Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ads by AntiAdBlocker


  • Please log in to reply
15 replies to this topic

#1 Icetou

Icetou

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 04:07 AM

I found a thread in the forum about it and followed the instructions given by Broni here. Would somebody please help me with this ? :

 

 

SecurityCheck.exe

 Results of screen317's Security Check version 1.004  

   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Windows Defender   
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Java 7 Update 67  
 Java version 32-bit out of Date!
 Adobe Flash Player 18.0.0.194  
 Mozilla Firefox (38.0.5) 
 Google Chrome (43.0.2357.124) 
 Google Chrome (43.0.2357.130) 
 Google Chrome (GoogleUpdateHelper.dll..) 
````````Process Check: objlist.exe by Laurent````````
 Windows Defender MSMpEng.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
 
 
Farbar Service Scanner Version: 17-01-2015
Ran by Student-ID (administrator) on 07-07-2015 at 17:05:00
Running from "C:\Users\Student-ID\Desktop"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
 
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MsMpEng.exe => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
 
 
**** End of log ****

Edited by Icetou, 07 July 2015 - 04:27 AM.


BC AdBot (Login to Remove)

 


#2 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 04:08 AM

MiniToolBox by Farbar  Version: 01-07-2015
Ran by Student-ID (administrator) on 07-07-2015 at 17:07:19
Running from "C:\Users\Student-ID\Desktop"
Microsoft Windows 8.1  (X64)
Model: LIFEBOOK LH532 Manufacturer: FUJITSU
Boot Mode: Normal
***************************************************************************
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
========================= FF Proxy Settings: ============================== 
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® Centrino® Ultimate-N 6300 AGN = Wi-Fi (Connected)
Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 = Ethernet 2 (Hardware not present)
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Ethernet-WFP Native MAC Layer LightWeight Filter-0000" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled metric=1 nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 13" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set subinterface interface= subinterface=ethernet_13 mtu=1477
set subinterface interface= subinterface=ethernet_11 mtu=1477
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : DPCS-NB1346523
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : sd.sp.edu.sg
                                       sp.edu.sg
                                       sf.sp.edu.sg
 
Wireless LAN adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 24-77-03-FA-25-5D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Bluetooth Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : F4-B7-E2-DC-C4-C1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 2C-D4-44-95-E6-41
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : sd.sp.edu.sg
   Description . . . . . . . . . . . : Intel® Centrino® Ultimate-N 6300 AGN
   Physical Address. . . . . . . . . : 24-77-03-FA-25-5C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::25dd:5619:3e6f:b272%2(Preferred) 
   IPv4 Address. . . . . . . . . . . : 172.22.74.237(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.248.0
   Lease Obtained. . . . . . . . . . : Tuesday, 7 July 2015 3:25:14 PM
   Lease Expires . . . . . . . . . . : Tuesday, 7 July 2015 7:54:26 PM
   Default Gateway . . . . . . . . . : 172.22.72.1
   DHCP Server . . . . . . . . . . . : 164.78.28.74
   DHCPv6 IAID . . . . . . . . . . . : 203716355
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-DD-8D-B4-2C-D4-44-95-E6-41
   DNS Servers . . . . . . . . . . . : 164.78.237.13
                                       164.78.239.13
   Primary WINS Server . . . . . . . : 164.78.237.13
   Secondary WINS Server . . . . . . : 164.78.239.13
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  ssddc600.sd.sp.edu.sg
Address:  164.78.237.13
 
Name:    google.com
Addresses:  2404:6800:4003:c00::8a
 74.125.200.113
 74.125.200.138
 74.125.200.101
 74.125.200.102
 74.125.200.100
 74.125.200.139
 
 
Pinging google.com [74.125.200.138] with 32 bytes of data:
Reply from 74.125.200.138: bytes=32 time=12ms TTL=45
Reply from 74.125.200.138: bytes=32 time=4ms TTL=45
 
Ping statistics for 74.125.200.138:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 4ms, Maximum = 12ms, Average = 8ms
Server:  ssddc600.sd.sp.edu.sg
Address:  164.78.237.13
 
Name:    yahoo.com
Addresses:  2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 2001:4998:58:c02::a9
 206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=223ms TTL=43
Reply from 98.138.253.109: bytes=32 time=213ms TTL=43
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 213ms, Maximum = 223ms, Average = 218ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  8...24 77 03 fa 25 5d ......Microsoft Wi-Fi Direct Virtual Adapter
  6...f4 b7 e2 dc c4 c1 ......Bluetooth Device (Personal Area Network)
  3...2c d4 44 95 e6 41 ......Realtek PCIe GBE Family Controller
  2...24 77 03 fa 25 5c ......Intel® Centrino® Ultimate-N 6300 AGN
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      172.22.72.1    172.22.74.237     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      172.22.72.0    255.255.248.0         On-link     172.22.74.237    276
    172.22.74.237  255.255.255.255         On-link     172.22.74.237    276
    172.22.79.255  255.255.255.255         On-link     172.22.74.237    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     172.22.74.237    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     172.22.74.237    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  2    276 fe80::/64                On-link
  2    276 fe80::25dd:5619:3e6f:b272/128
                                    On-link
  1    306 ff00::/8                 On-link
  2    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/07/2015 03:24:37 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
 
Error: (07/07/2015 10:30:00 AM) (Source: Application Hang) (User: )
Description: The program Acrobat.exe version 10.1.14.11 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 14c4
 
Start Time: 01d0b85c95749be0
 
Termination Time: 5
 
Application Path: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe
 
Report Id: 09fe28b4-2450-11e5-bf53-f4b7e2dcc4c1
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (07/07/2015 01:18:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: DPCS-NB1346523)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (07/07/2015 01:18:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: DPCS-NB1346523)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (07/07/2015 01:18:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: DPCS-NB1346523)
Description: Activation of app Microsoft.SkypeApp_kzf8qxf38zg5c!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (07/07/2015 00:35:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
 
Error: (07/06/2015 10:22:06 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
 
Error: (07/03/2015 08:14:43 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
 
Error: (07/02/2015 09:40:02 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
 
Error: (06/30/2015 10:28:08 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
 
 
System errors:
=============
Error: (07/07/2015 01:18:37 AM) (Source: DCOM) (User: DPCS-NB1346523)
Description: Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca
 
Error: (07/07/2015 01:18:37 AM) (Source: DCOM) (User: DPCS-NB1346523)
Description: Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca
 
Error: (07/07/2015 01:18:37 AM) (Source: DCOM) (User: DPCS-NB1346523)
Description: App.AppX54xz6wnkhmw763c2y8tb018n7d71dtx7.wwa
 
Error: (06/29/2015 02:31:58 PM) (Source: DCOM) (User: DPCS-NB1346523)
Description: Windows.Networking.BackgroundTransfer.Internal.NetworkChangeTask.ClassId.4
 
Error: (06/27/2015 05:27:00 PM) (Source: DCOM) (User: DPCS-NB1346523)
Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}
 
Error: (06/27/2015 00:29:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.
 
Module Path: C:\WINDOWS\System32\IWMSSvc.dll
 
Error: (06/27/2015 00:29:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.
 
Module Path: C:\WINDOWS\System32\IWMSSvc.dll
 
Error: (06/27/2015 00:29:07 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.
 
Module Path: C:\WINDOWS\System32\IWMSSvc.dll
 
Error: (06/27/2015 00:29:01 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (06/27/2015 00:29:01 PM) (Source: Service Control Manager) (User: )
Description: The Cisco AnyConnect Secure Mobility Agent service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 4000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (07/07/2015 03:24:37 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
 
Error: (07/07/2015 10:30:00 AM) (Source: Application Hang)(User: )
Description: Acrobat.exe10.1.14.1114c401d0b85c95749be05C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe09fe28b4-2450-11e5-bf53-f4b7e2dcc4c1
 
Error: (07/07/2015 01:18:42 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: DPCS-NB1346523)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141
 
Error: (07/07/2015 01:18:42 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: DPCS-NB1346523)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141
 
Error: (07/07/2015 01:18:42 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: DPCS-NB1346523)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2144927141
 
Error: (07/07/2015 00:35:00 AM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe
 
Error: (07/06/2015 10:22:06 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
 
Error: (07/03/2015 08:14:43 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
 
Error: (07/02/2015 09:40:02 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
 
Error: (06/30/2015 10:28:08 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-07-05 14:15:05.337
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:15:04.917
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:49.753
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:49.275
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:39.479
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:38.907
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:35.848
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:35.312
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:34.082
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-05 14:14:33.430
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
=========================== Installed Programs ============================
 
64 Bit HP CIO Components Installer (HKLM\...\{377672F0-6B8A-467D-8DDC-79338BCCD531}) (Version: 8.2.2 - Hewlett-Packard) Hidden
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.14 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.1280 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.8.0.447 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.3.0 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version:  - ALPS ELECTRIC CO., LTD.)
Anytime USB Charge Utility (HKLM\...\{A794229E-401E-44D4-A8B5-B21E975676DE}) (Version: 2.01.00.001 - FUJITSU LIMITED) Hidden
Anytime USB Charge Utility (HKLM-x32\...\InstallShield_{A794229E-401E-44D4-A8B5-B21E975676DE}) (Version: 2.01.00.001 - FUJITSU LIMITED)
AutoCAD 2012 - English (HKLM\...\{5783F2D7-A001-0409-0102-0060B0CE6BBA}) (Version: 18.2.205.0 - Autodesk) Hidden
AutoCAD 2012 - English (HKLM\...\AutoCAD 2012 - English) (Version: 18.2.51.0 - Autodesk)
AutoCAD 2012 - English SP2 (HKLM\...\AutoCAD 2012 - English SP2) (Version: 1 - Autodesk)
AutoCAD 2012 Language Pack - English (HKLM\...\{5783F2D7-A001-0409-1102-0060B0CE6BBA}) (Version: 18.2.51.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}) (Version: 2.0.90 - Autodesk)
Autodesk Inventor Fusion 2012 (HKLM\...\{FFF5619F-6669-4EC5-A85E-9994F70A9E5D}) (Version: 1.0.0.79 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion 2012 (HKLM\...\Autodesk Inventor Fusion 2012) (Version: 1.0.0.79 - Autodesk, Inc.)
Autodesk Inventor Fusion 2012 Language Pack (HKLM\...\{FFF7F80F-929E-497F-A112-B070DE816128}) (Version: 1.0.0.79 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2012 (HKLM\...\{EAB3AC1A-68FF-486B-9C6B-E48EBB4B05CC}) (Version: 0.0.1.138 - Autodesk) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2012 (HKLM\...\Autodesk Inventor Fusion plug-in for AutoCAD 2012) (Version: 0.0.1.138 - Autodesk)
Autodesk Inventor Fusion plug-in language pack for AutoCAD 2012 (HKLM\...\{E552C39C-C70E-464F-9733-8311331BDD90}) (Version: 0.0.1.138 - Autodesk) Hidden
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
Battery Utility (HKLM\...\{BCC8CBC4-0F36-4F2A-B9C6-717FDF266C90}) (Version: 4.01.20.001 - FUJITSU LIMITED) Hidden
Battery Utility (HKLM-x32\...\InstallShield_{BCC8CBC4-0F36-4F2A-B9C6-717FDF266C90}) (Version: 4.01.20.001 - FUJITSU LIMITED)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
CambridgeSoft ChemBioOffice 2012 (HKLM-x32\...\{535CDE5A-39D6-46EE-B6E5-9F38D0664D97}) (Version: 13.0 - CambridgeSoft Corporation)
CambridgeSoft ChemDraw ActiveX Enterprise Constant 13.0 (HKLM-x32\...\{D25E0C13-7792-4E5C-8C54-A287C65834C9}) (Version: 13.0 - CambridgeSoft Corporation)
CambridgeSoft ChemScript 13.0 (HKLM-x32\...\{B5E0CD7D-992D-4345-BD66-EC580CFA15D1}) (Version: 13.0 - CambridgeSoft Corporation)
CambridgeSoft Desktop Inventory 13.0 (HKLM-x32\...\{C13DDA66-6AF3-4BFE-91C2-1D54B5A6C169}) (Version: 13.0 - CambridgeSoft Corporation)
CambridgeSoft E-Notebook 13.0 Client (HKLM-x32\...\{1E6FC31C-315E-4129-8140-67E7E618BF6E}) (Version: 13.0 - CambridgeSoft Corporation)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MG5600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5600_series) (Version: 1.00 - Canon Inc.)
Canon MG5600 series On-screen Manual (HKLM-x32\...\Canon MG5600 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.4.0 - Canon Inc.)
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.02040 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{A43014F4-44F8-4539-8F87-C8471CB810B1}) (Version: 3.1.02040 - Cisco Systems, Inc.) Hidden
Crystal Reports for Visual Studio (HKLM-x32\...\{AC41D924-8C68-4BD5-A7A1-0AE4176C31A6}) (Version: 12.51.0.240 - SAP) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.5413 - CyberLink Corp.)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4302.02 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3026 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Data Exchange Utility (HKLM-x32\...\{A6D7AC7D-BE4B-43FF-A887-5372F37B413C}) (Version: 2.2.0.0 - FUJITSU LIMITED) Hidden
Data Exchange Utility (HKLM-x32\...\InstallShield_{A6D7AC7D-BE4B-43FF-A887-5372F37B413C}) (Version: 2.2.0.0 - FUJITSU LIMITED)
Disc Burning Utility (HKLM-x32\...\{C5DEA189-ADE3-477C-85AC-9A3F1637394A}) (Version: 2.0.0.0 - FUJITSU LIMITED)
Dotfuscator Software Services - Community Edition (HKLM-x32\...\{1AA5BD63-6614-44B2-88A7-605191EDB835}) (Version: 5.0.2500.0 - PreEmptive Solutions)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.6.7 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.27.25 - Dropbox, Inc.) Hidden
Evernote v. 5.5.3 (HKLM-x32\...\{B1A0F908-1448-11E4-8684-00163E98E7D0}) (Version: 5.5.3.4236 - Evernote Corp.)
Face Sense Utility Settings (HKLM-x32\...\FaceSave) (Version: 3.0.0.1 - FUJITSU LIMITED)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FJ Camera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1209.0_WHQL - Sonix)
Fujistu Screen Saver (HKLM-x32\...\{C5955D8A-8913-48B2-A77B-4D4F8B9EB0D6}) (Version: 2.2.0.1 - FUJITSU LIMITED)
Fujitsu BIOS Driver (HKLM\...\{7292FFCF-FA9A-4585-AB80-A71961F931AF}) (Version: 1.1.0.0 - FUJITSU LIMITED) Hidden
Fujitsu BIOS Driver (HKLM-x32\...\InstallShield_{7292FFCF-FA9A-4585-AB80-A71961F931AF}) (Version: 1.1.0.0 - FUJITSU LIMITED)
Fujitsu MobilityCenter Extension Utility (HKLM\...\{EC314CDF-3521-482B-A21C-65AC95664814}) (Version: 4.01.00.000 - FUJITSU LIMITED) Hidden
Fujitsu MobilityCenter Extension Utility (HKLM-x32\...\InstallShield_{EC314CDF-3521-482B-A21C-65AC95664814}) (Version: 4.01.00.000 - FUJITSU LIMITED)
Fujitsu System Extension Utility (HKLM\...\{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}) (Version: 3.5.0.0 - FUJITSU LIMITED) Hidden
Fujitsu System Extension Utility (HKLM-x32\...\InstallShield_{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}) (Version: 3.5.0.0 - FUJITSU LIMITED)
GDR 5520 for SQL Server 2008 (KB2977321) (64-bit) (HKLM\...\KB2977321) (Version: 10.3.5520.0 - Microsoft Corporation)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.24.15 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.2.1001 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{E750D823-ACEF-4404-9B9B-C4CD67CD7498}) (Version: 15.05.3000.1493 - Intel Corporation)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.670 - Oracle)
Junk Mail filter update (HKLM-x32\...\{F6F30C28-38AA-4DBA-AE0B-7E30238E61BB}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
LIFEBOOK Application Panel (HKLM\...\{6226477E-444F-4DFE-BA19-9F4F7D4565BC}) (Version: 8.5.0.0 - FUJITSU LIMITED) Hidden
LIFEBOOK Application Panel (HKLM-x32\...\InstallShield_{6226477E-444F-4DFE-BA19-9F4F7D4565BC}) (Version: 8.5.0.0 - FUJITSU LIMITED)
Mathcad 15 F000 (HKLM-x32\...\{DC8F6C78-7231-44A2-B66E-6C4FCB3A3364}) (Version: 15.0.0.0 - PTC)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
MestReNova LITE 5.2.5-5780 (HKLM-x32\...\MestReNova LITE) (Version: 5.2.5-5780 - Mestrelab Research S.L.)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Hotmail Connector 64-bit (HKLM\...\{95140000-007A-0409-1000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 64-bit (HKLM\...\{95140000-007D-0409-1000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM\...\Office14.PRJPRO) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (HKLM-x32\...\{05855322-BE43-41FE-B583-D3AE0C326D58}) (Version: 4.0.50826.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (64-bit) (HKLM\...\Microsoft SQL Server 2008 R2) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{BC537AE0-88AF-47ED-B762-33B0D62B5188}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{7A56D81D-6406-40E7-9184-8AC1769C4D69}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{EAEBF166-B06A-4D7F-BAF7-6615303D5C7C}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{471AAD2C-9078-4DAC-BD43-FA10FB7C3FCE}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM\...\{01078B88-2981-4F75-96B0-8B22E2D2DE03}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{09C52940-A4D1-4409-A7CC-1AAE630CF578}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{393CA5BF-0362-42FD-ABC2-BA9D22EF925E}) (Version: 10.3.5520.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 CHS (HKLM-x32\...\{F545A42B-9A13-4DAC-B814-68AE8FBB88EE}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 CHT (HKLM-x32\...\{BA8A4455-A3F7-4D0F-B9B0-5F74CB97EA58}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 CHS (HKLM\...\{1BD5AD20-B984-4698-9CA8-D33B2EE5A219}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 CHT (HKLM\...\{41C7D282-B92B-4190-8B40-EC9EDEBCC9EC}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{1E6ED082-E32D-4B2B-8B6A-70B094815135}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visio Premium 2010 (HKLM\...\Office14.VISIO) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Professional - ENU (HKLM-x32\...\Microsoft Visual Studio 2010 Professional - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{B39A6825-EA20-43EA-AB2D-A6BC0298D9A1}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
My Program version 1.5 (HKLM-x32\...\My Program_is1) (Version: 1.5 - )
NVIDIA 3D Vision Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Update 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Pointing Device Utility (HKLM\...\{DDC49774-40B9-47AE-9C63-5569C08C4082}) (Version: 2.0.0.0 - FUJITSU LIMITED) Hidden
Pointing Device Utility (HKLM-x32\...\InstallShield_{DDC49774-40B9-47AE-9C63-5569C08C4082}) (Version: 2.0.0.0 - FUJITSU LIMITED)
Power Button Setting (HKLM\...\{43C6E7CB-FEC0-4F0D-B164-410E8A728CF4}) (Version: 2.0.0.0 - FUJITSU LIMITED) Hidden
Power Button Setting (HKLM-x32\...\InstallShield_{43C6E7CB-FEC0-4F0D-B164-410E8A728CF4}) (Version: 2.0.0.0 - FUJITSU LIMITED)
Power Saving Utility (HKLM\...\{E50AF275-8A41-4FCF-847B-D6E60018F388}) (Version: 33.01.00.000 - FUJITSU LIMITED) Hidden
Power Saving Utility (HKLM-x32\...\InstallShield_{E50AF275-8A41-4FCF-847B-D6E60018F388}) (Version: 33.01.00.000 - FUJITSU LIMITED)
'PTC Places' Namespace Shell Extension (HKLM-x32\...\{C65ABF2A-1B82-4F34-8C74-E4FE373F3BE4}) (Version: 1.1.11 - PTC)
Python 3.2.2 (HKLM-x32\...\{4CDE3168-D060-4b7c-BC74-4D8F9BB01AFD}) (Version: 3.2.2150 - Python Software Foundation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6714 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.2.8400.30137 - Realtek Semiconductor Corp.)
Respondus LockDown Browser (HKLM-x32\...\{C0E5147E-C9F3-4360-9ED0-2E875F11766C}) (Version: 1.02.0001 - Respondus, Inc.)
Roxio Creator LJ (HKLM-x32\...\{89A15676-78AE-4D51-BF5B-DEE3E0D46C94}) (Version: 12.2.33.1 - Roxio)
Service Pack 1 for SQL Server 2008 R2 (KB2528583) (64-bit) (HKLM\...\KB2528583) (Version: 10.51.2500.0 - Microsoft Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PRJPRO_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.VISIO_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PRJPRO_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.VISIO_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PRJPRO_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.VISIO_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0409-1000-0000000FF1CE}_Office14.PRJPRO_{D4D48631-AC28-4250-B882-C956555B0B1D}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0409-1000-0000000FF1CE}_Office14.PROPLUS_{D4D48631-AC28-4250-B882-C956555B0B1D}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0409-1000-0000000FF1CE}_Office14.VISIO_{D4D48631-AC28-4250-B882-C956555B0B1D}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003B-0000-1000-0000000FF1CE}_Office14.PRJPRO_{DC528101-617D-4E9F-B131-F8F8C52E649B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PRJPRO_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.VISIO_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0409-1000-0000000FF1CE}_Office14.PRJPRO_{944EFCFD-823D-4C0A-9B01-CD76EEAEA1F3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0409-1000-0000000FF1CE}_Office14.PROPLUS_{944EFCFD-823D-4C0A-9B01-CD76EEAEA1F3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0409-1000-0000000FF1CE}_Office14.VISIO_{944EFCFD-823D-4C0A-9B01-CD76EEAEA1F3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0054-0409-1000-0000000FF1CE}_Office14.VISIO_{5ABBDD22-2902-41E4-8136-623200E34477}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0057-0000-1000-0000000FF1CE}_Office14.VISIO_{3C578F10-F74F-4655-B2A6-9F88A6C415E8}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0409-1000-0000000FF1CE}_Office14.PRJPRO_{58B1AD3E-54D7-42DC-AF42-218AA7C1ED8B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0409-1000-0000000FF1CE}_Office14.PROPLUS_{58B1AD3E-54D7-42DC-AF42-218AA7C1ED8B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0409-1000-0000000FF1CE}_Office14.VISIO_{58B1AD3E-54D7-42DC-AF42-218AA7C1ED8B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00B4-0409-1000-0000000FF1CE}_Office14.PRJPRO_{F9EE0AA3-E10B-4A81-9542-80C257FB0AD8}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0115-0409-1000-0000000FF1CE}_Office14.PRJPRO_{58B1AD3E-54D7-42DC-AF42-218AA7C1ED8B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0115-0409-1000-0000000FF1CE}_Office14.PROPLUS_{58B1AD3E-54D7-42DC-AF42-218AA7C1ED8B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0115-0409-1000-0000000FF1CE}_Office14.VISIO_{58B1AD3E-54D7-42DC-AF42-218AA7C1ED8B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0117-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C7BC6847-623D-4D8F-B87C-82215F0752BA}) (Version:  - Microsoft) Hidden
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (HKLM\...\KB2546951) (Version: 10.3.5500.0 - Microsoft Corporation)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
SQL Server 2008 R2 SP1 Common Files (HKLM\...\{234F6B0D-10AE-4BB7-B2F3-E48D4861952D}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Common Files (HKLM\...\{36F70DEE-1EBF-4707-AFA2-E035EEAEBAA1}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Services (HKLM\...\{5318020E-E32C-4A33-BC8D-EEF5CC2F6CA1}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Services (HKLM\...\{9FFAE13C-6160-4DD0-A67A-DAC5994F81BD}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Shared (HKLM\...\{A2122A9C-A699-4365-ADF8-68FEAC125D61}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Shared (HKLM\...\{C942A025-A840-4BF2-8987-849C0DD44574}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Full text search (HKLM\...\{A7E4E7DD-2099-4D58-AE31-6E0F663066DD}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM\...\{F31183CF-E10F-4DE1-BB59-6C0FF38E481E}) (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Synthesia (HKLM-x32\...\Synthesia) (Version: 9 - Synthesia LLC)
Update for CHS Microsoft IME HAP Dictionary (HKLM\...\{50822466-5571-4B7A-B3FC-A58760DDAEE9}) (Version: 16.0.1560.1 - Microsoft Corporation) Hidden
Update Navi (HKLM\...\{47BC37A3-35C8-484A-8CBD-851914EB095E}) (Version: 1.3.0019 - FUJITSU LIMITED)
Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
WCF RIA Services V1.0 SP1 (HKLM-x32\...\{D9E6001A-5DC3-4620-AF7A-80B6CD48645D}) (Version: 4.1.60114.0 - Microsoft Corporation)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2100 - Broadcom Corporation)
Windchill ProductPoint Client Manager (HKLM-x32\...\{129024FF-A6C9-4696-91BC-570C6C05193A}) (Version: 1.1.187 - PTC)
Windows Driver Package - FUJITSU LIMITED (FUJ02B1) System  (06/09/2012 1.23) (HKLM\...\7D737DCFBBA92B6A4335FA93E0B846D9D2DE908E) (Version: 06/09/2012 1.23 - FUJITSU LIMITED)
Windows Driver Package - FUJITSU LIMITED (FUJ02E3) System  (06/22/2012 1.30.0.0) (HKLM\...\3DCA6835C7741E181396F76FD94C05C19F4124A9) (Version: 06/22/2012 1.30.0.0 - FUJITSU LIMITED)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 18.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E3}) (Version: 18.5.11111 - WinZip Computing, S.L. )
Wireless Radio Switch Driver (HKLM\...\{13031CDF-00D2-4FCE-AB13-8430D8733574}) (Version: 1.0.0.0 - FUJITSU LIMITED) Hidden
Wireless Radio Switch Driver (HKLM-x32\...\InstallShield_{13031CDF-00D2-4FCE-AB13-8430D8733574}) (Version: 1.0.0.0 - FUJITSU LIMITED)
WPF Toolkit June 2009 (Version 3.5.40619.1) (HKLM-x32\...\{5EE6E987-1B79-4A93-832B-27472C7D1579}) (Version: 3.5.40619.1 - Microsoft Corporation)
 
========================= Devices: ================================
 
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Device ID: ROOT\NET\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 37%
Total physical RAM: 8052.32 MB
Available physical RAM: 5067.22 MB
Total Virtual: 9332.32 MB
Available Virtual: 5552.68 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:200.06 GB) (Free:80.87 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:496.6 GB) (Free:496.44 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\DPCS-NB1346523
 
Administrator            Guest                    Student-ID               
UpdatusUser              
 
========================= Restore Points ==================================
 
12-06-2015 11:12:21 Windows Update
24-06-2015 15:53:46 Windows Update
05-07-2015 06:05:44 Scheduled Checkpoint
 
**** End of log ****


#3 severac

severac

  • Members
  • 872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Serbia
  • Local time:05:13 AM

Posted 07 July 2015 - 04:48 AM

Hello,

 

ESET Online Scanner

§  Click here to download the installer for ESET Online Scanner and save it to your Desktop.

§  Disable all your antivirus and antimalware software - see how to do that here.

§  Right click on esetsmartinstaller_enu.exe and select Run as Administrator.

§  Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.

§  Select Enable detection of potentially unwanted applications.

§  Click Advanced Settings, then place a checkmark in the following:

o    Remove found threats

o    Scan archives

o    Scan for potentially unsafe applications

o    Enable Anti-Stealth technology

§  Click Start to begin scanning.

§  ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.

§  When the scan is done, click List threats (only available if ESET Online Scanner found something).

§  Click Export, then save the file to your desktop.

§  Click Back, then Finish to exit ESET Online Scanner.

 

 

Please download Malwarebytes Anti-Malware (MBAM) to your desktop.

 

§  Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.

§  At the end, be sure a checkmark is placed next to the following:
 

o    Launch Malwarebytes Anti-Malware

o    A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

 

§  Click Finish.

§  On the Dashboard, click the 'Update Now >>' link

§  After the update completes, on Settings tab, set under Detection and Protection next options: 

1. 'Scan for rootkits'

2. Non-Malware Protection, for 'PUP detections', check, 'Threat detections as malware' option.

§  Return to Dashboard, click the 'Scan Now >>' button.

§  A Threat Scan will begin.

§  When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.

§  In most cases, a restart will be required.

§  Wait for the prompt to restart the computer to appear, than click on Yes.

 

§  After the restart once you are back at your desktop, open MBAM once more.

§  Click on the History tab > Application Logs.

§  Double click on the Scan Log which shows the Date and time of the scan just performed.

§  Click 'Export'.

§  Click 'Copy to Clipboard'

§  Paste the contents of the clipboard into your reply.

 

 

Please download AdwCleaner by Xplode onto your desktop.

§  Close all open programs and internet browsers.

§  Double click on adwcleaner.exe to run the tool.

§  Click on Scan button.

§  When the scan has finished click on Clean button.

§  Your computer will be rebooted automatically. A text file will open after the restart.

§  Please post the contents of that logfile with your next reply.

§  You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

 

 

Please download Junkware Removal Tool to your desktop.

§  Shut down your protection software now to avoid potential conflicts.

§  Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".

§  The tool will open and start scanning your system.

§  Please be patient as this can take a while to complete depending on your system's specifications.

§  On completion, a log (JRT.txt) is saved to your desktop and will automatically open.

§  Post the contents of JRT.txt into your next message.


I would like to help you to remove malware. Let's look inside.   :busy:

But I don't know to solve all PC problems.  :smash: 

 


#4 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 08:58 AM

ESET scan

 

C:\AdwCleaner\Quarantine\C\Program Files\Common Files\ShopperPro\spbici32.dll.vir a variant of Win32/SBWatchman.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\ShopperPro\spbici64.dll.vir a variant of Win64/SBWatchman.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\ShopperPro\spbii32.exe.vir a variant of Win32/SBWatchman.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\ShopperPro\spbii64.exe.vir a variant of MSIL/SBWatchman.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\ShopperPro\spbiu.exe.vir a variant of Win64/SBWatchman.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\ShopperPro\spbiw.sys.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\PCDApp\dmon.exe.vir Win32/CoinMiner.SI trojan
C:\AdwCleaner\Quarantine\C\Program Files\PCDApp\StartHelp.exe.vir NSIS/CoinMiner.B trojan
C:\AdwCleaner\Quarantine\C\Program Files (x86)\50CouponS\50CouponS.exe.vir Win32/Adware.MultiPlug.KG application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Adblocker\JVUP6Sw.x64.dll.vir a variant of Win64/Adware.MultiPlug.A application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\DeallEExpereSs\MTw9JoMAe6YmVq.exe.vir Win32/Adware.MultiPlug.KG application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe.vir Win32/AlteredSoftware.C potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe.vir Win32/AlteredSoftware.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe.vir Win32/AlteredSoftware.C potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe.vir a variant of Win32/AlteredSoftware.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe.vir a variant of Win32/AlteredSoftware.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir a variant of Win32/AlteredSoftware.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir a variant of Win32/AlteredSoftware.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll.vir a variant of Win32/AlteredSoftware.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir a variant of Win32/AlteredSoftware.G potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir a variant of Win32/AlteredSoftware.G potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\804bcd8c-4026-4b03-90c4-5f307c078a4e-11.exe.vir a variant of Win32/Toolbar.CrossRider.AK potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\804bcd8c-4026-4b03-90c4-5f307c078a4e-4.exe.vir a variant of Win32/Toolbar.CrossRider.AK potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\804bcd8c-4026-4b03-90c4-5f307c078a4e-5.exe.vir a variant of Win32/Toolbar.CrossRider.AH potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-bg.exe.vir a variant of Win32/Toolbar.CrossRider.AL potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-bho.dll.vir a variant of Win32/Toolbar.CrossRider.AF potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-bho64.dll.vir a variant of Win64/Toolbar.Crossrider.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-buttonutil.dll.vir a variant of Win32/Toolbar.CrossRider.BD potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-buttonutil.exe.vir a variant of Win32/Toolbar.CrossRider.AA potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-buttonutil64.dll.vir a variant of Win64/Toolbar.Crossrider.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-buttonutil64.exe.vir a variant of Win64/Toolbar.Crossrider.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-codedownloader.exe.vir a variant of Win32/Toolbar.CrossRider.AJ potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-nova.dll.vir a variant of Win32/Toolbar.CrossRider.AI potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-nova.exe.vir a variant of Win32/Toolbar.CrossRider.AE potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-novainstaller.exe.vir a variant of Win32/Toolbar.CrossRider.AJ potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\Uninstall.exe.vir a variant of Win32/Toolbar.CrossRider.AW potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\utils.exe.vir Win32/Packed.VMDetector.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LiveSupport\LiveSupport.exe.vir Win32/LiveSupport.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LiveSupport\LiveSupport_deskband_x32.dll.vir Win32/LiveSupport.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LiveSupport\LiveSupport_deskband_x64.dll.vir Win64/LiveSupport.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptimizerPro.exe.vir Win32/SpeedingUpMyPC.O application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProCrash.dll.vir a variant of Win32/SProtector.L potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProGuard.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AD application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProLauncher.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AC application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProReminder.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AE application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSchedule.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AG application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AG application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProStart.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AG application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProUninstaller.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AL application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PC_booster\Assistant.dll.vir a variant of Win32/SProtector.L potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PC_booster\AssistantSvc.dll.vir a variant of Win32/SProtector.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PC_booster\Assistant_x64.dll.vir a variant of Win64/SProtector.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PriceiChoop\ACCrxfm.x64.dll.vir a variant of Win64/Adware.MultiPlug.A application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir a variant of Win32/Conduit.SearchProtect.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir a variant of Win32/Conduit.SearchProtect.Y potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\1ca68c36-b043-44a3-9250-9a4f9e96746d-11.exe.vir a variant of Win32/Toolbar.CrossRider.AK potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\1ca68c36-b043-44a3-9250-9a4f9e96746d-4.exe.vir a variant of Win32/Toolbar.CrossRider.AK potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\1ca68c36-b043-44a3-9250-9a4f9e96746d-5.exe.vir a variant of Win32/Toolbar.CrossRider.AH potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-bg.exe.vir a variant of Win32/Toolbar.CrossRider.BT potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-bho.dll.vir a variant of Win32/Toolbar.CrossRider.AF potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-bho64.dll.vir a variant of Win64/Toolbar.Crossrider.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-buttonutil.dll.vir a variant of Win32/Toolbar.CrossRider.BD potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-buttonutil.exe.vir a variant of Win32/Toolbar.CrossRider.AA potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-buttonutil64.dll.vir a variant of Win64/Toolbar.Crossrider.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-buttonutil64.exe.vir a variant of Win64/Toolbar.Crossrider.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-codedownloader.exe.vir a variant of Win32/Toolbar.CrossRider.AJ potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-nova.dll.vir a variant of Win32/Toolbar.CrossRider.AI potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-nova.exe.vir a variant of Win32/Toolbar.CrossRider.AE potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-novainstaller.exe.vir a variant of Win32/Toolbar.CrossRider.AJ potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Uninstall.exe.vir a variant of Win32/Toolbar.CrossRider.AW potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\utils.exe.vir Win32/Packed.VMDetector.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\database1_0_0.json.vir JS/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\manifest.json.vir JS/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\ShopperPro.dll.vir a variant of Win32/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\ShopperPro64.dll.vir a variant of Win64/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\SPRemove.exe.vir a variant of Win32/SBWatchman.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\Updater.exe.vir a variant of Win32/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\FireFox\content\overlay.js.vir JS/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\JSDriver\jsdrv.exe.vir Win32/ShopperPro.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\JSDriver\jsdrv.sys.vir Win64/ShopperPro.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\JSDriver\1.37.0.193\database1_0_0.json.vir JS/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\JSDriver\1.37.0.193\jsdrv.exe.vir Win32/ShopperPro.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\JSDriver\1.37.0.193\jsdrv.sys.vir Win64/ShopperPro.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir Win32/Thinknice.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface64.dll.vir Win64/Thinknice.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\RSHP.exe.vir Win32/ELEX.AR potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect32.dll.vir Win32/Thinknice.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect64.dll.vir Win64/Thinknice.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SpAPPSv32.dll.vir Win32/Thinknice.C potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SpAPPSv64.dll.vir Win64/Thinknice.C potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir Win32/Thinknice.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\sw-booster\Assistant.dll.vir a variant of Win32/SProtector.L potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\sw-booster\AssistantSvc.dll.vir a variant of Win32/SProtector.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\sw-booster\Assistant_x64.dll.vir a variant of Win64/SProtector.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TakeThaeCoupon\QU8pW26giaXMnr.exe.vir Win32/Adware.MultiPlug.KG application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TerminusDefender\TerminusDefender.dll.vir a variant of Win32/SProtector.P potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\engine.dll.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\helper.dll.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\ipc.dll.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\lspinst.exe.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\lspinst2.exe.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\Res.dll.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\testlsp.exe.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\unelevate.exe.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\Updater.exe.vir a variant of Win32/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\xmldb.dll.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\YTAHUninstall.exe.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\ytalsp.dll.vir a variant of Win32/SBWatchman.D potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YouTube Accelerator\YTAUninstall.exe.vir a variant of Win32/SBWatchman.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\ProgramData\Adblocker\DGOirjUF.exe.vir a variant of Win32/AdWare.MultiPlug.AG application
C:\AdwCleaner\Quarantine\C\ProgramData\GoSaave\RFmoGDALH95LM9r.exe.vir a variant of Win32/AdWare.MultiPlug.CO application
C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir a variant of Win32/ELEX.AV potentially unwanted application
C:\AdwCleaner\Quarantine\C\ProgramData\PriceiChoop\s87Q2gHo.exe.vir a variant of Win32/AdWare.MultiPlug.AG application
C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\database1_0_0.json.vir JS/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro.dll.vir a variant of Win32/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro64.dll.vir a variant of Win64/ShopperPro.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\ProgramData\ShowAppIt\SW-Booster\SW-Booster.exe.vir Win32/TrojanDownloader.Agent.ACF trojan
C:\AdwCleaner\Quarantine\C\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.vir a variant of Win32/ELEX.BH potentially unwanted application
C:\AdwCleaner\Quarantine\C\ProgramData\YoutubeAdBlOcke\yFGs8jZ7VgBCNvD.exe.vir a variant of Win32/AdWare.MultiPlug.CO application
C:\AdwCleaner\Quarantine\C\ProgramData\{ef061715-39e6-55ec-ef06-6171539e5c54}\SHINHWA -  Sniper.exe.vir a variant of Win32/Adware.MultiPlug.IE application
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\torch\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\torch\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\torch\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Guest\AppData\Local\torch\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\torch\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\torch\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Chromatic Browser\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Google\Chrome\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\Temp\OptimizerPro.exe.vir a variant of Win32/AdWare.SpeedingUpMyPC.N application
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\torch\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Local\torch\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Roaming\Mozilla\Firefox\Profiles\yp88erex.default\Extensions\e4@7l.edu\content\bg.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Roaming\Mozilla\Firefox\Profiles\yp88erex.default\Extensions\eYia@bf.edu\content\bg.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\Student-ID\AppData\Roaming\omiga-plus\UninstallManager.exe.vir a variant of Win32/ELEX.CP potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\content.js.vir JS/Chromex.Agent.L trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\torch\User Data\Default\Extensions\gidhmehemcihdiblbmcpjjomhpdcngom\2.0\NTJCzqGZ.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\torch\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\102\Eut.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\Users\UpdatusUser\AppData\Local\torch\User Data\Default\Extensions\poibmjhiemhejghchjilohodedkmapmj\3.9\LZ_uPtPwwtvr.js.vir JS/Kryptik.ATB trojan
C:\AdwCleaner\Quarantine\C\WINDOWS\System32\drivers\{31a2f244-4a67-4367-b593-df9513aea360}Gw64.sys.vir a variant of Win64/BrowseFox.AJ potentially unwanted application
C:\AdwCleaner\Quarantine\C\WINDOWS\System32\drivers\{5906ab0f-5417-45a6-a4f5-8bc38ae936d5}Gw64.sys.vir a variant of Win64/BrowseFox.AM potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSS.exe a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSHelper.dll a variant of Win32/Systweak.N potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSPrivacyProtector.exe a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe a variant of Win32/Systweak potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegistryOptimizer.exe a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSSystemCleaner.exe a variant of Win32/Systweak.L potentially unwanted application

 



#5 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 10:06 AM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/7/2015
Scan Time: 9:58 PM
Logfile: 
Administrator: Yes
 
Version: 2.1.8.1057
Malware Database: v2015.07.07.03
Rootkit Database: v2015.07.05.03
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Student-ID
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 497623
Time Elapsed: 1 hr, 1 min, 33 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 26
PUP.Optional.ModGoog, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [ed02e2fcd2b8cc6aed4f301e847e3cc4], 
PUP.Optional.ModGoog, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [ed02e2fcd2b8cc6aed4f301e847e3cc4], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{385531FC-353F-437C-8648-6DA617DDEE4D}, Quarantined, [8669d509c2c891a5791b7325768fe31d], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{57066102-572B-449D-93C0-F6043F13F216}, Quarantined, [12ddba24494166d0c3d0d4c47d8855ab], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5D727941-E9D8-4896-86B2-4307FDEE4C54}, Quarantined, [628dd905bfcbbd79751d90087491bd43], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65E5DFC8-405D-41E6-AF6D-0393EBE0B73D}, Quarantined, [68873ca22c5eaa8ce1b3ff9963a2867a], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{74C3B816-F48C-4426-999F-A2DB16C742B1}, Quarantined, [9659b62894f6c96d1c77d6c2db2aef11], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FB202317-D371-476F-AD0C-849F24B5AD87}, Quarantined, [905febf30c7eec4aeba79602c83d2ad6], 
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, Quarantined, [707f538bfc8e241295dfd5c630d5b24e], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{385531FC-353F-437C-8648-6DA617DDEE4D}, Quarantined, [f1fe4d9166240630860e71277a8b758b], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{57066102-572B-449D-93C0-F6043F13F216}, Quarantined, [648b8e502565979f652eaaeef31211ef], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5D727941-E9D8-4896-86B2-4307FDEE4C54}, Quarantined, [24cb4b93305a072f2d65247428dd41bf], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65E5DFC8-405D-41E6-AF6D-0393EBE0B73D}, Quarantined, [c52af1ed810962d4c6cec8d0e81d0cf4], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{74C3B816-F48C-4426-999F-A2DB16C742B1}, Quarantined, [4da206d88604ec4a5c37c6d28382758b], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FB202317-D371-476F-AD0C-849F24B5AD87}, Quarantined, [4fa0d806b4d60f270d85049422e36898], 
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, Quarantined, [9f50af2f3a50162086ee65369d68ee12], 
PUP.Optional.SuperOptimizer.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, Quarantined, [d01fdd01bfcb290d9ccfa2fbbd488e72], 
PUP.Optional.iWebar.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, Quarantined, [31be6c7274166fc79a43de302bd9b34d], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{19A6C086-F634-42C8-963A-5E48B6DB4281}, Quarantined, [ba35ae30e2a8f93dc2cf9ff9d03558a8], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{385531FC-353F-437C-8648-6DA617DDEE4D}, Quarantined, [b33ca13d0387f541375af7a11aeb0ef2], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{57066102-572B-449D-93C0-F6043F13F216}, Quarantined, [0be4ffdfdcae171f137df2a6d82d2bd5], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5D727941-E9D8-4896-86B2-4307FDEE4C54}, Quarantined, [c52ab5295d2d78be46496236669fcd33], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65E5DFC8-405D-41E6-AF6D-0393EBE0B73D}, Quarantined, [4fa001ddb9d10432c2cf6137ec1959a7], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{74C3B816-F48C-4426-999F-A2DB16C742B1}, Quarantined, [856af7e72d5de6500888c4d4f015d12f], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E33E8F1F-7B1E-4B1E-96A1-C8A334F2B0DC}, Quarantined, [e40b14ca9af038fe266b75231ce905fb], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FB202317-D371-476F-AD0C-849F24B5AD87}, Quarantined, [c42b9a44a2e8ec4a008f940461a40bf5], 
 
Registry Values: 22
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{385531fc-353f-437c-8648-6da617ddee4d}|AppName, Sense-codedownloader.exe, Quarantined, [8669d509c2c891a5791b7325768fe31d]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{57066102-572b-449d-93c0-f6043f13f216}|AppName, iWebar-buttonutil.exe, Quarantined, [12ddba24494166d0c3d0d4c47d8855ab]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5d727941-e9d8-4896-86b2-4307fdee4c54}|AppName, iWebar-bg.exe, Quarantined, [628dd905bfcbbd79751d90087491bd43]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65e5dfc8-405d-41e6-af6d-0393ebe0b73d}|AppName, iWebar-codedownloader.exe, Quarantined, [68873ca22c5eaa8ce1b3ff9963a2867a]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{74c3b816-f48c-4426-999f-a2db16c742b1}|AppName, Sense-buttonutil.exe, Quarantined, [9659b62894f6c96d1c77d6c2db2aef11]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{fb202317-d371-476f-ad0c-849f24b5ad87}|AppName, Sense-bg.exe, Quarantined, [905febf30c7eec4aeba79602c83d2ad6]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, Quarantined, [707f538bfc8e241295dfd5c630d5b24e]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{385531fc-353f-437c-8648-6da617ddee4d}|AppName, Sense-codedownloader.exe, Quarantined, [f1fe4d9166240630860e71277a8b758b]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{57066102-572b-449d-93c0-f6043f13f216}|AppName, iWebar-buttonutil.exe, Quarantined, [648b8e502565979f652eaaeef31211ef]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5d727941-e9d8-4896-86b2-4307fdee4c54}|AppName, iWebar-bg.exe, Quarantined, [24cb4b93305a072f2d65247428dd41bf]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65e5dfc8-405d-41e6-af6d-0393ebe0b73d}|AppName, iWebar-codedownloader.exe, Quarantined, [c52af1ed810962d4c6cec8d0e81d0cf4]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{74c3b816-f48c-4426-999f-a2db16c742b1}|AppName, Sense-buttonutil.exe, Quarantined, [4da206d88604ec4a5c37c6d28382758b]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{fb202317-d371-476f-ad0c-849f24b5ad87}|AppName, Sense-bg.exe, Quarantined, [4fa0d806b4d60f270d85049422e36898]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, Quarantined, [9f50af2f3a50162086ee65369d68ee12]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{19A6C086-F634-42C8-963A-5E48B6DB4281}|AppName, 1ca68c36-b043-44a3-9250-9a4f9e96746d-2.exe-codedownloader.exe, Quarantined, [ba35ae30e2a8f93dc2cf9ff9d03558a8]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{385531fc-353f-437c-8648-6da617ddee4d}|AppName, Sense-codedownloader.exe, Quarantined, [b33ca13d0387f541375af7a11aeb0ef2]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{57066102-572b-449d-93c0-f6043f13f216}|AppName, iWebar-buttonutil.exe, Quarantined, [0be4ffdfdcae171f137df2a6d82d2bd5]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5d727941-e9d8-4896-86b2-4307fdee4c54}|AppName, iWebar-bg.exe, Quarantined, [c52ab5295d2d78be46496236669fcd33]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65e5dfc8-405d-41e6-af6d-0393ebe0b73d}|AppName, iWebar-codedownloader.exe, Quarantined, [4fa001ddb9d10432c2cf6137ec1959a7]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{74c3b816-f48c-4426-999f-a2db16c742b1}|AppName, Sense-buttonutil.exe, Quarantined, [856af7e72d5de6500888c4d4f015d12f]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E33E8F1F-7B1E-4B1E-96A1-C8A334F2B0DC}|AppName, 804bcd8c-4026-4b03-90c4-5f307c078a4e-2.exe-codedownloader.exe, Quarantined, [e40b14ca9af038fe266b75231ce905fb]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3064101294-2711363703-2697384946-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{fb202317-d371-476f-ad0c-849f24b5ad87}|AppName, Sense-bg.exe, Quarantined, [c42b9a44a2e8ec4a008f940461a40bf5]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 4
PUP.Optional.Extutil.A, C:\Users\Student-ID\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B, Quarantined, [678826b86c1e8da9062f1ac407fc8b75], 
PUP.Optional.Managera.A, C:\Users\Student-ID\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42, Quarantined, [886712cc2b5f8ea83afcfde139ca8a76], 
PUP.Optional.GlobalUpdate.A, C:\Users\Student-ID\AppData\Local\Temp\comh.305422, Quarantined, [638c617ddab020162b506e7118eb7a86], 
PUP.Optional.GlobalUpdate.A, C:\Users\Student-ID\AppData\Local\Temp\comh.87192, Quarantined, [ca256b734a40092d4239419e6f946997], 
 
Files: 51
PUP.Optional.Booster.A, C:\ProgramData\StunningSoftware\PC_Booster\PC_Booster.exe, Quarantined, [737cd20c69211521901b1f2c44bf21df], 
PUP.Optional.MyPCBackup.A, C:\Users\Student-ID\AppData\Local\Temp\CloudBackup2280.exe, Quarantined, [b837f5e96b1f91a5a42642baac557987], 
PUP.Optional.MultiPlug, C:\Users\Student-ID\AppData\Local\Temp\UNT60CD.tmp.exe, Quarantined, [36b9e9f57e0cc27490ab2aa703fe4bb5], 
PUP.Optional.SearchProtect.A, C:\Users\Student-ID\AppData\Local\Temp\UNT60CF.tmp.exe, Quarantined, [0fe0b22c96f4d561e672af0b5ba6f709], 
Adware.EoRezo, C:\Users\Student-ID\AppData\Local\Temp\UNT60D0.tmp.exe, Quarantined, [8f608c5243472214ec3f541ec43e38c8], 
PUP.Optional.InstallRex, C:\Users\Student-ID\AppData\Local\Temp\sSetup-se.exe, Quarantined, [ef00b32b31591c1a3327c5567294b44c], 
PUP.Optional.BrowseFox, C:\Users\Student-ID\AppData\Local\Temp\UNT60CC.tmp.exe, Quarantined, [fcf3409ef694181ee6740c58d92932ce], 
PUP.Optional.Conduit.A, C:\Users\Student-ID\AppData\Local\Temp\nsp8632.exe, Quarantined, [46a9e8f6ff8b1521531abb00877a02fe], 
PUP.Optional.Conduit.A, C:\Users\Student-ID\AppData\Local\Temp\nsr7E13.exe, Quarantined, [7679eef0f397231314596d4ec1405ea2], 
PUP.Optional.SearchProtect.A, C:\Users\Student-ID\AppData\Local\Temp\nsr9852.tmp, Quarantined, [1dd25688e1a97db9d581fcc943be40c0], 
PUP.Optional.LiveSupport, C:\Users\Student-ID\AppData\Local\Temp\LiveSupport_setup.exe, Quarantined, [737c8f4f197166d06932c91c9968db25], 
Riskware.Crypter, C:\Users\Student-ID\AppData\Local\Temp\crpt.exe, Quarantined, [9a551fbfd0ba0d29aa4385e8699a7e82], 
Riskware.BitcoinMiner, C:\Users\Student-ID\AppData\Local\Temp\dgen.exe, Quarantined, [787796482e5c77bff7e9d3a8e41db44c], 
PUP.Optional.Trolotunt.A, C:\Users\Student-ID\AppData\Local\Temp\trolatuntSetup.exe, Quarantined, [b639e7f7454506306e935cba7f870af6], 
PUP.Optional.Conduit.A, C:\Users\Student-ID\AppData\Local\Temp\nsh18DD.exe, Quarantined, [f6f9a23c2862a88e323b3d7e54adb64a], 
PUP.Optional.Conduit.A, C:\Users\Student-ID\AppData\Local\Temp\nsl2206.exe, Quarantined, [5f90b02e4b3f43f370fdead149b8a957], 
PUP.Optional.Amonetize.A, C:\Users\Student-ID\AppData\Local\Temp\setup__6869.exe, Quarantined, [7976eaf43d4dc96dadab2b35669c8c74], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\GoogleCrashHandler.exe, Quarantined, [20cfda04dcae73c382ba7fcf748e728e], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\GoogleUpdate.exe, Quarantined, [ed02e2fcd2b8cc6aed4f301e847e3cc4], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\GoogleUpdateBroker.exe, Quarantined, [2bc425b94248fc3a0438f757877be020], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\GoogleUpdateOnDemand.exe, Quarantined, [9758a5397d0dec4a8fad72dc1de5dc24], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\goopdate.dll, Quarantined, [25ca9c42e5a52b0b2715193559a919e7], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\goopdateres_en.dll, Quarantined, [e50acb13345666d0fc40272706fc21df], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\npGoogleUpdate4.dll, Quarantined, [856ae7f75337f541bc80143afa0860a0], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\psmachine.dll, Quarantined, [bc3304da22686ec8fb41e16d52b0db25], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\psuser.dll, Quarantined, [01eec915464479bd8fad50fe986afa06], 
PUP.Optional.CrossRider, C:\Users\Student-ID\AppData\Local\Temp\Install_29685\iwebar.exe, Quarantined, [767916c8b6d4eb4b64467d5704fdda26], 
PUP.Optional.CrossRider, C:\Users\Student-ID\AppData\Local\Temp\Install_29685\sense.exe, Quarantined, [5897845aa0ea77bf3278ffd5f8099e62], 
PUP.Optional.Goobzo, C:\Users\Student-ID\AppData\Local\Temp\Install_29685\yta.exe, Quarantined, [da15637ba4e61f17764f85e01de32cd4], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\GoogleCrashHandler.exe, Quarantined, [f0ffe8f6d0ba6bcbcb71133bc240bc44], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\GoogleUpdate.exe, Quarantined, [d11ed7078901fe3828143c12c939fa06], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\GoogleUpdateBroker.exe, Quarantined, [747b9846b2d8a195da62a5a9679b40c0], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\GoogleUpdateOnDemand.exe, Quarantined, [c926af2fd1b94de91d1f8ac447bb1ce4], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\goopdate.dll, Quarantined, [6c83c31b4842be78f646044afb07a957], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\goopdateres_en.dll, Quarantined, [747bd10dd2b860d650ece66862a0e21e], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\npGoogleUpdate4.dll, Quarantined, [fdf2d00e2d5d37ffa993aca21de5a759], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\psmachine.dll, Quarantined, [648b0ad42e5c84b2fc40212d867cb947], 
PUP.Optional.ModGoog, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\psuser.dll, Quarantined, [c02f02dcc7c396a00d2fa4aa7191cd33], 
PUP.Optional.Preload, C:\Users\Student-ID\AppData\Local\Temp\60319809\343W23WdqRgF.exe, Quarantined, [a7489f3f22686cca44f614b821e0dc24], 
PUP.Optional.Preload, C:\Users\Student-ID\AppData\Local\Temp\60319809\GiBPyx8m76s.exe, Quarantined, [9f5031ad7515053179c5418b09f8f30d], 
PUP.Optional.MultiPlug, C:\Users\Student-ID\AppData\Local\Temp\60319809\J8An5k46otVw47Z.exe, Quarantined, [d31c5787820812248fae0fbd4db405fb], 
PUP.Optional.APNToolBar.A, C:\Users\Student-ID\Documents\APNSetup1.exe, Quarantined, [c42b2bb30b7f51e532d3abbb669c0af6], 
PUP.Optional.Amonetize, C:\Users\Student-ID\AppData\Local\21107\a7390.exe, Quarantined, [559a25b9f991c76f6d51319ea25f03fd], 
PUP.Optional.AppDataFR.A, C:\Users\Student-ID\AppData\Roaming\appdataFr25.bin, Quarantined, [9956a03ebeccd56106248877b84b32ce], 
PUP.Optional.Extutil.A, C:\Users\Student-ID\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, Quarantined, [678826b86c1e8da9062f1ac407fc8b75], 
PUP.Optional.Extutil.A, C:\Users\Student-ID\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, Quarantined, [678826b86c1e8da9062f1ac407fc8b75], 
PUP.Optional.Extutil.A, C:\Users\Student-ID\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, Quarantined, [678826b86c1e8da9062f1ac407fc8b75], 
PUP.Optional.Managera.A, C:\Users\Student-ID\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, Quarantined, [886712cc2b5f8ea83afcfde139ca8a76], 
PUP.Optional.Managera.A, C:\Users\Student-ID\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, Quarantined, [886712cc2b5f8ea83afcfde139ca8a76], 
PUP.Optional.GlobalUpdate.A, C:\Users\Student-ID\AppData\Local\Temp\comh.305422\GoogleUpdateHelper.msi, Quarantined, [638c617ddab020162b506e7118eb7a86], 
PUP.Optional.GlobalUpdate.A, C:\Users\Student-ID\AppData\Local\Temp\comh.87192\GoogleUpdateHelper.msi, Quarantined, [ca256b734a40092d4239419e6f946997], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#6 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 10:15 AM

# AdwCleaner v4.207 - Logfile created 07/07/2015 at 23:12:16
# Updated 21/06/2015 by Xplode
# Database : 2015-07-05.2 [Server]
# Operating system : Windows 8.1  (x64)
# Username : Student-ID - DPCS-NB1346523
# Running from : C:\Users\Student-ID\Desktop\Ultimate User Manual\adwcleaner_4.207.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\Class\{0014298C-A9BA-440D-AAA8-AD12C7010EE5}
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\Class\{181A06EA-B82C-47DE-B851-E20FD0E1CC7D}
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17840
 
 
-\\ Mozilla Firefox v38.0.5 (x86 en-US)
 
 
-\\ Google Chrome v43.0.2357.130
 
 
-\\ Comodo Dragon v
 
 
-\\ Chrome Canary v
 
 
*************************
 
AdwCleaner[R0].txt - [23221 bytes] - [09/07/2014 20:19:29]
AdwCleaner[R1].txt - [24157 bytes] - [13/10/2014 13:11:58]
AdwCleaner[R2].txt - [8684 bytes] - [19/05/2015 11:21:34]
AdwCleaner[R3].txt - [9903 bytes] - [21/06/2015 12:09:55]
AdwCleaner[R4].txt - [9962 bytes] - [21/06/2015 12:12:30]
AdwCleaner[R5].txt - [1588 bytes] - [21/06/2015 17:45:03]
AdwCleaner[R6].txt - [1667 bytes] - [27/06/2015 12:27:06]
AdwCleaner[R7].txt - [2075 bytes] - [07/07/2015 23:07:45]
AdwCleaner[S0].txt - [18700 bytes] - [09/07/2014 20:20:32]
AdwCleaner[S1].txt - [24213 bytes] - [13/10/2014 13:15:26]
AdwCleaner[S2].txt - [8798 bytes] - [19/05/2015 11:24:36]
AdwCleaner[S3].txt - [5444 bytes] - [21/06/2015 12:14:15]
AdwCleaner[S4].txt - [1737 bytes] - [27/06/2015 12:29:00]
AdwCleaner[S5].txt - [2006 bytes] - [07/07/2015 23:12:16]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [2065  bytes] ##########


#7 severac

severac

  • Members
  • 872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Serbia
  • Local time:05:13 AM

Posted 07 July 2015 - 10:30 AM

Waiting for JRT log, and to tell me do you still have problems?


I would like to help you to remove malware. Let's look inside.   :busy:

But I don't know to solve all PC problems.  :smash: 

 


#8 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 10:39 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.3.5 (07.07.2015:2)
OS: Windows 8.1 x64
Ran by Student-ID on Tue 07/07/2015 at 23:28:01.76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Tasks
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\Users\Student-ID\AppData\Roaming\appdataFr25.bin
Successfully deleted: [File] C:\Users\Student-ID\appdata\local\google\chrome\user data\default\local storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage
Successfully deleted: [File] C:\Users\Student-ID\appdata\local\google\chrome\user data\default\local storage\hxxp_www.lyricsfreak.com_0.localstorage
Successfully deleted: [File] C:\Users\Student-ID\appdata\local\google\chrome\user data\default\local storage\hxxp_www.lyricsfreak.com_0.localstorage-journal
Successfully deleted: [File] C:\Users\Student-ID\appdata\local\google\chrome\user data\default\local storage\hxxp_www.metrolyrics.com_0.localstorage
Successfully deleted: [File] C:\Users\Student-ID\appdata\local\google\chrome\user data\default\local storage\hxxp_www.metrolyrics.com_0.localstorage-journal
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] C:\Users\Student-ID\appdata\local\crashrpt
Successfully deleted: [Folder] C:\Users\Student-ID\AppData\Roaming\getrighttogo
Successfully deleted: [Folder] C:\WINDOWS\syswow64\amd64
Successfully deleted: [Folder] C:\WINDOWS\syswow64\x86
Successfully deleted: [Folder] C:\Users\Student-ID\appdata\local\21107
 
 
 
~~~ FireFox
 
Successfully deleted the following from C:\Users\Student-ID\AppData\Roaming\mozilla\firefox\profiles\yp88erex.default\prefs.js
 
user_pref(extensions.35HJBN3K6WDyfbVQ.scode, (function(){try{if(window.location.href.indexOf(\rjaHqHgHrjC8qTaErdr4rTaFrjk\)>-1){return;}}catch(e){}try{var d=[[\www.virac
Emptied folder: C:\Users\Student-ID\AppData\Roaming\mozilla\firefox\profiles\yp88erex.default\minidumps [7 files]
 
 
 
~~~ Chrome
 
 
[C:\Users\Student-ID\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
 
[C:\Users\Student-ID\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
 
[C:\Users\Student-ID\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
 
[C:\Users\Student-ID\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 07/07/2015 at 23:33:52.36
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#9 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 10:40 AM

The nomoreads extension keeps popping up under extensions in the setting page of my chrome and i still have the ads by nomoreads:(


Edited by Icetou, 07 July 2015 - 10:42 AM.


#10 severac

severac

  • Members
  • 872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Serbia
  • Local time:05:13 AM

Posted 07 July 2015 - 11:04 AM

Let's try to Reset Chrome.

 

Click on "Customize and control Google Chrome":
p22003758.gif
Click "Settings" then "Show advanced settings" at the bottom of the screen.
Click "Reset browser settings" button.
Restart Chrome.

 

Did that help?
 


Edited by severac, 07 July 2015 - 11:05 AM.

I would like to help you to remove malware. Let's look inside.   :busy:

But I don't know to solve all PC problems.  :smash: 

 


#11 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 07 July 2015 - 08:35 PM

Done. The ads are gone ! 

 

Thank you very much  :bananas:  :bananas:



#12 severac

severac

  • Members
  • 872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Serbia
  • Local time:05:13 AM

Posted 08 July 2015 - 12:34 AM

:bowdown:  Great.

 

Empty your temp folders using TFC (Temporary File Cleaner)

§  Please download TFC by Old Timer and save it to your desktop.
alternate download link

§  Save any unsaved work. (TFC will close ALL open programs including your browser!)

§  Double-click on TFC.exe to run it. (If you are using Vista or above, right-click on the file and choose "Run As Administrator".)

§  Click the Start button to begin the cleaning process and let it run uninterrupted to completion.

§  Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

 

-------

This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download  DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:

§  Activate UAC (optional; some users prefer to keep it off)

§  Remove disinfection tools

§  Create registry backup

§  Purge System Restore

§  Reset system settings
Now click "Run" and wait patiently.
Once finished, a logfile will be created. You don't have to attach it to your next reply.


I would like to help you to remove malware. Let's look inside.   :busy:

But I don't know to solve all PC problems.  :smash: 

 


#13 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 08 July 2015 - 07:00 AM

Thank you!!



#14 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:13 AM

Posted 08 July 2015 - 07:44 AM

SecurityCheck log showed that your Java is outdated... you will want to either update or remove that - otherwise you will get infected again soon real quick.

Also did you disable Windows Update? I do not recommend doing so unless you know what you are doing.

#15 Icetou

Icetou
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 08 July 2015 - 07:52 AM

I got Java 8 update 45 installed now. As for the windows update, I'm not sure if i did disable it or not. 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users