Jump to content

Stuck at Heuristics


Recommended Posts

Hello, I have tried to run Malwarebytes several times and I can never make it past the heuristics analysis (longest wait was 23 hrs.) I have tried uninstalling and reinstalling the program a few times, but that does not help at all. I have also made sure that my other antivirus software (AVG) is disabled and that Malwarebytes has been added to the exceptions list.

 

I have downloaded the Farbar Recovery Scan Tool and will post my results below.

 

Here is FRST.txt

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:17-08-2014 01
Ran by Lyndsie (administrator) on FAMILY on 18-08-2014 14:23:27
Running from C:\Documents and Settings\Lyndsie\My Documents\Downloads\AntiVirus Programs
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Program Files\Intel\ASF Agent\ASFAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.1.0\ToolbarUpdater.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.1.0\loggingserver.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(ali) C:\Program Files\USB Disk Win98 Driver\Res.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\WINDOWS\system32\spider.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKU\.DEFAULT\...\Policies\Explorer: [CDRAutoRun] 0
HKU\S-1-5-21-1491442586-1620183683-116902311-1007\...\Run: [Optimizer Pro] => C:\Program Files\Optimizer Pro\OptProLauncher.exe
HKU\S-1-5-21-1491442586-1620183683-116902311-1008\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-13] (Microsoft Corporation)
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://photo2.walgreens.com/WalgreensActivia.cab
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\3.1.0\ViProtocol.dll (AVG Secure Search)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\3.1.0\\npsitesafety.dll No File
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-07]
FF HKLM\...\Firefox\Extensions: [search-snacks@search-snacks.com] - C:\Program Files\Mozilla Firefox\extensions\search-snacks@search-snacks.com
 
Chrome: 
=======
CHR HomePage: https://mysearch.avg.com?cid={9F232320-BBEC-456A-9C81-2A4D227010FB}&mid=19528efedc6747d3813cd15709087836-00885b8bfb7818223c5fc77d1f0615c0bb8ff663〈=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-07-11 17:14:28&v=3.1.0.6&pid=wtu&sg=&sap=hp
CHR StartupUrls: "https://mysearch.avg.com?cid={9F232320-BBEC-456A-9C81-2A4D227010FB}&mid=19528efedc6747d3813cd15709087836-00885b8bfb7818223c5fc77d1f0615c0bb8ff663〈=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-07-11 17:14:28&v=3.1.0.6&pid=wtu&sg=&sap=hp"
CHR DefaultSearchKeyword: mysearch.avg.com
CHR DefaultSearchURL: https://mysearch.avg.com/search?cid={9F232320-BBEC-456A-9C81-2A4D227010FB}&mid=19528efedc6747d3813cd15709087836-00885b8bfb7818223c5fc77d1f0615c0bb8ff663〈=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-07-11 17:14:28&v=3.1.0.6&pid=wtu&sg=&sap=dsp&q={searchTerms}
CHR HKLM\...\Chrome\Extension: [edakhebdfmenljamaknlnnallmchcdei] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\edakhebdfmenljamaknlnnallmchcdei.crx []
CHR HKLM\...\Chrome\Extension: [eihlgbnhhkigaajnpjohgjldcmdhjiol] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\eihlgbnhhkigaajnpjohgjldcmdhjiol.crx []
CHR HKLM\...\Chrome\Extension: [gpicboiclhmnllnjdcfcffifpoaebgkm] - C:\Program Files\Freecorder extension\Freecorder.crx []
CHR HKLM\...\Chrome\Extension: [iigplimlmgilpobjilfbfeilnpiigpgl] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\iigplimlmgilpobjilfbfeilnpiigpgl.crx []
CHR HKLM\...\Chrome\Extension: [knllpfimimccdfnihbikigiagifmllol] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\knllpfimimccdfnihbikigiagifmllol.crx []
CHR HKLM\...\Chrome\Extension: [nmaikkamgfhkjbadgihldfmkpngkhgbb] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\nmaikkamgfhkjbadgihldfmkpngkhgbb.crx []
CHR HKCU\...\Chrome\Extension: [edakhebdfmenljamaknlnnallmchcdei] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\edakhebdfmenljamaknlnnallmchcdei.crx []
CHR HKCU\...\Chrome\Extension: [eihlgbnhhkigaajnpjohgjldcmdhjiol] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\eihlgbnhhkigaajnpjohgjldcmdhjiol.crx []
CHR HKCU\...\Chrome\Extension: [iigplimlmgilpobjilfbfeilnpiigpgl] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\iigplimlmgilpobjilfbfeilnpiigpgl.crx []
CHR HKCU\...\Chrome\Extension: [knllpfimimccdfnihbikigiagifmllol] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\knllpfimimccdfnihbikigiagifmllol.crx []
CHR HKCU\...\Chrome\Extension: [nmaikkamgfhkjbadgihldfmkpngkhgbb] - C:\Documents and Settings\Lyndsie\Local Settings\Application Data\CRE\nmaikkamgfhkjbadgihldfmkpngkhgbb.crx []
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [120088 2013-10-10] (SUPERAntiSpyware.com)
R2 ASFAgent; C:\Program Files\Intel\ASF Agent\ASFAgent.exe [133968 2007-01-23] (Intel Corporation)
R2 avgfws; C:\Program Files\AVG\AVG2014\avgfws.exe [1417160 2014-08-11] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3244048 2014-08-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-11] (AVG Technologies CZ, s.r.o.)
R3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-06-11] (Macrovision Europe Ltd.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182184 2013-08-24] (Oracle Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [1858360 2014-07-14] (AVG)
R2 vToolbarUpdater3.1.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.1.0\ToolbarUpdater.exe [1814040 2014-07-11] (AVG Secure Search)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 abp480n5; C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R3 ADIHdAudAddService; C:\WINDOWS\System32\drivers\ADIHdAud.sys [307712 2007-09-24] (Analog Devices, Inc.) [File not signed]
S3 AsfAlrt; C:\WINDOWS\system32\Drivers\AsfAlrt.sys [42832 2007-01-23] (Intel Corporation)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-30] (AVG Technologies CZ, s.r.o.)
R3 Avgfwdx; C:\WINDOWS\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.)
S3 Avgfwfd; C:\WINDOWS\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [190232 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [147736 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [188696 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [241944 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [197400 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-06-22] (AVG Technologies)
R3 busenum; C:\WINDOWS\System32\DRIVERS\busenum.sys [46304 2011-02-18] (Windows ® Win 7 DDK provider)
R3 HECI; C:\WINDOWS\System32\DRIVERS\HECI.sys [45056 2007-07-23] (Intel Corporation) [File not signed]
R3 ialm; C:\WINDOWS\System32\DRIVERS\igxpmp32.sys [5761728 2007-06-28] (Intel Corporation) [File not signed]
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [110296 2014-08-18] (Malwarebytes Corporation)
R1 netfilter; C:\WINDOWS\System32\drivers\netfilter.sys [47488 2014-06-12] (NetFilterSDK.com) [File not signed]
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2007-09-24] (Sensaura) [File not signed]
S3 Teefer2; C:\WINDOWS\System32\DRIVERS\teefer2.sys [49024 2007-08-06] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [12320 2014-06-23] (TuneUp Software)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [79232 2008-04-13] (Microsoft Corporation)
S1 ssnfd; system32\drivers\ssnfd.sys [X]
S4 vsdatant; a [X]
U1 WS2IFSL; 
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-08-18 14:13 - 2014-08-18 14:14 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-18 14:13 - 2014-08-18 14:13 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-08-18 14:13 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-08-18 14:13 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-07-28 12:20 - 2014-07-28 12:20 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Application Data\AVG
2014-07-28 12:20 - 2014-07-28 12:20 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\AVG
2014-07-27 16:39 - 2014-07-27 16:39 - 00090112 _____ () C:\WINDOWS\Minidump\Mini072714-01.dmp
2014-07-26 23:44 - 2014-08-18 14:09 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-07-26 23:44 - 2014-07-26 23:44 - 00001745 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\AVG PC TuneUp 2014.lnk
2014-07-26 23:44 - 2014-07-26 23:44 - 00001745 _____ () C:\Documents and Settings\All Users\Desktop\AVG 1-Click Maintenance.lnk
2014-07-26 23:44 - 2014-07-26 23:44 - 00001739 _____ () C:\Documents and Settings\All Users\Desktop\AVG PC TuneUp 2014.lnk
2014-07-26 23:44 - 2014-07-26 23:44 - 00000000 ____D () C:\Documents and Settings\Lyndsie\Local Settings\Application Data\AVG
2014-07-26 23:44 - 2014-07-26 23:44 - 00000000 ____D () C:\Documents and Settings\Lyndsie\Application Data\AVG
2014-07-26 23:44 - 2014-07-26 23:44 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG PC TuneUp 2014
2014-07-26 23:44 - 2014-07-14 12:26 - 00036152 _____ (AVG) C:\WINDOWS\system32\TURegOpt.exe
2014-07-26 23:42 - 2014-07-26 23:50 - 00000000 __SHD () C:\Documents and Settings\All Users\Application Data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-07-26 23:42 - 2014-07-26 23:44 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-08-18 14:24 - 2013-07-01 11:34 - 00000000 ____D () C:\Documents and Settings\Lyndsie\Local Settings\Temp
2014-08-18 14:23 - 2014-07-08 20:14 - 00000000 ____D () C:\FRST
2014-08-18 14:23 - 2012-04-04 07:20 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-18 14:22 - 2013-07-10 12:36 - 00000888 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-18 14:14 - 2014-08-18 14:13 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-18 14:13 - 2014-08-18 14:13 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-08-18 14:12 - 2004-08-11 16:13 - 01315837 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-18 14:11 - 2004-08-11 16:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-08-18 14:10 - 2014-03-22 15:08 - 00000226 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-08-18 14:10 - 2013-07-10 12:36 - 00000884 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-18 14:10 - 2004-08-11 16:20 - 00032368 _____ () C:\WINDOWS\SchedLgU.Txt
2014-08-18 14:10 - 2004-08-11 16:20 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-18 14:10 - 2004-08-11 16:09 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-08-18 14:10 - 2004-08-11 16:09 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-08-18 14:09 - 2014-07-26 23:44 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-08-18 14:09 - 2014-03-06 07:58 - 00000372 _____ () C:\Documents and Settings\Lyndsie\My Documents\spider.sav
2014-08-18 14:09 - 2013-07-01 11:34 - 00000178 ___SH () C:\Documents and Settings\Lyndsie\ntuser.ini
2014-08-18 14:08 - 2013-07-11 14:05 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-08-17 23:28 - 2013-07-01 11:34 - 00000000 ____D () C:\Documents and Settings\Lyndsie
2014-08-17 23:23 - 2008-06-11 06:37 - 00034943 _____ () C:\WINDOWS\setupact.log
2014-08-15 13:25 - 2013-07-10 12:37 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-08-14 15:11 - 2014-07-08 20:55 - 00000702 _____ () C:\Documents and Settings\All Users\Desktop\AVG 2014.lnk
2014-08-14 15:11 - 2014-07-08 20:55 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
2014-08-14 15:11 - 2014-01-05 20:54 - 00075652 _____ () C:\WINDOWS\setupapi.log
2014-08-14 06:23 - 2013-07-15 22:32 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-14 06:23 - 2008-06-11 06:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-08-14 06:11 - 2008-09-03 07:26 - 96303304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-08-11 02:00 - 2013-12-07 22:26 - 00000346 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-FAMILY-Lyndsie.job
2014-07-28 12:20 - 2014-07-28 12:20 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Application Data\AVG
2014-07-28 12:20 - 2014-07-28 12:20 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\AVG
2014-07-27 16:39 - 2014-07-27 16:39 - 00090112 _____ () C:\WINDOWS\Minidump\Mini072714-01.dmp
2014-07-27 16:39 - 2013-08-14 12:54 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-26 23:50 - 2014-07-26 23:42 - 00000000 __SHD () C:\Documents and Settings\All Users\Application Data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-07-26 23:44 - 2014-07-26 23:44 - 00001745 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\AVG PC TuneUp 2014.lnk
2014-07-26 23:44 - 2014-07-26 23:44 - 00001745 _____ () C:\Documents and Settings\All Users\Desktop\AVG 1-Click Maintenance.lnk
2014-07-26 23:44 - 2014-07-26 23:44 - 00001739 _____ () C:\Documents and Settings\All Users\Desktop\AVG PC TuneUp 2014.lnk
2014-07-26 23:44 - 2014-07-26 23:44 - 00000000 ____D () C:\Documents and Settings\Lyndsie\Local Settings\Application Data\AVG
2014-07-26 23:44 - 2014-07-26 23:44 - 00000000 ____D () C:\Documents and Settings\Lyndsie\Application Data\AVG
2014-07-26 23:44 - 2014-07-26 23:44 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG PC TuneUp 2014
2014-07-26 23:44 - 2014-07-26 23:42 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG
2014-07-26 23:43 - 2014-07-08 20:54 - 00000000 ____D () C:\Program Files\AVG
2014-07-26 23:39 - 2013-07-01 11:34 - 00001599 _____ () C:\Documents and Settings\Lyndsie\Start Menu\Programs\Remote Assistance.lnk
2014-07-26 23:39 - 2004-08-11 16:15 - 00001563 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2014-07-26 23:39 - 2004-08-11 16:15 - 00001507 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk
2014-07-26 14:56 - 2013-12-08 01:12 - 00000132 ____C () C:\Documents and Settings\Lyndsie\Application Data\Adobe PNG Format CS5 Prefs
2014-07-24 16:25 - 2011-02-24 13:11 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-23 22:25 - 2011-02-24 13:12 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
 
Some content of TEMP:
====================
C:\Documents and Settings\Diane Worley\Local Settings\Temp\Browser_Update (1).exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\cltmng.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\msvcp100.dll
C:\Documents and Settings\Diane Worley\Local Settings\Temp\msvcr100.dll
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nsd7F.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nsj75.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nsj78.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nso65.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nsp82.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nss6F.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nss72.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\nsx7C.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\SecondStepInstaller.exe
C:\Documents and Settings\Diane Worley\Local Settings\Temp\SPSetup.exe
C:\Documents and Settings\Lauren\Local Settings\Temp\cltmng.exe
C:\Documents and Settings\Lauren\Local Settings\Temp\msvcp100.dll
C:\Documents and Settings\Lauren\Local Settings\Temp\msvcr100.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================
 
 
Here is Addition
 
Additional scan result of Farbar Recovery Scan Tool (x86) Version:17-08-2014 01
Ran by Lyndsie at 2014-08-18 14:24:33
Running from C:\Documents and Settings\Lyndsie\My Documents\Downloads\AntiVirus Programs
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: AVG Internet Security 2014 (Disabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Internet Security 2014 (Disabled) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
32 Bit HP BiDi Channel Components Installer (Version: 1.1.0.2 - Hewlett-Packard) Hidden
Adobe Acrobat  8 Standard (Version: 8.3.1 - Adobe Systems) Hidden
Adobe Acrobat 8.3.1 Standard (HKLM\...\Adobe Acrobat  8 Standard) (Version: 8.3.1 - Adobe Systems)
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742) (Version: 8.1.2 - Adobe Systems, Inc) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.9.0.1210 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.9.0.1210 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (HKLM\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4745 - AVG Technologies)
AVG 2014 (Version: 14.0.4007 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4745 - AVG Technologies) Hidden
AVG PC TuneUp 2014 (en-US) (Version: 14.0.1001.519 - AVG) Hidden
AVG PC TuneUp 2014 (HKLM\...\AVG PC TuneUp) (Version: 14.0.1001.519 - AVG)
AVG PC TuneUp 2014 (Version: 14.0.1001.519 - AVG) Hidden
AVG Web TuneUp (HKLM\...\AVG Web TuneUp) (Version: 3.1.0.6 - AVG Technologies)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Critical Update for Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version:  - Microsoft Corporation)
Dell ETS Factory Installation (Version: 1.0.0 - Dell Inc.) Hidden
EasyACCT Professional Series (HKLM\...\INTUEZACCTRMV_EPSW) (Version:  - )
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
High Definition Audio Driver Package - KB835221 (HKLM\...\KB835221WXP) (Version: 20040219.000000 - Microsoft Corporation)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version:  - )
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - )
Intel® PRO Alerting Agent (HKLM\...\{53183B25-FBDC-4B95-856A-DCDD69DFEE18}) (Version: 12.0.2 - Intel Corporation)
Intel® PRO Network Connections 12.1.12.4 (HKLM\...\{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}) (Version:  - Dell)
Intuit Entitlement Client v8 (HKLM\...\{4C5B3CFD-DF38-49E2-82D9-5A933F36242F}) (Version: 8.0.24 - Intuit Inc.)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Jasc Paint Shop Pro 8 (HKLM\...\{81A34902-9D0B-4920-A25C-4CDC5D14B328}) (Version: 8.10.0000 - Jasc Software Inc)
Java 7 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MFCLOC (Version: 1.00.0000 - Dell Inc.) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Internationalized Domain Names Mitigation APIs (Version:  - Microsoft Corporation) Hidden
Microsoft National Language Support Downlevel APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0013-0000-0000-0000000FF1CE}_BASICR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0015-0000-0000-0000000FF1CE}_AccessR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access 2007 (HKLM\...\AccessR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Access 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Basic 2007 (HKLM\...\BASICR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Basic 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
Nancy Drew: Secrets Can Kill REMASTERED (HKLM\...\{DB99AB7F-725B-4F71-BE55-0332EA53C15C}) (Version: 1.0.0 - Her Interactive, Inc.)
Nancy Drew: The Deadly Device (HKLM\...\{BCD434CF-447A-42A8-A4C3-D929fE776EFD}) (Version: 8.0.0.30162 - Her Interactive, Inc.)
Nancy Drew: The Shattered Medallion (HKLM\...\{7AD29F31-9DFD-43A4-8172-92F7F1CDB21A}) (Version: 8.0.0.30162 - Her Interactive, Inc.)
Nancy Drew: The Silent Spy (HKLM\...\{35B438BB-E18B-4FD9-8D56-50BA90C11A71}) (Version: 8.0.0.30162 - Her Interactive, Inc.)
NETGEAR Live Parental Controls Management Utility 2.1.6 (HKLM\...\NETGEAR Live Parental Controls Management Utility) (Version: 2.1.6 - )
NETGEAR Live Parental Controls User Utility 2.1.6 (HKLM\...\NETGEAR Live Parental Controls User Utility) (Version: 2.1.6 - )
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.0 - Dell)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
SearchAssist (HKLM\...\SearchAssist) (Version:  - )
Service Request (HKLM\...\{EB79F19C-DD6A-440D-BCB1-D9C9555A5C6F}) (Version: 1.0.0.25 - Intuit)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1026 - SUPERAntiSpyware.com)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0013-0000-0000-0000000FF1CE}_BASICR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0015-0000-0000-0000000FF1CE}_AccessR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-0013-0000-0000-0000000FF1CE}_BASICR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-0015-0000-0000-0000000FF1CE}_AccessR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-0013-0000-0000-0000000FF1CE}_BASICR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-0015-0000-0000-0000000FF1CE}_AccessR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-0013-0000-0000-0000000FF1CE}_BASICR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-0015-0000-0000-0000000FF1CE}_AccessR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_BASICR_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{91120000-0013-0000-0000-0000000FF1CE}_BASICR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition (HKLM\...\{91120000-0013-0000-0000-0000000FF1CE}_BASICR_{B2260BC9-D561-46EE-B33D-739CF760A2A9}) (Version:  - Microsoft)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 7 (KB980182) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951072-v2) (HKLM\...\KB951072-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955839) (HKLM\...\KB955839) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
USB Disk Win98 Driver (HKLM\...\{4E79A62F-7A2D-4058-BCE0-94E6B9E2F162}) (Version:  - )
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Internet Explorer 7 (Version: 20070813.185237 - Microsoft Corporation) Hidden
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Format 11 runtime (Version:  - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player 11 (Version:  - Microsoft Corporation) Hidden
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
20-05-2014 19:43:51 System Checkpoint
24-05-2014 01:21:46 System Checkpoint
25-05-2014 19:20:32 System Checkpoint
28-05-2014 03:09:28 System Checkpoint
02-06-2014 20:25:21 System Checkpoint
04-06-2014 02:03:49 System Checkpoint
05-06-2014 15:53:10 System Checkpoint
06-06-2014 23:32:19 System Checkpoint
08-06-2014 21:23:05 System Checkpoint
09-06-2014 22:09:24 System Checkpoint
12-06-2014 21:54:52 Software Distribution Service 3.0
14-06-2014 03:29:30 System Checkpoint
15-06-2014 23:42:52 System Checkpoint
19-06-2014 18:26:53 System Checkpoint
26-06-2014 06:43:49 System Checkpoint
27-06-2014 07:24:53 System Checkpoint
28-06-2014 07:43:04 System Checkpoint
30-06-2014 02:40:09 System Checkpoint
01-07-2014 13:56:17 System Checkpoint
02-07-2014 18:48:59 System Checkpoint
04-07-2014 16:03:26 System Checkpoint
06-07-2014 18:40:37 System Checkpoint
07-07-2014 19:12:48 System Checkpoint
08-07-2014 22:09:31 System Checkpoint
09-07-2014 01:29:41 Removed AVG 2014
09-07-2014 01:31:22 Removed AVG 2014
09-07-2014 01:54:57 Installed AVG 2014
09-07-2014 01:55:16 Installed AVG 2014
09-07-2014 08:00:29 Software Distribution Service 3.0
10-07-2014 02:16:04 Removed Nancy Drew: Ghost of Thornton Hall
12-07-2014 14:53:34 System Checkpoint
14-07-2014 21:23:54 System Checkpoint
15-07-2014 22:30:29 System Checkpoint
21-07-2014 22:04:53 System Checkpoint
22-07-2014 22:34:32 System Checkpoint
24-07-2014 03:24:22 Software Distribution Service 3.0
26-07-2014 18:33:12 System Checkpoint
27-07-2014 04:43:27 Installed AVG PC TuneUp 2014
30-07-2014 22:05:33 System Checkpoint
31-07-2014 21:27:17 Installed AVG 2014
31-07-2014 21:29:48 Removed AVG 2014
02-08-2014 21:31:35 System Checkpoint
03-08-2014 21:44:07 System Checkpoint
08-08-2014 04:29:14 System Checkpoint
10-08-2014 15:02:12 System Checkpoint
13-08-2014 00:26:04 System Checkpoint
14-08-2014 11:10:47 Software Distribution Service 3.0
15-08-2014 11:48:52 System Checkpoint
16-08-2014 18:22:06 System Checkpoint
17-08-2014 22:09:03 System Checkpoint
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2004-08-11 16:00 - 2014-06-30 00:36 - 00000777 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
127.0.0.1 d3oxij66pru1i3.cloudfront.net
 
 
==================== Scheduled Tasks (whitelisted) =============
 
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-FAMILY-Lyndsie.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
 
==================== Loaded Modules (whitelisted) =============
 
2008-06-16 08:47 - 2002-05-02 22:10 - 00094274 _____ () C:\WINDOWS\system32\HPBHealr.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-07-14 12:26 - 2014-07-14 12:26 - 00357176 _____ () C:\Program Files\AVG\AVG PC TuneUp\tuavgx.dll
2014-07-11 17:14 - 2014-07-11 17:14 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.1.0\loggingserver.exe
2014-07-11 17:14 - 2014-07-11 17:14 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.1.0\log4cplusU.dll
2014-07-11 17:14 - 2014-07-11 17:14 - 02575384 _____ () C:\Program Files\AVG Web TuneUp\vprot.exe
2014-08-15 13:25 - 2014-08-06 22:20 - 08537928 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-15 13:25 - 2014-08-06 22:20 - 00353096 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-15 13:25 - 2014-08-06 22:20 - 01732936 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:373E1720
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (08/17/2014 11:23:04 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=C69A620D543F4434B31D40031219CEDF;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\97b704c1-ac69-41a2-a3db-6e26df00db8b.dmp
 
Error: (08/17/2014 10:23:57 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=C69A620D543F4434B31D40031219CEDF;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\a20934d6-47f0-49cf-889c-359f086a67ec.dmp
 
Error: (08/17/2014 09:55:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hanging application taskmgr.exe, version 5.1.2600.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (08/16/2014 09:31:43 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=C69A620D543F4434B31D40031219CEDF;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\52809924-48f0-4985-82ef-2875f57a846b.dmp
 
Error: (08/16/2014 07:08:36 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=C69A620D543F4434B31D40031219CEDF;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\fcd7c52a-764a-4c51-b950-c4bc6221db16.dmp
 
Error: (08/15/2014 08:55:12 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=C69A620D543F4434B31D40031219CEDF;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\62fbe138-9d39-4590-bb72-0b185ffc6358.dmp
 
Error: (08/15/2014 08:13:14 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=C69A620D543F4434B31D40031219CEDF;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\08fee676-49c8-44b8-94d6-dd797ffb76bf.dmp
 
Error: (08/15/2014 08:06:02 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=C69A620D543F4434B31D40031219CEDF;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\30e23cc0-fcee-4c7a-bbca-56d234ae6522.dmp
 
Error: (08/15/2014 05:29:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1056750
 
Error: (08/15/2014 05:29:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1056750
 
 
System errors:
=============
Error: (08/18/2014 02:11:27 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
ssnfd
 
Error: (08/18/2014 02:02:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
ssnfd
 
Error: (08/17/2014 09:54:50 PM) (Source: W32Time) (EventID: 29) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible. 
No attempt to contact a source will be made for 15 minutes.
NtpClient has no source of accurate time.
 
Error: (08/17/2014 09:54:50 PM) (Source: W32Time) (EventID: 17) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)
 
Error: (08/17/2014 09:54:50 PM) (Source: W32Time) (EventID: 29) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible. 
No attempt to contact a source will be made for 14 minutes.
NtpClient has no source of accurate time.
 
Error: (08/17/2014 09:54:50 PM) (Source: W32Time) (EventID: 17) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)
 
Error: (08/17/2014 03:12:18 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
ssnfd
 
Error: (08/16/2014 11:12:36 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
ssnfd
 
Error: (08/15/2014 06:34:36 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
ssnfd
 
Error: (08/15/2014 06:34:11 AM) (Source: 0) (EventID: 1) (User: )
Description: 0xC0000001HarddiskVolume2
 
 
Microsoft Office Sessions:
=========================
Error: (11/12/2009 04:52:00 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 26009 seconds with 660 seconds of active time.  This session ended with a crash.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core2 Duo CPU E8500 @ 3.16GHz
Percentage of memory in use: 68%
Total physical RAM: 2004.54 MB
Available physical RAM: 633.14 MB
Total Pagefile: 3896.6 MB
Available Pagefile: 2342.24 MB
Total Virtual: 2047.88 MB
Available Virtual: 1937.83 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:148.92 GB) (Free:97.34 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (MED) (CDROM) (Total:1.47 GB) (Free:0 GB) CDFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 149 GB) (Disk ID: 41AB2316)
Partition 1: (Not Active) - (Size=86 MB) - (Type=DE)
Partition 2: (Active) - (Size=148.9 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

 

Link to post
Share on other sites

Hello,
    
 
They call me TwinHeadedEagle around here, and I'll be working with you.
 
    
 
    
Before we start please read and note the following:
    
Limit your internet access to posting here, some infections just wait to steal typed-in passwords.
Please be patient. I know it is frustrating when your PC isn't working properly, but malware removal takes time.
Don't run any scripts or tools on your own, unsupervised usage may cause more harm than good.
Do not paste the logs in your posts, attachments make my work easier. There is a Attach Files option below which you can use to attach your reports. Always attach reports from all tools.
Stay with me to the end, the absence of symptoms doesn't mean that your machine is fully operational.
Note that we may live in totally different time zones, what may cause some delays between answers.
Do not ask for help for your business PC. Companies are making revenue via computers, so it is good thing to pay someone to repair it.
If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
    
icon_idea.gif I can't foresee everything, so if anything unexpected happens, please stop and inform me!
icon_idea.gif There are no silly questions. Never be afraid to ask if in doubt!
 
 
 
 
P2P/Piracy Warning:

  • If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
  • Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
  • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.

 

 

 

 

FRST.gif Fix with Farbar Recovery Scan Tool
 


icon_exclaim.gif This fix was created for this user for use on that particular machine. icon_exclaim.gif
icon_exclaim.gif Running it on another one may cause damage and render the system unstable. icon_exclaim.gif

 
Download attached fixlist.txt file and save it to the Desktop:
 
Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please post it to your reply.
 
 
 
 

adwcleaner_new.png Fix with AdwCleaner
 
Please download AdwCleaner by Xplode and save the file to your desktop.

  • Right-click on adwcleaner_new.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Follow the prompts and click Scan.
  • When finished, please click Clean.
  • Upon completion, click Report. A log (AdwCleaner[s*].txt) will open.
  • Please include the contents of that file in your reply.

fixlist.txt

Link to post
Share on other sites

Below you will find my thoughts about securing your machine. Go ahead through it, you will benefit from some useful advice about safe computing.
 
 
 

Recommended reading:

 

 
icon_exclaim.gifMUST READ - security tips:

icon_exclaim.gifMUST READ - general maintenance:

The Importance of Software Updating:

 
 
 
 
 
 
 
In order to stay protected it is very important that you regularly update all of your software. Cybercriminals depend on the apathy of users around software updates to keep their malicious endeavor running.
 
Operating systems, such as Windows, and applications, such as Adobe Reader or JAVA, are used by tens of millions of computers and devices around the world, making them a huge target for cybercriminals. Downloading updates and installing them can sometimes be tedious, but the advantages you get from the updates are certainly worth it.

Recommended additional software:

 

 
 
 
 
icon_arrow.gifTFC - to clean unneeded temporary files.
icon_arrow.gifMalwarebytes' Anti-Malware - to scan your system from time to time in search for malware.
icon_arrow.gifMalwarebytes' Anti-Exploit - to prevent plenty of mostly exploited vulnerabilities.
icon_arrow.gifMcShield - to prevent infections spread by removable media.
icon_arrow.gifCryptoPrevent - to secure yourself from very severe CryptoLocker infection.
icon_arrow.gifUnchecky - to prevent from installing additional foistware, implemented in legitimate installations.
icon_arrow.gifFiheHippo.com Update Checker - to keep your programs up-to-date.
icon_arrow.gifAdblock - to surf the web without annoying ads!
 
 
 

Post-cleanup procedures:

 
 
 
 
Download DelFix by Xplode and save it to your desktop.

  • Run the tool by right click on the 51a5ce45263de-delfix.png icon and Run as administrator option.
  • Make sure that these ones are checked:
    • Remove disinfection tools
    • Purge system restore
    • Reset system settings
  • Push Run.
  • The program will run for a few seconds and display a notepad report.
    You do not need to attach it.

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.
 
 
 
 


My help is free for everybody.

 

If you're happy with the help provided and/or wish to buy me a beer for the assistance you received, then you can consider a donation: btn_donate_SM.gif

 

Thank you!

 
 
 
 
 
Stay safe,
TwinHeadedEagle   :)

Link to post
Share on other sites

  • Root Admin

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.