Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

conduit.com & browsersafeguard trying to take over


  • Please log in to reply
5 replies to this topic

#1 Delta007

Delta007

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:49 PM

Posted 25 July 2013 - 06:06 PM

A few days ago, I was on Facebook and tried to look at a video and the video stopped after 20 seconds. (previously it had been working fine after I had upgraded to IE9) I then tried to go to another site and the browser got redirected to "conduit.com" but it never got there - it just locked up.

The only way I could get back on the net was to reboot.

 

Even after rebooting, eventually it redirected to conduit.com and went back to looping...

 

My anti-virus program (Norton) didn't alert me to anything...

Yesterday, I could not get on IE9 at all. every selection
to go to a website was redirected to conduit.. so I decided to call the PC Cleaner tech assist line for help.

I got them and they had me start in safe mode to see if IE9 would launch... it did not. ieframe.dll kept popping up and it would say the website could not be found... and then something called 'browsersafeguard' locked it all up.

Then I went to my wife's account (same pc) and hers worked ok...I went back to mine and it was ok...

But while talking to the tech folks, they did the remote thing on mine and found a list of warnings and he said that the ‘bad stuff’ had moved to my computer and it would need to be removed manually (whatever that means) so he wanted to connect me to some microsoft specialists who could remotely fix the problem- for 250$... so, it looks like he was a salesman, not a tech help person...useless.

OTOH, I did find the browsersafeguard program and uninstalled it...and ie9 seemed to be acting correctly...then late yesterday, conduit started coming back and I couldn’t even do email.

 

Today, it seems to be acting fine...  any hints to make sure that conduit.com is blown out of here?

 

Thanks... 

 

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:49 PM

Posted 25 July 2013 - 07:52 PM

Hello and welcome, please do these and see how it is.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Delta007

Delta007
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:49 PM

Posted 26 July 2013 - 07:14 PM

Everything is working correctly right now. But here are the results:

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

MiniToolBox by Farbar  Version: 13-07-2013

Ran by Admin (administrator) on 26-07-2013 at 13:12:48

Running from "C:\Users\Admin\Desktop"

Microsoft Windows 7 Home Premium   (X64)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

 

========================= IE Proxy Settings: ==============================

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ==============================

 

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

========================= Hosts content: =================================

 

 

 

========================= IP Configuration: ================================

 

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)

 

 

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

 

reset

set global defaultcurhoplimit=64 icmpredirects=enabled taskoffload=enabled

 

 

popd

# End of IPv4 configuration

 

 

 

Windows IP Configuration

 

   Host Name . . . . . . . . . . . . : Admin-HP

   Primary Dns Suffix  . . . . . . . :

   Node Type . . . . . . . . . . . . : Hybrid

   IP Routing Enabled. . . . . . . . : No

   WINS Proxy Enabled. . . . . . . . : No

   DNS Suffix Search List. . . . . . : launchmodem.com

 

Ethernet adapter Local Area Connection:

 

   Connection-specific DNS Suffix  . : launchmodem.com

   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller

   Physical Address. . . . . . . . . : 70-71-BC-F5-D7-9C

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

   Link-local IPv6 Address . . . . . : fe80::178:6998:eaa5:dfdb%12(Preferred)

   IPv4 Address. . . . . . . . . . . : 192.168.1.97(Preferred)

   Subnet Mask . . . . . . . . . . . : 255.255.255.0

   Lease Obtained. . . . . . . . . . : Friday, July 26, 2013 6:42:15 AM

   Lease Expires . . . . . . . . . . : Saturday, July 27, 2013 1:03:26 PM

   Default Gateway . . . . . . . . . : 192.168.1.254

   DHCP Server . . . . . . . . . . . : 192.168.1.254

   DHCPv6 IAID . . . . . . . . . . . : 259027388

   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-B6-11-33-70-71-BC-F5-CE-4F

   DNS Servers . . . . . . . . . . . : 192.168.1.254

                                       192.168.1.254

   NetBIOS over Tcpip. . . . . . . . : Enabled

 

Tunnel adapter isatap.launchmodem.com:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter Local Area Connection* 9:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

Server:  launchmodem

Address:  192.168.1.254

 

Name:    google.com

Addresses:  2607:f8b0:4002:c03::64

                  173.194.37.67

                  173.194.37.71

                  173.194.37.68

                  173.194.37.73

                  173.194.37.64

                  173.194.37.72

                  173.194.37.65

                  173.194.37.78

                  173.194.37.66

                  173.194.37.70

                  173.194.37.69

 

 

Pinging google.com [173.194.37.67] with 32 bytes of data:

Reply from 173.194.37.67: bytes=32 time=16ms TTL=54

Reply from 173.194.37.67: bytes=32 time=21ms TTL=54

 

Ping statistics for 173.194.37.67:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 16ms, Maximum = 21ms, Average = 18ms

Server:  launchmodem

Address:  192.168.1.254

 

Name:    yahoo.com

Addresses:  206.190.36.45

                  98.138.253.109

                  98.139.183.24

 

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=126ms TTL=47

Reply from 206.190.36.45: bytes=32 time=154ms TTL=47

 

Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 126ms, Maximum = 154ms, Average = 140ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

 12...70 71 bc f5 d7 9c ......Realtek PCIe GBE Family Controller

  1...........................Software Loopback Interface 1

 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

 11...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter

===========================================================================

 

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.97     20

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

      192.168.1.0    255.255.255.0         On-link      192.168.1.97    276

     192.168.1.97  255.255.255.255         On-link      192.168.1.97    276

    192.168.1.255  255.255.255.255         On-link      192.168.1.97    276

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link      192.168.1.97    276

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link      192.168.1.97    276

===========================================================================

Persistent Routes:

  None

 

IPv6 Route Table

===========================================================================

Active Routes:

 If Metric Network Destination      Gateway

  1    306 ::1/128                  On-link

 12    276 fe80::/64                On-link

 12    276 fe80::178:6998:eaa5:dfdb/128

                                    On-link

  1    306 ff00::/8                 On-link

 12    276 ff00::/8                 On-link

===========================================================================

Persistent Routes:

  None

========================= Winsock entries =====================================

 

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)

Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)

Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)

x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (07/26/2013 07:17:14 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

 

Error: (07/25/2013 10:55:52 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

 

Error: (07/25/2013 07:28:02 AM) (Source: Outlook) (User: )

Description: Failed to determine if the store is in the crawl scope (error=0x8007043c).

 

Error: (07/25/2013 07:28:02 AM) (Source: Outlook) (User: )

Description: Failed to get the Crawl Scope Manager with error=0x8007043c.

 

Error: (07/25/2013 07:28:02 AM) (Source: Outlook) (User: )

Description: Failed to determine if the store is in the crawl scope (error=0x8007043c).

 

Error: (07/25/2013 07:28:02 AM) (Source: Outlook) (User: )

Description: Failed to get the Crawl Scope Manager with error=0x8007043c.

 

Error: (07/25/2013 07:27:13 AM) (Source: Outlook) (User: )

Description: Failed to determine if the store is in the crawl scope (error=0x8007043c).

 

Error: (07/25/2013 07:27:13 AM) (Source: Outlook) (User: )

Description: Failed to get the Crawl Scope Manager with error=0x8007043c.

 

Error: (07/25/2013 07:27:13 AM) (Source: Outlook) (User: )

Description: Failed to determine if the store is in the crawl scope (error=0x8007043c).

 

Error: (07/25/2013 07:27:13 AM) (Source: Outlook) (User: )

Description: Failed to get the Crawl Scope Manager with error=0x8007043c.

 

 

System errors:

=============

Error: (07/25/2013 11:21:10 AM) (Source: Service Control Manager) (User: )

Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the CarboniteService service, but this action failed with the following error:

%%1056

 

Error: (07/25/2013 11:20:10 AM) (Source: Service Control Manager) (User: )

Description: The CarboniteService service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

 

Error: (07/25/2013 07:29:18 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

Error: (07/25/2013 07:28:53 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

Error: (07/25/2013 07:28:53 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

Error: (07/25/2013 07:28:53 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

Error: (07/25/2013 07:28:53 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

Error: (07/25/2013 07:28:53 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

Error: (07/25/2013 07:28:53 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

Error: (07/25/2013 07:28:52 AM) (Source: Service Control Manager) (User: )

Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:

%%1068

 

 

Microsoft Office Sessions:

=========================

Error: (07/24/2013 11:52:26 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6676.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 317 seconds with 240 seconds of active time.  This session ended with a crash.

 

Error: (06/17/2013 02:07:14 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6676.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 985 seconds with 960 seconds of active time.  This session ended with a crash.

 

Error: (03/02/2013 11:46:44 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 78 seconds with 60 seconds of active time.  This session ended with a crash.

 

Error: (03/02/2013 10:14:50 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 33 seconds with 0 seconds of active time.  This session ended with a crash.

 

Error: (02/22/2013 09:26:47 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 390 seconds with 360 seconds of active time.  This session ended with a crash.

 

Error: (02/19/2013 10:05:54 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 120 seconds with 120 seconds of active time.  This session ended with a crash.

 

Error: (02/19/2013 10:03:43 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 55 seconds with 0 seconds of active time.  This session ended with a crash.

 

Error: (01/13/2013 03:47:00 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2065 seconds with 1380 seconds of active time.  This session ended with a crash.

 

Error: (01/08/2013 03:05:09 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1087 seconds with 840 seconds of active time.  This session ended with a crash.

 

Error: (12/17/2012 08:32:50 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 8 seconds with 0 seconds of active time.  This session ended with a crash.

 

 

=========================== Installed Programs ============================

 

 Update for Microsoft Office 2007 (KB2508958)

4500_G510gm_Help (Version: 000.0.439.000)

4500G510gm (Version: 000.0.423.000)

4500G510gm_Software_Min (Version: 000.0.423.000)

64 Bit HP CIO Components Installer (Version: 6.2.1)

ActiveCheck component for HP Active Support Library (Version: 3.0.0.3)

Adobe AIR (Version: 1.5.3.9130)

Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)

Adobe Flash Player 11 Plugin (Version: 11.7.700.224)

Agatha Christie - Peril at End House (Version: 2.2.0.95)

Apple Application Support (Version: 2.0.1)

Apple Software Update (Version: 2.1.3.127)

Bejeweled 2 Deluxe (Version: 2.2.0.95)

Bing Rewards Client Installer (Version: 16.0.345.0)

Blasterball 3 (Version: 2.2.0.95)

Blio (Version: 2.0.5350)

Bounce Symphony (Version: 2.2.0.95)

BufferChm (Version: 130.0.331.000)

Build-a-lot 2 (Version: 2.2.0.95)

Cake Mania (Version: 2.2.0.95)

Carbonite (Version: 5.4.5 build 3075 (Apr-27-2013))

Chuzzle Deluxe (Version: 2.2.0.95)

CyberLink DVD Suite Deluxe (Version: 7.0.3210)

D3DX10 (Version: 15.4.2368.0902)

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

Destinations (Version: 130.0.0.0)

DeviceDiscovery (Version: 130.0.372.000)

Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)

DocMgr (Version: 130.0.000.000)

DocProc (Version: 13.0.0.0)

Dora's World Adventure (Version: 2.2.0.95)

DVD Menu Pack for HP MediaSmart Video (Version: 4.2.4412)

Escape Rosecliff Island (Version: 2.2.0.95)

Farm Frenzy (Version: 2.2.0.95)

FATE (Version: 2.2.0.95)

Fax (Version: 130.0.418.000)

File Opener Pro

Final Drive Nitro (Version: 2.2.0.95)

Google Toolbar for Internet Explorer (Version: 1.0.0)

Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)

Google Update Helper (Version: 1.3.21.153)

GPBaseService2 (Version: 130.0.371.000)

Heroes of Hellas 2 - Olympia (Version: 2.2.0.95)

HP Auto (Version: 1.0.12494.3472)

HP Client Services (Version: 1.0.12656.3472)

HP Customer Experience Enhancements (Version: 6.0.1.7)

HP Customer Participation Program 13.0 (Version: 13.0)

HP Document Manager 2.0 (Version: 2.0)

HP Game Console

HP Games (Version: 1.0.1.5)

HP Imaging Device Functions 13.0 (Version: 13.0)

HP MediaSmart DVD (Version: 4.2.4521)

HP MediaSmart Music (Version: 4.2.4517)

HP MediaSmart Photo (Version: 4.2.4513)

HP MediaSmart SmartMenu (Version: 3.1.2.4)

HP MediaSmart Video (Version: 4.2.4522)

HP MediaSmart/TouchSmart Netflix (Version: 1.0.4.0)

HP MovieStore (Version: 1.0.027)

HP MovieStore (Version: 2.0.2)

HP Odometer (Version: 2.10.0000)

HP Officejet 4500 G510g-m (Version: 13.0)

HP Setup (Version: 8.4.4400.3525)

HP Setup Manager (Version: 1.0.12844.3519)

HP Smart Web Printing 4.5 (Version: 4.5)

HP Solution Center 13.0 (Version: 13.0)

HP Support Information (Version: 10.1.1000)

HP Update (Version: 5.002.003.003)

HP Vision Hardware Diagnostics (Version: 2.1.6.0)

HPAsset component for HP Active Support Library (Version: 3.0.2.2)

HPProductAssistant (Version: 130.0.371.000)

HPSSupply (Version: 130.0.371.000)

Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2119)

Jewel Quest Solitaire 2 (Version: 2.2.0.95)

Junk Mail filter update (Version: 15.4.3502.0922)

Kobo (Version: 1.6)

LabelPrint (Version: 2.5.3130)

LightScribe System Software (Version: 1.18.15.1)

MarketResearch (Version: 130.0.374.000)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office 2010 Service Pack 1 (SP1)

Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)

Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)

Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)

Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Outlook 2010 (Version: 14.0.6029.1000)

Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)

Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher 2007 (Version: 12.0.6612.1000)

Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)

Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Outlook 2010 (Version: 14.0.6029.1000)

Microsoft Silverlight (Version: 5.1.20513.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)

Movie Theme Pack for HP MediaSmart Video (Version: 4.2.4412)

MSVCRT (Version: 15.4.2862.0708)

MSVCRT_amd64 (Version: 15.4.2862.0708)

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)

Mystery P.I. - The London Caper (Version: 2.2.0.95)

Network64 (Version: 130.0.374.000)

Network64 (Version: 140.0.221.000)

Norton Internet Security (Version: 18.7.2.3)

Norton Online Backup (Version: 2.1.17869)

Nuance PDF Converter Professional 7 (Version: 7.20.6175)

OCR Software by I.R.I.S. 13.0 (Version: 13.0)

PC Cleaners

Penguins! (Version: 2.2.0.95)

Photo Explosion (Version: 4.0.0.12)

PhotoNow! (Version: 1.1.7717)

PictureMover (Version: 3.5.0.33)

Pinnacle Instant DVD Recorder (Version: 2.6.0.118)

Pinnacle Studio 12 (Version: 12.1.3.6605)

Pinnacle Video Driver (Version: 12.1.0.029)

Plants vs. Zombies (Version: 2.2.0.95)

PlayReady PC Runtime amd64 (Version: 1.3.0)

PlayReady PC Runtime x86 (Version: 1.3.0)

Poker Superstars III (Version: 2.2.0.95)

Polar Bowler (Version: 2.2.0.95)

Polar Golfer (Version: 2.2.0.95)

Power2Go (Version: 6.1.4329)

PowerDirector (Version: 8.0.3129)

PressReader (Version: 5.10.1102.0)

Productivity 3.1 Toolbar (Version: 6.5.2.8)

QuickTime (Version: 7.70.80.34)

Realtek High Definition Audio Driver (Version: 6.0.1.6196)

Recovery Manager (Version: 5.5.3219)

RoxioNow Player (Version: 1.9.5.101)

Scan (Version: 13.0.0.0)

Scansoft PDF Professional

Shop for HP Supplies (Version: 13.0)

SmartWebPrinting (Version: 130.0.373.000)

SolutionCenter (Version: 130.0.373.000)

Status (Version: 130.0.373.000)

Toolbox (Version: 130.0.648.000)

TrayApp (Version: 130.0.376.000)

TurboTax 2011

TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)

TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0474)

TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)

TurboTax 2011 wrapper (Version: 011.000.0121)

TurboTax 2011 wtniper (Version: 011.000.1376)

TurboTax 2012 (Version: 2012.0)

TurboTax 2012 WinPerFedFormset (Version: 012.000.1842)

TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0419)

TurboTax 2012 WinPerTaxSupport (Version: 012.000.0178)

TurboTax 2012 wrapper (Version: 012.000.0127)

TurboTax 2012 wtniper (Version: 012.000.1142)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office 2010 (KB2494150)

Update for Microsoft Office 2010 (KB2553065)

Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition

Update for Microsoft Office 2010 (KB2566458)

Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition

Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition

Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition

Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition

Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition

Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition

Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition

Virtual Families (Version: 2.2.0.95)

Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)

WebReg (Version: 130.0.132.017)

Wheel of Fortune 2 (Version: 2.2.0.95)

Windows Live Communications Platform (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3502.0922)

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)

Windows Live Installer (Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3502.0922)

Windows Live Mail (Version: 15.4.3502.0922)

Windows Live Messenger (Version: 15.4.3502.0922)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (Version: 15.4.3502.0922)

Windows Live Photo Common (Version: 15.4.3502.0922)

Windows Live Photo Gallery (Version: 15.4.3502.0922)

Windows Live PIMT Platform (Version: 15.4.3502.0922)

Windows Live SOXE (Version: 15.4.3502.0922)

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

Windows Live UX Platform (Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)

Windows Live Writer (Version: 15.4.3502.0922)

Windows Live Writer Resources (Version: 15.4.3502.0922)

Wisdom-soft ScreenHunter 5.0 Free

WordPerfect Family Pack 5 (Version: 11.0)

Yahoo! Toolbar

Zinio Reader 4 (Version: 4.0.3184)

Zuma Deluxe (Version: 2.2.0.95)

 

========================= Memory info: ===================================

 

Percentage of memory in use: 34%

Total physical RAM: 4061.18 MB

Available physical RAM: 2674.04 MB

Total Pagefile: 8120.5 MB

Available Pagefile: 6310.7 MB

Total Virtual: 4095.88 MB

Available Virtual: 3964.89 MB

 

========================= Partitions: =====================================

 

1 Drive c: (OS) (Fixed) (Total:918.33 GB) (Free:806.62 GB) NTFS

2 Drive d: (HP_RECOVERY) (Fixed) (Total:13.08 GB) (Free:1.61 GB) NTFS

 

========================= Users: ========================================

 

User accounts for \\ADMIN-HP

 

Admin                    Administrator            Celia                   

Guest                   

 

 

**** End of log ****

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

I could not find a log for the TDSSkiller…

AdwCleaner found some conduit programs and I assume killed them:

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

# AdwCleaner v2.306 - Logfile created 07/26/2013 at 13:22:37

# Updated 19/07/2013 by Xplode

# Operating system : Windows 7 Home Premium  (64 bits)

# User : Admin - ADMIN-HP

# Boot Mode : Normal

# Running from : C:\Users\Admin\Desktop\AdwCleaner.exe

# Option [Delete]

 

 

***** [Services] *****

 

 

***** [Files / Folders] *****

 

File Deleted : C:\END

File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

File Deleted : C:\Users\Admin\AppData\Local\Temp\Uninstall.exe

File Deleted : C:\Users\Public\Desktop\eBay.lnk

Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com

Folder Deleted : C:\Program Files (x86)\Productivity_3.1

Folder Deleted : C:\Users\Admin\AppData\Local\Conduit

Folder Deleted : C:\Users\Admin\AppData\LocalLow\Conduit

Folder Deleted : C:\Users\Admin\AppData\LocalLow\PriceGong

Folder Deleted : C:\Users\Admin\AppData\LocalLow\Productivity_3.1

Folder Deleted : C:\Users\Celia\AppData\LocalLow\Conduit

Folder Deleted : C:\Users\Celia\AppData\LocalLow\PriceGong

Folder Deleted : C:\Users\Celia\AppData\LocalLow\Productivity_3.1

 

***** [Registry] *****

 

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit

Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes

Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong

Key Deleted : HKCU\Software\AppDataLow\Software\Productivity_3.1

Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar

Key Deleted : HKCU\Software\AppDataLow\Toolbar

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9427041A-A8DC-4D06-9A68-93873486E957}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9427041A-A8DC-4D06-9A68-93873486E957}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKCU\Software\Productivity_3.1

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3008668

Key Deleted : HKLM\Software\Conduit

Key Deleted : HKLM\Software\Freeze.com

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2273BD45-9747-41D0-B552-6CE3A3ED94DA}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKLM\Software\Productivity_3.1

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2273BD45-9747-41D0-B552-6CE3A3ED94DA}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9427041A-A8DC-4D06-9A68-93873486E957}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44F2DC87-0EB7-4769-8AE4-12A2FDE743C6}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AA471B99-F514-4B19-A6DA-65B903723ED5}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9427041A-A8DC-4D06-9A68-93873486E957}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Productivity_3.1 Toolbar

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{9427041A-A8DC-4D06-9A68-93873486E957}]

Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{9427041A-A8DC-4D06-9A68-93873486E957}]

Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{9427041A-A8DC-4D06-9A68-93873486E957}]

Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]

 

***** [Internet Browsers] *****

 

-\\ Internet Explorer v9.0.8112.16490

 

[OK] Registry is clean.

 

-\\ Mozilla Firefox v [Unable to get version]

 

File : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8dhk7iku.default\prefs.js

 

[OK] File is clean.

 

-\\ Google Chrome v [Unable to get version]

 

File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

 

[OK] File is clean.

 

*************************

 

AdwCleaner[S1].txt - [6065 octets] - [26/07/2013 13:22:37]

 

########## EOF - C:\AdwCleaner[S1].txt - [6125 octets] ##########

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

ESET:

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

C:\Users\All Users\PC Cleaners\PCCleaners.exe               probably a variant of Win32/PCCleaners application        

C:\ProgramData\PC Cleaners\PCCleaners.exe   probably a variant of Win32/PCCleaners application         cleaned by deleting - quarantined

C:\Users\Admin\Desktop\dvdburning.exe          a variant of Win32/InstallIQ.A application              cleaned by deleting - quarantined



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:49 PM

Posted 27 July 2013 - 07:12 PM

Yes, that was it ... Have a great day!


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Delta007

Delta007
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:49 PM

Posted 28 July 2013 - 03:46 PM

From what I have read, I think I had a light case...(conduit had not yet tried to change my homepage, etc)...but I prefer NO case... :thumbup2:

 

Thank you so much for your help !!!



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:49 PM

Posted 28 July 2013 - 06:56 PM

You're welcome!!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users