Jump to content

Recommended Posts

I have tried everything from TDSKiller, mbam, kickstart, nothing can get rid of this....  Please Help!  Here are the 2 logs

 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 10.0.9200.16750

Run by Janet at 12:08:50 on 2014-01-03

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6103.3534 [GMT -8:00]

.

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\atieclxx.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Windows\SysWOW64\atashost.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files (x86)\Highlightly\Service\hlsvc.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\regsvr32.exe

C:\Windows\SysWOW64\regsvr32.exe

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\SearchIndexer.exe

C:\Windows\System32\WUDFHost.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Windows\System32\MsSpellCheckingFacility.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Windows\Downloaded Program Files\LMIGuardianSvc.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll

BHO: Pop-up Blocker: {52706EF7-D7A2-49AD-A615-E903858CF284} - C:\Program Files (x86)\JunoInternet\qsacc\X1IEBHO.dll

BHO: Highlightly: {83F2328D-0D6A-42B4-B0C4-02A929EDD4BE} - C:\Program Files (x86)\Highlightly\IE\HighlightlyClientIE.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll

BHO: SingleInstance Class: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll

BHO: Juno Toolbar Helper: {FE3098B1-04A3-41fd-8CA9-BEA39CB14C87} - C:\Program Files (x86)\JunoInternet\UCReg.dll

TB: Microsoft Live Search Toolbar: {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll

TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

uRun: [Awzdworks] regsvr32.exe C:\Users\Janet\AppData\Local\Awzdworks\QSCLib24.dll

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

dRunOnce: [spUninstallDeleteDir] rmdir /s /q "C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect"

uPolicies-Explorer: NoDriveTypeAutoRun = dword:145

uPolicies-Explorer: TaskbarNoNotification = dword:1

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: TaskbarNoNotification = dword:1

mPolicies-Explorer: HideSCAHealth = dword:1

mPolicies-Explorer: NoDrives = dword:0

mPolicies-System: ConsentPromptBehaviorAdmin = dword:0

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableLUA = dword:0

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-System: PromptOnSecureDesktop = dword:0

mPolicies-Explorer: TaskbarNoNotification = dword:1

mPolicies-Explorer: HideSCAHealth = dword:1

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

Trusted Zone: juno.com

DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{1D68AAA5-A59D-4D2B-B95C-045EA863EC62} : DHCPNameServer = 192.168.1.1

Handler: junomsg - {C4D10830-379D-11d4-9B2D-00C04F1579A5} - C:\Program Files (x86)\Juno\bin\jmsgpph.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-BHO: Highlightly: {83F2328D-0D6A-42B4-B0C4-02A929EDD4BE} - C:\Program Files\Highlightly\IE\HighlightlyClientIE.dll

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-Run: [PC-Doctor for Windows localizer] C:\Program Files\PC-Doctor for Windows\localizer.exe

x64-Handler: junomsg - {C4D10830-379D-11d4-9B2D-00C04F1579A5} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Janet\AppData\Roaming\Mozilla\Firefox\Profiles\4ur5upp1.default\

FF - ExtSQL: 2013-12-27 20:25; gethighlightly@gethighlightly.com; C:\Program Files (x86)\Mozilla Firefox\extensions\gethighlightly@gethighlightly.com

FF - ExtSQL: !HIDDEN! 2013-12-27 20:25; gethighlightly@gethighlightly.com; C:\Program Files (x86)\Mozilla Firefox\extensions\gethighlightly@gethighlightly.com

.

============= SERVICES / DRIVERS ===============

.

R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2010-6-11 55024]

R1 hlnfd;hlnfd;C:\Windows\System32\drivers\hlnfd.sys [2013-12-4 58256]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-8-23 203264]

R2 atashost;WebEx Service Host for Support Center;C:\Windows\SysWOW64\atashost.exe [2012-10-26 135272]

R2 hlsvc;Highlightly Client Service;C:\Program Files (x86)\Highlightly\Service\hlsvc.exe [2013-12-4 273000]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-5-31 13336]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-3 418376]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-3 701512]

R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-5-31 56344]

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-1-3 25928]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-5-31 239616]

R3 t3;Sound Blaster X-Fi Xtreme Audio;C:\Windows\System32\drivers\t3.sys [2010-5-31 639512]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 HitmanPro37CrusaderBoot;HitmanPro 3.7 Crusader (Boot);"J:\HitmanPro_x64.exe" /crusader:boot --> J:\HitmanPro_x64.exe [?]

S3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-9-6 169312]

S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2013-11-3 57840]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2013-2-5 1512448]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-5-13 19456]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-5-13 57856]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-6-22 1255736]

S3 WSDScan;WSD Scan Support via UMB;C:\Windows\System32\drivers\WSDScan.sys [2009-7-13 25088]

S4 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-5-31 79360]

S4 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-5-31 79360]

S4 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]

.

=============== File Associations ===============

.

.chm: <filetype is not registered>

.

=============== Created Last 30 ================

.

2014-01-03 20:00:01 -------- d-sh--w- C:\$RECYCLE.BIN

2014-01-03 19:49:26 98816 ----a-w- C:\Windows\sed.exe

2014-01-03 19:49:26 256000 ----a-w- C:\Windows\PEV.exe

2014-01-03 19:49:26 208896 ----a-w- C:\Windows\MBR.exe

2014-01-03 19:44:57 12872 ----a-w- C:\Windows\System32\bootdelete.exe

2014-01-03 19:37:27 -------- d-----w- C:\ProgramData\HitmanPro

2014-01-03 19:33:03 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2014-01-03 19:33:03 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-01-03 19:22:12 -------- d-----w- C:\TDSSKiller_Quarantine

2014-01-03 19:12:47 6851408 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll

2014-01-03 19:12:34 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{58D20C89-A99F-4AD4-AF40-FDCE4071E3F0}\mpengine.dll

2014-01-03 18:39:12 488 ----a-w- C:\FixitRegBackup.reg

2014-01-03 18:25:41 -------- d-----w- C:\Program Files\WhoCrashed

2013-12-31 19:01:32 -------- d-----w- C:\Program Files (x86)\Common Files\Sonic Shared

2013-12-31 19:01:31 -------- d-----w- C:\Program Files (x86)\Common Files\PX Storage Engine

2013-12-30 17:50:23 -------- d-----w- C:\Users\Janet\AppData\Roaming\Malwarebytes

2013-12-30 17:50:11 -------- d-----w- C:\ProgramData\Malwarebytes

2013-12-28 06:56:26 -------- d-----w- C:\AdwCleaner

2013-12-28 04:25:48 -------- d-----w- C:\temp

2013-12-28 04:25:42 -------- d-----w- C:\Program Files\Highlightly

2013-12-28 04:25:41 -------- d-----w- C:\Program Files (x86)\Highlightly

2013-12-28 04:25:29 -------- d-----w- C:\Users\Janet\AppData\Local\CRE

2013-12-28 01:11:27 -------- d-----w- C:\Program Files (x86)\downloaditkeeeep

2013-12-26 06:34:08 -------- d-----w- C:\Users\Janet\AppData\Local\Awzdworks

2013-12-23 17:12:14 -------- d-----w- C:\ProgramData\idlnanommmjplmoadpopblbdhphppnlm

2013-12-23 17:12:14 -------- d-----w- C:\ProgramData\downloaditkeeeep

2013-12-23 17:12:06 -------- d-----w- C:\ProgramData\8a31daa00f2f9eb5

2013-12-10 22:46:41 3155968 ----a-w- C:\Windows\System32\win32k.sys

.

==================== Find3M ====================

.

2013-12-10 22:24:17 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-12-10 22:24:17 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-12-04 19:46:36 58256 ----a-w- C:\Windows\System32\drivers\hlnfd.sys

2013-11-26 20:25:52 267936 ------w- C:\Windows\System32\MpSigStub.exe

2013-11-12 02:23:09 2048 ----a-w- C:\Windows\System32\tzres.dll

2013-11-12 02:07:29 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2013-10-25 06:19:22 2241536 ----a-w- C:\Windows\System32\wininet.dll

2013-10-25 06:17:57 3959808 ----a-w- C:\Windows\System32\jscript9.dll

2013-10-25 06:17:52 67072 ----a-w- C:\Windows\System32\iesetup.dll

2013-10-25 06:17:52 136704 ----a-w- C:\Windows\System32\iesysprep.dll

2013-10-25 04:45:11 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll

2013-10-25 04:43:42 2877952 ----a-w- C:\Windows\SysWow64\jscript9.dll

2013-10-25 04:43:38 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll

2013-10-25 04:43:38 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll

2013-10-25 04:07:48 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

2013-10-25 03:41:01 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2013-10-25 03:17:49 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-10-25 02:49:34 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe

2013-10-19 02:18:57 81408 ----a-w- C:\Windows\System32\imagehlp.dll

2013-10-19 01:36:59 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll

2013-10-12 02:32:04 150016 ----a-w- C:\Windows\System32\wshom.ocx

2013-10-12 02:31:04 202752 ----a-w- C:\Windows\System32\scrrun.dll

2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll

2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL

2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL

2013-10-12 02:04:36 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx

2013-10-12 02:03:31 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll

2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll

2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL

2013-10-12 01:33:39 156160 ----a-w- C:\Windows\System32\cscript.exe

2013-10-12 01:33:26 168960 ----a-w- C:\Windows\System32\wscript.exe

2013-10-12 01:15:48 141824 ----a-w- C:\Windows\SysWow64\wscript.exe

2013-10-12 01:15:48 126976 ----a-w- C:\Windows\SysWow64\cscript.exe

2013-10-05 20:25:35 1474048 ----a-w- C:\Windows\System32\crypt32.dll

.

============= FINISH: 12:09:13.29 ===============

 

 

 

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 6/9/2010 11:26:45 PM

System Uptime: 1/3/2014 12:00:50 PM (0 hours ago)

.

Motherboard: MSI | | IONA

Processor: Intel® Core™ i7 CPU 870 @ 2.93GHz | CPU 1 | 2934/133mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 687 GiB total, 543.228 GiB free.

D: is FIXED (NTFS) - 11 GiB total, 1.636 GiB free.

E: is CDROM (CDFS)

F: is Removable

G: is Removable

H: is Removable

I: is Removable

K: is FIXED (NTFS) - 827 GiB total, 487.776 GiB free.

.

==== Disabled Device Manager Items =============

.

Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318}

Description: Photosmart 7510 series

Device ID: ROOT\MULTIFUNCTION\0000

Manufacturer: HP

Name: Photosmart 7510 series

PNP Device ID: ROOT\MULTIFUNCTION\0000

Service:

.

==== System Restore Points ===================

.

RP620: 1/3/2014 11:15:34 AM - ComboFix created restore point

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

Activation Assistant for the 2007 Microsoft Office suites

ActiveCheck component for HP Active Support Library

Adobe Acrobat 4.0

Adobe AIR

Adobe Flash Player 11 ActiveX

Adobe PhotoDeluxe Home Edition 4.0

Adobe Photoshop Elements 8.0

Adobe Photoshop.com Inspiration Browser

Adobe Premiere Elements 8.0

Adobe Reader X (10.1.8)

Apple Application Support

Apple Mobile Device Support

Apple Software Update

ATI Catalyst Install Manager

Avery Wizard 4.0

Bonjour

Canon Easy-PhotoPrint EX

Canon Easy-WebPrint EX

Canon MP Navigator EX 5.1

Canon MX890 series MP Drivers

Canon MX890 series On-screen Manual

Canon MX890 series User Registration

Canon My Printer

Canon Solution Menu EX

Canon Speed Dial Utility

Catalyst Control Center - Branding

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Common

Catalyst Control Center Graphics Previews Vista

Catalyst Control Center HydraVision Full

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

ccc-core-static

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Cisco WebEx Meetings

Compatibility Pack for the 2007 Office system

Coupon Printer for Windows

Creative Audio Control Panel

Creative Software AutoUpdate

Creative Sound Blaster Properties x64 Edition

D3DX10

DesignPro 5

DirectX for Managed Code Update (Summer 2004)

DMUninstaller

Dropbox

DVD Menu Pack for HP MediaSmart Video

eFax Messenger

Family Tree Maker 2011

Google Chrome

Google Update Helper

Hardware Diagnostic Tools

High-Definition Video Playback 10

Highlightly

Host OpenAL

HP Customer Experience Enhancements

HP Games

HP MAINSTREAM KEYBOARD

HP MediaSmart Demo

HP MediaSmart DVD

HP MediaSmart Music/Photo/Video

HP MediaSmart SmartMenu

HP MediaSmart/TouchSmart Netflix

HP Odometer

HP Photosmart 7510 series Basic Device Software

HP Photosmart 7510 series Help

HP Photosmart 7510 series Product Improvement Study

HP Remote Solution

HP Setup

HP Support Assistant

HP Support Information

HPAsset component for HP Active Support Library

HydraVision

Intel® Rapid Storage Technology

iTunes

Junk Mail filter update

Juno Internet

Malwarebytes Anti-Malware version 1.75.0.1300

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft Application Error Reporting

Microsoft Live Search Toolbar

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Excel MUI (English) 2007

Microsoft Office File Validation Add-In

Microsoft Office Home and Student 2007

Microsoft Office Office 64-bit Components 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint Viewer 2007 (English)

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Shared 64-bit MUI (English) 2007

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Primary Interoperability Assemblies 2005

Microsoft Save as PDF Add-in for 2007 Microsoft Office programs

Microsoft Silverlight

Microsoft SkyDrive

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2005 Redistributable (x64)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft Works

Microsoft WSE 3.0 Runtime

Movie Maker

Movie Theme Pack for HP MediaSmart Video

Mozilla Firefox 9.0.1 (x86 en-US)

MSVCRT

MSVCRT_amd64

MSVCRT110

MSVCRT110_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nero 10 Menu TemplatePack Basic

Nero 10 Movie ThemePack Basic

Nero BackItUp 10

Nero BackItUp 10 Help (CHM)

Nero Burning ROM 10

Nero BurningROM 10 Help (CHM)

Nero BurnRights 10

Nero BurnRights 10 Help (CHM)

Nero Control Center 10

Nero ControlCenter 10 Help (CHM)

Nero Core Components 10

Nero CoverDesigner 10

Nero CoverDesigner 10 Help (CHM)

Nero DiscSpeed 10

Nero DiscSpeed 10 Help (CHM)

Nero Dolby Files 10

Nero Express 10

Nero Express 10 Help (CHM)

Nero InfoTool 10

Nero InfoTool 10 Help (CHM)

Nero MediaHub 10

Nero MediaHub 10 Help (CHM)

Nero Multimedia Suite 10

Nero Recode 10

Nero Recode 10 Help (CHM)

Nero RescueAgent 10

Nero RescueAgent 10 Help (CHM)

Nero SoundTrax 10

Nero SoundTrax 10 Help (CHM)

Nero StartSmart 10

Nero StartSmart 10 Help (CHM)

Nero Update

Nero Vision 10

Nero Vision 10 Help (CHM)

Nero WaveEditor 10

Nero WaveEditor 10 Help (CHM)

PDFCreator

Photo Common

Photo Gallery

Picasa 3

PictureMover

PlayReady PC Runtime amd64

QuickTime

Recovery Manager

Savings Bond Wizard

ScorpionSaver

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition

Shared C Run-time for x64

SlideShow Expressions

SmartSound Quicktracks for Premiere Elements 8.0

Sound Blaster X-Fi

Spelling Dictionaries Support For Adobe Reader 9

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

WhoCrashed 5.00

Windows Live Communications Platform

Windows Live Essentials

Windows Live Family Safety

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mail

Windows Live Messenger

Windows Live MIME IFilter

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Media Encoder 9 Series

WinX Free WMV to AVI Converter 2.0.7

Yahoo! Install Manager

Yahoo! Software Update

Yahoo! Toolbar

.

==== Event Viewer Messages From Past Week ========

.

12/31/2013 11:31:02 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880ae5749b0, 0x0000000000000001, 0xfffffa80088922e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 123113-22011-01.

12/31/2013 11:24:50 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880b2727ba0, 0x0000000000000001, 0xfffffa80088992e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 123113-22869-01.

12/31/2013 10:18:51 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880ae620fb0, 0x0000000000000001, 0xfffffa80088ad2e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 123113-40310-01.

12/30/2013 8:39:50 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880ae8071b0, 0x0000000000000001, 0xfffffa80088652e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 123013-17846-01.

12/30/2013 8:35:42 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880b70033b0, 0x0000000000000001, 0xfffffa80087f82e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 123013-21200-01.

12/30/2013 7:03:56 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000019 (0x0000000000000003, 0xfffff8000341d750, 0xfffff8000341d750, 0xfffffa800c5e3160). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 123013-17940-01.

12/30/2013 4:16:33 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk5\DR5.

12/30/2013 11:49:46 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x000004a000000097, 0x0000000000000002, 0x0000000000000001, 0xfffff800032a8626). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 123013-18876-01.

12/29/2013 9:32:26 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff8000331417b, 0x0000000000000000, 0x00000000000002e0). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-21496-01.

12/29/2013 9:07:00 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff800032e0e61, 0x0000000000000000, 0xffffffffffffffff). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-20467-01.

12/29/2013 8:14:44 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880ae45f3b0, 0x0000000000000001, 0xfffffa80088352e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-18532-01.

12/29/2013 7:54:10 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffffa8008884bb0, 0x0000000000000000, 0x000000007efa8000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-22432-01.

12/29/2013 6:43:08 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x00000000437872dc, 0x0000000000000002, 0x0000000000000001, 0xfffff800032a3626). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-18688-01.

12/29/2013 6:13:02 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000c5 (0x0000000000000008, 0x0000000000000002, 0x0000000000000000, 0xfffff800033bfb05). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-16504-01.

12/29/2013 5:39:49 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff800035bf93a, 0x0000000000000001, 0x0000000000000018). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-20404-01.

12/29/2013 4:41:35 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880b468fdb0, 0x0000000000000001, 0xfffffa80088992e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-20670-01.

12/29/2013 4:27:48 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880abc82fb0, 0x0000000000000001, 0xfffffa80088b52e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-66752-01.

12/29/2013 4:15:05 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880af3101b0, 0x0000000000000001, 0xfffffa80088c42e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-17893-01.

12/29/2013 4:11:35 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880b7e263b0, 0x0000000000000001, 0xfffffa800884a2e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-18283-01.

12/29/2013 4:07:22 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880ae5b95b0, 0x0000000000000001, 0xfffffa80088b42e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-17456-01.

12/29/2013 4:02:19 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880af87b7b0, 0x0000000000000001, 0xfffffa80088ec2e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-19156-01.

12/29/2013 11:20:15 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff800032bc17b, 0x0000000000000000, 0x00000000000002e0). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-23587-01.

12/29/2013 10:39:54 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

12/29/2013 10:37:08 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Live ID Sign-in Assistant service to connect.

12/29/2013 10:37:08 PM, Error: Service Control Manager [7000] - The Windows Live ID Sign-in Assistant service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

12/29/2013 10:36:02 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880ae2451b0, 0x0000000000000001, 0xfffffa80088cb2e6, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122913-15740-01.

12/28/2013 1:09:09 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000000088, 0x0000000000000002, 0x0000000000000001, 0xfffff80003271626). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122813-18782-01.

1/3/2014 12:03:25 PM, Error: Service Control Manager [7023] - The HP Network Devices Support service terminated with the following error: The specified module could not be found.

1/3/2014 12:02:23 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

1/3/2014 12:01:47 PM, Error: Service Control Manager [7023] - The Peer Name Resolution Protocol service terminated with the following error: %%-2140993535

1/3/2014 12:01:47 PM, Error: Service Control Manager [7001] - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: %%-2140993535

1/3/2014 12:01:47 PM, Error: Microsoft-Windows-PNRPSvc [102] - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.

1/3/2014 12:01:24 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: TfFsMon TfSysMon

1/3/2014 12:01:03 PM, Error: Service Control Manager [7000] - The HitmanPro 3.7 Crusader (Boot) service failed to start due to the following error: The system cannot find the file specified.

1/3/2014 11:58:24 AM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

1/3/2014 11:37:27 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Intel® Rapid Storage Technology service to connect.

1/3/2014 11:37:27 AM, Error: Service Control Manager [7000] - The Intel® Rapid Storage Technology service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

1/3/2014 11:05:29 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wlidsvc service.

1/3/2014 11:03:26 AM, Error: Application Popup [1060] - \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

1/3/2014 10:57:01 AM, Error: Service Control Manager [7024] - The HomeGroup Listener service terminated with service-specific error %%-2147023143.

1/3/2014 10:32:00 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1005] - Unable to produce a minidump file from the full dump file.

1/3/2014 10:32:00 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffffa8008879bb0, 0x0000000000000000, 0x000000007efa8000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: .

1/3/2014 10:28:43 AM, Error: Service Control Manager [7034] - The MBAMService service terminated unexpectedly. It has done this 1 time(s).

1/2/2014 8:35:10 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff800035cd93a, 0x0000000000000001, 0x0000000000000018). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 010214-32058-01.

1/2/2014 11:02:09 AM, Error: Microsoft Antimalware [2001] -

1/2/2014 10:52:02 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000019 (0x0000000000000003, 0xfffff80003410b90, 0xfffff80003410b90, 0xfffffa800b3d12b0). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 010214-21060-01.

1/1/2014 3:16:06 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.

1/1/2014 11:14:35 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x00000000437872dc, 0x0000000000000002, 0x0000000000000001, 0xfffff800032bb626). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 010114-18111-01.

.

==== End Of File ===========================

Link to post
Share on other sites

Hello bradnts and :welcome:! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.
Step 1

Please uninstall the following applications:

Coupon Printer for Windows

Highlightly

ScorpionSaver

Step 2

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 3

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan button. Wait until is finished.
  • Click on Clean.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner\AdwCleaner[s0].txt as well.
Step 4
  • Launch Malwarebytes' Anti-Malware
  • Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

In your next reply, post the following log files:

  • Junkware Removal Tool log
  • AdwCleaner log
  • Malwarebytes' Anti-Malware log
Link to post
Share on other sites

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 7 Home Premium x64
Ran by Janet on Mon 01/06/2014 at 11:15:15.05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1963951444-3979393997-3198646817-1000\Software\Microsoft\Internet Explorer\Main\\Start Page

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011301126}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\msntask_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\msntask_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011301126}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\msntask_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\msntask_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{cacbbc6f-edae-4b65-a182-45b4be8c03ea}

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Users\Janet\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\Janet\appdata\local\cre"
Successfully deleted: [Folder] "C:\Program Files (x86)\wiseconvert"
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{01F5E952-122D-468E-9C35-584342475AC9}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{04F27D79-E3D1-4189-9834-591A16B35532}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{055F0C6A-AF97-42D6-B20D-70E9B3630DF6}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{06C462B3-9A24-4489-BF36-1469AC6C6647}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{0C170CC0-D4DF-4F09-B7E6-A65F2A287B90}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{0D55A3BB-D9B5-4FBB-8589-DBB8790A5BD4}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{0D57B717-B28C-4B9B-B5C9-057275A8F5E2}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{0EA13CCE-2BAF-4F3A-BD07-B932024EB588}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{0EB9D33C-7C51-4DD0-933E-A4CF8B71999D}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{0EEDCC7D-D801-4261-A1CF-C747DCBCE07C}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{116C4B71-1CC6-44A0-836C-839912D29758}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{11EAEDEE-BF7C-4053-9E8A-4693659F28F7}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{199B3A8E-DC85-4F2F-874A-27566E3FCF53}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{1AF3114F-C68F-427C-82DA-566BF8935BDD}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{1ED7805E-C4BD-4162-A105-55F3A41659C4}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{2002D971-92AD-4166-B3DF-FF9D3E631241}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{20A412B7-2A50-41B1-B447-7EE5BDECA528}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{2359F02D-7D29-454A-A5AF-7195374FBD50}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{2368485C-ABFC-40DB-8B3A-AD7D0FDDDC18}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{23B706DD-4031-4C16-BD51-ED19E2876A39}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{23C19601-0AF7-4046-A87E-336B01425A5F}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{29583DFC-61D4-4736-8213-A6F8949DB06D}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{299CC983-9BD7-4E02-B4C2-B8C70789DBE4}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{2E3C33C3-8477-4A64-97D0-390D781876EC}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{2E991FB9-169B-4E48-B2C6-11DE4263255D}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{2F94861F-D0E5-49A2-BE28-3E06BC9DE171}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{303BA092-773B-4EC6-84E6-753DFBD98A52}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{3862F857-FC71-491E-8328-A5E1ABE65826}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{3D32D6F6-F5C2-4E56-A284-7FCF5DF4C5CB}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{3F66C627-BA47-495C-A2D3-07EABD353C29}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{430A3CAC-8802-4107-BBD0-8986BD6FD2A1}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{44D2334D-8CAF-40D2-8F6A-9424106CBA6A}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{46A4D3EB-96D3-4428-9E51-B4DF7EADF875}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{47FE3339-6342-4F4D-A670-6E9177F001FB}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{48A15C6E-FB98-49D5-9E7A-9E2FCAB18AC3}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{49080FDA-CFEE-47B1-8FE5-7AF01442DF40}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{4AA53BF7-8F99-4A1D-AB96-42D91F4B30E8}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{4B5F2426-D1C3-47D2-8B86-58B51E98787B}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{4CB2AA7F-D6DE-45E7-B5C3-5825FC21E4AC}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{4D5C139C-9446-43A4-9001-77B86D861E00}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{4DCA8C74-FE60-4FBA-8BE3-0066516D1537}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{4DE5836A-0022-4286-BC6D-FF0E8E7856CA}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{4F4FD1F5-9258-4FF5-AE22-A4D23716CEC0}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{508093C8-5091-47B4-9FDF-8D4EDD50CE22}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{5261BF7E-482E-4DF2-BF0F-5D09F06C47FB}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{530C745F-C5F7-4E8E-AA4A-08C92252F68F}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{5387D2EB-40FA-4B70-94AE-5F4EFDE19A57}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{542A3939-5314-45B4-846B-C83C3CE0287E}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{5695FA95-60DF-4BB6-B4F5-01BEBA1B99A5}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{57FB56EE-B6B9-4A9D-A5FA-F97EF112D942}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{587517FB-2711-42A0-B6EF-4867533F42EB}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{5FB54626-9221-4251-AFF2-9D57AF433C73}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{6282C86D-69F5-4635-A991-FFF34A0CDEEE}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{6917140E-3758-409E-80CB-9459371D94C9}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{6E82E35B-C148-43EB-923A-24127A846C70}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{6FE4C444-ECF3-4A5E-9D26-21CED0E8EF6E}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{7376ACD1-55B3-4751-8FF6-20152400C20E}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{750413B9-6A12-4062-875A-E5793A608652}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{78B1F130-24E8-44E2-97A0-A6A9A7E892BB}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{79E0FBCC-FB37-437D-8073-2C653EF3192B}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{7E07C842-F131-4827-B671-77676AB746F8}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{7E4EB055-8C66-4971-9985-FE1CB8D4E833}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{7E6F9316-2537-4B92-895A-95FD43CC0331}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{80389964-2889-4B4C-9199-E1986FDE78E0}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{833BF1CE-D33E-45BC-8FE1-2FB5F06004FD}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{87D9AD9B-00CF-4EEC-AD02-9A690EF9D44F}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{89D31D03-4800-4F36-B98A-0945CB209A2F}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{8FCB7EB9-6667-4CBE-A085-E794CC140AB7}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{912ABEC2-5B88-4553-85B2-8A0081DDFCA8}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{924FD966-FEF2-4B52-ABB3-502416FFBB61}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{9449DBD6-85C2-4889-8D50-AE35C55B8D42}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{95006389-5D6B-427C-BFA2-BADEDFFCA797}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{967E0A37-065C-4628-9F95-E33F583CB340}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{98E6849A-F582-4E9F-B937-414D6D3C0802}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{99B8FD89-8ABE-4472-A926-C1155327688A}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{9F18777A-9EE2-4BFA-AB3F-5CBCE33D3FC6}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{A2281274-D27B-4CE6-816D-BC66A1CCFA4F}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{A254E843-1CFE-416C-8884-2C736B00FE6A}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{A4BE92A5-F69B-4012-8F71-5E262B567E77}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{A4FE00A7-32D8-48D2-BD81-136A035F11CC}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{A53C197B-D1DD-4F99-99EB-D6F260A159D8}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{A6AA3F2D-37BD-488D-A431-98585FE253E1}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{A791D2CE-0D46-4490-B8D0-49D152888878}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{AC02BCEC-B897-40CE-933D-65D1AD50201A}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{AF71E4FD-7A55-4416-88EF-83E8CA8E85C0}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{AFD9BCA8-D5D5-4A8B-8ADD-9FC55FE330C6}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{B09E5449-D4FA-42F2-BDDA-E4F39D127F28}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{B1134AF2-0FD3-4F3B-93FC-BD3DF6E2D495}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{B6D61F45-51DF-40C0-B1B8-A34F0ADA1446}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{B721B982-6B92-4A83-858A-1041204B03B2}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{BA85CE06-A85A-46E6-94CD-2697C68A71BB}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{BB6AADDF-D723-44E4-A5AA-841C8A4D930A}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{BBFC9F1D-13E4-4199-B7A8-38F92A4F3466}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{BDD7059D-ABDF-4357-BD06-320D328B1135}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{BFAA8493-3A06-4810-A0B6-33DA9CEDE0EA}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{BFE6A42A-C52B-4FD3-A8A3-FE4B5A8F0543}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{C0779D70-09CD-46F1-82C2-EB3E3F5AF170}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{C0D27BEF-370F-4A28-9AEB-B30B74F62A30}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{C248F851-4700-46A4-A54C-BCA810825B4B}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{C8124117-C3B2-42BA-AD27-6328B22EE9EE}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{C8D591F3-777C-4A00-ABAE-F94BCFC76865}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{C93FC6FA-9ED5-467C-91E6-8ACB49B20179}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{CC871792-DC35-4707-9B14-7A859FC0CE0E}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{D00F5457-A5CD-4020-9929-52DCCDAFE78E}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{D31D75DF-175B-4753-974B-B2AE01036216}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{D363FC8A-6496-4F23-A6BF-4CF4775730F3}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{D5E0B0AE-5E39-4740-9A70-A8525733961F}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{D67BE656-E2BD-452F-B9F7-0B5BED383224}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{DC90D296-A2FC-42A1-B455-0B25E3E1CC0A}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{DEBC5581-9018-43C3-A3B3-3056BA732825}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{DF95DA8A-7D26-4290-9AAA-27B8ABC18AA1}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{E122ECE8-0FB9-47D2-BB18-BEC1A9C91E8E}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{E14D2D03-7DBC-47F9-9973-9938980586D7}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{E1AD5BE0-8DFB-4B8E-9DE0-A028B4A44882}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{E57B2DF6-42B9-41F8-AB9A-65385702173C}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{E61CE6B5-2D81-433E-A0A3-78DD23A34602}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{E65702F0-8063-4F5F-8C95-444829A24D2A}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{E891F904-015C-4ABD-8395-E51C50A90644}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{EE6E91E2-CE33-4710-9F06-903757F7784C}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{F49B20E4-5947-4D44-96F2-2F026A14FBF0}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{F55091C4-E9FF-4EB8-8BBB-8662A37A5364}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{F7FFD19E-D939-4EEF-B47A-0358C98F13E2}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{F9F3AE7E-FE17-4DA9-A52A-76AFD5DB607B}
Successfully deleted: [Empty Folder] C:\Users\Janet\appdata\local\{FDB557D1-4E32-4369-80E7-640B903211A3}

 

~~~ FireFox

Successfully deleted the following from C:\Users\Janet\AppData\Roaming\mozilla\firefox\profiles\4ur5upp1.default\prefs.js

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 01/06/2014 at 11:20:11.72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

# AdwCleaner v3.016 - Report created 06/01/2014 at 11:21:33
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Janet - JANET-PC
# Running from : C:\Users\Janet\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16750

-\\ Mozilla Firefox v9.0.1 (en-US)

[ File : C:\Users\Janet\AppData\Roaming\Mozilla\Firefox\Profiles\4ur5upp1.default\prefs.js ]

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Janet\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [27454 octets] - [27/12/2013 22:56:30]
AdwCleaner[R1].txt - [1191 octets] - [29/12/2013 18:55:34]
AdwCleaner[R2].txt - [1139 octets] - [06/01/2014 11:20:56]
AdwCleaner[s0].txt - [24908 octets] - [27/12/2013 22:58:29]
AdwCleaner[s1].txt - [1165 octets] - [29/12/2013 18:56:06]
AdwCleaner[s2].txt - [1061 octets] - [06/01/2014 11:21:33]

########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1121 octets] ##########

 

 

 

 

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.06.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
Janet :: JANET-PC [administrator]

Protection: Enabled

1/6/2014 11:26:08 AM
mbam-log-2014-01-06 (11-26-08).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 227034
Time elapsed: 7 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Link to post
Share on other sites

  • 2 weeks later...
  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.