Scans as requested thank you, (Please nore comments at end):
1. OTL (Was saved to desktop but desktop is on D:\)
No such file existed here: C:\_OTL\Moved Files\MMDDYYY_HHMMSS.log
D:\_OTL\MovedFiles\02162014_224958.log
All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted
successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-
472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@kingsfot.com/npkws\ deleted successfully.
File c:\program files\kingsoft\ijinshan_antivierus2013\npkws.dll not found.
ADS C:\ProgramData\TEMP:0B4227B4 deleted successfully.
========== FILES ==========
File\Folder C:\Program Files\kingsoft not found.
C:\ProgramData\DriverGenius\Backup folder moved successfully.
C:\ProgramData\DriverGenius folder moved successfully.
File\Folder C:\Windows\system32\drivers\kisknl.sys not found.
C:\Windows\System32\drivers\ksapi.sys moved successfully.
C:\Windows\System32\drivers\knbdrv.sys moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: makem
->Temp folder emptied: 75770858 bytes
->Temporary Internet Files folder emptied: 153172252 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 110696141 bytes
->Flash cache emptied: 3739 bytes
User: Public
User: TEMP
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 41821873 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 364.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 02162014_224958
Files\Folders moved on Reboot...
C:\Users\makem\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
===========================================================================================
2. CKScanner:
CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.MN.11.CJAPJZ
----- EOF -----
===========================================================================================
3. SystemLook
SystemLook 30.07.11 by jpshortstuff
Log created at 23:13 on 16/02/2014 by makem
Administrator - Elevation successful
========== filefind ==========
Searching for "*Bandoo*"
No files found.
Searching for "*Community*"
C:\Program Files\Notepad++\user.manual\sites\all\images\NppCommunityLogo.png --a---- 18238 bytes [21:33 18/07/2011] [21:33
18/07/2011] D5191EBF4FFD9AD19580F6038506076A
Searching for "*Conduit*"
No files found.
Searching for "*crack*"
No files found.
Searching for "*datamngr*"
No files found.
Searching for "*DriverGenius*"
C:\Documents and Settings\makem\AppData\Roaming\Microsoft\Office\Recent\2.Step of Installation of DriverGenius.doc.LNK --a---- 950 bytes
[14:13 04/02/2014] [17:02 04/02/2014] CB9CD9BC6EEDFD5FDD171E4803527763
C:\Documents and Settings\makem\AppData\Roaming\Microsoft\Office\Recent\Drivergenius.doc.LNK --a---- 1627 bytes [16:49 04/02/2014]
[12:48 06/02/2014] 2D3A5F3CAE379BF8AA5BA83B3593152C
C:\Documents and Settings\makem\Application Data\Microsoft\Office\Recent\2.Step of Installation of DriverGenius.doc.LNK --a---- 950 bytes
[14:13 04/02/2014] [17:02 04/02/2014] CB9CD9BC6EEDFD5FDD171E4803527763
C:\Documents and Settings\makem\Application Data\Microsoft\Office\Recent\Drivergenius.doc.LNK --a---- 1627 bytes [16:49 04/02/2014]
[12:48 06/02/2014] 2D3A5F3CAE379BF8AA5BA83B3593152C
C:\Users\makem\AppData\Roaming\Microsoft\Office\Recent\2.Step of Installation of DriverGenius.doc.LNK --a---- 950 bytes [14:13
04/02/2014] [17:02 04/02/2014] CB9CD9BC6EEDFD5FDD171E4803527763
C:\Users\makem\AppData\Roaming\Microsoft\Office\Recent\Drivergenius.doc.LNK --a---- 1627 bytes [16:49 04/02/2014] [12:48
06/02/2014] 2D3A5F3CAE379BF8AA5BA83B3593152C
C:\Users\makem\Application Data\Microsoft\Office\Recent\2.Step of Installation of DriverGenius.doc.LNK --a---- 950 bytes [14:13
04/02/2014] [17:02 04/02/2014] CB9CD9BC6EEDFD5FDD171E4803527763
C:\Users\makem\Application Data\Microsoft\Office\Recent\Drivergenius.doc.LNK --a---- 1627 bytes [16:49 04/02/2014] [12:48
06/02/2014] 2D3A5F3CAE379BF8AA5BA83B3593152C
Searching for "*Fun4IM*"
No files found.
Searching for "*iLivid*"
No files found.
Searching for "*IObit*"
No files found.
Searching for "*Iminent*"
No files found.
Searching for "*Kingsoft*"
C:\Windows\System32\winevt\Logs\Kingsoft Internet Security.evtx --a---- 69632 bytes [13:59 15/01/2014] [01:03 01/02/2014]
08E4C04EBFA3F56C009665F3396AD104
Searching for "*Searchqu*"
No files found.
Searching for "*Searchnu*"
No files found.
Searching for "*Tarma*"
No files found.
Searching for "*trolltech*"
No files found.
Searching for "*vshare*"
No files found.
Searching for "*whitesmoke*"
No files found.
Searching for "*Yontoo*"
No files found.
========== folderfind ==========
Searching for "*Bandoo*"
No folders found.
Searching for "*Community*"
No folders found.
Searching for "*Conduit*"
No folders found.
Searching for "*crack*"
No folders found.
Searching for "*datamngr*"
No folders found.
Searching for "*DriverGenius*"
C:\Documents and Settings\makem\AppData\Local\VirtualStore\Program Files\MyDrivers\DriverGenius2013 dr----- [09:43 04/10/2013]
C:\Program Files\MyDrivers\DriverGenius2013 dr----- [17:02 04/02/2014]
C:\Users\makem\AppData\Local\VirtualStore\Program Files\MyDrivers\DriverGenius2013 dr----- [09:43 04/10/2013]
Searching for "*Fun4IM*"
No folders found.
Searching for "*iLivid*"
No folders found.
Searching for "*IObit*"
No folders found.
Searching for "*Iminent*"
No folders found.
Searching for "*Kingsoft*"
C:\Documents and Settings\All Users\Kingsoft d------ [09:44 04/10/2013]
C:\Documents and Settings\makem\AppData\Local\VirtualStore\ProgramData\Kingsoft d------ [09:44 04/10/2013]
C:\ProgramData\Kingsoft d------ [09:44 04/10/2013]
C:\Users\All Users\Kingsoft d------ [09:44 04/10/2013]
C:\Users\makem\AppData\Local\VirtualStore\ProgramData\Kingsoft d------ [09:44 04/10/2013]
C:\Windows\System32\config\systemprofile\AppData\Local\Kingsoft d------ [00:21 01/02/2014]
C:\Windows\System32\config\systemprofile\AppData\Roaming\Kingsoft d------ [13:59 15/01/2014]
Searching for "*Searchqu*"
No folders found.
Searching for "*Searchnu*"
No folders found.
Searching for "*Tarma*"
No folders found.
Searching for "*trolltech*"
No folders found.
Searching for "*vshare*"
No folders found.
Searching for "*whitesmoke*"
No folders found.
Searching for "*Yontoo*"
No folders found.
========== Regfind ==========
Searching for "Bandoo"
No data found.
Searching for "Community"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1372A97E-2034-41ee-A6C1-1B68FAFA75A1}]
@="CLSID_ICommunityTransport"
Searching for "Conduit"
No data found.
Searching for "crack"
No data found.
Searching for "datamngr"
No data found.
Searching for "DriverGenius"
[HKEY_CURRENT_USER\Software\Microsoft\Office\11.0\Common\Internet]
"UseRWHlinkNavigation"="http://www.drivergenius.com/"
[HKEY_CURRENT_USER\Software\Classes\VirtualStore\MACHINE\SOFTWARE\MyDrivers\DriverGenius]
[HKEY_CURRENT_USER\Software\Classes\VirtualStore\MACHINE\SOFTWARE\MyDrivers\DriverGenius]
"WorkPath"="C:\Program Files\MyDrivers\DriverGenius2013"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{124B3515-E16D-4B21-A529-058AE6E567C1}]
"LocalService"="DriverGenius Core Service"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Kingsoft]
"URL Protocol"="C:\Program Files\MyDrivers\DriverGenius2013\ksoft\softmain.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Kingsoft\DefaultIcon]
@="C:\Program Files\MyDrivers\DriverGenius2013\ksoft\softmain.exe,0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Kingsoft\shell\open\command]
@="C:\Program Files\MyDrivers\DriverGenius2013\ksoft\softmain.exe "%1""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{587C0B9A-8D5D-4866-95AC-A8E5C8AB5689}\1.0\0\win32]
@="C:\Program Files\MyDrivers\DriverGenius2013\dgservice.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\dg.exe]
@="C:\Program Files\MyDrivers\DriverGenius2013\drivergenius.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\qd.exe]
@="C:\Program Files\MyDrivers\DriverGenius2013\drivergenius.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\qudong.exe]
@="C:\Program Files\MyDrivers\DriverGenius2013\drivergenius.exe"
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Microsoft\Office\11.0\Common\Internet]
"UseRWHlinkNavigation"="http://www.drivergenius.com/"
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Classes\VirtualStore\MACHINE\SOFTWARE\MyDrivers\DriverGenius]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Classes\VirtualStore\MACHINE\SOFTWARE\MyDrivers\DriverGenius]
"WorkPath"="C:\Program Files\MyDrivers\DriverGenius2013"
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001_Classes\VirtualStore\MACHINE\SOFTWARE\MyDrivers\DriverGenius]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001_Classes\VirtualStore\MACHINE\SOFTWARE\MyDrivers\DriverGenius]
"WorkPath"="C:\Program Files\MyDrivers\DriverGenius2013"
Searching for "Fun4IM"
No data found.
Searching for "iLivid"
No data found.
Searching for "IObit"
No data found.
Searching for "Iminent"
No data found.
Searching for "Kingsoft"
[HKEY_CURRENT_USER\Software\Kingsoft]
[HKEY_CURRENT_USER\Software\Classes\VirtualStore\MACHINE\SOFTWARE\kingsoft]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{367F6AE2-6809-4bed-B09B-228893FB33DD}\InprocServer32]
@="c:\program files\kingsoft\ijinshan_antivierus2013\kwansvc.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Kingsoft]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Kingsoft]
@="KingsoftProtocol"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft]
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\Antivirus]
"ProgramPath"="c:\program files\kingsoft\ijinshan_antivierus2013\"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\Antivirus]
"WorkPath"="c:\program files\kingsoft\ijinshan_antivierus2013"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\Antivirus]
"ShtWrkPath"="c:\PROGRA~1\kingsoft\IJINSH~2\"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\Antivirus\recommend]
"DubaPath"="c:\program files\kingsoft\ijinshan_antivierus2013\"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\KISCommon]
"ProgramPath"="c:\program files\kingsoft\ijinshan_antivierus2013\"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\kwspriEx]
"path"="c:\program files\kingsoft\ijinshdan_antivirus_2013"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\kwspriEx]
"main"="c:\program files\kingsoft\ijinshdan_antivirus_2013\kismain.exe /kws"
[HKEY_LOCAL_MACHINE\SOFTWARE\kingsoft\shoujizhushou]
"Install Path"="c:\program files\kingsoft\shoujizhushou"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\bootsafe]
"ProgramPath"="c:\program files\kingsoft\ijinshan_antivierus2013"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Kingsoft]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\ksapi]
"Description"="Kingsoft ksapi module."
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\kxescore]
"ImagePath"=""c:\program files\kingsoft\ijinshan_antivierus2013\kxescore.exe" /service kxescore"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\kxescore]
"DisplayName"="Kingsoft Core Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\bootsafe]
"ProgramPath"="c:\program files\kingsoft\ijinshan_antivierus2013"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Kingsoft]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\ksapi]
"Description"="Kingsoft ksapi module."
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\kxescore]
"ImagePath"=""c:\program files\kingsoft\ijinshan_antivierus2013\kxescore.exe" /service kxescore"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\kxescore]
"DisplayName"="Kingsoft Core Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\bootsafe]
"ProgramPath"="c:\program files\kingsoft\ijinshan_antivierus2013"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Kingsoft]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ksapi]
"Description"="Kingsoft ksapi module."
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\kxescore]
"ImagePath"=""c:\program files\kingsoft\ijinshan_antivierus2013\kxescore.exe" /service kxescore"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\kxescore]
"DisplayName"="Kingsoft Core Service"
[HKEY_USERS\.DEFAULT\Software\Kingsoft]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Kingsoft]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Classes\VirtualStore\MACHINE\SOFTWARE\kingsoft]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001_Classes\VirtualStore\MACHINE\SOFTWARE\kingsoft]
[HKEY_USERS\S-1-5-18\Software\Kingsoft]
Searching for "Searchqu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"
Searching for "Searchnu"
No data found.
Searching for "Tarma"
No data found.
Searching for "trolltech"
[HKEY_CURRENT_USER\Software\Trolltech]
[HKEY_CURRENT_USER\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.6\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_CURRENT_USER\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_CURRENT_USER\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.8\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_CURRENT_USER\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.8\com.trolltech.Qt.QSqlDriverFactoryInterface:]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Trolltech]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Trolltech\OrganizationDefaults\Qt Factory Cache
4.6\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Trolltech\OrganizationDefaults\Qt Factory Cache
4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Trolltech\OrganizationDefaults\Qt Factory Cache
4.8\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_USERS\S-1-5-21-2971882474-1144138496-3696702083-1001\Software\Trolltech\OrganizationDefaults\Qt Factory Cache
4.8\com.trolltech.Qt.QSqlDriverFactoryInterface:]
Searching for "vshare"
No data found.
Searching for "whitesmoke"
No data found.
Searching for "Yontoo"
No data found.
-= EOF =-
===========================================================================================
4. No problem executing scans
5. Computer appears to be performing normally
6. I notice that the driver kisknl.sys could not be found. However this is one i asked originally be removed. Has it?
7. Do you have an issue with DriverGenius?
hxxp://www.drivergenius.com/Download using the link just under the green download button.
I find it a very useful program and as far as I am aware it has not caused any problem. However, you cannot use it unless you can read Mandarin.