Great
1st text file for you, now scanning so will update further in a few hours:
ComboFix 12-07-27.03 - Rob 28/07/2012 20:56:18.2.3 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.44.1033.18.4094.2262 [GMT 1:00]
Running from: c:\users\Rob\Desktop\svchost.exe.exe
Command switches used :: c:\users\Rob\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Common Files\SpeedMaxPc
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\close.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\close_md.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\close_mo.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\close_pu.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\close_pu_md.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\close_pu_mo.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\Logo.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\min.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\min_md.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\min_mo.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Images\topbar_gradient.png
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\LiteUnzip.dll
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\settings.xml
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\Update3.exe
c:\program files (x86)\Common Files\SpeedMaxPc\UUS3\UUS3.dll
c:\program files (x86)\SpeedMaxPc
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\7ZipDLL.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\colors.xml
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\CommonLoggingExtension.pxt
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\CommonSpecialist.pxt
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\ExtensionManager.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HandleUpdate.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\0_days.htm
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\1_days.htm
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\15_days.htm
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\2_days.htm
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\30_days.htm
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\5_days.htm
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\container_content_bkimg.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\container_content_leftimg.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\container_content_rightimg.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\error_connect.html
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\10x10.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\10x10tile.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\contentwrapper.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\error_internet.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\footerbarfill.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\info_bubble.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\pcha_background.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\tile_footerbarbase.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\tile_subheadbarbase.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\images\tile_titlebarbase.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\main.css
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\main_error.css
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\package_titlebar_bkimg.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\uninstall\box_screen.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\uninstall\default_button.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\uninstall\default_button_over.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\uninstall\header_background.jpg
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\HTML\uninstall\index.html
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Audio\cancel.wav
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Audio\complete.wav
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\btn.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\btn_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_bho.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_defrag.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_file.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_generalsettings.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_ignore.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_junk.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_privacy.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_process.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_registry.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_schedule.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\button_startup.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\register.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\register_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\register_over_small.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\register_small.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\renew.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\renew_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\settings_button.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\settings_button_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\start.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\buttons\start_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\defrag\c_empty.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\defrag\c_frag.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\defrag\c_unfrag.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\defrag\c_unknown.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\defrag\c_unmove.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\close.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\dlg_title.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\logo.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\max.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\min.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\register.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\register_close.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\register_close_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\register_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\renew.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\renew_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\restore.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\tab_bg.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\tabactive_bg.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\tabover_bg.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\tfn_bg.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\tfn_logo.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\title_bar.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Frame\upper_divider.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\general\collapse.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\general\delete.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\general\expand.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\general\progress_glow.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\bho.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\dup_audio.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\dup_doc.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\dup_image.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\dup_other.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\dup_video.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\ig_drivers.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\ig_proc.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\ig_reg.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\junk.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_3rd.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_browser.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_email.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_fs.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_im.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_multi.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_office.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_other.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\priv_windows.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_apppath.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_com.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_dll.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_empty.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_extensions.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_filepath.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_font.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_help.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_shortcut.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_startup.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\reg_uninstall.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\group\startup.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_about.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_bho.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_clean.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_defrag.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_file.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_junk.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_junk_settings.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_malware.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_performance.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_privacy.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_process.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_registry.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_restore.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_settings.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_startup.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\header_tools.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\settings_general.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\settings_ignore.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\settings_privacy.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\settings_registry.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\headers\settings_schedule.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Icons\info.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Icons\warning.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\other.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\process\bho.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\process\process.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\process\startup.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_malware16.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_malware24.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_malware32.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_system16.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_system24.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_system32.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_unknown16.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_unknown24.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_unknown32.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_unwanted16.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_unwanted24.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_unwanted32.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_userapp16.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_userapp24.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\list\recommendations\rec_userapp32.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\011.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\012.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\01.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\02.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\03.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\04.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\05.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\06.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\07.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\08.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\animation\09.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\check.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\damage1.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\damage2.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\damage3.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\damage4.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\damage5.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\damage6.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\error.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\error_large.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\Fix.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\Fix_over.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\junk.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\malware.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\md5.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\privacy.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\process-animation.gif
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_h.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_h_scan.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_l.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_l_scan.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_m.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_m_scan.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_mh.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_mh_scan.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_ml.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\rating_ml_scan.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\registry.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\security_high.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\security_low.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Scan\warning.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Tabs\overview.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Tabs\restore.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Tabs\scan.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Tabs\settings.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Images\Tabs\tools.png
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\LiteUnzip.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\LiteZip.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\LogSettings.xml
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\MyResources.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\privacy.db
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\RegHookSpecialist.pxt
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\SandBoxer.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\settings.xml
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\SpeedMaxPc.exe
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\sqlite3.dll
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\uninstall.exe
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\UNS.xml
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\Utility.pxt
c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\whitelist.dat
c:\programdata\MFAData
c:\programdata\MFAData\logs\mfa-20120716-150558.log
c:\programdata\MFAData\logs\mfa-20120716-152251.log
c:\programdata\MFAData\logs\mfa-20120716-152614.log
c:\programdata\MFAData\logs\msi-20120716-150058.log
c:\programdata\MFAData\logs\msi-20120716-152251.log
c:\programdata\MFAData\logs\msi-20120716-152614.log
c:\programdata\MFAData\mfaurlconf.ini
c:\programdata\MFAData\msistorg.dat
c:\programdata\MFAData\msistorg.dat.bkp
c:\programdata\MFAData\pack\AlertMga.cab
c:\programdata\MFAData\pack\AntiRka.cab
c:\programdata\MFAData\pack\Antivira.cab
c:\programdata\MFAData\pack\avg12infoavi.ctf
c:\programdata\MFAData\pack\avg12infooi.ctf
c:\programdata\MFAData\pack\avg12infowin.ctf
c:\programdata\MFAData\pack\Avgx64.msi
c:\programdata\MFAData\pack\AVIsa.cab
c:\programdata\MFAData\pack\basea.cab
c:\programdata\MFAData\pack\bins\poi12ppc2_dtc26dv.bin
c:\programdata\MFAData\pack\bins\poi12ppc2_lic15ih.bin
c:\programdata\MFAData\pack\bins\w12alertmga2195sv.bin
c:\programdata\MFAData\pack\bins\w12antirka2195bp.bin
c:\programdata\MFAData\pack\bins\w12antivira2195tq.bin
c:\programdata\MFAData\pack\bins\w12avga2195gi.bin
c:\programdata\MFAData\pack\bins\w12avisa2195ef.bin
c:\programdata\MFAData\pack\bins\w12basa2195ph.bin
c:\programdata\MFAData\pack\bins\w12corea2437iv.bin
c:\programdata\MFAData\pack\bins\w12emailsa2195in.bin
c:\programdata\MFAData\pack\bins\w12guia2195wk.bin
c:\programdata\MFAData\pack\bins\w12idata2195rz.bin
c:\programdata\MFAData\pack\bins\w12idpa2195fy.bin
c:\programdata\MFAData\pack\bins\w12lng_usa2195jj.bin
c:\programdata\MFAData\pack\bins\w12onlnsca2195oc.bin
c:\programdata\MFAData\pack\bins\w12rdsta2195ez.bin
c:\programdata\MFAData\pack\bins\w12rdstx2195dv.bin
c:\programdata\MFAData\pack\bins\w12resshlda2195ug.bin
c:\programdata\MFAData\pack\bins\w12srchsrfa2195qa.bin
c:\programdata\MFAData\pack\bins\w12sshttpba2195sx.bin
c:\programdata\MFAData\pack\bins\w12tdidrva2195qb.bin
c:\programdata\MFAData\pack\bins\w12tuneupa2195mm.bin
c:\programdata\MFAData\pack\bins\w12update2a2195ol.bin
c:\programdata\MFAData\pack\bins\w12updatea2195fn.bin
c:\programdata\MFAData\pack\bins\w12xpla2195mt.bin
c:\programdata\MFAData\pack\COREa.cab
c:\programdata\MFAData\pack\COREx64.msi
c:\programdata\MFAData\pack\crt_x64.msi
c:\programdata\MFAData\pack\Emailsa.cab
c:\programdata\MFAData\pack\GUIa.cab
c:\programdata\MFAData\pack\idata.cab
c:\programdata\MFAData\pack\IDPa.cab
c:\programdata\MFAData\pack\lic.mdf
c:\programdata\MFAData\pack\lng_usa.cab
c:\programdata\MFAData\pack\OnlnSca.cab
c:\programdata\MFAData\pack\ppc2_dtc.mdf
c:\programdata\MFAData\pack\ResShlda.cab
c:\programdata\MFAData\pack\SrchSrfa.cab
c:\programdata\MFAData\pack\SSHttpBa.cab
c:\programdata\MFAData\pack\TDIDrva.cab
c:\programdata\MFAData\pack\TuneUpa.cab
c:\programdata\MFAData\pack\Update2a.cab
c:\programdata\MFAData\pack\Updatea.cab
c:\programdata\MFAData\pack\vc_red.cab
c:\programdata\MFAData\pack\vc_red.msi
c:\programdata\MFAData\pack\xpla.cab
c:\programdata\MFAData\public_installation_log.xml
c:\programdata\SpeedMaxPc
c:\programdata\SpeedMaxPc\SpeedMaxPc\dc_db.db
c:\programdata\SpeedMaxPc\UUS3\Master.xml
c:\programdata\SpeedMaxPc\UUS3\Patch.xml
c:\programdata\SpeedMaxPc\UUS3\speedmaxpc\Database.xml
c:\programdata\SpeedMaxPc\UUS3\speedmaxpc\Master.xml
c:\programdata\SpeedMaxPc\UUS3\speedmaxpc\Patch.xml
c:\programdata\SpeedMaxPc\UUS3\speedmaxpc\Update.xml
c:\programdata\SpeedMaxPc\UUS3\Update.xml
c:\users\Rob\AppData\Roaming\DriverCure
c:\users\Rob\AppData\Roaming\DriverCure\LogFile.txt
c:\users\Rob\AppData\Roaming\SpeedMaxPc
.
.
((((((((((((((((((((((((( Files Created from 2012-06-28 to 2012-07-28 )))))))))))))))))))))))))))))))
.
.
2012-07-28 20:06 . 2012-07-28 20:0669000----a-w-c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{696BC3A1-BA6E-464C-B7EC-49F8A3E862FA}\offreg.dll
2012-07-28 20:05 . 2012-07-28 20:08--------d-----w-c:\users\Rob\AppData\Local\temp
2012-07-28 20:05 . 2012-07-28 20:05--------d-----w-c:\users\Default\AppData\Local\temp
2012-07-25 21:06 . 2012-06-29 10:049133488----a-w-c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{696BC3A1-BA6E-464C-B7EC-49F8A3E862FA}\mpengine.dll
2012-07-16 19:08 . 2012-07-16 19:08--------d-----w-C:\FRST
2012-07-16 14:49 . 2012-07-16 14:49--------d--h--w-c:\programdata\Common Files
2012-07-07 22:10 . 2012-02-09 13:17927800----a-w-c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{09A9BD8A-9120-471F-AB78-5000EF23E417}\gapaengine.dll
2012-07-07 22:09 . 2012-06-18 02:129013136----a-w-c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-07-07 22:08 . 2012-07-07 22:08--------d-----w-c:\program files (x86)\Microsoft Security Client
2012-07-07 22:08 . 2012-07-07 22:08--------d-----w-c:\program files\Microsoft Security Client
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-06 22:16 . 2012-05-05 09:02426184----a-w-c:\windows\SysWow64\FlashPlayerApp.exe
2012-07-06 22:16 . 2011-11-20 11:5370344----a-w-c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-06-15 17:47 . 2006-11-02 12:3558957832----a-w-c:\windows\system32\mrt.exe
2012-06-02 22:19 . 2012-06-24 10:1038424----a-w-c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-24 10:102428952----a-w-c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-24 10:1044056----a-w-c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-24 10:1057880----a-w-c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-24 10:1035864----a-w-c:\windows\SysWow64\wups.dll
2012-06-02 22:19 . 2012-06-24 10:10701976----a-w-c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-24 10:10577048----a-w-c:\windows\SysWow64\wuapi.dll
2012-06-02 22:15 . 2012-06-24 10:102622464----a-w-c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-24 10:1099840----a-w-c:\windows\system32\wudriver.dll
2012-06-02 22:12 . 2012-06-24 10:1088576----a-w-c:\windows\SysWow64\wudriver.dll
2012-06-02 14:19 . 2012-06-24 10:10186752----a-w-c:\windows\system32\wuwebv.dll
2012-06-02 14:19 . 2012-06-24 10:10171904----a-w-c:\windows\SysWow64\wuwebv.dll
2012-06-02 14:15 . 2012-06-24 10:1036864----a-w-c:\windows\system32\wuapp.exe
2012-06-02 14:12 . 2012-06-24 10:1033792----a-w-c:\windows\SysWow64\wuapp.exe
2012-05-31 11:25 . 2009-12-11 18:57279656------w-c:\windows\system32\MpSigStub.exe
2012-05-18 02:47 . 2012-06-15 17:5417807360----a-w-c:\windows\system32\mshtml.dll
2012-05-18 02:16 . 2012-06-15 17:5410924032----a-w-c:\windows\system32\ieframe.dll
2012-05-18 02:06 . 2012-06-15 17:542311680----a-w-c:\windows\system32\jscript9.dll
2012-05-18 01:59 . 2012-06-15 17:541346048----a-w-c:\windows\system32\urlmon.dll
2012-05-18 01:59 . 2012-06-15 17:541392128----a-w-c:\windows\system32\wininet.dll
2012-05-18 01:58 . 2012-06-15 17:541494528----a-w-c:\windows\system32\inetcpl.cpl
2012-05-18 01:58 . 2012-06-15 17:54237056----a-w-c:\windows\system32\url.dll
2012-05-18 01:56 . 2012-06-15 17:5485504----a-w-c:\windows\system32\jsproxy.dll
2012-05-18 01:55 . 2012-06-15 17:54173056----a-w-c:\windows\system32\ieUnatt.exe
2012-05-18 01:55 . 2012-06-15 17:54818688----a-w-c:\windows\system32\jscript.dll
2012-05-18 01:54 . 2012-06-15 17:542144768----a-w-c:\windows\system32\iertutil.dll
2012-05-18 01:51 . 2012-06-15 17:5496768----a-w-c:\windows\system32\mshtmled.dll
2012-05-18 01:51 . 2012-06-15 17:542382848----a-w-c:\windows\system32\mshtml.tlb
2012-05-18 01:47 . 2012-06-15 17:54248320----a-w-c:\windows\system32\ieui.dll
2012-05-17 22:45 . 2012-06-15 17:541800192----a-w-c:\windows\SysWow64\jscript9.dll
2012-05-17 22:35 . 2012-06-15 17:541129472----a-w-c:\windows\SysWow64\wininet.dll
2012-05-17 22:35 . 2012-06-15 17:541427968----a-w-c:\windows\SysWow64\inetcpl.cpl
2012-05-17 22:29 . 2012-06-15 17:54142848----a-w-c:\windows\SysWow64\ieUnatt.exe
2012-05-17 22:24 . 2012-06-15 17:542382848----a-w-c:\windows\SysWow64\mshtml.tlb
2012-05-15 20:15 . 2012-06-13 19:542767360----a-w-c:\windows\system32\win32k.sys
2012-05-01 14:29 . 2012-06-13 19:54209920----a-w-c:\windows\system32\drivers\rdpwd.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2012-07-27_18.53.39 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-01-21 02:23 . 2012-07-28 20:0979052 c:\windows\system32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 15:45 . 2012-07-28 19:4997478 c:\windows\system32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-09-12 12:25 . 2012-07-28 19:4919562 c:\windows\system32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1198968773-186493069-1406013737-1000_UserData.bin
+ 2012-07-28 19:52 . 2012-07-28 19:5211442 c:\windows\SoftwareDistribution\EventCache\{AF9B929C-A957-476B-880A-39F3BD7026D2}.bin
+ 2009-10-14 21:53 . 2012-07-27 19:072246 c:\windows\system32\WDI\ERCQueuedResolutions.dat
- 2012-07-27 18:53 . 2012-07-27 18:532048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-07-28 20:06 . 2012-07-28 20:062048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-07-27 18:53 . 2012-07-27 18:532048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-07-28 20:06 . 2012-07-28 20:062048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2006-11-02 12:46 . 2012-07-27 18:37658124 c:\windows\system32\perfh009.dat
+ 2006-11-02 12:46 . 2012-07-28 19:53658124 c:\windows\system32\perfh009.dat
+ 2006-11-02 12:46 . 2012-07-28 19:53127346 c:\windows\system32\perfc009.dat
- 2006-11-02 12:46 . 2012-07-27 18:37127346 c:\windows\system32\perfc009.dat
- 2011-02-10 08:37 . 2012-07-27 18:52410332 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-02-10 08:37 . 2012-07-28 20:05410332 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2011-04-30 03:34 . 2012-07-06 22:212467004 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1198968773-186493069-1406013737-1000-8192.dat
+ 2011-04-30 03:34 . 2012-07-27 19:072467004 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1198968773-186493069-1406013737-1000-8192.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HsdService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ServicepointService]
@="Service"
.
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Themes
ezSharedSvc
.
Contents of the 'Scheduled Tasks' folder
.
2012-07-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-01-31 10:34]
.
2012-07-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-01-31 10:34]
.
2012-07-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1198968773-186493069-1406013737-1000Core.job
- c:\users\Rob\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-15 18:53]
.
2012-07-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1198968773-186493069-1406013737-1000UA.job
- c:\users\Rob\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-15 18:53]
.
.
--------- X64 Entries -----------
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://
www.google.co.uk/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0809&m=imedia_s3210&r=1v3607091106p03e5vq35y46219303
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-{EF4F8650-7710-4CA0-831D-4AA9C1CF6D87} - c:\program files (x86)\SpeedMaxPc\SpeedMaxPc\uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
c:\windows\system32\HidService.exe
c:\program files (x86)\Virgin Media\Digital Home Support\HsdService.exe
c:\windows\SysWOW64\IoctlSvc.exe
c:\program files (x86)\Virgin Media\Service Manager\ServicepointService.exe
c:\program files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe
.
**************************************************************************
.
Completion time: 2012-07-28 21:12:51 - machine was rebooted
ComboFix-quarantined-files.txt 2012-07-28 20:12
ComboFix2.txt 2012-07-27 18:58
.
Pre-Run: 207,189,356,544 bytes free
Post-Run: 207,114,833,920 bytes free
.
- - End Of File - - B7BABA362BBEE261656609F5119848A6