 03:36:34 [0b70] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-EBB0A48C-C95D-4ABC-98CE-67F1744B8083.html Timed out!!!
24 Jun 2015 03:37:26 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-EC74DCC1-F3D0-4422-A690-6183EF5B516D.html) took 22215 ms
24 Jun 2015 03:37:26 [0b70] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-EC74DCC1-F3D0-4422-A690-6183EF5B516D.html Timed out!!!
24 Jun 2015 03:42:49 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-EC397DFB-D499-4F66-AC68-9BBBDB726727.html) took 41028 ms
24 Jun 2015 03:42:57 [1068] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-EC397DFB-D499-4F66-AC68-9BBBDB726727.html Timed out!!!
24 Jun 2015 03:47:26 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ECEE0FB9-9091-4520-B137-62D200862AB8.html) took 136797 ms
24 Jun 2015 03:47:26 [1068] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ECEE0FB9-9091-4520-B137-62D200862AB8.html Timed out!!!
24 Jun 2015 03:47:32 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ECDD7F25-00BA-4601-837D-E97D43C71F7C.html) took 176390 ms
24 Jun 2015 03:47:32 [0b70] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ECDD7F25-00BA-4601-837D-E97D43C71F7C.html Timed out!!!
24 Jun 2015 03:48:04 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ED11E9A5-DB30-4872-9ACF-BA233051DD08.html) took 31028 ms
24 Jun 2015 03:48:04 [1068] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ED11E9A5-DB30-4872-9ACF-BA233051DD08.html Timed out!!!
24 Jun 2015 03:48:11 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ED290543-8F85-4C9C-B143-E491DAEEB8CE.html) took 32713 ms
24 Jun 2015 03:48:11 [0b70] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ED290543-8F85-4C9C-B143-E491DAEEB8CE.html Timed out!!!
24 Jun 2015 03:48:25 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ED6E0841-65E5-431A-9CD4-B6C3365BD0EF.html) took 11310 ms
24 Jun 2015 03:48:25 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ED56C1CF-BFDA-4BD8-9A6D-3682D5E4EC6E.html) took 19469 ms
24 Jun 2015 03:48:32 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\GUID-ED826BE4-1B8C-4C66-950D-16D87DF6326C.html) took 5241 ms
24 Jun 2015 03:52:08 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\wwhelp\wwhimpl\common\html\controlr.htm) took 56347 ms
24 Jun 2015 03:52:08 [0b70] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\wwhelp\wwhimpl\common\html\controlr.htm Timed out!!!
24 Jun 2015 03:53:27 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\ko\VIC55\wwhelp\wwhimpl\common\private\locale.js) took 5975 ms
24 Jun 2015 03:57:40 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\uninstall55) took 82697 ms
24 Jun 2015 03:57:40 [1068] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\uninstall55 Timed out!!!
24 Jun 2015 03:57:40 [0b70] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\uninstall_drshelp55) took 80091 ms
24 Jun 2015 03:57:40 [0b70] - Scanning of C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Help\uninstall_drshelp55 Timed out!!!
24 Jun 2015 04:00:11 [1068] - ScanFile (C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Launcher\VpxClient.exe) took 8830 ms
24 Jun 2015 04:00:30 [0b70] - ScanFile (C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe) took 15771 ms
24 Jun 2015 04:00:30 [1068] - ScanFile (C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe) took 16333 ms
24 Jun 2015 04:02:01 [1068] - ScanFile (C:\Program Files (x86)\WinRAR\Formats\7z.fmt) took 10702 ms
24 Jun 2015 04:02:02 [0b70] - ScanFile (C:\Program Files (x86)\WinPcap\Uninstall.exe) took 13276 ms
24 Jun 2015 04:05:51 [0b70] - Scanning File C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [1068] - Scanning File C:\System Volume Information\{1684dd41-18c8-11e5-bf3f-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [1068] - Scanning File C:\System Volume Information\{edf59e5d-15bc-11e5-a3ff-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [1068] - Scanning File C:\System Volume Information\{edf59e66-15bc-11e5-a3ff-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [0b70] - Scanning File C:\System Volume Information\{5a1d3b87-19dd-11e5-922e-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [1068] - Scanning File C:\System Volume Information\{edf59e6f-15bc-11e5-a3ff-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [0b70] - Scanning File C:\System Volume Information\{edf59e7d-15bc-11e5-a3ff-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [1068] - Scanning File C:\System Volume Information\{edf59e85-15bc-11e5-a3ff-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [0b70] - Scanning File C:\System Volume Information\{edf59e8e-15bc-11e5-a3ff-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:05:52 [1068] - Scanning File C:\System Volume Information\{edf59ec5-15bc-11e5-a3ff-1c7508449bbd}{3808876b-c176-4e48-b7ae-04046e6cc752}
24 Jun 2015 04:08:46 [1068] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd\15.428.0.6_0\cast_game_sender.js) took 7051 ms
24 Jun 2015 04:10:10 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd\15.428.0.6_0\background_script.js) took 92790 ms
24 Jun 2015 04:11:29 [1068] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd\15.605.1.3_0\cast_game_sender.js) took 8050 ms
24 Jun 2015 04:12:56 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd\15.605.1.3_0\background_script.js) took 97313 ms
24 Jun 2015 04:30:14 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Spotify\Browser\f_000298) took 9500 ms
24 Jun 2015 04:30:43 [1068] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Spotify\Browser\f_00029d) took 11451 ms
24 Jun 2015 04:33:28 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Spotify\Browser\f_0002d2) took 8128 ms
24 Jun 2015 04:34:36 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Spotify\Browser\f_0002da) took 9344 ms
24 Jun 2015 04:36:49 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Spotify\Browser\f_0002ee) took 16894 ms
24 Jun 2015 04:38:12 [0b70] - ScanFile (C:\Users\Mark Packard Bell\AppData\Local\Spotify\Browser\f_0002fe) took 20920 ms
24 Jun 2015 04:51:21 [1068] - Scanning File C:\Users\Mark Packard Bell\AppData\Roaming\XBMC\addons\skin.neon\media\extras\Studios\Zespól Filmowy Oko.png
24 Jun 2015 04:51:21 [0b70] - Scanning File C:\Users\Mark Packard Bell\AppData\Roaming\XBMC\addons\skin.neon\media\extras\Studios\Zespól Filmowy Tor.png
24 Jun 2015 04:51:21 [1068] - Scanning File C:\Users\Mark Packard Bell\AppData\Roaming\XBMC\addons\skin.neon\media\extras\Studios\Ceská televize.png
24 Jun 2015 04:53:49 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Champ Man exe's\cm0102.exe) took 5085 ms
24 Jun 2015 04:53:49 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Champ Man exe's\cm0102_GDI.exe) took 9765 ms
24 Jun 2015 04:55:32 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-04-01 04.19.48.png) took 12464 ms
24 Jun 2015 04:55:50 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-04-12 05.26.34.png) took 8986 ms
24 Jun 2015 04:56:01 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-04-19 07.37.22.png) took 5990 ms
24 Jun 2015 04:56:33 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-03 23.26.06.png) took 5913 ms
24 Jun 2015 04:56:45 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-07 18.41.22.jpg) took 7114 ms
24 Jun 2015 04:56:45 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-07 18.41.27.jpg) took 6864 ms
24 Jun 2015 04:57:11 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-12 18.39.40.jpg) took 10998 ms
24 Jun 2015 04:57:49 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-12 18.41.26.jpg) took 31325 ms
24 Jun 2015 04:58:22 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-18 03.26.36.png) took 5896 ms
24 Jun 2015 04:59:07 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-21 15.32.38.jpg) took 7114 ms
24 Jun 2015 04:59:40 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-05-24 17.08.24.png) took 9454 ms
24 Jun 2015 05:00:17 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-01 04.45.28.png) took 11950 ms
24 Jun 2015 05:00:17 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-01 04.53.42.png) took 12028 ms
24 Jun 2015 05:00:35 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-01 04.54.11.png) took 16411 ms
24 Jun 2015 05:00:36 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-01 04.54.27.png) took 16442 ms
24 Jun 2015 05:00:43 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-02 20.01.33.jpg) took 5070 ms
24 Jun 2015 05:01:29 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-01 05.20.25.png) took 50903 ms
24 Jun 2015 05:01:57 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-06 20.10.02.jpg) took 5023 ms
24 Jun 2015 05:02:03 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-06 20.10.17.jpg) took 5397 ms
24 Jun 2015 05:02:05 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-10 15.36.26.jpg) took 5398 ms
24 Jun 2015 05:02:11 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-10 15.36.37.jpg) took 5476 ms
24 Jun 2015 05:02:13 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-10 18.21.32.jpg) took 5866 ms
24 Jun 2015 05:02:19 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-11 02.58.53.png) took 5460 ms
24 Jun 2015 05:02:36 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-11 03.01.49.png) took 5320 ms
24 Jun 2015 05:02:36 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-11 03.01.55.png) took 5600 ms
24 Jun 2015 05:03:27 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-12 03.01.38.png) took 45116 ms
24 Jun 2015 05:03:27 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-12 03.01.49.png) took 44585 ms
24 Jun 2015 05:03:27 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-12 03.01.38.png Timed out!!!
24 Jun 2015 05:03:27 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-12 03.01.49.png Timed out!!!
24 Jun 2015 05:03:50 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-15 19.58.20.jpg) took 6006 ms
24 Jun 2015 05:03:50 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-15 20.59.10.jpg) took 6037 ms
24 Jun 2015 05:03:58 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-15 22.15.47.jpg) took 5943 ms
24 Jun 2015 05:03:58 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-15 22.15.59.jpg) took 5835 ms
24 Jun 2015 05:04:30 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-15 22.19.12.jpg) took 25459 ms
24 Jun 2015 05:04:52 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 00.40.05.jpg) took 6427 ms
24 Jun 2015 05:04:53 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 00.40.09.jpg) took 6505 ms
24 Jun 2015 05:05:10 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 00.42.18.jpg) took 6521 ms
24 Jun 2015 05:05:18 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 19.59.15.jpg) took 5023 ms
24 Jun 2015 05:05:20 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 01.14.34.mp4) took 7441 ms
24 Jun 2015 05:05:26 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 19.59.21.jpg) took 5975 ms
24 Jun 2015 05:05:42 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 20.04.28.jpg) took 5460 ms
24 Jun 2015 05:05:49 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 21.20.32.jpg) took 5008 ms
24 Jun 2015 05:05:58 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 21.20.40.jpg) took 5460 ms
24 Jun 2015 05:05:58 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 22.07.30.jpg) took 5460 ms
24 Jun 2015 05:06:05 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 22.56.49.jpg) took 5055 ms
24 Jun 2015 05:06:10 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 23.03.34.jpg) took 5211 ms
24 Jun 2015 05:06:13 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-16 23.03.49.jpg) took 5054 ms
24 Jun 2015 05:06:44 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-27 07.18.44.jpg) took 11466 ms
24 Jun 2015 05:06:52 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-27 08.14.33.jpg) took 5428 ms
24 Jun 2015 05:06:52 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-27 08.14.45.jpg) took 5569 ms
24 Jun 2015 05:07:07 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-27 08.14.50.jpg) took 6942 ms
24 Jun 2015 05:07:07 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-27 08.14.56.jpg) took 6895 ms
24 Jun 2015 05:07:14 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-27 08.15.04.jpg) took 5522 ms
24 Jun 2015 05:07:14 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-28 21.27.29.jpg) took 5507 ms
24 Jun 2015 05:07:27 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-28 21.27.31.jpg) took 5975 ms
24 Jun 2015 05:07:27 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-28 21.27.39.jpg) took 6006 ms
24 Jun 2015 05:07:46 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-28 21.28.05.jpg) took 5460 ms
24 Jun 2015 05:07:46 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Dropbox\Camera Uploads\2013-06-28 21.28.10.jpg) took 5491 ms
24 Jun 2015 05:09:24 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Euro League Update 1.exe) took 10031 ms
24 Jun 2015 05:10:38 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Harchester Data\Data\Cpuinf32.dll) took 5320 ms
24 Jun 2015 05:11:17 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\HPUSBDisk.exe) took 35802 ms
24 Jun 2015 05:11:17 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\HPUSBDisk.exe Timed out!!!
24 Jun 2015 05:13:13 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\PES Saves\2014\PESEdit\temp\FileLoader\dsound.dll) took 10265 ms
24 Jun 2015 05:13:56 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\PES Saves\2014\pes2014.exe) took 59452 ms
24 Jun 2015 05:13:56 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\PES Saves\2014\pes2014.exe Timed out!!!
24 Jun 2015 05:14:16 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\PES Saves\2014\PESEdit\temp\pes2014.exe) took 62432 ms
24 Jun 2015 05:14:16 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\PES Saves\2014\PESEdit\temp\pes2014.exe Timed out!!!
24 Jun 2015 05:14:50 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\PES Saves\2014\PESEdit\temp\pes2014_digital.exe) took 52510 ms
24 Jun 2015 05:14:50 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\PES Saves\2014\PESEdit\temp\pes2014_digital.exe Timed out!!!
24 Jun 2015 05:14:57 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Samsung Phone\App_Backup_Restore\com.android.vending-80210006-v4.1.6.apk) took 5101 ms
24 Jun 2015 05:15:07 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Samsung Phone\App_Backup_Restore\com.google.android.apps.maps-614040002-v6.14.4.apk) took 5242 ms
24 Jun 2015 05:15:09 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Samsung Phone\App_Backup_Restore\com.google.android.apps.plus-400468526-v4.0.0.46852618.apk) took 5912 ms
24 Jun 2015 05:25:42 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\1015505.png) took 7114 ms
24 Jun 2015 05:31:18 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\10162.png) took 178995 ms
24 Jun 2015 05:31:18 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\10162.png Timed out!!!
24 Jun 2015 05:31:18 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\1016262.png) took 169511 ms
24 Jun 2015 05:31:18 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\1016262.png Timed out!!!
24 Jun 2015 06:17:09 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\19024037.png) took 6973 ms
24 Jun 2015 06:19:57 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\19023680.png) took 248026 ms
24 Jun 2015 06:19:57 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\19023680.png Timed out!!!
24 Jun 2015 06:28:25 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\19037412.png) took 5101 ms
24 Jun 2015 06:29:06 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\19037413.png) took 45459 ms
24 Jun 2015 06:29:06 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\19037413.png Timed out!!!
24 Jun 2015 07:25:44 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316678.png) took 607671 ms
24 Jun 2015 07:25:56 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316678.png Timed out!!!
24 Jun 2015 07:32:15 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316680.png) took 1023819 ms
24 Jun 2015 07:32:18 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316680.png Timed out!!!
24 Jun 2015 08:43:23 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316682.png) took 2187867 ms
24 Jun 2015 08:43:31 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316682.png Timed out!!!
24 Jun 2015 08:56:27 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316681.png) took 2602471 ms
24 Jun 2015 08:56:46 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316681.png Timed out!!!
24 Jun 2015 10:47:47 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316686.png) took 2671923 ms
24 Jun 2015 10:47:47 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316686.png Timed out!!!
24 Jun 2015 10:47:56 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316684.png) took 4944046 ms
24 Jun 2015 10:47:56 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316684.png Timed out!!!
24 Jun 2015 10:48:48 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316692.png) took 11887 ms
24 Jun 2015 10:48:58 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316691.png) took 33041 ms
24 Jun 2015 10:48:58 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\316691.png Timed out!!!
24 Jun 2015 11:45:52 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\915350.png) took 5164 ms
24 Jun 2015 11:50:10 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\PPP Icon Megapack\config.xml) took 13541 ms
24 Jun 2015 11:50:11 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\Premier League\config.xml) took 11389 ms
24 Jun 2015 12:04:56 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\167580.png) took 5413 ms
24 Jun 2015 12:43:01 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\43029909.png) took 8439 ms
24 Jun 2015 12:43:14 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\43029911.png) took 21700 ms
24 Jun 2015 12:43:14 [1068] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\43029911.png Timed out!!!
24 Jun 2015 13:02:17 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\5290288.png) took 16255 ms
24 Jun 2015 13:02:30 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\5290285.png) took 28611 ms
24 Jun 2015 13:02:30 [0b70] - Scanning of C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\5290285.png Timed out!!!
24 Jun 2015 13:21:30 [1068] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\60009322.png) took 11856 ms
24 Jun 2015 13:21:36 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\60009340.png) took 18298 ms
24 Jun 2015 13:40:37 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\faces\72026249.png) took 7691 ms
24 Jun 2015 14:50:27 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Documents\Sports Interactive\Football Manager 2014\Graphics\sortitoutsi\iconfaces\config.xml) took 13338 ms
24 Jun 2015 14:57:44 [0b70] - ScanFile (C:\Users\Mark Packard Bell\Downloads\3.9.68Patch.zip) took 9719 ms
24 Jun 2015 14:57:44 [1068] - ScanFile (C:\Users\Mark Packard Bell\Downloads\3.9.68Patch (1).zip) took 9828 ms
24 Jun 2015 14:58:13 [1068] - ScanFile (C:\Users\Mark Packard Bell\Downloads\amddriverdownloader.exe) took 8689 ms
24 Jun 2015 14:58:22 [1068] - ScanFile (C:\Users\Mark Packard Bell\Downloads\Audio_Realtek_6.0.1.6141_Win7x86x64\Config\AzMixerSel.exe) took 6334 ms
24 Jun 2015 14:59:47 [1068] - ScanFile (C:\Users\Mark Packard Bell\Downloads\dds.com) took 5741 ms
24 Jun 2015 15:01:40 [1068] - ScanFile (C:\Users\Mark Packard Bell\Downloads\openvpn-install-2.3.6-I003-x86_64.exe) took 11201 ms
24 Jun 2015 15:02:17 [1068] - ScanFile (C:\Users\Mark Packard Bell\Downloads\SetupBatteryCare.zip) took 6443 ms
24 Jun 2015 15:19:31 [0b70] - Scanning File C:\Users\Mark Packard Bell\Support\readme\Ctimne.txt
24 Jun 2015 15:20:04 [1068] - ScanFile (C:\Users\Mark Packard Bell\__Installer\Cleanup.exe) took 27628 ms
24 Jun 2015 15:20:04 [1068] - Scanning of C:\Users\Mark Packard Bell\__Installer\Cleanup.exe Timed out!!!
24 Jun 2015 15:26:00 [1068] - ScanFile (C:\Windows\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\21e90cfd9060b25213757d5d09808972\CustomMarshalers.ni.dll) took 6552 ms
24 Jun 2015 15:28:22 [0b70] - ScanFile (C:\Windows\Downloaded Program Files\PCPitstop3D.dll) took 21653 ms
24 Jun 2015 15:28:22 [0b70] - Scanning of C:\Windows\Downloaded Program Files\PCPitstop3D.dll Timed out!!!
24 Jun 2015 15:32:15 [0b70] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\00004119750000000000000000F01FEC\14.0.7015\ACEDAO.DLL) took 5382 ms
24 Jun 2015 15:38:37 [0b70] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\4940BFC469E21364384635E8A29A3142\5.5.0\vnetlib.dll.AB568CC9_1F06_4225_B985_9531B0D3BB56) took 5959 ms
24 Jun 2015 15:42:32 [1068] - ScanFile (C:\Windows\LP\Add2XML.exe) took 8798 ms
24 Jun 2015 15:46:20 [0b70] - ScanFile (C:\Windows\Microsoft.NET\NETFXRepair.exe) took 7301 ms
24 Jun 2015 15:46:21 [1068] - ScanFile (C:\Windows\oem\IdentityCard\FUB.exe) took 6147 ms
24 Jun 2015 15:56:27 [1068] - ScanFile (C:\Windows\System32\3DAudio.ax) took 8440 ms
24 Jun 2015 16:00:24 [1068] - ScanFile (C:\Windows\System32\dokan.dll) took 10406 ms
24 Jun 2015 16:01:00 [1068] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\c7107493.inf_amd64_neutral_e02e4a889c9b8929\B107547\atibtmon.exe) took 6583 ms
24 Jun 2015 16:01:28 [1068] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\c7171098.inf_amd64_neutral_6354868b57e76d52\B171094\AMDMFTVideoDecoder_32.dll) took 7004 ms
24 Jun 2015 16:05:48 [0b70] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\prnca00x.inf_amd64_neutral_eb0842aa932d01ee\Amd64\CNBSM3.DLL) took 26083 ms
24 Jun 2015 16:06:02 [0b70] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\prnca00x.inf_amd64_neutral_eb0842aa932d01ee\Amd64\CNBUI3.DLL) took 7254 ms
24 Jun 2015 16:06:31 [1068] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\prnca00x.inf_amd64_neutral_eb0842aa932d01ee\Amd64\CNBWI3.DLL) took 30451 ms
24 Jun 2015 16:06:31 [1068] - Scanning of C:\Windows\System32\DriverStore\FileRepository\prnca00x.inf_amd64_neutral_eb0842aa932d01ee\Amd64\CNBWI3.DLL Timed out!!!
24 Jun 2015 16:06:43 [0b70] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\prnca00x.inf_amd64_neutral_eb0842aa932d01ee\prnca00x.inf) took 12652 ms
24 Jun 2015 16:10:48 [1068] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\synpd.inf_amd64_neutral_07fe46a5237dd037\SynISDLL.dll) took 6942 ms
24 Jun 2015 16:10:48 [0b70] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\synpd.inf_amd64_neutral_07fe46a5237dd037\SynCtrl32.dll) took 8440 ms
24 Jun 2015 16:10:59 [1068] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\synpd.inf_amd64_neutral_07fe46a5237dd037\Tutorial.exe) took 7301 ms
24 Jun 2015 16:15:33 [1068] - ScanFile (C:\Windows\System32\setupempdrv03.exe) took 8845 ms
24 Jun 2015 16:24:10 [1068] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-ehome-mcweblauncher_31bf3856ad364e35_6.1.7600.16385_none_5846a8771b202706\MediaCenterWebLauncher.exe) took 16099 ms
24 Jun 2015 16:27:29 [1068] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-ie-iediag_31bf3856ad364e35_11.2.9600.16428_none_f937400aa65f97cc\iediagcmd.exe) took 7113 ms
24 Jun 2015 16:36:35 [0b70] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-sonic-createdisc_31bf3856ad364e35_6.1.7600.16385_none_9beb785f084a0caf\CreateDisc.dll) took 6942 ms
24 Jun 2015 16:48:26 [0b70] - ScanFile (C:\Windows\winsxs\Backup\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.18768_none_121ba6c9a5abae88_atmfd.dll_ff796bf0) took 5772 ms
24 Jun 2015 16:49:30 [0b70] - ScanFile (C:\Windows\winsxs\Backup\x86_microsoft-windows-d2d_31bf3856ad364e35_7.1.7601.18327_none_9b0ce353451f4255_d2d1.dll_ef77984b) took 21872 ms
24 Jun 2015 16:49:30 [0b70] - Scanning of C:\Windows\winsxs\Backup\x86_microsoft-windows-d2d_31bf3856ad364e35_7.1.7601.18327_none_9b0ce353451f4255_d2d1.dll_ef77984b Timed out!!!
24 Jun 2015 17:10:34 [0b70] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-gwx_31bf3856ad364e35_6.1.7601.18846_none_18d482cda1586bfb\GWX.exe) took 12839 ms
24 Jun 2015 17:22:02 [0b70] - ScanFile (C:\Windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_7.1.7601.16398_none_231382b1af0e294c\mstscax.dll) took 5507 ms
 
24 Jun 2015 17:25:48 [0878] - ***** Checking for specific ITW Viruses *****
24 Jun 2015 17:25:52 [0878] - [ZeroAccess] Found Reg Value CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32/default as %SystemRoot%\system32\shell32.dll. Changing it to %SystemRoot%\syswow64\shdocvw.dll...
24 Jun 2015 17:25:52 [0878] - Object "ZeroAccess" found in File System! Action Taken: Entries Removed.
 
 
24 Jun 2015 17:25:52 [0878] - ***** Scanning complete. *****
 
24 Jun 2015 17:25:52 [0878] - Total Objects Scanned: 1019241
24 Jun 2015 17:25:52 [0878] - Total Critical Objects: 7
24 Jun 2015 17:25:52 [0878] - Total Disinfected Objects: 1
24 Jun 2015 17:25:52 [0878] - Total Objects Renamed: 1
24 Jun 2015 17:25:52 [0878] - Total Deleted Objects: 5
24 Jun 2015 17:25:52 [0878] - Total Errors: 21
24 Jun 2015 17:25:52 [0878] - Time Elapsed: 16:02:42
24 Jun 2015 17:25:52 [0878] - Virus Database Date: 02 Mar 2015
24 Jun 2015 17:25:52 [0878] - Virus Database Count: 6701505
24 Jun 2015 17:25:52 [0878] - Sign Version: 7.59505 [518257]
 
24 Jun 2015 17:25:52 [0878] - Scan Completed.


#7 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 24 June 2015 - 01:12 PM

Zemana might be finding false positives, is that possible?

 

I has flagged  Ninaj, VLC player and Freemind as malware. As well as some games files from community patches. I removed/quarantined them all anyway.

 

Here are the scan results:

 

Zemana AntiMalware 2.15.2.721 (Installed)
 
-------------------------------------------------------
Scan Result            : Completed
Scan Date              : 2015/6/24
Operating System       : Windows 7 64-bit
Processor              : 4X AMD Phenom™ II N950 Quad-Core Processor
BIOS Mode              : Legacy
CUID                   : 002E8E098A98434C7344D8
Scan Type              : Deep Scan
Duration               : 141m 8s
Scanned Objects        : 844195
Detected Objects       : 11
Excluded Objects       : 0
Read Level             : SCSI
Auto Upload            : Yes
Include All Extensions : No
Scan Documents         : Yes
Domain Info            : WORKGROUP,1,2
Detected Objects
-------------------------------------------------------
 
Kaspersky Security Scan
Status             : Scanned
Object             : %localappdata%\google\chrome\user data\default\extensions\oeppdapcjiogpjjnceheinbfmkkpkfni
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : PUA.ChromeExt!Gr
Cleaning Action    : Repair
Traces             :
                Browser Extension - Kaspersky Security Scan
 
wampserver2.5-Apache-2.4.9-Mysql-5.6.17-php5.5.12-64b.exe
Status             : Scanned
Object             : %userprofile%\downloads\wampserver2.5-apache-2.4.9-mysql-5.6.17-php5.5.12-64b.exe
MD5                : 61DA241B4E3DF4509FF6AB00F0199D92
Publisher          : -
Size               : 252928
Version            : 0.0.0.0
Detection          : Malware:Win32/Fidelz.A!Rmae
Cleaning Action    : Quarantine
Traces             :
                File - %userprofile%\downloads\wampserver2.5-apache-2.4.9-mysql-5.6.17-php5.5.12-64b.exe
 
ninja-setup-3.0.6.exe
Status             : Scanned
Object             : %userprofile%\downloads\ninja-setup-3.0.6.exe
MD5                : 24FE0BB7A85A866B487D15C0EB6E3A74
Publisher          : -
Size               : 2507200
Version            : 0.0.0.0
Detection          : Adware:Win32/OpenCandy
Cleaning Action    : Quarantine
Traces             :
                File - %userprofile%\downloads\ninja-setup-3.0.6.exe
 
vlc-1.1.11-win32.exe
Status             : Scanned
Object             : %userprofile%\downloads\vlc-1.1.11-win32.exe
MD5                : 0EE4DA8DCB30DA2FDA216A8AEC07178A
Publisher          : -
Size               : 141824
Version            : -
Detection          : Malware:Win32/Kloom.A!Tcei
Cleaning Action    : Quarantine
Traces             :
                File - %userprofile%\downloads\vlc-1.1.11-win32.exe
 
FreeMind-Windows-Installer-1.0.0-max-java-installer-embedded.exe
Status             : Scanned
Object             : %userprofile%\downloads\freemind-windows-installer-1.0.0-max-java-installer-embedded.exe
MD5                : 9B5A2A32B2F7FCEF127B4A5D45D8D792
Publisher          : -
Size               : 56832
Version            : 1.0.0.0
Detection          : Malware:Win32/Blackoat.A!Akat
Cleaning Action    : Quarantine
Traces             :
                File - %userprofile%\downloads\freemind-windows-installer-1.0.0-max-java-installer-embedded.exe
 
JKgamer.dll
Status             : Scanned
Object             : %userprofile%\documents\pes saves\2014\jkgamer.dll
MD5                : DD7B69D817F9BF4B948CCB78D9622EB7
Publisher          : -
Size               : 744448
Version            : 1.6.0.0
Detection          : Malware:Win32/Generic!Itcl
Cleaning Action    : Quarantine
Traces             :
                File - %userprofile%\documents\pes saves\2014\jkgamer.dll
 
JKgamer.dll
Status             : Scanned
Object             : %userprofile%\documents\pes saves\2014\pesedit\temp\jkgamer.dll
MD5                : DD7B69D817F9BF4B948CCB78D9622EB7
Publisher          : -
Size               : 744448
Version            : 1.6.0.0
Detection          : Malware:Win32/Generic!Itcl
Cleaning Action    : Quarantine
Traces             :
                File - %userprofile%\documents\pes saves\2014\pesedit\temp\jkgamer.dll
 
steam_api.dll
Status             : Scanned
Object             : %programfiles%\steam\steamapps\common\pro evolution soccer 2015\data mod\extras\online original\deactivate\steam_api.dll
MD5                : A104B08315651BA02BB5B3D9C0ACBEC7
Publisher          : -
Size               : 888324
Version            : 4.2.0.0
Detection          : PUA:Win32/SoftCrack.Gen
Cleaning Action    : Quarantine
Traces             :
                File - %programfiles%\steam\steamapps\common\pro evolution soccer 2015\data mod\extras\online original\deactivate\steam_api.dll
 
steam_api.dll
Status             : Scanned
Object             : %programfiles%\steam\steamapps\common\pro evolution soccer 2015\data mod\extras\online\deactivate\steam_api.dll
MD5                : A104B08315651BA02BB5B3D9C0ACBEC7
Publisher          : -
Size               : 888324
Version            : 4.2.0.0
Detection          : PUA:Win32/SoftCrack.Gen
Cleaning Action    : Quarantine
Traces             :
                File - %programfiles%\steam\steamapps\common\pro evolution soccer 2015\data mod\extras\online\deactivate\steam_api.dll
 
steam_api.dll
Status             : Scanned
Object             : %programfiles%\f1 2014\steam_api.dll
MD5                : 6D8A9415FDAFF48F3BEF051ECFE03ECB
Publisher          : -
Size               : 866308
Version            : 4.1.0.0
Detection          : PUA:Win32/SoftCrack.Gen
Cleaning Action    : Quarantine
Traces             :
                File - %programfiles%\f1 2014\steam_api.dll
 
cmstubfirmware.exe
Status             : Scanned
Object             : %commonprogramfiles%\newfreescreensavers\tb\cmstubfirmware.exe
MD5                : C0B5487A67D259DA77406D485AC0E5F2
Publisher          : Conduit Ltd.
Size               : 324600
Version            : 5.5.0.8005
Detection          : Adware:Win32/Conduit!Ep
Cleaning Action    : Quarantine
Traces             :
                File - %commonprogramfiles%\newfreescreensavers\tb\cmstubfirmware.exe
 
Cleaning Result
-------------------------------------------------------
Cleaned               : 11
Reported as safe      : 0
Failed                : 0


#8 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 24 June 2015 - 01:37 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.1.0 (06.23.2015:2)
OS: Windows 7 Home Premium x64
Ran by Mark Packard Bell on 24/06/2015 at 20:28:53.69
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
Successfully deleted: [Service] wampapache64
Successfully deleted: [Service] wampmysqld64
 
 
 
~~~ Tasks
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_AB4AFE18D8CF4DF0FEC18B5AE2A4ED3B
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\Program Files (x86)\mozilla firefox\defaults\pref\channel-prefs.js
Successfully deleted: [File] C:\ProgramData\1428603507.bdinstall.bin
Successfully deleted: [File] C:\ProgramData\1428605214.bdinstall.bin
Successfully deleted: [File] C:\ProgramData\1428668247.bdinstall.bin
Successfully deleted: [File] C:\ProgramData\1428831891.bdinstall.bin
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] C:\Users\Mark Packard Bell\AppData\Roaming\opencandy
 
 
 
~~~ Chrome
 
Successfully deleted: [Folder] C:\Users\Mark Packard Bell\appdata\local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio
Successfully deleted: [Folder] C:\Users\Mark Packard Bell\appdata\local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
 
[C:\Users\Mark Packard Bell\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
 
[C:\Users\Mark Packard Bell\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
gkojfkhlekighikafcpjkiklfbnlmeio
mkfokfffehpeedafpekjeddnmnjhmcmk
 
[C:\Users\Mark Packard Bell\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
 
[C:\Users\Mark Packard Bell\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
  gkojfkhlekighikafcpjkiklfbnlmeio,
  mkfokfffehpeedafpekjeddnmnjhmcmk
]
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 24/06/2015 at 20:35:47.56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#9 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 24 June 2015 - 01:43 PM

# AdwCleaner v4.207 - Logfile created 24/06/2015 at 20:40:21
# Updated 21/06/2015 by Xplode
# Database : 2015-06-21.1 [Local]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Mark Packard Bell - MARKPACKARDBELL
# Running from : C:\Users\Mark Packard Bell\Desktop\adwcleaner_4.207.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17840
 
 
-\\ Mozilla Firefox v38.0.5 (x86 en-US)
 
 
-\\ Google Chrome v43.0.2357.130
 
 
-\\ Chromium v
 
 
*************************
 
AdwCleaner[R0].txt - [334 bytes] - [18/06/2015 13:31:03]
AdwCleaner[R1].txt - [335 bytes] - [18/06/2015 13:52:06]
AdwCleaner[R2].txt - [334 bytes] - [18/06/2015 13:57:53]
AdwCleaner[R3].txt - [1532 bytes] - [18/06/2015 14:03:21]
AdwCleaner[R4].txt - [1246 bytes] - [24/06/2015 20:38:02]
AdwCleaner[S0].txt - [1602 bytes] - [18/06/2015 14:11:23]
AdwCleaner[S1].txt - [1173 bytes] - [24/06/2015 20:40:21]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1232  bytes] ##########


#10 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:08 PM

Posted 25 June 2015 - 05:27 PM

Adware Removal Tool.
 
Download Adware removal tool to your desktop, right click the icon and select Run as Administrator.

Source: http://www.techsupportall.com/adware-removal-tool/

LOr0Gd7.png

Hit Ok.

sYFsqHx.png

Hit next make sure to leave all items checked, for removal.

8NcZjGc.png


The Program will close all open programs to complete the removal, so save any work and hit OK. Then hit OK after the removal process is complete,  then OK again to finish up. Post log generated by tool.

 

Step 2: ZHP Cleaner.

 

Download and save ZHP Cleaner to your desktop.

http://www.nicolascoolman.fr/download/zhpcleaner-2/

Right Click and run as administrator.

Click on the Repair button.

At the end of the process you will be asked to reboot your machine.

After you reboot a report will open on your desktop.

Copy and paste the report here in your next reply.

 

Step 3: Security Check.

 

Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document

 

 

 

Step 4: Minitoolbox.

 

Please download [b]MINITOOLBOX and run it.



Checkmark following boxes:


Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

Eset Scan

http://www.eset.com/us/online-scanner/
 

Disable your antivirus prior to this scan.

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

 
 
 esetonlinebtn.png
 

  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.


#11 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 26 June 2015 - 05:32 AM

* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * 
 
Adware Removal Tool v3.9
Time: 2015_06_26_03_01_44
OS: Windows 7 - 64 Bit
Account Name: Mark Packard Bell
U0L0S16
 
\\\\\\\\\\\\\\\\\\\\\\\ Repair Logs \\\\\\\\\\\\\\\\\\\\\\
 
Deleted - File - C:\program files (x86)\SolarWinds\ResponseTimeViewer\Plugins\sopcast.plg
Deleted - File - C:\Users\Mark Packard Bell\Appdata\Roaming\XBMC\addons\plugin.video.SportsDevil\resources\catchers\sopcast.txt
Deleted - File - C:\Users\Mark Packard Bell\Appdata\Roaming\XBMC\addons\skin.neon\media\extras\Studios\Babylonian Productions.png
Deleted - File - C:\Users\Mark Packard Bell\Appdata\Roaming\XBMC\addons\skin.neon\media\extras\Studios\babylonian.png
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:masterclsid
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}:dllname
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\9763a40a_0:
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2EECD738-5844-4A99-B4B6-146BF802613B}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{472734EA-242A-422B-ADF8-83D1E48CC825}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{98889811-442D-49DD-99D7-DC866BE87DBC}
 
\\ Finished
 
 
THE ADWARE IS STILL THERE BTW. NASTY PIECE OF ....


#12 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 26 June 2015 - 07:50 AM

~ ZHPCleaner v2015.6.24.282 by Nicolas Coolman (2015\06\24)
~ Run by Mark Packard Bell (Administrator)  (26/06/2015 14:18:00)
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Mark Packard Bell\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Mark Packard Bell\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)
 
 
---\\  Services (0)
~ No malicious items found.
 
 
---\\  Browser internet (0)
~ No malicious items found.
 
 
---\\  Hosts file (0)
~ No malicious items found.
 
 
---\\  Scheduled automatic tasks. (0)
~ No malicious items found.
 
 
---\\  Explorer ( File, Folder) (6)
MOVED file: C:\Users\Mark Packard Bell\Downloads\SecureDownloadManager.log   (PUP.SearchAssist)
MOVED file: C:\Users\Mark Packard Bell\Downloads\wlan-speedtest.pdf   (Adware.ScriptHost)
MOVED file: C:\Windows\AutoKMS\AutoKMS.exe [CODYQX4 - AutoKMS] (HackTool.AutoKMS)
MOVED file: C:\Windows\AutoKMS\AutoKMS.log   (HackTool.AutoKMS)
MOVED folder*: C:\ProgramData\Microsoft Toolkit (HackTool.AutoKMS)
MOVED folder*: C:\Windows\AutoKMS (HackTool.AutoKMS)
 
 
---\\  Registry ( Key, Value, Data) (3)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Listbar.SSListBar [Sheridan ActiveListBar Control] (Adware.BHO)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Listbar.SSListBar.1 [Sheridan ActiveListBar Control] (Adware.BHO)
DELETED value: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_AB4AFE18D8CF4DF0FEC18B5AE2A4ED3B ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window] (PUP.CrossBrowse)
 
 
---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)
 
 
---\\ Statistics
~ Items scanned : 859
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 9
 
 
End of clean at 14:18:26
===================
ZHPCleaner-[R]-26062015-14_18_26.txt
ZHPCleaner-[S]-26062015-14_16_56.txt


#13 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 26 June 2015 - 08:22 AM

 Results of screen317's Security Check version 1.004  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
Norton Internet Security   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 SpywareBlaster 5.0    
 Zemana AntiMalware    
 TuneUp Utilities 2014 (en-GB)  
 Java 8 Update 45  
 Adobe Flash Player 18.0.0.160  
 Adobe Reader XI  
 Mozilla Firefox (38.0.5) 
 Google Chrome (43.0.2357.124) 
 Google Chrome (43.0.2357.130) 
````````Process Check: objlist.exe by Laurent````````  
 Zemana AntiMalware ZAM.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0% 
````````````````````End of Log`````````````````````` 


#14 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 26 June 2015 - 08:26 AM

MiniToolBox by Farbar  Version: 22-06-2015
Ran by Mark Packard Bell (administrator) on 26-06-2015 at 15:25:52
Running from "C:\Users\Mark Packard Bell\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: EasyNote TK81 Manufacturer: Packard Bell
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
Hosts file not detected in the default directory
========================= IP Configuration: ================================
 
Qualcomm Atheros AR5B97 Wireless Network Adapter = Wireless Network Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : MarkPackardBell
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 2E-65-9D-5A-71-A8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Qualcomm Atheros AR5B97 Wireless Network Adapter
   Physical Address. . . . . . . . . : 1C-65-9D-5A-71-A8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::fcde:60db:fff2:67d0%14(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.87.106(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 26 June 2015 14:52:35
   Lease Expires . . . . . . . . . . : 27 June 2015 14:52:40
   Default Gateway . . . . . . . . . : 192.168.87.1
   DHCP Server . . . . . . . . . . . : 192.168.87.1
   DHCPv6 IAID . . . . . . . . . . . : 488400285
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-87-D0-09-1C-75-08-44-9B-BD
   DNS Servers . . . . . . . . . . . : 212.10.10.4
                                       212.10.24.252
                                       212.10.10.5
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : 1C-75-08-44-9B-BD
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter VirtualBox Host-Only Network:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
   Physical Address. . . . . . . . . : 08-00-27-00-C0-9A
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a92d:703a:2e8a:92a3%16(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 570949671
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-87-D0-09-1C-75-08-44-9B-BD
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  ns1.stofanet.dk
Address:  212.10.10.4
 
Name:    google.com
Addresses:  2a00:1450:4005:800::1007
 212.10.212.38
 212.10.212.27
 212.10.212.30
 212.10.212.57
 212.10.212.45
 212.10.212.49
 212.10.212.23
 212.10.212.44
 212.10.212.59
 212.10.212.34
 212.10.212.53
 212.10.212.15
 212.10.212.29
 212.10.212.42
 212.10.212.19
 
 
Pinging google.com [212.10.212.19] with 32 bytes of data:
Reply from 212.10.212.19: bytes=32 time=10ms TTL=60
Reply from 212.10.212.19: bytes=32 time=12ms TTL=60
 
Ping statistics for 212.10.212.19:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 10ms, Maximum = 12ms, Average = 11ms
Server:  ns1.stofanet.dk
Address:  212.10.10.4
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.139.183.24
 98.138.253.109
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=106ms TTL=48
Reply from 98.139.183.24: bytes=32 time=102ms TTL=48
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 102ms, Maximum = 106ms, Average = 104ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...2e 65 9d 5a 71 a8 ......Microsoft Virtual WiFi Miniport Adapter
 14...1c 65 9d 5a 71 a8 ......Qualcomm Atheros AR5B97 Wireless Network Adapter
 13...1c 75 08 44 9b bd ......Broadcom NetLink ™ Gigabit Ethernet
 16...08 00 27 00 c0 9a ......VirtualBox Host-Only Ethernet Adapter
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.87.1   192.168.87.106     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
     192.168.56.0    255.255.255.0         On-link      192.168.56.1    276
     192.168.56.1  255.255.255.255         On-link      192.168.56.1    276
   192.168.56.255  255.255.255.255         On-link      192.168.56.1    276
     192.168.87.0    255.255.255.0         On-link    192.168.87.106    281
   192.168.87.106  255.255.255.255         On-link    192.168.87.106    281
   192.168.87.255  255.255.255.255         On-link    192.168.87.106    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.56.1    276
        224.0.0.0        240.0.0.0         On-link    192.168.87.106    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.56.1    276
  255.255.255.255  255.255.255.255         On-link    192.168.87.106    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 16    276 fe80::/64                On-link
 14    281 fe80::/64                On-link
 16    276 fe80::a92d:703a:2e8a:92a3/128
                                    On-link
 14    281 fe80::fcde:60db:fff2:67d0/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    276 ff00::/8                 On-link
 14    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/26/2015 02:53:29 PM) (Source: Windows Search Service) (User: )
Description: Could not get performance counter registry info for WSearchIdxPi for instance   due to the following error: The operation completed successfully.   0x0.
 
Error: (06/26/2015 02:52:41 PM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer object, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.
 
Context:  Application, SystemIndex Catalog
 
Error: (06/26/2015 02:52:41 PM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer service, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.
 
Error: (06/26/2015 00:23:08 PM) (Source: Windows Search Service) (User: )
Description: Could not get performance counter registry info for WSearchIdxPi for instance   due to the following error: The operation completed successfully.   0x0.
 
Error: (06/26/2015 00:22:53 PM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer object, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.
 
Context:  Application, SystemIndex Catalog
 
Error: (06/26/2015 00:22:53 PM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer service, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.
 
Error: (06/26/2015 03:16:00 AM) (Source: Windows Search Service) (User: )
Description: Could not get performance counter registry info for WSearchIdxPi for instance   due to the following error: The operation completed successfully.   0x0.
 
Error: (06/26/2015 03:15:55 AM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer object, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.
 
Context:  Application, SystemIndex Catalog
 
Error: (06/26/2015 03:15:54 AM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer service, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.
 
Error: (06/26/2015 00:34:23 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
 
System errors:
=============
Error: (06/26/2015 03:23:53 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (06/26/2015 03:13:53 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (06/26/2015 03:03:53 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (06/26/2015 02:53:53 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (06/26/2015 02:52:52 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (06/26/2015 02:52:31 PM) (Source: Microsoft-Windows-BitLocker-Driver) (User: NT AUTHORITY)
Description: Encrypted volume check: Volume information on \\?\Volume{2f8a3d82-fd2e-11df-a1ee-806e6f6e6963} cannot be read.
 
Error: (06/26/2015 02:52:32 PM) (Source: NETLOGON) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.
 
Error: (06/26/2015 02:51:05 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (06/26/2015 02:43:46 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (06/26/2015 02:33:46 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
 
Microsoft Office Sessions:
=========================
Error: (06/26/2015 02:53:29 PM) (Source: Windows Search Service)(User: )
Description: WSearchIdxPiThe operation completed successfully.   0x0
 
Error: (06/26/2015 02:52:41 PM) (Source: Windows Search Service)(User: )
Description: Context:  Application, SystemIndex Catalog
 
Error: (06/26/2015 02:52:41 PM) (Source: Windows Search Service)(User: )
Description: 
 
Error: (06/26/2015 00:23:08 PM) (Source: Windows Search Service)(User: )
Description: WSearchIdxPiThe operation completed successfully.   0x0
 
Error: (06/26/2015 00:22:53 PM) (Source: Windows Search Service)(User: )
Description: Context:  Application, SystemIndex Catalog
 
Error: (06/26/2015 00:22:53 PM) (Source: Windows Search Service)(User: )
Description: 
 
Error: (06/26/2015 03:16:00 AM) (Source: Windows Search Service)(User: )
Description: WSearchIdxPiThe operation completed successfully.   0x0
 
Error: (06/26/2015 03:15:55 AM) (Source: Windows Search Service)(User: )
Description: Context:  Application, SystemIndex Catalog
 
Error: (06/26/2015 03:15:54 AM) (Source: Windows Search Service)(User: )
Description: 
 
Error: (06/26/2015 00:34:23 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\Mark Packard Bell\Downloads\esetsmartinstaller_enu.exe
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-11-20 21:24:05.366
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-11-20 21:24:05.303
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.172 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated)
Adobe Photoshop Elements 8.0 (HKLM-x32\...\Adobe Photoshop Elements 8.0) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
AIDA64 Extreme v4.60 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.60 - FinalWire Ltd.)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Android Sync Manager WiFi (HKLM-x32\...\{563254C9-FBFC-0200-0000-000000000000}) (Version: 12.05.1071 - Mobile Action)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B678797F-DF38-4556-8A31-8B818E261868}) (Version: 8.0.0.23 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Backup Manager Basic (HKLM-x32\...\{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems) Hidden
Battlefield 1942™ (HKLM-x32\...\{5BE7BD06-512B-43bf-AD78-3BD2A5F5F7B3}) (Version: 1.6.20.0 - Electronic Arts)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Gigabit NetLink Controller (HKLM\...\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}) (Version: 14.0.2.3 - Broadcom Corporation)
CCENT/CCNA ICND1 100-101 Network Simulator Lite (HKLM-x32\...\{F3E303BD-33F4-FAF5-CF10-53D2072A4323}) (Version: 1.0.0 - Pearson Education) Hidden
CCENT/CCNA ICND1 100-101 Network Simulator Lite (HKLM-x32\...\com.pearson.ccna.NetworkSimulator.ICND1.lite) (Version: 1.0.0 - Pearson Education)
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
ChromecastApp (HKCU\...\{079ede36-133d-44b0-8053-c7c1fa8d2e0d}_is1) (Version: 1.5.1383.0 - Google Inc.)
Cisco Packet Tracer 6.0.1 (HKLM-x32\...\Cisco Packet Tracer 6.0.1_is1) (Version:  - Cisco Systems, Inc.)
Club Swap (HKCU\...\6dc1aa4d9e90f983) (Version: 1.0.0.0 - Club Swap)
CM3 Series SaveGame Editor 4.0 Build 4000 (HKLM-x32\...\CM3 Series SaveGame Editor_is1) (Version: 4.0 Build 4000 - Graeme Kelly)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.6.2 - Bloodshed Software)
DiRT 3 (HKLM-x32\...\{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters) Hidden
DiRT 3 (HKLM-x32\...\GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters)
DiRT2 (HKLM-x32\...\{434D0820-3AA6-493A-80B9-301000028501}) (Version: 1.0.0002.133 - Codemasters) Hidden
DiRT2 (HKLM-x32\...\{52D1D62C-FEAB-4580-849E-1DB624BADBBD}) (Version: 1.00.0000 - Codemasters)
Dokan Library 0.6.0 (HKLM-x32\...\DokanLibrary) (Version:  - )
Download Navigator (HKLM-x32\...\{44715246-18E9-4EDF-AA03-94E4B4F80EA8}) (Version: 2.2.0 - SEIKO EPSON CORPORATION)
Dropbox (HKCU\...\Dropbox) (Version: 3.6.7 - Dropbox, Inc.)
EaseUS Data Recovery Wizard 8.6 (HKLM\...\EaseUS Data Recovery Wizard 8.6_is1) (Version:  - EaseUS)
EaseUS Partition Master 9.1.1 Home Edition (HKLM-x32\...\EaseUS Partition Master Home Edition_is1) (Version:  - EaseUS)
EaseUS Todo Backup Free 8.0  (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 8.0 - CHENGDU YIWO Tech Development Co., Ltd)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX130 Series Printer Uninstall (HKLM\...\EPSON SX130 Series) (Version:  - SEIKO EPSON Corporation)
F1 2014 (HKLM-x32\...\RjEyMDE0_is1) (Version: 1 - )
FileZilla Client 3.9.0.6 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse)
Free PDF Solutions PDF to WORD version 1.0 (HKLM-x32\...\Free PDF Solutions PDF to WORD_is1) (Version: 1.0 - )
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.0 - )
Fronter OES (HKLM-x32\...\{50F072D6-D66C-4E7D-9833-303661C5AAA9}) (Version: 1.1.31.0 - Fronter)
GanttProject (HKLM-x32\...\GanttProject) (Version:  - )
Glary Undelete 1.8.0.468 (HKLM-x32\...\Glary Undelete_is1) (Version:  - Glarysoft.com)
GNS3 1.3.3 (HKLM-x32\...\GNS3) (Version: 1.3.3 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Drive (HKLM-x32\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Gpg4win (2.2.4) (HKLM-x32\...\GPG4Win) (Version: 2.2.4 - The Gpg4win Project)
iCloud (HKLM\...\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}) (Version: 3.0.2.163 - Apple Inc.)
ICND1 Network Simulator Lite (HKLM-x32\...\ICND1 Network Simulator Lite) (Version: 1.0.0.14 - Pearson IT Certification)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Packard Bell)
ImagXpress (HKLM-x32\...\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}) (Version: 7.0.74.0 - Nero AG) Hidden
inSSIDer 3 (HKLM-x32\...\{CDF246AE-C6E3-438F-AA76-21700DCC15F6}) (Version: 3.0.6.42 - MetaGeek, LLC)
iTunes (HKLM\...\{F46AA0F1-E284-4878-A462-5F11B9166C0E}) (Version: 11.4.0.18 - Apple Inc.)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{8E5233E1-7495-44FB-8DEB-4BE906D59619}) (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Kaspersky Security Scan (HKLM-x32\...\{D1282694-0693-41A8-ABC1-6D1FFC1F65C5}) (Version: 15.0.0.380 - Kaspersky Lab) Hidden
Kaspersky Security Scan (HKLM-x32\...\InstallWIX_{D1282694-0693-41A8-ABC1-6D1FFC1F65C5}) (Version: 15.0.0.380 - Kaspersky Lab)
Kaspersky Software Updater Beta (HKLM-x32\...\{56DC4F23-DCC5-4935-A6E1-D9B7817C948A}) (Version: 1.0.5.34 - Kaspersky Lab) Hidden
Kaspersky Software Updater Beta (HKLM-x32\...\InstallWIX_{56DC4F23-DCC5-4935-A6E1-D9B7817C948A}) (Version: 1.0.5.34 - Kaspersky Lab)
Kodi (HKCU\...\Kodi) (Version:  - XBMC-Foundation)
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.14 - Packard Bell)
LEGO MINDSTORMS Edu NXT - English Language Pack (HKLM-x32\...\{A970DAFC-8683-47C1-9C72-E9C59AD9BD0E}) (Version: 2.1.79.0 - The LEGO Group)
LEGO MINDSTORMS Edu NXT Software v2.1 (HKLM-x32\...\{E43F30A4-1A56-408F-BF17-C5E808FD4DAC}) (Version: 2.1.76.0 - LEGO)
LEGO MINDSTORMS NXT Driver for x64 (HKLM\...\{AE1D4582-D449-495C-9DC6-B92E16C7DB63}) (Version: 1.19.768 - LEGO)
LEGO MINDSTORMS NXT Edu Patch v2.1f3 (HKLM-x32\...\{0A2EB35B-1ED6-4E16-9D83-2C848D558B50}) (Version: 2.1.22.0 - LEGO) Hidden
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Office Live Meeting 2007 (HKLM-x32\...\{AFADA6D3-EBC0-406E-B3ED-079B7A831467}) (Version: 8.0.6362.229 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM-x32\...\Office14.PRJPROR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
MiniTool Partition Wizard Home Edition 7.8 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 37.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
MySQL Workbench 6.1 CE (HKLM-x32\...\{AD95295B-0279-43B6-A873-F12A1D1CD146}) (Version: 6.1.7 - Oracle Corporation)
Nero 9 Essentials (HKLM-x32\...\{a97f0ac6-e34b-400a-8ce4-c4a5ab45344e}) (Version:  - Nero AG)
Nmap 6.47 (HKLM-x32\...\Nmap) (Version:  - )
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.7.0.11 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenVPN 2.3.6-I003  (HKLM\...\OpenVPN) (Version: 2.3.6-I003 - )
OpenVPN Tap Adapter 9.0.0.8 (HKLM-x32\...\OpenVPN Tap Adapter) (Version:  - )
Oracle VM VirtualBox 4.3.26 (HKLM\...\{5771F59A-BFC9-4FAF-A883-7642EF4BA3C3}) (Version: 4.3.26 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4643 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Packard Bell InfoCentre (HKLM-x32\...\Packard Bell InfoCentre) (Version: 3.02.3000 - Packard Bell)
Packard Bell MyBackup (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Packard Bell Power Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Packard Bell)
Packard Bell Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Packard Bell)
Packard Bell Registration (HKLM-x32\...\Packard Bell Registration) (Version: 1.03.3003 - Packard Bell)
Packard Bell ScreenSaver (HKLM-x32\...\Packard Bell Screensaver) (Version: 1.1.0806.2010 - Packard Bell )
PC TWIN SHOCK (HKLM-x32\...\{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}) (Version: 2007.08.17 - )
Pearson IT Certification Practice Test (HKLM-x32\...\Pearson IT Certification Practice Test_is1) (Version: 1.0.0.24 - Pearson IT Certification)
Pro Evolution Soccer 2015 (HKLM-x32\...\Steam App 287680) (Version:  - KONAMI Digital Entertainment)
ProjectLibre (HKLM-x32\...\{E29A4ED9-3192-4D72-A2E2-9C32B512714D}) (Version: 1.5.19.0 - ProjectLibre)
Puran Defrag 7.7 (HKLM\...\Puran Defrag_is1) (Version:  - Puran Software)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Rapture3D 2.3.22 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6141 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.82 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30122 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Screencast-O-Matic (HKCU\...\Screencast-O-Matic) (Version:  - Screencast-O-Matic)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0015-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0019-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{835E4BED-E265-4103-AE14-0B4C70CF3FE8}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUS_{1F7000D3-A917-4AD2-BA55-59E6FDAF062A}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{4BF13B26-3A95-4E42-900A-DEB16FDA75A0}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-002C-0409-1000-0000000FF1CE}_Office15.PROPLUS_{C5D14A1B-6E3E-491A-96C6-ABDEEEC4E97D}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0044-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{D7E879E6-B505-4DA2-BFEE-53A55E7C8E38}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0090-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00A1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00BA-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1931508C-C004-4983-81E3-70BE6252904B}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{E4F470B2-3601-4E1C-B291-D6B580F53136}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E2-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0115-0409-1000-0000000FF1CE}_Office15.PROPLUS_{D7E879E6-B505-4DA2-BFEE-53A55E7C8E38}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0117-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SolarWinds Response Time Viewer (HKLM-x32\...\{5B415E10-D1C1-4E54-9061-AE0FB3D7F2B2}) (Version: 1.0.0.162 - SolarWinds)
Spotify (HKCU\...\Spotify) (Version: 1.0.6.80.g2a801a53 - Spotify AB)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StofaWebTvPlayer (HKLM-x32\...\{C1BC4EC3-0DD8-4529-B50E-6B0CC74DEDD0}) (Version: 3.13.0.7173 - Stofa A/S)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.0.1108 - SUPERAntiSpyware.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
System Ninja version 3.0.6 (HKLM-x32\...\{6E67710E-206D-43AB-BF21-E7CD63056C55}_is1) (Version: 3.0.6 - SingularLabs)
System Requirements Lab (HKLM-x32\...\{A92D0DBB-834A-4CAD-A434-F2232C692516}) (Version: 6.1.4.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
TuneUp Utilities 2014 (en-GB) (HKLM-x32\...\{504F08E9-C70E-4B70-917E-382141CAC326}) (Version: 14.0.1000.340 - TuneUp Software) Hidden
Tweaking.com - Simple System Tweaker (HKLM-x32\...\Tweaking.com - Simple System Tweaker) (Version: 2.2.0 - Tweaking.com)
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 3.0.0 - Tweaking.com)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.2.2 - Tweaking.com)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{40930C8E-A677-414C-A72F-DFDEB10738FB}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version:  - Microsoft)
Verbatim GREEN BUTTON 1.68 (HKLM-x32\...\Verbatim GREEN BUTTON_is1) (Version:  - Verbatim)
Verbatim Hard Drive Formatter (HKLM-x32\...\Verbatim Hard Drive Formatter_is1) (Version:  - Verbatim)
Verbatim Hard Drive Info 1.04 (HKLM-x32\...\Verbatim Hard Drive Info_is1) (Version:  - Verbatim)
Verbatim Product Update 1.06 (HKLM-x32\...\Verbatim Product Update_is1) (Version:  - Verbatim)
Video Web Camera (HKLM-x32\...\{6D9021DC-CF1B-4148-8C80-6D8E8A8A33EB}) (Version: 0.5.37.3 - SuYin)
ViewRight Web PC (HKLM-x32\...\{0AEF5F93-DE30-4D0A-A879-B3BB72000F52}) (Version: 2.1.2.3 - Verimatrix, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VMware vSphere Client 5.5 (HKLM-x32\...\{4CFB0494-2E96-4631-8364-538E2AA91324}) (Version: 5.5.0.3165 - VMware, Inc.)
WampServer 2.5 (HKLM-x32\...\WampServer 2_is1) (Version:  - Hervé Leclerc (HeL))
Welcome Center (HKLM-x32\...\Packard Bell Welcome Center) (Version: 1.02.3004 - Packard Bell)
Widevine Media Optimizer Chrome 6.0.0 (HKCU\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
WinSCP 5.5.2 (HKLM-x32\...\winscp3_is1) (Version: 5.5.2 - Martin Prikryl)
Wipe (HKLM\...\wipe) (Version: 2015.06 - PrivacyRoot.com)
Wireshark 1.12.5 (32-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.5 - The Wireshark developer community, http://www.wireshark.org)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.16.198 - Zemana Ltd.)
 
========================= Devices: ================================
 
Name: 1.3M WebCam
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Device ID: USB\VID_064E&PID_A219&MI_00\6&612D10C&0&0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 44%
Total physical RAM: 4090.9 MB
Available physical RAM: 2271.54 MB
Total Pagefile: 8180 MB
Available Pagefile: 6006.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3977.13 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Packard Bell) (Fixed) (Total:684.54 GB) (Free:282.6 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\MARKPACKARDBELL
 
Administrator            Guest                    Mark Packard Bell        
 
 
**** End of log ****


#15 sparky2000

sparky2000
  • Topic Starter

  • Members
  • 81 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:08 AM

Posted 26 June 2015 - 09:56 AM

I'm running ESET online scanner since over an hour ago.

 

I had run it previously and it had found some malware as well as some false positives IMO but deleted everything anyway. Is there a way of finding that previous log file too? Or is it necessary?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users