ComboFix Log:
ComboFix 13-11-12.01 - Cynner 11/13/2013 12:43:19.1.8 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.8183.3916 [GMT -5:00]
Running from: c:\users\Cynner\Desktop\ComboFix.exe
AV: Spybot - Search and Destroy *Disabled/Updated* {20A26C15-1AF0-7CA3-9380-FAB824A7EE0D}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\FlashPlayerApp.exe
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2013-10-13 to 2013-11-13 )))))))))))))))))))))))))))))))
.
.
2013-11-13 16:23 . 2013-11-13 16:23 -------- d-----w- c:\users\Cynner\AppData\Roaming\Steve Jackson Games
2013-11-13 16:21 . 2001-08-23 10:00 3584 ----a-w- c:\windows\SysWow64\temp.000
2013-11-13 13:54 . 2013-11-13 13:54 -------- d-----w- c:\program files (x86)\ESET
2013-11-13 13:39 . 2013-11-13 13:39 -------- d-----w- c:\users\Cynner\AppData\Roaming\Malwarebytes
2013-11-13 13:38 . 2013-11-13 13:38 -------- d-----w- c:\programdata\Malwarebytes
2013-11-13 13:38 . 2013-11-13 13:38 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-11-13 13:38 . 2013-04-04 19:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-11-13 12:36 . 2013-11-13 16:22 -------- d-----w- c:\program files (x86)\GURPS Character Assistant 4
2013-11-12 02:19 . 2013-11-12 02:19 -------- d-----w- c:\windows\ERUNT
2013-11-12 00:24 . 2013-11-12 00:31 -------- d-----w- C:\AdwCleaner
2013-11-11 23:07 . 2013-11-11 23:07 -------- d-----w- C:\_OTL
2013-11-05 19:44 . 2013-11-05 19:49 -------- d-----w- c:\users\Cynner\AppData\Local\Ubisoft Game Launcher
2013-11-05 19:42 . 2013-11-05 19:42 -------- d-----w- c:\programdata\Solidshield
2013-11-05 19:41 . 2013-11-05 19:41 -------- d-----w- c:\users\Cynner\AppData\Roaming\Ubisoft
2013-11-05 19:37 . 2013-11-05 19:37 -------- d-----w- c:\program files (x86)\Ubisoft
2013-11-05 19:35 . 2008-05-30 19:18 238088 ----a-w- c:\windows\SysWow64\xactengine3_1.dll
2013-11-01 15:34 . 2013-11-01 15:34 -------- d-----w- c:\program files (x86)\ERUNT
2013-11-01 11:39 . 2013-11-01 11:39 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-01 11:39 . 2013-11-01 11:39 -------- d-----w- c:\windows\system32\Macromed
2013-10-30 11:22 . 2013-10-30 11:22 -------- d-----w- c:\windows\SysWow64\Adobe
2013-10-28 21:19 . 2013-09-04 12:12 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-10-28 21:19 . 2013-09-04 12:11 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-10-28 21:19 . 2013-09-04 12:11 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-10-28 21:19 . 2013-09-04 12:11 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2013-10-28 21:19 . 2013-09-04 12:11 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2013-10-28 21:19 . 2013-09-04 12:11 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2013-10-28 21:19 . 2013-09-04 12:11 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-10-27 10:33 . 2013-10-27 10:33 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-27 10:33 . 2013-10-27 10:33 -------- d-----w- c:\program files\iTunes
2013-10-27 10:33 . 2013-10-27 10:33 -------- d-----w- c:\program files (x86)\iTunes
2013-10-27 10:33 . 2013-10-27 10:33 -------- d-----w- c:\program files\iPod
2013-10-23 20:11 . 2013-10-23 20:11 -------- d-----w- c:\users\Cynner\AppData\Local\FalloutNV
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-11 07:03 . 2013-04-10 03:13 80541720 ----a-w- c:\windows\system32\MRT.exe
2013-09-22 23:28 . 2013-10-11 07:09 1767936 ----a-w- c:\windows\SysWow64\wininet.dll
2013-09-22 23:27 . 2013-10-11 07:09 2876928 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-09-22 23:27 . 2013-10-11 07:09 61440 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-09-22 23:27 . 2013-10-11 07:09 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-09-22 22:55 . 2013-10-11 07:09 51712 ----a-w- c:\windows\system32\ie4uinit.exe
2013-09-22 22:55 . 2013-10-11 07:09 2241024 ----a-w- c:\windows\system32\wininet.dll
2013-09-22 22:55 . 2013-10-11 07:09 1365504 ----a-w- c:\windows\system32\urlmon.dll
2013-09-22 22:54 . 2013-10-11 07:09 603136 ----a-w- c:\windows\system32\msfeeds.dll
2013-09-22 22:54 . 2013-10-11 07:09 19252224 ----a-w- c:\windows\system32\mshtml.dll
2013-09-22 22:54 . 2013-10-11 07:09 855552 ----a-w- c:\windows\system32\jscript.dll
2013-09-22 22:54 . 2013-10-11 07:09 3959296 ----a-w- c:\windows\system32\jscript9.dll
2013-09-22 22:54 . 2013-10-11 07:09 53248 ----a-w- c:\windows\system32\jsproxy.dll
2013-09-22 22:54 . 2013-10-11 07:09 526336 ----a-w- c:\windows\system32\ieui.dll
2013-09-22 22:54 . 2013-10-11 07:09 67072 ----a-w- c:\windows\system32\iesetup.dll
2013-09-22 22:54 . 2013-10-11 07:09 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-09-22 22:54 . 2013-10-11 07:09 2647552 ----a-w- c:\windows\system32\iertutil.dll
2013-09-22 22:54 . 2013-10-11 07:09 136704 ----a-w- c:\windows\system32\iesysprep.dll
2013-09-22 22:54 . 2013-10-11 07:09 15404544 ----a-w- c:\windows\system32\ieframe.dll
2013-09-21 03:38 . 2013-10-11 07:09 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-09-21 03:30 . 2013-10-11 07:09 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-09-21 02:48 . 2013-10-11 07:09 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-09-21 02:39 . 2013-10-11 07:09 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-09-14 01:10 . 2013-10-10 17:50 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2013-09-08 02:30 . 2013-10-10 17:50 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-09-08 02:27 . 2013-10-10 17:50 327168 ----a-w- c:\windows\system32\mswsock.dll
2013-09-08 02:03 . 2013-10-10 17:50 231424 ----a-w- c:\windows\SysWow64\mswsock.dll
2013-08-29 02:17 . 2013-10-10 17:50 5549504 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-08-29 02:16 . 2013-10-10 17:50 1732032 ----a-w- c:\windows\system32\ntdll.dll
2013-08-29 02:16 . 2013-10-10 17:50 243712 ----a-w- c:\windows\system32\wow64.dll
2013-08-29 02:16 . 2013-10-10 17:50 859648 ----a-w- c:\windows\system32\tdh.dll
2013-08-29 02:13 . 2013-10-10 17:50 878080 ----a-w- c:\windows\system32\advapi32.dll
2013-08-29 01:51 . 2013-10-10 17:50 3969472 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51 . 2013-10-10 17:50 3914176 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50 . 2013-10-10 17:50 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-08-29 01:50 . 2013-10-10 17:50 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2013-08-29 01:50 . 2013-10-10 17:50 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2013-08-29 01:48 . 2013-10-10 17:50 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2013-08-29 01:48 . 2013-10-10 17:50 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-08-29 00:49 . 2013-10-10 17:50 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-08-29 00:49 . 2013-10-10 17:50 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-08-29 00:49 . 2013-10-10 17:50 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-08-29 00:49 . 2013-10-10 17:50 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-08-28 01:21 . 2013-10-10 17:50 3155968 ----a-w- c:\windows\system32\win32k.sys
2013-08-28 01:12 . 2013-10-10 17:49 461312 ----a-w- c:\windows\system32\scavengeui.dll
2013-08-27 11:54 . 2013-04-10 02:08 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-08-27 11:54 . 2013-04-10 02:08 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-08-27 11:53 . 2013-08-27 11:53 15928264 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-08-27 11:53 . 2013-08-27 11:53 13419112 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2013-08-27 11:53 . 2013-08-27 11:53 6324896 ----a-w- c:\windows\SysWow64\nvopencl.dll
2013-08-27 11:53 . 2013-08-27 11:53 7642344 ----a-w- c:\windows\system32\nvopencl.dll
2013-08-27 11:53 . 2013-08-27 11:53 27786528 ----a-w- c:\windows\system32\nvoglv64.dll
2013-08-27 11:53 . 2013-08-27 11:53 21106464 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2013-08-27 11:53 . 2013-08-27 11:53 570656 ----a-w- c:\windows\system32\NvIFR64.dll
2013-08-27 11:53 . 2013-08-27 11:53 467744 ----a-w- c:\windows\SysWow64\NvIFR.dll
2013-08-27 11:53 . 2013-08-27 11:53 11248416 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-08-27 11:53 . 2013-08-27 11:53 620832 ----a-w- c:\windows\system32\NvFBC64.dll
2013-08-27 11:53 . 2013-08-27 11:53 548128 ----a-w- c:\windows\SysWow64\NvFBC.dll
2013-08-27 11:53 . 2013-08-27 11:53 1832224 ----a-w- c:\windows\system32\nvdispco6432078.dll
2013-08-27 11:53 . 2013-08-27 11:53 15149048 ----a-w- c:\windows\system32\nvd3dumx.dll
2013-08-27 11:53 . 2013-08-27 11:53 1511712 ----a-w- c:\windows\system32\nvdispgenco6432078.dll
2013-08-27 11:53 . 2013-08-27 11:53 9281544 ----a-w- c:\windows\system32\nvcuda.dll
2013-08-27 11:53 . 2013-08-27 11:53 2958112 ----a-w- c:\windows\system32\nvcuvid.dll
2013-08-27 11:53 . 2013-08-27 11:53 2780960 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2013-08-27 11:53 . 2013-08-27 11:53 2362656 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-08-27 11:53 . 2013-08-27 11:53 2002720 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2013-08-27 11:53 . 2013-04-13 21:24 7719528 ----a-w- c:\windows\SysWow64\nvcuda.dll
2013-08-27 11:53 . 2013-04-13 21:24 12431872 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-08-27 11:53 . 2013-08-27 11:53 25256224 ----a-w- c:\windows\system32\nvcompiler.dll
2013-08-27 11:53 . 2013-08-27 11:53 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2013-08-27 11:53 . 2013-04-13 21:24 2937256 ----a-w- c:\windows\system32\nvapi64.dll
2013-08-27 11:53 . 2013-04-13 21:24 2598368 ----a-w- c:\windows\SysWow64\nvapi.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"="c:\program files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" [2013-05-16 3642312]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2013-11-06 55360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]
"SSDMonitor"="c:\program files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe" [2012-08-21 105120]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2013-07-25 5624784]
"CTxfiHlp"="CTXFIHLP.EXE" [2010-07-07 24576]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-05-11 958576]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-10-23 152392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2013-04-04 532040]
.
c:\users\Cynner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
ERUNT AutoBackup.lnk - c:\program files (x86)\ERUNT\AUTOBACK.EXE %SystemRoot%\ERDNT\AutoBackup\#Date# /noconfirmdelete /noprogresswindow [2005-10-20 38912]
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 PS3 Media Server;PS3 Media Server;c:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe;c:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [x]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
R3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.SYS;c:\windows\SYSNATIVE\drivers\CT20XUT.SYS [x]
R3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.SYS;c:\windows\SYSNATIVE\drivers\CTEXFIFX.SYS [x]
R3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.SYS;c:\windows\SYSNATIVE\drivers\CTHWIUT.SYS [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys;c:\windows\SYSNATIVE\DRIVERS\Rts516xIR.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S1 SDHookDriver;Hook Test Driver;c:\program files (x86)\Spybot - Search & Destroy 2\SDHookDrv64.sys;c:\program files (x86)\Spybot - Search & Destroy 2\SDHookDrv64.sys [x]
S2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe;c:\program files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\System32\drivers\CT20XUT.SYS;c:\windows\SYSNATIVE\drivers\CT20XUT.SYS [x]
S3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\System32\drivers\CTEXFIFX.SYS;c:\windows\SYSNATIVE\drivers\CTEXFIFX.SYS [x]
S3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\System32\drivers\CTHWIUT.SYS;c:\windows\SYSNATIVE\drivers\CTHWIUT.SYS [x]
S3 ha20x22k;Creative 20X2 HAL Driver;c:\windows\system32\drivers\ha20x22k.sys;c:\windows\SYSNATIVE\drivers\ha20x22k.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 01359863
*Deregistered* - 01359863
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-11-13 00:28 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.48\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-11-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-01 11:39]
.
2013-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-18 15:01]
.
2013-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-18 15:01]
.
2013-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2174226332-4133268913-245238529-1001Core.job
- c:\users\Cynner\AppData\Local\Google\Update\GoogleUpdate.exe [2013-08-01 06:17]
.
2013-11-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2174226332-4133268913-245238529-1001UA.job
- c:\users\Cynner\AppData\Local\Google\Update\GoogleUpdate.exe [2013-08-01 06:17]
.
2013-11-13 c:\windows\Tasks\RMAutoUpdate.job
- c:\program files (x86)\PC Tools\PC Tools Registry Mechanic\SULauncher.exe [2013-04-11 18:44]
.
.
--------- X64 Entries -----------
.
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.1.1 75.75.75.75 75.75.76.76
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
FF - ProfilePath - c:\users\Cynner\AppData\Roaming\Mozilla\Firefox\Profiles\1u5r9ac1.default-1383319193926\
FF - prefs.js: browser.search.selectedEngine - Yahoo
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
Notify-SDWinLogon - SDWinLogon.dll
SafeBoot-28280050.sys
SafeBoot-51523295.sys
SafeBoot-62613469.sys
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-11-13 12:57:27
ComboFix-quarantined-files.txt 2013-11-13 17:57
.
Pre-Run: 460,476,727,296 bytes free
Post-Run: 460,298,702,848 bytes free
.
- - End Of File - - FDEE17C04637D7FBFDF56708478C471F
A36C5E4F47E84449FF07ED3517B43A31