Jump to content

pitalappy

Members
  • Posts

    2
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Hi Gringo, I have run AdwCleaner and Junkware-Removal-Tool, here are the corresponding logs. After a reboot, I tried downloading HijackThis from its sourceforge page and it is still failing the virus check performed on completion... Thanks for your help! # AdwCleaner v2.301 - Logfile created 06/01/2013 at 12:18:45 # Updated 16/05/2013 by Xplode # Operating system : Windows 7 Home Premium Service Pack 1 (32 bits) # User : Emily_x - JILL # Boot Mode : Normal # Running from : C:\Users\Public\AdwCleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** Folder Deleted : C:\Program Files\Conduit Folder Deleted : C:\Program Files\Search Guard Plus Folder Deleted : C:\Program Files\Search Guard PlusU Folder Deleted : C:\Program Files\SGPSA Folder Deleted : C:\Program Files\Viewpoint Folder Deleted : C:\ProgramData\Trymedia Folder Deleted : C:\ProgramData\Viewpoint Folder Deleted : C:\Users\Emily_x\AppData\Local\Temp\Iminent Folder Deleted : C:\Users\Emily_x\AppData\LocalLow\Conduit Folder Deleted : C:\Users\Emily_x\AppData\LocalLow\Toolbar4 Folder Deleted : C:\Users\Emily_x\AppData\LocalLow\uTorrentControl2 Folder Deleted : C:\Users\Emily_x\AppData\Roaming\Mozilla\Firefox\Profiles\ujof0tp0.default\ConduitCommon Folder Deleted : C:\Users\Emily_x\AppData\Roaming\Mozilla\Firefox\Profiles\ujof0tp0.default\CT3072253 Folder Deleted : C:\Users\Emily_x\AppData\Roaming\Mozilla\Firefox\Profiles\ujof0tp0.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} Folder Deleted : C:\Users\Emily_x\AppData\Roaming\Mozilla\Firefox\Profiles\ujof0tp0.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} Folder Deleted : C:\Users\MELT\AppData\LocalLow\AskToolbar Folder Deleted : C:\Users\MELT\AppData\LocalLow\Search Settings ***** [Registry] ***** Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl2 Key Deleted : HKCU\Software\AppDataLow\Toolbar Key Deleted : HKCU\Software\Iminent Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1B00725B-C455-4DE6-BFB6-AD540AD427CD} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4AAF2A6-F6D1-49A5-BA1A-B20735DF1955} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com Key Deleted : HKCU\Software\SGPUpdater Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1 Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1 Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072253 Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF} Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\Iminent Key Deleted : HKLM\Software\MetaStream Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9270B148-EEAA-42E8-8F9C-A4AA47FE1220} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D14E46BA-EB6B-4E36-8CDC-7F5347A6AC24} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08} Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4AAF2A6-F6D1-49A5-BA1A-B20735DF1955} Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP Key Deleted : HKLM\Software\uTorrentControl2 Key Deleted : HKLM\Software\Viewpoint Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{687578B9-7132-4A7A-80E4-30EE31099E03}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{687578B9-7132-4A7A-80E4-30EE31099E03}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16}] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{687578B9-7132-4A7A-80E4-30EE31099E03}] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [webbooster@iminent.com] ***** [internet Browsers] ***** -\\ Internet Explorer v10.0.9200.16576 [OK] Registry is clean. -\\ Mozilla Firefox v12.0 (en-GB) File : C:\Users\Emily_x\AppData\Roaming\Mozilla\Firefox\Profiles\ujof0tp0.default\prefs.js Deleted : user_pref("CT3072253..clientLogIsEnabled", false); Deleted : user_pref("CT3072253..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...] Deleted : user_pref("CT3072253..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...] Deleted : user_pref("CT3072253.ALLOW_SHOWING_HIDDEN_TOOLBAR", false); Deleted : user_pref("CT3072253.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx"); Deleted : user_pref("CT3072253.BrowserCompStateIsOpen_129573915102477663", true); Deleted : user_pref("CT3072253.BrowserCompStateIsOpen_129749445881800338", true); Deleted : user_pref("CT3072253.BrowserCompStateIsOpen_129805375651312503", true); Deleted : user_pref("CT3072253.CTID", "CT3072253"); Deleted : user_pref("CT3072253.CurrentServerDate", "4-6-2012"); Deleted : user_pref("CT3072253.DSInstall", false); Deleted : user_pref("CT3072253.DialogsAlignMode", "LTR"); Deleted : user_pref("CT3072253.DialogsGetterLastCheckTime", "Sun Jun 03 2012 18:01:25 GMT+0100 (GMT Daylight T[...] Deleted : user_pref("CT3072253.DownloadReferralCookieData", ""); Deleted : user_pref("CT3072253.EnableClickToSearchBox", false); Deleted : user_pref("CT3072253.EnableSearchHistory", false); Deleted : user_pref("CT3072253.EnableSearchSuggest", false); Deleted : user_pref("CT3072253.FirstServerDate", "4-6-2012"); Deleted : user_pref("CT3072253.FirstTime", true); Deleted : user_pref("CT3072253.FirstTimeFF3", true); Deleted : user_pref("CT3072253.FixPageNotFoundErrors", true); Deleted : user_pref("CT3072253.GroupingServerCheckInterval", 1440); Deleted : user_pref("CT3072253.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/"); Deleted : user_pref("CT3072253.HPInstall", false); Deleted : user_pref("CT3072253.HasUserGlobalKeys", true); Deleted : user_pref("CT3072253.Initialize", true); Deleted : user_pref("CT3072253.InitializeCommonPrefs", true); Deleted : user_pref("CT3072253.InstallationAndCookieDataSentCount", 1); Deleted : user_pref("CT3072253.InstallationId", "fft7113.tmp.exe"); Deleted : user_pref("CT3072253.InstallationType", "XPE"); Deleted : user_pref("CT3072253.InstalledDate", "Mon Jun 04 2012 01:07:21 GMT+0100 (GMT Daylight Time)"); Deleted : user_pref("CT3072253.IsGrouping", false); Deleted : user_pref("CT3072253.IsInitSetupIni", true); Deleted : user_pref("CT3072253.IsMulticommunity", false); Deleted : user_pref("CT3072253.IsOpenThankYouPage", true); Deleted : user_pref("CT3072253.IsOpenUninstallPage", false); Deleted : user_pref("CT3072253.LanguagePackLastCheckTime", "Sun Jun 03 2012 18:01:27 GMT+0100 (GMT Daylight Ti[...] Deleted : user_pref("CT3072253.LanguagePackReloadIntervalMM", 1440); Deleted : user_pref("CT3072253.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...] Deleted : user_pref("CT3072253.LastLogin_3.12.0.8", "Mon Jun 04 2012 01:07:22 GMT+0100 (GMT Daylight Time)"); Deleted : user_pref("CT3072253.LatestVersion", "3.13.0.6"); Deleted : user_pref("CT3072253.Locale", "en"); Deleted : user_pref("CT3072253.MCDetectTooltipHeight", "83"); Deleted : user_pref("CT3072253.MCDetectTooltipShow", false); Deleted : user_pref("CT3072253.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1"); Deleted : user_pref("CT3072253.MCDetectTooltipWidth", "295"); Deleted : user_pref("CT3072253.MyStuffEnabledAtInstallation", false); Deleted : user_pref("CT3072253.OriginalFirstVersion", "3.12.0.8"); Deleted : user_pref("CT3072253.SearchBackToDefaultEngine", false); Deleted : user_pref("CT3072253.SearchCaption", "uTorrentControl2 Customized Web Search"); Deleted : user_pref("CT3072253.SearchFromAddressBarIsInit", true); Deleted : user_pref("CT3072253.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...] Deleted : user_pref("CT3072253.SearchInNewTabEnabled", true); Deleted : user_pref("CT3072253.SearchInNewTabIntervalMM", 1440); Deleted : user_pref("CT3072253.SearchInNewTabLastCheckTime", "Mon Jun 04 2012 01:07:22 GMT+0100 (GMT Daylight [...] Deleted : user_pref("CT3072253.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...] Deleted : user_pref("CT3072253.SearchInNewTabUserEnabled", false); Deleted : user_pref("CT3072253.SendProtectorDataViaLogin", true); Deleted : user_pref("CT3072253.ServiceMapLastCheckTime", "Sun Jun 03 2012 18:01:23 GMT+0100 (GMT Daylight Time[...] Deleted : user_pref("CT3072253.SettingsLastCheckTime", "Mon Jun 04 2012 01:07:21 GMT+0100 (GMT Daylight Time)"[...] Deleted : user_pref("CT3072253.SettingsLastUpdate", "1337169810"); Deleted : user_pref("CT3072253.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072253&SearchSource=13"); Deleted : user_pref("CT3072253.ThirdPartyComponentsInterval", 504); Deleted : user_pref("CT3072253.ThirdPartyComponentsLastCheck", "Sun Jun 03 2012 18:01:23 GMT+0100 (GMT Dayligh[...] Deleted : user_pref("CT3072253.ThirdPartyComponentsLastUpdate", "1331805997"); Deleted : user_pref("CT3072253.ToolbarShrinkedFromSetup", false); Deleted : user_pref("CT3072253.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072253"); Deleted : user_pref("CT3072253.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...] Deleted : user_pref("CT3072253.UserID", "UN73709272829284890"); Deleted : user_pref("CT3072253.alertChannelId", "1463702"); Deleted : user_pref("CT3072253.approveUntrustedApps", true); Deleted : user_pref("CT3072253.autoDisableScopes", -1); Deleted : user_pref("CT3072253.backendstorage.cbcountry_000", "4742"); Deleted : user_pref("CT3072253.backendstorage.cbfirsttime", "4D6F6E204A756E20303420323031322030313A30373A32372[...] Deleted : user_pref("CT3072253.backendstorage.url_history0001", "687474703A2F2F7777772E66616365626F6F6B2E636F6[...] Deleted : user_pref("CT3072253.components.129573915102477663", false); Deleted : user_pref("CT3072253.components.129593762370823811", false); Deleted : user_pref("CT3072253.components.129749445881800338", false); Deleted : user_pref("CT3072253.components.129805375651312503", false); Deleted : user_pref("CT3072253.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...] Deleted : user_pref("CT3072253.globalFirstTimeInfoLastCheckTime", "Sun Jun 03 2012 18:01:23 GMT+0100 (GMT Dayl[...] Deleted : user_pref("CT3072253.homepageProtectorEnableByLogin", true); Deleted : user_pref("CT3072253.initDone", true); Deleted : user_pref("CT3072253.isAppTrackingManagerOn", true); Deleted : user_pref("CT3072253.isSearchProtectorNotifyChanges", false); Deleted : user_pref("CT3072253.myStuffEnabled", true); Deleted : user_pref("CT3072253.myStuffPublihserMinWidth", 400); Deleted : user_pref("CT3072253.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...] Deleted : user_pref("CT3072253.myStuffServiceIntervalMM", 1440); Deleted : user_pref("CT3072253.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...] Deleted : user_pref("CT3072253.navigateToUrlOnSearch", false); Deleted : user_pref("CT3072253.revertSettingsEnabled", true); Deleted : user_pref("CT3072253.searchProtectorDialogDelayInSec", 10); Deleted : user_pref("CT3072253.searchProtectorEnableByLogin", true); Deleted : user_pref("CT3072253.testingCtid", ""); Deleted : user_pref("CT3072253.toolbarAppMetaDataLastCheckTime", "Sun Jun 03 2012 18:01:23 GMT+0100 (GMT Dayli[...] Deleted : user_pref("CT3072253.toolbarContextMenuLastCheckTime", "Sun Jun 03 2012 18:01:34 GMT+0100 (GMT Dayli[...] Deleted : user_pref("CT3072253.usageEnabled", false); Deleted : user_pref("CT3072253.usagesFlag", 2); Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072253/CT3072253[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463702/1459356/UK", "\"0\"[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072253", [...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072253",[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"1c8[...] Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Emily_x\\AppData\\Roaming\\Mozilla\[...] Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.12.0.8"); Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://uk.search.yahoo.com/search?fr=gre[...] Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT3072253"); Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT3072253"); Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT3072253"); Deleted : user_pref("CommunityToolbar.globalUserId", "e6906da7-a6d1-4d5e-82c8-551fc3ac34d5"); Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sun Jun 03 2012 18:01:2[...] Deleted : user_pref("CommunityToolbar.notifications.alertEnabled", false); Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60); Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Mon Jun 04 2012 01:07:30 GMT+010[...] Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com"); Deleted : user_pref("CommunityToolbar.notifications.locale", "en"); Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440); Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sun Jun 03 2012 18:01:23 GMT+0100 (G[...] Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611"); Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20); Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com"); Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false); Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300); Deleted : user_pref("CommunityToolbar.notifications.userId", "f017af6a-7c4e-4ec1-a30c-8cd0ad2a699b"); Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.iminent.com/?appId=F5A0C82F-491E-4CD1-[...] Deleted : user_pref("CommunityToolbar.originalSearchEngine", "SearchTheWeb"); -\\ Google Chrome v27.0.1453.94 File : C:\Users\Emily_x\AppData\Local\Google\Chrome\User Data\Default\Preferences Deleted [l.2213] : homepage = "hxxp://search.iminent.com/?appId=F5A0C82F-491E-4CD1-A7DE-A47F81438A45", ************************* AdwCleaner[s1].txt - [21952 octets] - [01/06/2013 12:18:45] ########## EOF - C:\AdwCleaner[s1].txt - [22013 octets] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 4.9.4 (05.06.2013:1) OS: Windows 7 Home Premium x86 Ran by Emily_x on 01/06/2013 at 12:22:57.33 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0BEC4524-53E6-4CD5-85B2-CCC697C45C18} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{30BC4772-A654-49D6-979A-0489E2DF4C7F} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{E30675F3-9D85-48F8-8883-AACD8EFA62D9} ~~~ Files Successfully deleted: [File] "C:\Users\Public\Desktop\play more great games!.url" ~~~ Folders ~~~ FireFox Emptied folder: C:\Users\Emily_x\AppData\Roaming\mozilla\firefox\profiles\ujof0tp0.default\minidumps [4 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 01/06/2013 at 12:24:29.70 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  2. My friend has asked me to look at her laptop, I installed and scanned using 'MBAM' and 'Spybot S&D', removing detected crap. Microsoft Security Essentials cannot run, be removed or disabled. MSE flags all executables as suspect when downloading through browsers (IE9, FF, Chrome) - instant deletion... Help greatly appreciated! TIA DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 10.0.9200.16576 Run by Emily_x at 3:53:46 on 2013-06-01 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.1979.1146 [GMT 1:00] . AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508} . ============== Running Processes ================ . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\dgdersvc.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Users\Emily_x\AppData\Local\Temp\HBCD\HijackThis.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k HsfXAudioService C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.co.uk/webhp?hl=en&rls=com.microsoft:en-gb:IE-SearchBox&rlz=1I7ADBS&tab=iw uSearch Bar = hxxp://www.google.com/ie uSearch Page = hxxp://www.google.com uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=83&bd=Presario&pf=cnnb uDefault_Search_URL = hxxp://www.google.com/ie uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s uURLSearchHooks: {91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - <orphaned> uURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned> mURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned> BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll uRun: [MsnMsgr] "c:\program files\windows live\messenger\MsnMsgr.Exe" /background uRun: [skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun mRun: [hpWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe mRun: [QlbCtrl.exe] c:\program files\hewlett-packard\hp quick launch buttons\QlbCtrl.exe /Start uPolicies-Explorer: HideSCAHealth = dword:1 mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . TCP: NameServer = 192.168.1.1 TCP: Interfaces\{050BF374-0E70-48C6-8C24-9709DAE40353} : DHCPNameServer = 77.244.128.44 77.244.128.45 TCP: Interfaces\{B89D7A32-7C98-4AFB-BA3C-322EBBB7D6D7} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{B89D7A32-7C98-4AFB-BA3C-322EBBB7D6D7}\35B4956363632414 : DHCPNameServer = 192.168.0.1 TCP: Interfaces\{B89D7A32-7C98-4AFB-BA3C-322EBBB7D6D7}\455727C6569737 : DHCPNameServer = 192.168.2.1 TCP: Interfaces\{B89D7A32-7C98-4AFB-BA3C-322EBBB7D6D7}\632696478616D6 : DHCPNameServer = 192.168.2.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll Notify: igfxcui - igfxdev.dll SSODL: WebCheck - <orphaned> Hosts: 127.0.0.1 www.spywareinfo.com . ================= FIREFOX =================== . FF - ProfilePath - c:\users\emily_x\appdata\roaming\mozilla\firefox\profiles\ujof0tp0.default\ FF - prefs.js: browser.search.selectedEngine - FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/ FF - prefs.js: keyword.URL - hxxp://uk.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p= FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\program files\google\picasa3\npPicasa3.dll FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.145\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.53\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.57\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.65\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.69\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - plugin: c:\users\emily_x\appdata\local\google\update\1.3.21.145\npGoogleUpdate3.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_202.dll FF - ExtSQL: !HIDDEN! 2010-01-02 12:41; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension . ============= SERVICES / DRIVERS =============== . R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-12-30 64288] R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-1-20 195296] R2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2009-10-26 95568] R2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe -k HsfXAudioService [2009-7-14 20992] R3 Com4QLBEx;Com4QLBEx;c:\program files\hewlett-packard\hp quick launch buttons\Com4QLBEx.exe [2010-1-2 228408] R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2009-10-26 18136] R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2008-6-30 112128] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [2009-7-14 20992] S2 gupdate1c989df4332e110;Google Update Service (gupdate1c989df4332e110);c:\program files\google\update\GoogleUpdate.exe [2009-2-8 133104] S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2011-4-27 100328] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-1-8 161536] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888] S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010-3-1 36608] S3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [2013-5-31 16472] S3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [2013-5-31 11104] S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2010-3-2 90112] S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2010-3-2 14976] S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2010-3-2 121856] S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\drivers\ss_bserd.sys [2010-3-2 98560] S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-7-16 52224] S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-6-10 1343400] S4 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-3-1 233472] S4 Recovery Service for Windows;Recovery Service for Windows;c:\windows\sminst\BLService.exe [2008-8-2 361808] . =============== Created Last 30 ================ . 2013-05-31 22:54:53 -------- d-----w- c:\program files\Spybot - Search & Destroy 2013-05-31 21:15:38 -------- d-----w- c:\users\emily_x\Doctor Web 2013-05-31 19:26:47 747592 ----a-w- c:\windows\system32\pwNative.exe 2013-05-31 19:26:46 16472 ------w- c:\windows\system32\pwdrvio.sys 2013-05-31 19:25:43 11104 ------w- c:\windows\system32\pwdspio.sys 2013-05-31 18:54:55 -------- d-----w- c:\users\emily_x\appdata\local\Seven Zip 2013-05-29 15:26:07 -------- d-----w- c:\users\emily_x\appdata\roaming\Malwarebytes 2013-05-29 15:25:58 -------- d-----w- c:\programdata\Malwarebytes 2013-05-29 15:25:57 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-05-29 15:25:57 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-05-29 15:25:42 -------- d-----w- c:\users\emily_x\appdata\local\Programs 2013-05-23 14:48:38 -------- d-----w- c:\programdata\0389CD0E184B080400000389C9890CC2 2013-05-23 11:32:13 7016152 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{9a6c9a27-ba9e-47a4-b10c-8c79840b4e16}\mpengine.dll 2013-05-22 10:53:11 724464 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{f40c19d7-3a8c-440f-bd39-f579d1a738ef}\gapaengine.dll 2013-05-22 10:51:24 7016152 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll 2013-05-15 04:40:08 2347520 ----a-w- c:\windows\system32\win32k.sys 2013-05-15 04:39:51 728424 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-05-15 04:39:51 218984 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2013-05-15 04:39:37 1796096 ----a-w- c:\windows\system32\authui.dll 2013-05-15 04:39:37 101720 ----a-w- c:\windows\system32\consent.exe 2013-05-15 04:39:36 47104 ----a-w- c:\windows\system32\appinfo.dll . ==================== Find3M ==================== . 2013-05-17 10:51:57 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-05-17 10:51:55 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-05-02 15:28:50 238872 ------w- c:\windows\system32\MpSigStub.exe 2013-05-01 04:36:44 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-04-12 13:45:29 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-04-05 05:28:24 1767424 ----a-w- c:\windows\system32\wininet.dll 2013-04-05 05:26:26 2877440 ----a-w- c:\windows\system32\jscript9.dll 2013-04-05 05:26:21 61440 ----a-w- c:\windows\system32\iesetup.dll 2013-04-05 05:26:21 109056 ----a-w- c:\windows\system32\iesysprep.dll 2013-04-05 04:29:45 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-04-05 03:38:25 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2013-04-02 14:09:52 4550656 ----a-w- c:\windows\system32\GPhotos.scr 2013-03-19 05:04:13 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-03-19 05:04:10 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-03-19 04:48:45 38912 ----a-w- c:\windows\system32\csrsrv.dll 2013-03-19 02:49:16 69632 ----a-w- c:\windows\system32\smss.exe . ============= FINISH: 3:56:37.38 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 02/01/2010 13:32:24 System Uptime: 01/06/2013 01:46:05 (2 hours ago) . Motherboard: Wistron | | 3612 Processor: Genuine Intel® CPU 575 @ 2.00GHz | CPU | 1995/667mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 112 GiB total, 16.333 GiB free. E: is CDROM (CDFS) . ==== Disabled Device Manager Items ============= . Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1} Description: adfs Device ID: ROOT\LEGACY_ADFS\0000 Manufacturer: Name: adfs PNP Device ID: ROOT\LEGACY_ADFS\0000 Service: adfs . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . 72-7730 Interface Program Ver 3.00 ABBYY FineReader 6.0 Sprint Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Shockwave Player Adobe Shockwave Player 11.5 Atheros Driver Installation Program CCleaner Conexant HD Audio CyberLink DVD Suite CyberLink YouCam ESU for Microsoft Vista Foxit Reader Google Chrome Google Toolbar for Internet Explorer Google Update Helper HDAUDIO Soft Data Fax Modem with SmartCP Hewlett-Packard Active Check for Health Check Hewlett-Packard Asset Agent for Health Check HP Active Support Library HP Doc Viewer HP DVD Play 3.7 HP Quick Launch Buttons HP User Guides 0118 HP Wireless Assistant HPNetworkAssistant Insaniquarium Deluxe 1.1 Intel® Graphics Media Accelerator Driver Intel® TV Wizard Junk Mail filter update Kies LabelPrint LightScribe System Software 1.12.33.2 LiveUpdate (Symantec Corporation) LucasArts' Curse of Monkey Island Malwarebytes Anti-Malware version 1.75.0.1300 Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Choice Guard Microsoft Security Client Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Mozilla Firefox 12.0 (x86 en-GB) Mozilla Maintenance Service MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) OGA Notifier 2.0.0048.0 Paint.NET v3.5.10 PC Connectivity Solution Picasa 3 Plants vs. Zombies Plants vs. Zombies QLBCASL QuickTime Realtek 8169 8168 8101E 8102E Ethernet Driver Realtek USB 2.0 Card Reader SAMSUNG USB Driver for Mobile Phones Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Skype™ 6.1 Spybot - Search & Destroy Synaptics Pointing Device Driver Viewpoint Media Player Visual C++ 2008 x86 Runtime - (v9.0.30729) Visual C++ 2008 x86 Runtime - v9.0.30729.01 VLC media player 1.0.3 Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Photo Gallery Windows Live Sign-in Assistant Windows Live Sync Windows Live Upload Tool Windows Live Writer Windows Mobile Device Updater Component WinRAR 4.00 beta 3 (32-bit) Zune Zune Language Pack (CHS) Zune Language Pack (CHT) Zune Language Pack (CSY) Zune Language Pack (DAN) Zune Language Pack (DEU) Zune Language Pack (ELL) Zune Language Pack (ESP) Zune Language Pack (FIN) Zune Language Pack (FRA) Zune Language Pack (HUN) Zune Language Pack (IND) Zune Language Pack (ITA) Zune Language Pack (JPN) Zune Language Pack (KOR) Zune Language Pack (MSL) Zune Language Pack (NLD) Zune Language Pack (NOR) Zune Language Pack (PLK) Zune Language Pack (PTB) Zune Language Pack (PTG) Zune Language Pack (RUS) Zune Language Pack (SVE) . ==== Event Viewer Messages From Past Week ======== . 31/05/2013 23:47:22, Error: Service Control Manager [7003] - The IPsec Policy Agent service depends the following service: BFE. This service might not be installed. 31/05/2013 23:47:21, Error: Service Control Manager [7003] - The Microsoft Network Inspection System service depends the following service: BFE. This service might not be installed. 31/05/2013 23:47:21, Error: Service Control Manager [7003] - The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed. 31/05/2013 23:47:19, Error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service. 31/05/2013 23:47:19, Error: Service Control Manager [7000] - The adfs service failed to start due to the following error: The system cannot find the file specified. 31/05/2013 23:47:15, Error: Service Control Manager [7000] - The Microsoft Antimalware Service service failed to start due to the following error: The system cannot find the file specified. 31/05/2013 20:10:36, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Spooler service. 31/05/2013 19:59:02, Error: Service Control Manager [7000] - The Microsoft Antimalware Service service failed to start due to the following error: Access is denied. 28/05/2013 21:22:43, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service SkypeUpdate with arguments "/ComService" in order to run the server: {CC957078-B838-47C4-A7CF-626E7A82FC58} 28/05/2013 20:48:29, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030} 28/05/2013 20:48:29, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} 28/05/2013 20:48:19, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} 28/05/2013 20:48:13, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC} 28/05/2013 20:48:03, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache MpFilter spldr Wanarpv6 28/05/2013 20:48:02, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start. 01/06/2013 03:26:57, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: %%-2147024891 01/06/2013 03:26:57, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: %%-2147024891 . ==== End Of File ===========================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.