Tech Support banner

Status
Not open for further replies.
1 - 20 of 36 Posts

·
Registered
Joined
·
91 Posts
Hi

I have a website which does not load on my browsers but loads on other systems perfectly fine. I have cleared the browser cache and deleted cookies but still getting the same error

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.10586.20 BrowserJavaVersion: 11.66.2
Run by Yatish at 14:35:33 on 2016-04-12
Microsoft Windows 10 Home Single Language 10.0.10586.0.1252.91.1033.18.8084.1803 [GMT 5.5:30]
.
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\nvvsvc.exe
C:\Windows\System32\WUDFHost.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\WINDOWS\system32\nvvsvc.exe
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\windows\system32\CxAudMsg64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService64.exe
C:\ProgramData\airtel\OnlineUpdate\ouc.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
C:\windows\SysWOW64\NLSSRV32.EXE
C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
C:\Program Files\Lenovo\iMController\SystemAgentService.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files\CyberLink\Shared files\RichVideo64.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
C:\windows\system32\EscSvc64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
C:\WINDOWS\system32\CNAB4RPD.EXE
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\igfxTray.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\RTFTrack.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe
C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Users\Yatish\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Browny02\BrYNSvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE15\CSISYN~1.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.19761.0_x64__8wekyb3d8bbwe\Video.UI.exe
C:\WINDOWS\system32\wwahost.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe
C:\Program Files\Windows Defender\MpCmdRun.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Photoshop.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\node.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Required\DynamicLinkMediaServer\32\dynamiclinkmanager.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe
C:\Program Files\Adobe\Adobe Photoshop CC 2015\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll
BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll
uRun: [GoogleChromeAutoLaunch_FF1D2AD85E470330DC3E52710B6969B5] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
uRun: [uTorrent] "C:\Users\Yatish\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [OneDrive] "C:\Users\Yatish\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRunOnce: [Uninstall C:\Users\Yatish\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Yatish\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
mRun: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [ControlCenter4] "C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe" /autorun
mRun: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
mRun: [BrHelp] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe /AUTORUN
mRun: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
mRun: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\CANONL~1.LNK - C:\WINDOWS\System32\spool\drivers\x64\3\CNAB4LAD.EXE
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\IMAGEB~1.LNK - C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
mPolicies-System: DSCAutomationHostEnabled = dword:2
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
TCP: NameServer = 8.8.8.8 8.8.4.4
TCP: Interfaces\{951a095f-ba00-4b88-9141-ba0e41acde9c} : DHCPNameServer = 8.8.8.8 8.8.4.4
TCP: Interfaces\{951a095f-ba00-4b88-9141-ba0e41acde9c}\4474D2242543031353E4 : DHCPNameServer = 192.168.2.1 8.8.8.8
TCP: Interfaces\{951a095f-ba00-4b88-9141-ba0e41acde9c}\458656022457C6C6564796E602E4564777F627B6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{951a095f-ba00-4b88-9141-ba0e41acde9c}\7427F6F6D68513 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{951a095f-ba00-4b88-9141-ba0e41acde9c}\8416B6C657 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{951a095f-ba00-4b88-9141-ba0e41acde9c}\A41696E6F537D6162747 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{9d50e435-7845-4c8b-af80-dd19be0e88c7} : NameServer = 125.22.47.102 125.22.47.103
TCP: Interfaces\{c9e8269e-fa78-4338-ad90-641955c379c3} : NameServer = 125.22.47.102 125.22.47.103
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
SSODL: WebCheck - <orphaned>
LSA: Security Packages = ""
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-mStart Page = about:blank
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll
x64-BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll
x64-Run: [RtsFT] RTFTrack.exe
x64-Run: [IgfxTray] "C:\WINDOWS\System32\igfxtray.exe"
x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
x64-Run: [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
x64-Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
x64-Run: [ForteConfig] C:\Program Files\Conexant\ForteConfig\fmapp.exe
x64-Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe /t
x64-Run: [OnekeyStudio] C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe -start
x64-Run: [Energy Manager] C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
x64-Run: [Lenovo Utility] C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
Hosts: 109.199.126.202 www.kaalia.com kaalia.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Yatish\AppData\Roaming\Mozilla\Firefox\Profiles\893hx82j.default\
FF - prefs.js: browser.startup.homepage - about:home
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Nitro\Pro 9\npdf.dll
FF - plugin: C:\Program Files (x86)\Nitro\Pro 9\npnitroie.dll
FF - plugin: C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll
FF - plugin: C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
FF - plugin: C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\WINDOWS\System32\drivers\iaStorA.sys [2013-8-8 644968]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2015-10-30 106520]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2015-10-30 17944]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2015-10-30 199008]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2015-10-30 218624]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 AdobeUpdateService;AdobeUpdateService;C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2016-4-7 694464]
R2 AGSService;Adobe Genuine Software Integrity Service;C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016-3-3 2021056]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-3-2 83768]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service;C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe [2015-12-25 2804976]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2015-10-30 43944]
R2 CxAudMsg;Conexant Audio Message Service;C:\WINDOWS\System32\CxAudMsg64.exe [2014-11-7 206552]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2015-10-30 43944]
R2 EpsonScanSvc;Epson Scanner Service;C:\WINDOWS\System32\escsvc64.exe [2015-4-27 135824]
R2 HWDeviceService64.exe;HWDeviceService64.exe;C:\ProgramData\DatacardService\HWDeviceService64.exe [2013-10-28 351824]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-8-8 15720]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service;C:\WINDOWS\System32\igfxCUIService.exe [2015-7-18 373160]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-8-28 747520]
R2 IntelHaxm;Intel HAXM Service;C:\WINDOWS\System32\drivers\IntelHaxm.sys [2016-1-3 96776]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-11-7 169432]
R2 Lenovo System Agent Service;Lenovo System Agent Service;C:\Program Files\lenovo\iMController\SystemAgentService.exe [2014-5-22 584960]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service;C:\WINDOWS\System32\LenovoWiFiHotspotSvr.exe [2014-11-7 198192]
R2 MaxthonUpdateSvc;Maxthon Core Update Service;C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [2015-11-30 1872808]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-4-27 1514464]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-4-27 1136608]
R2 NitroDriverReadSpool9;NitroPDFDriverCreatorReadSpool9;C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [2013-12-13 230920]
R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\NLSSRV32.EXE [2013-12-13 69640]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato;C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2014-4-30 337776]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-11-7 390632]
R2 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2015-10-30 78848]
R2 SynTPEnhService;SynTPEnh Caller Service;C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-9-23 246472]
R2 TeamViewer;TeamViewer 10;C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-4-27 5429520]
R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-2-18 35600]
R3 BrYNSvc;BrYNSvc;C:\Program Files (x86)\Browny02\BrYNSvc.exe [2015-7-28 282112]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-1-13 245760]
R3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
R3 huawei_enumerator;huawei_enumerator;C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2016-3-8 91648]
R3 iwdbus;IWD Bus Enumerator;C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-15 27032]
R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\drivers\mbam.sys [2015-4-27 27008]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [2015-4-27 192216]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\WINDOWS\System32\drivers\mwac.sys [2015-4-27 65408]
R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2015-10-30 20480]
R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2015-6-18 895256]
R3 RtkBtFilter;Realtek Bluetooth Filter Driver;C:\WINDOWS\System32\drivers\RtkBtfilter.sys [2015-6-4 615728]
R3 RTSUER;Realtek USB Card Reader - UER;C:\WINDOWS\System32\drivers\RtsUer.sys [2015-7-3 410880]
R3 rtsuvc;Lenovo EasyCamera;C:\WINDOWS\System32\drivers\rtsuvc.sys [2015-6-16 3068160]
R3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;C:\WINDOWS\System32\drivers\rtwlane.sys [2015-10-30 3445248]
R3 SmbDrvI;SmbDrvI;C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2015-8-7 42696]
R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
R3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2015-10-30 118112]
R3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2015-10-30 364464]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2015-10-30 216064]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\WINDOWS\System32\drivers\mfeelamk.sys [2014-4-4 80160]
S2 airtel. RunOuc;airtel. OUC;C:\Program Files (x86)\airtel\UpdateDog\ouc.exe [2016-3-8 650096]
S2 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-1-29 327296]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2015-10-30 1135456]
S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 androidusb;Google Device Driver;C:\WINDOWS\System32\drivers\wsadb.sys [2015-12-29 40808]
S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2015-10-30 43944]
S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-10-30 43944]
S3 bcmfn;bcmfn Service;C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2015-10-30 9728]
S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2015-10-30 43944]
S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2015-12-6 117248]
S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-10-30 43944]
S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2014-1-22 108800]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 embeddedmode;embeddedmode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [2016-3-8 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter;C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2016-3-8 14976]
S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 huawei_cdcacm;huawei_cdcacm;C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [2016-3-8 110592]
S3 huawei_ext_ctrl;huawei_ext_ctrl;C:\WINDOWS\System32\drivers\ew_juextctrl.sys [2016-3-8 30720]
S3 huawei_wwanecm;huawei_wwanecm;C:\WINDOWS\System32\drivers\ew_juwwanecm.sys [2016-3-8 246272]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2015-10-30 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2015-10-30 113152]
S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2015-10-30 673120]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-10-30 43944]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\WINDOWS\System32\ieetwcollector.exe [2015-10-30 117760]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\WINDOWS\System32\drivers\intelaud.sys [2013-12-15 39320]
S3 IntcDAud;Intel(R) Display Audio;C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-10-28 474376]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-8-28 828376]
S3 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2015-10-30 46432]
S3 IoQos;IoQos;C:\WINDOWS\System32\drivers\ioqos.sys [2015-10-30 26624]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot;C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [2014-11-7 533760]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-10-30 43944]
S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2016-2-4 252120]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2015-10-30 930656]
S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2015-10-30 155488]
S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2015-10-30 43944]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2014-1-22 206080]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2015-10-30 79200]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2015-10-30 290304]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2015-10-30 45056]
S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2015-10-30 28512]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2015-10-30 254816]
S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488]
S3 USBAAPL64;Apple Mobile USB Driver;C:\WINDOWS\System32\drivers\usbaapl64.sys [2015-6-17 54784]
S3 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 31744]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 vmicvmsession;Hyper-V VM Session Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2015-10-30 694784]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2015-10-30 43944]
S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2015-10-30 26976]
S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2015-10-30 59232]
S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 WpnService;Windows Push Notifications Service;C:\WINDOWS\System32\svchost.exe -k wswpnservice [2015-10-30 43944]
S3 WsDrvInst;Wondershare Driver Install Service;C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe [2015-12-29 104248]
S3 wsvd;wsvd;C:\WINDOWS\System32\drivers\wsvd.sys [2014-11-7 102376]
S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2016-3-2 238592]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2016-3-2 29696]
S4 CDPSvc;Connected Device Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
.
=============== File Associations ===============
.
ShellExec: opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2016-04-11 10:13:44 11686560 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4E5B3638-8651-41EA-81C5-D0DC3D1DF1D1}\mpengine.dll
2016-04-11 10:06:13 -------- d--h--w- C:\OneDriveTemp
2016-04-11 06:42:23 -------- d-----r- C:\Program Files (x86)\Skype
2016-04-10 07:37:41 11686560 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2016-04-08 10:30:47 5934784 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerInstaller.exe
2016-04-01 06:25:37 -------- d-----w- C:\Program Files\iPod
2016-04-01 06:25:37 -------- d-----w- C:\Program Files (x86)\iTunes
2016-04-01 06:25:36 -------- d---a-w- C:\Program Files\iTunes
2016-04-01 06:23:03 -------- d---a-w- C:\Program Files\Bonjour
2016-04-01 06:23:03 -------- d---a-w- C:\Program Files (x86)\Bonjour
2016-04-01 06:15:33 982720 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\ucrtbase.dll
2016-04-01 06:15:33 88752 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\vcruntime140.dll
2016-04-01 06:15:33 6153992 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\OfficeC2RClient.exe
2016-04-01 06:15:33 390320 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\vccorlib140.dll
2016-04-01 06:15:33 2823920 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\OfficeClickToRun.exe
2016-04-01 06:15:33 1067816 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\OfficeC2RCom.dll
2016-04-01 06:15:33 1060080 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\StreamServer.dll
2016-04-01 06:15:32 963240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\msvcr120.dll
2016-04-01 06:15:32 660136 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\msvcp120.dll
2016-04-01 06:15:32 635040 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\msvcp140.dll
2016-04-01 06:15:28 69376 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.6741.2021\msointl30.en-us.dll
2016-03-23 10:50:22 1190000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{58E26A86-07D3-4ABC-A09B-4FFA6DBEF402}\gapaengine.dll
2016-03-14 07:55:22 608448 ----a-w- C:\WINDOWS\SysWow64\comctl32.ocx
2016-03-14 07:55:22 606208 ----a-w- C:\WINDOWS\SysWow64\HexUniRTFBox.ocx
2016-03-14 07:55:22 454656 ----a-w- C:\WINDOWS\SysWow64\PaintX.dll
2016-03-14 07:55:22 372736 ----a-w- C:\WINDOWS\SysWow64\ijl15.dll
2016-03-14 07:55:22 258352 ----a-w- C:\WINDOWS\SysWow64\unicows.dll
2016-03-14 07:55:22 2029056 ----a-w- C:\WINDOWS\SysWow64\PDFDocScout.DLL
2016-03-14 07:55:22 137000 ----a-w- C:\WINDOWS\SysWow64\msmapi32.ocx
2016-03-14 07:55:22 118784 ----a-w- C:\WINDOWS\SysWow64\MSSTDFMT.DLL
2016-03-14 07:55:22 -------- d-----w- C:\Users\Yatish\AppData\Roaming\The Complete Genealogy Reporter - FTB
2016-03-14 07:54:36 -------- d-----w- C:\Users\Yatish\AppData\Roaming\MyHeritage
2016-03-14 07:54:36 -------- d-----w- C:\ProgramData\MyHeritage
2016-03-14 07:54:29 -------- d---a-w- C:\Program Files (x86)\MyHeritage
.
==================== Find3M ====================
.
2016-04-12 07:44:04 192216 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
2016-04-11 10:03:19 180 ----a-w- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-03-10 08:39:10 65408 ----a-w- C:\WINDOWS\System32\drivers\mwac.sys
2016-03-10 08:38:58 140672 ----a-w- C:\WINDOWS\System32\drivers\mbamchameleon.sys
2016-03-10 08:38:54 27008 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys
2016-03-08 14:26:38 3065552 ----a-w- C:\WINDOWS\SysWow64\FTBSaver.scr
2016-03-08 07:12:26 829944 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2016-03-08 07:12:26 176632 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2016-03-01 05:31:29 848168 ----a-w- C:\WINDOWS\System32\mfsvr.dll
2016-03-01 05:22:47 709688 ----a-w- C:\WINDOWS\SysWow64\mfsvr.dll
2016-02-24 09:52:06 1997328 ----a-w- C:\WINDOWS\System32\KernelBase.dll
2016-02-24 09:51:58 7474528 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe
2016-02-24 09:48:32 713568 ----a-w- C:\WINDOWS\System32\invagent.dll
2016-02-24 09:47:03 1173344 ----a-w- C:\WINDOWS\System32\aeinv.dll
2016-02-24 09:40:06 513888 ----a-w- C:\WINDOWS\System32\devinv.dll
2016-02-24 09:34:50 1613664 ----a-w- C:\WINDOWS\System32\diagtrack.dll
2016-02-24 09:28:35 3449168 ----a-w- C:\WINDOWS\System32\WSService.dll
2016-02-24 09:15:07 1557768 ----a-w- C:\WINDOWS\SysWow64\KernelBase.dll
2016-02-24 08:58:26 794888 ----a-w- C:\WINDOWS\System32\mfds.dll
2016-02-24 08:51:24 1322248 ----a-w- C:\WINDOWS\System32\ole32.dll
2016-02-24 08:50:49 808800 ----a-w- C:\WINDOWS\System32\WWAHost.exe
2016-02-24 08:46:25 6607080 ----a-w- C:\WINDOWS\System32\windows.storage.dll
2016-02-24 08:43:01 625000 ----a-w- C:\WINDOWS\System32\ClipSVC.dll
2016-02-24 08:39:30 141560 ----a-w- C:\WINDOWS\System32\AuthHost.exe
2016-02-24 08:39:01 358752 ----a-w- C:\WINDOWS\System32\msv1_0.dll
2016-02-24 08:19:18 670928 ----a-w- C:\WINDOWS\SysWow64\mfds.dll
2016-02-24 08:14:23 216416 ----a-w- C:\WINDOWS\System32\AppxAllUserStore.dll
2016-02-24 08:11:46 957608 ----a-w- C:\WINDOWS\SysWow64\ole32.dll
2016-02-24 08:11:07 258280 ----a-w- C:\WINDOWS\System32\sqmapi.dll
2016-02-24 08:11:03 652392 ----a-w- C:\WINDOWS\System32\dxgi.dll
2016-02-24 08:11:03 394080 ----a-w- C:\WINDOWS\System32\drivers\dxgmms1.sys
2016-02-24 08:11:03 1997152 ----a-w- C:\WINDOWS\System32\drivers\dxgkrnl.sys
2016-02-24 08:11:01 703840 ----a-w- C:\WINDOWS\SysWow64\WWAHost.exe
2016-02-24 08:10:54 576864 ----a-w- C:\WINDOWS\System32\drivers\dxgmms2.sys
2016-02-24 08:10:52 630632 ----a-w- C:\WINDOWS\System32\fontdrvhost.exe
2016-02-24 08:09:58 640472 ----a-w- C:\WINDOWS\System32\wer.dll
2016-02-24 08:09:49 147808 ----a-w- C:\WINDOWS\System32\wermgr.exe
2016-02-24 08:06:39 5242496 ----a-w- C:\WINDOWS\SysWow64\windows.storage.dll
2016-02-24 07:59:11 294752 ----a-w- C:\WINDOWS\SysWow64\msv1_0.dll
2016-02-24 07:39:44 23552 ----a-w- C:\WINDOWS\System32\ExtrasXmlParser.dll
2016-02-24 07:39:34 45568 ----a-w- C:\WINDOWS\System32\UserDataTypeHelperUtil.dll
2016-02-24 07:38:35 187744 ----a-w- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
2016-02-24 07:38:12 111616 ----a-w- C:\WINDOWS\System32\UserDataTimeUtil.dll
2016-02-24 07:37:58 45056 ----a-w- C:\WINDOWS\System32\UserDataLanguageUtil.dll
2016-02-24 07:36:17 60416 ----a-w- C:\WINDOWS\System32\PimIndexMaintenanceClient.dll
2016-02-24 07:35:26 220064 ----a-w- C:\WINDOWS\SysWow64\sqmapi.dll
2016-02-24 07:35:24 523752 ----a-w- C:\WINDOWS\SysWow64\dxgi.dll
2016-02-24 07:35:18 45568 ----a-w- C:\WINDOWS\System32\atmlib.dll
2016-02-24 07:35:08 540752 ----a-w- C:\WINDOWS\SysWow64\fontdrvhost.exe
2016-02-24 07:33:53 141664 ----a-w- C:\WINDOWS\SysWow64\wermgr.exe
2016-02-24 07:33:49 538736 ----a-w- C:\WINDOWS\SysWow64\wer.dll
2016-02-24 07:31:49 118272 ----a-w- C:\WINDOWS\System32\fontsub.dll
2016-02-24 07:30:18 25600 ----a-w- C:\WINDOWS\System32\wfapigp.dll
2016-02-24 07:28:12 70656 ----a-w- C:\WINDOWS\System32\POSyncServices.dll
2016-02-24 07:23:20 68096 ----a-w- C:\WINDOWS\System32\UserDataPlatformHelperUtil.dll
2016-02-24 07:23:20 112640 ----a-w- C:\WINDOWS\System32\drivers\bthenum.sys
2016-02-24 07:23:09 91648 ----a-w- C:\WINDOWS\System32\asycfilt.dll
2016-02-24 07:22:03 196608 ----a-w- C:\WINDOWS\System32\fwpolicyiomgr.dll
2016-02-24 07:20:57 167936 ----a-w- C:\WINDOWS\System32\dafBth.dll
2016-02-24 07:20:35 195072 ----a-w- C:\WINDOWS\System32\VCardParser.dll
2016-02-24 07:20:00 87552 ----a-w- C:\WINDOWS\System32\AppxSysprep.dll
2016-02-24 07:19:56 31232 ----a-w- C:\WINDOWS\System32\seclogon.dll
2016-02-24 07:19:10 145408 ----a-w- C:\WINDOWS\System32\dssvc.dll
2016-02-24 07:15:29 365568 ----a-w- C:\WINDOWS\System32\atmfd.dll
2016-02-24 07:14:00 274944 ----a-w- C:\WINDOWS\System32\ExSMime.dll
2016-02-24 07:13:57 121856 ----a-w- C:\WINDOWS\System32\AppointmentActivation.dll
2016-02-24 07:12:54 243712 ----a-w- C:\WINDOWS\System32\cemapi.dll
2016-02-24 07:12:03 221184 ----a-w- C:\WINDOWS\System32\PhoneCallHistoryApis.dll
2016-02-24 07:10:05 93184 ----a-w- C:\WINDOWS\System32\wpninprc.dll
2016-02-24 07:09:04 258560 ----a-w- C:\WINDOWS\System32\UserDataAccountApis.dll
2016-02-24 07:09:00 161792 ----a-w- C:\WINDOWS\System32\AppxSip.dll
2016-02-24 07:07:53 252928 ----a-w- C:\WINDOWS\System32\PimIndexMaintenance.dll
2016-02-24 07:05:00 208896 ----a-w- C:\WINDOWS\System32\storewuauth.dll
2016-02-24 07:03:16 88576 ----a-w- C:\WINDOWS\SysWow64\olepro32.dll
2016-02-24 07:02:17 161280 ----a-w- C:\WINDOWS\System32\CallHistoryClient.dll
2016-02-24 07:01:56 146432 ----a-w- C:\WINDOWS\System32\AuthBroker.dll
2016-02-24 07:01:21 764928 ----a-w- C:\WINDOWS\System32\Chakradiag.dll
2016-02-24 07:01:15 67584 ----a-w- C:\WINDOWS\System32\profext.dll
2016-02-24 07:00:00 214528 ----a-w- C:\WINDOWS\System32\Windows.Devices.Scanners.dll
2016-02-24 06:59:55 450560 ----a-w- C:\WINDOWS\System32\Windows.Internal.Bluetooth.dll
2016-02-24 06:59:44 318976 ----a-w- C:\WINDOWS\System32\domgmt.dll
2016-02-24 06:59:32 360448 ----a-w- C:\WINDOWS\System32\vaultsvc.dll
2016-02-24 06:58:29 685568 ----a-w- C:\WINDOWS\System32\scapi.dll
2016-02-24 06:55:57 790528 ----a-w- C:\WINDOWS\System32\EmailApis.dll
2016-02-24 06:55:39 224256 ----a-w- C:\WINDOWS\System32\PackageStateRoaming.dll
2016-02-24 06:55:08 18944 ----a-w- C:\WINDOWS\SysWow64\ExtrasXmlParser.dll
2016-02-24 06:54:57 37888 ----a-w- C:\WINDOWS\SysWow64\UserDataTypeHelperUtil.dll
2016-02-24 06:54:55 228352 ----a-w- C:\WINDOWS\System32\wsqmcons.exe
2016-02-24 06:54:45 288768 ----a-w- C:\WINDOWS\System32\vaultcli.dll
2016-02-24 06:54:09 526336 ----a-w- C:\WINDOWS\System32\FirewallAPI.dll
2016-02-24 06:53:47 89088 ----a-w- C:\WINDOWS\SysWow64\UserDataTimeUtil.dll
2016-02-24 06:53:35 37888 ----a-w- C:\WINDOWS\SysWow64\UserDataLanguageUtil.dll
2016-02-24 06:52:12 48128 ----a-w- C:\WINDOWS\SysWow64\PimIndexMaintenanceClient.dll
2016-02-24 06:52:11 451584 ----a-w- C:\WINDOWS\System32\werui.dll
2016-02-24 06:51:21 37376 ----a-w- C:\WINDOWS\SysWow64\atmlib.dll
2016-02-24 06:49:50 726528 ----a-w- C:\WINDOWS\System32\ChatApis.dll
2016-02-24 06:47:58 93696 ----a-w- C:\WINDOWS\SysWow64\fontsub.dll
2016-02-24 06:46:33 20480 ----a-w- C:\WINDOWS\SysWow64\wfapigp.dll
2016-02-24 06:44:46 56320 ----a-w- C:\WINDOWS\SysWow64\POSyncServices.dll
2016-02-24 06:44:19 700416 ----a-w- C:\WINDOWS\System32\AppointmentApis.dll
.
============= FINISH: 14:38:31.70 ===============
 

Attachments

·
Registered
Joined
·
1,859 Posts
Hello richiejain,

My name is Tolga and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

:arrowr: If you haven't already, please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.
:arrowr: First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
:arrowr: Please download to and run all requested tools from your Desktop.
:arrowr: Perform everything in the correct order. Sometimes one step requires the previous one.
:arrowr: If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
:arrowr: Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
:arrowr: Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
:arrowr: If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
:arrowr: Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
:arrowr: My native language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

Now, let's get started, shall we? Please do the below steps.

STEP 1

Please download AdwCleaner from here and save it to your desktop.

:arrowr: Click the green 'Download now @bleepingcomputer' button.
:arrowr: Run AdwCleaner and select Scan
:arrowr: Once the Scan is done, select Cleaning
:arrowr: Once done it will ask to reboot, please allow the reboot.
:arrowr: On reboot, a log will be produced. It can also be found at C:\AdwCleaner\AdwCleaner[C#].txt
:arrowr: Please copy/paste the contents of the log in your next reply.

STEP 2

Please download Farbar Recovery Scan Tool and save it to your desktop.

:arrowr: Double-click FRST64 to run it. When the tool opens click Yes to the disclaimer.
:arrowr: Make sure the Addition.txt button is ticked.
:arrowr: Press Scan button.
:arrowr: It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
:arrowr: The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply.
 

·
Registered
Joined
·
91 Posts
Discussion Starter #3
# AdwCleaner v5.110 - Logfile created 13/04/2016 at 13:11:14
# Updated 10/04/2016 by Xplode
# Database : 2016-04-11.4 [Server]
# Operating system : Windows 10 Home Single Language (X64)
# Username : Yatish - KAALIA-YJ
# Running from : C:\Users\Yatish\Downloads\AdwCleaner.exe
# Option : Clean
# Support : ToolsLib - Forum: Ask for help or share your experience.

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\pokki
[#] Folder Deleted : C:\ProgramData\Application Data\pokki
[-] Folder Deleted : C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp
[-] Folder Deleted : C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil
[-] Folder Deleted : C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi

***** [ Files ] *****

[-] File Deleted : C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\elicpjhcidhpjomhibiffojpinpmmpil

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : Pokki

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Classes\pokki
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02966FA9-C01A-47E7-A169-C83AEA1FB0BA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9AD5C084-B6E6-456A-8BA2-A559663780E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{70C7334A-66D9-46DE-A4E2-6B923C7DB94E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5780633B-414C-446F-8EB2-FF1C9A731C99}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4EECDED2-40FB-4500-85B4-86FB0EBECA68}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10A7F29D-4B00-40EC-B07D-8616DF8135E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{05FF6A00-76A3-4AA1-A9A4-A782152ABE60}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{617E26CE-E6E1-4C75-A68A-A001F2B98491}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8128586C-DF69-4266-873F-CF4C6F705A7C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CB6BF8B6-E12B-42FA-A478-91BCCDE475DC}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{617E26CE-E6E1-4C75-A68A-A001F2B98491}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8128586C-DF69-4266-873F-CF4C6F705A7C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}
[-] Key Deleted : HKCU\Software\SweetLabs App Platform
[-] Key Deleted : HKLM\SOFTWARE\VisualDiscovery
[-] Value Deleted : HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]

***** [ Web browsers ] *****

[-] [C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://search.conduit.com/?ctid=CT3306061&SearchSource=48&CUI=UN33533321726869192&UM=2
[-] [C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.amaizingsearches.info/?pid=377&r=2014/04/16&hid=10255090533470014310&lg=EN&cc=IN&unqvl=51
[-] [C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxps://in.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ir_15_50&param1=1&param2=f%3D7%26b%3DChrome%26cc%3Din%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuyByEtBzy0A0FtD0Bzy0E0Ezz0F0EyCyCtN0D0Tzu0StCyEtAyCtN1L2XzutAtFtCyDtFtAtFtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyEtAzyyEtByBtAzztGtD0F0C0FtGtA0CyDtDtGyCyEyDtBtGtDyDyEtAtD0AyBtCtB0AyDyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0D0EtC0F0AzytAtG0Ezz0BtCtGyE0CyDyCtG0A0C0ByEtGzyzz0Ezz0ByB0B0C0DtDzz0A2QtN0A0LzuyE%26cr%3D1455738840%26a%3Dwncy_ir_15_50%26os%3DWindows%2B10%2BHome%2BSingle%2BLanguage
[-] [C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : elicpjhcidhpjomhibiffojpinpmmpil
[-] [C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : lfmhcpmkbdkbgbmkjoiopeeegenkdikp
[-] [C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mcbkbpnkkkipelfledbfocopglifcfmi

*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [7123 bytes] - [13/04/2016 13:11:14]
C:\AdwCleaner\AdwCleaner[S1].txt - [7071 bytes] - [13/04/2016 13:02:35]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [7269 bytes] ##########
 

Attachments

·
Registered
Joined
·
1,859 Posts
Hello richiejain,

Ok. Please do the following.

:arrowr: Download CKScanner by askey127 from Here
:arrowr: Right-click and Run as Administrator CKScanner.exe then click Search For Files
:arrowr: After a couple minutes or less, when some text appears in the box, click Save List To File.
:arrowr:A message box will verify the file saved. It is important that you run the program just once..
:arrowr: Double-click the CKFiles.txt icon on your desktop, give permission if asked, and copy/paste the contents in your next reply.
 

·
Registered
Joined
·
91 Posts
Discussion Starter #7
CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
c:\program files\corel\coreldraw graphics suite x7\custom data\bumpmap\cracks.cpt
c:\program files\git\usr\bin\ssh-keygen.exe
c:\users\yatish\documents\gfxtra\gfxtra.kmspico 10.1.9_v10.1.rar
c:\users\yatish\documents\gfxtra\maxprog.email.extractor.3.6.6\keygen\brd.nfo
c:\users\yatish\documents\gfxtra\maxprog.email.extractor.3.6.6\keygen\file_id.diz
c:\users\yatish\documents\software\adobe photoshop cs6 13.1.2 extended multilanguage [chingliu]\4.cracked dlls\32 bit\amtlib.dll
c:\users\yatish\documents\software\adobe photoshop cs6 13.1.2 extended multilanguage [chingliu]\4.cracked dlls\64 bit\amtlib.dll
c:\users\yatish\documents\software\coreldraw graphics suite x6 16.0.0.707 (32 bit) (keygen-core) [chingliu]\cdgsx6_reviewersguide.pdf
c:\users\yatish\documents\software\coreldraw graphics suite x6 16.0.0.707 (32 bit) (keygen-core) [chingliu]\chingliu.notes.nfo
c:\users\yatish\documents\software\coreldraw graphics suite x6 16.0.0.707 (32 bit) (keygen-core) [chingliu]\how to open nfo files.txt
c:\users\yatish\documents\software\coreldraw graphics suite x6 16.0.0.707 (32 bit) (keygen-core) [chingliu]\keygen-core\core.nfo
c:\users\yatish\documents\software\coreldraw graphics suite x6 16.0.0.707 (32 bit) (keygen-core) [chingliu]\keygen-core\file_id.diz
c:\users\yatish\documents\software\coreldraw graphics suite x6 16.0.0.707 (32 bit) (keygen-core) [chingliu]\keygen-core\keygen.exe
c:\users\yatish\documents\software\coreldraw graphics suite x6 16.0.0.707 (32 bit) (keygen-core) [chingliu]\setup coreldraw x6\coreldrawgraphicssuitex6installer_en32bit.exe
c:\users\yatish\documents\software\coreldraw graphics suite x7 win32 win64-xforce [deepstatus][h33t][1337x][flashtorrents]\coreldraw.graphics.suite.x7.win32xforce\coreldraw_graphics_suite_x7_win32-xforce\crack\install.txt
c:\users\yatish\documents\software\coreldraw graphics suite x7 win32 win64-xforce [deepstatus][h33t][1337x][flashtorrents]\coreldraw.graphics.suite.x7.win32xforce\coreldraw_graphics_suite_x7_win32-xforce\crack\keygen.exe
c:\users\yatish\documents\software\coreldraw graphics suite x7 win32 win64-xforce [deepstatus][h33t][1337x][flashtorrents]\coreldraw.graphics.suite.x7.win32xforce\coreldraw_graphics_suite_x7_win64-xforce\crack\install.txt
c:\users\yatish\documents\software\coreldraw graphics suite x7 win32 win64-xforce [deepstatus][h33t][1337x][flashtorrents]\coreldraw.graphics.suite.x7.win32xforce\coreldraw_graphics_suite_x7_win64-xforce\crack\keygen.exe
c:\users\yatish\documents\software\gfxtra.kmspico 10.1.9_v10.1\kmspico 10.1.9 install_v10.1.9\kmspico install\uninstall_service.cmd
c:\users\yatish\documents\software\gfxtra.kmspico 10.1.9_v10.1\kmspico 10.1.9portable_v10.1.9\kmspico portable\auto (run as admin).cmd
c:\users\yatish\documents\software\gfxtra.kmspico 10.1.9_v10.1\kmspico 10.1.9portable_v10.1.9\kmspico portable\cert\installall.cmd
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\01 introduction to the course\001 how to take the course.html
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\01 introduction to the course\001 welcome to the course.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\01 introduction to the course\002 introduction about the instructor.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\02 the sentence subjects and verb to be\001 components of every language.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\02 the sentence subjects and verb to be\002 components of sentences in english.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\02 the sentence subjects and verb to be\003 the subjects.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\02 the sentence subjects and verb to be\004 the verbs status verb to be.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\03 the sentence action verbs in the present and the past\001 the verbs simple present .. present action verbs things you do.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\03 the sentence action verbs in the present and the past\002 the verbs simple past .. past action verbs things you did.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\04 the sentence mix status verbs in the present\001 the verbs present continuous .. mix status verbs things you are doing.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\05 the negative sentence\001 how to negate the sentences with action verbs in the past.html
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\05 the negative sentence\001 negate status and mix status verbs verb to be and present continuous.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\05 the negative sentence\002 negate the sentences with action verbs in the present with the i group.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\05 the negative sentence\003 negate the sentences with action verbs in the present with the she group.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\06 questions\001 create questions with status and mix status verbs verb to be and present cont-.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\06 questions\001 creating correct questions using the action verbs aka simple present past.html
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\07 differences between some tenses in english\001 the mix action.mp4
c:\users\yatish\documents\training\crkenggram\crack-english-grammar-101\07 differences between some tenses in english\002 general revision before getting to some differences between english tenses.mp4
c:\users\yatish\downloads\diwali-crackers-price-list.pdf
c:\users\yatish\downloads\dr._fixit_crack-x_shrinkfree_94_1.pdf
c:\users\yatish\downloads\1phonecare2.2.1.2\tenorshareiphonecarepro.2.2.1.2\crack\key.txt
c:\users\yatish\downloads\1phonecare2.2.1.2\tenorshareiphonecarepro.2.2.1.2\crack\tenorshareiphonecarepro.dat
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\readme.txt
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\set-up.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\setup.xml
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\ccm\ccm.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\ccm\ccm.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\ccm\ccm.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\core\pdapp.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\core\pdapp.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\core\pdapp.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\d6\d6.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\d6\d6.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\d6\d6.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\decore\decore.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\decore\decore.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\decore\decore.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\dwa\dwa.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\dwa\dwa.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\dwa\dwa.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\ipc\ipc.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\ipc\ipc.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\ipc\ipc.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\lwa\lwa.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\lwa\lwa.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\lwa\lwa.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\p6\p6.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\p6\p6.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\p6\p6.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\p7\p7.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\p7\p7.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\p7\p7.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\uwa\uwa.pima
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\uwa\uwa.pimx
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\packages\uwa\uwa.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\media_db.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\setup.xml
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5alltrial\assets1_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5alltrial\assets1_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5alltrial\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5alltrial\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5alltrial\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5alltrial\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5alltrial\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5de_delanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5de_delanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5de_delanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5de_delanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5de_delanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5en_uslanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5en_uslanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5en_uslanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5en_uslanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5en_uslanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5es_eslanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5es_eslanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5es_eslanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5es_eslanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5es_eslanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5fr_frlanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5fr_frlanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5fr_frlanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5fr_frlanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5fr_frlanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5it_itlanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5it_itlanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5it_itlanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5it_itlanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5it_itlanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ja_jplanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ja_jplanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ja_jplanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ja_jplanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ja_jplanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ko_krlanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ko_krlanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ko_krlanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ko_krlanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ko_krlanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5pt_brlanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5pt_brlanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5pt_brlanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5pt_brlanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5pt_brlanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ru_rulanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ru_rulanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ru_rulanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ru_rulanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5ru_rulanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5supportall\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5supportall\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5supportall\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5supportall\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5supportall\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5zh_cnlanguagepack\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5zh_cnlanguagepack\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5zh_cnlanguagepack\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5zh_cnlanguagepack\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffects13.5zh_cnlanguagepack\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffectspresets13.5all\assets1_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffectspresets13.5all\assets1_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffectspresets13.5all\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffectspresets13.5all\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffectspresets13.5all\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffectspresets13.5all\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobeaftereffectspresets13.5all\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all\assets1_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all\assets1_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all-x64\assets1_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all-x64\assets1_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all-x64\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all-x64\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecameraraw8.0all-x64\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecamerarawprofile8.0all\assets1_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecamerarawprofile8.0all\assets1_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecamerarawprofile8.0all\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecamerarawprofile8.0all\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecamerarawprofile8.0all\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecharacteranimatorpreviewalltrial\assets1_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecharacteranimatorpreviewalltrial\assets1_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecharacteranimatorpreviewalltrial\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecharacteranimatorpreviewalltrial\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecharacteranimatorpreviewalltrial\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecharacteranimatorpreviewalltrial\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecharacteranimatorpreviewalltrial\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecolorcommonsetrgb4_0-mul\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecolorcommonsetrgb4_0-mul\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecolorcommonsetrgb4_0-mul\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecolorcommonsetrgb4_0-mul\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobecolorcommonsetrgb4_0-mul\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrecommended_x64-mul\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrecommended_x64-mul\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrecommended_x64-mul\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrecommended_x64-mul\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrecommended_x64-mul\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrequired_x64-mul\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrequired_x64-mul\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrequired_x64-mul\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrequired_x64-mul\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobefontsrequired_x64-mul\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobemotionpicture5_0-mul\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobemotionpicture5_0-mul\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobemotionpicture5_0-mul\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobemotionpicture5_0-mul\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobemotionpicture5_0-mul\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobevideoprofilesae4_0-mul\assets2_1.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobevideoprofilesae4_0-mul\assets2_1.zip
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobevideoprofilesae4_0-mul\install.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobevideoprofilesae4_0-mul\install.sig
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\adobevideoprofilesae4_0-mul\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2005 redist (x64)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2005 redist (x64)\vcredist_x64.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2005 redist (x86)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2005 redist (x86)\vcredist_x86.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2008 redist (x64)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2008 redist (x64)\vcredist_x64.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2008 redist (x86)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2008 redist (x86)\vcredist_x86.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2010 redist (x64)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2010 redist (x64)\vcredist_x64.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2010 redist (x86)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2010 redist (x86)\vcredist_x86.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2012 redist (x64)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2012 redist (x64)\vcredist_x64.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2012 redist (x86)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2012 redist (x86)\vcredist_x86.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2013 redist (x64)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2013 redist (x64)\vcredist_x64.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2013 redist (x86)\media_db.db
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\payloads\microsoft vc 2013 redist (x86)\vcredist_x86.exe
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\adobepim.dll
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\setup.xml
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\updaterinventory.dll
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\cs_cz\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\da_dk\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\de_de\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\en_ae\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\en_gb\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\en_il\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\en_us\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\en_xm\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\es_es\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\es_la\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\es_mx\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\es_na\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\fi_fi\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\fr_ca\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\fr_fr\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\fr_ma\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\fr_xm\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\hu_hu\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\it_it\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\ja_jp\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\ko_kr\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\nb_no\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\nl_nl\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\pl_pl\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\pt_br\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\ru_ru\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\sv_se\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\tr_tr\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\uk_ua\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\zh_cn\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\adobe after effects cc 2015\resources\dictionary\zh_tw\stringtable.zdct
c:\users\yatish\downloads\adobe after effects cc 2015 v13.5 + crack\crack\amtlib.dll
c:\windows\autokms\autokms.exe
scanner sequence 3.ZZ.11.CTAPHZ
----- EOF -----
 

·
Registered
Joined
·
1,859 Posts
Hello richiejain,

Unfortunately, you're using illegal Office. KMSpico is crack. This tool can be used to activate any version of Windows and MS office. Do not use of such tools/software (like kmspico and cracked software).

c:\users\yatish\documents\gfxtra\gfxtra.kmspico 10.1.9_v10.1.rar
Please read read read

This is the main reason your computer is infected. Visiting cracksites/warezsites - and other questionable/illegal sites is always a risk.

Even a single click on the site can drop multiple forms of very serious malware, many of which disable your onboard protection, and System Restore.

If you install the cracked software, you are running executable files from these dubious, unknown sources. You are in effect giving these sources access to information on your hard disk, and potential control over the operation of your computer.

Additionally, cracked programs are illegal. Before posting for help, uninstall any such applications.

Referring to the Forum Rules which you should have read at the time of Registering at this forum, TSF does not support illegal activity. As such, be advised that any request for assistance in removing malware may go unanswered, or may be discontinued, if cracked (illegal) software is present on the machine.

:arrowr: Installed Program :arrowl:

MS Office
adobe after effects
coreldraw graphics suite x6
and others
 

·
Registered
Joined
·
91 Posts
Discussion Starter #10
As told to you earlier

I am using a genuine windows and office products

Also my adobe products are genuine.

The files in the directory of software were a torrent downloads maybe but are unused.

I have deleted the folder itself.

Kindly update me on what to do next.
 

·
Registered
Joined
·
1,859 Posts
Hello richiejain,

If you have legit applications installed, why would you have cracks for those applications on your machine?

As such, we are unable to determine whether your apps are legit or not.

This file, which bypasses activation of Office, was activated on your machine about 6 mos. ago:
C:/WINDOWS/AutoKMS/AutoKMS.exe [2015-09-07]
Sorry, but we will not be able to provide further help unless those applications are uninstalled.
 

·
Registered
Joined
·
91 Posts
Discussion Starter #14
i have uninstalled office, corel draw and the folder which you were C:/WINDOWS/AutoKMS/AutoKMS.exe [2015-09-07]
 

·
Registered
Joined
·
1,859 Posts
Hello richiejain,

Ok. Please do the below steps.

STEP 1

:arrowr: Download CKScanner by askey127 from Here
:arrowr: Right-click and Run as Administrator CKScanner.exe then click Search For Files
:arrowr: After a couple minutes or less, when some text appears in the box, click Save List To File.
:arrowr:A message box will verify the file saved. It is important that you run the program just once..
:arrowr: Double-click the CKFiles.txt icon on your desktop, give permission if asked, and copy/paste the contents in your next reply.

STEP 2

Please re-run FRST tool and attach fresh FRST.txt and Addition.txt.
 

·
Registered
Joined
·
91 Posts
Discussion Starter #16
CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
c:\program files\git\usr\bin\ssh-keygen.exe
c:\users\yatish\downloads\diwali-crackers-price-list.pdf
c:\users\yatish\downloads\dr._fixit_crack-x_shrinkfree_94_1.pdf
scanner sequence 3.AB.11.OTBBE0
----- EOF -----
 

Attachments

·
Registered
Joined
·
1,859 Posts
Hello richiejain,

Thank you :thumb:

Please do the following.

:arrowr: Open Notepad (Start > All Programs > Accessories > Notepad).
:arrowr: Please copy all the text in the codebox below. (To do this highlight the contents of the box, right-click on it and select Copy. Right-click in the open Notepad and select Paste).
:arrowr: Save it as fixlist.txt next to FRST64.exe

NOTE: Both FRST64.exe and the fixlist.txt must be in the same location or the fix will not work.

Code:
start
CreateRestorePoint:
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55808 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\napinsp.dll"
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65024 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\System32\winrnr.dll"
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {2B41C8E8-508F-4E60-8BE5-6BF638848DDB} URL = 
SearchScopes: HKU\S-1-5-21-2158003825-1558941813-3830566792-1002 -> DefaultScope {2B41C8E8-508F-4E60-8BE5-6BF638848DDB} URL = 
CHR StartupUrls: Default -> "hxxp://mail.google.com/","hxxp://search.conduit.com/?ctid=CT3306061&SearchSource=48&CUI=UN33533321726869192&UM=2","hxxp://websearch.amaizingsearches.info/?pid=377&r=2014/04/16&hid=10255090533470014310&lg=EN&cc=IN&unqvl=51","hxxps://in.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ir_15_50&param1=1&param2=f%3D7%26b%3DChrome%26cc%3Din%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuyByEtBzy0A0FtD0Bzy0E0Ezz0F0EyCyCtN0D0Tzu0StCyEtAyCtN1L2XzutAtFtCyDtFtAtFtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyEtAzyyEtByBtAzztGtD0F0C0FtGtA0CyDtDtGyCyEyDtBtGtDyDyEtAtD0AyBtCtB0AyDyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0D0EtC0F0AzytAtG0Ezz0BtCtGyE0CyDyCtG0A0C0ByEtGzyzz0Ezz0ByB0B0C0DtDzz0A2QtN0A0LzuyE%26cr%3D1455738840%26a%3Dwncy_ir_15_50%26os%3DWindows%2B10%2BHome%2BSingle%2BLanguage"
CHR Extension: (MySmartPrice) - C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\bofbpdmkbmlancfihdncikcigpokmdda [2016-03-18]
CHR Extension: (Poppit!) - C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi [2016-04-13]
CHR HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
2016-04-08 12:57 - 2016-04-09 12:38 - 00000000 ____D C:\Users\Yatish\AppData\LocalLow\uTorrent
2016-04-27 11:56 - 2015-09-07 10:55 - 00000000 ____D C:\WINDOWS\AutoKMS
2016-04-17 10:36 - 2015-12-04 16:48 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
c:\program files\git\usr\bin\ssh-keygen.exe
Task: {0738FB58-9BA9-4372-BFC3-465652E7E66D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {0FA9E4E3-BCB6-4FC9-99D9-4BD309FCC081} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {309FDF5B-39BD-4892-99EE-70B14F825584} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {3E5ED99B-F427-4D15-81C8-E7EB551071CD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {410A891A-DC58-467D-B1C1-63388A068866} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe
Task: {421113E6-30F4-4F16-8938-4047DA059222} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {56A88C67-E3AF-49E4-A00D-748CDD6E5731} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {5EAA597F-9022-4B43-AF69-F906B4341D35} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B29B90C2-0EBE-49DC-93B4-456BF69AE3B4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C4A83966-FEA2-4995-B7C5-321283CBB948} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CBD6264A-3E54-44D3-B6BC-D8ABB757D25A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {D6E3EA02-27B1-4B82-AC25-DC8F61FE07B2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
FirewallRules: [{E95DA929-B9DD-4FEF-9490-6873AE863F55}] => (Allow) C:\Users\Yatish\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{366789E5-DD66-431E-8BFD-93698D33F351}] => (Allow) C:\Users\Yatish\AppData\Roaming\uTorrent\uTorrent.exe
Reg: reg delete HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\...\StartupApproved\Run /v "uTorrent" /f
CMD: netsh winsock reset
CMD: bitsadmin /reset /allusers
EmptyTemp:
end
:arrowr: Double-click FRST64 to run the tool. If the tool warns you the version is outdated, please download and run the updated version.
:arrowr: Click the Fix button just once, and wait.
:arrowr: If you receive a message that a reboot is required, please make sure you allow it to restart normally.
:arrowr: The tool will complete its run after the restart.
:arrowr: When finished, the tool will make a log (Fixlog.txt) in the same location from where it was run. Please post the Fixlog.txt log in your reply.

NOTE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
 

·
Registered
Joined
·
91 Posts
Discussion Starter #20
Fix result of Farbar Recovery Scan Tool (x64) Version:10-04-2016 01
Ran by Yatish (2016-04-28 12:38:21) Run:1
Running from C:\Users\Yatish\Downloads
Loaded Profiles: UpdatusUser & Yatish (Available Profiles: UpdatusUser & Yatish)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55808 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\napinsp.dll"
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65024 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\System32\winrnr.dll"
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {2B41C8E8-508F-4E60-8BE5-6BF638848DDB} URL =
SearchScopes: HKU\S-1-5-21-2158003825-1558941813-3830566792-1002 -> DefaultScope {2B41C8E8-508F-4E60-8BE5-6BF638848DDB} URL =
CHR StartupUrls: Default -> "hxxp://mail.google.com/","hxxp://search.conduit.com/?ctid=CT3306061&SearchSource=48&CUI=UN33533321726869192&UM=2","hxxp://websearch.amaizingsearches.info/?pid=377&r=2014/04/16&hid=10255090533470014310&lg=EN&cc=IN&unqvl=51","hxxps://in.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ir_15_50&param1=1&param2=f%3D7%26b%3DChrome%26cc%3Din%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuyByEtBzy0A0FtD0Bzy0E0Ezz0F0EyCyCtN0D0Tzu0StCyEtAyCtN1L2XzutAtFtCyDtFtAtFtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyEtAzyyEtByBtAzztGtD0F0C0FtGtA0CyDtDtGyCyEyDtBtGtDyDyEtAtD0AyBtCtB0AyDyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0D0EtC0F0AzytAtG0Ezz0BtCtGyE0CyDyCtG0A0C0ByEtGzyzz0Ezz0ByB0B0C0DtDzz0A2QtN0A0LzuyE%26cr%3D1455738840%26a%3Dwncy_ir_15_50%26os%3DWindows%2B10%2BHome%2BSingle%2BLanguage"
CHR Extension: (MySmartPrice) - C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\bofbpdmkbmlancfihdncikcigpokmdda [2016-03-18]
CHR Extension: (Poppit!) - C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi [2016-04-13]
CHR HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
2016-04-08 12:57 - 2016-04-09 12:38 - 00000000 ____D C:\Users\Yatish\AppData\LocalLow\uTorrent
2016-04-27 11:56 - 2015-09-07 10:55 - 00000000 ____D C:\WINDOWS\AutoKMS
2016-04-17 10:36 - 2015-12-04 16:48 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
c:\program files\git\usr\bin\ssh-keygen.exe
Task: {0738FB58-9BA9-4372-BFC3-465652E7E66D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {0FA9E4E3-BCB6-4FC9-99D9-4BD309FCC081} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {309FDF5B-39BD-4892-99EE-70B14F825584} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {3E5ED99B-F427-4D15-81C8-E7EB551071CD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {410A891A-DC58-467D-B1C1-63388A068866} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe
Task: {421113E6-30F4-4F16-8938-4047DA059222} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {56A88C67-E3AF-49E4-A00D-748CDD6E5731} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {5EAA597F-9022-4B43-AF69-F906B4341D35} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B29B90C2-0EBE-49DC-93B4-456BF69AE3B4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C4A83966-FEA2-4995-B7C5-321283CBB948} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CBD6264A-3E54-44D3-B6BC-D8ABB757D25A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {D6E3EA02-27B1-4B82-AC25-DC8F61FE07B2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
FirewallRules: [{E95DA929-B9DD-4FEF-9490-6873AE863F55}] => (Allow) C:\Users\Yatish\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{366789E5-DD66-431E-8BFD-93698D33F351}] => (Allow) C:\Users\Yatish\AppData\Roaming\uTorrent\uTorrent.exe
Reg: reg delete HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\...\StartupApproved\Run /v "uTorrent" /f
CMD: netsh winsock reset
CMD: bitsadmin /reset /allusers
EmptyTemp:
end
*****************

Restore point was successfully created.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
Winsock: Catalog5 000000000001\\LibraryPath => restored successfully (%SystemRoot%\system32\napinsp.dll)
Winsock: Catalog5 000000000002\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
Winsock: Catalog5 000000000003\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
Winsock: Catalog5 000000000004\\LibraryPath => restored successfully (%SystemRoot%\system32\NLAapi.dll)
Winsock: Catalog5 000000000005\\LibraryPath => restored successfully (%SystemRoot%\System32\mswsock.dll)
Winsock: Catalog5 000000000006\\LibraryPath => restored successfully (%SystemRoot%\System32\winrnr.dll)
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
Chrome StartupUrls => removed successfully
C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\bofbpdmkbmlancfihdncikcigpokmdda => moved successfully
C:\Users\Yatish\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi => moved successfully
"HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh" => key removed successfully
C:\Users\Yatish\AppData\LocalLow\uTorrent => moved successfully
C:\WINDOWS\AutoKMS => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
c:\program files\git\usr\bin\ssh-keygen.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0738FB58-9BA9-4372-BFC3-465652E7E66D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0738FB58-9BA9-4372-BFC3-465652E7E66D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0FA9E4E3-BCB6-4FC9-99D9-4BD309FCC081}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0FA9E4E3-BCB6-4FC9-99D9-4BD309FCC081}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{309FDF5B-39BD-4892-99EE-70B14F825584}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{309FDF5B-39BD-4892-99EE-70B14F825584}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E5ED99B-F427-4D15-81C8-E7EB551071CD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E5ED99B-F427-4D15-81C8-E7EB551071CD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{410A891A-DC58-467D-B1C1-63388A068866}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{410A891A-DC58-467D-B1C1-63388A068866}" => key removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{421113E6-30F4-4F16-8938-4047DA059222}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{421113E6-30F4-4F16-8938-4047DA059222}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{56A88C67-E3AF-49E4-A00D-748CDD6E5731}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{56A88C67-E3AF-49E4-A00D-748CDD6E5731}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5EAA597F-9022-4B43-AF69-F906B4341D35}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5EAA597F-9022-4B43-AF69-F906B4341D35}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B29B90C2-0EBE-49DC-93B4-456BF69AE3B4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B29B90C2-0EBE-49DC-93B4-456BF69AE3B4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C4A83966-FEA2-4995-B7C5-321283CBB948}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4A83966-FEA2-4995-B7C5-321283CBB948}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CBD6264A-3E54-44D3-B6BC-D8ABB757D25A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CBD6264A-3E54-44D3-B6BC-D8ABB757D25A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D6E3EA02-27B1-4B82-AC25-DC8F61FE07B2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D6E3EA02-27B1-4B82-AC25-DC8F61FE07B2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E95DA929-B9DD-4FEF-9490-6873AE863F55} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{366789E5-DD66-431E-8BFD-93698D33F351} => value removed successfully

========= reg delete HKU\S-1-5-21-2158003825-1558941813-3830566792-1002\...\StartupApproved\Run /v "uTorrent" /f =========

ERROR: The system was unable to find the specified registry key or value.


========= End of Reg: =========


========= netsh winsock reset =========


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.8.10586 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {7EF47AA1-3090-4448-B604-6A57A431B99E}.
0 out of 1 jobs canceled.

========= End of CMD: =========

EmptyTemp: => 2.1 GB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 12:47:43 ====
 
1 - 20 of 36 Posts
Status
Not open for further replies.
Top