µTorrent
Version: 3.0
µTorrent 3.0 is a natural evolution of the classic “tiny-but-mighty” vision. While the interface has been polished and the overall size remains smaller than your average Facebook pic, µTorrent is now packed with some insanely powerful new features.
The Windows boot time has become slow than usually. Difference= 5 sec (-15%).
UTORRENT.EXE
Description: µTorrent BitTorrent, Inc. µTorrent 3.0.0.25460
MD5= B6C6DF3D320D931038C9EE8B12E87D5D
File is signed and the signature was verified.
File size= 639864
Related registry changes:
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\UTORRENT\DISPLAYICON: “C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE,0″
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\UTORRENT\UNINSTALLSTRING: “”C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE” /UNINSTALL”
HKLM\SOFTWARE\CONDUIT\APPPATHS\CLIENT\APPPATH: “C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE”
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\UTORRENT: “”C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE” /MINIMIZED”
Description: µTorrent BitTorrent, Inc. µTorrent 3.0.0.25460
MD5= B6C6DF3D320D931038C9EE8B12E87D5D
File is signed and the signature was verified.
File size= 639864
Related registry changes:
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\UTORRENT\DISPLAYICON: “C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE,0″
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\UTORRENT\UNINSTALLSTRING: “”C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE” /UNINSTALL”
HKLM\SOFTWARE\CONDUIT\APPPATHS\CLIENT\APPPATH: “C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE”
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\UTORRENT: “”C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE” /MINIMIZED”
PRXCONDUITENGINE.DLL
Description: Conduit Toolbar Conduit Ltd. Conduit Toolbar 6.3.4.1
MD5= D344CC84609A807CE92187C9662D392B
File is signed and the signature was verified.
File size= 176936
Related registry changes:
HKLM\SOFTWARE\CLASSES\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\INPROCSERVER32\: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{70B07F69-5796-4F8D-BF4C-9B3151012CB1}\INPROCSERVER32\: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{AC6240AE-33B6-40D3-8683-31BBE86049A0}\INPROCSERVER32\: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL”
HKLM\SOFTWARE\CONDUITENGINE\TOOLBAR\PROXYDLLPATH: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL“
Description: Conduit Toolbar Conduit Ltd. Conduit Toolbar 6.3.4.1
MD5= D344CC84609A807CE92187C9662D392B
File is signed and the signature was verified.
File size= 176936
Related registry changes:
HKLM\SOFTWARE\CLASSES\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\INPROCSERVER32\: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{70B07F69-5796-4F8D-BF4C-9B3151012CB1}\INPROCSERVER32\: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{AC6240AE-33B6-40D3-8683-31BBE86049A0}\INPROCSERVER32\: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL”
HKLM\SOFTWARE\CONDUITENGINE\TOOLBAR\PROXYDLLPATH: “C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL“
PRXTBUTOR.DLL
Description: Conduit Toolbar Conduit Ltd. Conduit Toolbar 6.3.4.1
MD5= D344CC84609A807CE92187C9662D392B
File is signed and the signature was verified.
File size= 176936
Related registry changes:
HKLM\SOFTWARE\CLASSES\CLSID\{41BE5DC3-212A-44A3-8811-4A54E9D2884A}\INPROCSERVER32\: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}\INPROCSERVER32\: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\INPROCSERVER32\: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL”
HKLM\SOFTWARE\UTORRENTBAR\TOOLBAR\PROXYDLLPATH: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL“
Description: Conduit Toolbar Conduit Ltd. Conduit Toolbar 6.3.4.1
MD5= D344CC84609A807CE92187C9662D392B
File is signed and the signature was verified.
File size= 176936
Related registry changes:
HKLM\SOFTWARE\CLASSES\CLSID\{41BE5DC3-212A-44A3-8811-4A54E9D2884A}\INPROCSERVER32\: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}\INPROCSERVER32\: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL”
HKLM\SOFTWARE\CLASSES\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\INPROCSERVER32\: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL”
HKLM\SOFTWARE\UTORRENTBAR\TOOLBAR\PROXYDLLPATH: “C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL“
Modified during installation:
~+ [INTERNET EXPLORER] [CURRENT HOME PAGE] :HKCU START PAGE=HTTP://SEARCH.CONDUIT.COM?SEARCHSOURCE=10&CTID=CT2786678
~- [INTERNET EXPLORER] [CURRENT HOME PAGE] :HKCU START PAGE=HTTP://WWW.GOOGLE.COM/
FILES ADDED:95
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\µTORRENT.LNK
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\PROTECT\S-1-5-21-1659004503-1708537768-1801674531-500\1FD048E9-E024-4D80-AD71-208A39838D4C
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\CRYPTO\RSA\S-1-5-21-1659004503-1708537768-1801674531-500\A18CA4003DEB042BBEE7A40F15E1970B_E17EF422-72D0-4843-9F36-93D1C74DF894
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\DHT.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\DHT.DAT.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\RESUME.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\RESUME.DAT.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\SETTINGS.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\SETTINGS.DAT.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\CT2786678\UTORRENTBARAUTOUPDATEHELPER.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\CONDUITENGINE.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\ENGINESETTINGS.JSON
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\LDRCONDUITENGINE.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\TOOLBAR.CFG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\LDRTBUTOR.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\TBUTOR.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\TOOLBAR.CFG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CCIS\CCSQLH.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CCIS\SQLITE3.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CRTB.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CRXA.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IET3.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSB6.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSJE.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\UTT1.TMP.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\UTT2.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\XPI9.TMP
C:\DOCUMENTS AND SETTINGS\ALL USERS\DESKTOP\µTORRENT.LNK
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\µTORRENT.LNK
C:\PROGRAM FILES\CONDUIT\COMMUNITY ALERTS\ALERT.DLL
C:\PROGRAM FILES\CONDUITENGINE\APPCONTEXTMENU.XML
C:\PROGRAM FILES\CONDUITENGINE\CONDUITENGINE.DLL
C:\PROGRAM FILES\CONDUITENGINE\CONDUITENGINEHELPER.EXE
C:\PROGRAM FILES\CONDUITENGINE\CONDUITENGINEUNINSTALL.EXE
C:\PROGRAM FILES\CONDUITENGINE\ENGINECONTEXTMENU.XML
C:\PROGRAM FILES\CONDUITENGINE\ENGINESETTINGS.JSON
C:\PROGRAM FILES\CONDUITENGINE\LDRCONDUITENGINE.DLL
C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL
C:\PROGRAM FILES\CONDUITENGINE\TOOLBAR.CFG
C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE
C:\PROGRAM FILES\UTORRENTBAR\GOTTENAPPSCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\LDRTBUTOR.DLL
C:\PROGRAM FILES\UTORRENTBAR\OTHERAPPSCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL
C:\PROGRAM FILES\UTORRENTBAR\SHAREDAPPSCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\TBUTOR.DLL
C:\PROGRAM FILES\UTORRENTBAR\TOOLBAR.CFG
C:\PROGRAM FILES\UTORRENTBAR\TOOLBARCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\UNINSTALL.EXE
C:\PROGRAM FILES\UTORRENTBAR\UTORRENTBARTOOLBARHELPER.EXE
C:\WINDOWS\SYSTEM32\CONDUITENGINE.TMP
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\CHROME\UTORRENTBAR.JAR
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\CHROME.MANIFEST
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\CONDUITAUTOCOMPLETESEARCH.JS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\CONDUITAUTOCOMPLETESEARCH.XPT
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\RADIOWMPCORE.DLL
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\RADIOWMPCORE.XPT
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\RADIOWMPCOREGECKO19.DLL
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\ALERTSETTINGSCOMPONENT.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\APPCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\ENGINECONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\ENGINESETTINGS.JSON
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\FBALERT.JS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\GETAPPSCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\POSTAPPSCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\TOOLBARCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\UNSHAREDAPPSCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\INSTALL.RDF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF\MANIFEST.MF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF\ZIGBERT.RSA
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF\ZIGBERT.SF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\CHAT.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\DATASTRUCTURES.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\EBENCRYPTION.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\EXTERNALLIBRARYLOADER.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\HTTP.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\IO.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\LOG.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\MAINSINGLETON.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\MD5.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\NOTIFICATIONS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\OBSERVERSANDEVENTS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\PREFS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\SEARCHPROTECTOR.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\SEARCHSUGGESTIO.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\STRING.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\TEAENCRYPTION.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\TIMER.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\TWITTER.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\URL.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\WINDOWS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\XML.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\SEARCHPLUGIN\CONDUIT.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\SETUP.INI
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\VERSION.TXT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\PROTECT\S-1-5-21-1659004503-1708537768-1801674531-500\1FD048E9-E024-4D80-AD71-208A39838D4C
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\CRYPTO\RSA\S-1-5-21-1659004503-1708537768-1801674531-500\A18CA4003DEB042BBEE7A40F15E1970B_E17EF422-72D0-4843-9F36-93D1C74DF894
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\DHT.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\DHT.DAT.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\RESUME.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\RESUME.DAT.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\SETTINGS.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\SETTINGS.DAT.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\CT2786678\UTORRENTBARAUTOUPDATEHELPER.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\CONDUITENGINE.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\ENGINESETTINGS.JSON
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\LDRCONDUITENGINE.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\TOOLBAR.CFG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\LDRTBUTOR.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\TBUTOR.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\TOOLBAR.CFG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CCIS\CCSQLH.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CCIS\SQLITE3.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CRTB.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CRXA.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IET3.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSB6.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSJE.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\UTT1.TMP.OLD
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\UTT2.TMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\XPI9.TMP
C:\DOCUMENTS AND SETTINGS\ALL USERS\DESKTOP\µTORRENT.LNK
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\µTORRENT.LNK
C:\PROGRAM FILES\CONDUIT\COMMUNITY ALERTS\ALERT.DLL
C:\PROGRAM FILES\CONDUITENGINE\APPCONTEXTMENU.XML
C:\PROGRAM FILES\CONDUITENGINE\CONDUITENGINE.DLL
C:\PROGRAM FILES\CONDUITENGINE\CONDUITENGINEHELPER.EXE
C:\PROGRAM FILES\CONDUITENGINE\CONDUITENGINEUNINSTALL.EXE
C:\PROGRAM FILES\CONDUITENGINE\ENGINECONTEXTMENU.XML
C:\PROGRAM FILES\CONDUITENGINE\ENGINESETTINGS.JSON
C:\PROGRAM FILES\CONDUITENGINE\LDRCONDUITENGINE.DLL
C:\PROGRAM FILES\CONDUITENGINE\PRXCONDUITENGINE.DLL
C:\PROGRAM FILES\CONDUITENGINE\TOOLBAR.CFG
C:\PROGRAM FILES\UTORRENT\UTORRENT.EXE
C:\PROGRAM FILES\UTORRENTBAR\GOTTENAPPSCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\LDRTBUTOR.DLL
C:\PROGRAM FILES\UTORRENTBAR\OTHERAPPSCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\PRXTBUTOR.DLL
C:\PROGRAM FILES\UTORRENTBAR\SHAREDAPPSCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\TBUTOR.DLL
C:\PROGRAM FILES\UTORRENTBAR\TOOLBAR.CFG
C:\PROGRAM FILES\UTORRENTBAR\TOOLBARCONTEXTMENU.XML
C:\PROGRAM FILES\UTORRENTBAR\UNINSTALL.EXE
C:\PROGRAM FILES\UTORRENTBAR\UTORRENTBARTOOLBARHELPER.EXE
C:\WINDOWS\SYSTEM32\CONDUITENGINE.TMP
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\CHROME\UTORRENTBAR.JAR
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\CHROME.MANIFEST
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\CONDUITAUTOCOMPLETESEARCH.JS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\CONDUITAUTOCOMPLETESEARCH.XPT
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\RADIOWMPCORE.DLL
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\RADIOWMPCORE.XPT
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS\RADIOWMPCOREGECKO19.DLL
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\ALERTSETTINGSCOMPONENT.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\APPCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\ENGINECONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\ENGINESETTINGS.JSON
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\FBALERT.JS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\GETAPPSCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\POSTAPPSCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\TOOLBARCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS\UNSHAREDAPPSCONTEXTMENU.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\INSTALL.RDF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF\MANIFEST.MF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF\ZIGBERT.RSA
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF\ZIGBERT.SF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\CHAT.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\DATASTRUCTURES.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\EBENCRYPTION.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\EXTERNALLIBRARYLOADER.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\HTTP.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\IO.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\LOG.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\MAINSINGLETON.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\MD5.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\NOTIFICATIONS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\OBSERVERSANDEVENTS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\PREFS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\SEARCHPROTECTOR.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\SEARCHSUGGESTIO.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\STRING.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\TEAENCRYPTION.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\TIMER.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\TWITTER.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\URL.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\WINDOWS.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES\XML.JSM
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\SEARCHPLUGIN\CONDUIT.XML
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\SETUP.INI
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\VERSION.TXT
FILES[ATTR]MODIFIED:4
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\PROTECT\S-1-5-21-1659004503-1708537768-1801674531-500\PREFERRED
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CE4CF87733651BF1F44DD1E02FC1A8E8
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\NGEN_SERVICE.LOG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CE4CF87733651BF1F44DD1E02FC1A8E8
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\NGEN_SERVICE.LOG
FOLDERS ADDED:33
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\CRYPTO
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\CRYPTO\RSA
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\CRYPTO\RSA\S-1-5-21-1659004503-1708537768-1801674531-500
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\APPS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\DLIMAGECACHE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\COMMUNITY ALERTS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\COMMUNITY ALERTS\LOG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\CT2786678
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\LOGS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\MYSTUFFAPPS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\TEMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\TEMP\LOGS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENT\CACHE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\LOGS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CCIS
C:\PROGRAM FILES\CONDUIT
C:\PROGRAM FILES\CONDUIT\COMMUNITY ALERTS
C:\PROGRAM FILES\CONDUITENGINE
C:\PROGRAM FILES\UTORRENT
C:\PROGRAM FILES\UTORRENTBAR
C:\EXTENSIONS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\CHROME
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\SEARCHPLUGIN
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\CRYPTO\RSA
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MICROSOFT\CRYPTO\RSA\S-1-5-21-1659004503-1708537768-1801674531-500
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\APPS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\UTORRENT\DLIMAGECACHE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\COMMUNITY ALERTS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\COMMUNITY ALERTS\LOG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUIT\CT2786678
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\LOGS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\CONDUITENGINE\MYSTUFFAPPS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\TEMP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\TEMP\LOGS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENT\CACHE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\UTORRENTBAR\LOGS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CCIS
C:\PROGRAM FILES\CONDUIT
C:\PROGRAM FILES\CONDUIT\COMMUNITY ALERTS
C:\PROGRAM FILES\CONDUITENGINE
C:\PROGRAM FILES\UTORRENT
C:\PROGRAM FILES\UTORRENTBAR
C:\EXTENSIONS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\CHROME
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\COMPONENTS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\DEFAULTS
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\META-INF
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\MODULES
C:\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\SEARCHPLUGIN
Related Files
I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit is required. Reviews. EULA. Privacy Policy.