PDA

View Full Version : Need help



Connorj67
2013-10-16, 12:59
Computer has been acting up, getting red flag's with scan's, don't know what to do. Any help would be greatly appreciated!




DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16514 BrowserJavaVersion: 10.25.2
Run by Connor at 4:48:51 on 2013-10-16
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8147.4337 [GMT -5:00]
.
AV: Norton 360 *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.25\AsusFanControlService.exe
C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Windows\system32\IProsetMonitor.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Logitech\Gaming Software\LWEMon.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Virtual Audio Cable\audiorepeater.exe
C:\Program Files\Virtual Audio Cable\audiorepeater.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetiCtrlTray.exe
C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AsDLNAServerReal.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Logitech Gaming Software\LCore.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDPop3.exe
C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Connor\Desktop\GPU-Z.0.7.3.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.conduit.com/?ctid=CT3310511&octid=CT3310511&SearchSource=61&CUI=UN38450952877632797&UM=2&UP=SP5FFD5F1F-BFAF-4DE7-8CE8-716E3F3F29F7
uURLSearchHooks: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - <orphaned>
uURLSearchHooks: {474dcbf4-0db1-4c6a-a014-1c2544e82698} - <orphaned>
mWinlogon: Userinit = userinit.exe,
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ips\ipsbho.dll
BHO: {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - <orphaned>
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: Logitech Flow Scroll: {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll
BHO: {EBCFDD49-7031-4EB5-A27C-A10BB0B13EC4} - <orphaned>
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coieplg.dll
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VAC 1.bat
StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VAC 2.bat
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - E:\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {BAD4FE2C-503B-45CC-88CD-4B0574057D11} - hxxp://clients.futuremark.com/calico/systeminfodeploy/FMSI_v490.cab
TCP: NameServer = 10.0.0.1
TCP: Interfaces\{60B6925F-B27D-44F4-849B-0794688734FA} : DHCPNameServer = 8.8.8.8 8.8.4.4
TCP: Interfaces\{60C7D73A-5576-4B89-A4F7-6E6CFFAE627F} : DHCPNameServer = 10.0.0.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Logitech Flow Scroll: {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll
x64-Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
x64-Run: [RtHDVBg_DTS] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /DTSU2P
x64-Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\Windows\System32\ieudinit.exe
.
============= SERVICES / DRIVERS ===============
.
R0 asahci64;asahci64;C:\Windows\System32\drivers\asahci64.sys [2012-1-6 49760]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2012-7-16 16152]
R0 SymDS;Symantec Data Store;C:\Windows\System32\drivers\N360x64\1404000.028\symds64.sys [2013-6-22 493656]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\N360x64\1404000.028\symefa64.sys [2013-6-22 1139800]
R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2012-7-16 210016]
R0 vidsflt53;Acronis Disk Storage Filter (53);C:\Windows\System32\drivers\vsflt53.sys [2012-7-16 141920]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\BASHDefs\20131002.001\BHDrvx64.sys [2013-10-1 1525848]
R1 ccSet_N360;Norton 360 Settings Manager;C:\Windows\System32\drivers\N360x64\1404000.028\ccsetx64.sys [2013-6-22 169048]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\IPSDefs\20131014.001\IDSviA64.sys [2013-10-15 520280]
R1 ndisrd;WinpkFilter LightWeight Filter;C:\Windows\System32\drivers\ndisrd.sys [2012-7-16 32360]
R1 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\N360x64\1404000.028\ironx64.sys [2013-6-22 224416]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\N360x64\1404000.028\symnets.sys [2013-6-22 433752]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-3-28 241152]
R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe [2011-10-28 918448]
R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-2-2 951936]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-7-16 149120]
R2 AsusFanControlService;AsusFanControlService;C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.25\AsusFanControlService.exe [2012-7-16 1493120]
R2 DTSAudioSvc;DTSAudioSvc;C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [2013-10-13 233328]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-7-16 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2013-2-23 183048]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-7-16 161560]
R2 N360;Norton 360;C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccsvchst.exe [2013-6-22 144368]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-7-16 363800]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2012-2-21 130536]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2012-2-21 396776]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-2-14 96768]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-8-26 140376]
R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);C:\Windows\System32\drivers\vrtaucbl.sys [2012-8-9 66728]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-7-16 160768]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);C:\Windows\System32\drivers\ICCWDT.sys [2010-8-17 26136]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2012-7-16 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2012-7-16 786200]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 BEService;BattlEye Service;C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2013-1-20 49152]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-7-26 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
S3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2012-7-16 331264]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-5-5 19456]
S3 ScreamBAudioSvc;ScreamBee Audio;C:\Windows\System32\drivers\ScreamingBAudio64.sys [2010-7-1 38992]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-5-5 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-5-5 30208]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-9-28 53760]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-7-16 1255736]
S4 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2012-7-17 135584]
S4 SgtSch2Svc;Seagate Scheduler2 Service;C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe [2011-6-30 1191408]
S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]
S4 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-9-10 5071712]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== File Associations ===============
.
FileExt: .txt: Applications\notepad++.exe="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1" [UserChoice]
.
=============== Created Last 30 ================
.
2013-10-16 09:41:53 -------- d-----w- C:\AdwCleaner
2013-10-16 08:54:05 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-10-16 07:37:15 -------- d-----w- C:\Program Files\CCleaner
2013-10-16 07:09:45 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-16 04:56:06 -------- d-----w- C:\Program Files (x86)\GPU-Z
2013-10-14 00:38:17 -------- d-----w- C:\ProgramData\VideoCopilot
2013-10-13 20:06:21 -------- d-----w- C:\Users\Connor\AppData\Roaming\PDAppFlex
2013-10-13 20:06:11 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2013-10-13 08:18:22 219 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VAC 2.bat
2013-10-13 08:16:49 219 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VAC 1.bat
2013-10-13 05:59:52 -------- d-----w- C:\Program Files (x86)\Realtek
2013-10-13 05:52:58 -------- d-----w- C:\Users\Connor\AppData\Local\SlimWare Utilities Inc
2013-10-13 05:34:31 -------- d-----w- C:\Users\Connor\AppData\Roaming\Easeware
2013-10-13 05:34:00 -------- d-----w- C:\Program Files\Easeware
2013-10-13 05:20:11 -------- d-----w- C:\Program Files (x86)\Probit Software
2013-10-13 03:09:14 -------- d-----w- C:\Program Files\Virtual Audio Cable
2013-10-11 16:11:25 715038 ----a-w- C:\Windows\unins000.exe
2013-10-11 16:10:18 216064 ----a-w- C:\Windows\SysWow64\lagarith.dll
2013-10-11 16:10:18 148992 ----a-w- C:\Windows\System32\lagarith.dll
2013-10-11 07:51:48 8043008 ----a-w- C:\Windows\System32\DxtoryCodec.dll
2013-10-11 07:51:47 -------- d-----w- C:\Program Files (x86)\Dxtory Software
2013-10-09 16:21:17 633856 ----a-w- C:\Windows\System32\comctl32.dll
2013-10-09 16:20:59 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-10-05 00:00:35 -------- d-----w- C:\Program Files (x86)\Tiny Utilities
2013-09-29 17:46:01 -------- d-----w- C:\ProgramData\Package Cache
2013-09-28 21:41:35 -------- d-----w- C:\Users\Connor\AppData\Local\Aftermath_Launcher
2013-09-26 18:00:39 208760 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2013-09-19 02:18:47 -------- d-----w- C:\Program Files (x86)\Dotjosh Studios
2013-09-19 02:14:39 -------- d-----w- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-09-19 02:14:34 -------- d-----w- C:\Users\Connor\AppData\Roaming\IObit
2013-09-19 02:14:34 -------- d-----w- C:\ProgramData\IObit
2013-09-19 02:14:30 -------- d-----w- C:\Program Files (x86)\IObit
2013-09-17 21:27:34 273408 ----a-w- C:\Users\Connor\AppData\Roaming\25583320dbc8662ff7fd5e0b53563ac7.dll
2013-09-17 21:20:32 -------- d-----w- C:\Windows\SysWow64\jmdp
.
==================== Find3M ====================
.
2013-10-16 08:09:55 1048576 ----a-w- C:\Windows\PE_Rom.dll
2013-10-15 04:47:48 215416 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2013-10-13 03:19:18 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2013-10-09 19:55:19 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-09 19:55:19 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-22 14:42:33 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2013-09-22 14:33:53 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-09-22 14:33:06 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-09-22 14:23:30 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-09-22 14:21:21 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-09-22 14:15:47 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-09-22 10:22:59 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-09-22 10:14:39 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-09-22 10:13:22 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-09-22 10:08:41 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-09-22 10:06:58 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-09-22 10:03:18 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-09-14 01:10:19 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-09-04 12:12:11 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-09-04 12:11:51 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-09-04 12:11:49 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-09-04 12:11:43 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-09-04 12:11:43 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-09-04 12:11:42 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-09-04 12:11:40 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-09-04 01:11:01 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll
2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll
2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-08-28 01:21:06 3155968 ----a-w- C:\Windows\System32\win32k.sys
2013-08-28 01:12:33 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2013-08-27 09:01:59 1143296 ----a-w- C:\Windows\System32\FntCache.dll
2013-08-27 09:01:47 1545728 ----a-w- C:\Windows\System32\DWrite.dll
2013-08-27 08:21:36 1077760 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-08-27 01:36:35 31232 ----a-w- C:\Windows\System32\drivers\tap0901.sys
2013-08-06 17:50:23 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-06 17:50:23 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-08-06 17:50:23 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-08-05 02:25:45 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-08-01 12:09:36 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-20 10:33:12 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-07-20 10:33:08 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
.
============= FINISH: 4:48:57.70 ===============








aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-10-16 04:51:15
-----------------------------
04:51:15.294 OS Version: Windows x64 6.1.7601 Service Pack 1
04:51:15.294 Number of processors: 4 586 0x3A09
04:51:15.294 ComputerName: CONNOR-PC UserName: Connor
04:51:16.030 Initialize success
04:52:17.959 AVAST engine defs: 13101600
04:52:29.283 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
04:52:29.284 Disk 0 Vendor: SAMSUNG_ CXM0 Size: 122104MB BusType: 3
04:52:29.285 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T0L0-1
04:52:29.286 Disk 1 Vendor: ST2000DM001-9YN164 CC4C Size: 1907729MB BusType: 11
04:52:29.294 Disk 0 MBR read successfully
04:52:29.295 Disk 0 MBR scan
04:52:29.297 Disk 0 Windows 7 default MBR code
04:52:29.299 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
04:52:29.301 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 122002 MB offset 206848
04:52:29.311 Disk 0 scanning C:\Windows\system32\drivers
04:52:32.539 Service scanning
04:52:33.453 Service BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\BASHDefs\20131002.001\BHDrvx64.sys **LOCKED** 5
04:52:34.113 Service eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys **LOCKED** 5
04:52:34.234 Service EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys **LOCKED** 5
04:52:34.724 Service IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\IPSDefs\20131014.001\IDSvia64.sys **LOCKED** 5
04:52:35.608 Service NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\VirusDefs\20131015.020\ENG64.SYS **LOCKED** 5
04:52:35.658 Service NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\VirusDefs\20131015.020\EX64.SYS **LOCKED** 5
04:52:38.431 Modules scanning
04:52:38.434 Disk 0 trace - called modules:
04:52:38.438 ntoskrnl.exe CLASSPNP.SYS disk.sys vsflt53.sys ACPI.sys iaStor.sys hal.dll
04:52:38.440 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006af6790]
04:52:38.443 3 CLASSPNP.SYS[fffff88001f8743f] -> nt!IofCallDriver -> [0xfffffa8006aa0b50]
04:52:38.445 5 vsflt53.sys[fffff88000db4cfd] -> nt!IofCallDriver -> [0xfffffa8006a79950]
04:52:38.447 7 ACPI.sys[fffff88000d577a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0xfffffa8006ee3050]
04:52:39.083 AVAST engine scan C:\Windows
04:52:39.432 AVAST engine scan C:\Windows\system32
04:53:34.783 AVAST engine scan C:\Windows\system32\drivers
04:53:39.611 AVAST engine scan C:\Users\Connor
04:55:05.966 AVAST engine scan C:\ProgramData
04:55:49.391 Scan finished successfully
04:56:19.823 Disk 0 MBR has been saved successfully to "C:\Users\Connor\Desktop\MBR.dat"
04:56:19.827 The log file has been saved successfully to "C:\Users\Connor\Desktop\aswMBR.txt"

ken545
2013-10-22, 18:56
:welcome:

Sorry for the delay and that we missed your post, but I am with you now.

Not looking at anything earthshattering on your logs. The alerts your getting, are they from Norton or Spybot ?

Please download Malwarebytes from Here (http://www.malwarebytes.org/mbam-download.php) or Here (http://www.majorgeeks.com/Malwarebytes_Anti-Malware_d5756.html)


Double-click mbam-setup.exe and follow the prompts to install the program.
At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select Perform quick scan, then click Scan.
http://i24.photobucket.com/albums/c30/ken545/MBAMCapture.jpg
When the scan is complete, click OK, then Show Results to view the results.
Be sure that everything is checked, and click Remove Selected .
When completed, a log will open in Notepad. Please save it to a convenient location and post the results.
Note: If you receive a notice that some of the items couldn't be removed, that they have been added to the delete on reboot list, please reboot.
Post the report please

Connorj67
2013-10-23, 03:37
Thanks for your time Ken,

The alerts I've gotten are from Malwarebytes actually, which I already have installed. Before posting here I did a full scan, selected all items, and removed them. After a reboot my internet no longer worked. I had to system restore which makes me cautious when you say "Be sure that everything is checked, and click Remove Selected.". Are you sure this is okay?

I have attached the log though.

Also, I wanted to mention the major issue's I'm experiencing are; Slower windows explorer, frequent windows explore crashes, not being able to copy/paste and not being able to drag or drop files (the only way I can move files is zipping them then extracting them).

Connorj67
2013-10-23, 03:40
I forgot to mention I get an error - "C:\Users\Connor\AppData\Local\Temp\084746Log.iniis lost" after every boot up.

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.10.16.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Connor :: CONNOR-PC [administrator]

10/22/2013 7:28:35 PM
MBAM-log-2013-10-22 (19-30-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 209618
Time elapsed: 1 minute(s), 30 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 15
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B} (PUP.FunMoods) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B} (PUP.FunMoods) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A} (PUP.Funmoods) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No action taken.
HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr.A) -> No action taken.
HKCU\SOFTWARE\Funmoods (PUP.FunMoods) -> No action taken.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> No action taken.
HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> No action taken.
HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.FunMoods) -> No action taken.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> No action taken.
HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> No action taken.
HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.FunMoods) -> No action taken.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> No action taken.

Registry Values Detected: 4
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|bProtector Start Page (PUP.BProtector) -> Data: http://search.conduit.com?SearchSource=10&ctid=CT3227980 -> No action taken.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {2DC4DC92-102A-11E3-BFF8-C86000E35EF9} -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs|Tabs (PUP.FunMoods) -> Data: http://searchfunmoods.com/?f=2&a=download&chnl=download&cd=2XzuyEtN2Y1L1Qzu0CzzyCtDtDtD0EtAyD0E0FzyzztBtByEtN0D0Tzu0CtAtAtDtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1126985290 -> No action taken.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {2DC4DC92-102A-11E3-BFF8-C86000E35EF9} -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 5
C:\ProgramData\Tarma Installer (PUP.Optional.Tarma.A) -> No action taken.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} (PUP.Optional.Tarma.A) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\905FE3DDCC434847981ABD68D43E14EA (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\B3FEC08FE07D4B44B4470AE4ADED25F4 (PUP.Optional.OpenCandy) -> No action taken.

Files Detected: 10
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe (PUP.Optional.Tarma.A) -> No action taken.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico (PUP.Optional.Tarma.A) -> No action taken.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll (PUP.Optional.Tarma.A) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\905FE3DDCC434847981ABD68D43E14EA\3110.ico (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\905FE3DDCC434847981ABD68D43E14EA\avg.exe (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\905FE3DDCC434847981ABD68D43E14EA\AVG923_p1v3.exe (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\905FE3DDCC434847981ABD68D43E14EA\OCBrowserHelper_1.0.3.85.dll (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\B3FEC08FE07D4B44B4470AE4ADED25F4\5852.ico (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\B3FEC08FE07D4B44B4470AE4ADED25F4\DefaultPack.EXE (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Connor\AppData\Roaming\OpenCandy\B3FEC08FE07D4B44B4470AE4ADED25F4\OCBrowserHelper_1.0.6.124.exe (PUP.Optional.OpenCandy) -> No action taken.

(end)

ken545
2013-10-23, 03:45
Hi,

You need to rerun Malwarebytes and make sure that all is selected and removed




Please download AdwCleaner (http://www.bleepingcomputer.com/download/adwcleaner/) by Xplode and save to your Desktop.

Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8 users right-click and select Run As Administrator (http://windows.microsoft.com/en-US/windows7/How-do-I-run-an-application-once-with-a-full-administrator-access-token).
Click on the Scan button.
AdwCleaner will begin...be patient as the scan may take some time to complete.
After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
Copy and paste the contents of that logfile in your next reply.
A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

Connorj67
2013-10-23, 23:06
I have attached the Malwarebytes log after completing the removal of the things it found.

Adwcleaner log -

# AdwCleaner v3.010 - Report created 23/10/2013 at 15:01:11
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Connor - CONNOR-PC
# Running from : C:\Users\Connor\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\END
File Found : C:\Users\Connor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Folder Found : C:\Program Files (x86)\Mozilla Firefox\Extensions\infoatoms@infoatoms.com
Folder Found : C:\Users\Connor\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhbgpoakplhahbklhkcfbpicgjcaoglk
Folder Found C:\Program Files (x86)\Iminent
Folder Found C:\Program Files (x86)\InfoAtoms
Folder Found C:\Program Files (x86)\Vid-Saver
Folder Found C:\Program Files\PC Optimizer Pro
Folder Found C:\ProgramData\apn
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Optimizer Pro
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Optimizer Pro
Folder Found C:\ProgramData\Sidekick Manager
Folder Found C:\Users\Connor\AppData\Local\Conduit
Folder Found C:\Users\Connor\AppData\Local\Coupon Companion Plugin
Folder Found C:\Users\Connor\AppData\Local\PackageAware
Folder Found C:\Users\Connor\AppData\LocalLow\boost_interprocess
Folder Found C:\Users\Connor\AppData\LocalLow\Conduit
Folder Found C:\Users\Connor\AppData\LocalLow\PriceGong
Folder Found C:\Windows\SysWOW64\jmdp
Folder Found C:\Windows\SysWOW64\WNLT

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\AppDataLow\Software\smartbar
Key Found : HKCU\Software\AppDataLow\Software\Vid-Saver
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Cr_Installer
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\Iminent
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\pc optimizer pro
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Cr_Installer
Key Found : [x64] HKCU\Software\IGearSettings
Key Found : [x64] HKCU\Software\IM
Key Found : [x64] HKCU\Software\Iminent
Key Found : [x64] HKCU\Software\ImInstaller
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKCU\Software\pc optimizer pro
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\Software\bProtector
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\Funmoods
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hhbgpoakplhahbklhkcfbpicgjcaoglk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pgmfkblbflahhponhjmkcnpjinenhlnc
Key Found : HKLM\Software\Iminent
Key Found : HKLM\Software\InfoAtoms
Key Found : HKLM\Software\InstallIQ
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Savings Sidekick_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Savings Sidekick_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_cheat-engine_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_cheat-engine_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Vid-Saver_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Vid-Saver_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InfoAtoms
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Found : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Found : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Found : [x64] HKLM\SOFTWARE\pc optimizer pro
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [infoatoms@infoatoms.com]

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16514

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.conduit.com/?ctid=CT3310511&octid=CT3310511&SearchSource=61&CUI=UN38450952877632797&UM=2&UP=SP5FFD5F1F-BFAF-4DE7-8CE8-716E3F3F29F7

-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\Connor\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [14930 octets] - [16/10/2013 04:42:01]
AdwCleaner[R1].txt - [13011 octets] - [23/10/2013 15:01:11]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [13072 octets] ##########

ken545
2013-10-23, 23:26
Thanks for the logs, lets do some more cleaning


http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool (http://thisisudax.org/downloads/JRT.exe) to your desktop.

Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.






OTL by OldTimer

Download OTL (http://oldtimer.geekstogo.com/OTL.exe) to your desktop.
Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
When the window appears, underneath Output at the top change it to Minimal Output.
Click the "Scan All Users" checkbox.
Check the boxes beside LOP Check and Purity Check.
Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt.
Note:These logs can be located in the OTL. folder on you C:\ drive if they fail to open automatically.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them both in.

Connorj67
2013-10-24, 22:15
Just a quick question was I supposed to remove the stuff that Adwcleaner found or just post the log?

Here are the logs that you asked for

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:2)
OS: Windows 7 Home Premium x64
Ran by Connor on Thu 10/24/2013 at 14:03:07.68
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values




~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escort.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortapp.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escorteng.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortlbr.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\esrv.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\cr_installer
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\igearsettings
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminent
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\pc optimizer pro
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitsearchscopes
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\pricegong
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-899752424-1431124922-1543149501-1000\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\pc optimizer pro
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\tarma installer
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\dmwu_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\dmwu_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\infoatoms
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\searchthewebarp
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\bundlesweetimsetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\bundlesweetimsetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\funmoodssetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\funmoodssetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iminent_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iminent_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\savings sidekick_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\savings sidekick_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\sweetimsetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\sweetimsetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\vid-saver_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\vid-saver_rasmancs
Successfully deleted: [Registry Key] HKEY_USERS\.DEFAULT\Software\bProtector
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550055445593}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660066446693}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550055445593}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660066446693}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110011501160}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\ApnSetup_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\ApnSetup_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Deal Spy_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Deal Spy_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_cheat-engine_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_cheat-engine_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{52C7B45C-40FA-4461-A1CD-81B053C8D4B3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6F843DAD-B531-47FF-92B5-49F7EAC259CC}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}



~~~ Files

Successfully deleted: [File] "C:\Users\Connor\appdata\locallow\SkwConfig.bin"
Successfully deleted: [File] "C:\end"
Successfully deleted: [File] "C:\users\default user\start menu\programs\startup\best buy pc app.lnk"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\best buy pc app"
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\ProgramData\sidekick manager"
Successfully deleted: [Folder] "C:\Users\Connor\appdata\local\best buy pc app"
Successfully deleted: [Folder] "C:\Users\Connor\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\Connor\appdata\local\coupon companion plugin"
Successfully deleted: [Folder] "C:\Users\Connor\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\Connor\appdata\locallow\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\Connor\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Users\Connor\appdata\locallow\pricegong"
Successfully deleted: [Folder] "C:\Program Files (x86)\iminent"
Successfully deleted: [Folder] "C:\Program Files (x86)\infoatoms"
Successfully deleted: [Folder] "C:\Program Files (x86)\vid-saver"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc optimizer pro"
Successfully deleted: [Folder] "C:\Windows\syswow64\jmdp"
Successfully deleted: [Folder] "C:\Windows\syswow64\wnlt"
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{004E737E-1E62-4557-9BA4-86F6B9D1DEB1}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{014828F4-1E44-4AAF-9C8E-79F3EBC37EB6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{01A7A415-B035-4326-87E7-DF3797EE1DFE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{01BD86E4-78C0-4745-B0E4-08AC96AD448D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{02499EFA-B29B-4E60-A825-AF6CA2A52629}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0262CB94-8AAF-450A-BADE-07DF06CFC838}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0289516D-01F7-4E34-B699-856E8EB0A594}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{04B31E82-E146-4DEA-AC38-74C7C6A2B7B6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{050B0FE6-91CD-4836-B679-3C9FCDC07C82}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0547FCEF-AEEA-4E91-80E9-889565905006}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{05D64004-5A31-4290-937C-932060959D73}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{06719A92-BA3A-4AFF-91E5-0360FB261C78}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{06F26242-0F9C-44D9-BDE9-71C9183B6470}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{07920ED8-478C-40A9-968A-BD7DD8F5C8C2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{08A17D29-E93C-4831-9339-A2190DF9BE4B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0A0D613B-AD96-48BE-87F6-CFC4EEF7706F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0AC99259-5A65-47B5-96EC-90B45B729765}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0B45ED7E-D00B-4226-B8BF-E08DF3F2F527}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0BF1379D-D799-48B6-AFCE-4B463971A75F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0C612E33-4FF3-4258-8196-1144357BBD70}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0CAF4A53-E935-4026-BFEC-AE970AF20B5A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0CC738CE-97E5-4814-82DC-B194BD7F704B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{0F7455B1-4EE6-4039-877C-C439FE21DECD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{10028D5D-86D7-494C-9C0D-2E24A061836D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{10396348-159F-4893-8D6E-E7873C6CDB7E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{10981928-0F15-4A21-AB3C-C7171063F1EA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{118888D9-B7DB-485C-B5E3-910C8235679F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1285A4B6-9073-46EB-B349-203663587112}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{12FD4DC4-2151-48EC-AD13-F9829CD4FFDE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{147BECFF-011B-43AA-BA84-1D80075529BF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{14E219A1-2D46-4226-A6E4-1D77F5183E4B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{170E9A75-9622-450F-A9EB-2A633C71A73D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{175E0C32-CB57-4195-8639-799D48978BDB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{17CC2662-D117-44CF-A0EC-B1610C0EF629}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{17D33E58-D103-4857-A92D-D595E3663623}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{18F6F40C-65B6-41F1-9190-4EB8CBA29664}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1B63DB31-A13F-40E6-BCAD-ABEF1123A610}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1BAAB726-3D37-43B1-A1F5-F6136BCE7EA0}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1C6B0BB3-B1F1-4E74-956F-3AEE0492C9AD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1C961E0F-0068-4B5A-843A-A7BE569398E3}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1D2A3942-233B-4435-AFC9-931C9BEB6EE0}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1DC81156-CED8-4501-AB92-14293D7D70A9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1DD7BED7-672D-492D-AC4B-BCF1C5CD6552}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1DDE96F4-EA28-4AA3-8A13-7568A3E1CC1D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1E335882-1F23-481A-9E35-76D4A6A15609}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1E75F9C9-C7E9-4E1D-A8F5-EE932EEDB4C3}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{1F7E5765-3A84-4EAD-ABF9-24D0EB6FC912}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2156DBA7-0076-40F1-B4E2-F4F222C739FB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{215C80DB-7C0C-460C-B409-6074B0630897}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{21BC0591-6750-4070-8891-F0DE476060CF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{22A0193B-59D6-4283-A99E-A67B9D8CB263}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{23382583-E786-4AB8-BCE8-D46DD9059244}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{23A70D90-F5AB-4B30-90D3-CF87CB8D5A61}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{23F11EF9-0BD5-4B98-BA6B-F8228F14D474}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{24AF681C-1E15-4DDE-AB33-83FAB2DF1FF2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{24E524D1-9419-41AE-82F6-63DFEF1B531B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{25908D7D-0861-408B-B512-ED14BE7B8806}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2607E46B-216F-4D35-BB14-251A292B302A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{27824EF0-019F-4E99-8B6F-BED04852E115}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{284BDC5B-9A27-435F-AE37-4C1E3FDD8542}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2A3D2B20-6F8E-4AB5-B181-368DD4C52BE1}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2AFF631E-39DE-4524-ADCA-BAACDCFE6892}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2D938775-BD8A-4830-99BD-56FB06722B33}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2DE8991B-554D-42F2-BB7B-B71CDBEA8C78}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2F01C936-F992-4982-8BCB-D1EF8531FE41}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{2F9071BF-7AEF-4618-B671-E8855104A88D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{306EE96E-E735-476E-B02E-27AAC9A778BC}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3085E733-A59F-44F5-A89E-76B5F37606B6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{32272FB6-78C2-4028-B437-831A55B18583}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{345C1E43-A271-4EFF-9A47-E3224E284C2B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{34742C6E-C6C6-4F3C-8529-237A051C7031}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{35E69333-4880-4B0B-966D-E8DD28CF6917}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{368A4FCB-C008-44B4-B4BD-E9C36F7C724B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{36A0EAE1-8169-4E85-AF59-A6D5F4E5B518}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{36C21CF1-4F18-4B8E-B300-4ADBD7314CB6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{37565BA7-5C07-4B87-81DA-F4F66C2A0EC3}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{38C800B7-34A3-4B32-BF44-DEA442A0533A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{38D09418-F95D-4AD2-873E-0B66098A73F7}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{39C30B9C-B5ED-4103-8516-5EA26BA5B4DA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3A04BAB0-8588-4361-B44E-54909E7DC61B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3A42BF62-F013-465F-8D5B-FC754A40CCDF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3B585AF5-7FE7-4CFF-85B4-EC26BC254A34}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3C1A6A47-87E6-4796-8ECC-D9C7F60B6B71}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3D04B2BF-1874-4FC1-B158-3842AEC61A32}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3DC2E70B-D31F-47DD-A0D4-4BCE02309F3C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3E52C3B6-F075-41F0-9D9B-8D45F31F98E7}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3EF93329-615F-40D0-B28C-13230DB71FBB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3F494864-906F-4430-85B3-3EB6A9A574AB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3F78C424-E90B-4584-897E-B9E61A6BD555}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{3F809CEF-1993-437A-BBA7-0064DAF7CC46}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4074B588-E13C-40A6-93DA-5DDB622A52C6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{40F7BC8A-6349-40DB-A683-EFD873FA1A2D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{415190A0-24E1-4EA3-91F8-5B32DB43BE57}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{41714CEA-FAC4-4099-BA3D-13DB617A87D4}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{41D98D95-6C7B-4682-A765-F9429A6B24B3}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{42764AFA-40A0-400B-8710-406C5AC6BD32}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{44FEFE49-82A4-40B9-9330-CA53A32EA41F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{46B00116-8FF9-4948-82DC-B0B66DDBE1B1}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{46C01B2E-EC45-417F-9C21-B9C78B3A243E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{46D66A04-AF30-4B99-BE66-4BC490605B83}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{46FB189A-82F1-4965-A044-B870666CAB7E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{47298B15-82B1-445F-95DD-E011A7133B98}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{483646E8-CD0A-4FD5-A687-A51122AC97B4}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{49B256B5-2B3A-428D-9BE8-B6A8AE93876F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4A5F8BB6-C310-4320-A041-0E8038716C15}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4A959ADD-C5E6-4579-AD6F-EB419B501EF5}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4A9E57F3-2AE5-469B-96D1-4C6F533556AA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4B642210-339D-47A2-9214-9CEB7A2FA50B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4BA4022B-1633-4FA8-A536-7ADEDA9BFF45}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4BCB06EC-954C-4D36-9F69-F7E1DD396D1C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4C907A79-7AE2-4B1B-8701-99F308079B7D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4D274F20-9FA6-43EA-B4F0-29010A2909EF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4DDB2FC5-363C-404C-B16E-A880EDB7F0A8}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{4E62CD32-37E4-464D-9742-3EA96996AAAC}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{503C70D3-F55E-4C7C-9A85-624245C9B805}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{50CADB81-5ECA-4526-9823-1C3A294170ED}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{51F7BCF4-517E-430B-AA33-6BDE4923A4D1}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{523423DC-E2FC-4327-96CC-2EAA10560BE2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{547C0049-90E3-4E81-8B82-32F2A0D1E569}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{55C91E84-33EC-4B14-A8B1-80BACCAB3E99}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5649D8BE-11DD-4AF7-814A-4613F6576ABD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{56584BC3-C045-4190-98B3-9C8A5F9D3C0A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5724FEE7-356B-4064-9EAB-1BAC03D1E908}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5778D7FB-3F7B-4615-8DB2-8AA3874647C9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{579F01F6-48C3-4A8D-9B87-FF8C745F8AD7}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{592C12BC-137A-40DD-AE38-5865D72203DA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{59CDB123-74E8-4DBD-90A5-F2C77F51EAA6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{59E75E69-81AF-4A9D-95D1-83648F663FFE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5A736142-8593-4ED4-B025-27804F13F4FA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5AA475AE-58AF-433F-B3FA-0D901B479AB8}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5AB1ED65-DE0B-4BBC-8F78-6D2455A7F517}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5AEF018E-E31C-4D40-8BCB-F8E365AC541E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5C206F12-79BD-45F5-91A8-ED1FD4CCBFD0}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5CE88E24-241C-4C45-89DB-3510E673E7F9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5CFF91C6-17AD-4818-8C67-3E58E97A0582}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5D6DFBEF-0A6E-4764-98D9-E2F2E28E1586}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5DA8C712-483C-4499-81C6-36C936EA8BEE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{5F539E8A-383A-4876-ABC9-0913AB95870F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{6050BC8D-F45F-475C-8DAC-B63AC1C1936A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{6192D56D-C7CA-4961-92B2-9C7BE198BF8F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{64DBBA11-5278-4E91-AE6C-245FFCF4A843}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{67B48EA3-21C0-4C38-95C1-EEAF6AEA5AF6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{67FBDA43-A481-4767-ABF7-30B7126B5635}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{69041803-D285-46AD-B601-C97B881DAE2F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{696A7231-6EE1-4FB1-A6F3-3E3911BE5B65}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{6981D97D-E771-42EE-A5D6-21A3ECCE0AB8}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{6B2F92C6-8CC8-4D47-A8F9-41CD0508A7C2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{6C8AF168-BAE2-45FA-BDB8-5CE88E3D444E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{6EC3E303-8EE0-45B5-A819-AB49AA1AB11B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7001D27B-3F44-4F4D-A84F-4C949E25485C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{704948D8-E5A0-4D65-8A1F-1CCEB3B0FFB2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{715FBA8E-F9DF-4E86-BC85-92AFBA8A8FA7}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7196DAD0-D0F7-4D24-83E6-D889BE5383BF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{74C84EDF-B429-40C7-87A1-754C53B20BAF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{77746822-459F-4E0E-B21B-DBB218FD79AD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{783DF5BE-08EE-45BF-A0AE-B32ADE4E26A5}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{78B8FC64-AAFA-42B8-849F-C115C801C4F8}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7901DEFD-808C-4B11-8412-B49B61337068}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7AEB1662-4109-4778-B7FB-0B0EDA19EC34}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7B6EE9B5-6A98-49BC-8798-8EEACA536072}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7C5284E2-9418-40DD-9E3B-1AABC1E82963}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7D1B3B30-36AB-465A-96D2-F446E3300AFA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7D854EC5-7615-4CF2-B882-4476F3318C95}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7D88DA0A-55E5-4364-9EF5-3F06D622830C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7D944015-66D7-42D9-86F4-9B251DB99E1F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7DCC347D-2E56-4D33-93EC-BF6F54F1A95A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{7E9930ED-9760-4AAF-848D-DA27742EBF16}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{801BED45-C036-457A-9978-E16E68BEB880}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{803C66A6-9619-4C41-B61D-55ADE25A8FCE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{805B7EB9-0100-4D3C-86F6-FE011626AC44}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{8230DC08-4A0D-4F4C-8FFB-2373062EC7CC}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{8339DF7D-122E-4C3E-AD41-751EE0899633}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{83B264C4-3060-40FF-B456-6966A4B2C217}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{84904DFD-13F8-46F3-9A2A-F5ABDE55916C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{84E1F766-499C-4FC9-8906-C0890A009453}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{850704DD-2C73-4AEA-BD31-C520E1C9FB68}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{852B8D6E-5A45-4C4B-8015-F06A2FE5B16E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{856623FD-5BFE-4A0A-99DC-09BF08F91E11}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{859AAE86-FAB3-4C67-B279-D76CD8DF5478}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{85F43DA1-9038-4FC2-8F31-9565C12A0D48}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{86429E8A-64F6-4DDC-976E-C621621F8896}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{86A0F751-E87F-4070-8895-2BA428317F32}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{86A61096-B6CD-4F40-B87A-7FC9DFD9FC96}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{8713E767-BABD-4F05-A791-0DF866558FA7}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{87CDD290-A3C3-4CA1-9BD9-5DD9E97553C2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{88E09E42-120C-491B-A8C9-1F438EFF9CE5}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{89DD410F-5A6B-43F6-8DFB-6D0333AFEC43}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{8AD5464F-E424-4CF3-853B-0B70ADFBBA01}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{8B0D22E5-9414-4E03-A069-8886A30B9E10}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{8DB31C36-5CCA-42F0-A3CF-8D458B2E4FFB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{8FEF0802-406C-4C8D-943A-8B0CAB0AF684}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{90EE11E9-8D1E-4393-A626-0E787B1994CA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{91459CC8-976F-4154-9609-722BAF5D23AF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{928B0526-FA8B-4A9B-B259-7094C6A73A94}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{92D8848C-FDEC-4B98-9ECA-8C1772DC2227}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9365F38B-2926-4413-95A6-9FA50D7562AF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{937C2514-88A6-4A4B-93DD-16A48136C2ED}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{937E1CF0-D4B4-4EE6-9BA4-E09B99F9FC0B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{93A6937D-FAB6-4A32-9EA9-C61355501AC2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{93C6096D-E1A5-462A-BC82-7BC3C15520EC}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9547EC4F-52A5-4248-9920-35F3AAD9A824}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{958FB40C-694B-44F2-A8E6-CC970992AEBD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{961C3493-EB2D-4FAD-9DEB-BD192F803EAD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9757C451-2B0E-4ADF-BC88-0BC8E51F9B70}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{978AA371-2C1C-42FC-B081-7766FCD644E6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{98444F61-0C61-441D-A037-004694E91A28}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{99238AE3-AAEA-4A85-AC24-263ADFFDBF97}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{996328BF-E28A-4216-8405-ECD24098F48B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9A0BFD7A-F16C-428A-8DF9-9E7760BE21CF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9ABE98F5-CF3A-48B5-B7EB-965EA845B550}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9BABCF5B-7C84-4851-9397-095EFDE651E4}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9CBA4FEF-80C8-450A-8DF4-83BC29F8BCEB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9EF1A1F7-4726-4A28-8739-9975C8A4A1FD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{9FC1A1B3-47C6-4BD0-9711-A89F674265B8}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A089848E-B08B-4101-AC32-74E03014EAFB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A1EB539E-46E2-4802-93BD-1A2EBCB91C9C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A2761AEE-347B-4C44-A107-20539D07CC9A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A4B173BB-03E6-4EC3-A27E-FFCF19859F92}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A578D253-2194-48D8-AD14-9854178179B7}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A5E81C83-340B-49DA-9B32-48B79F4D912E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A75448F1-57CD-40B1-99C3-CC981B603A3C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A75F6F70-5218-459B-ACBD-7AC994AC3B95}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A7B9D384-25E5-4D77-A9ED-92C741D39C87}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A8AC447B-2920-4534-BF4F-F13C734CF107}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A95EA3E1-58AC-446E-8071-A3342FD849B4}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{A96E940D-A74C-4178-9956-1B1B5A26D4FE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{AC26CAA7-C804-466A-B7D2-DC7FE1F2E5EB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{AD6D809D-15CC-4844-A549-4E4ABB914E03}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{AE2B231B-C5B8-4AA1-BD96-35C5228CA94F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{AFB2EFF8-A917-40B0-9252-7B772F03CFE9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{AFBF2F62-7481-49F1-B89B-643DE33D411E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B1F1EDD7-1EBA-4D63-A2F5-215BC019695E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B23EB890-24E2-4CF2-B070-5187EAE536E0}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B26895CC-8F9C-427D-B38F-502CFA7F3FD9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B3401BC4-BA02-42BA-A521-50E19B12D75D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B39ACBBB-87D5-4AA1-A6F6-78069960B0A8}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B5C7B104-E10E-4B72-B017-6FCF7544F477}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B66D3954-A317-4892-BAB4-7FEAC910379A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B6923EA2-F754-4164-9997-8AE577B44418}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B7436CC3-F681-49E4-8EAC-343FAC9D8525}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B7DAAF91-3321-4D5B-81F9-ED2B7FCBEC37}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B87F1AE4-092B-4B52-91B2-6E69F6B338B2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B887348B-52D9-4702-9B72-7DFC23174969}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B91F9970-C791-49B1-9070-810A6E613048}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{B9C7F27A-4E22-4B36-941E-E24F99BF0B01}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BA6453F0-2570-4C80-9CAE-77C34DBDA1E3}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BAB1249C-4302-49A6-8B98-18AF598B59F2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BAB1DD1B-2417-4B9B-889E-01F0359E00DF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BB3224B9-59C5-41CE-AE59-17DF76ADCE5B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BB380DDF-71C5-435A-906D-92DF1AD4EE5D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BBB3D955-CAB1-4A5A-B3D8-DB39268B5470}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BBBEFCBB-9AF3-40ED-80AC-A871B138108E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BDA4B160-B8E9-4829-998B-50E7385A7EA9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BE1581E9-3F54-4852-9611-A8A15E2DB486}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BE34AF98-E731-41C8-8B56-27F336EA46F9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{BFFAFA21-BBDC-4DB7-997A-152CF42664C5}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C168EEC7-B70D-4A9F-A8FB-693DA1322D18}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C1697F93-022B-40BB-B46E-0C60DC4C9608}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C1F5EE2F-E045-4143-9B5F-1F5CA52C4489}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C1F7398A-62D8-42B2-9AFC-36E9BC155440}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C25282B7-58BB-4076-93DF-9957EE92FAAB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C2F75119-E97B-4BC8-85DF-585669242FEB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C4479C66-EE61-40C3-B469-169F97AF19F1}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C47D0799-4087-488B-AD93-64005F217877}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C4DE15B9-26D7-4FE5-B374-B50297BE1505}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C6CAD804-AAC2-4FD1-A375-C8AE4C1757C3}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C73DBE06-1D9E-40C5-A9CB-D396CCFA934B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C7D32ACC-BCBA-4DF0-A328-DA6E8D9B0FE5}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{C91A19D7-7705-4BA6-A734-434E6A9E90AE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{CABB417D-838E-44A0-B68D-61683F4565D7}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{CAF0465D-2BA9-427F-A9BF-2DAA7331DB94}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{CD2DDE6A-F603-4CD9-B804-CC80AB78C072}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{CE89565E-5B37-4072-938F-455B9A983160}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D04E39D9-C20B-49A4-93FD-C800653AC695}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D1E53CD7-70F4-4276-9F8E-FBB180544F10}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D1F4847C-F086-4780-B901-0F091C2FDB5B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D3C84E92-A51B-4FE0-A780-DEEAD1857131}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D3EF4558-B368-4626-BF7A-FA7E329F1AFD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D41F7806-B258-4631-A9F5-45D3813969A9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D62D4815-636B-4336-A31E-3FB6D7BB811B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D6902F50-4128-4117-B010-17535A180C15}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D6B6D54E-7029-4FF9-8D0C-C5F0DE786F6F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D80DA1F0-FE9F-4114-B8FB-B28543CE5EE6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D9177AE3-6F41-4629-AE84-CCD16E9C9F38}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D93A801D-1376-44FD-B215-1E82A2EA18EA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{D9AB0A22-34C7-4394-99C5-5458E6BD95DC}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{DA35EA57-50AD-437E-8169-498758E4FF5A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{DB0710BB-4754-4745-8E4C-50354C81F8DF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{DE35D0CC-E9C3-4973-AB92-FB672E90CBBB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{DE5BC1FF-428A-442A-972C-B758066D3C6F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{DE688E7D-BEDC-4551-AA38-0969B2AC5F2F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E01401D4-0601-43DD-870A-C7A90ACF30B6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E281FF3C-7FFD-4121-8F5D-8F2D9D7AD1B2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E32D9215-69AB-46B9-985D-0F2102FD303D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E34CBD89-F75D-4BCC-A05B-D5616FCD5641}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E3EF7E74-946F-4636-9104-A167E6CCF1FF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E47EF101-E71D-44D6-B243-1A9A7F0E1DCD}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E5023B7A-73CE-4CA4-8076-2B2AC4677F3E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E59631F2-01AE-40BE-9CA1-39BCC983861A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E5C95538-C298-40C2-B545-D8AC1054AB09}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E609EF6A-42F5-43AC-8C3A-91EC3C6DB06F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E643BBB9-51DC-46DC-A2D4-06D78AB656FF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E869F8C4-E3DB-4AB5-928F-2507BE3AB989}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E88E9C8B-B099-4581-82F8-C3FEC97137DF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{E934E512-2A09-4E7F-8A33-D359B41EC975}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{EAD2B140-B274-4847-BBF2-59883AF2EBAE}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{EB061DBB-6D61-4095-A999-E85828BE45A6}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{EB24580E-3CB3-4913-AEFC-A5D570A9B1BF}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{EBBB400D-734B-46EF-9E5F-B8BC262F27AA}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{EC88984E-B42A-4533-B43E-7E13361E2EB8}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F01C3D36-9260-4D73-A3CF-781A69A614BB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F0F9B0DF-4BBE-47B8-A54B-BF51F8217348}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F3215732-8C56-4D6D-BA9F-8E3F055A37A2}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F480C93E-9A86-40CB-A180-DAF1D5442A8D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F48EC99C-9267-4D5C-90E6-0A3294E11D54}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F5583BA6-053B-4E6B-90D4-1BB8452D92F1}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F5DD4C88-5CBC-4422-96B9-A8DCE0C1426F}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F692AB90-D809-4F42-94E1-097DFF5E22B9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F6F8524F-6B3B-4B71-9B3E-17E5EDEE887B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F7090751-2869-4560-9A79-B9216027F691}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F7665C01-7E96-47FB-B923-B3A53A4FD6E9}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F86183FE-D618-4575-92F4-19768E532D1A}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{F8696E64-7160-40C5-BFC2-E0D09E0427EB}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FA695563-4CE5-474F-B91E-6F7841E9134C}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FA87B483-6513-4C7D-A52D-EC633C4BA783}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FA8EB0A6-4CE1-40B3-8DC8-88D5C010B36E}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FAB43B87-EFAE-4254-8CD8-155537378E69}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FAE74933-E14B-488C-86C6-32F4D20DB85D}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FB675AAD-14D2-4362-86A2-B4A21ED11121}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FB689409-3546-4EBA-ADA5-F243F423F973}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FB69D969-3866-4475-AD6F-9EE92B0CF281}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FB99046C-C5C5-4B0C-B3A8-27A4C7840476}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FBB3D795-9A47-45BE-A490-9BABFAC7A88B}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FD096AEE-D1EC-434D-89AC-0D71D8894603}
Successfully deleted: [Empty Folder] C:\Users\Connor\appdata\local\{FF20E672-ABD3-4697-B69E-94301116D5D7}



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Connor\appdata\local\Google\Chrome\User Data\Default\Extensions\hhbgpoakplhahbklhkcfbpicgjcaoglk
Successfully deleted: [Folder] C:\Users\Connor\appdata\local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\banjjklfojcdbofbhbgiedekefohoaff
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Google\Chrome\Extensions\banjjklfojcdbofbhbgiedekefohoaff
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Google\Chrome\Extensions\hhbgpoakplhahbklhkcfbpicgjcaoglk
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Google\Chrome\Extensions\pgmfkblbflahhponhjmkcnpjinenhlnc



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 10/24/2013 at 14:04:22.68
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Connorj67
2013-10-24, 22:19
I could not fit the OLT.txt into a post so I have attached it in a zip.


OTL Extras logfile created on: 10/24/2013 2:06:30 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Connor\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.96 Gb Total Physical Memory | 6.39 Gb Available Physical Memory | 80.27% Memory free
15.91 Gb Paging File | 14.19 Gb Available in Paging File | 89.17% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.14 Gb Total Space | 8.99 Gb Free Space | 7.54% Space Free | Partition Type: NTFS
Drive E: | 1862.89 Gb Total Space | 697.01 Gb Free Space | 37.42% Space Free | Partition Type: NTFS

Computer Name: CONNOR-PC | User Name: Connor | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[b]64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-899752424-1431124922-1543149501-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{182A3962-0146-462A-B3FB-60E98081E4AE}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{1F6AB169-75A9-462A-B13F-6E8A0EBD350D}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{8DEC3C2A-5C55-4666-93FC-CADA3DEDC9E5}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{9C096508-B999-43F7-AAD0-FFA8F942920D}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{B954DEE1-F98A-48DA-ACB0-3A5857E3C2FF}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{CCC9AC48-AA57-46C8-8AA9-7AB1D60467BE}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{E050BD00-67BD-4D6E-8F76-44FE08911CDB}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00CB51EF-9186-4F15-84E2-A4319F75F883}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\alan wake\alanwake.exe |
"{015B4E5D-C796-427F-A3EB-ACC865C50456}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe |
"{02B153C9-FF58-4CFE-8DF1-EDF99C8BC792}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{05601F1B-6990-4883-9DB8-EEC7B0D75F43}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{08190523-615E-4E8C-8BEC-8393A18F02B2}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\rage\rage.exe |
"{0AAB3E2C-2625-411A-9CF3-C2C36E0FF844}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd |
"{0F3710CF-93FD-4000-893B-44EF59366F7D}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{115AA798-7FE5-4508-8DF0-57BB6138DBE8}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{11BC8703-39AE-477F-9E26-F5532E44B8FB}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd |
"{1506BDB8-FD2B-42F7-ADD6-A2D8A3263AC4}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{16BC4E5B-B487-4FA9-99CD-BBD948B1380A}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{190AC697-2680-4AB7-8A40-F3A058994C8F}" = protocol=17 | dir=in | app=c:\users\connor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{22FB4038-B868-43B3-907D-73DCD07FDEB5}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{263B614D-1FBC-4134-B96A-1F4F7FFAD9A9}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\crysis 3\bin32\crysis3.exe |
"{30D6F56A-7078-4BA9-BFD4-19C70C00391A}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{3634C235-F1C0-4B59-B5D6-EB00BF0E126E}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{38018B79-6B4D-484B-B133-210776CDB7E3}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\bioshock\builds\release\bioshock.exe |
"{3D51D9C1-6475-428B-B754-28E3162A26CB}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{3DB1C52E-2249-4C8C-B8F7-569BF8B73AEA}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{3F21594D-CF55-4BD1-A7FE-72E50640ECFC}" = protocol=6 | dir=in | app=c:\users\connor\appdata\roaming\utorrent\utorrent.exe |
"{4012A17F-9A67-4173-B9EB-3219CFAF6143}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\dlcsetup\pmc\datacachepreprocessor.exe |
"{485505B5-ECA8-4979-BE21-5049630AC40A}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\dlcsetup\baf\datacachepreprocessor.exe |
"{4D5751E4-8909-46A9-8832-126CAA9C9BC2}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\arma 2\arma2.exe |
"{54FE952C-E3FD-4F12-9A41-B93989652744}" = protocol=17 | dir=in | app=c:\windows\system32\dmwu.exe |
"{5505CCA6-3280-4E5C-9A6E-D40D40CF8849}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{56435818-5607-4004-B580-93E7D582EBB9}" = protocol=6 | dir=in | app=c:\users\connor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{571218DB-6CF5-43E5-A1AB-6F834F8564DE}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{5A95F461-AC1C-4155-9459-814B0E7A491E}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{5E7A39FB-2580-4D33-B445-61AAFAC4B618}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{63CA120F-F27D-46DE-8CC3-8307E4E36F3A}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\dlcsetup\baf\datacachepreprocessor.exe |
"{643AA650-6EE8-4D39-B680-9EBC590D8ECB}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\arma 2\arma2.exe |
"{658B1729-D27E-47EB-9DDC-762CE8F229E4}" = protocol=6 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{658CDF44-178A-42ED-A813-EEA6F1DC7F82}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite ii\wi-fi go!\assisttools\wifi go! server.exe |
"{6BA23EED-75FC-4094-B122-FB8525AC22FF}" = protocol=17 | dir=in | app=c:\users\connor\appdata\roaming\utorrent\utorrent.exe |
"{70CB6CB6-2DBF-469A-9227-1E5538BC2236}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\dlcsetup\pmc\datacachepreprocessor.exe |
"{751807D3-CDC2-4CD7-BC58-D2443026129E}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{7757663B-1F68-4EE2-AEE0-CE3B6ED5750C}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\the witcher 2\launcher.exe |
"{86041F1C-D6D4-4DE1-ADFA-E0D37A8D7202}" = protocol=6 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{868C0365-D1C0-4EF9-BFE4-F38AF58CE6B5}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{894624F4-BF7E-45CA-8DC4-7BAF656AAF4A}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{8DD6FD84-09D5-43B4-82D8-790B40F1197C}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe |
"{8F17E694-4C24-4668-B62E-3FFABFD8A1D6}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{930405E5-CA0C-4564-8EF3-D20D303E4EF7}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe |
"{9810C959-ED8F-4915-AF38-892CE3E2FAAC}" = protocol=6 | dir=in | app=c:\windows\system32\dmwu.exe |
"{982AF13A-1D47-450A-B053-9AE70B758440}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{98667740-94EA-4BEE-AB6C-6715E395C183}" = dir=in | app=e:\adobe\adobe photoshop cc\photoshop.exe |
"{9A41178E-71AD-4F99-B052-3FFAB2FD9DD0}" = dir=in | app=e:\adobe\adobe photoshop cc (64 bit)\photoshop.exe |
"{9AC6E525-19AB-4BD3-9B42-F8239282F88F}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{9DDBA0C2-E680-4DE5-93BE-1364B6B96E54}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\rage\rage.exe |
"{9FCD1137-4CCC-4C8B-8C0C-6B43E4B0DF97}" = protocol=6 | dir=in | app=c:\users\connor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{A8C181D1-D26E-4E70-92AB-C5B4345823D4}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite ii\wi-fi go!\assisttools\wifi go! server.exe |
"{AE9D86C8-5051-49E2-9D45-0AE24E976CF8}" = protocol=17 | dir=in | app=c:\windows\system32\dmwu.exe |
"{AFDD69A4-BA7E-45FE-B23B-E5240D8145CD}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{B18CB5D4-7BB8-4978-9602-D6118DBAD59E}" = protocol=6 | dir=in | app=c:\windows\system32\dmwu.exe |
"{B5868DCD-206D-42AF-AF3A-D57669EE570F}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{B7F366FF-DAAC-43D9-8F9B-95DEF54AE570}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{B8435ED8-6FCD-4AD8-81D3-C271407E55CF}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\alan wake\alanwake.exe |
"{B8A186A9-28B0-4772-B894-7E2E94065467}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{BB9F6389-CD3C-4DB7-A0A5-57EBA71BF006}" = protocol=17 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{BBFD3812-C2C3-4093-9D19-36790C71AED4}" = protocol=6 | dir=in | app=e:\steam\steam.exe |
"{BE66FC4B-25A8-4176-8924-23A54448CD0B}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\the witcher 2\launcher.exe |
"{C2A73591-16AD-4E9F-AF88-F209EE7956AA}" = protocol=17 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{C2CE8210-A4BB-4D18-9F9E-38F4610B3F5A}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{C83500A6-A172-447C-8D81-F64DE4D3480F}" = dir=out | app=e:\adobe\adobe photoshop cc (64 bit)\photoshop.exe |
"{CEC4005F-26EE-405B-9765-F504DD86464C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CFBAFA0F-33C7-469B-8651-88D51DE08F20}" = protocol=17 | dir=in | app=c:\users\connor\appdata\roaming\dropbox\bin\dropbox.exe |
"{CFF730A8-C6B0-4306-B612-6672A72BB784}" = protocol=17 | dir=in | app=e:\steam\steam.exe |
"{D29CF3EB-99E2-4037-BC21-2BA9961F566C}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{D7E9D597-0142-4B74-A0F0-F172DC512A31}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\crysis 3\bin32\crysis3.exe |
"{DA3A1883-B1DE-4301-A337-6724579507E9}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{DD085499-FED7-4555-B880-EE11C7029E84}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr9.exe |
"{DF713D33-873B-4BCB-BD75-C802E38098EA}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{E3B69D79-6400-4BC5-AAE0-0E2F9B6CB9B2}" = dir=in | app=e:\warz\the war z\warz.exe |
"{E9028D22-154D-4A70-B7AD-CECAA13B55FE}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\bioshock\builds\release\bioshock.exe |
"{EA8E187B-9E3C-4912-9A01-03654F40D971}" = protocol=17 | dir=in | app=c:\users\connor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{EC28305C-F383-4F5C-A2ED-7338EB8BC1A2}" = dir=out | app=e:\adobe\adobe photoshop cc\photoshop.exe |
"{ED78E389-55FC-42A2-854D-F14DFEB1F56F}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{F05B1218-62CB-4B53-BE51-997B3A1A48CC}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{F8ED1987-9834-4446-9162-E1E871C75F90}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe |
"{FAB83A83-68A1-4CB6-90DA-300031B3AD36}" = protocol=6 | dir=in | app=c:\users\connor\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{0104CE7C-E44F-43DF-926C-519C144DA3A3}C:\users\connor\desktop\games\guild wars 2\gw2.exe" = protocol=6 | dir=in | app=c:\users\connor\desktop\games\guild wars 2\gw2.exe |
"TCP Query User{3A4DE696-E7CE-450A-A6A4-05F22D4733BC}E:\steam\steamapps\common\the witcher 2\bin\witcher2.exe" = protocol=6 | dir=in | app=e:\steam\steamapps\common\the witcher 2\bin\witcher2.exe |
"TCP Query User{3D2CE812-A129-4192-902B-6A402107FE23}E:\sixupdater\tools\bin\rsync.exe" = protocol=6 | dir=in | app=e:\sixupdater\tools\bin\rsync.exe |
"TCP Query User{4D84B2AB-20C1-4A6E-8526-185D1DFD0A1B}C:\users\connor\desktop\gw2\gw2.exe" = protocol=6 | dir=in | app=c:\users\connor\desktop\gw2\gw2.exe |
"TCP Query User{8B64553D-5261-4A90-ACC8-ED96F4455577}C:\program files (x86)\six projects\six updater\tools\bin\rsync.exe" = protocol=6 | dir=in | app=c:\program files (x86)\six projects\six updater\tools\bin\rsync.exe |
"TCP Query User{8F12ED4F-8AC4-46F1-B5FC-7479E2D58B4C}E:\six\tools\bin\rsync.exe" = protocol=6 | dir=in | app=e:\six\tools\bin\rsync.exe |
"TCP Query User{95D8F794-16FE-4C49-BAFB-21F045901D4A}C:\users\connor\desktop\guild wars 2\gw2.exe" = protocol=6 | dir=in | app=c:\users\connor\desktop\guild wars 2\gw2.exe |
"TCP Query User{A5CBB919-DCAF-4160-BEE1-41322832274E}E:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=6 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe |
"TCP Query User{C23EC258-B146-4DE5-BFE5-17F225654AFA}C:\users\connor\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\connor\appdata\roaming\spotify\spotify.exe |
"TCP Query User{D46A1C24-004F-4B49-8E7C-43E2A5D9692C}C:\users\connor\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\connor\appdata\roaming\spotify\spotify.exe |
"TCP Query User{EF956856-F9BE-4FA6-A752-1151EE14FFD2}C:\users\connor\desktop\gw2.exe" = protocol=6 | dir=in | app=c:\users\connor\desktop\gw2.exe |
"UDP Query User{07A34A1B-85EA-4AB3-B9B7-045D28EA0CCA}E:\six\tools\bin\rsync.exe" = protocol=17 | dir=in | app=e:\six\tools\bin\rsync.exe |
"UDP Query User{16DE9BA2-025C-4EA0-B080-A02D8A0811BB}C:\program files (x86)\six projects\six updater\tools\bin\rsync.exe" = protocol=17 | dir=in | app=c:\program files (x86)\six projects\six updater\tools\bin\rsync.exe |
"UDP Query User{3F0BDBC0-05D1-4DBD-8E79-4BB248FAB183}E:\steam\steamapps\common\the witcher 2\bin\witcher2.exe" = protocol=17 | dir=in | app=e:\steam\steamapps\common\the witcher 2\bin\witcher2.exe |
"UDP Query User{7DB5C173-3CE5-4BDA-8ABA-0A6ADA7EDF29}C:\users\connor\desktop\gw2.exe" = protocol=17 | dir=in | app=c:\users\connor\desktop\gw2.exe |
"UDP Query User{7FBA77B6-C5B1-4C19-AF7E-FFD76ED08B63}C:\users\connor\desktop\gw2\gw2.exe" = protocol=17 | dir=in | app=c:\users\connor\desktop\gw2\gw2.exe |
"UDP Query User{9F30752F-2031-4D59-ADE2-F1870F5820B2}C:\users\connor\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\connor\appdata\roaming\spotify\spotify.exe |
"UDP Query User{BF5CAA66-8BD9-43E1-859F-852E455909FD}C:\users\connor\desktop\games\guild wars 2\gw2.exe" = protocol=17 | dir=in | app=c:\users\connor\desktop\games\guild wars 2\gw2.exe |
"UDP Query User{C0A2B668-9505-4632-AFB4-E1C3D061ABB4}C:\users\connor\desktop\guild wars 2\gw2.exe" = protocol=17 | dir=in | app=c:\users\connor\desktop\guild wars 2\gw2.exe |
"UDP Query User{CB4E0FA3-EC56-4693-88DB-8D504C250D11}C:\users\connor\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\connor\appdata\roaming\spotify\spotify.exe |
"UDP Query User{DFC65D03-27A5-441C-9BE6-FD6E5A68C015}E:\sixupdater\tools\bin\rsync.exe" = protocol=17 | dir=in | app=e:\sixupdater\tools\bin\rsync.exe |
"UDP Query User{DFCADA86-13FC-450A-80AD-A813A753F17B}E:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=17 | dir=in | app=e:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{02A5BD31-16AC-45DF-BE9F-A3167BC4AFB2}" = Windows Live Family Safety
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp 1.0 RC5
"{09536BA1-E498-4CC3-B834-D884A67D7E34}" = Intel® Trusted Connect Service Client
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{0E5D76AD-A3FB-48D5-8400-8903B10317D3}" = iTunes
"{127B5371-1802-4EDD-A25A-A43BF761D383}" = PBO Manager v.1.4 beta
"{1444D2EE-C7AD-44A8-844F-2634B49353D1}" = Logitech Gaming Software 5.10
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1E9871B6-7C44-9A3A-A1C0-F9729663C7F5}" = AMD Catalyst Install Manager
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{4371D69B-FB6A-4A61-8477-C1B919FB2311}" = TortoiseSVN 1.7.7.22907 (64 bit)
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{54F2237F-018C-483B-8884-9FC0D88840C3}" = VC_CRT_x64
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{67631D8E-EB7F-5D02-002C-D682BCF1D3EB}" = AMD Accelerated Video Transcoding
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{69045C17-66CE-1316-6CC9-7EA496D1F6EA}" = ccc-utility64
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{82EE86D9-60B9-1025-9960-97E9B7C7B4B4}" = AMD Drag and Drop Transcoding
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{9497360C-4C41-4E05-81C0-BE56DF2ADFE8}" = Trapcode Particular 64 bit
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B4ED896A-2F5F-4FF4-B403-9DF832E1F21F}" = Intel(R) Network Connections 18.2.63.0
"{D70884EA-E2CE-4539-91DB-4766CC1E5F5F}" = Apple Mobile Device Support
"{D9C50188-12D5-4D3E-8F00-682346C2AA5F}" = Microsoft Xbox 360 Accessories 1.2
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E8C64028-08E5-4BF0-B1C0-DBAAC6A77DF1}" = PowerDirector
"{FBBC4667-2521-4E78-B1BD-8706F774549B}" = Best Buy pc app
"{FFCEA5CD-93FE-F0DB-57AB-0E0A62F0214A}" = AMD Media Foundation Decoders
"CCleaner" = CCleaner
"Logitech Gaming Software" = Logitech Gaming Software 8.30
"PROSetDX" = Intel(R) Network Connections 18.2.63.0
"Sn1" = Logitech Flow Scroll 4.0
"sp6" = Logitech SetPoint 6.32

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05B3E767-B182-4279-A35A-A56810C77CFD}_is1" = MP3 To WAV Decoder version 1.0 r2
"{07B98CCD-72B4-7F02-F9C1-B0410BA81580}" = CCC Help Norwegian
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D66D9EB-2DAE-599C-92D0-E2E6CCAA0666}" = CCC Help Japanese
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1CA07BFA-8F7C-80CA-0A69-EAA93C7C7744}" = CCC Help Chinese Traditional
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBAE18D-4DE4-47AA-83EC-D1B046F262DC}" = PDF Settings CC
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D FurMark 1.11.0
"{239D758B-F854-D61D-AC4E-1AAA9654426F}" = CCC Help French
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2B2782F8-929D-AE80-1297-488D7590D208}" = CCC Help Portuguese
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}" = Adobe Photoshop CC
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"{317243C1-6580-4F43-AED7-37D4438C3DD5}" = Adobe After Effects CC
"{31DF9E67-DA8A-5C06-BBAD-3B3BCB5B2304}" = CCC Help Polish
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34D3688E-A737-44C5-9E2A-FF73618728E1}" = AI Suite II
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{3FD0C489-0F02-481a-A3E1-9754CD396761}" = Intel® Watchdog Timer Driver (Intel® WDT)
"{4198AE83-A3C6-4C41-85C8-EC63E990696E}" = Crysis®3
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D3BF70D-19A9-F87B-7B8B-8BADDFF9C8A5}" = CCC Help Finnish
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.9
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{51853D9B-0D96-7A31-88D7-8520B50373F0}" = CCC Help Italian
"{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1" = Adobe Update Management Tool
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{580B86B2-0E0F-996C-0045-38D0B681B16E}" = CCC Help Danish
"{5B616A3F-43D9-4F0B-9F49-D39342A98592}" = Creatures of Darkness
"{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}" = Asmedia ASM106x SATA Host Controller Driver
"{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}" = NVIDIA PhysX
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6AEFCA01-8DF1-11E1-A17B-F04DA23A5C58}" = Vegas Pro 11.0
"{70CB6C40-8DF1-11E1-BDCF-F04DA23A5C58}" = MSVCRT Redists
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71F8C486-8A13-468E-8B73-06051075556A}" = Female Voice Pack
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7D72DAFF-DCB2-437B-BC22-4B2ABF21462B}" = Private Internet Access Support Files
"{7D916FA5-DAE9-4A25-B089-655C70EAF607}" = Qualcomm Atheros WiFi Driver Installation
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8624569E-94AE-EF90-92E2-6AD8E5A617ED}" = AMD Catalyst Control Center
"{88B2ABCF-9C00-47C1-8FC4-369B98845DD7}" = Catalyst Control Center - Branding
"{8A6F6649-5244-9C2E-80CD-AD49603321AF}" = CCC Help German
"{8BF66753-6750-D41C-43EB-F64C54A8E80D}" = CCC Help Chinese Standard
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EA39464-1316-0125-7FD8-E74B49ADB429}" = CCC Help Turkish
"{8FB2A014-A0B0-42D8-8E18-9AFC6A6E2814}" = Seagate DiscWizard
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{90D2DF70-F0E8-2CA3-F3B9-DD7CE267BB19}" = Catalyst Control Center Graphics Previews Common
"{91120409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{9785513D-0335-E199-3AC0-74DF83246F20}" = CCC Help Czech
"{99C28455-E285-4639-B4C6-9F747C0C3D4C}" = DayZ Commander
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A049FD86-61DA-E6DB-2602-0065CB7D4414}" = CCC Help Greek
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A7B4D968-7FB7-2CD3-9792-5ACCAECAC72E}" = CCC Help Korean
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.05)
"{AD88355B-A4E0-4DA1-BAC3-EA4FEA930691}" = Ipswitch WS_FTP 12
"{B05FBD47-2A22-2259-E65C-A2D3FB647A6A}" = CCC Help Russian
"{B106B636-CAE2-B7BC-2988-3FD21DB1E0C7}" = Application Profiles
"{B328A1B9-D169-FBA9-F4AF-806E0046F89A}" = CCC Help Spanish
"{B5BE22C7-420A-5F14-A1B9-4AB3F3DE0A3E}" = Catalyst Control Center InstallProxy
"{BE73543D-E7A0-01D8-7866-C05693BB6BBE}" = CCC Help English
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Apple Application Support
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D813EF9B-69CF-4996-893C-B400AE7292FA}" = Spooky Sounds
"{D91802D9-6A42-4563-BC37-B3E2D04DC95B}" = Ancient Weapon Sounds
"{D9E34320-D91C-E961-D902-B60788EAA26E}" = CCC Help Hungarian
"{DBDD570E-0952-475f-9453-AB88F3DD5659}" = Python 2.7.5
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DF4CBDE3-8789-A589-46F2-7F5B78092D5F}" = CCC Help Swedish
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EA450D5D-95EA-4FD0-B8B0-6D8E68FBE2C7}" = GameStop App
"{EC2D4C8B-D8BF-7E06-C094-26B4CE84BF8C}" = CCC Help Dutch
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.27)
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FB474A6C-CB62-AA42-A618-2EA58F0F2504}" = Catalyst Control Center Localization All
"{FBBC4667-2521-4E78-B1BD-8706F774549B}" = Best Buy pc app
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) OpenCL CPU Runtime
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFB3193B-D922-DD38-B218-EB86DD3F3FAD}" = CCC Help Thai
"A2BAF Data cache removal" = ARMA 2: British Armed Forces - Data cache removal
"A2PMC Data cache removal" = ARMA 2: Private Military Company - Data cache removal
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Afterburner" = MSI Afterburner 2.3.1
"Aleks 3.18" = Aleks 3.18
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"Battlelog Web Plugins" = Battlelog Web Plugins
"BattlEye for A2" = BattlEye Uninstall
"BattlEye for OA" = BattlEye for OA Uninstall
"Cisco Packet Tracer 5.3.3_is1" = Cisco Packet Tracer 5.3.3
"DivX Setup" = DivX Setup
"Dxtory2.0_is1" = Dxtory version 2.0.122
"ERUNT_is1" = ERUNT 1.1j
"ESN Sonar-0.70.4" = ESN Sonar
"GameStop App" = GameStop App
"Generic Mod Manager_is1" = Fallout Mod Manager 0.13.21
"Google Chrome" = Google Chrome
"HeidiSQL_is1" = HeidiSQL 7.0.0.4053
"InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"InstallShield_{9497360C-4C41-4E05-81C0-BE56DF2ADFE8}" = Trapcode Particular 64 bit
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"N360" = Norton 360
"NirSoft ShellExView" = NirSoft ShellExView
"Notepad++" = Notepad++
"Origin" = Origin
"PunkBusterSvc" = PunkBuster Services
"Sapphire TRIXX" = Sapphire TRIXX
"Steam App 236390" = War Thunder
"Steam App 33900" = Arma 2
"Steam App 33930" = Arma 2: Operation Arrowhead
"Steam App 65700" = Arma 2: British Armed Forces
"Steam App 65720" = Arma 2: Private Military Company
"TeamViewer 8" = TeamViewer 8
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"Uplay" = Uplay
"VLC media player" = VLC media player 2.0.8
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Xvid Video Codec 1.3.2" = Xvid Video Codec
"Youtube Downloader HD_is1" = Youtube Downloader HD v. 2.9.6

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-899752424-1431124922-1543149501-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"fc418bf9b18f76aa" = Ghost Recon Online (NCSA-Live)
"SOE-C:/Users/Connor/AppData/Local/Sony Online Entertainment/ApplicationUpdater" = applicationupdater
"Spotify" = Spotify
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10/24/2013 3:04:53 PM | Computer Name = Connor-PC | Source = WinMgmt | ID = 10
Description =


< End of report >

ken545
2013-10-24, 22:34
My bad, got ahead of my self :red:

Double click on AdwCleaner.exe to run the tool again.

Click on the Scan button.
AdwCleaner will begin to scan your computer like it did before.
After the scan has finished...
This time, click on the Clean button.
Press OK when asked to close all programs and follow the onscreen prompts.
Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
Copy and paste the contents of that logfile in your next reply.
A copy of that logfile will also be saved in the C:\AdwCleaner folder.


Post the log please

Then run a new scan with OTL and post that log also, there wont be an extras log this time so dont knock yourself out looking for it

Connorj67
2013-10-26, 22:19
# AdwCleaner v3.010 - Report created 26/10/2013 at 14:09:53
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Connor - CONNOR-PC
# Running from : C:\Users\Connor\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\PC Optimizer Pro
Folder Deleted : C:\Users\Connor\AppData\Local\PackageAware
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\infoatoms@infoatoms.com
File Deleted : C:\Users\Connor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [infoatoms@infoatoms.com]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKCU\Software\AppDataLow\Software\Vid-Saver
Key Deleted : HKLM\Software\bProtector
Key Deleted : HKLM\Software\Funmoods
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\InfoAtoms
Key Deleted : HKLM\Software\InstallIQ

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16514


-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\Connor\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [14930 octets] - [16/10/2013 04:42:01]
AdwCleaner[R1].txt - [13461 octets] - [23/10/2013 15:01:11]
AdwCleaner[R2].txt - [13522 octets] - [23/10/2013 15:07:02]
AdwCleaner[R3].txt - [6190 octets] - [26/10/2013 14:09:32]
AdwCleaner[S0].txt - [6055 octets] - [26/10/2013 14:09:53]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6115 octets] ##########

ken545
2013-10-26, 22:44
Just see some leftovers that the scans we ran may have missed

Open OTL.exe

Copy/paste the following text written inside of the code box into the Custom Scans/Fixes box located at the bottom of OTL


:OTL
O3 - HKLM\..\Toolbar: (no name) - {474dcbf4-0db1-4c6a-a014-1c2544e82698} - No CLSID value found.
O3 - HKU\S-1-5-21-899752424-1431124922-1543149501-1000\..\Toolbar\WebBrowser: (no name) - {474DCBF4-0DB1-4C6A-A014-1C2544E82698} - No CLSID value found.
O3 - HKU\S-1-5-21-899752424-1431124922-1543149501-1000\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.


:Services

:Reg

:Files
ipconfig /flushdns /c


:Commands
[purity]
[resethosts]
[emptytemp]
[start explorer]
[Reboot]

Then click the Run Fix button at the top. <--Not run Scan
Let the program run unhindered, reboot when it is done
Then post the results of the log it produces




How is your system behaving now ???

Connorj67
2013-10-27, 21:45
I don't know if this is normal but after rebooting from doing that fix windows loaded very slow. It then black screened for a minute or so but seems to be running okay now. However I can still not copy/paste or drag and drop files with out windows explorer crashing.

All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{474dcbf4-0db1-4c6a-a014-1c2544e82698} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{474dcbf4-0db1-4c6a-a014-1c2544e82698}\ not found.
Registry value HKEY_USERS\S-1-5-21-899752424-1431124922-1543149501-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{474DCBF4-0DB1-4C6A-A014-1C2544E82698} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{474DCBF4-0DB1-4C6A-A014-1C2544E82698}\ not found.
Registry value HKEY_USERS\S-1-5-21-899752424-1431124922-1543149501-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{88C7F2AA-F93F-432C-8F0E-B7D85967A527} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}\ not found.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Connor\Desktop\cmd.bat deleted successfully.
C:\Users\Connor\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Connor
->Temp folder emptied: 16875375 bytes
->Temporary Internet Files folder emptied: 1580088 bytes
->Java cache emptied: 4294167 bytes
->Google Chrome cache emptied: 242638704 bytes
->Flash cache emptied: 835 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 218537 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 6339399 bytes
RecycleBin emptied: 19626 bytes

Total Files Cleaned = 259.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 10272013_144003

Files\Folders moved on Reboot...
C:\Users\Connor\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

ken545
2013-10-27, 21:50
Go ahead and reboot again and lets make sure your back to normal. As far as dragging and dropping files , copying and pasting it may be a windows problem. If so I can link you to a good windows forum that can help you

Connorj67
2013-10-28, 23:59
Everything seems to be running good now (besides the copy/paste and drag and drop). I would appreciate that link to where I can find help on the issue very much. Thank you so much for your time and help Ken!

ken545
2013-10-29, 00:40
Really not sure what that problems is, why dont you do this.

Go to this site and register, like Safer its free, use the same user name that your using here so I can find you and offer any advice they may need.

www.whatthetech.com


Once your registered than go to there windows forum and post, tell them that I helped you here and link them to this thread so they can see what we have done. Tell them as far as I can see your malware free but you still have issues with the copy and paste thing.

http://forums.whatthetech.com/index.php?showforum=119


See you over at WTT

Ken :)