Jump to content


Photo

Skype missing options issue.

Skype microsoft account registry

  • This topic is locked This topic is locked
15 replies to this topic

#1 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 24 June 2014 - 06:24 PM

Dear Team Awesome,

 

A wee background on this one.  My sister uses Skype, and it stopped allowing her to sign in using her Microsoft Account.  Upon booting, the computer was giving an error about a corrupted drive: 

"The type of the file system is NTFS

Volume label is OS

One of your disks needs to be checked for consistency. You may cancel the disk check but it is strongly recommended that you continue.  To skip disk checking, press any key within 10 seconds." 

Using the repair disk and boot from CD, Windows repaired this, and after the reboot, I updated her systems and Windows update major fixes.  However, after that, Skype would no longer allow the Microsoft signin, only signing in with a Skype name.

 

For the skype, she was on the newest Skype version - I read about a few fixes in forums and tried them all.  Uncovered a PUP malware (Trovi) in the process and removed it.  After doing some general cleanups, I reverted back to IE 10 (where skype worked before, though she browses with Firefox)  So there's the background, and here's Security Check's log.

 

 Results of screen317's Security Check version 0.99.85  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 10 Out of date!
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Java 7 Update 60  
  Adobe Flash Player 13.0.0.214 Flash Player out of Date!  
 Adobe Reader XI  
 Mozilla Firefox (30.0)
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
 



#2 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 24 June 2014 - 06:28 PM

ORIGINAL MBAM (So you can see what was cleared too, and I'll update a current one as well)

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/23/2014
Scan Time: 8:46:58 PM
Logfile: MBAM.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.24.03
Rootkit Database: v2014.06.23.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Kim-Yon

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 271734
Time Elapsed: 11 min, 0 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 2
PUP.Optional.SearchProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CltMngSvc, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],

Registry Values: 1
PUM.Bad.Proxy, HKU\S-1-5-21-1707699250-2443634357-3253237491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, http=127.0.0.1:8555, Quarantined, [8bb8e79592e97fb7f670802be41ef808]

Registry Data: 0
(No malicious items detected)

Folders: 25
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\rep, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\bin, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\rep, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\CT3325809, Quarantined, [94af6f0dbfbc38feaedba9e78181ea16],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect, Delete-on-Reboot, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\SearchProtect, Delete-on-Reboot, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\SearchProtect\rep, Quarantined, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\SearchProtect\STG, Quarantined, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\UI, Quarantined, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\UI\rep, Quarantined, [3d0679033942df576b9b9b0b7f834db3],

Files: 85
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\nsv7843.exe, Quarantined, [ce75116b641763d318678ff7bf4236ca],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\Temp\spstub.exe, Quarantined, [5ee5502c2c4f41f5373193f20bf6d729],
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\nsa7D91.exe, Quarantined, [d86b2d4f3c3fd75f2b543b4b20e141bf],
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\nsf1C88.tmp, Quarantined, [c87bed8f5e1db581502f3452ef1205fb],
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\nsf3F36.exe, Quarantined, [b3900e6e7dfe69cda6d90b7ba16012ee],
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\nsv392D.exe, Quarantined, [98ab1369c8b32f07aed1c5c1be43b54b],
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\dlLogic.exe, Quarantined, [9ea598e41269181ee9dd3e04ef1127d9],
PUP.Optional.Trovi.A, C:\Users\Kim-Yon\AppData\Roaming\Mozilla\Firefox\Profiles\eohqjuoo.default\searchplugins\trovi-search.xml, Quarantined, [4bf83f3db1ca0a2c190c367d0df5728e],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\EULA.txt, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep\SystemRepository.dat, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe, Delete-on-Reboot, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings.html, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\style.css, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.css, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.html, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\defaults.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-selected.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-default.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-onclick.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-Rollover.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-uninstall.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-with-logo.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgNotif.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettings.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettingsDS.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgUninstall.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnBlue.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnClose.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnSilver.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\button-bg.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_checked.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_def.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-def.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-over-click.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\gray-bg.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-def.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\icon-win.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\info-icon.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-rollover.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-selected.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-def.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-selected.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button2.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Settings-icon.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\text-field.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\v.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\x.png, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\defaults.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\dialogUtils.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\json2.min.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\main.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\SPDialogAPI.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\defaults.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.css, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.html, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\defaults.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.css, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.html, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\defaults.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.css, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.html, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\defaults.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.css, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.html, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.js, Quarantined, [68db2f4db3c8181e5dcbd9132cd7a45c],
PUP.Optional.Conduit.A, C:\Users\Kim-Yon\AppData\Local\Temp\CT3325809\ddt.csf, Quarantined, [94af6f0dbfbc38feaedba9e78181ea16],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\SearchProtect\rep\UserRepository.dat, Quarantined, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\SearchProtect\rep\UserSettings.dat, Quarantined, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.SearchProtect.A, C:\Users\Kim-Yon\AppData\Local\SearchProtect\UI\rep\UIRepository.dat, Quarantined, [3d0679033942df576b9b9b0b7f834db3],
PUP.Optional.Trovi.A, C:\Users\Kim-Yon\AppData\Roaming\Mozilla\Firefox\Profiles\eohqjuoo.default\prefs.js, Good: (), Bad: (user_pref("browser.newtab.url", "http://www.trovi.com...64-F3DAFD727414");), Replaced,[73d06b11ef8c2e084ac5efc333d1b848]

Physical Sectors: 0
(No malicious items detected)


(end)



#3 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 24 June 2014 - 06:44 PM

CURRENT MBAM log:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/24/2014
Scan Time: 5:31:13 PM
Logfile: MBAM.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.24.14
Rootkit Database: v2014.06.23.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Kim-Yon

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 274212
Time Elapsed: 11 min, 0 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)



#4 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 24 June 2014 - 06:54 PM

Last and not least, the DDS.txt

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16736  BrowserJavaVersion: 10.60.2
Run by Kim-Yon at 17:50:45 on 2014-06-24
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.7991.5693 [GMT -7:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
C:\Windows\system32\WLANExt.exe
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\System32\igfxpers.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\WTablet\Wacom_TabletUser.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uSearch Bar = Preserve
uProxyOverride = 127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896;<local>
mWinlogon: Userinit = userinit.exe,
BHO: ContributeBHO Class: {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
BHO: PlusIEEventHelper Class: {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\bin\PlusIEContextMenu.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Contribute Toolbar: {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
uRun: [AdobeBridge] <no file>
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
dRunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft..../?LinkID=122915" /build:7601
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
TCP: NameServer = 192.168.10.1
TCP: Interfaces\{788F4E1D-B6BE-41BB-B5A2-A36A6D79BD83} : DHCPNameServer = 192.168.10.1
TCP: Interfaces\{788F4E1D-B6BE-41BB-B5A2-A36A6D79BD83}\139373430796E647F6D27657563747 : DHCPNameServer = 192.168.3.1
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} -
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Kim-Yon\AppData\Roaming\Mozilla\Firefox\Profiles\eohqjuoo.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - plugin: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2014-6-23 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2014-6-23 208416]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-1-13 55280]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2014-6-23 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2014-6-23 423240]
R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\Windows\System32\drivers\hssdrv6.sys [2013-2-21 46280]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2011-1-13 89600]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-6-23 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-6-23 79184]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-6-23 85328]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-6-23 50344]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2013-4-22 822504]
R2 DAZContentManagementService;DAZ Content Management Service;C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe [2013-6-5 22528]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-1-13 13336]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-6-23 1809720]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-6-23 860472]
R2 PDFProFiltSrvPP;PDFProFiltSrvPP;C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [2011-8-2 145256]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-6-26 523944]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2011-1-13 1692480]
R2 TabletServiceWacom;TabletServiceWacom;C:\Windows\System32\Wacom_Tablet.exe [2011-7-11 6159656]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-1-13 2320920]
R3 BcmVWL;Broadcom Virtual Wireless;C:\Windows\System32\drivers\bcmvwl64.sys [2011-1-13 20984]
R3 btusbflt;Bluetooth USB Filter;C:\Windows\System32\drivers\btusbflt.sys [2011-1-13 53800]
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2011-1-13 35104]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2011-1-13 172704]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2011-1-13 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2011-1-13 158976]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-1-13 289280]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-6-23 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-6-23 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-6-23 63704]
R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2013-6-26 767144]
R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2013-6-26 273576]
R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2013-6-26 28840]
R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2013-6-26 23208]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-6-26 207528]
R3 taphss6;Anchorfree HSS VPN Adapter;C:\Windows\System32\drivers\taphss6.sys [2013-2-21 42184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-4-3 315008]
S3 BrYNSvc;BrYNSvc;C:\Program Files (x86)\Browny02\BrYNSvc.exe [2014-1-23 266240]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2011-1-13 232480]
S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-1-13 325152]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-23 59392]
S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2011-7-11 18216]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-3-31 1255736]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120]
.
=============== File Associations ===============
.
FileExt: .js: jsfile="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\dreamweaver.exe","%1"
ShellExec: dreamweaver.exe: Open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2014-06-25 00:13:54    75888    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{24631499-28F1-44C8-B606-2E20490ED66D}\offreg.dll
2014-06-24 23:42:10    --------    d-----r-    C:\Program Files (x86)\Skype
2014-06-24 19:46:02    --------    d-----w-    C:\ProgramData\Oracle
2014-06-24 19:45:07    98216    ----a-w-    C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-06-24 13:01:40    10779000    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{24631499-28F1-44C8-B606-2E20490ED66D}\mpengine.dll
2014-06-24 03:44:46    122584    ----a-w-    C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-06-24 03:44:04    91352    ----a-w-    C:\Windows\System32\drivers\mbamchameleon.sys
2014-06-24 03:44:04    63704    ----a-w-    C:\Windows\System32\drivers\mwac.sys
2014-06-24 03:44:04    25816    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2014-06-24 03:44:03    --------    d-----w-    C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-24 02:23:59    --------    d-----w-    C:\Users\Kim-Yon\AppData\Roaming\WTablet
2014-06-24 00:01:17    --------    d-sh--w-    C:\Users\Kim-Yon\AppData\Local\EmieUserList
2014-06-24 00:01:17    --------    d-sh--w-    C:\Users\Kim-Yon\AppData\Local\EmieSiteList
2014-06-23 20:49:24    85328    ----a-w-    C:\Windows\System32\drivers\aswstm.sys
2014-06-23 20:49:24    208416    ----a-w-    C:\Windows\System32\drivers\aswVmm.sys
2014-06-23 20:49:24    1039096    ----a-w-    C:\Windows\System32\drivers\aswsnx.sys.1403553378922
2014-06-23 20:49:24    1039096    ----a-w-    C:\Windows\System32\drivers\aswsnx.sys
2014-06-23 20:49:23    93568    ----a-w-    C:\Windows\System32\drivers\aswRdr2.sys
2014-06-23 20:49:23    79184    ----a-w-    C:\Windows\System32\drivers\aswMonFlt.sys
2014-06-23 20:49:23    65776    ----a-w-    C:\Windows\System32\drivers\aswRvrt.sys
2014-06-23 20:49:23    423240    ----a-w-    C:\Windows\System32\drivers\aswsp.sys.1403553378922
2014-06-23 20:49:23    29208    ----a-w-    C:\Windows\System32\drivers\aswHwid.sys
2014-06-23 20:49:13    43152    ----a-w-    C:\Windows\avastSS.scr
2014-06-23 20:48:51    --------    d-----w-    C:\Program Files\AVAST Software
2014-06-23 17:24:00    --------    d-sh--w-    C:\found.000
2014-06-11 10:06:49    255488    ----a-w-    C:\Program Files\Internet Explorer\DiagnosticsHub.ScriptedSandboxPlugin.dll
2014-06-11 09:56:16    801280    ----a-w-    C:\Windows\System32\usp10.dll
2014-06-11 09:56:15    626688    ----a-w-    C:\Windows\SysWow64\usp10.dll
2014-06-11 09:56:11    288192    ----a-w-    C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-06-11 09:56:11    1903552    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
2014-06-11 09:56:01    2002432    ----a-w-    C:\Windows\System32\msxml6.dll
2014-06-11 09:56:01    1882112    ----a-w-    C:\Windows\System32\msxml3.dll
2014-06-11 09:56:01    1389056    ----a-w-    C:\Windows\SysWow64\msxml6.dll
2014-06-11 09:56:00    2048    ----a-w-    C:\Windows\SysWow64\msxml6r.dll
2014-06-11 09:56:00    2048    ----a-w-    C:\Windows\SysWow64\msxml3r.dll
2014-06-11 09:56:00    2048    ----a-w-    C:\Windows\System32\msxml6r.dll
2014-06-11 09:56:00    2048    ----a-w-    C:\Windows\System32\msxml3r.dll
2014-06-11 09:56:00    1237504    ----a-w-    C:\Windows\SysWow64\msxml3.dll
2014-06-11 09:50:44    506368    ----a-w-    C:\Windows\System32\aepdu.dll
2014-06-11 09:50:43    424448    ----a-w-    C:\Windows\System32\aeinv.dll
2014-06-01 18:38:19    536576    ----a-w-    C:\Windows\SysWow64\sqlite3.dll
2014-06-01 06:30:16    --------    d-s---w-    C:\Windows\System32\CompatTel
2014-05-31 10:12:55    27584    ----a-w-    C:\Windows\System32\drivers\Diskdump.sys
2014-05-31 10:12:55    274880    ----a-w-    C:\Windows\System32\drivers\msiscsi.sys
2014-05-31 10:12:55    2048    ----a-w-    C:\Windows\SysWow64\iologmsg.dll
2014-05-31 10:12:55    2048    ----a-w-    C:\Windows\System32\iologmsg.dll
2014-05-31 10:12:55    190912    ----a-w-    C:\Windows\System32\drivers\storport.sys
2014-05-31 10:12:16    1684928    ----a-w-    C:\Windows\System32\drivers\ntfs.sys
2014-05-30 12:15:24    --------    d-----w-    C:\Users\Kim-Yon\AppData\Local\Skype
.
==================== Find3M  ====================
.
2014-05-31 19:26:27    70832    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-31 19:26:27    692400    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-12 02:22:05    95680    ----a-w-    C:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05    155072    ----a-w-    C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38    29184    ----a-w-    C:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38    136192    ----a-w-    C:\Windows\System32\sspicli.dll
2014-04-12 02:19:37    28160    ----a-w-    C:\Windows\System32\secur32.dll
2014-04-12 02:19:32    1460736    ----a-w-    C:\Windows\System32\lsasrv.dll
2014-04-12 02:19:05    31232    ----a-w-    C:\Windows\System32\lsass.exe
2014-04-12 02:12:06    22016    ----a-w-    C:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56    96768    ----a-w-    C:\Windows\SysWow64\sspicli.dll
2014-03-31 16:35:08    270496    ------w-    C:\Windows\System32\MpSigStub.exe
.
============= FINISH: 17:51:12.65 ===============
 



#5 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 24 June 2014 - 06:56 PM

Well, I lied.  Not last.  I took the liberty of running SmartLook as well to see if I could find the Skype problem.  Looks ugly. 

Query was:

filefind
Skype

regfind
Skype

 

SystemLook 30.07.11 by jpshortstuff
Log created at 17:02 on 24/06/2014 by Kim-Yon
Administrator - Elevation successful

========== filefind ==========

Searching for "Skype"
No files found.

========== regfind ==========

Searching for "Skype"
[HKEY_CURRENT_USER\Software\IM Providers]
"DefaultIMApp"="Skype"
[HKEY_CURRENT_USER\Software\IM Providers\Skype]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\2323B5B8-9D8F-4063-B1F8-B32017C24844]
"AppPath"="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1024F1BE-76DC-40d5-AB98-664A4185E5FA}]
"AppPath"="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List]
"File1"="C:\Users\Kim-Yon\Pictures\Skypelogin.png"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"i"="Skype.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"h"="Skype.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU]
"b"="%programdata%\Skype\Apps\1"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU]
"e"="%temp%\skype\1"
[HKEY_CURRENT_USER\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin]
[HKEY_CURRENT_USER\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin]
"Path"="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll"
[HKEY_CURRENT_USER\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin]
"Vendor"="Skype Limited"
[HKEY_CURRENT_USER\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin\MimeTypes\application/skypeweb-plugin]
[HKEY_CURRENT_USER\Software\Skype]
[HKEY_CURRENT_USER\Software\Skype\Phone]
"SkypePath"="C:\Program Files (x86)\Skype\Phone\Skype.exe"
[HKEY_CURRENT_USER\Software\SkypeRS]
[HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files (x86)\Skype\Phone\Skype.exe"="Skype "
[HKEY_CURRENT_USER\Software\Classes\TypeLib\{B9AA1F11-F480-4054-A84E-B5D9277E40A8}\1.0\0\win32]
@="C:\Program Files (x86)\Skype\Phone\Skype.exe\3"
[HKEY_CURRENT_USER\Software\Classes\TypeLib\{B9AA1F11-F480-4054-A84E-B5D9277E40A8}\1.0\HELPDIR]
@="C:\Program Files (x86)\Skype\Phone\Skype.exe\"
[HKEY_CURRENT_USER\Software\Classes\TypeLib\{C83892BA-A57E-49FD-961E-3BF0D81BB0D2}\1.0\0\win32]
@="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe"
[HKEY_CURRENT_USER\Software\Classes\TypeLib\{C83892BA-A57E-49FD-961E-3BF0D81BB0D2}\1.0\HELPDIR]
@="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.skype]
"Content Type"="application/x-skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.skype]
@="Skype.Content"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.skype\Skype.Content]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{27E6D007-EE3B-4FF7-8AE8-28EF0739124C}]
"LocalService"="SkypeUpdate"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\50E7C3A773EE6D74991EE20BA5D33A7F]
"ProductName"="Skype™ 6.16"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\50E7C3A773EE6D74991EE20BA5D33A7F]
"ProductIcon"="C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\50E7C3A773EE6D74991EE20BA5D33A7F\SourceList]
"PackageName"="Skype.msi"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\50E7C3A773EE6D74991EE20BA5D33A7F\SourceList]
"LastUsedSource"="n;1;C:\ProgramData\Skype\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\50E7C3A773EE6D74991EE20BA5D33A7F\SourceList\Net]
"1"="C:\ProgramData\Skype\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MIME\Database\Content Type\application/x-skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MIME\Database\Content Type\application/x-skype]
"Extension"=".skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype]
@="URL:Skype Protocol"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype\DefaultIcon]
@=""C:\Program Files (x86)\Skype\Phone\Skype.exe",0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype\shell\open\command]
@=""C:\Program Files (x86)\Skype\Phone\Skype.exe" "/uri:%1""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype.callto]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype.callto\DefaultIcon]
@="C:\Program Files (x86)\Skype\Phone\Skype.exe,0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype.callto\shell\open\command]
@=""C:\PROGRA~2\Skype\Phone\Skype.exe" "/callto:%l""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype.Content]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype.Content]
@="Skype Content"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype.Content\DefaultIcon]
@="C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe,0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype.Content\shell\open\command]
@=""C:\Program Files (x86)\Skype\Phone\Skype.exe" /file:"%1""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\skype.TREGraphicObject]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Application]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Application\CurVer]
@="Skype4COM.Application.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Application.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ApplicationStream]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ApplicationStream\CurVer]
@="Skype4COM.ApplicationStream.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ApplicationStream.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ApplicationStreamCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ApplicationStreamCollection\CurVer]
@="Skype4COM.ApplicationStreamCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ApplicationStreamCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Call]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Call\CurVer]
@="Skype4COM.Call.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Call.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannel]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannel\CurVer]
@="Skype4COM.CallChannel.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannel.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelCollection\CurVer]
@="Skype4COM.CallChannelCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelManager]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelManager\CurVer]
@="Skype4COM.CallChannelManager.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelManager.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelMessage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelMessage\CurVer]
@="Skype4COM.CallChannelMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallChannelMessage.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallCollection\CurVer]
@="Skype4COM.CallCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.CallCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Chat]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Chat\CurVer]
@="Skype4COM.Chat.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Chat.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatCollection\CurVer]
@="Skype4COM.ChatCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatMessage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatMessage\CurVer]
@="Skype4COM.ChatMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatMessage.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatMessageCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatMessageCollection\CurVer]
@="Skype4COM.ChatMessageCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ChatMessageCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Client]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Client\CurVer]
@="Skype4COM.Client.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Client.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Command]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Command\CurVer]
@="Skype4COM.Command.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Command.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Conference]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Conference\CurVer]
@="Skype4COM.Conference.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Conference.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ConferenceCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ConferenceCollection\CurVer]
@="Skype4COM.ConferenceCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ConferenceCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Conversion]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Conversion\CurVer]
@="Skype4COM.Conversion.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Conversion.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Group]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Group\CurVer]
@="Skype4COM.Group.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Group.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.GroupCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.GroupCollection\CurVer]
@="Skype4COM.GroupCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.GroupCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.IEProtocolHandler]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.IEProtocolHandler\CurVer]
@="Skype4COM.IEProtocolHandler.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.IEProtocolHandler.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Participant]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Participant\CurVer]
@="Skype4COM.Participant.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Participant.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ParticipantCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ParticipantCollection\CurVer]
@="Skype4COM.ParticipantCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.ParticipantCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.PluginEvent]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.PluginEvent\CurVer]
@="Skype4COM.PluginEvent.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.PluginEvent.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.PluginMenuItem]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.PluginMenuItem\CurVer]
@="Skype4COM.PluginMenuItem.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.PluginMenuItem.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Profile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Profile\CurVer]
@="Skype4COM.Profile.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Profile.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Settings]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Settings\CurVer]
@="Skype4COM.Settings.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Settings.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Skype]
@="Skype Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Skype\CurVer]
@="Skype4COM.Skype.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Skype.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Skype.1]
@="Skype Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsChunk]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsChunk\CurVer]
@="Skype4COM.SmsChunk.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsChunk.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsChunkCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsChunkCollection\CurVer]
@="Skype4COM.SmsChunkCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsChunkCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsMessage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsMessage\CurVer]
@="Skype4COM.SmsMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsMessage.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsMessageCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsMessageCollection\CurVer]
@="Skype4COM.SmsMessageCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsMessageCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsTarget]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsTarget\CurVer]
@="Skype4COM.SmsTarget.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsTarget.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsTargetCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsTargetCollection\CurVer]
@="Skype4COM.SmsTargetCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.SmsTargetCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.User]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.User\CurVer]
@="Skype4COM.User.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.User.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.UserCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.UserCollection\CurVer]
@="Skype4COM.UserCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.UserCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Voicemail]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Voicemail\CurVer]
@="Skype4COM.Voicemail.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.Voicemail.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.VoicemailCollection]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.VoicemailCollection\CurVer]
@="Skype4COM.VoicemailCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Skype4COM.VoicemailCollection.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{03282B5D-B38F-469D-849A-09B0A7F4881B}\1.0]
@="Skype4COM 1.0 Type Library."
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{03282B5D-B38F-469D-849A-09B0A7F4881B}\1.0\0\win32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{03282B5D-B38F-469D-849A-09B0A7F4881B}\1.0\HELPDIR]
@="C:\Program Files (x86)\Common Files\Skype\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D46C987D-F68A-4412-872B-4803DBF77B72}\1.0\0\win32]
@="C:\Program Files (x86)\Skype\Updater\Updater.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D46C987D-F68A-4412-872B-4803DBF77B72}\1.0\HELPDIR]
@="C:\Program Files (x86)\Skype\Updater\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{EC66B00F-14FB-4CA5-9A12-574998BAF005}\1.0\0\win32]
@="C:\Program Files (x86)\Skype\Updater\Updater.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{EC66B00F-14FB-4CA5-9A12-574998BAF005}\1.0\HELPDIR]
@="C:\Program Files (x86)\Skype\Updater\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{10DD084E-A5AE-456F-A3BE-DA67EBE6B090}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{10DD084E-A5AE-456F-A3BE-DA67EBE6B090}\ProgID]
@="Skype4COM.ChatMessageCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{10DD084E-A5AE-456F-A3BE-DA67EBE6B090}\VersionIndependentProgID]
@="Skype4COM.ChatMessageCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{15B6FEE5-5FB3-4071-AC1F-7AEDC0E2A6BB}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{15B6FEE5-5FB3-4071-AC1F-7AEDC0E2A6BB}\ProgID]
@="Skype4COM.ChatCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{15B6FEE5-5FB3-4071-AC1F-7AEDC0E2A6BB}\VersionIndependentProgID]
@="Skype4COM.ChatCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1BCA4635-F1FC-44C8-B829-48229AEB32E3}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1BCA4635-F1FC-44C8-B829-48229AEB32E3}\ProgID]
@="Skype4COM.SmsMessageCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1BCA4635-F1FC-44C8-B829-48229AEB32E3}\VersionIndependentProgID]
@="Skype4COM.SmsMessageCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{222C0F35-3D78-4570-9F6D-BAEE289D0304}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{222C0F35-3D78-4570-9F6D-BAEE289D0304}\ProgID]
@="Skype4COM.Group.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{222C0F35-3D78-4570-9F6D-BAEE289D0304}\VersionIndependentProgID]
@="Skype4COM.Group"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{29DCD339-D184-469B-8BFB-199A2CCF014E}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{29DCD339-D184-469B-8BFB-199A2CCF014E}\ProgID]
@="Skype4COM.Application.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{29DCD339-D184-469B-8BFB-199A2CCF014E}\VersionIndependentProgID]
@="Skype4COM.Application"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{2DBCDA9F-1248-400B-A382-A56D71BF7B15}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{2DBCDA9F-1248-400B-A382-A56D71BF7B15}\ProgID]
@="Skype4COM.Command.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{2DBCDA9F-1248-400B-A382-A56D71BF7B15}\VersionIndependentProgID]
@="Skype4COM.Command"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{2EEAB6D0-491E-4962-BBA1-FF1CCA6D4DD0}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{2EEAB6D0-491E-4962-BBA1-FF1CCA6D4DD0}\ProgID]
@="Skype4COM.Conversion.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{2EEAB6D0-491E-4962-BBA1-FF1CCA6D4DD0}\VersionIndependentProgID]
@="Skype4COM.Conversion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3506CDB7-8BC6-40C0-B108-CEA0B9480130}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3506CDB7-8BC6-40C0-B108-CEA0B9480130}\ProgID]
@="Skype4COM.ConferenceCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3506CDB7-8BC6-40C0-B108-CEA0B9480130}\VersionIndependentProgID]
@="Skype4COM.ConferenceCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3D3E7C1B-79A7-4CC7-8925-41FA813E9913}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3D3E7C1B-79A7-4CC7-8925-41FA813E9913}\ProgID]
@="Skype4COM.CallChannelMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3D3E7C1B-79A7-4CC7-8925-41FA813E9913}\VersionIndependentProgID]
@="Skype4COM.CallChannelMessage"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3E01D8E0-A72B-4C9F-99BD-8A6E7B97A48D}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3E01D8E0-A72B-4C9F-99BD-8A6E7B97A48D}\ProgID]
@="Skype4COM.User.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3E01D8E0-A72B-4C9F-99BD-8A6E7B97A48D}\VersionIndependentProgID]
@="Skype4COM.User"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{42FE718B-A148-41D6-885B-01A0AFAE8723}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{42FE718B-A148-41D6-885B-01A0AFAE8723}\ProgID]
@="Skype4COM.CallChannelCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{42FE718B-A148-41D6-885B-01A0AFAE8723}\VersionIndependentProgID]
@="Skype4COM.CallChannelCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{452CCB69-6A95-4370-9E5A-B3EFB06A7651}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{452CCB69-6A95-4370-9E5A-B3EFB06A7651}\ProgID]
@="Skype4COM.Profile.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{452CCB69-6A95-4370-9E5A-B3EFB06A7651}\VersionIndependentProgID]
@="Skype4COM.Profile"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4B42750B-57A1-47E7-B340-8EAE0E3126A4}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4B42750B-57A1-47E7-B340-8EAE0E3126A4}\ProgID]
@="Skype4COM.ApplicationStreamCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4B42750B-57A1-47E7-B340-8EAE0E3126A4}\VersionIndependentProgID]
@="Skype4COM.ApplicationStreamCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{52071016-E648-4D3B-B57E-2B46CC993CE0}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{52071016-E648-4D3B-B57E-2B46CC993CE0}\ProgID]
@="Skype4COM.Participant.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{52071016-E648-4D3B-B57E-2B46CC993CE0}\VersionIndependentProgID]
@="Skype4COM.Participant"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{5792FC7D-5E1D-4F1A-BD4F-A7A50F92BC6E}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{5792FC7D-5E1D-4F1A-BD4F-A7A50F92BC6E}\ProgID]
@="Skype4COM.SmsChunk.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{5792FC7D-5E1D-4F1A-BD4F-A7A50F92BC6E}\VersionIndependentProgID]
@="Skype4COM.SmsChunk"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{5E541E71-A474-4EAD-8FCB-24D400D023B7}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{5E541E71-A474-4EAD-8FCB-24D400D023B7}\ProgID]
@="Skype4COM.CallChannelManager.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{5E541E71-A474-4EAD-8FCB-24D400D023B7}\VersionIndependentProgID]
@="Skype4COM.CallChannelManager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{61F8FAF0-82D0-407C-AE97-31441483AE40}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{61F8FAF0-82D0-407C-AE97-31441483AE40}\ProgID]
@="Skype4COM.SmsTarget.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{61F8FAF0-82D0-407C-AE97-31441483AE40}\VersionIndependentProgID]
@="Skype4COM.SmsTarget"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6AC51E9C-7947-4B46-A978-0AD601C4EFC9}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6AC51E9C-7947-4B46-A978-0AD601C4EFC9}\ProgID]
@="Skype4COM.SmsTargetCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6AC51E9C-7947-4B46-A978-0AD601C4EFC9}\VersionIndependentProgID]
@="Skype4COM.SmsTargetCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6FA10A39-4760-4C94-A210-2398848618EC}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6FA10A39-4760-4C94-A210-2398848618EC}\ProgID]
@="Skype4COM.ApplicationStream.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6FA10A39-4760-4C94-A210-2398848618EC}\VersionIndependentProgID]
@="Skype4COM.ApplicationStream"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7ACDC5B4-76A1-4BDF-918D-6962FCABBAD3}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7ACDC5B4-76A1-4BDF-918D-6962FCABBAD3}\ProgID]
@="Skype4COM.Chat.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7ACDC5B4-76A1-4BDF-918D-6962FCABBAD3}\VersionIndependentProgID]
@="Skype4COM.Chat"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7B030003-037D-490D-9169-A4F391B3D831}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7B030003-037D-490D-9169-A4F391B3D831}\ProgID]
@="Skype4COM.UserCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7B030003-037D-490D-9169-A4F391B3D831}\VersionIndependentProgID]
@="Skype4COM.UserCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}]
@="Skype Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\InprocServer32\DefaultIcon]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL,207"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\ProgID]
@="Skype4COM.Skype.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\ToolboxBitmap32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL, 207"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\VersionIndependentProgID]
@="Skype4COM.Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{89DD2F9D-C325-48BF-A615-96BD039BBC83}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{89DD2F9D-C325-48BF-A615-96BD039BBC83}\ProgID]
@="Skype4COM.CallChannel.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{89DD2F9D-C325-48BF-A615-96BD039BBC83}\VersionIndependentProgID]
@="Skype4COM.CallChannel"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9017071A-2E34-4C3A-9BBB-688CBB5A9FF2}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9017071A-2E34-4C3A-9BBB-688CBB5A9FF2}\ProgID]
@="Skype4COM.ChatMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9017071A-2E34-4C3A-9BBB-688CBB5A9FF2}\VersionIndependentProgID]
@="Skype4COM.ChatMessage"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{95028000-A6DE-493B-B253-9E18B19610A2}]
"LocalizedString"="@C:\Program Files (x86)\Skype\Updater\Updater.dll,-100"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{95028000-A6DE-493B-B253-9E18B19610A2}\Elevation]
"IconReference"="@C:\Program Files (x86)\Skype\Updater\Updater.exe,-203"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{95028000-A6DE-493B-B253-9E18B19610A2}\InprocServer32]
@="C:\Program Files (x86)\Skype\Updater\Updater.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9D073235-D787-497D-8D1F-929559F1C621}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9D073235-D787-497D-8D1F-929559F1C621}\ProgID]
@="Skype4COM.PluginEvent.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9D073235-D787-497D-8D1F-929559F1C621}\VersionIndependentProgID]
@="Skype4COM.PluginEvent"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A7DF2611-D752-4C9F-A90A-B56F18485EE9}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A7DF2611-D752-4C9F-A90A-B56F18485EE9}\ProgID]
@="Skype4COM.VoicemailCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A7DF2611-D752-4C9F-A90A-B56F18485EE9}\VersionIndependentProgID]
@="Skype4COM.VoicemailCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A8109DB9-88E0-42FE-98EA-8A12BE5394C6}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A8109DB9-88E0-42FE-98EA-8A12BE5394C6}\ProgID]
@="Skype4COM.GroupCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A8109DB9-88E0-42FE-98EA-8A12BE5394C6}\VersionIndependentProgID]
@="Skype4COM.GroupCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A983C9EC-D73E-4364-B89B-ACD1E405674F}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A983C9EC-D73E-4364-B89B-ACD1E405674F}\ProgID]
@="Skype4COM.Conference.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A983C9EC-D73E-4364-B89B-ACD1E405674F}\VersionIndependentProgID]
@="Skype4COM.Conference"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B09AC3FF-0D5D-41C6-A34E-7C3F58A3127C}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B09AC3FF-0D5D-41C6-A34E-7C3F58A3127C}\ProgID]
@="Skype4COM.Client.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B09AC3FF-0D5D-41C6-A34E-7C3F58A3127C}\VersionIndependentProgID]
@="Skype4COM.Client"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B0FE88F0-C92F-46D6-878F-31599BEA944C}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B0FE88F0-C92F-46D6-878F-31599BEA944C}\ProgID]
@="Skype4COM.Settings.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B0FE88F0-C92F-46D6-878F-31599BEA944C}\VersionIndependentProgID]
@="Skype4COM.Settings"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CC461FC3-C9BE-41FB-8E47-E0115CBC01CC}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CC461FC3-C9BE-41FB-8E47-E0115CBC01CC}\ProgID]
@="Skype4COM.SmsChunkCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CC461FC3-C9BE-41FB-8E47-E0115CBC01CC}\VersionIndependentProgID]
@="Skype4COM.SmsChunkCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CC957078-B838-47C4-A7CF-626E7A82FC58}]
@="SkypeUpdater Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CC957078-B838-47C4-A7CF-626E7A82FC58}\LocalServer32]
@=""C:\Program Files (x86)\Skype\Updater\Updater.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D1C8C854-223A-4716-B670-C21918E8207E}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D1C8C854-223A-4716-B670-C21918E8207E}\ProgID]
@="Skype4COM.PluginMenuItem.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D1C8C854-223A-4716-B670-C21918E8207E}\VersionIndependentProgID]
@="Skype4COM.PluginMenuItem"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D26B1D42-9C42-4E7B-BB73-86384C4B4345}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D26B1D42-9C42-4E7B-BB73-86384C4B4345}\ProgID]
@="Skype4COM.Call.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D26B1D42-9C42-4E7B-BB73-86384C4B4345}\VersionIndependentProgID]
@="Skype4COM.Call"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DCA74850-096D-40CD-BB81-17034E51ACB6}\LocalServer32]
@="C:\Program Files (x86)\Skype\Phone\Skype.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DCA74850-096D-40CD-BB81-17034E51ACB6}\ProgID]
@="skype.TREGraphicObject"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DD0E8ED5-1494-4B87-A35C-39F6ED4B1153}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DD0E8ED5-1494-4B87-A35C-39F6ED4B1153}\ProgID]
@="Skype4COM.Voicemail.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DD0E8ED5-1494-4B87-A35C-39F6ED4B1153}\VersionIndependentProgID]
@="Skype4COM.Voicemail"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1BC9147-C3E3-4E8A-8304-5E6B5C1C0774}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1BC9147-C3E3-4E8A-8304-5E6B5C1C0774}\ProgID]
@="Skype4COM.ParticipantCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1BC9147-C3E3-4E8A-8304-5E6B5C1C0774}\VersionIndependentProgID]
@="Skype4COM.ParticipantCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F278D870-7AF7-4957-96EE-E6AC72D0B109}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F278D870-7AF7-4957-96EE-E6AC72D0B109}\ProgID]
@="Skype4COM.SmsMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F278D870-7AF7-4957-96EE-E6AC72D0B109}\VersionIndependentProgID]
@="Skype4COM.SmsMessage"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F3188CF3-EF22-4C5B-92CB-605964761C3B}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F3188CF3-EF22-4C5B-92CB-605964761C3B}\ProgID]
@="Skype4COM.CallCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F3188CF3-EF22-4C5B-92CB-605964761C3B}\VersionIndependentProgID]
@="Skype4COM.CallCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\ProgID]
@="Skype4COM.IEProtocolHandler.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\VersionIndependentProgID]
@="Skype4COM.IEProtocolHandler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9B2CC030-1774-4348-AE85-6B58B4960417}]
@="_ISkypeUpdaterEvents"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{AAC39BBD-D6BD-4532-95C4-960FD148F568}]
@="ISkypeUpdater"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B1878BFE-53D3-402E-8C86-190B19AF70D5}]
@="ISkype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F4F90CDD-C620-4118-945E-CAA1BBEBA435}]
@="_ISkypeEvents"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{27E6D007-EE3B-4FF7-8AE8-28EF0739124C}]
"LocalService"="SkypeUpdate"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{03282B5D-B38F-469D-849A-09B0A7F4881B}\1.0]
@="Skype4COM 1.0 Type Library."
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{03282B5D-B38F-469D-849A-09B0A7F4881B}\1.0\0\win32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{03282B5D-B38F-469D-849A-09B0A7F4881B}\1.0\HELPDIR]
@="C:\Program Files (x86)\Common Files\Skype\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D46C987D-F68A-4412-872B-4803DBF77B72}\1.0\0\win32]
@="C:\Program Files (x86)\Skype\Updater\Updater.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D46C987D-F68A-4412-872B-4803DBF77B72}\1.0\HELPDIR]
@="C:\Program Files (x86)\Skype\Updater\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{EC66B00F-14FB-4CA5-9A12-574998BAF005}\1.0\0\win32]
@="C:\Program Files (x86)\Skype\Updater\Updater.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{EC66B00F-14FB-4CA5-9A12-574998BAF005}\1.0\HELPDIR]
@="C:\Program Files (x86)\Skype\Updater\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype]
@="Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\Capabilities]
"ApplicationName"="Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\Capabilities]
"ApplicationDescription"="Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\Capabilities]
"ApplicationIcon"="C:\Program Files (x86)\Skype\Phone\Skype.exe,0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\Capabilities\URLAssociations]
"callto"="skype.callto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\Capabilities\URLAssociations]
"tel"="skype.callto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\Protocols\callto\DefaultIcon]
@="C:\Program Files (x86)\Skype\Phone\Skype.exe,0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\Protocols\callto\shell\open\command]
@=""C:\PROGRA~2\Skype\Phone\Skype.exe" "/callto:%l""
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Internet Call\Skype\shell\open\command]
@=""C:\PROGRA~2\Skype\Phone\Skype.exe" "/callto:%l""
[HKEY_LOCAL_MACHINE\SOFTWARE\IM Providers\Skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\IM Providers\Skype]
"FriendlyName"="Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\IM Providers\Skype]
"ProcessName"="skype.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{22BF413B-C6D2-4D91-82A9-A0F997BA588C}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77BF5300-1474-4EC7-9980-D32B190E9B07}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Version Vector]
"Skype"="6.16.105"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\Skype.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"item"="Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"command"=""C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Skype\Phone\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Skype\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Common Files\Skype\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Skype\Updater\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BC30B513138E9E4998615A89206C295]
"50E7C3A773EE6D74991EE20BA5D33A7F"="C:\Program Files (x86)\Skype\desktop.ini"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2FAE55CDE153B8D4EB84C138AC7728F0]
"50E7C3A773EE6D74991EE20BA5D33A7F"="C:\Program Files (x86)\Skype\Phone\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\467EDE95E8D357D4ABB633781567A52F]
"50E7C3A773EE6D74991EE20BA5D33A7F"="22:\Software\IM Providers\Skype\FriendlyName"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4798A54961FC00B4A87CD89B5D651E30]
"00000000000000000000000000000000"="C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Game List.swf"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4DF16F2F59BAEC1449F8CF7476CE327A]
"50E7C3A773EE6D74991EE20BA5D33A7F"="C:\Program Files (x86)\Skype\Updater\Updater.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6444FF75E0954984EA935D9582BDED10]
"50E7C3A773EE6D74991EE20BA5D33A7F"="C:\Program Files (x86)\Skype\Phone\Skype.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8A465E5F79715FD48ABDBCF50B10F81B]
"00000000000000000000000000000000"="C:\ProgramData\Skype\Plugins\Local Cache\~Please do not delete files from this folder"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2F9EE38B06FA324BA27AC7AB7E81876]
"50E7C3A773EE6D74991EE20BA5D33A7F"="C?\Program Files (x86)\Common Files\Skype\Skype4COM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C245BC6AB0D0E544EB25C7502C6D388F]
"00000000000000000000000000000000"="C:\ProgramData\Skype\Plugins\Local Cache\Categories\Business.png"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D98C3B5624DD2B94D96FC360B9F5FA96]
"50E7C3A773EE6D74991EE20BA5D33A7F"="01:\Software\Skype\Phone\UI\General\Language"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DAF4C00772E1ED448926118C256717A7]
"00000000000000000000000000000000"="C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\~Please do not delete files from this folder"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\50E7C3A773EE6D74991EE20BA5D33A7F\InstallProperties]
"HelpLink"="http://ui.skype.com/....0.105/en/help"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\50E7C3A773EE6D74991EE20BA5D33A7F\InstallProperties]
"InstallLocation"="C:\Program Files (x86)\Skype\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\50E7C3A773EE6D74991EE20BA5D33A7F\InstallProperties]
"InstallSource"="C:\ProgramData\Skype\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\50E7C3A773EE6D74991EE20BA5D33A7F\InstallProperties]
"Publisher"="Skype Technologies S.A."
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\50E7C3A773EE6D74991EE20BA5D33A7F\InstallProperties]
"URLInfoAbout"="http://www.skype.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\50E7C3A773EE6D74991EE20BA5D33A7F\InstallProperties]
"URLUpdateInfo"="http://ui.skype.com/.../latestversion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\50E7C3A773EE6D74991EE20BA5D33A7F\InstallProperties]
"DisplayName"="Skype™ 6.16"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1707699250-2443634357-3253237491-1001\Components\40F47E38F79CDDF48BCB756C88F01637]
"F9A14FD831EF8E340A30F5B9550A11EE"="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1707699250-2443634357-3253237491-1001\Components\83A3480A8D4D3944BCB1B1CB0240A796]
"F9A14FD831EF8E340A30F5B9550A11EE"="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\third-party_attributions.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1707699250-2443634357-3253237491-1001\Products\F9A14FD831EF8E340A30F5B9550A11EE\InstallProperties]
"Publisher"="Skype Limited"
[HKEY_LOCAL_MACHINE\SOFTWARE\RegisteredApplications]
"Skype"="SOFTWARE\Clients\Internet Call\Skype\Capabilities"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\IM Providers\Skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\IM Providers\Skype]
"FriendlyName"="Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\IM Providers\Skype]
"ProcessName"="skype.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{22BF413B-C6D2-4D91-82A9-A0F997BA588C}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{77BF5300-1474-4EC7-9980-D32B190E9B07}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
"DllName"="SkypeIEPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1024F1BE-76DC-40d5-AB98-664A4185E5FA}]
"AppPath"="C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Version Vector]
"Skype"="6.16.105"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\SkypeSetupFull(6_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\SkypeSetupFull(6_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\SkypeSetupFull_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\SkypeSetupFull_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\SkypeSetup_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\SkypeSetup_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\Skype_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\Skype_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"DisplayIcon"="C:\Program Files (x86)\Skype\Phone\Skype.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"HelpLink"="http://ui.skype.com/....0.105/en/help"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"InstallLocation"="C:\Program Files (x86)\Skype\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"InstallSource"="C:\ProgramData\Skype\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"Publisher"="Skype Technologies S.A."
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"URLInfoAbout"="http://www.skype.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"URLUpdateInfo"="http://ui.skype.com/.../latestversion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
"DisplayName"="Skype™ 6.16"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}]
"Publisher"="Skype Limited"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Skype]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Skype\Phone]
"SkypePath"="C:\Program Files (x86)\Skype\Phone\Skype.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Skype\Phone]
"SkypeFolder"="C:\Program Files (x86)\Skype\Phone\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Skype\Phone\UI\General]
"SkypeSetup"="SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{10DD084E-A5AE-456F-A3BE-DA67EBE6B090}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{10DD084E-A5AE-456F-A3BE-DA67EBE6B090}\ProgID]
@="Skype4COM.ChatMessageCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{10DD084E-A5AE-456F-A3BE-DA67EBE6B090}\VersionIndependentProgID]
@="Skype4COM.ChatMessageCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{15B6FEE5-5FB3-4071-AC1F-7AEDC0E2A6BB}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{15B6FEE5-5FB3-4071-AC1F-7AEDC0E2A6BB}\ProgID]
@="Skype4COM.ChatCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{15B6FEE5-5FB3-4071-AC1F-7AEDC0E2A6BB}\VersionIndependentProgID]
@="Skype4COM.ChatCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{1BCA4635-F1FC-44C8-B829-48229AEB32E3}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{1BCA4635-F1FC-44C8-B829-48229AEB32E3}\ProgID]
@="Skype4COM.SmsMessageCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{1BCA4635-F1FC-44C8-B829-48229AEB32E3}\VersionIndependentProgID]
@="Skype4COM.SmsMessageCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{222C0F35-3D78-4570-9F6D-BAEE289D0304}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{222C0F35-3D78-4570-9F6D-BAEE289D0304}\ProgID]
@="Skype4COM.Group.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{222C0F35-3D78-4570-9F6D-BAEE289D0304}\VersionIndependentProgID]
@="Skype4COM.Group"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{29DCD339-D184-469B-8BFB-199A2CCF014E}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{29DCD339-D184-469B-8BFB-199A2CCF014E}\ProgID]
@="Skype4COM.Application.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{29DCD339-D184-469B-8BFB-199A2CCF014E}\VersionIndependentProgID]
@="Skype4COM.Application"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{2DBCDA9F-1248-400B-A382-A56D71BF7B15}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{2DBCDA9F-1248-400B-A382-A56D71BF7B15}\ProgID]
@="Skype4COM.Command.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{2DBCDA9F-1248-400B-A382-A56D71BF7B15}\VersionIndependentProgID]
@="Skype4COM.Command"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{2EEAB6D0-491E-4962-BBA1-FF1CCA6D4DD0}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{2EEAB6D0-491E-4962-BBA1-FF1CCA6D4DD0}\ProgID]
@="Skype4COM.Conversion.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{2EEAB6D0-491E-4962-BBA1-FF1CCA6D4DD0}\VersionIndependentProgID]
@="Skype4COM.Conversion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3506CDB7-8BC6-40C0-B108-CEA0B9480130}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3506CDB7-8BC6-40C0-B108-CEA0B9480130}\ProgID]
@="Skype4COM.ConferenceCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3506CDB7-8BC6-40C0-B108-CEA0B9480130}\VersionIndependentProgID]
@="Skype4COM.ConferenceCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3D3E7C1B-79A7-4CC7-8925-41FA813E9913}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3D3E7C1B-79A7-4CC7-8925-41FA813E9913}\ProgID]
@="Skype4COM.CallChannelMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3D3E7C1B-79A7-4CC7-8925-41FA813E9913}\VersionIndependentProgID]
@="Skype4COM.CallChannelMessage"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3E01D8E0-A72B-4C9F-99BD-8A6E7B97A48D}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3E01D8E0-A72B-4C9F-99BD-8A6E7B97A48D}\ProgID]
@="Skype4COM.User.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3E01D8E0-A72B-4C9F-99BD-8A6E7B97A48D}\VersionIndependentProgID]
@="Skype4COM.User"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{42FE718B-A148-41D6-885B-01A0AFAE8723}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{42FE718B-A148-41D6-885B-01A0AFAE8723}\ProgID]
@="Skype4COM.CallChannelCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{42FE718B-A148-41D6-885B-01A0AFAE8723}\VersionIndependentProgID]
@="Skype4COM.CallChannelCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{452CCB69-6A95-4370-9E5A-B3EFB06A7651}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{452CCB69-6A95-4370-9E5A-B3EFB06A7651}\ProgID]
@="Skype4COM.Profile.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{452CCB69-6A95-4370-9E5A-B3EFB06A7651}\VersionIndependentProgID]
@="Skype4COM.Profile"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{4B42750B-57A1-47E7-B340-8EAE0E3126A4}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{4B42750B-57A1-47E7-B340-8EAE0E3126A4}\ProgID]
@="Skype4COM.ApplicationStreamCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{4B42750B-57A1-47E7-B340-8EAE0E3126A4}\VersionIndependentProgID]
@="Skype4COM.ApplicationStreamCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{52071016-E648-4D3B-B57E-2B46CC993CE0}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{52071016-E648-4D3B-B57E-2B46CC993CE0}\ProgID]
@="Skype4COM.Participant.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{52071016-E648-4D3B-B57E-2B46CC993CE0}\VersionIndependentProgID]
@="Skype4COM.Participant"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{5792FC7D-5E1D-4F1A-BD4F-A7A50F92BC6E}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{5792FC7D-5E1D-4F1A-BD4F-A7A50F92BC6E}\ProgID]
@="Skype4COM.SmsChunk.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{5792FC7D-5E1D-4F1A-BD4F-A7A50F92BC6E}\VersionIndependentProgID]
@="Skype4COM.SmsChunk"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{5E541E71-A474-4EAD-8FCB-24D400D023B7}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{5E541E71-A474-4EAD-8FCB-24D400D023B7}\ProgID]
@="Skype4COM.CallChannelManager.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{5E541E71-A474-4EAD-8FCB-24D400D023B7}\VersionIndependentProgID]
@="Skype4COM.CallChannelManager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{61F8FAF0-82D0-407C-AE97-31441483AE40}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{61F8FAF0-82D0-407C-AE97-31441483AE40}\ProgID]
@="Skype4COM.SmsTarget.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{61F8FAF0-82D0-407C-AE97-31441483AE40}\VersionIndependentProgID]
@="Skype4COM.SmsTarget"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6AC51E9C-7947-4B46-A978-0AD601C4EFC9}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6AC51E9C-7947-4B46-A978-0AD601C4EFC9}\ProgID]
@="Skype4COM.SmsTargetCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6AC51E9C-7947-4B46-A978-0AD601C4EFC9}\VersionIndependentProgID]
@="Skype4COM.SmsTargetCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6FA10A39-4760-4C94-A210-2398848618EC}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6FA10A39-4760-4C94-A210-2398848618EC}\ProgID]
@="Skype4COM.ApplicationStream.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6FA10A39-4760-4C94-A210-2398848618EC}\VersionIndependentProgID]
@="Skype4COM.ApplicationStream"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{7ACDC5B4-76A1-4BDF-918D-6962FCABBAD3}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{7ACDC5B4-76A1-4BDF-918D-6962FCABBAD3}\ProgID]
@="Skype4COM.Chat.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{7ACDC5B4-76A1-4BDF-918D-6962FCABBAD3}\VersionIndependentProgID]
@="Skype4COM.Chat"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{7B030003-037D-490D-9169-A4F391B3D831}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{7B030003-037D-490D-9169-A4F391B3D831}\ProgID]
@="Skype4COM.UserCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{7B030003-037D-490D-9169-A4F391B3D831}\VersionIndependentProgID]
@="Skype4COM.UserCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}]
@="Skype Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\InprocServer32\DefaultIcon]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL,207"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\ProgID]
@="Skype4COM.Skype.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\ToolboxBitmap32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL, 207"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\VersionIndependentProgID]
@="Skype4COM.Skype"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{89DD2F9D-C325-48BF-A615-96BD039BBC83}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{89DD2F9D-C325-48BF-A615-96BD039BBC83}\ProgID]
@="Skype4COM.CallChannel.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{89DD2F9D-C325-48BF-A615-96BD039BBC83}\VersionIndependentProgID]
@="Skype4COM.CallChannel"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9017071A-2E34-4C3A-9BBB-688CBB5A9FF2}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9017071A-2E34-4C3A-9BBB-688CBB5A9FF2}\ProgID]
@="Skype4COM.ChatMessage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9017071A-2E34-4C3A-9BBB-688CBB5A9FF2}\VersionIndependentProgID]
@="Skype4COM.ChatMessage"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{95028000-A6DE-493B-B253-9E18B19610A2}]
"LocalizedString"="@C:\Program Files (x86)\Skype\Updater\Updater.dll,-100"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{95028000-A6DE-493B-B253-9E18B19610A2}\Elevation]
"IconReference"="@C:\Program Files (x86)\Skype\Updater\Updater.exe,-203"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{95028000-A6DE-493B-B253-9E18B19610A2}\InprocServer32]
@="C:\Program Files (x86)\Skype\Updater\Updater.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9D073235-D787-497D-8D1F-929559F1C621}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9D073235-D787-497D-8D1F-929559F1C621}\ProgID]
@="Skype4COM.PluginEvent.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9D073235-D787-497D-8D1F-929559F1C621}\VersionIndependentProgID]
@="Skype4COM.PluginEvent"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A7DF2611-D752-4C9F-A90A-B56F18485EE9}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A7DF2611-D752-4C9F-A90A-B56F18485EE9}\ProgID]
@="Skype4COM.VoicemailCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A7DF2611-D752-4C9F-A90A-B56F18485EE9}\VersionIndependentProgID]
@="Skype4COM.VoicemailCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A8109DB9-88E0-42FE-98EA-8A12BE5394C6}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A8109DB9-88E0-42FE-98EA-8A12BE5394C6}\ProgID]
@="Skype4COM.GroupCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A8109DB9-88E0-42FE-98EA-8A12BE5394C6}\VersionIndependentProgID]
@="Skype4COM.GroupCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A983C9EC-D73E-4364-B89B-ACD1E405674F}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A983C9EC-D73E-4364-B89B-ACD1E405674F}\ProgID]
@="Skype4COM.Conference.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{A983C9EC-D73E-4364-B89B-ACD1E405674F}\VersionIndependentProgID]
@="Skype4COM.Conference"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B09AC3FF-0D5D-41C6-A34E-7C3F58A3127C}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B09AC3FF-0D5D-41C6-A34E-7C3F58A3127C}\ProgID]
@="Skype4COM.Client.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B09AC3FF-0D5D-41C6-A34E-7C3F58A3127C}\VersionIndependentProgID]
@="Skype4COM.Client"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B0FE88F0-C92F-46D6-878F-31599BEA944C}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B0FE88F0-C92F-46D6-878F-31599BEA944C}\ProgID]
@="Skype4COM.Settings.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B0FE88F0-C92F-46D6-878F-31599BEA944C}\VersionIndependentProgID]
@="Skype4COM.Settings"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{CC461FC3-C9BE-41FB-8E47-E0115CBC01CC}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{CC461FC3-C9BE-41FB-8E47-E0115CBC01CC}\ProgID]
@="Skype4COM.SmsChunkCollection.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{CC461FC3-C9BE-41FB-8E47-E0115CBC01CC}\VersionIndependentProgID]
@="Skype4COM.SmsChunkCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{CC957078-B838-47C4-A7CF-626E7A82FC58}]
@="SkypeUpdater Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{CC957078-B838-47C4-A7CF-626E7A82FC58}\LocalServer32]
@=""C:\Program Files (x86)\Skype\Updater\Updater.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{D1C8C854-223A-4716-B670-C21918E8207E}\InprocServer32]
@="C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\


#6 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 25 June 2014 - 09:49 PM

OK, I fixed Skype anyway.  Though the Farbar shows up with a few other things that are more concerning perhaps, I'll post that log in a moment.  To fix Skype, I did this:

 

Go to Windows Start -> All Programs -> Accessories -> Right click on Command Prompt, select 'Run as administrator'.

 

In the Command Prompt type:  cd c:\windows\syswow64 and press Enter.

 

Next type this and then press Enter:

 

regsvr32  jscript.dll

 

Next type this and press Enter:

 

regsvr32  jscript9.dll

 

After each Enter you should receive a message saying that DllRegisterServer in XXX.dll succeeded.

 

Reboot your computer.

 

Make now the test showing if your Internet Explorer can execute JavaScript.

 

Open in your Internet Explorer (no other browser but only IE 32-bit version) this page:

 

http://www.mistered....est/alert.shtml

 

Click on the “Simply Click This Button” button and watch the response.

 

Verifying all that worked still, on the rolled back Internet Explorer 10.  This allows us to use the old format workaround with the "/legacylogin" added to the properties window that directs the PC on what to run.  Thanks, and will update with Farbar log in a moment.



#7 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 25 June 2014 - 09:49 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-06-2014
Ran by Kim-Yon (administrator) on KIM-YON-PC on 25-06-2014 14:47:43
Running from C:\Users\Kim-Yon\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Microsoft Corporation) C:\WINDOWS\System32\wisptis.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\wisptis.exe
(Intel Corporation) C:\WINDOWS\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Wacom Technology, Corp.) C:\WINDOWS\System32\Wacom_Tablet.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Wacom Technology, Corp.) C:\WINDOWS\System32\WTablet\Wacom_TabletUser.exe
(Wacom Technology, Corp.) C:\WINDOWS\System32\Wacom_Tablet.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3179288 2010-01-06] (Dell Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-06-17] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2010-03-17] (Synaptics Incorporated)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5712896 2010-02-02] (Dell Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-06-08] (Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-23] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-20] (Adobe Systems Incorporated)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-03-20] (Microsoft Corporation)
HKU\S-1-5-21-1707699250-2443634357-3253237491-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1707699250-2443634357-3253237491-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-1707699250-2443634357-3253237491-1001\...\MountPoints2: {5e4113c4-d78d-11e1-889f-e01ff51027a1} - "E:\WD SmartWare.exe" autoplay=true
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x8A10FFF6E38FCF01
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
BHO-x32: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
Toolbar: HKLM-x32 - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zon...kr.cab56986.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} -  No File
Handler-x32: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1

FireFox:
========
FF ProfilePath: C:\Users\Kim-Yon\AppData\Roaming\Mozilla\Firefox\Profiles\eohqjuoo.default
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.3 - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Extension: NoScript - C:\Users\Kim-Yon\AppData\Roaming\Mozilla\Firefox\Profiles\eohqjuoo.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2011-04-01]
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: Adobe Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2011-03-30]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-23]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-23] (AVAST Software)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 DAZContentManagementService; C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe [22528 2011-05-05] () [File not signed]
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TabletServiceWacom; C:\Windows\system32\Wacom_Tablet.exe [6159656 2010-02-01] (Wacom Technology, Corp.)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5088256 2010-02-02] (Dell Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-23] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-23] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-23] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-23] ()
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46280 2013-02-21] (AnchorFree Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-25] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-02-21] (Anchorfree Inc.)

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 79059559E89D06E8B80CE2944BE20228
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\system32\drivers\aswHwid.sys 340B0467E98A8C92697D73034DB4BCB7
C:\Windows\system32\drivers\aswMonFlt.sys ED5B09937D559FFA53FC988D20031E98
C:\Windows\system32\drivers\aswRdr2.sys 33C77DCB0AEC76E26BD6352A1A5281BB
C:\Windows\System32\Drivers\aswRvrt.sys BF5B9E9E97CED45208E498D9FA73688F
C:\Windows\system32\drivers\aswSnx.sys F88CE00A7736C349ED1414D7ECDC9BED
C:\Windows\system32\drivers\aswSP.sys 3AE912B08E2A1ABB2B63F3C56BED95C2
C:\Windows\system32\drivers\aswStm.sys A7115ED31675BB823CFA9FE571C25676
C:\Windows\System32\Drivers\aswVmm.sys 47CBD3F64E412FFAFD93404580A3C7B9
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\drivers\BCM42RLY.sys AC4E2D84DE54CD3A013AEFF0CC56095C
C:\Windows\System32\DRIVERS\bcmwl664.sys 8B5D16D20774FC3727F44E161BE2C0AC
C:\Windows\System32\DRIVERS\bcmvwl64.sys D224B2E6BB543F1D8F1177D57FEC2950
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\BthEnum.sys CF98190A94F62E405C8CB255018B2315
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bthpan.sys 02DD601B708DD0667E1331FA8518E9FF
C:\Windows\System32\Drivers\BTHport.sys 738D0E9272F59EB7A1449C3EC118E6C4
C:\Windows\System32\Drivers\BTHUSB.sys F188B7394D81010767B6DF3178519A37
C:\Windows\System32\drivers\btusbflt.sys D3466F77C2C49C6E393BA5FBA963A33E
C:\Windows\System32\drivers\btwaudio.sys AF838D8029AE7C27470862D63FA54D24
C:\Windows\System32\DRIVERS\btwavdt.sys 5C849BD7C78791C5CEE9F4651D7FE38D
C:\Windows\System32\DRIVERS\btwl2cap.sys 6149301DC3F81D6F9667A3FBAC410975
C:\Windows\System32\DRIVERS\btwrchid.sys 3E1991AFA851A36DC978B0A1B0535C8B
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\System32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CtClsFlt.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52
C:\Windows\system32\DRIVERS\evbda.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\system32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HECIx64.sys B6AC71AAA2B10848F57FC49D55A651AF
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hssdrv6.sys CA53DA4C3EAD4C86918E7F80CD281ABB
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStor.sys 2064090C9FAAD92C090D77E50E735B2E
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\System32\DRIVERS\igdkmd64.sys 677AA5991026A65ADA128C4B59CF2BAD
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Impcd.sys DD587A55390ED2295BCE6D36AD567DA9
C:\Windows\System32\DRIVERS\IntcDAud.sys C6C1F19205DA83C801BE7C25F4E2EE07
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\system32\drivers\kbdclass.sys ==> MD5 is legit
C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 353009DEDF918B2A51414F330CF72DEC
C:\Windows\System32\Drivers\ksecpkg.sys 1C2D8E18AA8FD50CD04C15CC27F7F5AB
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mbam.sys F92B0E478C0FAA6D6661E6E977247E60
C:\Windows\system32\drivers\MBAMSwissArmy.sys 8A50D5304E6AE48664CF5838EC32F647
C:\Windows\system32\drivers\mwac.sys 15E8ABC06843672955CE26A009533BAD
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404
C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC
C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163
C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C
C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys 1A29A59A4C5BA6F8C85062A613B7E2B2
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\System32\Drivers\PxHlpa64.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rfcomm.sys 3DD798846E2C28102B922C56E71B7932
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RtsUStor.sys 30F463768D5143BFD7B2DF822B53CF4D
C:\Windows\System32\DRIVERS\Rt64win7.sys FD978B2BF8A9B2390DCBEF435E9C1F9F
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Sftfslh.sys 2046AA7491DE7EFA4D70E615D9BC9D09
C:\Windows\System32\DRIVERS\Sftplaylh.sys 0E0446BC4D51BE4263ACB7E33491191C
C:\Windows\System32\DRIVERS\Sftredirlh.sys C5FB982CD266E604ED3142102C26D62C
C:\Windows\System32\DRIVERS\Sftvollh.sys 2575511AF67AA1FA068CCC4918E2C2A3
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B
C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\stwrt64.sys 4304B75094E106FB5423A290C95841E5
C:\Windows\System32\DRIVERS\serscan.sys DECACB6921DED1A38642642685D77DAC
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\SynTP.sys 8A3FBCB3D6D4710730D27DA4392A4863
C:\Windows\System32\DRIVERS\taphss6.sys FA08663E58C3B856CD9A83F3279337FE
C:\Windows\System32\drivers\tcpip.sys 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E
C:\Windows\System32\DRIVERS\tcpip.sys 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbccgp.sys DCA68B0943D6FA415F0C56C92158A83A
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 18A85013A3E0F7E1755365D287443965
C:\Windows\System32\DRIVERS\usbhub.sys 8D1196CFBB223621F2C67D45710F25BA
C:\Windows\system32\drivers\usbohci.sys 765A92D428A8DB88B960DA5A8D6089DC
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys 9661DA76B4531B2DA272ECCE25A8AF24
C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6
C:\Windows\system32\drivers\usbuhci.sys DD253AFC3BC6CBA412342DE60C3647F3
C:\Windows\System32\Drivers\usbvideo.sys 1F775DA4CF1A3A1834207E975A72E9D7
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifimp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wacmoumonitor.sys 37E4600E2CDAD3C1A3613A25B97D457C
C:\Windows\System32\DRIVERS\wacommousefilter.sys E04D43C7D1641E95D35CAE6086C7E350
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wacomvhid.sys EC1CEB237E365330C1FCFC4876AA0AC0
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wdcsam64.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wimfltr.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
C:\Windows\System32\DRIVERS\yk62x64.sys B3EEACF62445E24FBB2CD4B0FB4DB026

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-25 14:47 - 2014-06-25 14:48 - 00032820 _____ () C:\Users\Kim-Yon\Desktop\FRST.txt
2014-06-25 14:47 - 2014-06-25 14:47 - 00000000 ____D () C:\FRST
2014-06-25 14:45 - 2014-06-25 14:47 - 02082816 _____ (Farbar) C:\Users\Kim-Yon\Desktop\FRST64.exe
2014-06-24 17:51 - 2014-06-24 17:51 - 00020204 _____ () C:\Users\Kim-Yon\Desktop\dds.txt
2014-06-24 17:51 - 2014-06-24 17:51 - 00010817 _____ () C:\Users\Kim-Yon\Desktop\attach.txt
2014-06-24 17:46 - 2014-06-24 17:46 - 00688992 ____R (Swearware) C:\Users\Kim-Yon\Desktop\dds.com
2014-06-24 17:02 - 2014-06-24 17:05 - 00149962 _____ () C:\Users\Kim-Yon\Desktop\SystemLook.txt
2014-06-24 17:01 - 2014-06-24 17:01 - 00165376 _____ () C:\Users\Kim-Yon\Desktop\SystemLook_x64.exe
2014-06-24 16:42 - 2014-06-24 16:42 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-06-24 16:42 - 2014-06-24 16:42 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-24 16:42 - 2014-06-24 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-06-24 15:07 - 2014-06-24 15:07 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Kim-Yon\Desktop\SkypeSetup.exe
2014-06-24 15:05 - 2014-06-24 15:05 - 00003094 _____ () C:\Windows\System32\Tasks\{2F6A18C3-51CC-4337-8D2C-24117B30434D}
2014-06-24 13:19 - 2014-06-24 18:17 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\Skype
2014-06-24 12:46 - 2014-06-24 12:46 - 00000000 ____D () C:\Windows\Sun
2014-06-24 12:46 - 2014-06-24 12:46 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\Oracle
2014-06-24 12:46 - 2014-06-24 12:46 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-24 12:45 - 2014-06-24 12:45 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-24 12:45 - 2014-06-24 12:45 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-24 12:45 - 2014-06-24 12:45 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-24 12:45 - 2014-06-24 12:45 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-24 12:45 - 2014-06-24 12:45 - 00000000 ____D () C:\ProgramData\Sun
2014-06-24 12:45 - 2014-06-24 12:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-24 12:44 - 2014-06-24 12:44 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-24 12:22 - 2014-06-24 16:36 - 00000168 _____ () C:\Windows\setupact.log
2014-06-24 12:22 - 2014-06-24 12:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-24 11:50 - 2014-06-24 11:50 - 01279488 _____ () C:\Users\Kim-Yon\Downloads\MicrosoftFixit50356.msi
2014-06-24 11:33 - 2014-06-24 11:34 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-24 11:33 - 2014-06-24 11:33 - 00001981 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-06-24 10:48 - 2014-06-24 11:13 - 00000000 ____D () C:\Users\Kim-Yon\Desktop\Zbrush
2014-06-23 23:53 - 2014-06-23 23:53 - 00002962 _____ () C:\Windows\System32\Tasks\{D2D26861-47C9-47AA-A1C7-EBD46B5F7971}
2014-06-23 23:44 - 2014-06-25 14:46 - 00136809 _____ () C:\Windows\WindowsUpdate.log
2014-06-23 21:14 - 2014-06-23 21:14 - 00854390 _____ () C:\Users\Kim-Yon\Desktop\SecurityCheck.exe
2014-06-23 21:11 - 2014-06-23 21:11 - 01342659 _____ () C:\Users\Kim-Yon\Downloads\adwcleaner_3.213.exe
2014-06-23 20:44 - 2014-06-25 09:08 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-23 20:44 - 2014-06-23 20:44 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-23 20:44 - 2014-06-23 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-23 20:44 - 2014-06-23 20:44 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-23 20:44 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-23 20:44 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-23 20:44 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-23 20:13 - 2014-06-23 20:13 - 00003146 _____ () C:\Windows\System32\Tasks\{2C403D8A-9571-48FE-8FEB-FA8685805ADE}
2014-06-23 19:23 - 2014-06-24 16:38 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\WTablet
2014-06-23 18:50 - 2014-06-23 18:50 - 00003142 _____ () C:\Windows\System32\Tasks\{825F2B3C-601D-42D0-949D-07A238C2F3E6}
2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 __SHD () C:\Users\Kim-Yon\AppData\Local\EmieUserList
2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 __SHD () C:\Users\Kim-Yon\AppData\Local\EmieSiteList
2014-06-23 13:50 - 2014-06-23 13:50 - 00001968 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-23 13:50 - 2014-06-23 13:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-23 13:49 - 2014-06-23 13:49 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403553378922
2014-06-23 13:49 - 2014-06-23 13:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1403553378922
2014-06-23 13:49 - 2014-06-23 13:49 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-23 13:49 - 2014-06-23 13:49 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-23 13:49 - 2014-06-23 13:49 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-23 13:49 - 2014-06-23 12:56 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-23 13:49 - 2014-06-23 12:56 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-23 13:49 - 2014-06-23 12:56 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-23 13:48 - 2014-06-23 13:48 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-23 13:04 - 2014-06-23 13:24 - 94714880 _____ (AVAST Software) C:\Users\Kim-Yon\Downloads\AVAST.exe
2014-06-23 10:24 - 2014-06-23 10:24 - 00000000 __SHD () C:\found.000
2014-06-20 08:36 - 2014-06-20 08:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-11 02:56 - 2014-04-24 19:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 02:56 - 2014-04-24 19:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 02:56 - 2014-04-04 19:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 02:56 - 2014-04-04 19:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 02:56 - 2014-03-26 07:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 02:56 - 2014-03-26 07:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 02:56 - 2014-03-26 07:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 02:56 - 2014-03-26 07:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 02:56 - 2014-03-26 07:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 02:56 - 2014-03-26 07:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 02:56 - 2014-03-26 07:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 02:56 - 2014-03-26 07:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 02:50 - 2014-06-08 02:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-11 02:50 - 2014-06-08 02:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-01 11:38 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-01 11:36 - 2014-06-01 11:36 - 01327971 _____ () C:\Users\Kim-Yon\Desktop\adwcleaner_3.211.exe
2014-05-31 23:30 - 2014-06-11 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-31 04:35 - 2014-03-24 19:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-31 04:35 - 2014-03-24 19:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-31 03:14 - 2014-04-11 19:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-31 03:14 - 2014-04-11 19:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-31 03:14 - 2014-04-11 19:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-31 03:14 - 2014-04-11 19:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-31 03:14 - 2014-04-11 19:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-31 03:14 - 2014-04-11 19:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-31 03:14 - 2014-04-11 19:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-31 03:14 - 2014-04-11 19:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-31 03:14 - 2014-04-11 19:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-31 03:14 - 2014-03-04 02:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-31 03:14 - 2014-03-04 02:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-05-31 03:14 - 2014-03-04 02:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-05-31 03:14 - 2014-03-04 02:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-31 03:14 - 2014-03-04 02:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-31 03:14 - 2014-03-04 02:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-31 03:14 - 2014-03-04 02:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-31 03:14 - 2014-03-04 02:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-31 03:14 - 2014-03-04 02:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-31 03:14 - 2014-03-04 02:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-31 03:14 - 2014-03-04 02:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-31 03:14 - 2014-03-04 02:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-31 03:14 - 2014-03-04 02:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-31 03:14 - 2014-03-04 02:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-05-31 03:14 - 2014-03-04 02:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-05-31 03:14 - 2014-03-04 02:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-31 03:14 - 2014-03-04 02:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-05-31 03:14 - 2014-03-04 02:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-05-31 03:14 - 2014-03-04 01:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-05-31 03:14 - 2014-03-04 01:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-05-31 03:12 - 2014-02-03 19:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-05-31 03:12 - 2014-02-03 19:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-05-31 03:12 - 2014-02-03 19:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-05-31 03:12 - 2014-02-03 19:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-05-31 03:12 - 2014-02-03 19:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-05-31 03:12 - 2014-01-23 19:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-05-30 05:15 - 2014-06-24 13:06 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Local\Skype

==================== One Month Modified Files and Folders =======

2014-06-25 14:48 - 2014-06-25 14:47 - 00032820 _____ () C:\Users\Kim-Yon\Desktop\FRST.txt
2014-06-25 14:47 - 2014-06-25 14:47 - 00000000 ____D () C:\FRST
2014-06-25 14:47 - 2014-06-25 14:45 - 02082816 _____ (Farbar) C:\Users\Kim-Yon\Desktop\FRST64.exe
2014-06-25 14:46 - 2014-06-23 23:44 - 00136809 _____ () C:\Windows\WindowsUpdate.log
2014-06-25 14:33 - 2012-10-30 16:42 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-25 13:57 - 2013-05-29 01:24 - 00000936 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1707699250-2443634357-3253237491-1001UA.job
2014-06-25 13:57 - 2012-07-18 15:02 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-25 09:08 - 2014-06-23 20:44 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-24 21:44 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-24 21:19 - 2013-05-29 01:24 - 00000914 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1707699250-2443634357-3253237491-1001Core.job
2014-06-24 18:17 - 2014-06-24 13:19 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\Skype
2014-06-24 17:51 - 2014-06-24 17:51 - 00020204 _____ () C:\Users\Kim-Yon\Desktop\dds.txt
2014-06-24 17:51 - 2014-06-24 17:51 - 00010817 _____ () C:\Users\Kim-Yon\Desktop\attach.txt
2014-06-24 17:46 - 2014-06-24 17:46 - 00688992 ____R (Swearware) C:\Users\Kim-Yon\Desktop\dds.com
2014-06-24 17:05 - 2014-06-24 17:02 - 00149962 _____ () C:\Users\Kim-Yon\Desktop\SystemLook.txt
2014-06-24 17:01 - 2014-06-24 17:01 - 00165376 _____ () C:\Users\Kim-Yon\Desktop\SystemLook_x64.exe
2014-06-24 16:45 - 2009-07-13 21:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-24 16:45 - 2009-07-13 21:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-24 16:42 - 2014-06-24 16:42 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-06-24 16:42 - 2014-06-24 16:42 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-24 16:42 - 2014-06-24 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-06-24 16:42 - 2011-01-13 10:05 - 00000000 ____D () C:\ProgramData\Skype
2014-06-24 16:38 - 2014-06-23 19:23 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\WTablet
2014-06-24 16:38 - 2011-03-30 19:21 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-06-24 16:38 - 2011-03-30 19:21 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-06-24 16:38 - 2011-01-13 10:06 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-06-24 16:37 - 2009-07-13 22:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-24 16:36 - 2014-06-24 12:22 - 00000168 _____ () C:\Windows\setupact.log
2014-06-24 15:07 - 2014-06-24 15:07 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Kim-Yon\Desktop\SkypeSetup.exe
2014-06-24 15:05 - 2014-06-24 15:05 - 00003094 _____ () C:\Windows\System32\Tasks\{2F6A18C3-51CC-4337-8D2C-24117B30434D}
2014-06-24 14:56 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-06-24 14:33 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\rescache
2014-06-24 13:46 - 2009-04-28 09:27 - 00000000 ____D () C:\Windows\Panther
2014-06-24 13:12 - 2013-04-30 02:38 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\Skype_old
2014-06-24 13:06 - 2014-05-30 05:15 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Local\Skype
2014-06-24 12:46 - 2014-06-24 12:46 - 00000000 ____D () C:\Windows\Sun
2014-06-24 12:46 - 2014-06-24 12:46 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\Oracle
2014-06-24 12:46 - 2014-06-24 12:46 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-24 12:45 - 2014-06-24 12:45 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-24 12:45 - 2014-06-24 12:45 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-24 12:45 - 2014-06-24 12:45 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-24 12:45 - 2014-06-24 12:45 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-24 12:45 - 2014-06-24 12:45 - 00000000 ____D () C:\ProgramData\Sun
2014-06-24 12:45 - 2014-06-24 12:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-24 12:44 - 2014-06-24 12:44 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-24 12:36 - 2011-01-13 09:46 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-24 12:22 - 2014-06-24 12:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-24 11:50 - 2014-06-24 11:50 - 01279488 _____ () C:\Users\Kim-Yon\Downloads\MicrosoftFixit50356.msi
2014-06-24 11:34 - 2014-06-24 11:33 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-24 11:33 - 2014-06-24 11:33 - 00001981 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-06-24 11:33 - 2011-01-13 09:46 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-06-24 11:32 - 2011-03-30 21:57 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Local\Adobe
2014-06-24 11:13 - 2014-06-24 10:48 - 00000000 ____D () C:\Users\Kim-Yon\Desktop\Zbrush
2014-06-24 09:06 - 2014-03-27 20:50 - 00000000 ____D () C:\Users\Kim-Yon\Documents\Expressions 2
2014-06-24 08:30 - 2014-03-27 15:50 - 00000000 ____D () C:\Users\Kim-Yon\Documents\Expressions 1
2014-06-24 07:11 - 2011-04-01 21:13 - 00000132 _____ () C:\Users\Kim-Yon\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-06-23 23:53 - 2014-06-23 23:53 - 00002962 _____ () C:\Windows\System32\Tasks\{D2D26861-47C9-47AA-A1C7-EBD46B5F7971}
2014-06-23 21:15 - 2014-03-03 17:22 - 00000000 ____D () C:\AdwCleaner
2014-06-23 21:14 - 2014-06-23 21:14 - 00854390 _____ () C:\Users\Kim-Yon\Desktop\SecurityCheck.exe
2014-06-23 21:11 - 2014-06-23 21:11 - 01342659 _____ () C:\Users\Kim-Yon\Downloads\adwcleaner_3.213.exe
2014-06-23 21:03 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-06-23 20:44 - 2014-06-23 20:44 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-23 20:44 - 2014-06-23 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-23 20:44 - 2014-06-23 20:44 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-23 20:44 - 2011-03-30 21:21 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-23 20:13 - 2014-06-23 20:13 - 00003146 _____ () C:\Windows\System32\Tasks\{2C403D8A-9571-48FE-8FEB-FA8685805ADE}
2014-06-23 18:50 - 2014-06-23 18:50 - 00003142 _____ () C:\Windows\System32\Tasks\{825F2B3C-601D-42D0-949D-07A238C2F3E6}
2014-06-23 18:33 - 2009-07-13 22:13 - 00783400 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 __SHD () C:\Users\Kim-Yon\AppData\Local\EmieUserList
2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 __SHD () C:\Users\Kim-Yon\AppData\Local\EmieSiteList
2014-06-23 13:50 - 2014-06-23 13:50 - 00001968 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-23 13:50 - 2014-06-23 13:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-23 13:50 - 2014-01-15 04:29 - 00000000 ____D () C:\Users\Kim-Yon\AppData\Roaming\AVAST Software
2014-06-23 13:49 - 2014-06-23 13:49 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403553378922
2014-06-23 13:49 - 2014-06-23 13:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1403553378922
2014-06-23 13:49 - 2014-06-23 13:49 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-23 13:49 - 2014-06-23 13:49 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-23 13:49 - 2014-06-23 13:49 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-23 13:49 - 2014-06-23 13:49 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-23 13:48 - 2014-06-23 13:48 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-23 13:44 - 2011-04-14 01:28 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-23 13:40 - 2011-04-14 01:29 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-06-23 13:24 - 2014-06-23 13:04 - 94714880 _____ (AVAST Software) C:\Users\Kim-Yon\Downloads\AVAST.exe
2014-06-23 12:56 - 2014-06-23 13:49 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-23 12:56 - 2014-06-23 13:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-23 12:56 - 2014-06-23 13:49 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-23 10:51 - 2011-08-11 03:25 - 00000400 _____ () C:\Windows\system32\Wacom_Tablet.dat
2014-06-23 10:30 - 2012-04-26 15:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-23 10:24 - 2014-06-23 10:24 - 00000000 __SHD () C:\found.000
2014-06-20 08:36 - 2014-06-20 08:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-13 06:11 - 2011-05-16 13:29 - 00001456 _____ () C:\Users\Kim-Yon\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-06-11 03:03 - 2013-07-24 03:26 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 03:01 - 2013-04-30 03:51 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 03:00 - 2014-05-31 23:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-08 02:13 - 2014-06-11 02:50 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 02:08 - 2014-06-11 02:50 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-01 11:36 - 2014-06-01 11:36 - 01327971 _____ () C:\Users\Kim-Yon\Desktop\adwcleaner_3.211.exe
2014-05-31 19:17 - 2014-03-31 12:43 - 00000000 ____D () C:\Users\Kim-Yon\Documents\Expressions M2
2014-05-31 12:26 - 2012-10-30 16:42 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-31 12:26 - 2012-07-02 19:17 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-31 12:26 - 2011-08-25 11:16 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

Some content of TEMP:
====================
C:\Users\Kim-Yon\AppData\Local\Temp\Quarantine.exe
C:\Users\Kim-Yon\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=C:
description             Windows Boot Manager
locale                  en-us
inherit                 {globalsettings}
default                 {current}
resumeobject            {6abef735-3411-11de-8ea8-ac010edf8f1e}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-us
inherit                 {bootloadersettings}
recoverysequence        {6abef737-3411-11de-8ea8-ac010edf8f1e}
recoveryenabled         Yes
osdevice     


#8 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 25 June 2014 - 09:50 PM

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-us
inherit                 {bootloadersettings}
recoverysequence        {6abef737-3411-11de-8ea8-ac010edf8f1e}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {6abef735-3411-11de-8ea8-ac010edf8f1e}
nx                      OptIn
bootstatuspolicy        IgnoreShutdownFailures

Windows Boot Loader
-------------------
identifier              {6abef737-3411-11de-8ea8-ac010edf8f1e}
device                  ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{6abef738-3411-11de-8ea8-ac010edf8f1e}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{6abef738-3411-11de-8ea8-ac010edf8f1e}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Resume from Hibernate
---------------------
identifier              {6abef735-3411-11de-8ea8-ac010edf8f1e}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No

Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=C:
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS Settings
------------
identifier              {emssettings}
bootems                 Yes

Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

RAM Defects
-----------
identifier              {badmemory}

Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}

Device options
--------------
identifier              {6abef738-3411-11de-8ea8-ac010edf8f1e}
description             Ramdisk Options
ramdisksdidevice        partition=\Device\HarddiskVolume2
ramdisksdipath          \Recovery\WindowsRE\boot.sdi



LastRegBack: 2014-06-20 17:06

==================== End Of Log ============================



#9 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 25 June 2014 - 09:52 PM

The "Addition" file was showing what concerned me, with the corrupted indexes and whatnot.  Yet well beyond my knowledge of how to work with things.  *will have to see if he can change the title of his original posting*

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2014
Ran by Kim-Yon at 2014-06-25 14:48:22
Running from C:\Users\Kim-Yon\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Community Help (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{288DB08D-0708-4A94-B055-55B99E39EB62}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Anime Studio Pro 9.1 (x86) (HKLM-x32\...\ASP910_is1) (Version: 9.1 - Smith Micro Software, Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Brother MFL-Pro Suite MFC-J4610DW (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 4.01 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Color Efex Pro 3.0 Wacom Edition 6 (HKLM-x32\...\Color Efex Pro 3.0 Wacom Edition 6) (Version: 3.106 - Nik Software, Inc.)
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
Corel Painter Sketch Pad (HKLM-x32\...\_{EAB6F4ED-B18D-4BF5-B18E-3C7921560EC4}) (Version:  - Corel Corporation)
Corel SketchPad - ICA (x32 Version: 1.0 - Corel Corporation) Hidden
Cozi (HKLM-x32\...\{2DA5F129-11AC-4F11-8188-B2F07EAAC20A}) (Version: 1.0.4323.24051 - Cozi Group, Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAZ Content Management Service (HKLM-x32\...\DAZ Content Management Service 4.8.1.7) (Version: 4.8.1.7 - DAZ 3D)
DAZ Studio 4.6 (64bit) (HKLM-x32\...\DAZ Studio 4.6 (64bit) 4.6.0.18) (Version: 4.6.0.18 - DAZ 3D)
Defraggler (HKLM\...\Defraggler) (Version: 2.03 - Piriform)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0011 - Dell, Inc.)
Dell Dock (HKLM-x32\...\Dell Dock) (Version: 2.0 - Stardock Corporation)
Dell Dock (Version: 2.0 - Stardock Corporation) Hidden
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Support Center (Support Software) (HKLM-x32\...\{E3BFEE55-39E2-4BE0-B966-89FE583822C1}) (Version: 2.5.09100 - Dell)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.05 - Creative Technology Ltd)
DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 5.60.48.35 - Dell Inc.)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Genesis Starter Essentials (HKLM-x32\...\Genesis Starter Essentials 1.13) (Version: 1.13 - DAZ 3D)
GoToAssist 8.0.0.514 (HKLM-x32\...\GoToAssist) (Version:  - )
IconHandler 32 bit (x32 Version: 1.0 - Corel Corporation) Hidden
IconHandler 64 bit (Version: 1.0 - Corel Corporation) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6289.0 - IDT)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2202 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation)
IPM (x32 Version: 1.1 - Corel Corporation) Hidden
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Live! Cam Avatar Creator (HKLM-x32\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.3009.1 - Creative Technology Ltd)
LoJack Factory Installer (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 1.0.0 - Absolute Software)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Manga Studio Debut 4.0 (HKLM-x32\...\Manga Studio Debut 4.0) (Version:  - )
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nuance PaperPort 12 (HKLM-x32\...\{88B5FBDC-967D-4B1F-B291-39284AE12201}) (Version: 12.1.0005 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
Painter Sketch Pad (x32 Version: 1.1 - Corel Corporation) Hidden
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.5.0 - Dell Inc.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30109 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.40 - Piriform)
Registration (x32 Version: 01 - Corel Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Roxio Burn (HKLM-x32\...\{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}) (Version: 1.01 - Roxio)
Roxio Burn (x32 Version: 1.01 - Roxio) Hidden
Scansoft PDF Professional (x32 Version:  - ) Hidden
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.0.1 - Synaptics Incorporated)
Wacom Tablet (HKLM-x32\...\Wacom Tablet Driver) (Version:  - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.4 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.3 - Wacom Technology Corp.)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.1100 - Broadcom Corporation)
Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth  (03/24/2010 6.3.0.2501) (HKLM\...\AF09E130E2FD4D1BEFD1B9132AE624BAE0364719) (Version: 03/24/2010 6.3.0.2501 - Broadcom Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

02-06-2014 10:00:23 Windows Update
08-06-2014 12:31:58 Windows Update
11-06-2014 10:00:14 Windows Update
11-06-2014 10:54:03 Windows Update
18-06-2014 13:08:00 Windows Update
23-06-2014 19:32:44 Revo Uninstaller's restore point - avast! Free Antivirus
23-06-2014 19:35:18 Revo Uninstaller's restore point - avast! Free Antivirus
23-06-2014 20:48:30 avast! antivirus system restore point
23-06-2014 22:38:50 Revo Uninstaller's restore point - Skype™ 6.16
23-06-2014 22:39:13 Removed Skype™ 6.16
23-06-2014 22:46:17 Revo Uninstaller's restore point - Skype™ 6.16
23-06-2014 22:46:34 Removed Skype™ 6.16
23-06-2014 23:46:00 Revo Uninstaller's restore point - Skype™ 6.16
23-06-2014 23:46:40 Removed Skype™ 6.16
24-06-2014 01:34:03 Revo Uninstaller's restore point - Skype™ 6.16
24-06-2014 01:34:41 Removed Skype™ 6.16
24-06-2014 03:35:29 Revo Uninstaller's restore point - Malwarebytes Anti-Malware version 1.75.0.1300
24-06-2014 13:01:01 Windows Update
24-06-2014 18:04:06 Revo Uninstaller's restore point - Skype™ 6.16
24-06-2014 18:05:41 Removed Skype™ 6.16
24-06-2014 18:19:48 Installed Skype™ 6.14
24-06-2014 18:50:57 Installed Microsoft Fix it 50356
24-06-2014 19:06:33 Revo Uninstaller's restore point - Skype™ 6.14
24-06-2014 19:06:56 Removed Skype™ 6.14
24-06-2014 19:14:45 Installed Skype™ 6.14
24-06-2014 19:44:44 Installed Java 7 Update 60
24-06-2014 19:49:12 Revo Uninstaller's restore point - Skype™ 6.14
24-06-2014 19:49:41 Removed Skype™ 6.14
24-06-2014 20:04:55 Installed Skype™ 6.14
24-06-2014 20:46:07 Windows Modules Installer
24-06-2014 20:53:10 Windows Modules Installer
24-06-2014 22:07:08 Revo Uninstaller's restore point - Skype™ 6.14
24-06-2014 22:07:40 Removed Skype™ 6.14

==================== Hosts content: ==========================

2009-07-13 19:34 - 2010-05-02 05:25 - 00001306 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1                activate.adobe.com
127.0.0.1                practivate.adobe.com
127.0.0.1                ereg.adobe.com
127.0.0.1                activate.wip3.adobe.com
127.0.0.1                wip3.adobe.com
127.0.0.1                3dns-3.adobe.com
127.0.0.1                3dns-2.adobe.com
127.0.0.1                adobe-dns.adobe.com
127.0.0.1                adobe-dns-2.adobe.com
127.0.0.1                adobe-dns-3.adobe.com
127.0.0.1                ereg.wip3.adobe.com
127.0.0.1                activate-sea.adobe.com
127.0.0.1                wwis-dubc1-vip60.adobe.com
127.0.0.1                activate-sjc0.adobe.com


==================== Scheduled Tasks (whitelisted) =============

Task: {0514FD09-8BCB-4438-8FD5-EEBE13603D86} - System32\Tasks\{6450A717-C5F7-4BE5-B899-2DB57C0ECE01} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {28AA9085-9CBC-4D64-A69D-C65D22C370E1} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1707699250-2443634357-3253237491-1001UA => C:\Users\Kim-Yon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-13] (Facebook Inc.)
Task: {435377D6-F0F6-4A09-B4D6-DFADA38BFE3D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-31] (Adobe Systems Incorporated)
Task: {5C030B2A-7A16-46B4-B446-EAC23B64AF55} - System32\Tasks\{7EEB763E-334E-42FA-8B14-B0E0D57CF964} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {6096CDDD-48B0-4A8C-9A9A-F50C35C6966B} - System32\Tasks\{74B7F657-7F2B-4E98-9F1B-0221C30E6181} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {6242F8E9-AE67-49F2-AA6C-8410C2049DEB} - System32\Tasks\{6C88C5A7-A514-4E9A-BA83-07FC25C6258A} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {6BD6A9FD-1DE5-4CD9-A336-C95A7BFAC21F} - System32\Tasks\{BC518EE2-0184-4735-8A5F-B256A94BE6EE} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {88409E63-8E75-4AB6-9A02-D818287C033E} - System32\Tasks\AdobeAAMUpdater-1.0-Kim-Yon-PC-Kim-Yon => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {90A36C7F-AB19-4386-B0E0-B3ABF88A5CA5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)
Task: {9C0E447F-4214-49F3-9232-A5D9CF979CA9} - System32\Tasks\{D2D26861-47C9-47AA-A1C7-EBD46B5F7971} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08] (Skype Technologies S.A.)
Task: {AEA11CB1-8866-4571-9FCA-E7BB8B6A35E0} - \Your File Updater No Task File <==== ATTENTION
Task: {B0B9893D-A1D1-4B8A-9056-36C448D5BDF3} - System32\Tasks\{84FE2DB5-873E-40FE-8839-5A0459AB761D} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {C86DA4F7-5544-4F89-B1F1-564A14A45273} - System32\Tasks\{C552184A-DD68-42C3-BA1E-227454401CE9} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {CD16D680-AC4A-40D7-B1E7-554A0FFC86C1} - System32\Tasks\{2C403D8A-9571-48FE-8FEB-FA8685805ADE} => Firefox.exe http://www.skype.com...LastError=12002
Task: {CD6BB0DA-8B2A-4973-88F4-32C349331EBA} - System32\Tasks\{4745C0F6-6410-4192-9468-5FF4ED25369D} => C:\Program Files (x86)\Smith Micro\MangaStudio Debut 4E\Tool\MS_Debut.exe [2011-01-11] (CELSYS,Inc.)
Task: {D5F130E5-BEF6-4104-8E7B-33D08B0CF59A} - System32\Tasks\{09EB6DAD-AABE-46D8-B2C5-D0E90585953C} => Firefox.exe http://ui.skype.com/...all?page=tsMain
Task: {DB27BEF7-425C-46C3-8711-E83A6AC70924} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-13] (Microsoft Corporation)
Task: {DC442671-A762-400F-81B7-655C8F1B9368} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1707699250-2443634357-3253237491-1001Core => C:\Users\Kim-Yon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-13] (Facebook Inc.)
Task: {DE12A279-5651-4F5C-9681-3BA99768C0AD} - System32\Tasks\{825F2B3C-601D-42D0-949D-07A238C2F3E6} => Firefox.exe http://ui.skype.com/...;page=tsInstall
Task: {DE56BC05-EDA3-4D65-A80A-567C78B839F2} - System32\Tasks\LoJack for Laptops Install => C:\Program Files (x86)\Absolute Software\LoJack Install\FactoryInstaller.exe [2009-11-26] (Absolute Software)
Task: {EA7EE401-199C-4D50-9CAD-80CEE073A537} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-06-23] (AVAST Software)
Task: {F7C529DA-6AF2-4779-AC76-442B81E5161F} - System32\Tasks\{2F6A18C3-51CC-4337-8D2C-24117B30434D} => Firefox.exe http://ui.skype.com/...?LastError=1603
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1707699250-2443634357-3253237491-1001Core.job => C:\Users\Kim-Yon\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1707699250-2443634357-3253237491-1001UA.job => C:\Users\Kim-Yon\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-06-05 00:29 - 2011-05-05 13:36 - 00022528 _____ () C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe
2013-06-05 00:29 - 2011-05-05 13:36 - 01479680 _____ () C:\Program Files\DAZ 3D\Content Management Service\ace_x64.dll
2013-06-05 00:29 - 2011-05-05 13:36 - 00977408 _____ () C:\Program Files\DAZ 3D\Content Management Service\VServer_x64.dll
2013-06-05 00:29 - 2011-05-05 13:36 - 01053696 _____ () C:\Program Files\DAZ 3D\Content Management Service\ace_ssl_x64.dll
2013-06-05 00:29 - 2011-05-05 13:36 - 00155136 _____ () C:\Program Files\DAZ 3D\Content Management Service\asnmp_x64.dll
2014-01-23 00:41 - 2005-04-21 21:36 - 00143360 ____R () C:\Windows\system32\BrSNMP64.dll
2011-01-13 10:07 - 2011-08-18 08:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
2014-06-24 05:58 - 2014-06-24 05:58 - 02783744 _____ () C:\Program Files\AVAST Software\Avast\defs\14062400\algo.dll
2014-06-25 07:56 - 2014-06-25 07:56 - 02783744 _____ () C:\Program Files\AVAST Software\Avast\defs\14062500\algo.dll
2014-06-23 13:49 - 2014-06-23 13:49 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2011-01-13 09:31 - 2010-06-08 09:44 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2014-06-20 08:36 - 2014-06-20 08:36 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-06-24 12:45 - 2014-06-24 12:45 - 00018856 _____ () C:\Program Files (x86)\Java\jre7\bin\jp2native.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: "C: =>
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: ControlCenter4 => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
MSCONFIG\startupreg: Dell DataSafe Online => "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
MSCONFIG\startupreg: Dell Webcam Central => "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
MSCONFIG\startupreg: DellSupportCenter => "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter
MSCONFIG\startupreg: Desktop Disc Tool => "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
MSCONFIG\startupreg: Facebook Update => "C:\Users\Kim-Yon\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: IndexSearch => "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe"
MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe"
MSCONFIG\startupreg: PDF5 Registry Controller => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe
MSCONFIG\startupreg: PDFHook => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/24/2014 03:05:41 PM) (Source: MsiInstaller) (EventID: 11316) (User: Kim-Yon-PC)
Description: Product: Skype™ 6.16 -- Error 1316. A network error occurred while attempting to read from the file: C:\ProgramData\Skype\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeSetup_6.14.0.104.msi

Error: (06/24/2014 02:26:28 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (06/24/2014 02:24:43 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2014 01:29:52 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2014 01:29:52 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2014 00:48:16 PM) (Source: DataSafe.exe) (EventID: 0) (User: )
Description: An Unhandled Exception occured.
System.Runtime.InteropServices.COMException (0xC00D0FEB): Exception from HRESULT: 0xC00D0FEB
   at WMPLib.IWMPPlayer4.set_uiMode(String pbstrMode)
   at AxWMPLib.AxWindowsMediaPlayer.set_uiMode(String value)
   at DataSafe.Net.Menu..ctor()
   at DataSafe.Net.FlowManager.CreateMenu()
   at DataSafe.Net.FlowManager..ctor(HostForm1 hostForm)
   at DataSafe.Net.HostForm1..ctor(String startPage, Int32 TaskPriority, String UserPath, FormConfiguration formConf, RecoveryPartition recoveryPartition, StartInfo startInfo, Thread splashThread)
   at DataSafe.Net.StartHelper.start(StartInfo& startInfo, Thread splashTread)
   at DataSafe.Net.Program.Main(String[] Args)

Error: (06/24/2014 11:12:51 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/24/2014 11:12:51 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/24/2014 11:12:51 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/24/2014 11:12:50 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    Element not found.  (HRESULT : 0x80070490) (0x80070490)


System errors:
=============
Error: (06/25/2014 02:33:45 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (06/25/2014 09:56:59 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (06/25/2014 09:07:56 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (06/25/2014 07:55:56 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (06/24/2014 09:43:12 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (06/24/2014 09:17:20 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (06/24/2014 06:35:57 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 192.168.1.102.
The computer with the IP address 192.168.1.101 did not allow the name to be claimed by
this computer.

Error: (06/24/2014 06:34:04 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 192.168.1.102.
The computer with the IP address 192.168.1.101 did not allow the name to be claimed by
this computer.

Error: (06/24/2014 06:04:09 PM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer KIM-SAN-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{788F4E1D-B6BE-41BB-B5A2-A36A6D79BD83}.
The master browser is stopping or an election is being forced.

Error: (06/24/2014 05:52:11 PM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer KIM-SAN-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{788F4E1D-B6BE-41BB-B5A2-A36A6D79BD83}.
The master browser is stopping or an election is being forced.


Microsoft Office Sessions:
=========================
Error: (06/24/2014 03:05:41 PM) (Source: MsiInstaller) (EventID: 11316) (User: Kim-Yon-PC)
Description: Product: Skype™ 6.16 -- Error 1316. A network error occurred while attempting to read from the file: C:\ProgramData\Skype\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeSetup_6.14.0.104.msi(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/24/2014 02:26:28 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (06/24/2014 02:24:43 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (06/24/2014 01:29:52 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (06/24/2014 01:29:52 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (06/24/2014 00:48:16 PM) (Source: DataSafe.exe) (EventID: 0) (User: )
Description: An Unhandled Exception occured.
System.Runtime.InteropServices.COMException (0xC00D0FEB): Exception from HRESULT: 0xC00D0FEB
   at WMPLib.IWMPPlayer4.set_uiMode(String pbstrMode)
   at AxWMPLib.AxWindowsMediaPlayer.set_uiMode(String value)
   at DataSafe.Net.Menu..ctor()
   at DataSafe.Net.FlowManager.CreateMenu()
   at DataSafe.Net.FlowManager..ctor(HostForm1 hostForm)
   at DataSafe.Net.HostForm1..ctor(String startPage, Int32 TaskPriority, String UserPath, FormConfiguration formConf, RecoveryPartition recoveryPartition, StartInfo startInfo, Thread splashThread)
   at DataSafe.Net.StartHelper.start(StartInfo& startInfo, Thread splashTread)
   at DataSafe.Net.Program.Main(String[] Args)

Error: (06/24/2014 11:12:51 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description:
Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/24/2014 11:12:51 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Context: Windows Application


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/24/2014 11:12:51 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/24/2014 11:12:50 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer


==================== Memory info ===========================

Percentage of memory in use: 31%
Total physical RAM: 7990.68 MB
Available physical RAM: 5477.43 MB
Total Pagefile: 15979.55 MB
Available Pagefile: 12798.19 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:372.84 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 559065BD)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#10 nasdaq

nasdaq

    Forum Deity

  • Global Moderator
  • PipPipPipPipPip
  • 49,258 posts

Posted 26 June 2014 - 05:59 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

This is only a clean up.
No walware found on this computer.

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
HKU\S-1-5-21-1707699250-2443634357-3253237491-1001\...\Run: [AdobeBridge] => [X]
SearchScopes: HKLM-x32 - DefaultScope value is missing.
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM-x32 - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} -  No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File

End
Save the files as fixlist.txt into the same folder as FRST

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.

Let me know what problem persists on this computer.
nasdaq

Favorite tools: [ SpywareBlaster ] [ Spybot ] [ AdAware ] [ HijackThis ]
[ Housecall online virus scan ] [ Bitdefender online virus scan ]
[ AVG antivirus ] [ Sunbelt Personal Firewall ] [ ZoneAlarm firewall ]

My help is free, but if we have helped you in anyway,please considerDonating ,
see this topic for details.
We need members like you.

========
Shouldn't water be worth more than diamonds?
Adam Smith Glasgow, 1760

#11 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 26 June 2014 - 04:26 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-06-2014
Ran by Kim-Yon at 2014-06-26 15:24:41 Run:1
Running from C:\Users\Kim-Yon\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
HKU\S-1-5-21-1707699250-2443634357-3253237491-1001\...\Run: [AdobeBridge] => [X]
SearchScopes: HKLM-x32 - DefaultScope value is missing.
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM-x32 - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} -  No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File

End
*****************

'HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist' => Key deleted successfully.
HKU\S-1-5-21-1707699250-2443634357-3253237491-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value deleted successfully.
'HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}'=> Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
'HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}'=> Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
'HKCR\Wow6432Node\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => value deleted successfully.
'HKCR\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}'=> Key not found.
'HKCR\PROTOCOLS\Handler\cozi' => Key deleted successfully.
'HKCR\CLSID\{5356518D-FE9C-4E08-9C1F-1E872ECD367F}'=> Key not found.
'HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File'=> Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
'HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File'=> Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
'HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin' => Key deleted successfully.
C:\Users\Kim-Yon\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll not found.

==== End of Fixlog ====



#12 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 26 June 2014 - 04:42 PM

Looks like it's running smoothly.  Only minor thing is that the Wacom Tablet is resizing oddly when connected.  I will try to look into this in a bit and get back with any information found.  Thank you for your help, nasdaq!



#13 nasdaq

nasdaq

    Forum Deity

  • Global Moderator
  • PipPipPipPipPip
  • 49,258 posts

Posted 27 June 2014 - 05:47 AM

Critical vulnerabilities have been identified in old version of Adobe Flash Player please get the latest version.

Flash test site:
http://www.adobe.com...re/flash/about/
Install the new version or if you have the latest close the windows.

Flash Player Help / Find version
http://helpx.adobe.c...on_your_machine

===
nasdaq

Favorite tools: [ SpywareBlaster ] [ Spybot ] [ AdAware ] [ HijackThis ]
[ Housecall online virus scan ] [ Bitdefender online virus scan ]
[ AVG antivirus ] [ Sunbelt Personal Firewall ] [ ZoneAlarm firewall ]

My help is free, but if we have helped you in anyway,please considerDonating ,
see this topic for details.
We need members like you.

========
Shouldn't water be worth more than diamonds?
Adam Smith Glasgow, 1760

#14 Zanshiro

Zanshiro

    Rurouni Shijin

  • Helper Trainee
  • PipPipPip
  • 144 posts

Posted 28 June 2014 - 02:34 PM

All set and updated.  Much appreciated, nasdaq :)



#15 nasdaq

nasdaq

    Forum Deity

  • Global Moderator
  • PipPipPipPipPip
  • 49,258 posts

Posted 29 June 2014 - 05:01 AM

Glad we could help.
nasdaq

Favorite tools: [ SpywareBlaster ] [ Spybot ] [ AdAware ] [ HijackThis ]
[ Housecall online virus scan ] [ Bitdefender online virus scan ]
[ AVG antivirus ] [ Sunbelt Personal Firewall ] [ ZoneAlarm firewall ]

My help is free, but if we have helped you in anyway,please considerDonating ,
see this topic for details.
We need members like you.

========
Shouldn't water be worth more than diamonds?
Adam Smith Glasgow, 1760

#16 nasdaq

nasdaq

    Forum Deity

  • Global Moderator
  • PipPipPipPipPip
  • 49,258 posts

Posted 29 June 2014 - 05:01 AM

Glad we could help. :)

If you need this topic reopened, please tell the moderating team by replying here with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.
nasdaq

Favorite tools: [ SpywareBlaster ] [ Spybot ] [ AdAware ] [ HijackThis ]
[ Housecall online virus scan ] [ Bitdefender online virus scan ]
[ AVG antivirus ] [ Sunbelt Personal Firewall ] [ ZoneAlarm firewall ]

My help is free, but if we have helped you in anyway,please considerDonating ,
see this topic for details.
We need members like you.

========
Shouldn't water be worth more than diamonds?
Adam Smith Glasgow, 1760




Member of UNITE
Support SpywareInfo Forum - click the button