Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I clicked on a link from Skype


  • Please log in to reply
8 replies to this topic

#1 FadeToDark

FadeToDark

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Carolina
  • Local time:06:38 AM

Posted 30 December 2015 - 04:28 PM

Hello all,

 

I opened Skype up today and had a message from my ex with a link, I (like a fool) clicked on the link. It took me to some "Lose weight fast" website and I knew I was doomed. I am afraid I have a virus so I started up Malwarebytes. It is currently scanning with 4 detected objects. I came across this website because I googled the meaning of the objects it found. "PUP.Optional.PCKeeper Key HKLM\SOFTWARE\CLASSES\APPID\{4FBBF769-E..." two of the others are similar, they are PUP.Optional.PCKeeper. The fourth one is PUP.Optional.Yontoo.

 

I am hoping for any help resolving this and figuring out how to make my pc run smoother.

 

Thanks in advanced!!!



BC AdBot (Login to Remove)

 


#2 Jo*

Jo*

  • Malware Response Team
  • 3,429 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:38 PM

Posted 30 December 2015 - 04:53 PM

:welcome:

Hi there,

my name is Jo and I will help you with your computer problems.


Please follow these guidelines:
  • Read and follow the instructions in the sequence they are posted.
  • print or copy & save instructions.
  • back up all your private data / music / important files on another (external) drive before using our tools.
  • Do not install / uninstall any applications, unless otherwise instructed.
  • Use only that tools you have been instructed to use.
  • Copy and Paste the log files inside your post, unless otherwise instructed.
  • Ask for clarification, if you have any questions.
  • Stay with this topic til you get the all clean post.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

***


:step1: Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
    Vista / Windows 7/8 users right-click and select Run As Administrator.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

***


:step2: Please download Malwarebytes Anti-Rootkit and save it to your desktop.
  • Be sure to print out and follow the instructions provided on that same page.
  • Caution: This is a beta version so please be sure to read the disclaimer and back up all your data before using.
  • Scan your system for malware
With some infections, you may see two messages boxes.
  • 'Could not load protection driver'. Click 'OK'.
  • 'Could not load DDA driver'. Click 'Yes' to this message, to allow the driver to load after a restart. Allow the computer to restart. Continue with the rest of these instructions.
  • If malware is found - do not press the Clean up button, please go to the MBAR folder and then copy/paste the contents of the MBAR-log-***.txt file to your next reply.
  • If there is no malware found, please let me know as well.

***


:step3: Please download AdwCleaner by Xplode and save to your Desktop.
Double-click AdwCleaner.exe
Vista / Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
    The actual line should say "Pending. Please uncheck elements you do not want to remove" => scan is complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it.
    If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

***


:step4: MiniToolbox by Farbar

Disable your antivirus if it does not allow you to download the tool!
Please download MiniToolBox, save it to your desktop and run it.
Place a checkmark in Select all, then click Go and post the result (MTB.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#3 FadeToDark

FadeToDark
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Carolina
  • Local time:06:38 AM

Posted 30 December 2015 - 07:57 PM

Security Check results:

 

Results of screen317's Security Check version 1.009  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
Norton 360    
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Java™ 6 Update 20  
 Java™ 6 Update 22  
 Java 8 Update 40  
 Java version 32-bit out of Date! 
 Adobe Flash Player 20.0.0.267  
 Adobe Reader 9 Adobe Reader out of Date! 
 Mozilla Firefox 15.0.1 Firefox out of Date!  
 Google Chrome (47.0.2526.106) 
 Google Chrome (47.0.2526.73) 
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 4% 
````````````````````End of Log`````````````````````` 
 
 
Malwarebytes Anti-Rootkit:
Nothing found
 
AdwCleaner:
 

# AdwCleaner v5.027 - Logfile created 30/12/2015 at 19:37:11
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Owner - PC-OWNER
# Running from : C:\Users\Owner\Downloads\AdwCleaner.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
[-] Folder Deleted : C:\Program Files (x86)\Conduit
[-] Folder Deleted : C:\Program Files (x86)\Coupons
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons
[-] Folder Deleted : C:\Users\Owner\AppData\LocalLow\Conduit
 
***** [ Files ] *****
 
[-] File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
[-] File Deleted : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
[-] File Deleted : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.ask.com_0.localstorage-journal
 
***** [ DLLs ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\IEHelperv2.5.0.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : HKCU\Software\AppDataLow\Toolbar
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Steam App 228200
[-] Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6694FCEE-3B4C-4E16-8BBB-08E67F84B1E7}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6694FCEE-3B4C-4E16-8BBB-08E67F84B1E7}
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678..clientLogIsEnabled", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.CTID", "CT2786678");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.CurrentServerDate", "5-9-2012");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.DialogsAlignMode", "LTR");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.DialogsGetterLastCheckTime", "Tue Sep 04 2012 20:01:07 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.DownloadReferralCookieData", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.EMailNotifierPollDate", "Tue Sep 04 2012 20:01:03 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedLastCount5690698542593514850", 550);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375443753", "Fri Jun 03 2011 20:42:28 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375443759", "Fri Jun 03 2011 20:42:28 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444699", "Fri Jun 03 2011 20:42:27 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444705", "Fri Jun 03 2011 20:42:27 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444711", "Fri Jun 03 2011 20:42:27 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444717", "Fri Jun 03 2011 20:42:27 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444723", "Fri Jun 03 2011 20:42:27 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444729", "Fri Jun 03 2011 20:42:28 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444735", "Fri Jun 03 2011 20:42:28 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444741", "Fri Jun 03 2011 20:42:28 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate129301619375444747", "Fri Jun 03 2011 20:42:28 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156812186649977", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156813040823546", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156813130095866", "Tue Sep 04 2012 20:01:03 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156813224203613", "Tue Sep 04 2012 20:01:03 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156813230837251", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156813454291735", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156813729834876", "Tue Sep 04 2012 20:01:03 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156813860870021", "Tue Sep 04 2012 20:01:06 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156814264681793", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156814863075366", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedPollDate2429156815257761081", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL129301619375444699", 10);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL129301619375444723", 15);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL129301619375444735", 5);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL129301619375444747", 5);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL2429156813040823546", 15);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL2429156813130095866", 10);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL2429156813454291735", 5);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FeedTTL2429156814264681793", 5);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FirstServerDate", "20-1-2011");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FirstTime", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FirstTimeFF3", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.FixPageNotFoundErrors", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.HasUserGlobalKeys", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.HomePageProtectorEnabled", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.HomepageBeforeUnload", "resource:/browserconfig.properties");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.Initialize", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.InitializeCommonPrefs", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.InstallationType", "UnknownIntegration");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.InstalledDate", "Wed Jan 19 2011 16:45:17 GMT-0500 (Eastern Standard Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.IsAlertDBUpdated", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.IsGrouping", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.IsMulticommunity", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.IsOpenThankYouPage", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.IsOpenUninstallPage", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.LanguagePackLastCheckTime", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.LastLogin_3.15.1.0", "Tue Sep 04 2012 20:01:06 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.LastLogin_3.2.5.2", "Wed Dec 28 2011 21:43:10 GMT-0500 (Eastern Standard Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.LatestVersion", "3.14.1.0");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.Locale", "en");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.MCDetectTooltipHeight", "83");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.MCDetectTooltipWidth", "295");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchInNewTabEnabled", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Tue Sep 04 2012 20:01:06 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchProtectorEnabled", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SearchProtectorToolbarDisabled", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.ServiceMapLastCheckTime", "Tue Sep 04 2012 20:01:03 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SettingsLastCheckTime", "Tue Sep 04 2012 20:01:03 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.SettingsLastUpdate", "1346773289");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Tue Sep 04 2012 20:01:03 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1312887586");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.UserID", "UN21694747196110953");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.WeatherNetwork", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.WeatherPollDate", "Tue Sep 04 2012 20:01:06 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.WeatherUnit", "F");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.alertChannelId", "1178763");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.approveUntrustedApps", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.backendstorage.cbfirsttime", "547565204F637420323520323031312031393A31373A333020474D542D3034303020284561737465726E204461796C696768742054696D6529");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.backendstorage.url_history", "687474703A2F2F7777772E6D7969746C61622E636F6D2F53797374656D5F526571756972656D656E7473");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.backendstorage.url_history_time", "31333139353834383237373235");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.homepageProtectorEnableByLogin", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.initDone", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.isAppTrackingManagerOn", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.myStuffEnabled", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.revertSettingsEnabled", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.searchProtectorEnableByLogin", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.testingCtid", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Tue Sep 04 2012 20:01:04 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Tue Sep 04 2012 20:01:06 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2786678/CT2786678", "\"1a14eda8faf205801e709de051a0f53e2\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1178763/1174448/US", "\"0\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/US", "\"0\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2786678", "\"1334471445\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "G9mW7heT/8xIX1frcduu0A==");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "2E1/v7EfCEDbv3VaBQMELg==");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "k9un27OkAvkwB2ZmvXxTnA==");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "FqddrIU7eyJgaaLyHDeVMQ==");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:151d\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0e0a4327275cd1:151d\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2786678", "\"c912886ea3ba021d3a9ef2d6ad700899\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"634531597989330000\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634303635100000000");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/2011 5:25:10 PM", "634339976460000000");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/22/2011 6:54:06 PM", "634356118310000000");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/2011 11:17:11 AM", "634356118310000000");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2786678&octid=CT2786678", "\"1314985690\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2786678/CT2786678", "\"1311517341\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"aa7d4bad292fde336bb51452cca0367b\"");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.EngineOwner", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "utorrentbar");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Owner\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\p036co41.default\\conduitCommon\\modules\\3.15.1.0");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.15.1.0");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2786678");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.ToolbarsList2", "ConduitEngine,CT2786678");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Sep 04 2012 20:01:02 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.locale", "en");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Sep 04 2012 20:01:02 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.alert.userId", "31f007b2-60ab-4823-8432-0dc87a9cda6b");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Wed Dec 28 2011 21:43:10 GMT-0500 (Eastern Standard Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.globalUserId", "04e60b5c-8ca9-4829-82bb-5f3fa4f75250");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.killedEngine", true);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Tue Sep 04 2012 20:01:07 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Tue Sep 04 2012 20:01:15 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Tue Sep 04 2012 20:01:06 GMT-0400 (Eastern Daylight Time)");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.notifications.userId", "2db9787c-29df-4937-a010-4010e689a6d7");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("CommunityToolbar.undefined", "");
[-] [C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js] [Preference] Deleted : user_pref("ConduitEngine.Uninstall", true);
[-] [C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ippkomaaonokjnfjoikaemidanojkfmm
 
*************************
 
:: "Tracing" keys removed
:: Winsock settings cleared
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [38256 bytes] ##########
 
MiniToolbox:

MiniToolBox by Farbar  Version: 02-11-2015
Ran by Owner (administrator) on 30-12-2015 at 19:54:49
Running from "C:\Users\Owner\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: AY570AAR-ABA a4316f Manufacturer: HP-Pavilion
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
========================= IP Configuration: ================================
 
NVIDIA nForce 10/100 Mbps Ethernet  = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : PC-Owner
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet 
   Physical Address. . . . . . . . . : 90-E6-BA-EB-BD-C8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::4038:74f6:a4dd:5b54%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.16(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, December 30, 2015 7:42:14 PM
   Lease Expires . . . . . . . . . . : Thursday, December 31, 2015 7:42:14 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 244377274
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-25-79-F4-90-E6-BA-EB-BD-C8
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{57A97C26-DD71-4EB7-AC18-43A3890DBC81}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 9:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4002:c03::66
 74.125.196.100
 74.125.196.113
 74.125.196.138
 74.125.196.139
 74.125.196.102
 74.125.196.101
 
 
Pinging google.com [64.233.177.102] with 32 bytes of data:
Reply from 64.233.177.102: bytes=32 time=25ms TTL=38
Reply from 64.233.177.102: bytes=32 time=29ms TTL=38
 
Ping statistics for 64.233.177.102:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 25ms, Maximum = 29ms, Average = 27ms
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
 2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=69ms TTL=42
Reply from 98.139.183.24: bytes=32 time=59ms TTL=42
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 59ms, Maximum = 69ms, Average = 64ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...90 e6 ba eb bd c8 ......NVIDIA nForce 10/100 Mbps Ethernet 
  1...........................Software Loopback Interface 1
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.16     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.16    276
     192.168.1.16  255.255.255.255         On-link      192.168.1.16    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.16    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.16    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.16    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    276 fe80::/64                On-link
 10    276 fe80::4038:74f6:a4dd:5b54/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/30/2015 03:04:38 PM) (Source: Application Hang) (User: )
Description: The program uTorrent.exe version 3.4.5.41372 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 2b430
 
Start Time: 01d1433af82910a0
 
Termination Time: 30
 
Application Path: C:\Users\Owner\AppData\Roaming\uTorrent\uTorrent.exe
 
Report Id: 887d6b41-af30-11e5-b89a-90e6baebbdc8
 
Error: (12/30/2015 10:30:34 AM) (Source: MsiInstaller) (User: PC-Owner)
Description: Unexpected or missing value (name: 'PackageName', value: '') in key 'HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList'
 
Error: (12/29/2015 12:26:32 PM) (Source: MsiInstaller) (User: PC-Owner)
Description: Unexpected or missing value (name: 'PackageName', value: '') in key 'HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList'
 
Error: (12/28/2015 11:35:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8034
 
Error: (12/28/2015 11:35:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8034
 
Error: (12/28/2015 11:35:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (12/28/2015 11:35:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6989
 
Error: (12/28/2015 11:35:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6989
 
Error: (12/28/2015 11:35:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (12/28/2015 11:35:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5990
 
 
System errors:
=============
Error: (12/30/2015 07:46:47 PM) (Source: Service Control Manager) (User: )
Description: The HP Support Solutions Framework Service service failed to start due to the following error: 
%%1053
 
Error: (12/30/2015 07:46:47 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the HP Support Solutions Framework Service service to connect.
 
Error: (12/30/2015 07:39:10 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service failed to start due to the following error: 
%%1069
 
Error: (12/30/2015 07:39:10 PM) (Source: Service Control Manager) (User: )
Description: The TrustedInstaller service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error: 
%%50
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (12/30/2015 07:37:28 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: 
%%1056
 
Error: (12/30/2015 07:37:10 PM) (Source: Service Control Manager) (User: )
Description: The HP Software Framework Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (12/30/2015 07:37:10 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (12/30/2015 07:37:08 PM) (Source: Service Control Manager) (User: )
Description: The iPod Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (12/30/2015 07:37:02 PM) (Source: Service Control Manager) (User: )
Description: The HP Support Solutions Framework Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (12/30/2015 07:36:58 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (12/30/2015 03:04:38 PM) (Source: Application Hang)(User: )
Description: uTorrent.exe3.4.5.413722b43001d1433af82910a030C:\Users\Owner\AppData\Roaming\uTorrent\uTorrent.exe887d6b41-af30-11e5-b89a-90e6baebbdc8
 
Error: (12/30/2015 10:30:34 AM) (Source: MsiInstaller)(User: PC-Owner)
Description: PackageNameHKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList(NULL)(NULL)(NULL)
 
Error: (12/29/2015 12:26:32 PM) (Source: MsiInstaller)(User: PC-Owner)
Description: PackageNameHKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList(NULL)(NULL)(NULL)
 
Error: (12/28/2015 11:35:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8034
 
Error: (12/28/2015 11:35:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8034
 
Error: (12/28/2015 11:35:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (12/28/2015 11:35:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6989
 
Error: (12/28/2015 11:35:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6989
 
Error: (12/28/2015 11:35:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (12/28/2015 11:35:02 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5990
 
 
CodeIntegrity Errors:
===================================
  Date: 2012-10-06 10:34:17.783
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:34:17.668
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:33:39.124
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:33:39.011
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:32:05.970
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:32:05.855
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:31:05.523
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:31:05.403
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:30:17.289
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-10-06 10:30:17.177
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
AaAaAA!!! - A Reckless Disregard for Gravity (HKLM-x32\...\Steam App 15520) (Version:  - Dejobaan Games)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19140 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Reader 9.4.0 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A94000000001}) (Version: 9.4.0 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
aiofw (HKLM-x32\...\{DE6B7599-D3EF-4436-8836-BAA0B0D7768D}) (Version: 4.2.6.8 - Eastman Kodak Company) Hidden
aioprnt (HKLM\...\{0645A454-AD44-4F0D-99CF-6B762735AD1F}) (Version: 4.2.7.4 - Eastman Kodak Company) Hidden
aioscnnr (HKLM-x32\...\{FE24086F-3B0C-4C47-A874-97A7B8E2FBBE}) (Version: 4.2.6.0 - Your Company Name) Hidden
AMD Catalyst Install Manager (HKLM\...\{3C378793-5288-0165-FCA4-D319D5E4A490}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version:  - )
Apple Application Support (32-bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ATI AVIVO64 Codecs (HKLM\...\{33A49BF2-CB4F-5E54-D7F5-25502CAB6B70}) (Version: 11.6.0.50706 - ATI Technologies Inc.) Hidden
Audiosurf (HKLM-x32\...\Steam App 12900) (Version:  - Dylan Fitterer)
Back to the Future The Game - Episode 1 (HKLM-x32\...\Episode 1) (Version: 1.0.0.0 - Telltale Games)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version:  - Rocksteady Studios)
Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version:  - Rocksteady Studios)
Battlefield 3™ Open Beta (HKLM-x32\...\{45C8D17D-B5E0-4e93-8370-4329AB16D2A0}) (Version: 1.0.0.0 - Electronic Arts)
Bejeweled 3 (HKLM-x32\...\Bejeweled 3) (Version:  - PopCap Games)
Bing Bar (HKLM-x32\...\{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}) (Version: 7.0.609.0 - Microsoft Corporation)
Bing Rewards Client Installer (HKLM-x32\...\{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}) (Version: 16.0.345.0 - Microsoft Corporation) Hidden
Blood of the Werewolf (HKLM-x32\...\Steam App 260250) (Version:  - Scientifically Proven)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Borderlands (HKLM-x32\...\Steam App 8980) (Version:  - Gearbox Software)
Bridge Constructor (HKLM-x32\...\Steam App 250460) (Version:  - )
Broken Sword 2 - the Smoking Mirror: Remastered (HKLM-x32\...\Steam App 33600) (Version:  - Revolution Software Ltd)
Burn Zombie Burn (HKLM-x32\...\Steam App 50510) (Version:  - doublesix)
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version:  - Criterion Games)
CCleaner (HKLM\...\CCleaner) (Version: 3.03 - Piriform)
CDDRV_Installer (HKLM\...\{0C826C5B-B131-423A-A229-C71B3CACCD6A}) (Version: 4.60 - Logitech) Hidden
center (HKLM-x32\...\{56BA241F-580C-43D2-8403-947241AAE633}) (Version: 4.2.6.8 - Eastman Kodak Company) Hidden
Champions Online: Free For All (HKLM-x32\...\Steam App 9880) (Version:  - Cryptic Studios)
Chime (HKLM-x32\...\Steam App 62100) (Version:  - Zoe Mode)
Clive Barker's Jericho (HKLM-x32\...\Steam App 11420) (Version:  - CodeMasters)
Cogs (HKLM-x32\...\Steam App 26500) (Version:  - Lazy 8 Studios)
Command and Conquer: Red Alert 3 - Uprising (HKLM-x32\...\Steam App 24800) (Version:  - EA Los Angeles)
Company of Heroes (HKLM-x32\...\Steam App 4560) (Version:  - Relic Entertainment)
Company of Heroes: Opposing Fronts (HKLM-x32\...\Steam App 9340) (Version:  - Relic Entertainment)
Company of Heroes: Tales of Valor (HKLM-x32\...\Steam App 20540) (Version:  - Relic Entertainment)
Coupon Printer for Windows (HKLM-x32\...\Coupon Printer for Windows5.0.0.0) (Version: 5.0.0.0 - Coupons.com Incorporated)
Crysis 2 Maximum Edition (HKLM-x32\...\Steam App 108800) (Version:  - Crytek Studios)
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2115 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Darksiders (HKLM-x32\...\Steam App 50620) (Version:  - Vigil Games)
Dead Space (HKLM-x32\...\Steam App 17470) (Version:  - EA Redwood Shores)
Digital - A Love Story 1.1 (HKLM-x32\...\Digital - A Love Story) (Version: 1.1 - Lily of the Valley games)
DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
DOOM 3 (HKLM-x32\...\Steam App 9050) (Version:  - id Software)
DOOM 3: Resurrection of Evil (HKLM-x32\...\Steam App 9070) (Version:  - Nerve Software)
DOOM II: Hell on Earth (HKLM-x32\...\Steam App 2300) (Version:  - id Software)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dungeon Siege III (HKLM-x32\...\Steam App 39160) (Version:  - Obsidian Entertainment)
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.1.3224 - Hewlett-Packard) Hidden
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.1.3224 - Hewlett-Packard)
Emily is Away (HKLM-x32\...\Steam App 417860) (Version:  - Kyle Seeley)
eReg (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
F.E.A.R. (HKLM-x32\...\Steam App 21090) (Version:  - Monolith )
F.E.A.R. 2: Project Origin (HKLM-x32\...\Steam App 16450) (Version:  - Monolith)
F.E.A.R. 3 (HKLM-x32\...\Steam App 21100) (Version:  - Day 1 Studios)
F.E.A.R.: Extraction Point (HKLM-x32\...\Steam App 21110) (Version:  - Monolith )
F.E.A.R.: Perseus Mandate (HKLM-x32\...\Steam App 21120) (Version:  - Monolith )
Faerie Solitaire (HKLM-x32\...\Steam App 38600) (Version:  - )
Far Cry 2 (HKLM-x32\...\Steam App 19900) (Version:  - Ubisoft)
Final DOOM (HKLM-x32\...\Steam App 2290) (Version:  - id Software)
Fishing Planet (HKLM-x32\...\Steam App 380600) (Version:  - Fishing Planet LLC)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version:  - Greenheart Games)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Garry)
Geometry Wars: Retro Evolved (HKLM-x32\...\Steam App 8400) (Version:  - Bizarre Creations)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.1 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Gotham City Impostors: Free To Play (HKLM-x32\...\Steam App 206210) (Version:  - Monolith Productions, Inc.)
Guacamelee! Gold Edition (HKLM-x32\...\Steam App 214770) (Version:  - DrinkBox Studios)
Guardians of Middle-earth (HKLM-x32\...\Steam App 111900) (Version:  - Zombie Studios)
Guild Wars (HKLM-x32\...\Guild Wars) (Version:  - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Half-Life (HKLM-x32\...\Steam App 70) (Version:  - Valve)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version:  - Valve)
Half-Life 2: Episode One (HKLM-x32\...\Steam App 380) (Version:  - Valve)
Half-Life 2: Episode Two (HKLM-x32\...\Steam App 420) (Version:  - Valve)
Half-Life 2: Lost Coast (HKLM-x32\...\Steam App 340) (Version:  - Valve)
Half-Life Deathmatch: Source (HKLM-x32\...\Steam App 360) (Version:  - Valve)
Half-Life: Blue Shift (HKLM-x32\...\Steam App 130) (Version:  - Gearbox)
Half-Life: Opposing Force (HKLM-x32\...\Steam App 50) (Version:  - Gearbox)
Half-Life: Source (HKLM-x32\...\Steam App 280) (Version:  - Valve)
Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5247.34 - PC-Doctor, Inc.)
HD Tactical Camera Video Editor version 1.0 (HKLM-x32\...\{8A53E27B-3537-4F20-AEA2-45F07389355B}_is1) (Version: 1.0 - Jakks Pacific, Inc.)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.9512.3162 - Hewlett-Packard)
HP Deskjet 3510 series Basic Device Software (HKLM\...\{7F20F2D1-C425-4432-96BA-EBD0C2181493}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Help (HKLM-x32\...\{97C1C98D-6AE5-4C71-9B00-EBBD9E014450}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Product Improvement Study (HKLM\...\{791D3241-C6A4-417F-82E6-00543B6E5012}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
HP MediaSmart Demo (HKLM-x32\...\{9DEF9686-CCB2-47B7-BF83-B49EA21FA016}) (Version: 1.00.0000 - Hewlett-Packard)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.1.3317 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.1.3422 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.1.0.1 - Hewlett-Packard)
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{35021DFB-F9CA-402A-89A2-47F91E506465}) (Version: 1.0.2.0 - Hewlett-Packard)
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Product Detection (HKLM-x32\...\{A436F67F-687E-4736-BD2B-537121A804CF}) (Version: 11.14.0001 - HP)
HP Remote Solution (HKLM-x32\...\HP Remote Solution) (Version: 1.1.11.0 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B9A03B7B-E0FF-4FB3-BA83-762E58A1B0AA}) (Version: 10.1.0002 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HydraVision (HKLM-x32\...\{D5134D14-A38D-A217-4310-5C8B6DFA08D0}) (Version: 4.2.174.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java™ 6 Update 20 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216020F0}) (Version: 6.0.200 - Sun Microsystems, Inc.)
Java™ 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022F0}) (Version: 6.0.220 - Oracle)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche Studios)
KhalInstallWrapper (HKLM\...\{F3F18612-7B5D-4C05-86C9-AB50F6F71727}) (Version: 4.70.213 - Logitech) Hidden
Killing Floor (HKLM-x32\...\Steam App 1250) (Version:  - Tripwire Interactive)
Killing Floor Mod: Defence Alliance 2 (HKLM-x32\...\Steam App 35420) (Version:  - )
KODAK AiO Home Center (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 4.2.7.7 - Eastman Kodak Company)
ksDIP (HKLM-x32\...\{10934A28-0CC6-4B98-A14F-76B3546003AF}) (Version: 3.20.0000.0000 - Eastman Kodak Company) Hidden
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2017 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2017 - CyberLink Corp.)
Lara Croft and the Guardian of Light (HKLM-x32\...\Steam App 35130) (Version:  - Crystal Dynamics)
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
LEGO MARVEL Super Heroes (HKLM-x32\...\Steam App 249130) (Version:  - Traveller's Tales)
License for THRSim11 68HC11 Simulator 5.xx (HKLM-x32\...\THRSim11_is1) (Version: 5.xx - Harry Broeders)
LightScribe System Software (HKLM-x32\...\{CC8E94A2-55C7-4460-953C-2A790180578C}) (Version: 1.18.8.1 - LightScribe)
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
Logitech SetPoint 6.15 (HKLM\...\SP6) (Version: 6.15.25 - Logitech)
Logitech Touch Mouse Server 1.0 (HKLM-x32\...\Logitech Touch Mouse Server) (Version: 1.0 - Logitech Inc.)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Lume (HKLM-x32\...\Steam App 105100) (Version:  - )
Machinarium (HKLM-x32\...\Steam App 40700) (Version:  - Amanita Design)
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios AB)
Major League Baseball 2K9 (HKLM-x32\...\Steam App 8840) (Version:  - 2K Sports)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Master Levels for DOOM II (HKLM-x32\...\Steam App 9160) (Version:  - id Software)
McPixel (HKLM-x32\...\Steam App 220860) (Version:  - Sos)
Medal of Honor Beta (HKLM-x32\...\Steam App 47770) (Version:  - DICE)
Medal of Honor™ Multiplayer (HKLM-x32\...\Steam App 47830) (Version:  - Electronic Arts)
Medal of Honor™ Single Player (HKLM-x32\...\Steam App 47790) (Version:  - Electronic Arts)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version:  - 4A Games)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.566.0 - Microsoft Live Search Toolbar)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4779.1002 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.6281.1202 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM-x32\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Visual Basic 2008 Express Edition - ENU (HKLM-x32\...\Microsoft Visual Basic 2008 Express Edition - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework (HKLM\...\{62577E41-C350-3D07-97C8-2B6CDB4BAD60}) (Version: 3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32 (HKLM\...\{11EB1163-5761-4BC6-8F48-98DCF6A46BBF}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version:  - DICE)
MLB 2K10 (HKLM-x32\...\Steam App 50120) (Version:  - 2K Sports)
MLB® Front Office Manager (HKLM-x32\...\Steam App 7780) (Version:  - 2K Sports)
Mortal Kombat Kollection (HKLM-x32\...\Steam App 205350) (Version:  - Other Ocean Interactive)
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.1.3310 - Hewlett-Packard) Hidden
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.1.3310 - Hewlett-Packard)
Mozilla Firefox 15.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 15.0.1 (x86 en-US)) (Version: 15.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 15.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyITLab (HKLM-x32\...\{E3048B3F-7350-4059-A316-AD3EC9A5559D}) (Version: 1.44.0 - Pearson Education)
MyITLab ActiveX Installer 2, 9, 8, 65535 (HKLM-x32\...\MyITLab ActiveX Installer_is1) (Version:  - Pearson Education)
Myst Masterpiece (HKLM-x32\...\Steam App 63660) (Version:  - )
Nether (HKLM-x32\...\Steam App 247730) (Version:  - Phosphor Games)
Neverwinter Nights 2: Platinum (HKLM-x32\...\Steam App 2760) (Version:  - )
Norton 360 (HKLM-x32\...\N360) (Version: 22.5.5.15 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.20.0 - Symantec)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}) (Version: 9.09.0814 - NVIDIA Corporation)
Octodad: Dadliest Catch (HKLM-x32\...\Steam App 224480) (Version:  - Young Horses)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4779.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4779.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4779.1002 - Microsoft Corporation) Hidden
OldSchool RuneScape Launcher 1.2.7 (HKLM-x32\...\{FEDDCE73-34B8-4980-90B8-8619A78C902C}) (Version: 1.2.7 - Jagex Ltd)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice.org 3.3 (HKLM-x32\...\{3E171899-0175-47CC-84C4-562ACDD4C021}) (Version: 3.3.9567 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 9.0.14.2148 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
PictureMover (HKLM-x32\...\{1896E712-2B3D-45eb-BCE9-542742A51032}) (Version: 3.3.1.19 - Hewlett-Packard Company)
Plants vs. Zombies: Game of the Year (HKLM-x32\...\Steam App 3590) (Version:  - PopCap)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Poker Night at the Inventory (HKLM-x32\...\Steam App 31280) (Version:  - Telltale Games)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
POSTAL 2 Complete (HKLM-x32\...\Steam App 223470) (Version:  - Running With Scissors)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3304 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3304 - CyberLink Corp.)
PowerDirector (HKLM-x32\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3503 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3503 - CyberLink Corp.)
PreReq (HKLM-x32\...\{DA5BDB2A-12F0-4343-8351-21AAEB293990}) (Version: 3.20.0000.0000 - Eastman Kodak Company) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Ravensword: Shadowlands (HKLM-x32\...\Steam App 253410) (Version:  - Crescent Moon Games)
Razer Lycosa (HKLM-x32\...\{E0FA1DC5-FEBF-4E7B-8FA3-DB94233E952D}) (Version: 1.00.0000 - Razer USA Ltd.)
Razer TRON (HKLM-x32\...\{6750AB2C-014F-441E-92CD-AB68BB4530BF}) (Version: 1.01.09 - Razer USA Ltd.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5938 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.2216 - CyberLink Corp.) Hidden
Red Faction: Armageddon (HKLM-x32\...\Steam App 55110) (Version:  - Volition)
Red Faction: Guerrilla  (HKLM-x32\...\Steam App 20500) (Version:  - Volition)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
RPG Maker VX RTP (HKLM-x32\...\RPG Maker VX RTP_is1) (Version: 1.02 - Enterbrain)
S.T.A.L.K.E.R.: Call of Pripyat (HKLM-x32\...\Steam App 41700) (Version:  - GSC Game World)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version:  - GSC Game World)
Safari (HKLM-x32\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Scourge: Outbreak (HKLM-x32\...\Steam App 227560) (Version:  - Tragnarion Studios)
Screencast-O-Matic (HKCU\...\Screencast-O-Matic) (Version:  - Screencast-O-Matic)
Scribblenauts Unlimited (HKLM-x32\...\Steam App 218680) (Version:  - 5th Cell Media)
Serious Sam Classic: The First Encounter (HKLM-x32\...\Steam App 41050) (Version:  - )
Serious Sam Classic: The Second Encounter (HKLM-x32\...\Steam App 41060) (Version:  - )
Serious Sam HD: The First Encounter (HKLM-x32\...\Steam App 41000) (Version:  - Croteam)
Serious Sam HD: The Second Encounter (HKLM-x32\...\Steam App 41010) (Version:  - Croteam)
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Sid Meier’s Ace Patrol: Pacific Skies (HKLM-x32\...\Steam App 244090) (Version:  - Firaxis)
Sid Meier's Ace Patrol (HKLM-x32\...\Steam App 244070) (Version:  - Firaxis Games)
Sid Meier's Civilization III: Complete (HKLM-x32\...\Steam App 3910) (Version:  - Firaxis Games)
Sid Meier's Civilization IV (HKLM-x32\...\Steam App 3900) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Beyond the Sword (HKLM-x32\...\Steam App 8800) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Colonization (HKLM-x32\...\Steam App 16810) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Warlords (HKLM-x32\...\Steam App 3990) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version:  - Firaxis Games)
Sid Meier's Railroads! (HKLM-x32\...\Steam App 7600) (Version:  - Firaxis Games)
SimCity 2000 Special Edition (HKLM-x32\...\{59D2C751-F7BE-4E9F-9C8C-1F16013802C7}) (Version: 2.0.0.1 - Electronic Arts)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
Slender: The Arrival (HKLM-x32\...\Steam App 252330) (Version:  - Blue Isle Studios)
SmartPixel (HKLM-x32\...\SmartPixel) (Version: 3.1.0.0 - Beyond Magic Limited)
Sql Server Customer Experience Improvement Program (HKLM\...\{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}) (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Star Wars: Knights of the Old Republic (HKLM-x32\...\Steam App 32370) (Version:  - BioWare)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stranded Deep (HKLM-x32\...\Steam App 313120) (Version:  - Beam Team Games)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version:  - )
Surgeon Simulator 2013 (HKLM-x32\...\Steam App 233720) (Version:  - Bossa Studios)
Swarm Arena (HKLM-x32\...\Steam App 46600) (Version:  - )
System Requirements Lab (HKLM-x32\...\{B35DBBD7-B42E-494A-8913-431A2E448131}) (Version: 6.1.1.0 - Husdawg, LLC)
Tales of Monkey Island: Chapter 1 - Launch of the Screaming Narwhal (HKLM-x32\...\Steam App 31170) (Version:  - Telltale Games)
Tales of Monkey Island: Chapter 2 - The Siege of Spinner Cay  (HKLM-x32\...\Steam App 31180) (Version:  - Telltale Games)
Tales of Monkey Island: Chapter 3 - Lair of the Leviathan  (HKLM-x32\...\Steam App 31190) (Version:  - Telltale Games)
Tales of Monkey Island: Chapter 4 - The Trial and Execution of Guybrush Threepwood  (HKLM-x32\...\Steam App 31200) (Version:  - Telltale Games)
Tales of Monkey Island: Chapter 5 - Rise of the Pirate God (HKLM-x32\...\Steam App 31210) (Version:  - Telltale Games)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
Team Fortress Classic (HKLM-x32\...\Steam App 20) (Version:  - Valve)
TERA (HKLM-x32\...\{0FCDA0F8-F3E5-402E-B9B6-13CB2B01182B}) (Version: 1.30 - En Masse Entertainment)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - )
The Ball (HKLM-x32\...\Steam App 35460) (Version:  - Teotl Studios)
The LEGO® Movie - Videogame (HKLM-x32\...\Steam App 267530) (Version:  - TT Fusion)
The Lord of the Rings: War in the North (HKLM-x32\...\Steam App 32800) (Version:  - Snowblind Studios)
The Misadventures of P.B. Winterbottom (HKLM-x32\...\Steam App 40930) (Version:  - 2K Play / The Odd Gentlemen)
The Path (HKLM-x32\...\Steam App 27000) (Version:  - Tale of Tales)
The Scourge Project: Episode 1 and 2 (HKLM-x32\...\Steam App 36700) (Version:  - Tragnarion Studios)
The Sims™ 2 Double Deluxe (HKLM-x32\...\{2D37F6AE-D201-4580-B91A-6BF9BB93ED2D}) (Version:  - Electronic Arts)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
The Sims™ 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.13.1 - Electronic Arts)
The Sims™ 3 Seasons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
The Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
The Sims™ 3 University Life (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.10.63.1020 - Electronic Arts Inc.)
The Ultimate DOOM (HKLM-x32\...\Steam App 2280) (Version:  - id Software)
The Void (HKLM-x32\...\Steam App 37000) (Version:  - Ice-Pick Lodge)
TiltShiftGenerator: artandmobile.com (HKLM-x32\...\{DAF1B429-4CC2-5460-74C7-B29539AF7E08}) (Version: 1.55 - UNKNOWN) Hidden
TiltShiftGenerator: artandmobile.com (HKLM-x32\...\TiltShift.E66C440A17F1D70FFD66FDB4568328647297CFDC.1) (Version: 1.55 - UNKNOWN)
Titan Quest (HKLM-x32\...\Steam App 4540) (Version:  - Iron Lore Entertainment)
Tropico 4 (HKLM-x32\...\Steam App 57690) (Version:  - )
TweetDeck (HKLM-x32\...\{EAEFE1C0-EB56-8963-9EC5-A0EB5FBA358D}) (Version: 0.37.5 - TweetDeck Inc) Hidden
TweetDeck (HKLM-x32\...\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1) (Version: 0.37.5 - TweetDeck Inc)
twhirl (HKLM-x32\...\{05709317-05C6-BED8-3DE2-AB2D8EEAA485}) (Version: 0.9.7 - Seesmic, Inc,) Hidden
twhirl (HKLM-x32\...\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1) (Version: 0.9.7 - Seesmic, Inc,)
Type:Rider (HKLM-x32\...\Steam App 258890) (Version:  - Ex Nihilo)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Universe Sandbox (HKLM-x32\...\Steam App 72200) (Version:  - Giant Army)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version:  - WildTangent) Hidden
VC Runtimes MSI (HKLM-x32\...\{FF29527A-44CD-3422-945E-981A13584000}) (Version: 9.0.21022 - Microsoft) Hidden
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player 1.1.5 (HKLM-x32\...\VLC media player) (Version: 1.1.5 - VideoLAN)
VLC Streamer 3.21 (HKLM-x32\...\VLC Streamer_is1) (Version:  - )
Warhammer 40,000: Dawn of War - Game of the Year Edition (HKLM-x32\...\Steam App 4570) (Version:  - Relic Entertainment)
WildTangent Games App (HP Games) (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.10.5 - WildTangent)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Zombie Driver (HKLM-x32\...\Steam App 31410) (Version:  - EXOR Studios)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 48%
Total physical RAM: 6143.24 MB
Available physical RAM: 3148.51 MB
Total Virtual: 12284.68 MB
Available Virtual: 9221.24 MB
 
========================= Partitions: =====================================
 
1 Drive c: (HP) (Fixed) (Total:920.62 GB) (Free:138.19 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.8 GB) (Free:1.58 GB) NTFS
3 Drive e: (G71-VAA1008) (CDROM) (Total:2.33 GB) (Free:0 GB) CDFS
 
========================= Users: ========================================
 
User accounts for \\PC-OWNER
 
Administrator            Guest                    Mcx1-PC-OWNER            
Owner                    
 
========================= Minidump Files ==================================
 
No minidump file found
 
========================= Restore Points ==================================
 
29-12-2015 09:34:11 Windows Update
 
**** End of log ****
 


#4 Jo*

Jo*

  • Malware Response Team
  • 3,429 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:38 PM

Posted 31 December 2015 - 04:03 AM

Hello,

:step1: Run Malwarebytes Anti-Rootkit again: Right-click mbar.exe and select Run As Administrator
  • Scan your system for malware
  • If malware is found, click on the Cleanup
  • button to remove any threats and reboot if prompted to do so.
  • Wait while the system shuts down and the cleanup process is performed.
  • then please go to the MBAR folder and then copy/paste the contents of the MBAR-log-***.txt file to your next reply.
  • If there is no malware found, please let me know as well.

***


:step2: Double click on AdwCleaner.exe to run the tool again.
Vista / Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • When the scan has finished, the actual line should say "Pending. Please uncheck elements you do not want to remove". Look through the scan results and uncheck any entries that you do not wish to remove.
  • This time, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

***


:step3: Please download Junkware Removal Tool from HERE and save it to your desktop.
Shutdown your antivirus to avoid any potential conflicts.
Double click JRT.exe to run the tool.
Vista / Windows 7/8 users right-click and select Run As Administrator.
  • JRT will begin to backup your registry and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, the log JRT.txt is saved on your desktop and will automatically open.
Enable your antivirus!
Post the contents of JRT.txt into your next reply.


***


:step4: How the computer is running now?


***


Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#5 Jo*

Jo*

  • Malware Response Team
  • 3,429 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:38 PM

Posted 02 January 2016 - 05:52 PM

Hi,

it has been several days since I sent my last set of instructions to help with your computer problem.

Please let me know if you are having problems and still need help.

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#6 FadeToDark

FadeToDark
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Carolina
  • Local time:06:38 AM

Posted 03 January 2016 - 12:08 AM

Hi,

it has been several days since I sent my last set of instructions to help with your computer problem.

Please let me know if you are having problems and still need help.

 

I am in the process of completing the last message you left. I appreciate your help. I am running the scans now, I had to work so I was unable to do so before now.



#7 FadeToDark

FadeToDark
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Carolina
  • Local time:06:38 AM

Posted 03 January 2016 - 12:55 AM

Hello,

:step1: Run Malwarebytes Anti-Rootkit again: Right-click mbar.exe and select Run As Administrator

        Nothing found, no log is showing up.

***


:step2: Double click on AdwCleaner.exe to run the tool again.
        Nothing found

***

:step3: Please download Junkware Removal Tool from HERE and save it to your desktop.
JRT.TXT:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 7 Home Premium x64 
Ran by Owner (Administrator) on Sun 01/03/2016 at  0:47:48.19
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 165 
 
Successfully deleted: C:\Program Files (x86)\mozilla firefox\plugins\npcouponprinter.dll (File) 
Successfully deleted: C:\Program Files (x86)\mozilla firefox\plugins\npmozcouponprinter.dll (File) 
Successfully deleted: C:\Users\Owner\AppData\Local\{01903A63-9C4E-4B38-AC93-81483D2FCB72} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{03BE033E-53CB-44D4-AE3A-9E70FB68B1A2} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{04EB71D9-9A7F-47C3-AFCB-4728B3FEAB75} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{071FD3A9-9482-4FEA-83DE-8FEC0DB22E79} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{077DEE19-C206-4A52-97CC-9DAB93CFB71A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{08D30416-58CA-48FA-9DE7-E284D4F3151A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{11CF321B-503E-4B6E-A494-41C9BD4A2D87} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{1261836D-DB8A-4D10-B67C-3B7B9DC88E33} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{12DEFC5C-BBFB-41A8-A2F4-3E17040934B1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{13AEB4AE-0E71-4671-B54C-FE4E07E13181} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{141142AC-68C3-4C2B-A102-31BE3F5EDC8B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{1540CC6F-CDB6-45A4-9A99-8F52B7FDDC4D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{170847AC-6F4C-48A1-9410-78B60F8DE99C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{17209AC0-C4EE-4802-9D6B-CFDEB99FD8A1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{175F2410-EB3C-41F5-85B8-EF1A061067D9} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{178640F8-DEE0-4488-A4D5-F3B951E8B353} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{18FFED60-3C66-47DA-9B76-941B1A83854C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{1B3A2260-1DFF-4BF5-B7DC-70DDA31BEE46} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{1E1DAA48-AD29-4DFA-8D7D-293B540693C5} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2026D1DB-B168-438D-8278-E41C7BB2BE0B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2034C14E-E7F9-4F9A-A5DA-3C9930E66603} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2187E333-B412-40FD-B6B4-E414F52EDCF1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{26188343-ED9A-4B62-BE9B-A2639C21DC09} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{266F2ECA-CD8C-4029-B323-7FDA8C00A440} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{292EA55E-1496-4B18-8F08-D1CE511D0CE1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2D70FA23-C56D-48BB-AEDD-756E4565174D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2D9BA5E6-D3D9-4207-9E3F-B74B01C0B084} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2E4FCF85-974B-4EBA-A79D-8AE30D3EF04B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2E6D9B8F-BC61-4C5F-A2E7-0DB23830CCE1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2EF2387C-3665-4799-BE5A-591E728041DB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2F07FC3A-52D9-487C-B98E-BAA7CB692F00} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2F6FA7AA-8A58-4032-87CA-128E46E3E747} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2FBF26A1-CAEF-4B6A-896B-21B598D8496C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{332DB778-5135-44A1-8E74-702BC62CA20E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{340B8559-AFCA-40F7-B76C-64BA730AA27E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{34807A0F-803E-4630-ABA0-9B1AC122EC73} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{388608C4-D886-4F4D-863B-B54CD1562534} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3DA17030-1643-44FC-A955-E82E1581834C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3EC03BD7-38A9-4CAF-A5BC-92D020A813DC} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3F125910-6155-43C1-A586-3ADC46D74075} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3F404245-8EC9-400A-8432-82FD91B66A08} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{40896039-AB03-4B67-9DAC-C1AACC409CFB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{412B81B3-FA6B-42FF-BA36-2032B364CBA4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{41E302CD-0858-45B9-866B-C4E0F3545075} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{437C1814-266A-4A70-8F41-6AA497E19B3E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{45AEB4F2-222B-4A41-B74D-2DD1383EF77B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4988C70B-2EBA-47DF-81C8-8D44C2D5DEF3} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4A0D696A-2C92-47B1-BC6B-6B0DCFC933CE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4B25B44F-9D64-40FC-8003-A2C8B1537498} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4C405628-43B5-497C-B90A-3D8AA59F1A27} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4E36D6D3-C9C0-490B-9271-6D4760BA6404} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4F482732-3D2B-4068-B515-71E3E91E3B93} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{525996D3-B72A-4D6A-8C26-2B3DCE91EE23} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{546D52B1-E7C4-43FE-A19F-1C5FF9232646} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5588D284-13A2-4CE2-97A2-51046DEA3C41} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5680FFEF-4904-4120-B3DD-685BEF23A2D3} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5738F515-5210-47B0-942E-BA9451B8B701} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5746C332-1F89-4D67-87D9-E916650EB2A7} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5B9C382D-9B17-43FE-B14B-CF688C22A578} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5BC52FCB-19C1-4657-8564-B95B5B681525} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5C030117-D443-497D-B311-797A01DFA27B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5C544440-054C-4C1E-A1FE-B807A1694DD7} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5EDE087A-10D8-440E-A9FD-2596A78A1897} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5F8B63B7-7530-479F-9EAD-D372346565D9} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{60EC8D06-FD0F-4FB0-82B7-3C8BBCC5721D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6317E3FD-A4B5-4905-A945-24E6116D4C14} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6442F88F-1F1C-4FE5-B8BA-F1B5FF6DE1EA} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{697134B4-E246-4331-AB07-D0F4DC11F5A5} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{69A62C46-CAB6-4CA1-AE26-2D027F344DEF} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6AF2EDC1-CA6A-4314-A4F5-93072DA64D63} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6DE8DF71-866A-433E-935E-6F8F5D1A2B9D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{725CD74F-FC2E-4F92-B26B-8F8D3DDC488A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7624A6A1-3929-43D6-8157-4DD766BA5FDF} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{78C0232C-4D4D-479E-A785-672D78D9EC0D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7A676CEE-4C83-4A24-AB2E-6718F9A300CE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7B225DDF-58B3-4770-9355-20E87F6AAC86} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7C32C4AE-BB07-4AFE-968C-F7CBD9579CF0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7DE595C1-5519-4D26-B0FA-230DFA86DB1A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8362C208-5A5A-46F1-A820-BF8635B676E4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{84FCC136-6077-4482-9C08-3DE35D4E55BE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8BA8CD15-6602-4163-8F83-2162AE448EAB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8C4FDB3E-99D7-4707-B885-7B17D3CB9A8B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8D6047E4-23B5-4D75-947A-849F714A8837} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8D97329E-E68C-409C-9335-487ECAA56EC4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8EFFAEF9-788C-4A8E-AE4F-E08BE9DFD186} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{926BD9AE-3AA4-4206-8253-023FA954481C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{92ED2C4D-D32A-412C-8771-DE070B3F51D0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{938FE7DF-8DB9-4B81-9DBB-F73A8EA09C11} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{948C04B9-DF3D-4807-8A78-89539F4370BD} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{98C068F9-ED5A-4F57-888B-51D922D2AFE2} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{99C3EB89-9E28-4D12-8D92-E48D48342C6C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9A79D85D-DB78-4772-B525-7157F82F4824} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9A979754-7B55-4DB4-AC9D-73C94ECC3CF9} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9D69C86D-4E5F-4787-99EF-686C3EBE6F03} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A0BA86BE-D3DE-468E-BB87-92377421233B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A10706B1-897F-4872-9D56-71BAB2CD827B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A40EEE50-A66B-4DD4-8B07-AB0C68C9FB36} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A659CF91-3C8B-4515-96C1-8D1BFA9331B0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A77CC584-74BD-42D6-BFC6-8451BB1EDDAC} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A7EDF8ED-B32D-46F8-9AF5-795E8E7A601D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A9098315-FDBE-42CC-A9D7-6DBDACA0539F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{AC608D73-D6E4-4FC7-A12B-88219131DD30} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{AF825280-930B-4AB5-9C87-3354D726F3EE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B073FA30-2D61-496F-8AE2-DCD03FD2F09D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B0F379CF-2D8E-460B-A111-F74B88956ACE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B1A067AF-B1AA-463B-904A-98C1B4E7E4C4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B1EEAB23-85B6-482C-9AFB-5C408A12D108} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B2A6ED8C-5C82-4E63-9BD5-42D0B3CE20D7} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B506FCB5-9AAD-4EAF-9876-5D90F732E1C0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B5C4034A-FCFF-4A25-BB20-D9D0ECE062C1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B672910E-F98C-408A-9D78-A7BAD3092CA8} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B7E5950F-B6AB-4216-9130-AADC3854756B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B8CB1AC5-3F61-4AC2-85AE-B78180553823} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BAA6F74C-B129-4804-B798-4B2EE81D8147} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BBF20014-56FC-4463-AAD5-ADABA10496D4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BE8F5CD5-5E6D-43CE-A03D-97C13AE2240E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BF1A563F-F956-43DB-8706-AB203EB08A6E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BF439CF1-4973-4599-B40F-BBA0B0992109} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C0C00C4F-1FFC-4980-8B06-DF573DB589EC} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C3209086-8733-4A27-AF2B-FE68412B77F5} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C43F9685-98FF-4677-8669-AEF803DD4536} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C511FD06-4FB5-4A1E-96A0-8FCA85E692AA} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C62EB845-F679-4B81-AE5E-6546BAB0C7A9} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C738FE68-6AB6-4FD5-BE32-394B83B7D2A8} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C775C4D1-8AA4-41BD-9192-68210A467974} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C8C93BE4-BE3A-4E02-B5B6-B5B0FAD0B745} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C8F1A000-B43C-4999-A1BF-E847EF2E233B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CAA1B47D-2939-4F47-9525-7FB9DDD24B19} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CC35D39F-3968-4F3F-A287-948BDA14FAD3} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CE457779-FBA7-4A8C-B431-59F85628349A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CECA7923-CEB9-434C-B75A-B9BD623E2243} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CEF56575-9D82-45A1-B915-6EE84939ECB7} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CFB0CFB0-D78C-4FA0-B1B9-889C1139B608} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D094ED8E-66D1-4736-9E72-2B68E04B8615} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D312D636-DCDA-4BBA-B296-49715ED97910} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D37D0F07-85C9-4ACD-A026-380D277B5A46} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D3F54E03-2409-4D7D-B4BA-6AA765E27F33} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D90A6B16-BDA7-4F98-AA78-459C0CC360DD} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{DD79B826-0DEF-4BF4-8EEC-36518ED01AC0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E17F9342-99C8-49BD-94BF-317F7B648D02} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E414BE0E-9E4E-426A-B4F2-31D4DA8CFD3F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E4EC09DB-CD33-4E30-A923-022436FDDB97} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E6AF0D59-B7AC-4968-87D8-C38DF37BBC2A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{ECE89396-5E97-4A42-8FF0-A7C3AA162D18} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{EDC9FC55-59F2-41B5-8C38-4C291B70C409} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{EEE359FE-F6B2-4FE4-8D05-8E0BA9EE8F7E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{EFB46FF7-3536-4260-B787-7A4DC7811BE9} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F0B42050-8D61-46D3-BFCB-BB46CBC6AA9E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F12E4911-6312-4A48-BF61-E721DD46BE22} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F12F9643-6F32-442E-ABEB-77E0CFCD983E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F2AFC476-428F-4EE8-BAFA-B29FFED99735} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F2C49E7A-52C0-4179-94C1-4A079D1D45ED} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F2CBBAA9-1C5A-40DF-8E19-920AB5B44D9F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F5E0E7D8-BC44-4939-84F1-166B6F6466C9} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F7751C30-6E21-4D96-90AB-FB58F6820827} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{FEC3DC9B-7AA0-45AD-93CA-BEFC8B2FB8C4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_services.hearstmags.com_0.localstorage-journal (File) 
Successfully deleted: C:\Users\Owner\AppData\Roaming\3909 (Folder) 
Successfully deleted: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\extensions\artur.dubovoy@gmail.com.xpi (File) 
Successfully deleted: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\gm_scripts\Facebook_Video_Downloader\97964.user.js (File) 
Successfully deleted: C:\Users\Owner\AppData\Roaming\system (Folder) 
Successfully deleted: C:\Users\Owner\AppData\Roaming\wyupdate au (Folder) 
Successfully deleted: C:\Windows\couponprinter.ocx (File) 
 
Deleted the following from C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p036co41.default\prefs.js
user_pref(extensions.wecarereminder.merchHash, {\AFFILIATES\:{\1-Sale-A-Day\:{\name\:\1 Sale A Day\,\autordr\:1,\n\:\3\,\td\:1.5},\1and1Internet\:{\name\
 
 
 
Registry: 2 
 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} (Registry Value) 
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/03/2016 at  0:52:40.87
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

***


:step4: How the computer is running now?

The computer is running better now.

***

 



#8 Jo*

Jo*

  • Malware Response Team
  • 3,429 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:38 PM

Posted 03 January 2016 - 06:33 AM

Malwarebytes' Anti-Malware
If this program is already installed: Skip the installation and run only the scan!
Download and install: Please download Malwarebytes Anti-Malware to your desktop.
  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.
How to get logs: (Export log to save as txt)
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • Attach that saved log to your next reply.
(Copy to clipboard for pasting into forum replies or tickets)
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#9 Jo*

Jo*

  • Malware Response Team
  • 3,429 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:38 PM

Posted 11 January 2016 - 04:02 AM

Hi,

it has been several days since I sent my last set of instructions to help with your computer problem.

Please let me know if you are having problems and still need help.

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users