Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HELP - virus issue


  • This topic is locked This topic is locked
34 replies to this topic

#1 oona.breyer

oona.breyer

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 12:01 AM

Hi everyone. I'm extremely frustrated. It seems I have a virus, computer started maxing CPU about a month ago? I thought it was a dell issue with the sound card. I've been working on fixing that. But then things started shutting down, skype, can't windows update, etc. I finally figured out I have virus, I was running Advanced System Care, the paid version. I've run the virus scan, the malware, every scan it has and it says things are great. Which they aren't. I just downloaded AVG to get that running and of course it's not letting me run AVG at all, it opens and then shuts it down before it can run. Do'nt have a clue where this could even have come from. I would REALLY appreciate any help anyone has. Thanks. Running Windows 7. 


Edited by Orange Blossom, 24 August 2013 - 01:05 AM.
Moved to AII. ~ OB


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:03:07 PM

Posted 24 August 2013 - 03:16 AM

Hello oona.breyer
Can we get some more information with these scans first .........

 

Download Security Check by Screen317
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If any security program requests permission to access the Internet, allow it to do so.

 

 

Download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open when you run Reset FF Proxy Settings

Checkmark the following boxes:
•Flush DNS
•Report IE Proxy Settings
•Reset IE Proxy Settings
•Report FF Proxy Settings
•Reset FF Proxy Settings
•List content of Hosts
•List IP configuration
•List last 10 Event Viewer log
•List Installed Programs
•List Users, Partitions and Memory size.
•List Minidump Files
 Click Go and copy / paste the result (Result.txt).

 

 

Please post a snapshot with Speccy for more system details -
How to Publish a snapshot with Speccy <<-- Directions Here (post the link only)

 

 

Please download Malwarebytes Anti-Malware Free (aka MBAM)

Do not accept the Free Trial Version at this time ....................
* Double-click MBAM -setup.exe and follow the prompts to install the program.
* At the end, be sure to Check for Updates to be so it is current
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Scan, then click Quick Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.
If you are not sure of any items, post the log and ask if it should be removed.

Be sure to reboot the computer after you post the log.

 

 

 

Download SUPERAntiSpyware Free (aka SAS)

Do not accept the Free 14 day Trial offer at this time ...................
* Double-click SAS -setup.exe and follow the prompts to install the program.
* At the end, be sure to Check for Updates to be so it is current
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to reboot the computer after you post the log.

 

 

Please download AdwCleaner by Xplode onto your desktop.

*Close all open programs and internet browsers.
*Double click on adwcleaner.exe to run the tool.
*Click on Delete.
*Confirm each time with Ok.
* NOTE : Your computer will be rebooted automatically, and a log file will open after the restart.

*Please post the contents of that logfile with your next reply.
*You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

 

Thank You -



#3 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 09:43 AM

Thanks so much for your help. I downloaded all the cleaner programs and am running them now. Here are the results from the other ones. Also side note, I run Chrome and didn't see that in the logs if that makes a difference?

 

 Results of screen317's Security Check version 0.99.72  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
AVG AntiVirus 2013             
Advanced SystemCare Ultimate   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Java 7 Update 25  
 Adobe Flash Player 10 Flash Player out of Date! 
 Adobe Reader 10.1.7 Adobe Reader out of Date!  
 Google Chrome 28.0.1500.95  
 Google Chrome 29.0.1547.57  
````````Process Check: objlist.exe by Laurent````````  
 AVG avgwdsvc.exe 
 IObit IObit Malware Fighter IMFsrv.exe  
 IObit IObit Malware Fighter IMF.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0% 
````````````````````End of Log`````````````````````` 

 

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Oona (administrator) on 24-08-2013 at 07:31:54
Running from "C:\Users\Oona\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Connected)
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Betsy2
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 00-DB-DF-0F-9A-2F
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 00-DB-DF-0F-9A-2F
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 00-DB-DF-0F-9A-32
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
   Physical Address. . . . . . . . . : 00-DB-DF-0F-9A-2E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::edf5:dfe9:d589:dc3c%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, August 23, 2013 4:21:13 PM
   Lease Expires . . . . . . . . . . : Saturday, August 24, 2013 10:11:01 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 234937311
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-86-36-6E-5C-F9-DD-40-BB-93
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : wds01.com
   Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 5C-F9-DD-40-BB-93
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{53DF4274-AA86-4362-BB26-B288F109F098}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 14:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{5C955976-CDBC-4207-A5A2-A0B1B2835C6F}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{F6CC9E3D-9638-41F8-9D7F-E8E68CBFB022}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{B18AE4CD-B134-4FED-B7D2-13338B0C0D65}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.wds01.com:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4007:800::1006
 74.125.224.66
 74.125.224.71
 74.125.224.67
 74.125.224.64
 74.125.224.70
 74.125.224.69
 74.125.224.73
 74.125.224.78
 74.125.224.65
 74.125.224.72
 74.125.224.68
 
 
Pinging google.com [74.125.224.224] with 32 bytes of data:
Reply from 74.125.224.224: bytes=32 time=13ms TTL=52
Reply from 74.125.224.224: bytes=32 time=12ms TTL=53
 
Ping statistics for 74.125.224.224:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 12ms, Maximum = 13ms, Average = 12ms
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.139.183.24
 98.138.253.109
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=43ms TTL=49
Reply from 206.190.36.45: bytes=32 time=45ms TTL=49
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 43ms, Maximum = 45ms, Average = 44ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 17...00 db df 0f 9a 2f ......Microsoft Virtual WiFi Miniport Adapter #2
 16...00 db df 0f 9a 2f ......Microsoft Virtual WiFi Miniport Adapter
 14...00 db df 0f 9a 32 ......Bluetooth Device (Personal Area Network)
 13...00 db df 0f 9a 2e ......Intel® Centrino® Advanced-N 6230
 11...5c f9 dd 40 bb 93 ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
  1...........................Software Loopback Interface 1
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.4     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.4    281
      192.168.1.4  255.255.255.255         On-link       192.168.1.4    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.4    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.4    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.4    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 13    281 fe80::/64                On-link
 13    281 fe80::edf5:dfe9:d589:dc3c/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/24/2013 06:20:03 AM) (Source: Application Error) (User: )
Description: Faulting application name: SoftwareUpdate.exe, version: 2.1.3.127, time stamp: 0x4de6dd5a
Faulting module name: nvdxgiwrap.dll, version: 8.17.12.8577, time stamp: 0x4eb2dcb8
Exception code: 0xc0000005
Fault offset: 0x00002a5a
Faulting process id: 0x1d60
Faulting application start time: 0xSoftwareUpdate.exe0
Faulting application path: SoftwareUpdate.exe1
Faulting module path: SoftwareUpdate.exe2
Report Id: SoftwareUpdate.exe3
 
Error: (08/23/2013 06:52:55 PM) (Source: Application Error) (User: )
Description: Faulting application name: ToolbarAcceptRate.exe, version: 0.0.0.0, time stamp: 0x50c54ccf
Faulting module name: nvdxgiwrap.dll, version: 8.17.12.8577, time stamp: 0x4eb2dcb8
Exception code: 0xc0000005
Fault offset: 0x00002a5a
Faulting process id: 0x1310
Faulting application start time: 0xToolbarAcceptRate.exe0
Faulting application path: ToolbarAcceptRate.exe1
Faulting module path: ToolbarAcceptRate.exe2
Report Id: ToolbarAcceptRate.exe3
 
Error: (08/23/2013 06:47:03 PM) (Source: Application Error) (User: )
Description: Faulting application name: helppane.exe, version: 6.1.7600.16385, time stamp: 0x4a5bd17c
Faulting module name: MSHTML.dll, version: 10.0.9200.16635, time stamp: 0x51b7ad9b
Exception code: 0xc0000005
Fault offset: 0x0000000000023d5b
Faulting process id: 0x944
Faulting application start time: 0xhelppane.exe0
Faulting application path: helppane.exe1
Faulting module path: helppane.exe2
Report Id: helppane.exe3
 
Error: (08/23/2013 04:21:10 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/23/2013 03:39:45 PM) (Source: Application Error) (User: )
Description: Faulting application name: Skype.exe, version: 6.7.59.102, time stamp: 0x51f0e4c4
Faulting module name: nvdxgiwrap.dll, version: 8.17.12.8577, time stamp: 0x4eb2dcb8
Exception code: 0xc0000005
Fault offset: 0x00002a5a
Faulting process id: 0x350
Faulting application start time: 0xSkype.exe0
Faulting application path: Skype.exe1
Faulting module path: Skype.exe2
Report Id: Skype.exe3
 
Error: (08/23/2013 03:37:31 PM) (Source: Application Error) (User: )
Description: Faulting application name: Skype.exe, version: 6.7.59.102, time stamp: 0x51f0e4c4
Faulting module name: nvdxgiwrap.dll, version: 8.17.12.8577, time stamp: 0x4eb2dcb8
Exception code: 0xc0000005
Fault offset: 0x00002a5a
Faulting process id: 0x434
Faulting application start time: 0xSkype.exe0
Faulting application path: Skype.exe1
Faulting module path: Skype.exe2
Report Id: Skype.exe3
 
Error: (08/23/2013 01:59:52 PM) (Source: Application Error) (User: )
Description: Faulting application name: Skype.exe, version: 6.7.59.102, time stamp: 0x51f0e4c4
Faulting module name: nvdxgiwrap.dll, version: 8.17.12.8577, time stamp: 0x4eb2dcb8
Exception code: 0xc0000005
Fault offset: 0x00002a5a
Faulting process id: 0x100
Faulting application start time: 0xSkype.exe0
Faulting application path: Skype.exe1
Faulting module path: Skype.exe2
Report Id: Skype.exe3
 
Error: (08/23/2013 01:59:26 PM) (Source: Application Error) (User: )
Description: Faulting application name: Skype.exe, version: 6.7.59.102, time stamp: 0x51f0e4c4
Faulting module name: nvdxgiwrap.dll, version: 8.17.12.8577, time stamp: 0x4eb2dcb8
Exception code: 0xc0000005
Fault offset: 0x00002a5a
Faulting process id: 0xe34
Faulting application start time: 0xSkype.exe0
Faulting application path: Skype.exe1
Faulting module path: Skype.exe2
Report Id: Skype.exe3
 
Error: (08/23/2013 01:49:34 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.
 
 
Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index.  (HRESULT : 0x80040d03) (0x80040d03)
 
Error: (08/23/2013 01:49:34 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.
 
Context: Windows Application
 
 
Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index.  (HRESULT : 0x80040d03) (0x80040d03)
 
 
System errors:
=============
Error: (08/23/2013 06:35:23 PM) (Source: DCOM) (User: )
Description: {9B1F122C-2982-4E91-AA8B-E071D54F2A4D}
 
Error: (08/23/2013 04:26:57 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service hung on starting.
 
Error: (08/23/2013 04:20:21 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service did not shut down properly after receiving a preshutdown control.
 
Error: (08/23/2013 04:20:20 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
Error: (08/23/2013 01:55:18 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service hung on starting.
 
Error: (08/23/2013 01:50:06 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: 
%%1056
 
Error: (08/23/2013 01:49:34 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (08/23/2013 01:49:34 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-2147218173.
 
Error: (08/23/2013 01:48:35 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:40:09 PM on ?8/?23/?2013 was unexpected.
 
Error: (08/23/2013 01:36:54 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
 
Microsoft Office Sessions:
=========================
Error: (08/24/2013 06:20:03 AM) (Source: Application Error)(User: )
Description: SoftwareUpdate.exe2.1.3.1274de6dd5anvdxgiwrap.dll8.17.12.85774eb2dcb8c000000500002a5a1d6001cea0cca342718bC:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exeC:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dlle27c1a85-0cbf-11e3-a97c-00dbdf0f9a32
 
Error: (08/23/2013 06:52:55 PM) (Source: Application Error)(User: )
Description: ToolbarAcceptRate.exe0.0.0.050c54ccfnvdxgiwrap.dll8.17.12.85774eb2dcb8c000000500002a5a131001cea06ca2b91081C:\Users\Oona\AppData\Local\Temp\is-JIG44.tmp\ToolbarAcceptRate.exeC:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dlle44bcd78-0c5f-11e3-a97c-00dbdf0f9a32
 
Error: (08/23/2013 06:47:03 PM) (Source: Application Error)(User: )
Description: helppane.exe6.1.7600.163854a5bd17cMSHTML.dll10.0.9200.1663551b7ad9bc00000050000000000023d5b94401cea06bd078e144C:\Windows\helppane.exeC:\Windows\system32\MSHTML.dll1261609c-0c5f-11e3-a97c-00dbdf0f9a32
 
Error: (08/23/2013 04:21:10 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/23/2013 03:39:45 PM) (Source: Application Error)(User: )
Description: Skype.exe6.7.59.10251f0e4c4nvdxgiwrap.dll8.17.12.85774eb2dcb8c000000500002a5a35001cea051a570420aC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dlle8258a42-0c44-11e3-b5a6-00dbdf0f9a32
 
Error: (08/23/2013 03:37:31 PM) (Source: Application Error)(User: )
Description: Skype.exe6.7.59.10251f0e4c4nvdxgiwrap.dll8.17.12.85774eb2dcb8c000000500002a5a43401cea0515545b0faC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dll9853a1ce-0c44-11e3-b5a6-00dbdf0f9a32
 
Error: (08/23/2013 01:59:52 PM) (Source: Application Error)(User: )
Description: Skype.exe6.7.59.10251f0e4c4nvdxgiwrap.dll8.17.12.85774eb2dcb8c000000500002a5a10001cea043b09e1984C:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dllf41024d0-0c36-11e3-b5a6-00dbdf0f9a32
 
Error: (08/23/2013 01:59:26 PM) (Source: Application Error)(User: )
Description: Skype.exe6.7.59.10251f0e4c4nvdxgiwrap.dll8.17.12.85774eb2dcb8c000000500002a5ae3401cea04398d99d5dC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dlle4a7374c-0c36-11e3-b5a6-00dbdf0f9a32
 
Error: (08/23/2013 01:49:34 PM) (Source: Windows Search Service)(User: )
Description: 
Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index.  (HRESULT : 0x80040d03) (0x80040d03)
 
Error: (08/23/2013 01:49:34 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application
 
 
Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index.  (HRESULT : 0x80040d03) (0x80040d03)
 
 
=========================== Installed Programs ============================
 
AccelerometerP11 (Version: 2.00.11.22)
Accidental Damage Services Agreement (Version: 2.0.0)
Adobe Acrobat XI Pro (Version: 11.0)
Adobe Acrobat XI Pro (Version: 11.0.03)
Adobe AIR (Version: 3.6.0.5970)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Asset Services CS4 (Version: 4)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Creative Cloud (Version: 2.0.0.181)
Adobe Creative Suite 4 Web Premium (Version: 4.0)
Adobe CS4 American English Speech Analysis Models (Version: 1)
Adobe CS4 French Speech Analysis Models (Version: 1)
Adobe CS4 German Speech Analysis Models (Version: 1)
Adobe CS4 International English Speech Analysis Models (Version: 1)
Adobe CS4 Italian Speech Analysis Models (Version: 1)
Adobe CS4 Japanese Speech Analysis Models (Version: 1)
Adobe CS4 Korean Speech Analysis Models (Version: 1)
Adobe CS4 Spanish Speech Analysis Models (Version: 1)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS6 (Version: 12)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Fireworks CS6 (Version: 12.0.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 10 Plugin (Version: 10.0.2.54)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Fonts All (Version: 2.0)
Adobe Help Manager (Version: 4.0.244)
Adobe Illustrator CS4 (Version: 14.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Photoshop Lightroom 4.4 64-bit (Version: 4.4.1)
Adobe Premiere Pro CS6 (Version: 6.0)
Adobe Reader X (10.1.7) MUI (Version: 10.1.7)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Soundbooth CS4 (Version: 2)
Adobe Soundbooth CS4 Codecs (Version: 2)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe Version Cue CS4 Server (Version: 4.0)
Adobe Widget Browser (Version: 2.0 Build 348)
Adobe Widget Browser (Version: 2.0.348)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Advanced Audio FX Engine (Version: 1.12.05)
Advanced SystemCare Ultimate 6 (Version: 6.0.0)
Akamai NetSession Interface
Apple Application Support (Version: 2.3)
Apple Software Update (Version: 2.1.3.127)
AVG 2013 (Version: 13.0.3211)
AVG 2013 (Version: 13.0.3392)
AVG 2013 (Version: 2013.0.3392)
Banctec Service Agreement (Version: 2.0.0)
bl (Version: 1.0.0)
collagesDesigner (Version: collagesDesigner 3.1.2)
ColorMunki Smile
Complete Care Business Service Agreement (Version: 2.0.0)
Connect (Version: 1.0.0.1)
Consumer In-Home Service Agreement (Version: 2.0.0)
Cypress TrackPad (Version: 2.3.6.26)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell MusicStage (Version: 1.6.225.0)
Dell PhotoStage (Version: 1.5.0.130)
Dell Stage (Version: 1.7.209.0)
Dell Stage Remote (Version: 2.0.0.43)
Dell System Detect (Version: 5.0.2.57)
Dell System Detect Bootstrapper (Version: 1.1.0.15)
Dell VideoStage  (Version: 1.3.0.2513)
Dell Webcam Central (Version: 2.00.44)
Google Chrome (Version: 29.0.1547.57)
Google Talk Plugin (Version: 4.4.2.14502)
High-Definition Video Playback (Version: 7.3.10000.0.0)
HTC Driver Installer (Version: 4.3.0.001)
HTC Sync Manager (Version: 2.1.46.0)
Image Rescue 4
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2455)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.2.0.0284)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.1.0608)
Intel® WiDi (Version: 2.1.39.0)
Intel® Wireless Display
Intel® PROSet/Wireless WiFi Software (Version: 15.02.0000.1258)
IObit Apps Toolbar v7.4 (Version: 7.4)
IObit Malware Fighter (Version: 2.1)
IPTInstaller (Version: 4.0.8)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Junk Mail filter update (Version: 15.4.3502.0922)
kuler (Version: 2.0)
LeapFrog Connect (Version: 4.0.33.15045)
LeapFrog My Pals Plugin (Version: 4.0.33.15045)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
My Dell (Version: 3.3.6280.92)
Nero 10 Movie ThemePack Basic (Version: 10.2.10200.0.0)
Nero Control Center 10 (Version: 10.6.12800.0.8)
Nero ControlCenter 10 Help (CHM) (Version: 10.2.10800)
Nero Core Components 10 (Version: 2.0.20500.9.16)
Nero Update (Version: 1.0.0018)
NVIDIA 3D Vision Driver 285.77 (Version: 285.77)
NVIDIA Control Panel 285.77 (Version: 285.77)
NVIDIA Graphics Driver 285.77 (Version: 285.77)
NVIDIA HD Audio Driver 1.2.24.0 (Version: 1.2.24.0)
NVIDIA Install Application (Version: 2.1002.48.261)
NVIDIA Optimus 1.5.21 (Version: 1.5.21)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.8577)
NVIDIA Update Components (Version: 1.5.21)
PDF Settings CS4 (Version: 9.0)
PDF Settings CS6 (Version: 11.0)
ph (Version: 1.0.0)
Photoshop Camera Raw (Version: 5.0)
Pixel Bender Toolkit (Version: 1.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Pradis Do Not Remove (Version: 5.17.0013)
Pradis: Creative Bible Lessons (Version: 5.17.0013)
Premium Service Agreement (Version: 2.0.0)
QualxServ Service Agreement (Version: 2.0.0)
Quickset64 (Version: 11.0.21)
QuickTime (Version: 7.74.80.86)
RadLab v1.3.2
Safari (Version: 5.34.57.2)
Skype™ 6.7 (Version: 6.7.102)
Smart Defrag 2 (Version: 2.8)
SmartSound Quicktracks for Premiere Elements 9.0 (Version: 3.12.3090)
Suite Shared Configuration CS4 (Version: 1.0)
Switch Sound File Converter
SyncUP (Version: 1.12.11500.11.105)
SyncUP (Version: 10.2.16500)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
WavePad Sound Editor
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WS10 Basic Edition
WS10 Basic Edition (Version: 10)
X-Rite Device Services Manager (Version: 2.2.59)
Zinio Reader 4 (Version: 4.2.4164)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 56%
Total physical RAM: 8086.17 MB
Available physical RAM: 3492.27 MB
Total Pagefile: 16170.52 MB
Available Pagefile: 11458.38 MB
Total Virtual: 4095.88 MB
Available Virtual: 3976.59 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:911.88 GB) (Free:645.16 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\BETSY2
 
Administrator            Guest                    Oona                     
UpdatusUser              
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****


#4 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 09:49 AM

 And the screen shoot, I'm not seeing how I can attach it here? Does it have to be at a url?

 

 

 

 

 

 



#5 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 09:56 AM

ALSO, I've got the other two running but it looks like the bug wont let Malwarebytes Anti-Malware Free open, I have it downloaded fine but it's just like AVG it blinks open for a second and shuts down instantly ..... :( :( HELP! 



#6 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 10:08 AM

here are the results from adwcleaner

 

# AdwCleaner v3.000 - Report created 24/08/2013 at 08:00:17
# Updated 20/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Oona - BETSY2
# Running from : C:\Users\Oona\Downloads\adwcleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
Service Deleted : Application Updater
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\IObit Apps Toolbar
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Users\Oona\AppData\Local\PackageAware
Folder Deleted : C:\Users\Oona\AppData\LocalLow\Search Settings
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Search Settings
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16635
 
 
-\\ Google Chrome v
 
[ File : C:\Users\Oona\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [2476 octets] - [24/08/2013 07:52:25]
AdwCleaner[S0].txt - [2318 octets] - [24/08/2013 08:00:17]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2378 octets] ##########


#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:03:07 PM

Posted 24 August 2013 - 05:34 PM

Hi -

Take your time and only work at your pace, we do understand how frustrating this can be to you ....

Not a lot will work with both of your Antivirus programs installed -

 

SUPERAntiSpyware log ?? Will the program run ??

 

Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

* Double-click on the Rkill desktop icon to run the tool.
* A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
* If not, delete the file, then download and use the one provided in Link 2.
* Do not reboot until instructed if you have "major problems".
* If the tool does not run from any of the links provided, please let me know.

If normal mode still doesn't work, run the tool from safe mode.
When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

 

 

Since IObit programs need a special Uninstaller, remove it with any uninstaller provided, next remove anything in Programs and Features, next follow the remover links provided.

Advanced SystemCare Ultimate 6 < Remove with the provided uninstaller. and then visit this site, or just follow the links provided >> http://singularlabs.com/uninstallers/security-software/ Item #17 IObit > Info > Tool (Note: Cleans left-overs after a normal uninstall)
IObit IObit Malware Fighter IMFsrv.exe < Remove from Programs and Features
IObit IObit Malware Fighter IMF.exe < Remove
IObit Apps Toolbar v7.4 (Version: 7.4) < Remove

 

Adobe Flash Player 10 Flash Player out of Date! Version 11 is current
Adobe Reader 10.1.7 Adobe Reader out of Date!  Version11 is current

Do not accept any Add-ons or Toolbars offered with the downloads, they are not part of Adobe.

 

Google Chrome 28.0.1500.95 < Remove old versions

 

Reset Hosts content: HERE Click Run and follow basic directions.

 

Go - Start > Programs > Malwarebytes => Across to Tools => Click on Chameleon
Now follow the instructions on using Malwarebytes Chameleon (then post log).

 

Follow the Speccy instructions, and you will see a URL link to post. Only post the link -

 

 

We need to try an External Scanner after you remove all of IObit programs.

Tell me if the program will not run or any error messages that you get -

Scan your machine with ESET OnlineScan

Use Internet Explorer for this if you can, as the program uses ActiveX
1. Hold down Control and click HERE to open ESET OnlineScan in a new window.
2. Click the ESET Online Scanner button.
3. NOTE :.For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

 

- 1. Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
- 2. Double click on the ESET Online Scanner icon on your desktop.

 

 4. Check "YES, I accept the Terms of Use."
 5. Click the Start button.
 6. Accept any security warnings from your browser.
 7. Under scan settings, check "Scan Archives" and "Remove found threats"
8. Click Advanced settings and select the following:
Scan potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth technology

 9. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this will take some time to download the program for a first time, and then download updated data base (1 to 2  hours is not unusual), more for a badly infected computer.
10. When the scan completes, click List Threats
11. Click Export, and save the file to your desktop using a unique name, such as ESETScan.
- Include the contents of this report in your next reply.
12. Click the Back button.
13. Click the Finish button

 

Any questions, please ask at any time, and we will try to help you -

Thanks -



#8 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 10:57 PM

Thank you! 

 

Ok, I rean Rkill, it says I can run virus now but it never gave me a notepad of what it did? Also I uninstalled IOBit everything but the >tool link downloaded and then opened and said I could only run it as administrator and I didn't see any option to do that? So I don't think that ran? 

 

Still can't run AVG? Or the one you gave me? :( I'll hit send and go from here... 



Found the log! Duh, on the desktop (just like you said)

 

Rkill 2.6.1 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 08/24/2013 08:39:22 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]
 
Backup Registry file created at:
 C:\Users\Oona\Desktop\rkill\rkill-08-24-2013-08-39-27.reg
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 08/24/2013 08:40:51 PM
Execution time: 0 hours(s), 1 minute(s), and 29 seconds(s)


#9 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 11:01 PM

Also used by brain and the IOBit uninstaller is working now... 



#10 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 11:04 PM

the SUPERAntiSpyware  did run, it found 211 things but they were all tracking cookies? nothing important, I went in to copy the log here but they're aren't any logs kept? Do you want me to run it again and copy it before I close it? 



#11 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 11:27 PM

The flash player is old because I browse in Chrome and it's built in? And when I open PDF's they open in acrobat pro that I have so I don't use the other one? So I left those alone....?

 

I couldn't find the old version of Chrome? Only my current one? 

 

Reset Hosts content: HERE Click Run and follow basic directions. DID that

 

When I tried to run Malwarebytes Chameleon  it didn't work and the error message I got said Microsoft HTML help executable has stopped working because of a program error. And that's as far as I could get? :( 

 

http://speccy.piriform.com/results/tKIkCXb48iGagHCctwiixNB (here is the link for speccy)

 

Ok, I'm going to reboot MS fix thing told me to I think? And then try scanning with the external scanner.... 



#12 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:03:07 PM

Posted 24 August 2013 - 11:35 PM

As posted above, we do know how frustrating this can be - Take your time .......

 

Ok - I will check your Malwarebytes Errors for you, but did you get the set of boxes to click on ?

Was this error prior to starting scanning, or did you get to MBAM Chameleon boxes ?

 

211 things but they were all tracking cookies? < Thanks - Nothing worse than a page of Cookies.

If there were other items listed then they are needed, but Cookies just take space -

......... SAS Logs are kept for you to read, or post (Lower Left side as View Scan Logs)

 

To run it as administrator < Right Click on it, and select Run as Administrator -

 

 

IOBit uninstaller tool is required to fully clean out the program, or you never remove it fully.

 

Please ask about anything you want, as I am not too far away today.

 

I am still following bits up -

 

Thanks -



#13 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 11:36 PM

Also, before I do that I shut down and started up in safe mode to try and run AVG here is the report from that one:

 

AVG 2013 AntiVirus command line scanner
Copyright © 1992 - 2012 AVG Technologies
Program version 2013.0.3392, engine 2013.0.3211
Virus Database: Version 3211/6604 2013-08-24
c:\Documents and Settings\ Locked file. Not tested. 
c:\hiberfil.sys Locked file. Not tested. 
c:\pagefile.sys Locked file. Not tested. 
c:\ProgramData\Desktop\ Locked file. Not tested. 
c:\ProgramData\Documents\ Locked file. Not tested. 
c:\ProgramData\Favorites\ Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\005bf3404cbc81da591043264d21209d_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\00bec793d0470df8e90707eed82519b3_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\02c625af6764a60806a222060987901b_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\031f40832071cba9b4c0223b8fa79c42_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0353920155b9ef585f96e99d37742d9d_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\060294541f560bcfbc2f17a90bcf204c_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\078916e86f3590eed64978d60ab3076c_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\08fec9bd0442a3f159f9c180b239849a_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0a281ae3d51f4a4adcf93b215213d169_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0a90480f99f564bf2672602b2ee2dc43_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0c06ea76ca2cfb5598cc3a47e6a9d29a_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0d7a90aea7042cfdfd58f36c48934b35_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\17e673883333651e407b9b0fdbabac70_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\193b97046cec6b21f7bf9a1ac4952056_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1ed451987639ef44a22bdf50f7765cd8_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2249480cce473d568cef7f0f85bf17cb_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\24026cd3326c7edf4dad0111d6043a31_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\259d7faf908b13847a4cc94a975d8b49_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\25a83320c069632123e3792f876de749_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\278abbdffdef7d76270b05f8326c4cd3_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\28301a3ce917bc1d288cee1632589076_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2866fc27efb116db98883a97cf3a0347_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\28ba3fb57d3fa999e5db028d87f63fec_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\29f522ee8dcf733d4c6c1c7d69861ba7_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2cb9effc533eaf32a68fe9c39475e713_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\32cbffdf8628314054f19bfc23002065_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\32d2392a79d5526b6b6047fd3e9d152d_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3418eb15e255ea354e447c3aa6ba59d8_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3519a9998879c81f27fde07c44398fa4_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\355d14c21267911bb9dd4d0af92380e6_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\35c8996ea0745a9fc7ad29ae88d47164_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\375432aef5114c219f261ffe38c11d47_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3926f548f4f0223d2492a23bffe36a3f_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3a82e141cc20b7033394f37ea19ee949_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3b7ac39483b163a0e4019210476041fc_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\41c8d0e89916885c0da22a78fabf8cf6_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\41d6a51f75bbb5463a1e36a74454e05e_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\42643507a77d302634b8e863eaebf111_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\42c3f84a338483ae26c4a07986801e9c_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\43d32e4ce14fda0da23014b9b90eca9b_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\43ddcef516bb36659ce3ad5c54e0117c_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\448a111c4dbefc9ed51eb0f204ee3e84_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\469c4cd87feeda608e4228ecee86e9b2_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\486e30ba1b6d181b164426ae3258708c_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\49566ab0cc66da2f2401ed92b9669eff_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\56c9baac440691b68e47dab7db3a7fdc_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\56cc743ed21df5ad9d67bcd923c04ab0_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5aa7bd18f370f74bb752afd239bd2898_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\60fa24f72f65bf340fa0229ab9e9eabd_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\63c614e7d97fda615cae02042d81a137_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\642ebdab18fcaa32c2c491486343d5ed_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\67b6b030b1f14f20efb26bc50cb1b7a0_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6925c78acfca6ad3341b2447b1e7cc5e_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6daf0834b05452eb95fb83fd3e8609e2_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\71b2d3f790eaee3625d43a9761637031_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7377f54044815e2245f4fec5cc08df49_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\75aed23ceaf2375d9f451c14f03fee35_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\78eef4d094ba734f7ee71302a38b8b96_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7e604a077eba7072d04b3cce1d00fe2a_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\836e3a8012e2b390ae7149a161ca9818_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\88df6528c24128330d9cdf5d71ccaa05_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8d4b94abf458b29aa4a00d8a006233fe_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8dad0a87f8e1a5830c671b25cf556a96_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8e505fa33a035801301a3362c07700c6_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8ff5be2dfdb0dad60abdcb77f6c05a2a_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9249c55994a3037c79298a31112a5938_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9627d4ec65778d22c633292a6b3bcd40_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\964aa3d54ccf57e859e2148220775e84_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\976bf708c4a841fca6152719152083a2_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9f97507380244aae0b91b36ff76ade37_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9fcca3010ee16343ef3825a55bd6919d_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a42f1256c6083794cd70a6931e3bfd9e_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a7760d3f7df3add63cee136d2656b76f_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\abdbabdc85f26f7c5eb2b765b16980ce_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ae974b9691e6c7c1476799acb7fa1e21_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\af05750b58fe040e6d7a9da1d2998754_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b0c9d6519112c7b28a3eddb47d880968_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b50ba251c1504e22d43b13aba12f7a95_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b6760b08b6c99d70cd115b976b236f2f_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b72ec93b246fa828795e07b5f2bb5342_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b80e3fb371c8df4a5fde61a3c07e9c84_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c014f51214fbc063c44ed1186e5147b8_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c3d911be0bddee5fc5725ee700c8ac95_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d1d9325b96e93b413166d7133eb33919_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d2589b9f274a26260b3f4bfd4f957aa4_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d29b748dd21dd81af6a1a528604d9519_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d402097d14c33989bc8708121866eb15_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d859219a1bf0c5a096a04bef0b193f41_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e172975d371da945ef8045dac816b6ff_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e2ead0ddafb022b1e63f9be3dda8e08f_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e9163d3b92a4853de295fb2f89898e6e_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ecc98cd7e9ba935a410320373e8f00a4_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ee1c26bed626e92edc5994cf0cabac21_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f0d0d438e2052600008c0c31ec01ac4c_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f12a2c7a0dc22c0f1c36d9b0682b3a4e_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f1f1d1416c374a0b940f871f6f4b4c6c_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f45fdb415198674803dfe5cc1a3db6f9_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f4656ed0895f3344e59d0056a570d427_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f5a03804872898c7551b69758048df22_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f5f6a4808a40d8f5dec76e08aaa98f71_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f6dab39feec3c67ca403b43070534d42_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\fc42b43735f2dbf864c04da54fa149cf_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\fe7e8b3c6166075818b90ba47461ba87_290d96c9-0072-4aa6-8674-4c41253cf425 Locked file. Not tested. 
c:\ProgramData\Templates\ Locked file. Not tested. 
c:\System Volume Information\ Locked file. Not tested. 
c:\Users\Default\AppData\Local\History\ Locked file. Not tested. 
c:\Users\Default\AppData\Local\Temporary Internet Files\ Locked file. Not tested. 
c:\Users\Default\Cookies\ Locked file. Not tested. 
c:\Users\Default\Documents\My Music\ Locked file. Not tested. 
c:\Users\Default\Documents\My Pictures\ Locked file. Not tested. 
c:\Users\Default\Documents\My Videos\ Locked file. Not tested. 
c:\Users\Default\NetHood\ Locked file. Not tested. 
c:\Users\Default\PrintHood\ Locked file. Not tested. 
c:\Users\Default\Templates\ Locked file. Not tested. 
c:\Users\Oona\AppData\Local\Avg2013\log\avg-6704461a-6b65-4679-acb8-231ece926d39.tmp Locked file. Not tested. 
c:\Users\Oona\AppData\Local\History\ Locked file. Not tested. 
c:\Users\Oona\AppData\Local\Microsoft\Windows\UsrClass.dat Locked file. Not tested. 
c:\Users\Oona\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1 Locked file. Not tested. 
c:\Users\Oona\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2 Locked file. Not tested. 
c:\Users\Oona\AppData\Local\Microsoft\Windows\WebCache\V01.log Locked file. Not tested. 
c:\Users\Oona\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat Locked file. Not tested. 
c:\Users\Oona\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.tmp Locked file. Not tested. 
c:\Users\Oona\Documents\My Music\ Locked file. Not tested. 
c:\Users\Oona\Documents\My Pictures\ Locked file. Not tested. 
c:\Users\Oona\Documents\My Videos\ Locked file. Not tested. 
c:\Users\Oona\NetHood\ Locked file. Not tested. 
c:\Users\Oona\NTUSER.DAT Locked file. Not tested. 
c:\Users\Oona\ntuser.dat.LOG1 Locked file. Not tested. 
c:\Users\Oona\ntuser.dat.LOG2 Locked file. Not tested. 
c:\Users\Oona\PrintHood\ Locked file. Not tested. 
c:\Users\Oona\Templates\ Locked file. Not tested. 
c:\Users\Public\Documents\My Music\ Locked file. Not tested. 
c:\Users\Public\Documents\My Pictures\ Locked file. Not tested. 
c:\Users\Public\Documents\My Videos\ Locked file. Not tested. 
c:\Users\UpdatusUser\AppData\Local\History\ Locked file. Not tested. 
c:\Users\UpdatusUser\AppData\Local\Temporary Internet Files\ Locked file. Not tested. 
c:\Users\UpdatusUser\Cookies\ Locked file. Not tested. 
c:\Users\UpdatusUser\Documents\My Music\ Locked file. Not tested. 
c:\Users\UpdatusUser\Documents\My Pictures\ Locked file. Not tested. 
c:\Users\UpdatusUser\Documents\My Videos\ Locked file. Not tested. 
c:\Users\UpdatusUser\NetHood\ Locked file. Not tested. 
c:\Users\UpdatusUser\PrintHood\ Locked file. Not tested. 
c:\Users\UpdatusUser\Recent\ Locked file. Not tested. 
c:\Users\UpdatusUser\Templates\ Locked file. Not tested. 
c:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat Locked file. Not tested. 
c:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat Locked file. Not tested. 
c:\Windows\ServiceProfiles\LocalService\NTUSER.DAT Locked file. Not tested. 
c:\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG1 Locked file. Not tested. 
c:\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG2 Locked file. Not tested. 
c:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT Locked file. Not tested. 
c:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG1 Locked file. Not tested. 
c:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG2 Locked file. Not tested. 
c:\Windows\System32\catroot2\edb.log Locked file. Not tested. 
c:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb Locked file. Not tested. 
c:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb Locked file. Not tested. 
c:\Windows\System32\config\DEFAULT Locked file. Not tested. 
c:\Windows\System32\config\DEFAULT.LOG1 Locked file. Not tested. 
c:\Windows\System32\config\DEFAULT.LOG2 Locked file. Not tested. 
c:\Windows\System32\config\RegBack\DEFAULT Locked file. Not tested. 
c:\Windows\System32\config\RegBack\SAM Locked file. Not tested. 
c:\Windows\System32\config\RegBack\SECURITY Locked file. Not tested. 
c:\Windows\System32\config\RegBack\SOFTWARE Locked file. Not tested. 
c:\Windows\System32\config\RegBack\SYSTEM Locked file. Not tested. 
c:\Windows\System32\config\SAM Locked file. Not tested. 
c:\Windows\System32\config\SAM.LOG1 Locked file. Not tested. 
c:\Windows\System32\config\SAM.LOG2 Locked file. Not tested. 
c:\Windows\System32\config\SECURITY Locked file. Not tested. 
c:\Windows\System32\config\SECURITY.LOG1 Locked file. Not tested. 
c:\Windows\System32\config\SECURITY.LOG2 Locked file. Not tested. 
c:\Windows\System32\config\SOFTWARE Locked file. Not tested. 
c:\Windows\System32\config\SOFTWARE.LOG1 Locked file. Not tested. 
c:\Windows\System32\config\SOFTWARE.LOG2 Locked file. Not tested. 
c:\Windows\System32\config\SYSTEM Locked file. Not tested. 
c:\Windows\System32\config\SYSTEM.LOG1 Locked file. Not tested. 
c:\Windows\System32\config\SYSTEM.LOG2 Locked file. Not tested. 
c:\Windows\System32\LogFiles\WMI\RtBackup\ Locked file. Not tested. 
 
------------------------------------------------------------
Test started: 24.8.2013 11:15:25
Duration of test: 1 hour(s) 58 minute(s) 51 second(s)
------------------------------------------------------------
Objects scanned     : 372342
Found infections    :  182
Found high severity :    0
Found med severity  :    0
Found info severity :  182
Fixed high severity :    0
Fixed med severity  :    0
Fixed info severity :    0
------------------------------------------------------------


#14 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 11:39 PM

SUPER appreciate all your help! I'm totally freaking out here. I did finally get the IOBit thing to run well yes... I'm going to go to IE and work on the next thing :) 



#15 oona.breyer

oona.breyer
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:07 PM

Posted 24 August 2013 - 11:54 PM

Well I'm in IE and I had to download it anyway? Anyway, checked everything you said and I'm now running the scan so we'll hope for the best and see... thanks again for all your help and looking at all this. I'll post whatever it says as soon as it's done...






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users