Jump to content

Recommended Posts

Hey all,

 

I keep getting a popup that starts with 7.rotator.widgetmedia like two others I've seen so far on here

 

here are my logs:

 

DDS.txt:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16660  BrowserJavaVersion: 10.25.2
Run by Isabelle at 16:00:57 on 2013-09-04
Microsoft Windows 7 Édition Intégrale   6.1.7601.1.1252.1.1033.18.1971.504 [GMT -4:00]
.
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Panda Antivirus Pro 2014 *Enabled/Updated* {86971480-9989-6750-B122-681A86518D59}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Panda Antivirus Pro 2014 *Enabled/Updated* {3DF6F564-BFB3-68DE-8B92-5368FDD6C7E4}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Fingerprint Sensor\ATService.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
C:\Windows\system32\mqsvc.exe
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Fingerprint Sensor\ATSwpNav.exe
C:\Windows\vsnp2uvc.exe
C:\Windows\snuvcdsm.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Windows\System32\StikyNot.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Fujitsu\Application Panel\BtnHndHkb.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\Messenger Plus! for Skype.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PskSvc.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\pavsrvx86.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PsCtrls.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\TPSrvWow.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PsImSvc.exe
C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA ANTIVIRUS PRO 2014\WebProxy.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\APVXDWIN.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\AVENGINE.EXE
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Isabelle\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PavScr64.exe
.
============== Pseudo HJT Report ===============
.

uProxyOverride = local;*.local
uURLSearchHooks: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - <orphaned>
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
uRun: [AdobeBridge] <no file>
mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
mRun: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [snp2uvc] C:\Windows\vsnp2uvc.exe
mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
mRun: [indicatorUtility] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [MessengerPlusForSkypeService] "C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [APVXDWIN] "C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\APVXDWIN.EXE" /s
mRun: [sCANINICIO] "C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\Inicio.exe"
mRunOnce: [ (A0)] cmd /c "C:\Users\Isabelle\Desktop\mbar\mbar.exe" /rdv /s
mRunOnce: [1] C:\Users\Isabelle\Desktop\mbam-chameleon-1.62.1.1000\mbam-chameleon.exe /r /p
mRunOnce: [aswAhAScr.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\AhAScr.dll"
mRunOnce: [aswasOutExt.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\asOutExt.dll"
mRunOnce: [aswasOutExt64.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr64.exe" "C:\Program Files\Alwil Software\Avast5\asOutExt64.dll"
StartupFolder: C:\Users\Isabelle\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
StartupFolder: C:\Users\Isabelle\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll




TCP: NameServer = 128.192.1.9 128.192.1.193 128.192.1.19
TCP: Interfaces\{79548C99-5B9F-4443-A406-4BB9F73E7D00} : DHCPNameServer = 128.192.1.9 128.192.1.193 128.192.1.19
TCP: Interfaces\{79548C99-5B9F-4443-A406-4BB9F73E7D00}\34865736B6370275966696D27657563747 : DHCPNameServer = 192.168.3.1
TCP: Interfaces\{79548C99-5B9F-4443-A406-4BB9F73E7D00}\441677E60216E6460265963647F6279616D27657563747 : DHCPNameServer = 128.192.1.9 128.192.1.193 128.192.1.19
TCP: Interfaces\{79548C99-5B9F-4443-A406-4BB9F73E7D00}\8445340205F627471626C6560284F6473707F647 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{79548C99-5B9F-4443-A406-4BB9F73E7D00}\84F6D656 : DHCPNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{A52B6187-A9EC-41E8-8658-C9260D743EC2} : DHCPNameServer = 192.168.42.129
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll
x64-Run: [ATSwpNav] "C:\Program Files\Fingerprint Sensor\ATSwpNav" -run
x64-Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
x64-Run: [sNUVCDSM] C:\Windows\snuvcdsm.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
x64-Run: [LoadBtnHnd] C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: avldr - avldr64.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\elubhlst.default\
FF - component: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\components\FirefoxExtension.dll
FF - component: C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Isabelle\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Users\Isabelle\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Users\Isabelle\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Isabelle\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: C:\Users\Isabelle\AppData\Roaming\Mozilla\plugins\npo1d.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-3 65336]
R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-3-3 204880]
R0 FBIOSDRV;Fujitsu BIOS Driver;C:\Windows\System32\drivers\FBIOSDRV.sys [2009-6-24 21104]
R0 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\48230029.sys [2013-9-2 116440]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2011-6-14 1030952]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2010-9-30 378944]
R1 ShldFlt;Panda File Shield Driver;C:\Windows\System32\drivers\ShldFlt.sys [2013-9-2 48136]
R2 AmFSM;AmFSM;C:\Windows\System32\drivers\amm6460.sys [2013-9-2 71432]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2010-9-30 33400]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2010-9-30 80816]
R2 ATService;AuthenTec Fingerprint Service;C:\Program Files\Fingerprint Sensor\ATService.exe [2009-12-27 2704704]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2013-5-21 46808]
R2 MsgPlusService;Messenger Plus! Service;C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe [2013-2-20 128000]
R2 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-3-23 87040]
R2 vpnagent;Cisco AnyConnect VPN Agent;C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2011-9-22 645048]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;C:\Windows\System32\drivers\ATSwpWDF.sys [2009-12-28 736840]
R3 FUJ02E3;Fujitsu FUJ02E3 Device Driver;C:\Windows\System32\drivers\fuj02e3.sys [2006-11-1 7296]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2009-9-17 56344]
S0 Pavboot;Panda boot driver;C:\Windows\System32\drivers\pavboot64.sys [2013-9-2 30792]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-7-25 162672]
S3 HTCAND64;HTC Device Driver;C:\Windows\System32\drivers\ANDROIDUSB.sys [2009-11-1 33736]
S3 htcnprot;HTC NDIS Protocol Driver;C:\Windows\System32\drivers\htcnprot.sys [2010-6-25 36928]
S3 npggsvc;nProtect GameGuard Service;C:\Windows\System32\GameMon.des -service --> C:\Windows\System32\GameMon.des -service [?]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2011-6-20 20992]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-10-2 1255736]
SUnknown tsusbhub;tsusbhub; [x]
.
=============== File Associations ===============
.
FileExt: .vbe: VBEFile=C:\PROGRA~2\PANDAS~1\PANDAA~1\PavScrip.exe  "%1" %*
FileExt: .vbs: VBSFile=C:\PROGRA~2\PANDAS~1\PANDAA~1\PavScrip.exe  "%1" %*
FileExt: .js: jsfile="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"
FileExt: .jse: JSEFile=C:\PROGRA~2\PANDAS~1\PANDAA~1\PavScrip.exe "%1" %*
FileExt: .wsf: WSFFile=C:\PROGRA~2\PANDAS~1\PANDAA~1\PavScrip.exe  "%1" %*
ShellExec: dreamweaver.exe: Open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2013-09-04 14:38:30    76232    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C78551C3-F739-4BD1-921D-E0FF6EEF7D2E}\offreg.dll
2013-09-03 21:37:49    9515512    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C78551C3-F739-4BD1-921D-E0FF6EEF7D2E}\mpengine.dll
2013-09-02 20:32:23    --------    d-----w-    C:\Users\Isabelle\AppData\Local\Panda Security
2013-09-02 20:30:15    30792    ----a-w-    C:\Windows\System32\drivers\pavboot64.sys
2013-09-02 20:29:31    46640    ----a-w-    C:\Windows\System32\pavcpl64.cpl
2013-09-02 19:24:57    --------    d-----w-    C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-02 19:20:22    116440    ----a-w-    C:\Windows\System32\drivers\48230029.sys
2013-08-25 17:09:07    108968    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll
2013-08-21 17:35:55    --------    d-----w-    C:\Program Files\iPod
2013-08-21 17:35:43    --------    d-----w-    C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-08-21 17:35:43    --------    d-----w-    C:\Program Files\iTunes
2013-08-15 16:31:57    817664    ----a-w-    C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-08-15 16:31:57    108032    ----a-w-    C:\Program Files (x86)\Internet Explorer\jsdebuggeride.dll
2013-08-15 16:31:56    1084928    ----a-w-    C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-08-15 16:31:52    1767936    ----a-w-    C:\Windows\SysWow64\wininet.dll
2013-08-15 16:31:50    2241024    ----a-w-    C:\Windows\System32\wininet.dll
2013-08-14 13:49:11    224256    ----a-w-    C:\Windows\System32\wintrust.dll
2013-08-14 13:49:11    175104    ----a-w-    C:\Windows\SysWow64\wintrust.dll
2013-08-14 13:49:11    1472512    ----a-w-    C:\Windows\System32\crypt32.dll
2013-08-14 13:49:11    1166848    ----a-w-    C:\Windows\SysWow64\crypt32.dll
2013-08-14 13:49:10    184320    ----a-w-    C:\Windows\System32\cryptsvc.dll
2013-08-14 13:49:10    140288    ----a-w-    C:\Windows\SysWow64\cryptsvc.dll
2013-08-14 13:49:09    139776    ----a-w-    C:\Windows\System32\cryptnet.dll
2013-08-14 13:49:09    103936    ----a-w-    C:\Windows\SysWow64\cryptnet.dll
2013-08-14 13:47:56    39936    ----a-w-    C:\Windows\System32\drivers\tssecsrv.sys
2013-08-14 13:47:56    1111552    ----a-w-    C:\Windows\System32\rdpcorets.dll
2013-08-14 13:47:52    1910208    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
.
==================== Find3M  ====================
.
2013-08-30 07:48:10    72016    ----a-w-    C:\Windows\System32\drivers\aswRdr2.sys
2013-08-30 07:48:10    65336    ----a-w-    C:\Windows\System32\drivers\aswRvrt.sys
2013-08-30 07:48:10    204880    ----a-w-    C:\Windows\System32\drivers\aswVmm.sys
2013-08-30 07:48:10    1030952    ----a-w-    C:\Windows\System32\drivers\aswSnx.sys
2013-08-30 07:48:09    80816    ----a-w-    C:\Windows\System32\drivers\aswMonFlt.sys
2013-08-30 07:47:40    41664    ----a-w-    C:\Windows\avastSS.scr
2013-08-25 17:08:37    972712    ----a-w-    C:\Windows\System32\deployJava1.dll
2013-08-25 17:08:37    1093032    ----a-w-    C:\Windows\System32\npDeployJava1.dll
2013-08-20 18:29:33    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-20 18:29:33    692104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-07-26 05:12:08    3958784    ----a-w-    C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04    136704    ----a-w-    C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03    67072    ----a-w-    C:\Windows\System32\iesetup.dll
2013-07-26 03:35:08    2706432    ----a-w-    C:\Windows\System32\mshtml.tlb
2013-07-26 03:12:04    2877440    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00    61440    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00    109056    ----a-w-    C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:49:14    2706432    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2013-07-26 02:39:38    89600    ----a-w-    C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-26 01:59:38    71680    ----a-w-    C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-07-25 09:25:54    1888768    ----a-w-    C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27    1620992    ----a-w-    C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-19 01:58:42    2048    ----a-w-    C:\Windows\System32\tzres.dll
2013-07-19 01:41:01    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2013-07-09 06:03:30    5550528    ----a-w-    C:\Windows\System32\ntoskrnl.exe
2013-07-09 05:54:22    1732032    ----a-w-    C:\Windows\System32\ntdll.dll
2013-07-09 05:53:12    243712    ----a-w-    C:\Windows\System32\wow64.dll
2013-07-09 05:51:16    1217024    ----a-w-    C:\Windows\System32\rpcrt4.dll
2013-07-09 05:03:34    3968960    ----a-w-    C:\Windows\SysWow64\ntkrnlpa.exe
2013-07-09 05:03:34    3913664    ----a-w-    C:\Windows\SysWow64\ntoskrnl.exe
2013-07-09 04:53:47    1292192    ----a-w-    C:\Windows\SysWow64\ntdll.dll
2013-07-09 04:52:33    663552    ----a-w-    C:\Windows\SysWow64\rpcrt4.dll
2013-07-09 04:52:33    5120    ----a-w-    C:\Windows\SysWow64\wow32.dll
2013-07-09 04:45:07    44032    ----a-w-    C:\Windows\apppatch\acwow64.dll
2013-07-09 02:49:42    25600    ----a-w-    C:\Windows\SysWow64\setup16.exe
2013-07-09 02:49:41    7680    ----a-w-    C:\Windows\SysWow64\instnm.exe
2013-07-09 02:49:39    14336    ----a-w-    C:\Windows\SysWow64\ntvdm64.dll
2013-07-09 02:49:38    2048    ----a-w-    C:\Windows\SysWow64\user.exe
2013-06-27 13:34:24    96168    ----a-w-    C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-27 13:34:14    867240    ----a-w-    C:\Windows\SysWow64\npdeployJava1.dll
2013-06-27 13:34:14    789416    ----a-w-    C:\Windows\SysWow64\deployJava1.dll
2013-06-25 21:03:54    24544    ----a-w-    C:\Windows\System32\sysHelper64.dll
.
============= FINISH: 16:02:53.17 ===============
 

 

 

 

Attach.txt

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Édition Intégrale
Boot Device: \Device\HarddiskVolume2
Install Date: 9/30/2010 9:35:16 AM
System Uptime: 9/3/2013 4:49:58 PM (24 hours ago)
.
Motherboard: FUJITSU |  | FJNB20B
Processor: Intel® Core i5 CPU       M 450  @ 2.40GHz | Onboard | 1320/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 225 GiB total, 84.244 GiB free.
D: is FIXED (NTFS) - 225 GiB total, 224.384 GiB free.
E: is CDROM ()
F: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description: Contrôleur Ethernet
Device ID: PCI\VEN_14E4&DEV_1692&SUBSYS_153310CF&REV_01\4&3BCDE85&0&00E2
Manufacturer:
Name: Contrôleur Ethernet
PNP Device ID: PCI\VEN_14E4&DEV_1692&SUBSYS_153310CF&REV_01\4&3BCDE85&0&00E2
Service:
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64
Device ID: ROOT\NET\0000
Manufacturer: Cisco Systems
Name: Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64
PNP Device ID: ROOT\NET\0000
Service: vpnva
.
==== System Restore Points ===================
.
RP408: 8/23/2013 10:05:46 AM - Windows Update
RP409: 8/25/2013 1:03:37 PM - Installed Java SE Development Kit 7 Update 25 (64-bit)
RP410: 8/25/2013 1:07:31 PM - Installed Java 7 Update 25 (64-bit)
RP411: 8/27/2013 1:50:31 PM - Windows Update
RP412: 8/28/2013 9:55:56 AM - Windows Update
RP413: 9/3/2013 5:35:14 PM - Windows Update
.
==== Installed Programs ======================
.
AC3Filter 1.63b
Adobe Acrobat 9 Pro - English, Français, Deutsch
Adobe Acrobat 9.5.5 - CPSID_83708
Adobe AIR
Adobe Community Help
Adobe Creative Suite 5 Design Premium
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Media Player
Adobe Shockwave Player 11.6
Amazon Kindle
Amazon MP3 Downloader 1.0.15
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Atheros Client Installation Program
AuthenTec Fingerprint Software
Authentec WBDI Driver Package
avast! Free Antivirus
Bonjour
CDisplay 1.8
Cisco AnyConnect VPN Client
D3DX10
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Facebook Video Calling 1.2.0.287
FJ Camera
Fujitsu Hotkey Utility
Fujitsu MobilityCenter Extension Utility
GOM Player
Google Chrome
Google Talk Plugin
HP Deskjet 3050A J611 series Basic Device Software
HP Deskjet 3050A J611 series Help
HP Update
HTC BMP USB Driver
HTC Driver Installer
HTC Sync
iTunes
Java 7 Update 25
Java 7 Update 25 (64-bit)
Java Auto Updater
Java SE Development Kit 7 Update 25 (64-bit)
Java SE Development Kit 7 Update 6 (64-bit)
JavaFX 2.1.1
JumpStart 3rd Grade v1.2
LifeBook Application Panel
Malwarebytes Anti-Malware version 1.75.0.1300
Messenger Plus!
Messenger Plus! for Skype
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft_VC80_ATL_x86
Microsoft_VC80_ATL_x86_x64
Microsoft_VC80_CRT_x86
Microsoft_VC80_CRT_x86_x64
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFC_x86_x64
Microsoft_VC80_MFCLOC_x86
Microsoft_VC80_MFCLOC_x86_x64
Microsoft_VC90_ATL_x86
Microsoft_VC90_ATL_x86_x64
Microsoft_VC90_CRT_x86
Microsoft_VC90_CRT_x86_x64
Microsoft_VC90_MFC_x86
Microsoft_VC90_MFC_x86_x64
Mozilla Firefox 23.0.1 (x86 en-US)
Mozilla Maintenance Service
MPEG2 Codec(libmpeg2/mad)
MSVC80_x64_v2
MSVC80_x86_v2
MSVC90_x64
MSVC90_x86
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
MSXML 4.0 SP3 Parser (KB973685)
Nokia Connectivity Cable Driver
Nokia Ovi Player
Nokia Ovi Suite
Nokia Ovi Suite Software Updater
Nokia PC Suite
NVIDIA Display Control Panel
NVIDIA Drivers
OpenOffice.org 3.3
Ovi Desktop Sync Engine
OviMPlatform
Panda Antivirus Pro 2014
Panda Cloud Cleaner
Pando Media Booster
Pangya (Ntreev SG Interactive)
Password Depot 6 - Panda Secure Vault Edition
PC Connectivity Solution
PDF Settings CS5
QuickTime
R for Windows 2.14.1
Realtek High Definition Audio Driver
ScummVM 1.2.1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit Edition
Security Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2687422) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687276) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687501) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition
Security Update for Microsoft OneNote 2010 (KB2760600) 32-Bit Edition
Security Update for Microsoft Publisher 2010 (KB2553147) 32-Bit Edition
Security Update for Microsoft Visio 2010 (KB2810068) 32-Bit Edition
Security Update for Microsoft Visio Viewer 2010 (KB2687505) 32-Bit Edition
Security Update for Microsoft Word 2010 (KB2760410) 32-Bit Edition
Skype Click to Call
Skype™ 6.7
swMSM
Synaptics Pointing Device Driver
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VoiceOver Kit
WIN7TS
Windows Driver Package - AuthenTec Inc. (ATSwpWDF) Biometric  (12/04/2009 8.6.0.10)
Windows Driver Package - Intel (NETw5s64) net  (09/15/2009 13.0.0.107)
Windows Driver Package - Intel (NETw5v64) net  (09/15/2009 13.0.0.107)
Windows Driver Package - Nokia Modem  (06/09/2010 7.01.0.8)
Windows Driver Package - Nokia Modem  (10/07/2010 4.6)
Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Player Firefox Plugin
WinRAR 4.00 beta 1 (64-bit)
.
==== End Of File ===========================
 

 

 

Link to post
Share on other sites

Hello applehead and :welcome:! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.
Step 1

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 2

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[s1].txt as well.
Step 3
  • Launch Malwarebytes' Anti-Malware
  • Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

In your next reply, post the following log files:

  • Junkware Removal Tool log
  • AdwCleaner log
  • Malwarebytes' Anti-Malware log
Link to post
Share on other sites

JRT.txt

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.7 (09.01.2013:1)
OS: Windows 7 Ultimate x64
Ran by Isabelle on Thu 09/05/2013 at 14:24:31.50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\zugo
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2790392
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker_RASMANCS



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Isabelle\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\Isabelle\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\Isabelle\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{00120B61-9E17-437F-9647-C7D2188E4D87}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0016E969-73A8-489B-B143-A5EED87BC3C3}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0020BD03-5A56-4676-9185-07307CB48C9B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0052C43E-3BF4-4ECD-9E1E-21041A66245E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{00CF4593-DF18-46AB-9CC9-2F3D0C520779}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{011BD1EB-CCB3-4244-9E12-56978EEE7564}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{01560A7F-ABB3-450E-ADBE-2E803CB0DF68}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{026AB569-C609-4321-9BE7-70522D2CFFFE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{027DC407-126E-4904-B74E-E165879B1B73}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0418E049-2DFD-42F0-B7EA-6865CFC398D4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{045E07F1-7153-4EE1-81F3-E216F9E2837F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{04734EA2-11E2-4E0F-9614-0D5D18FC805A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0517BC05-A0EF-486B-8160-B7B27345BF9F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{053B2C5F-A506-4B24-8DA2-3D629085BAEB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{053B8E38-09B1-4968-AD1A-79FCA9A5122C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0631584F-BA0B-4BD5-9D9E-2A5EF1DA17E1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{06388B8B-DC74-483C-B0A3-E80664C0BEB9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{06E49CBD-4A76-42CE-94A9-BD4E4C1E2697}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{076CC280-2AC2-42DE-9E09-821BF13F56D4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0779D5AC-9AD4-410A-B739-430DD2D32B4C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{07B4DB65-71AC-48DB-AC0A-58AEA70D0BB2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{07C00C2E-1026-41F1-A34F-0A45D501FA61}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{08645A5C-BA02-4BC3-85FE-0E7AEC383B1A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{08B2B88E-999B-4764-8496-2AE30B627CB4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0909CB6F-4D8E-4620-8072-E7A474B2AAE9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{09CB90AE-9DD3-4170-BCFE-FFB5AE24EE15}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{09E96EAE-90B7-458B-95CB-CBB86E8E992E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0BB96338-1A58-4283-B52B-E7A7C8D400AA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0BF68312-7E70-41B4-94D9-51682F0FE205}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0BFED355-8CAB-49E9-A5CF-23167A32882C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0C000CED-EE11-4830-8028-CEC49BC322C0}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0C89B701-F90F-48E4-83FD-D616653B62E9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0D19325E-2DE7-4AC4-AA3A-E9C6226DEB35}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0D327283-01D1-4006-B06C-EF2E108D41A8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0F507968-264F-4C9B-BEA6-3AED582FDEA4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{0F716BA4-B742-45B1-8664-32750DC16A0F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{10871D7D-2890-4E97-A5D2-CB4358C242CE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1088EA1F-48A1-492C-B6CA-8DCDEF2AA53A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1139E4E2-6137-464E-A90D-C9F08D71CCEF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{12EB4618-6C1B-4C62-AB53-9C087BF94778}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{13265AA5-9838-47A4-8115-E0B82FB1F769}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1344DD2C-139B-42EB-AAF4-8841DE10321A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{143422E4-4F65-4286-BAEC-8E25B0D6E0C1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{14E55B34-F6AE-4CA6-9823-FE7F047DC904}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{14FF322D-3232-4564-8E5C-1C3807636A29}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{15181017-EA47-421A-87A3-37CC36544972}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1544B9D2-1C23-4EC7-B725-69657CED69F6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1568B3E4-1748-4F26-B604-8AE44C95278A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{15D0EF2D-6A60-46B0-8988-AFDFD4A96A36}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{16437503-F7D6-4361-BC2F-08E568EEFC59}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{16D39C73-0807-417B-A48A-A5D7DA096B55}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{16FFFB02-8957-499D-8506-5CA2EC66B6DC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{17200D51-BC89-4B90-BBB0-64AF98223333}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{179821C2-9AF2-4BDE-A896-0EB20E6F903F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{17C7C634-5AC8-46AF-A1F3-C025FC79EAC6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{185D40BB-BF12-44D0-8243-29E0678A4102}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{187A0ACF-4176-4A9C-B2F2-7D2591BF8EEB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1972F24A-3DCC-4B90-BF7F-40290C56D069}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{198E8667-B620-40DA-B00D-D92F9A78765F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1B346546-01F1-48D6-AAEB-B7695D345B74}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1B519707-D7B5-460C-B56B-7A9F42FEA643}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1B6C27AB-3875-4B71-A439-31B62D7BDDE6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1BB9C365-B2F7-4FE1-8480-C7D48C64961D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1C0B8555-899A-41A5-9873-73C2DDBA9D9A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1CD8C6F1-BA50-4AC5-BBB7-FB503A973582}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1CF3DBA7-225A-4AA7-BD38-99300C4F702B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1D08FB7D-CFEB-4C21-A64F-D26D1E46926F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1D487181-1975-4CBD-B570-B8DB435AE699}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1DF982B3-B5BF-46BA-8B04-5DE690191F79}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1ED3D5BD-DF20-4906-9AFB-F3C33E15DBB1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{1FDD7F92-DAE0-46BF-B2BE-230F558D0B3F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{200DAC1D-0B2D-4CE0-BDFA-F22A0A07B401}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{20152F65-E948-43B4-A953-67DED53A0D83}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{202C2808-0E27-45EF-A37A-DA61ACCB4FA4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{20E5BB9F-5486-4431-BBF1-19D4BAE791F8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{221C684D-169A-477A-B97D-CE4A816A44EA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2330E018-1B4A-4E6D-89FA-E6678BDA6671}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{237EBD65-AFD5-4AED-9D63-9D7BF1AF47CE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{23CE813A-2DA0-48B7-BB4C-FAD2FBB7380D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{246DB94C-789C-42BE-B717-3CFE114E84ED}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{24752C32-8817-45B9-A6DC-EFC55FD0040E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2504E36E-F3D1-49D6-B64C-1A58D8A1E5FB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{25495FF9-D042-4A40-9F2E-E0840A0156B4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{26ABBCC3-B575-4E89-89D9-92E0495B9133}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{26FBE189-850A-4752-9799-9EA7A9CE4360}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{274CD2D5-22C0-48BC-8243-214B46BC49C1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{27780147-BF5B-4B4F-AB3F-9D86C82780CA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{27F7BEF3-104B-4B03-B179-BC19E85B4370}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{284922CB-7DB8-4C85-94B8-D42994F0EF89}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{28539705-3918-416B-88F1-535742D80B27}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{285ECFAD-51AF-4AE8-8104-B3A3EBAA8A63}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{28C893F3-5B4C-4D06-9249-6CA42B6BB30B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{294A12A4-A72B-4CC3-A962-CF461156C3F7}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2A4CC0C6-74B8-4BAC-A74B-00DE8D3AE195}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2ADFF1F4-B808-4DA8-9BAD-EC7EB9FC0D12}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2B0ACA86-0DDD-4B9F-ACE9-FDF477D78FFD}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2B21413E-58A3-4259-949E-35D535201E09}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2B372BB1-5781-44E0-A8DB-C26393C158F6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2BA93414-ED1C-4045-9251-9472EF03E5B6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2C45A859-B7C4-44CE-BFDD-2AF3A2D8D9F4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2CF94D70-8FDD-4485-892F-50A69B0BF103}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2DA24135-744F-455F-AE53-05299A1586BE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2DB87AFB-1B36-4E9E-847F-F1CDF1A153AE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2E5E5604-057E-4879-B308-DD8ACA0A4B98}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2F01C454-90BA-42AD-BCF9-1D33266AEB74}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{2F2B2910-EE1E-477E-9A17-80B559E1E7EB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{303A7BC2-8919-480A-9C14-FD4085AD3A30}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3144D588-7B1D-4622-8B76-C56B2BF4286C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{32797FFD-5051-46CC-B3DC-C8882CF2150A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3357A093-7116-4879-97C2-A22855D0313B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3443532B-9489-4E73-9929-9C5C3DF8032B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{344ADF5A-8FC9-4D80-911C-04867DC4A990}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3570C6A8-C201-4C21-9EC3-8B495B9EFFFF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3596B8AC-595C-464D-BA8E-D08C15DC0E5D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{35A9F087-9464-44B3-B526-582143C015F9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{36D9BC85-D88D-4883-886B-607123E739D6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{37DC3B2C-36E5-4C9C-A155-307D3D3296EE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{37E26621-5832-40AE-A6E1-45BD71913BEE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{381C466C-6F04-4FCA-8952-82939F084182}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{384B3DA2-5C66-4AF0-A805-D4E214D46795}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{38A0ACF1-B847-47CA-9609-71F2CAB86C4A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{38E4C789-AB20-477C-9F83-CAD82D292AFB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{398378BC-F89A-4823-A1BB-B469325B9B3C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3A17D8DB-C604-4922-8E18-EFEE96E892ED}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3B384E99-07CB-425E-A41F-5F95B1AC06FB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3B9729CA-C205-4642-A8B9-AF44D111DE5C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3BA460E3-7979-4313-BA75-8BB784EEA315}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3BD78E13-552A-493D-968B-6F82B0D9CF90}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3C081D2A-D5C7-427C-924E-6BFE3AC72F53}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3C416141-F016-4285-8275-219714ECDCD3}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3D09A7C9-5460-4D68-83E5-E7DE41F87E3B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3D22ECB6-5174-4F1F-9050-8601AA68E310}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3D32968D-D2EB-49ED-A587-C69BE5505B60}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3D517841-3FEC-47D7-8E8F-735E7643AB71}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3DBD8A69-305E-4AA9-9401-61BE94FDAC4F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3E3936F8-A059-4631-A8D9-D733E0A3564B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3F07E278-A51F-4133-9787-D9D44A7D3BF5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3F9118BC-6E95-4456-AA28-612F3398B6D9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{3FE29531-659D-46B3-8C72-2F59F7DBF826}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{403258D6-CD80-427A-A7A7-9F2A51CD1C55}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4049E75A-D4F1-4A47-8B21-BF92644FF96C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{41DB4E61-5729-45A9-864E-FD46B9E1BD0D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{43863B86-B581-4BBC-A8F9-D61DDC27E16C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{440303B6-0146-4D15-9EC3-0D75ACD72ECA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{44031CDF-819B-457B-89A6-4EB7A33DC646}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{444594B5-E2AC-4234-AE75-44FB4CC95B87}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{453AE14E-1722-4CAE-A2DF-CCB7B3B2D2EA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4550073B-D09A-459D-8C7F-376A22A41FCC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{458761E5-0CAF-40E5-82A9-8D7C60E84985}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{45B06633-48F3-47EF-BE3A-9970FA18C4AC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{45FAA7E8-7A90-457D-B03E-BE0ACDCDB2E5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4620F5FC-82F4-4950-891E-3E7D026F0486}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{463C1B05-171E-4076-A8ED-CD24032CCD60}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4744F7DB-7208-4B86-AB60-0EA69998D1AF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{47AACF79-43E0-4104-8908-9366420B5647}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{47F59B4A-4A9D-44E1-BBF9-89730AC16382}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{485EA27B-8180-491D-8EFC-E6CC7D99D3FD}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4888B64D-64B2-4A4A-9379-09C0A3C2A184}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{491B73ED-E73E-41ED-BBE7-FFB5099207A4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4948532C-0C2F-4E95-8017-479A9847E96C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4953FDDF-2FB8-4F3A-9F02-C81243A4B498}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4954199A-222A-420C-8112-B390DDD90D0A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4B0C4A96-783D-48EE-AC32-A3AF537F1158}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4B42ED82-BF76-4BB9-ADF9-B8E506722AFA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4B4509EE-E310-4387-B1F9-F7D0CC285210}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4B8EEF31-4ACD-4D3F-BD78-BA1E8406AD5C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4BF57D08-C8FB-41AB-BDA9-BDBE1D473E33}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4BFE3E16-BC35-47CF-97B6-4A3C33C13327}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4CFB9673-EC85-4D44-ADC6-3D1F9834D6CE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4CFF3CC7-0EE6-4C18-B967-D6F3F429F182}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4D27E21E-2709-404A-9993-C693FDB02396}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4E28091D-036A-4728-B05D-30E10E8E45FD}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4E3F78E6-9A46-4D25-B18F-B9E833A8E4A8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4E5992A1-6F27-4227-BBFD-B1AFCAF2FA6A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4E8B21F2-B01B-47E0-BE7F-C8DDAE443DF2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4EF7CE01-FD2D-4FF1-AC04-8C85E72EA1F9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4F2CFFA9-E8CD-4020-A80B-0CD7E3F75E8B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4F425A25-5580-4C58-9E97-D58EA8D68EF9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4F87AE5B-3984-434C-9BBE-FED049FF2651}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4F8B7BA2-3458-4DB4-B4C3-18F9FC6EDFD6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{4F93C196-CD0B-4530-B802-93EBF7D4A848}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{50C5270B-2044-4100-A167-E609F15C6347}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5152C634-2C6A-41CB-ACAE-C37853EC30F3}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{51F5339F-73EC-48C6-8BC0-211923C3EC7F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5255AC6D-5831-41F5-9377-E9DEC2404014}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5291D763-344D-4473-8DFD-5B5BE204C6F3}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{52A51C8F-7CD8-4DF8-AFF0-4AB8BAC90902}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{52BD1020-9422-4E4F-8628-5B161C71161A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{52FD288C-97E2-4219-910C-BBD1B40651C2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{537EAD0A-7E4A-4E06-B3EE-E0EA8AF7936A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{53FF78BB-FD71-4AB9-A82B-56B1F334CDBB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{54829792-1C5F-4C85-B788-5BC8BBEE2555}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{55012D97-92A7-40A1-88F4-29B827FA4099}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5507BCFE-0EA1-44CF-92EE-D2188FEEE85A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{571E6791-A52D-4BD2-940E-3C84EC230ABB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{575EE06C-126F-4CAC-9074-77002A146731}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{582B5595-68C2-4C67-A544-C9712FBDCBF3}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{585BA7A9-783E-4F7D-8E7C-FA14C6CE850B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{58C04EDF-D152-44F8-9B82-03052E6A2358}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{591DE4C4-AB50-4CC2-8EC9-95A246E60614}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{599DA8EB-DE98-4B3E-9367-581AD14ED3A8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{59B9AE88-FA9E-40FC-8BDE-1DF0ADFA8E38}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5A4B8AFF-DAC1-43F0-8A5D-7AF9A6753740}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5B03480B-D1E2-4BCF-98A1-2F152EA48402}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5B3FF7AD-1C1B-47C2-A315-C921F14A21A2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5BE6E152-9B3D-4229-831E-400EFB44F164}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5C264251-2FBA-41BB-8B78-97C2EC78B56D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5C469817-4B57-44BC-A96B-0D59066364EC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5C67A16E-1C81-4B90-9308-02D709F8AB50}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5C734052-AC86-438C-8BC6-11149DE07756}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5C97BB76-5CD3-4466-A11D-D1D068349479}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5CCF5C1C-1179-440A-AC75-0EE55405F5D4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5D0029A9-017F-4721-B41B-A5A490E0C81A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5D0D9C59-01FA-4408-8A7B-633804255D2E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5D2CA9EA-DEE9-4A7D-82C1-15033629AD90}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5D6F655C-5680-4290-9AD8-F1DC986FAA05}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5D8AFB77-BE8F-4EFE-B450-AEB03E7A5826}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5E96384C-C98C-4AD1-A9D1-8C50DDB843EB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5EB133C7-4F5C-43F5-8FE0-F6162C9057F9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5EBA4A61-C462-4324-AC60-ADD0E47BDBEE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5F562513-9CE7-4262-848E-6012EC22E1FA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{5FBE63F8-6B55-45EF-9661-C5DE2759E1E3}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{601CFFDF-6AF1-4B47-9588-C1E74FEC45EF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{604A8BAD-7CD3-440D-81FA-39D80B0FD7C4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{60540D00-AF18-40A9-89DF-E671AB79B666}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6062AC15-7EB5-4622-8D90-A75B3020693E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{608BF997-7CF7-4548-826A-9EFB226F383A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{62B97516-9BA7-4BB7-A72E-E2078F1CD701}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{63061E46-2FA5-4CF3-9BA6-39623BDF1C1B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{63121751-600B-492B-B8FA-60CC94ADBA3F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6339C2CC-F25D-4705-9025-34720612E134}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{63CD059D-CFB4-4CB7-928F-A728EB699012}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6435BADC-78B1-4F8A-919B-D43E82DB760D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{64D16EF4-685B-4DA0-BF82-EFFD2CAA5BAB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{64F4E87D-8A6E-4BCC-B942-DD5FD42CCA0C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{65520300-FF23-4D92-B132-83D150816C91}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{65D97046-8E2A-46AC-B13C-0B3BF9F39CFC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{65DA67C9-3A10-4C1B-BA86-4DFAED4A3A20}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6626CFC8-2532-4986-85EE-82724B471E60}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{667016EA-0353-4C7C-9F91-56268F05D9CE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{669F4600-D017-4A7D-A031-26CF0CC58831}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{66A8C8DC-874A-4D3A-9A06-59A419894FCC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{66CD0372-E022-4382-96C5-C3F478261970}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{66E21FD8-DDDA-4766-BEB7-9E4E104CBC3A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{66EDC7CC-0639-4A5D-8FA9-D83408D2C031}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{682FA094-ACFE-41E7-9645-2A376E9EA2DF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{685C8233-8290-4D0A-B583-013A2AC39BE5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{691057DD-911D-4541-91A0-A4151893D2A2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{69DAA373-BE15-4DAA-ADF8-AE7FADC024EB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6B925C4A-8D34-431F-8349-0FE95E1DEC37}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6CE45C84-F4D1-4076-BEC5-FB5A35B4CA04}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6D491D99-B5C3-4183-BA8E-E9DBDA859A0E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6D89B47D-02FA-4222-8914-D8887FD77C5C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6E262125-38A0-4FFD-8303-AF827D2E51F2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6E35711A-1CE4-4143-900A-A10E956E95DC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6EE7ECE1-4A50-44AC-8DBA-CC638BDE1622}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6F28EF85-E2DA-4D24-9DFF-D55023B4CA9E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{6F2AAD71-8A1B-4F30-89A6-1E33C89A6578}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{705C9F93-B994-416D-97A2-9138A3BA2303}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{707DDE45-0824-4CDB-B7A8-C57A0D091BEA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{70844B67-E3BC-457E-8E0B-6B85655C9C32}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{70F216F3-EA7E-4568-A379-6C60DE002903}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{70F90EDA-E9F8-4D4E-8F59-B94F043E2E24}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7105BBD7-E29D-4857-891C-02B089536D6D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7286F3A0-1F00-4DFE-9B7A-5CAACE16FFBF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{729E3325-BB23-48FE-8CFB-685AF4602862}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{72BB1B6C-1817-4CA4-83D8-1F9A71967E8B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{72D93E0B-4741-4EC2-82CC-E10B81C08CFE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{734CFE1B-C9D5-4A2F-ABDD-E34E98C8E09C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{735FD31F-7077-4B56-BF38-1998330B7C95}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7365E149-BF91-4F92-B8ED-0C1A23161FF4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{746D06B6-DD63-41A2-BA0E-1A660AB5AEDD}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{74E0E921-9FF0-4434-ADF3-CE80112B0771}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{751B1AF4-309F-43AA-B946-DA44175EC2F4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7523ACB8-6CAC-476D-9ACF-825310EE0CA6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7567BAAB-A36D-48CB-9F18-C525E214FA14}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{75681E32-83A5-4E42-AE2E-D2516FFECE78}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{76B93564-1E39-4A33-99A4-ED8361645AAF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{77E0A5BF-04EF-483C-B465-9CAC38EA8A54}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7B3BFFE4-7266-46BE-A4A1-7E744EB68F4A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7C2A4342-A30E-4034-8373-8BA0FF54E658}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7D3ACCF9-7E86-4ED3-BC81-B61F6804D06C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7D588B80-B753-498E-810E-6E2D90164C38}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7D6CEF26-138B-4771-A53F-F24756AC507E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7D98EB3D-EC72-459E-8D4F-89149F64BDCE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7D9D4456-14F6-40F9-B923-D6E05D11A458}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7DB2AC1D-053E-4C83-AA14-F7B3537DD4F0}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7E532229-64D6-4E14-A5BD-6215A119F668}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7E7F9B19-5CB7-48DA-BCF0-66076BE09496}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7EA613C2-AE73-48FE-BAC4-1BCBA53CFD05}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7EE12341-3982-4CC6-9850-40EF354D44F0}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{7FA11613-7FD8-4A33-BC06-2EC50594FEC1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{800E6328-B679-4E33-96EA-462D200CCCB9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{80A45B63-6DAE-47B5-9387-963968D202D4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{80CE29D6-4EDE-4A4F-8CD9-CEF4020595EB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{812DBBF9-9551-4169-BBC1-C0775319A085}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{817434B0-F6D8-43F6-A773-FE86C1AE5112}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{82365F7B-8619-4A38-BDD5-C0982442F65F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{82C4545B-7AFD-48C6-941A-078BCCAFA283}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{842EB8A9-A530-4BDF-900E-F5488742D480}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{84727029-D276-45C6-B606-4C3E35BE5127}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{848DAAC6-9A03-4EAF-ACC0-6C4CE801E400}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{84A37844-8884-4BD1-A92D-458593CB402B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{84B877AC-36E1-458D-A18A-F8E84510C591}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{86689EB9-8C4F-439F-8006-32CD5B8A8580}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{86C5CA2E-38DD-4CC9-84CF-DDD6F7E2D8C4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{875AFB98-43CB-47F3-AF3A-4642D6E41F98}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{876BEE90-B803-443B-8569-F4439108D179}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8780327C-0AE7-4FB7-B332-CED37935BCC5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{87B0F10A-EE1F-4057-83E6-29ED0BD9422D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{881122FC-24FE-494F-AE4B-8ECDFC625F6D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8860665F-8721-4F50-84FA-4A6B4EEFB7E5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{88C2B6E2-B981-460C-A6AA-899B3954D208}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{893A74CF-83E1-412B-9B2F-AC0022B9FE0D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{89C1224B-0770-4B65-8FAE-61D2BD27B63A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8B4F4741-3566-4A8F-90D5-1F045C5ECA31}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8B5301DD-C7E5-4E65-8CA8-59B687723137}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8B5AC48E-15DF-48B8-A491-5F9D73ABE889}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8C14CD5F-8510-486B-AA73-EB8ABCBE7997}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8CAB6840-9496-43EB-A471-B11307C81EB7}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8D894835-827A-44ED-BB61-359D23FCFB8B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8DBA3561-A637-44DB-8CE6-892FC0D3885B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8DFF9A6C-CAB5-433C-9E09-FBDB1D859AC5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8E080148-C3FD-4109-BE51-10988E7595A0}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8E375EAF-BAC6-4B93-8473-FF31C7022E98}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8E562ADF-146B-452E-993C-9FC71A1755AE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8ECB0A20-486E-4D77-B4A7-6F22A2542685}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{8FC7D725-E1EE-4C45-8C23-B92C4CB7AF5E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{919ED5F1-FD35-4E9E-B5AA-849FC98055D2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{927EB5E1-46DA-4051-B1F9-3F2DAAF97EDB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{92B1C7DA-25AB-4D7B-AD0B-59835D1F425F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{92DF265E-DE5A-4156-8AD2-0FF9DDEF3165}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{939E6DAC-1D21-4C4A-9AF2-FF78C98A83BB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{93B742A2-33DD-4679-9EAC-A7A1C3B99E08}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{93DB48B8-A271-4B2F-99FE-96FBC96608C1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{942FFA38-48F6-4FC7-A673-3FBA3FC15CAA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{94363184-8D40-4BA8-A677-645532228D0B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{94E0C76A-1281-4732-8F18-0FBD4BF07293}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{94E75CF4-FFA7-40CE-A4A7-36EA336A0320}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9586EECA-D420-4BB2-B181-BCF51A5FD4D5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{95E05780-E9CD-4BC3-815A-751C5D1D1CF4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{96054DC0-757B-4093-B866-3313A303ACA2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{96E07C16-D32B-43EC-BB53-AC98DA951B52}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{97D21CF7-BEDD-4B10-B83F-DE4590E39481}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{980E4EF5-A4C1-4435-BB0C-23C2DDCF3513}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{984D063C-DAEF-470B-B7CA-536CCEB3E88C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{986D0C31-0DCF-473E-9F38-08742744B0DF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{98B64454-B7FF-4FD0-9E5A-F97FBECF054B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{98C65863-4737-4288-84DD-A32A33B244D4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{998D4803-5AE5-472E-8089-AE19ECA5C6FD}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{99A99946-3A6B-4CF1-8B56-86069C14E9F8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{99C9B7AC-B84C-4D5F-BC88-D66B06ED947C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9A0B6B30-7F50-4F98-A1A1-9ED8E93BBAE7}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9A56CD3F-C700-47DC-93D7-C30AE9F6DAE6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9AB36D4C-27AC-42D6-80A6-8FA56E4274EE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9AC2B4DF-B445-45F4-A8CA-93C6A45F20C0}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9AE8BA17-E11D-4D40-BFEA-0ADABCA15738}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9B3CFC1D-B06F-427E-8BEF-AECDAB824009}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9B73E04B-6382-45FC-AED0-6BA3481C324B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9CBBC7CB-3291-46C3-B8E4-82D1088DB50F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9CDACE82-772F-4FC9-935E-7DCEB90BED97}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9D239A05-480E-4466-B78C-97196B2638D0}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9D307202-1936-48B5-AA89-947D2F1F25C5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9D9702E6-636E-4481-A682-5F358A10D391}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9EE161C8-6493-4D9C-B700-0ABCA1658463}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{9F39CCA6-8BB2-4B59-8956-02002155D71B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A061176F-21DB-4F2E-BFF0-127F5B4AD0F2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A0C4FEC4-DE6B-4920-9071-4FBB61773181}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A11E8525-0681-47D5-AFBE-1D36B3FA8468}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A1806607-9A18-47A9-BC20-9B77648D4D83}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A2257D08-F13A-498F-AC44-7B004E83705E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A2320BB2-77AE-4E5F-9994-1F0A9F7D898F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A2D2E003-15AD-4B76-83DA-3AED896995C7}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A482EFE2-CEAD-42F5-AF14-9A02FF0FC267}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A5CDAB25-3380-4997-907F-8856C9E6125E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A60828B5-D89A-42DE-9502-2A80F627D454}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A6985C40-B1B5-4FE5-8BE7-335936EA82D9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A7D2D9A7-79DE-416B-B854-76ABB2F43D30}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A8148CC5-3574-42DD-AA9E-F695B404C1B9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A89D4BFA-DA5D-4CBB-B1C0-3CB989C020F5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A8B19D07-2F64-479B-92ED-61D6840CC892}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A8B5A9C0-CF02-4EC6-AADD-5A3CF4A1C501}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A94AFCD0-C3B9-41D9-BE96-2454EF4F73BE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A98BFF03-4486-471E-8808-51039F83CD18}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{A9DC44F8-A234-42F6-AF9A-B0F3429666BE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AA081460-E8E9-4AD8-8867-A94A359C542B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AA312481-C706-4FE1-ADEB-889071D1AE7B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AADE4CA2-BF04-4D55-9F49-11A6D9E6855F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AB7C06C1-68CA-4DAA-B187-1908849B0CE1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{ABEB54A2-880F-4E0C-B86B-27C260150B56}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AC445C46-FF3D-4748-BD8E-7685D7CB3ECE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AC755BBC-34A4-4595-935E-7A521D7BCF26}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AD9C60FC-533C-4A11-8D77-001BA43993D5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AD9CB908-F0D1-4568-9ABE-F7CF720D39CC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{ADCBB51E-4E03-4555-895C-555A1D1E6C6E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AE25AF2C-8B0B-49CF-8DD2-D62E526A1AD9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AE320D56-2685-4DB4-A5E3-45BCEF692634}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AE5D126F-04ED-41B5-BE01-9FBA4704075B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AE77B096-BFCF-422A-966F-6AF0F17285D1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AEEF90AD-6E82-4911-9339-D32F6947B034}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AEF43226-A2E3-49AD-981C-7A3879EC9EC4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{AFE10116-DE5C-4823-90D0-4BAD072B10D9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B0971F75-4690-4924-897E-FA9E249FDF1A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B17009BF-5B7C-4913-929D-7A1E7847E36E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B22F32DC-BE59-4599-A92E-DD6E8297D3E9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B2560234-E8A6-420A-8BD0-F49FCF795B74}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B2F03D00-96E1-4210-819C-145FA313D218}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B46FB30F-2467-4FC3-B49D-FB786AC87B0B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B47287DE-B073-40B9-8FF2-CCBA11479B11}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B4A30082-0BBB-40F0-A4A9-5BE3E24F8BB9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B5C09EF3-7621-4EC9-9318-FCB213A1E1CF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B5C9B9FF-81EE-4266-9E99-690BF431E647}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B80E75E5-A7CF-41DF-9305-9F13EBEA78B2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B88C5056-1307-4CD7-8F3A-071CB867DF0C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B89804B0-6033-45BF-8196-00439100BA06}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B8A830C2-F808-4C17-8189-FD6EC3506558}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{B9014A8B-71E2-4B11-8EA0-6535CF00FE5C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BAD2F6D7-D0D5-4C71-A820-072E77AE1BF1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BAF09AC9-F601-401E-978C-BEE29CB0845B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BB02C864-994C-4BB5-8DC4-F42C84C0FA19}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BB7A923C-819B-4CF2-8CDE-1F806DCC3477}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BB8BCD0E-3D2D-43B9-AA08-C177DEF9BD3D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BBC393B1-CA84-44C2-98E3-E5FBBF35D303}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BC4AD062-E039-4CB4-AA0A-F036A08EB1DF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BD5658E7-4744-4157-B61E-583A82D7B59C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BE2154A5-42AB-49E7-A4CC-C14E217B4C19}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{BF05FA4D-174A-475E-8D49-AB69D7630FE5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C016E885-0C1E-436D-9765-D5044A3EEB5F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C0448740-F1C3-42F9-A508-C0626693EA77}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C05826F5-8588-4BDC-838E-E9A4AEAE8841}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C09B4D15-27E0-485A-834B-7ADD4775BF76}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C09E7483-DB92-4FFF-A1F3-A306B82A5C73}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C0A16AC1-833D-4351-9ADA-BF6F05D1C618}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C13A7316-FBAC-4FCA-ADD8-87EBF5E8F8C7}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C19AE41B-AE4F-4E84-A920-FD9DA9648988}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C281B43E-D01D-4BAC-BEE0-9A30CD9B4B21}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C3CC0E8A-3AD8-4EDC-AEE7-43F08D8912A8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C45CE601-9C68-4CAB-BD5E-1AE614DDD3FF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C5133D18-2658-4AF4-AE93-E9C47F0C3BFB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C5354F0B-00A2-4D97-A822-5585F60D477C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C5D07BF5-051A-432C-824D-1EF934217229}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C5F1E557-3543-49F6-B8FC-876EF48032DE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C600A5C0-0863-4FA3-95AC-C891CD58F44D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C70C8430-F884-403D-9A9F-AB8F2083BBA8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C7196343-6E26-4C31-9D1B-07F1C34F5E0B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C77EC8D8-C63D-4EAD-A26B-9308DAD9D2D4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C796D567-8971-4424-A0E0-7F2D001E0147}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C7C21134-E85A-4E88-A3D4-3BC862893171}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C804821B-23D0-4D17-9183-4BEDC8F3A6AF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C85C3942-7EC6-4997-8107-CD1960F8638E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C87BA5DE-5FD2-4AFD-BC57-438C1C12C5AB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C8B667D0-583B-4441-AC94-5FC56B719248}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C8D41AFC-E9AB-4088-BF94-606F095622DF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C8DF67B3-A0B7-4FC5-87D7-E5B901EF92F5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C965561B-7E70-418F-B16F-85ECCEC9628C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C96974B9-D241-460B-8373-9BA42579C0DB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C98690B6-AACF-4C7E-9798-6416291EFE5A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C9D68527-FA63-4499-B637-AC068F62DD37}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{C9E3B47B-F0C0-4E77-8383-5E4828B583A8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CA7080B8-087F-4C82-823B-BB2A1AB91AF0}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CACB7A6E-0E81-4DCA-B76A-F3AFC964D878}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CB51E2C5-DD3C-4E12-BDC4-F0A2785F287C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CB763FF0-8446-4B56-B148-F2DA3F6264A9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CBF828BE-E942-48EB-8169-CC92CA895EFF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CC4C93F5-B905-4917-A345-EC71008803D4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CC7E0D34-1D26-4792-B915-479C542AAF05}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CC9D9898-088A-4908-934E-B1994741EDEC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CC9E570B-4C36-4A83-A17B-9F11DEF06C5F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CCB19F8A-ED85-4CFB-893F-56D16A684D8C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CD0BC804-8F6A-4D16-9388-77969469F631}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CD1B54B8-24A1-43F8-B02D-CF320CF6E786}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CD2F495B-963D-4732-B458-CEDF347E77BC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CD8181F8-5BF4-4238-BFE5-D4C4752C8BC9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CEF5D1D3-10C2-492A-ACF1-5BA1FA8E3BBF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CEF9A537-F0BB-4CFE-BE9F-1AF21E03FB7A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CF36D486-79F6-47CB-804C-15D22BC687F1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{CF9E9FD5-B912-4064-918E-61101B9992B2}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D2C03389-D8BC-42A0-9C56-2D0D0504CE9D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D3CC2902-4085-40C0-B865-028DA6198BCF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D3DD8318-F0C4-4C53-BA3A-B7DC93516FF4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D3F4F5EB-8BB6-4F81-9BAC-7DCDBBDABCC6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D46DBDD0-BA2C-4866-8908-30F60E0EA180}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D4EABC90-F31F-47D6-A96B-5CDAF54C89F5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D61EDC4A-AD09-461E-BFD3-34A378F316E4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D6387E22-013D-4CD2-BEDA-7CB0CE6199B1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D67B4624-19D9-4738-A735-D9112DC98425}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D6919F35-15D8-4615-8EE2-3D82C49D5AC1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D88E3DB5-D8A2-4F91-8789-19DE2863C05C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D8C40280-0358-4541-A69C-439E3E0CEE9A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D9096B23-5809-4051-BA93-19C692DDD51F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D90CC1DA-FB80-457C-9DDF-C83A98A99F32}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D9531E5A-B550-4A04-BE0F-7C58D2773CDA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{D95BD019-F67D-4270-B92A-BF30F7906EA7}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DA14D155-A9EC-432A-A10D-1FCC594D5417}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DAD60713-5913-418E-84D9-235584AA245D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DAE55DF6-6DD5-41D4-9B25-E919D157B0AC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DAFB1DFB-EFE5-4E57-A75A-B0ACE0CF5C8A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DBE70AB0-5A7E-4A6F-9035-A432567DA5EC}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DC7EE7DF-C599-49FD-ADF4-70F01E70842A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DCF0C64E-E9FA-45C0-A3E1-25EE59503D9B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DD23BFED-41DA-45F0-A510-005D05CAF232}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DE26ACED-9919-424D-BBD8-93D9BD47CA7E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DE2B41D2-4CAE-4B49-ADFF-D8528ECD2DEA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DFA47066-A1BD-4B28-9F7F-10F681635B82}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{DFF0A094-BDFF-4C64-B87C-8EC96833935F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E10DFDB6-62DB-4B9D-A6A1-DC444D75A22E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E1828213-618A-457F-AD3F-2C934202601A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E1923936-BAE7-42D9-96A4-21614F374CC8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E233642E-A710-45C5-8B05-D9AACF3C6871}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E25197B0-9918-4FD3-81B4-4DEAA22317B6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E3A347CC-18C5-48D2-973C-C00472EFE83F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E3EBD73F-449A-425A-B44F-EBBC35DFE7FD}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E495971C-6A3F-4C33-A5DA-12B221A04B7B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E5A5F8EC-5024-4B67-93C9-3868E2EDC123}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E5FAE328-9849-45F7-A468-2DC8DB502D92}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E64C53A3-BB31-4A70-B57D-4BF4A8565688}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E69EFCFD-0CAB-4093-97FE-C17643705613}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E6E2F7D0-7FBD-432A-BA8E-D3EFCDD24B58}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E70D3E21-F625-4DB5-AEF9-D8F41891FF33}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E72C0DFA-14EA-4FF6-B9DE-7173F965B84C}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E8E81C7E-EB2B-4FFE-8690-D7D10F65ABC5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E978550A-678B-4C51-A6A3-6FAAD19FDD17}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{E9D4B870-B7C7-4CB7-93FE-5BC3EC039A15}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{EA60C65D-8419-4AB8-A684-93BA8642696D}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{EA6A6404-DEFF-42C9-BB79-8F8C7EF07F08}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{EAE469B0-F6C8-4036-9F69-53973E270CDB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{EB2E5344-2AA1-4BDF-ABDF-31E6C865D114}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{EBA5A3A7-0C57-4B5F-BA03-D5657CC31478}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{ED1AE6CB-168C-4A9F-BB08-3E1CF70F4251}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{ED78DBE0-2410-4CD3-8E5C-630EFFA28634}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{EECEBE8E-4C3C-422B-AFF8-2470F2773B4B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{EF18C7D4-33E8-41D8-A6F8-21BA49D0C777}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F000B3DD-92E6-4882-8DEC-08CF68F3204A}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F0320F5B-0B23-42BD-B974-ACB2747A72EF}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F03A1D07-47D8-4D5B-80CE-D9B513DC880F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F0DAE3FB-DE1F-4555-BA7E-F86713D96834}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F102A5F8-69E7-4599-9D63-D2FA7928230B}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F11802D8-C9DC-4E7B-B818-E68DB065C0C3}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F1E428D5-286D-45C8-A6BF-6FBAB1A1D2BB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F21106C6-D854-47B2-8167-603A9C0AEC55}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F32CD3F6-6886-4954-822C-FB0278C3E684}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F33C1864-5C85-4BDC-B97A-74CDAC6601B9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F36C6501-7B41-401C-873B-9215665F03F5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F3BEFF44-A824-429F-8786-D7936AD8C987}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F44305BF-AF3A-4956-9A22-5BD7B7AA9A06}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F4CDFBCB-8340-432A-A35B-C43E30C9E5C9}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F4F9B9F4-E882-45FA-BD7B-9B7187B38BF6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F536C5DE-55C2-4D29-9245-1149BB0671DE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F58A71B2-D935-442D-88D1-68B7FA356ADE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F595B60A-F7EF-4E28-BE56-2672087CE2E5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F5DFCD50-B109-4D4F-8F8A-BAD6EA706A54}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F7AF317C-0F02-41C9-97BD-FC6860EE5115}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F7ED3942-B706-4FF4-9EDF-9BC618AD8696}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F930B54F-5FFE-43D3-9F77-742D3AD9AA98}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F94F75FC-BFF7-4EF6-9BCA-AA53F5049BCB}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{F9AA9C08-E138-4892-897D-059D23C3205E}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FA83B92C-496F-4D83-8A76-756DDBB489F6}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FAA434D1-FC05-49D6-8F0C-3A2C7AE40C20}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FAC4896C-81BA-44C0-B85A-607618DDC699}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FB2F7372-AC63-4DAC-A996-3CFF9B19F4C1}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FB5D6DF2-F889-4569-B880-FAF820692023}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FB9CFDC8-4EC5-4957-9878-275AD8A83E74}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FC28FE06-1362-46F7-8AD6-432F3F763A11}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FC4B40AD-8CDA-4EC3-AFB9-89F12030B0B8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FCA42F27-72C0-4DDD-92D0-9FBBAA385203}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FCC8F8C4-907D-4A2E-BA02-8C774D62DDF8}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FCEB266C-1B3E-4C1E-872E-048B087A5197}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FD00789A-AF45-458A-BB8A-689F953FD2F5}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FD986315-5E70-466B-A1D6-39B8619EA33F}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FE24B9E7-8276-46E6-8531-74914B725824}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FEDCD16D-77AE-43D8-954F-E1E2FB06AE12}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FF7A8C04-73D9-435A-9A5C-EE1DD88FDCFA}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FF906471-E10B-4D6E-AA9F-FFAB288782BE}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FFA7D5FF-C209-44C3-9501-7B10224E70A4}
Successfully deleted: [Empty Folder] C:\Users\Isabelle\appdata\local\{FFCAA418-F873-456C-8A4E-FB52E7647F59}



~~~ FireFox

Successfully deleted: [File] C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\searchplugins\bing-zugo.xml
Successfully deleted the following from C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\prefs.js

user_pref("extensions.searchtoolbar@zugo.com.install-event-fired", true);
user_pref("myqna.searchquotes", "Y");
Emptied folder: C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\minidumps [120 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 09/05/2013 at 14:38:43.67
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

Link to post
Share on other sites

AdwCleaner[s0].txt

 

 

# AdwCleaner v3.002 - Report created 05/09/2013 at 14:55:27
# Updated 01/09/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Isabelle - ISABELLE-PC
# Running from : C:\Users\Isabelle\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\elubhlst.default\prefs.js ]

Line Deleted : user_pref("extensions.enabledItems", "helperbar@helperbar.com:1.0,{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6,{e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.2,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.2[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none}  #psa-teoma-result .ptbs .WRCN,  #teoma-results .ptbs .WRCN {display:inline !important; background: url(\"IMAGE\") right no-[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("myqna.searchquotes", "Y");

-\\ Google Chrome v

[ File : C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2704 octets] - [05/09/2013 14:46:48]
AdwCleaner[s0].txt - [2645 octets] - [05/09/2013 14:55:27]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2705 octets] ##########
 

Link to post
Share on other sites

Mbam log

 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.09.05.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Isabelle :: ISABELLE-PC [administrator]

9/5/2013 3:09:16 PM
mbam-log-2013-09-05 (15-09-16).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 233642
Time elapsed: 13 minute(s), 33 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

Link to post
Share on other sites

Download OTL to your Desktop

  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Please tick the Scan All users. Next, click the Quick Scan button. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.
Link to post
Share on other sites

I got the OTL.txt but the Extras.txt didn't come up.

 

 

 

OTL logfile created on: 9/6/2013 2:20:36 PM - Run 3
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Isabelle\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16660)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
1.93 Gb Total Physical Memory | 1.13 Gb Available Physical Memory | 58.52% Memory free
3.85 Gb Paging File | 1.91 Gb Available in Paging File | 49.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 224.78 Gb Total Space | 83.50 Gb Free Space | 37.15% Space Free | Partition Type: NTFS
Drive D: | 224.77 Gb Total Space | 224.38 Gb Free Space | 99.83% Space Free | Partition Type: NTFS
 
Computer Name: ISABELLE-PC | User Name: Isabelle | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013/09/03 15:28:46 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Isabelle\Desktop\OTL.exe
PRC - [2013/08/30 03:47:34 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2013/08/30 03:47:33 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2013/07/05 11:10:50 | 001,062,880 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\ApVxdWin.exe
PRC - [2013/07/04 08:39:16 | 000,108,512 | ---- | M] (Panda Security) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\WebProxy.exe
PRC - [2013/05/08 03:17:22 | 000,642,664 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
PRC - [2013/05/07 10:18:52 | 007,801,344 | ---- | M] (Yuna Software) -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\Messenger Plus! for Skype.exe
PRC - [2013/05/07 10:16:21 | 000,128,000 | ---- | M] (Yuna Software) -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
PRC - [2013/01/23 17:02:11 | 000,802,304 | ---- | M] (Yuna Software) -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
PRC - [2012/11/19 18:11:38 | 000,177,440 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PsCtrlS.exe
PRC - [2012/11/16 13:52:52 | 000,173,344 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\TPSrvWow.exe
PRC - [2012/09/21 08:25:02 | 000,202,016 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PavFnSvr.exe
PRC - [2012/03/23 14:25:24 | 000,087,040 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2011/09/22 14:43:28 | 000,645,048 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
PRC - [2011/04/13 12:44:10 | 000,313,664 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\pavsrvx86.exe
PRC - [2011/03/07 15:27:06 | 000,225,088 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\AVENGINE.EXE
PRC - [2011/01/17 18:37:40 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2011/01/17 18:37:40 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010/08/16 14:54:46 | 000,028,992 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\psksvc.exe
PRC - [2009/10/09 22:06:50 | 000,047,976 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
PRC - [2009/08/12 15:06:00 | 000,662,016 | ---- | M] (Sonix) -- C:\Windows\vsnp2uvc.exe
PRC - [2009/05/22 10:37:42 | 000,024,576 | ---- | M] () -- C:\Windows\snuvcdsm.exe
PRC - [2008/06/19 12:59:50 | 000,108,288 | ---- | M] (Panda Security S.L.) -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PsImSvc.exe
PRC - [2008/02/04 17:26:48 | 000,062,768 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Common Files\Panda Security\PavShld\PavPrSrv.exe
PRC - [2007/03/29 15:41:26 | 000,222,128 | ---- | M] (Macrovision Corporation) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2012/03/18 12:10:52 | 008,499,712 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\QtGui4.dll
MOD - [2012/03/18 12:07:57 | 002,347,520 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\QtCore4.dll
MOD - [2012/03/18 12:07:57 | 000,200,704 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\imageformats\qjpeg4.dll
MOD - [2012/03/18 12:07:55 | 000,863,744 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\QtNetwork4.dll
MOD - [2012/03/18 12:07:54 | 000,026,624 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\imageformats\qgif4.dll
MOD - [2012/01/15 17:50:08 | 000,370,688 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\libsndfile.dll
MOD - [2012/01/15 17:50:00 | 000,390,656 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\lame_enc.dll
MOD - [2011/09/27 07:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 07:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/09/06 23:39:43 | 000,985,088 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
MOD - [2011/03/17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/10/20 15:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2009/05/22 10:37:42 | 000,024,576 | ---- | M] () -- C:\Windows\snuvcdsm.exe
MOD - [2007/02/14 13:55:12 | 000,165,424 | ---- | M] () -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\MiniCrypto.dll
MOD - [2004/05/19 11:33:12 | 000,507,904 | ---- | M] () -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\LIBXML2.DLL
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2013/08/30 03:47:33 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013/05/27 01:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:64bit: - [2009/12/27 21:10:06 | 002,704,704 | ---- | M] (AuthenTec, Inc.) [Auto | Running] -- C:\Program Files\Fingerprint Sensor\ATService.exe -- (ATService)
SRV:64bit: - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2009/07/13 21:39:20 | 000,009,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mqsvc.exe -- (MSMQ)
SRV - [2013/08/20 14:29:35 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/08/16 22:56:01 | 000,117,656 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/07/25 08:52:52 | 000,162,672 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/07 10:16:21 | 000,128,000 | ---- | M] (Yuna Software) [Auto | Running] -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe -- (MsgPlusService)
SRV - [2012/11/19 18:11:38 | 000,177,440 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PsCtrlS.exe -- (Panda Software Controller)
SRV - [2012/11/16 13:52:52 | 000,173,344 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\TPSrvWow.exe -- (TPSrv)
SRV - [2012/09/21 08:25:02 | 000,202,016 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PavFnSvr.exe -- (PAVFNSVR)
SRV - [2012/03/23 14:25:24 | 000,087,040 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2011/09/22 14:43:28 | 000,645,048 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe -- (vpnagent)
SRV - [2011/04/13 12:44:10 | 000,313,664 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\pavsrvx86.exe -- (PAVSRV)
SRV - [2010/12/08 15:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/11/29 13:11:29 | 003,989,568 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2010/10/09 16:28:41 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/08/16 14:54:46 | 000,028,992 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\psksvc.exe -- (PskSvcRetail)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/06/19 12:59:50 | 000,108,288 | ---- | M] (Panda Security S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\PsImSvc.exe -- (PSIMSVC)
SRV - [2008/02/04 17:26:48 | 000,062,768 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Panda Security\PavShld\PavPrSrv.exe -- (PavPrSrv)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2013/08/30 03:48:10 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013/08/30 03:48:10 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013/08/30 03:48:10 | 000,204,880 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013/08/30 03:48:10 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013/08/30 03:48:10 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013/08/30 03:48:10 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013/08/30 03:48:09 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013/08/30 03:48:09 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013/02/12 00:12:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2012/12/13 14:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/03/26 18:57:36 | 000,071,432 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\amm6460.sys -- (AmFSM)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/09/22 14:29:18 | 000,022,264 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpnva64.sys -- (vpnva)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 07:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/11/20 06:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010/10/02 19:33:35 | 000,007,808 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\fuj02b1.sys -- (FUJ02B1)
DRV:64bit: - [2010/10/02 19:26:25 | 000,007,296 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\fuj02e3.sys -- (FUJ02E3)
DRV:64bit: - [2010/07/30 15:18:04 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2010/07/30 15:18:02 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2010/07/30 15:18:00 | 000,026,624 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2010/07/30 15:17:56 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2010/06/25 16:08:10 | 000,036,928 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2010/06/22 18:20:18 | 000,030,792 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\pavboot64.sys -- (pavboot)
DRV:64bit: - [2010/01/28 19:55:04 | 000,086,120 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2009/12/28 04:17:28 | 000,736,840 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV:64bit: - [2009/11/01 19:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009/10/27 12:07:42 | 000,048,136 | ---- | M] (Panda Security, S.L.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\ShldFlt.sys -- (ShldFlt)
DRV:64bit: - [2009/10/09 19:16:28 | 000,293,936 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/10/05 09:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/09/17 19:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:64bit: - [2009/09/04 16:44:46 | 003,531,776 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:26:13 | 000,189,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mqac.sys -- (MQAC)
DRV:64bit: - [2009/06/24 15:31:30 | 000,021,104 | ---- | M] (FUJITSU LIMITED) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\FBIOSDRV.sys -- (FBIOSDRV)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008/08/28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2005/01/04 23:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
 
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=Z039&form=ZGAPHP
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 60 3E D5 4D 21 DC CB 01  [binary data]
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\..\SearchScopes\{76E9350E-0392-9C19-F83A-99BC015260AF}: "URL" = http://www.bing.com/search?q={searchTerms}&pc=Z039&form=ZGAIDF
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local;*.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..extensions.enabledAddons: %7B0df7b3bb-9581-44bb-835f-061a29ec8a46%7D:2.1.20110621
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.11
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:8.0.1497
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@millisecond.com/npInquisit,version=3.0: C:\Program Files (x86)\Millisecond Software\Inquisit 3.0 Mozilla Plugin\npInquisit_3060.dll File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@millisecond.com/npInquisit,version=3.0: C:\Program Files (x86)\Millisecond Software\Inquisit 3.0 Mozilla Plugin\npInquisit_3060.dll File not found
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Isabelle\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Isabelle\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Isabelle\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Isabelle\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Isabelle\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Isabelle\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin.dll (Amazon.com, Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\ [2011/01/27 20:11:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2011/03/02 20:35:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2013/09/02 20:40:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/08/16 22:55:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/08/16 22:55:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011/03/02 20:35:24 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/08/16 22:55:47 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/08/16 22:55:52 | 000,000,000 | ---D | M]
 
[2010/09/30 10:39:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Isabelle\AppData\Roaming\mozilla\Extensions
[2013/08/18 20:53:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Isabelle\AppData\Roaming\mozilla\Firefox\Profiles\elubhlst.default\extensions
[2013/04/29 22:27:46 | 000,000,000 | ---D | M] (rein) -- C:\Users\Isabelle\AppData\Roaming\mozilla\Firefox\Profiles\elubhlst.default\extensions\rein@notiz.jp
[2013/08/18 20:53:20 | 000,074,744 | R--- | M] () (No name found) -- C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\extensions\utopia_ffse_white_options@www.theme-oasis.org.xpi
[2011/06/29 10:02:08 | 000,166,900 | ---- | M] () (No name found) -- C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\extensions\{0df7b3bb-9581-44bb-835f-061a29ec8a46}.xpi
[2013/08/18 20:53:20 | 003,064,679 | R--- | M] () (No name found) -- C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\extensions\{20C3BDFF-DA68-468d-8D9A-F5A6C76B0F9E}.xpi
[2013/07/31 13:12:37 | 000,824,302 | ---- | M] () (No name found) -- C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/08/10 19:43:17 | 000,275,449 | ---- | M] () (No name found) -- C:\Users\Isabelle\AppData\Roaming\mozilla\firefox\profiles\elubhlst.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2013/08/16 22:55:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/08/16 22:55:48 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/08/16 22:55:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2013/08/16 22:55:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/08/16 22:55:46 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/08/16 22:56:03 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/09/02 20:40:53 | 000,000,000 | ---D | M] (avast! Online Security) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Isabelle\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Isabelle\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Isabelle\AppData\Local\Google\Chrome\Application\29.0.1547.66\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: AmazonMP3DownloaderPlugin (Enabled) = C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\Isabelle\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Isabelle\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
CHR - Extension: YouTube = C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.63_0\
CHR - Extension: Skype Click to Call = C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.10.0.13089_0\
CHR - Extension: Skype Click to Call = C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.8.0.12323_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Gmail = C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-3473226756-488634545-1885923755-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [ATSwpNav] C:\Program Files\Fingerprint Sensor\ATSwpNav.exe (AuthenTec, Inc.)
O4:64bit: - HKLM..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe (Sonix)
O4:64bit: - HKLM..\Run: [sNUVCDSM] C:\Windows\snuvcdsm.exe ()
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [APVXDWIN] C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\APVXDWIN.EXE (Panda Security, S.L.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [indicatorUtility] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [MessengerPlusForSkypeService] C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
O4 - HKLM..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
O4 - HKLM..\Run: [sCANINICIO] C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2014\Inicio.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe (Sonix)
O4 - HKLM..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-19..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3473226756-488634545-1885923755-1000..\Run: []  File not found
O4 - HKU\S-1-5-21-3473226756-488634545-1885923755-1000..\Run: [AdobeBridge]  File not found
O4 - HKU\S-1-5-21-3473226756-488634545-1885923755-1000..\Run: [Facebook Update] C:\Users\Isabelle\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-21-3473226756-488634545-1885923755-1000..\Run: [iSUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\RunOnce: [1] C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\mbam-chameleon.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab (Java Plug-in 1.7.0_15)
O16 - DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab (Java Plug-in 1.7.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab (Java Plug-in 10.25.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 128.192.1.9 128.192.1.193 128.192.1.19
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{79548C99-5B9F-4443-A406-4BB9F73E7D00}: DhcpNameServer = 128.192.1.9 128.192.1.193 128.192.1.19
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A52B6187-A9EC-41E8-8658-C9260D743EC2}: DhcpNameServer = 192.168.42.129
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-3473226756-488634545-1885923755-1000 Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\avldr: DllName - (avldr64.dll) - C:\Windows\SysNative\avldr64.dll (On-Access Anti-Malware Scanner Sync)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013/09/05 15:01:44 | 000,000,000 | ---D | C] -- C:\Windows\FltMgr
[2013/09/05 14:46:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/09/05 14:23:52 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/09/05 08:58:18 | 001,028,757 | ---- | C] (Thisisu) -- C:\Users\Isabelle\Desktop\JRT.exe
[2013/09/04 15:59:50 | 000,688,992 | R--- | C] (Swearware) -- C:\Users\Isabelle\Desktop\dds.com
[2013/09/03 15:28:34 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Isabelle\Desktop\OTL.exe
[2013/09/03 15:18:47 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Isabelle\Desktop\HijackThis.exe
[2013/09/02 16:32:23 | 000,000,000 | ---D | C] -- C:\Users\Isabelle\AppData\Local\Panda Security
[2013/09/02 16:30:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
[2013/09/02 16:30:15 | 000,030,792 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\pavboot64.sys
[2013/09/02 16:29:31 | 000,046,640 | ---- | C] (Panda Software) -- C:\Windows\SysNative\pavcpl64.cpl
[2013/09/02 16:29:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Antivirus Pro 2014
[2013/09/02 16:28:49 | 000,446,464 | ---- | C] (eHelp Corporation.) -- C:\Windows\SysWow64\HHActiveX.dll
[2013/09/02 16:28:46 | 000,837,920 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\PavSHook64.dll
[2013/09/02 16:28:46 | 000,545,056 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavSHookWow.dll
[2013/09/02 16:28:46 | 000,323,392 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\TpUtil64.dll
[2013/09/02 16:28:46 | 000,202,048 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\TpUtilWow.dll
[2013/09/02 16:28:46 | 000,117,024 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\PavLspHook64.dll
[2013/09/02 16:28:46 | 000,090,944 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\PavIpc64.dll
[2013/09/02 16:28:46 | 000,087,328 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavLspHookWow.dll
[2013/09/02 16:28:46 | 000,066,880 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavIpcWow.dll
[2013/09/02 16:28:46 | 000,025,344 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\sysHelper32.dll
[2013/09/02 16:28:46 | 000,024,544 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\sysHelper64.dll
[2013/09/02 16:28:44 | 000,071,432 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\amm6460.sys
[2013/09/02 16:28:44 | 000,064,768 | ---- | C] (On-Access Anti-Malware Scanner Sync) -- C:\Windows\SysNative\avldr64.dll
[2013/09/02 16:28:44 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\PAV
[2013/09/02 16:28:43 | 000,000,000 | ---D | C] -- C:\Users\Isabelle\AppData\Roaming\Panda Security
[2013/09/02 16:28:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2013/09/02 16:28:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
[2013/09/02 16:28:27 | 000,048,136 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\ShldFlt.sys
[2013/09/02 16:28:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Panda Security
[2013/09/02 15:24:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[2013/09/02 15:19:41 | 000,000,000 | ---D | C] -- C:\Users\Isabelle\Desktop\mbar
[2013/09/01 20:53:14 | 012,907,592 | ---- | C] (Malwarebytes Corp.) -- C:\Users\Isabelle\Desktop\mbar-1.07.0.1005.exe
[2013/08/31 15:44:10 | 000,000,000 | ---D | C] -- C:\Users\Isabelle\Desktop\mbam-chameleon-1.62.1.1000
[2013/08/21 13:37:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/08/21 13:35:55 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/08/21 13:35:43 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/08/21 13:35:43 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/08/16 22:55:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/08/13 16:01:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/08/13 16:01:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
 
========== Files - Modified Within 30 Days ==========
 
[2013/09/06 14:28:03 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/09/06 13:51:32 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000UA.job
[2013/09/06 13:51:22 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000UA.job
[2013/09/06 13:50:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/06 09:58:07 | 000,008,627 | ---- | M] () -- C:\Windows\SysWow64\PAV_FOG.OPC
[2013/09/05 21:44:01 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000Core.job
[2013/09/05 16:44:03 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000Core.job
[2013/09/05 15:07:18 | 000,014,112 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/05 15:07:18 | 000,014,112 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/05 14:57:39 | 1550,409,728 | -HS- | M] () -- C:\hiberfil.sys
[2013/09/05 08:59:34 | 001,037,222 | ---- | M] () -- C:\Users\Isabelle\Desktop\AdwCleaner.exe
[2013/09/05 08:58:29 | 001,028,757 | ---- | M] (Thisisu) -- C:\Users\Isabelle\Desktop\JRT.exe
[2013/09/04 17:53:56 | 000,018,974 | ---- | M] () -- C:\Users\Isabelle\Desktop\tumblr_ltf16zDsPO1qbonzwo2_250.jpg
[2013/09/04 16:00:03 | 000,688,992 | R--- | M] (Swearware) -- C:\Users\Isabelle\Desktop\dds.com
[2013/09/04 15:07:54 | 000,002,341 | ---- | M] () -- C:\Users\Isabelle\Desktop\Google Chrome.lnk
[2013/09/04 14:13:13 | 000,198,742 | ---- | M] () -- C:\Users\Isabelle\Desktop\tumblr_ma5fyoTuK91r93ttjo1_500.jpg
[2013/09/03 15:28:46 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Isabelle\Desktop\OTL.exe
[2013/09/03 15:18:56 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Isabelle\Desktop\HijackThis.exe
[2013/09/03 15:03:42 | 000,001,282 | ---- | M] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
[2013/09/02 20:41:10 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/09/02 16:30:48 | 000,000,262 | ---- | M] () -- C:\Windows\SysNative\PavCPL64.dat
[2013/09/02 16:30:47 | 000,002,109 | ---- | M] () -- C:\Users\Isabelle\Application Data\Microsoft\Internet Explorer\Quick Launch\Panda Antivirus Pro 2014.lnk
[2013/09/02 16:30:16 | 000,002,211 | ---- | M] () -- C:\Users\Public\Desktop\Panda Antivirus Pro 2014.lnk
[2013/09/02 15:56:12 | 000,000,335 | ---- | M] () -- C:\local.conf
[2013/09/01 22:22:09 | 000,001,704 | ---- | M] () -- C:\Users\Isabelle\AppData\Local\Adobe Save for Web 12.0 Prefs
[2013/09/01 22:22:08 | 000,086,574 | ---- | M] () -- C:\Users\Isabelle\Desktop\Wallet-2.jpg
[2013/09/01 22:16:55 | 000,059,604 | ---- | M] () -- C:\Users\Isabelle\Desktop\Wallet-1.jpg
[2013/09/01 20:54:11 | 012,907,592 | ---- | M] (Malwarebytes Corp.) -- C:\Users\Isabelle\Desktop\mbar-1.07.0.1005.exe
[2013/08/31 09:47:32 | 000,002,044 | ---- | M] () -- C:\Users\Isabelle\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013/08/30 21:50:07 | 000,885,880 | ---- | M] () -- C:\Users\Isabelle\Desktop\IMG_4406.JPG
[2013/08/30 03:48:10 | 001,030,952 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/08/30 03:48:10 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/08/30 03:48:10 | 000,204,880 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/08/30 03:48:10 | 000,072,016 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/08/30 03:48:10 | 000,065,336 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/08/30 03:48:10 | 000,064,288 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/08/30 03:48:09 | 000,080,816 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/08/30 03:48:09 | 000,033,400 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/08/30 03:47:40 | 000,041,664 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/08/30 03:47:14 | 000,287,840 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013/08/29 18:01:32 | 000,062,286 | ---- | M] () -- C:\Users\Isabelle\Desktop\1097335_10151836271870781_1112222829_n.jpg
[2013/08/25 11:50:42 | 010,089,813 | ---- | M] () -- C:\Users\Isabelle\Desktop\Heaven - AFTER SCHOOL.mp3
[2013/08/25 11:24:17 | 000,201,308 | ---- | M] () -- C:\Users\Isabelle\Desktop\3.1-3.6.pdf
[2013/08/20 19:19:54 | 000,278,749 | ---- | M] () -- C:\Users\Isabelle\Desktop\2.1-2.3.pdf
[2013/08/20 14:09:57 | 000,209,114 | ---- | M] () -- C:\Users\Isabelle\Desktop\psych gois.png
[2013/08/16 16:51:40 | 000,009,869 | ---- | M] () -- C:\Users\Isabelle\Desktop\fall2013schedule.png
[2013/08/15 12:25:34 | 001,602,408 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/08/15 12:25:34 | 000,711,160 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2013/08/15 12:25:34 | 000,632,738 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/08/15 12:25:34 | 000,133,898 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2013/08/15 12:25:34 | 000,110,146 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/08/13 16:01:53 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/08/11 23:07:40 | 000,027,764 | ---- | M] () -- C:\Users\Isabelle\Desktop\fall2013.png
 
========== Files Created - No Company Name ==========
 
[2013/09/05 08:59:19 | 001,037,222 | ---- | C] () -- C:\Users\Isabelle\Desktop\AdwCleaner.exe
[2013/09/04 17:53:53 | 000,018,974 | ---- | C] () -- C:\Users\Isabelle\Desktop\tumblr_ltf16zDsPO1qbonzwo2_250.jpg
[2013/09/04 14:12:50 | 000,198,742 | ---- | C] () -- C:\Users\Isabelle\Desktop\tumblr_ma5fyoTuK91r93ttjo1_500.jpg
[2013/09/03 15:02:34 | 000,001,282 | ---- | C] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
[2013/09/02 16:33:47 | 000,008,627 | ---- | C] () -- C:\Windows\SysWow64\PAV_FOG.OPC
[2013/09/02 16:30:48 | 000,000,262 | ---- | C] () -- C:\Windows\SysNative\PavCPL64.dat
[2013/09/02 16:30:47 | 000,002,109 | ---- | C] () -- C:\Users\Isabelle\Application Data\Microsoft\Internet Explorer\Quick Launch\Panda Antivirus Pro 2014.lnk
[2013/09/02 16:30:16 | 000,002,211 | ---- | C] () -- C:\Users\Public\Desktop\Panda Antivirus Pro 2014.lnk
[2013/09/02 15:24:08 | 000,000,335 | ---- | C] () -- C:\local.conf
[2013/09/01 22:22:08 | 000,086,574 | ---- | C] () -- C:\Users\Isabelle\Desktop\Wallet-2.jpg
[2013/09/01 22:16:55 | 000,059,604 | ---- | C] () -- C:\Users\Isabelle\Desktop\Wallet-1.jpg
[2013/08/30 21:47:53 | 000,885,880 | ---- | C] () -- C:\Users\Isabelle\Desktop\IMG_4406.JPG
[2013/08/29 18:01:09 | 000,062,286 | ---- | C] () -- C:\Users\Isabelle\Desktop\1097335_10151836271870781_1112222829_n.jpg
[2013/08/25 11:50:37 | 010,089,813 | ---- | C] () -- C:\Users\Isabelle\Desktop\Heaven - AFTER SCHOOL.mp3
[2013/08/25 11:24:10 | 000,201,308 | ---- | C] () -- C:\Users\Isabelle\Desktop\3.1-3.6.pdf
[2013/08/20 19:19:45 | 000,278,749 | ---- | C] () -- C:\Users\Isabelle\Desktop\2.1-2.3.pdf
[2013/08/20 14:09:56 | 000,209,114 | ---- | C] () -- C:\Users\Isabelle\Desktop\psych gois.png
[2013/08/16 16:51:39 | 000,009,869 | ---- | C] () -- C:\Users\Isabelle\Desktop\fall2013schedule.png
[2013/08/13 16:01:53 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/08/11 23:07:39 | 000,027,764 | ---- | C] () -- C:\Users\Isabelle\Desktop\fall2013.png
[2012/07/04 16:34:15 | 000,007,597 | ---- | C] () -- C:\Users\Isabelle\AppData\Local\Resmon.ResmonCfg
[2012/06/02 14:00:18 | 000,000,439 | ---- | C] () -- C:\Windows\KA.INI
[2012/02/05 12:12:57 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2011/08/22 22:32:20 | 000,000,111 | ---- | C] () -- C:\Users\Isabelle\webct_upload_applet.properties
[2011/06/30 22:34:11 | 000,000,600 | ---- | C] () -- C:\Users\Isabelle\PUTTY.RND
[2011/02/05 21:20:05 | 000,000,132 | ---- | C] () -- C:\Users\Isabelle\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011/02/05 21:19:42 | 000,000,132 | ---- | C] () -- C:\Users\Isabelle\AppData\Roaming\Adobe IllExport Filter CS5 Prefs
[2011/01/27 19:39:43 | 000,017,408 | ---- | C] () -- C:\Users\Isabelle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/10 00:04:04 | 000,001,704 | ---- | C] () -- C:\Users\Isabelle\AppData\Local\Adobe Save for Web 12.0 Prefs
[2010/11/21 14:31:42 | 000,000,132 | ---- | C] () -- C:\Users\Isabelle\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2010/10/02 20:36:49 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
 
========== ZeroAccess Check ==========
 
[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 01:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 00:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2012/03/25 12:39:11 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\Amazon
[2011/06/19 16:23:00 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011/07/25 22:29:24 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\HTC
[2012/12/24 21:37:02 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2011/01/27 20:28:37 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\Nokia
[2011/01/27 20:28:37 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\Nokia Ovi Suite
[2011/10/19 19:13:10 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\OfficeRecovery
[2011/10/19 19:13:54 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\OfficeRecovery.12a755e6
[2011/08/20 20:59:22 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\ooVoo Details
[2011/09/06 23:43:53 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\OpenOffice.org
[2013/09/02 16:28:43 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\Panda Security
[2010/11/28 22:47:23 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\PC Suite
[2012/07/25 14:57:55 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\ScummVM
[2010/10/09 16:44:53 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011/03/19 18:56:38 | 000,000,000 | ---D | M] -- C:\Users\Isabelle\AppData\Roaming\ViiKiiDesktopPlugin.5E22EA0FF243470AB5EDDF282C0A5B52E9909C36.1
 
========== Purity Check ==========
 
 

< End of report >
 

Link to post
Share on other sites

Run OTL

  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL

    :files

    ipconfig /flushdns /c

    :Commands

    [emptytemp]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Please post the OTL fix log in your next reply.
Note: A copy of an OTL fix log is saved in a text file at C:\_OTL\MovedFiles
Link to post
Share on other sites

All processes killed
========== OTL ==========
========== FILES ==========
< ipconfig /flushdns /c >
Configuration IP de Windows
Cache de r‚solution DNS vid‚.
C:\Users\Isabelle\Desktop\cmd.bat deleted successfully.
C:\Users\Isabelle\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 57472 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Isabelle
->Temp folder emptied: 774031072 bytes
->Temporary Internet Files folder emptied: 473914291 bytes
->Java cache emptied: 8995144 bytes
->FireFox cache emptied: 458410457 bytes
->Google Chrome cache emptied: 351139036 bytes
->Flash cache emptied: 137831 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 787335087 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 42306576 bytes
RecycleBin emptied: 1347269786 bytes
 
Total Files Cleaned = 4,047.00 mb
 
 
OTL by OldTimer - Version 3.2.69.0 log created on 09072013_092058

Files\Folders moved on Reboot...
C:\Users\Isabelle\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Isabelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Link to post
Share on other sites

Note: Please do not run this tool without special supervision and instructions of someone authorized to do so. Otherwise, you could end up with serious problems. For more details, read this article: ComboFix usage, Questions, Help? - Look here

Please visit this webpage and read the ComboFix User's Guide:

  • Once you've read the article and are ready to use the program you can download it directly from the link below.
  • Important! - Please make sure you save combofix to your desktop and do not run it from your browser
  • Direct download link for: ComboFix.exe
  • Please make sure you disable your security applications before running ComboFix.
  • Once Combofix has completed it will produce and open a log file. Please be patient as it can take some time to load.
  • Please copy/paste the contents or attach that log file to your next reply.
  • If needed the file can be located here: C:\combofix.txt
  • NOTE: If you receive the message "illegal operation has been attempted on a registry key that has been marked for deletion", just reboot the computer.
Link to post
Share on other sites

ComboFix 13-09-06.01 - Isabelle 09/07/2013  11:41:46.1.4 - x64
Microsoft Windows 7 Édition Intégrale   6.1.7601.1.1252.1.1033.18.1971.419 [GMT -4:00]
Running from: c:\users\Isabelle\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Panda Antivirus Pro 2014 *Enabled/Updated* {86971480-9989-6750-B122-681A86518D59}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Panda Antivirus Pro 2014 *Enabled/Updated* {3DF6F564-BFB3-68DE-8B92-5368FDD6C7E4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\GEARDIFx.exe
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\DIFxAPI.dll
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\DifXInst64.exe
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\DIFxInstallLog.txt
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\GEARAspi.dll
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\GEARAspi64.dll
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\GEARAspiWDM.inf
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\gearaspiwdmx64.cat
c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\x64\GEARAspiWDM.sys
.
.
(((((((((((((((((((((((((   Files Created from 2013-08-07 to 2013-09-07  )))))))))))))))))))))))))))))))
.
.
2013-09-07 15:53 . 2013-09-07 15:53    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-09-07 15:38 . 2013-09-07 15:38    0    ----a-w-    c:\windows\RAVTC.TMP
2013-09-07 13:20 . 2013-09-07 13:20    --------    d-----w-    C:\_OTL
2013-09-07 02:03 . 2013-09-07 02:03    76232    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{36DF3689-FAAC-460A-AAA3-7386020EC211}\offreg.dll
2013-09-06 18:04 . 2013-08-06 08:58    9515512    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{36DF3689-FAAC-460A-AAA3-7386020EC211}\mpengine.dll
2013-09-05 19:01 . 2013-09-05 19:01    --------    d-----w-    c:\windows\FltMgr
2013-09-05 18:46 . 2013-09-05 18:55    --------    d-----w-    C:\AdwCleaner
2013-09-05 18:23 . 2013-09-05 18:23    --------    d-----w-    c:\windows\ERUNT
2013-09-02 20:28 . 2013-06-25 21:03    24544    ----a-w-    c:\windows\system32\sysHelper64.dll
2013-09-02 20:28 . 2012-11-20 16:20    545056    ----a-w-    c:\windows\SysWow64\PavSHookWow.dll
2013-09-02 20:28 . 2012-11-16 16:08    837920    ----a-w-    c:\windows\system32\PavSHook64.dll
2013-09-02 20:28 . 2012-05-22 19:54    87328    ----a-w-    c:\windows\SysWow64\PavLspHookWow.dll
2013-09-02 20:28 . 2012-05-22 19:52    117024    ----a-w-    c:\windows\system32\PavLspHook64.dll
2013-09-02 20:28 . 2009-08-10 17:46    25344    ----a-w-    c:\windows\SysWow64\sysHelper32.dll
2013-09-02 20:28 . 2013-09-07 15:38    --------    d-----w-    c:\program files (x86)\Panda Security
2013-09-02 20:28 . 2013-09-02 20:28    --------    d-----w-    c:\program files (x86)\Common Files\Panda Security
2013-09-02 19:24 . 2013-09-02 19:56    --------    d-----w-    c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-08-25 17:09 . 2013-08-25 17:08    312232    ----a-w-    c:\windows\system32\javaws.exe
2013-08-25 17:09 . 2013-08-25 17:08    108968    ----a-w-    c:\windows\system32\WindowsAccessBridge-64.dll
2013-08-25 17:09 . 2013-08-25 17:08    189352    ----a-w-    c:\windows\system32\javaw.exe
2013-08-25 17:09 . 2013-08-25 17:08    188840    ----a-w-    c:\windows\system32\java.exe
2013-08-21 17:35 . 2013-08-21 17:35    --------    d-----w-    c:\program files\iPod
2013-08-21 17:35 . 2013-08-21 17:37    --------    d-----w-    c:\program files\iTunes
2013-08-15 16:31 . 2013-07-26 05:13    1365504    ----a-w-    c:\windows\system32\urlmon.dll
2013-08-15 16:31 . 2013-07-26 03:13    817664    ----a-w-    c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-08-15 16:31 . 2013-07-26 03:12    108032    ----a-w-    c:\program files (x86)\Internet Explorer\jsdebuggeride.dll
2013-08-15 16:31 . 2013-07-26 05:13    1084928    ----a-w-    c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-08-15 16:31 . 2013-07-26 05:12    53760    ----a-w-    c:\windows\system32\jsproxy.dll
2013-08-15 16:31 . 2013-07-26 03:13    1767936    ----a-w-    c:\windows\SysWow64\wininet.dll
2013-08-15 16:31 . 2013-07-26 05:13    2241024    ----a-w-    c:\windows\system32\wininet.dll
2013-08-15 16:31 . 2013-07-26 05:12    15405056    ----a-w-    c:\windows\system32\ieframe.dll
2013-08-15 16:31 . 2013-07-26 05:12    19239424    ----a-w-    c:\windows\system32\mshtml.dll
2013-08-14 13:49 . 2013-07-09 05:52    224256    ----a-w-    c:\windows\system32\wintrust.dll
2013-08-14 13:49 . 2013-07-09 05:46    1472512    ----a-w-    c:\windows\system32\crypt32.dll
2013-08-14 13:49 . 2013-07-09 04:52    175104    ----a-w-    c:\windows\SysWow64\wintrust.dll
2013-08-14 13:49 . 2013-07-09 04:46    1166848    ----a-w-    c:\windows\SysWow64\crypt32.dll
2013-08-14 13:49 . 2013-07-09 05:46    184320    ----a-w-    c:\windows\system32\cryptsvc.dll
2013-08-14 13:49 . 2013-07-09 04:46    140288    ----a-w-    c:\windows\SysWow64\cryptsvc.dll
2013-08-14 13:49 . 2013-07-09 05:46    139776    ----a-w-    c:\windows\system32\cryptnet.dll
2013-08-14 13:49 . 2013-07-09 04:46    103936    ----a-w-    c:\windows\SysWow64\cryptnet.dll
2013-08-14 13:47 . 2013-06-15 04:35    1111552    ----a-w-    c:\windows\system32\rdpcorets.dll
2013-08-14 13:47 . 2013-06-15 04:32    39936    ----a-w-    c:\windows\system32\drivers\tssecsrv.sys
2013-08-14 13:47 . 2013-07-06 06:03    1910208    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2013-08-13 20:01 . 2013-08-13 20:01    --------    d-----w-    c:\program files (x86)\Common Files\Skype
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-07 13:27 . 2010-11-21 00:06    4194304    ----a-w-    c:\windows\ServiceProfiles\NetworkService\msmqlog.bin
2013-08-30 07:48 . 2013-03-03 19:38    204880    ----a-w-    c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2013-03-03 19:38    65336    ----a-w-    c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2012-02-25 22:32    72016    ----a-w-    c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2011-06-15 02:02    1030952    ----a-w-    c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2010-09-30 14:51    378944    ----a-w-    c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2010-09-30 14:51    64288    ----a-w-    c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2010-09-30 14:51    33400    ----a-w-    c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2010-09-30 14:51    80816    ----a-w-    c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2010-09-30 14:51    41664    ----a-w-    c:\windows\avastSS.scr
2013-08-30 07:47 . 2011-01-19 01:18    287840    ----a-w-    c:\windows\system32\aswBoot.exe
2013-08-25 17:08 . 2012-08-25 23:58    972712    ----a-w-    c:\windows\system32\deployJava1.dll
2013-08-25 17:08 . 2012-08-25 23:58    1093032    ----a-w-    c:\windows\system32\npDeployJava1.dll
2013-08-20 18:29 . 2012-03-31 13:54    692104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-08-20 18:29 . 2011-05-23 13:26    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-15 13:04 . 2010-10-02 22:50    78161360    ----a-w-    c:\windows\system32\MRT.exe
2013-07-09 04:45 . 2013-08-14 13:48    44032    ----a-w-    c:\windows\apppatch\acwow64.dll
2013-06-27 13:34 . 2013-06-27 13:34    96168    ----a-w-    c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-27 13:34 . 2013-04-09 16:59    867240    ----a-w-    c:\windows\SysWow64\npdeployJava1.dll
2013-06-27 13:34 . 2011-01-05 22:21    789416    ----a-w-    c:\windows\SysWow64\deployJava1.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\programdata\Macrovision\FLEXnet Connect\6\ISUSPM.exe" [2007-03-29 222128]
"Facebook Update"="c:\users\Isabelle\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-11 138096]
"OfficeSyncProcess"="c:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2012-01-21 719672]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2013-08-30 4858968]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2009-08-12 662016]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-23 402432]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2013-05-08 44128]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2013-05-08 642664]
"IndicatorUtility"="c:\program files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe" [2009-10-10 47976]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"PlusService"="c:\program files (x86)\Yuna Software\Messenger Plus!\PlusService.exe" [2013-01-23 802304]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"MessengerPlusForSkypeService"="c:\program files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe" [2013-05-07 128000]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-08-16 152392]
.
c:\users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2013-1-8 228448]
OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
Contents of the 'Scheduled Tasks' folder
.
2013-09-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-31 18:29]
.
2013-09-06 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000Core.job
- c:\users\Isabelle\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-08-25 20:39]
.
2013-09-07 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000UA.job
- c:\users\Isabelle\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-08-25 20:39]
.
2013-09-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000Core.job
- c:\users\Isabelle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-09 03:03]
.
2013-09-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3473226756-488634545-1885923755-1000UA.job
- c:\users\Isabelle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-09 03:03]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47    133840    ----a-w-    c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATSwpNav"="c:\program files\Fingerprint Sensor\ATSwpNav -run" [X]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2009-08-12 662016]
"SNUVCDSM"="c:\windows\snuvcdsm.exe" [2009-05-22 24576]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-08-05 8060960]
"LoadFujitsuQuickTouch"="c:\program files\Fujitsu\Application Panel\QuickTouch.exe" [2009-10-16 157544]
"LoadBtnHnd"="c:\program files\Fujitsu\Application Panel\BtnHnd.exe" [2009-10-16 35176]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = local;*.local
IE: Append Link Target to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 128.192.1.9 128.192.1.193 128.192.1.19
FF - ProfilePath - c:\users\Isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\elubhlst.default\
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{729CD5EE-CFD4-2598-E99D0DF7791A50E3}\{F8FFDD05-44DF-5042-E601749BEB85FEB7}\{D29FFC2E-79FD-DC28-524A63CA31F9404E}*]
"XOGCPEUPGZA3BTOUPKIJ6FJXTE1"=hex:01,00,01,00,00,00,00,00,9a,27,1e,8a,da,80,81,
   12,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8FD8A5D7-9511-025F-16B31A5B051F5A4D}\{7F4BC209-0230-7A50-936F3704F4AD01D8}\{4F172B6C-B722-D8DB-046FD06C67D2EAC6}*]
"XOGCPEUPGZA3BTOUPKIJ6FJXTE1"=hex:01,00,01,00,00,00,00,00,9a,27,1e,8a,da,80,81,
   12,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-09-07  12:05:42
ComboFix-quarantined-files.txt  2013-09-07 16:05
.
Pre-Run: 94,852,419,584 octets libres
Post-Run: 94,136,414,208 octets libres
.
- - End Of File - - C9DCA002F450E929CEFF47120E8D864B
A36C5E4F47E84449FF07ED3517B43A31
 

Link to post
Share on other sites

Glad everything is fine there!

Step 1

Please run OTL and click on CleanUp button.

Step 2

  • Double click on AdwCleaner.exe to run the tool.
  • Click on Uninstall
  • Confirm with Yes
Step 3

Some malware prevention tips:

users.telenet.be/bluepatchy/miekiemoes/prevention.html

Safe surfing! :)

Link to post
Share on other sites

  • Root Admin

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.