Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer reboots then I get this: Minidump/memorydump


  • Please log in to reply
13 replies to this topic

#1 HereToLearnMore

HereToLearnMore

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 26 December 2013 - 03:11 PM

I am running Windows 8. This has been happening in last few weeks randomly. My laptop shuts off and then turns back on. It gives me the message to send error report to Microsoft. I haven't noticed anything that I would be doing when it happens. This time I happened to be running the Tweaking.com windows repair program, scanning for malware when it shut down and restarted. The error message gave me this:  C:\Windows\Minidump\1226132470-01.dmp  C:\Users\AllieKat274\AppData\LocalTemp\Wer-232379-0.sysdata.xml   C:\Windows\MEMORY.DMP On previous versions I can't recall if it is the same messages, except the memory dump.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:55 PM

Posted 26 December 2013 - 07:37 PM

Hello, Can you run these
 
Please download Malwarebytes Anti-Malware mbamicontw5.gif and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
  • Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When the scan is complete, click OK, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
  • Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware. -- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, use Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).


    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
    [list]
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 26 December 2013 - 08:53 PM

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.27.01

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16750
AllieKat274 :: MOMS-LAPTOP [administrator]

Protection: Enabled

12/26/2013 5:40:51 PM
mbam-log-2013-12-26 (17-40-51).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 263793
Time elapsed: 6 minute(s), 6 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 



#4 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 26 December 2013 - 08:56 PM

Sorry I guess I ran this one earlier and got this: Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.26.03

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16750
AllieKat274 :: MOMS-LAPTOP [administrator]

12/26/2013 3:17:17 AM
mbam-log-2013-12-26 (03-17-17).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 262978
Time elapsed: 5 minute(s), 45 second(s)

Memory Processes Detected: 2
C:\Program Files (x86)\LinkSwift\updateLinkSwift.exe (PUP.Optional.LinkSwift.A) -> 2164 -> Delete on reboot.
C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe (PUP.Optional.LinkSwift.A) -> 2272 -> Delete on reboot.

Memory Modules Detected: 1
C:\Program Files (x86)\LinkSwift\bin\sqlite3.dll (PUP.Optional.LinkSwift.A) -> Delete on reboot.

Registry Keys Detected: 19
HKCR\CLSID\{323420b6-65e5-4657-8106-a27392d4d4aa} (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{62e29692-5062-40fe-9989-1a9e9b8f76a5} (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKCR\Interface\{339CA35C-F74A-44C3-BD78-9CE3E8C9C560} (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{323420B6-65E5-4657-8106-A27392D4D4AA} (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{323420B6-65E5-4657-8106-A27392D4D4AA} (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{323420B6-65E5-4657-8106-A27392D4D4AA} (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{FF4230FA-66E2-4E40-8466-42FD00FE11A8} (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF4230FA-66E2-4E40-8466-42FD00FE11A8} (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{FF4230FA-66E2-4E40-8466-42FD00FE11A8} (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{FF4230FA-66E2-4E40-8466-42FD00FE11A8} (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} (PUP.Optional.WordOV) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} (PUP.Optional.WordOV) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} (PUP.Optional.WordOV) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} (PUP.Optional.WordOV) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} (PUP.Optional.OptimzerPro.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TidyNetwork (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\Update LinkSwift (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\Util LinkSwift (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\LINKSWIFT (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKCU\Software\LinkSwift|iid (PUP.Optional.LinkSwift.A) -> Data: def_LinkSwift -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 5
C:\Program Files (x86)\LinkSwift (PUP.Optional.LinkSwift.A) -> Delete on reboot.
C:\Program Files (x86)\LinkSwift\bin (PUP.Optional.LinkSwift.A) -> Delete on reboot.
C:\Program Files (x86)\LinkSwift\bin\plugins (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\AppData\Local\TidyNetwork (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.

Files Detected: 24
C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.InstallState (PUP.Optional.LinkSwift.A) -> No action taken.
C:\Program Files (x86)\LinkSwift\LinkSwiftBHO.dll (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\AppData\Local\TidyNetwork\petn.dll (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\AppData\Local\WordLayers\temp.dat (PUP.Optional.WordOV) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\Downloads\Open it ZipExtractorSetup.exe (PUP.Optional.InstallCore) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\Downloads\universalviewer_1191.exe (PUP.Optional.InstallIQ) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\AppData\Local\TidyNetwork\TidyNetwork.exe (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\LinkSwift\updateLinkSwift.InstallState (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\LinkSwift\LinkSwift.ico (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\LinkSwift\LinkSwiftUninstall.exe (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\LinkSwift\updateLinkSwift.exe (PUP.Optional.LinkSwift.A) -> Delete on reboot.
C:\Program Files (x86)\LinkSwift\bin\sqlite3.dll (PUP.Optional.LinkSwift.A) -> Delete on reboot.
C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe (PUP.Optional.LinkSwift.A) -> Delete on reboot.
C:\Program Files (x86)\LinkSwift\bin\plugins\LinkSwift.FFUpdate.dll (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\LinkSwift\bin\plugins\LinkSwift.GCUpdate.dll (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\LinkSwift\bin\plugins\LinkSwift.IEUpdate.dll (PUP.Optional.LinkSwift.A) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2\Optimizer Pro.lnk (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2\Check updates.lnk (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2\Help.lnk (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2\Optimizer Pro on the Web.lnk (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2\Uninstall Optimizer Pro.lnk (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\AppData\Local\TidyNetwork\sidTRUS22.tidy (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\AppData\Local\TidyNetwork\log.log (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
C:\Users\AllieKat274\AppData\Local\TidyNetwork\petnupdate.exe (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.

(end)
 



#5 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 26 December 2013 - 09:04 PM

I can't copy the TDSSKILLER for some reason, but it found nothing.



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:55 PM

Posted 26 December 2013 - 09:10 PM

OK that's fine
You need to reboot the machine if you have not

Run AdWCleaner
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 26 December 2013 - 09:13 PM

Ok just rebooted # AdwCleaner v3.016 - Report created 26/12/2013 at 18:05:50
# Updated 23/12/2013 by Xplode
# Operating System : Windows 8  (64 bits)
# Username : AllieKat274 - MOMS-LAPTOP
# Running from : C:\Users\AllieKat274\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : 70e6ca8c
Service Deleted : vToolbarUpdater17.1.3

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Kriss\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Kriss\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\AllieKat274\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\AllieKat274\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\AllieKat274\AppData\Local\WordLayers
Folder Deleted : C:\Users\AllieKat274\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\AllieKat274\AppData\Roaming\DriverCure
File Deleted : C:\Users\AllieKat274\AppData\Roaming\Mozilla\Firefox\Profiles\g06ttp7w.default-1384849978296\searchplugins\safeguard-secure-search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\AVG SafeGuard toolbar
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\LinkSwift
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LinkSwift
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages]

-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\AllieKat274\AppData\Roaming\Mozilla\Firefox\Profiles\g06ttp7w.default-1384849978296\prefs.js ]


*************************

AdwCleaner[R0].txt - [8511 octets] - [26/12/2013 18:03:06]
AdwCleaner[S0].txt - [8408 octets] - [26/12/2013 18:05:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8468 octets] ##########
 



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:55 PM

Posted 26 December 2013 - 09:46 PM

Ok, if you still get the boot issue then we will run one or 2 more.. This one will need an hour or more.

First some info for me
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.
  • [/list] [/list]

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 27 December 2013 - 01:23 AM

MiniToolBox by Farbar  Version: 18-12-2013
Ran by AllieKat274 (administrator) on 26-12-2013 at 20:48:43
Running from "C:\Users\AllieKat274\Downloads"
Microsoft Windows 8  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 4

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe FE Family Controller = Ethernet (Media disconnected)
Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wi-Fi (Media disconnected)
U600 EVDO Network Adapter = Local Area Connection (Media disconnected)
WiMAX Network Adapter = Ethernet 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="other_0" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
add address name="Wi-Fi" address=192.168.137.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Moms-Laptop
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

PPP adapter Broadband2Go 3G:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadband2Go 3G
   Physical Address. . . . . . . . . :
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 174.144.91.191(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . : 0.0.0.0
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : WiMAX Network Adapter
   Physical Address. . . . . . . . . : F4-63-49-08-9F-CB
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : U600 EVDO Network Adapter
   Physical Address. . . . . . . . . : 00-A0-C6-00-00-00
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 24-EC-99-D7-2A-C9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
   Physical Address. . . . . . . . . : 24-EC-99-D7-2A-C9
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 4C-72-B9-E9-00-0C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{93ADC08B-941E-4245-9DFF-85BE7F9AD8C9}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2002:ae90:5bbf::ae90:5bbf(Preferred)
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:1ceb:12c:516f:a440(Preferred)
   Link-local IPv6 Address . . . . . : fe80::1ceb:12c:516f:a440%18(Preferred)
   Default Gateway . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    google.com
Addresses:  2607:f8b0:4007:801::1005
      74.125.239.3
      74.125.239.4
      74.125.239.6
      74.125.239.7
      74.125.239.9
      74.125.239.0
      74.125.239.2
      74.125.239.5
      74.125.239.1
      74.125.239.8
      74.125.239.14


Pinging google.com [74.125.239.2] with 32 bytes of data:
Reply from 74.125.239.2: bytes=32 time=114ms TTL=50
Reply from 74.125.239.2: bytes=32 time=97ms TTL=48

Ping statistics for 74.125.239.2:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 97ms, Maximum = 114ms, Average = 105ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=166ms TTL=43
Reply from 98.138.253.109: bytes=32 time=284ms TTL=43

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 166ms, Maximum = 284ms, Average = 225ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=10ms TTL=128
Reply from 127.0.0.1: bytes=32 time=4ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 4ms, Maximum = 10ms, Average = 7ms
===========================================================================
Interface List
 49...........................Broadband2Go 3G
 21...f4 63 49 08 9f cb ......WiMAX Network Adapter
 17...00 a0 c6 00 00 00 ......U600 EVDO Network Adapter
 14...24 ec 99 d7 2a c9 ......Microsoft Wi-Fi Direct Virtual Adapter
 13...24 ec 99 d7 2a c9 ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
 12...4c 72 b9 e9 00 0c ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         On-link    174.144.91.191     51
        127.0.0.0        255.0.0.0         On-link         127.0.0.1   4531
        127.0.0.1  255.255.255.255         On-link         127.0.0.1   4531
  127.255.255.255  255.255.255.255         On-link         127.0.0.1   4531
   174.144.91.191  255.255.255.255         On-link    174.144.91.191    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1   4531
        224.0.0.0        240.0.0.0         On-link    174.144.91.191     51
  255.255.255.255  255.255.255.255         On-link         127.0.0.1   4531
  255.255.255.255  255.255.255.255         On-link    174.144.91.191    306
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 18    306 2001::/32                On-link
 18    306 2001:0:9d38:6abd:1ceb:12c:516f:a440/128
                                    On-link
 16   1050 2002::/16                On-link
 16    306 2002:ae90:5bbf::ae90:5bbf/128
                                    On-link
 18    306 fe80::/64                On-link
 18    306 fe80::1ceb:12c:516f:a440/128
                                    On-link
  1    306 ff00::/8                 On-link
 18    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [64000] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/26/2013 07:34:32 PM) (Source: RasClient) (User: )
Description: CoId={A2A25505-FE7F-49DA-8C95-81ED94E995E2}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 720.

Error: (12/26/2013 07:34:26 PM) (Source: RasClient) (User: )
Description: CoId={AF46C1B6-B46C-4E87-9262-C6EA72F6F186}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 720.

Error: (12/26/2013 06:13:48 PM) (Source: Toshiba App Place) (User: )
Description: Navigation to http://api.snappcloud.com/ads/click?adId=47291&clientId=382d650d-9dfd-4fb3-8ab6-e37e03ddc515&action=RemindMeLater&entryCampaignId=37188&scs=8ab1474d-264e-4ab9-a55a-4732a97c8f3c&touchpoint= failed: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><HTML><script src="http://1.2.3.4/bmi-int-js/bmi.jsversion=1379075028" language="javascript"></script><HEAD></HEAD><BODY><PRE></PRE></BODY></HTML><script language="javascript"><!--//bmi_orig_img 0 //
-->
</script>

Error: (12/26/2013 06:10:43 PM) (Source: RasClient) (User: )
Description: CoId={1300A26E-CC34-4E2F-8A0E-4DAF2C22893F}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 797.

Error: (12/26/2013 06:10:18 PM) (Source: RasClient) (User: )
Description: CoId={4B2112D2-2693-4A41-81CD-23E257AF9ED7}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 797.

Error: (12/26/2013 06:09:42 PM) (Source: RasClient) (User: )
Description: CoId={E90948B1-2E58-4F05-AB10-EB7610305C54}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 797.

Error: (12/26/2013 03:44:45 PM) (Source: RasClient) (User: )
Description: CoId={B3F21EC9-0898-400E-AF91-1B62C37473DE}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 678.

Error: (12/26/2013 03:04:49 PM) (Source: RasClient) (User: )
Description: CoId={00E12E4B-5593-4725-8B50-F5F425FAB8AF}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 797.

Error: (12/26/2013 03:03:48 PM) (Source: RasClient) (User: )
Description: CoId={9CE2E444-5DCA-4514-B0EA-7E11B6A18B2E}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 797.

Error: (12/26/2013 03:02:47 PM) (Source: RasClient) (User: )
Description: CoId={D1F7AF4C-0D65-44DD-A89B-87C58AD723C4}: The user Moms-Laptop\AllieKat274 dialed a connection named Broadband2Go 3G which has failed. The error code returned on failure is 797.


System errors:
=============
Error: (12/26/2013 07:34:04 PM) (Source: RasMan) (User: )
Description: CoId={24FBAAEA-1EC6-41C3-8633-C0FE9315129D}: Layer=PPP: SubLayer=LCP: The connection attempt failed on port: COM5 because of the authentication protocol selected. Check to see if the authentication protocol is supported in the operating systems at the client and server ends of the connection

Error: (12/26/2013 07:25:00 PM) (Source: RasMan) (User: )
Description: CoId={C4EE637F-B270-47BE-ABC2-14F82C28D281}: Layer=PPP: SubLayer=LCP: The connection attempt failed on port: COM5 because of the authentication protocol selected. Check to see if the authentication protocol is supported in the operating systems at the client and server ends of the connection

Error: (12/26/2013 07:14:58 PM) (Source: RasMan) (User: )
Description: CoId={54065179-0110-4977-A4B4-8094F04C6FA9}: Layer=PPP: SubLayer=LCP: The connection attempt failed on port: COM5 because of the authentication protocol selected. Check to see if the authentication protocol is supported in the operating systems at the client and server ends of the connection

Error: (12/26/2013 06:06:41 PM) (Source: DCOM) (User: Moms-Laptop)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (12/26/2013 06:06:41 PM) (Source: DCOM) (User: Moms-Laptop)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (12/26/2013 11:43:08 AM) (Source: BugCheck) (User: )
Description: 0x00000139 (0x0000000000000003, 0xfffff8801bf68500, 0xfffff8801bf68458, 0x0000000000000000)C:\windows\MEMORY.DMP122613-24070-01

Error: (12/26/2013 11:43:01 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:34:20 AM on ?12/?26/?2013 was unexpected.

Error: (12/26/2013 10:17:04 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (12/26/2013 10:16:36 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (12/26/2013 10:15:43 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.


Microsoft Office Sessions:
=========================
Error: (12/26/2013 07:34:32 PM) (Source: RasClient)(User: )
Description: {A2A25505-FE7F-49DA-8C95-81ED94E995E2}Moms-Laptop\AllieKat274Broadband2Go 3G720

Error: (12/26/2013 07:34:26 PM) (Source: RasClient)(User: )
Description: {AF46C1B6-B46C-4E87-9262-C6EA72F6F186}Moms-Laptop\AllieKat274Broadband2Go 3G720

Error: (12/26/2013 06:13:48 PM) (Source: Toshiba App Place)(User: )
Description: Navigation to http://api.snappcloud.com/ads/click?adId=47291&clientId=382d650d-9dfd-4fb3-8ab6-e37e03ddc515&action=RemindMeLater&entryCampaignId=37188&scs=8ab1474d-264e-4ab9-a55a-4732a97c8f3c&touchpoint= failed: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><HTML><script src="http://1.2.3.4/bmi-int-js/bmi.jsversion=1379075028" language="javascript"></script><HEAD></HEAD><BODY><PRE></PRE></BODY></HTML><script language="javascript"><!--//bmi_orig_img 0 //
-->
</script>

Error: (12/26/2013 06:10:43 PM) (Source: RasClient)(User: )
Description: {1300A26E-CC34-4E2F-8A0E-4DAF2C22893F}Moms-Laptop\AllieKat274Broadband2Go 3G797

Error: (12/26/2013 06:10:18 PM) (Source: RasClient)(User: )
Description: {4B2112D2-2693-4A41-81CD-23E257AF9ED7}Moms-Laptop\AllieKat274Broadband2Go 3G797

Error: (12/26/2013 06:09:42 PM) (Source: RasClient)(User: )
Description: {E90948B1-2E58-4F05-AB10-EB7610305C54}Moms-Laptop\AllieKat274Broadband2Go 3G797

Error: (12/26/2013 03:44:45 PM) (Source: RasClient)(User: )
Description: {B3F21EC9-0898-400E-AF91-1B62C37473DE}Moms-Laptop\AllieKat274Broadband2Go 3G678

Error: (12/26/2013 03:04:49 PM) (Source: RasClient)(User: )
Description: {00E12E4B-5593-4725-8B50-F5F425FAB8AF}Moms-Laptop\AllieKat274Broadband2Go 3G797

Error: (12/26/2013 03:03:48 PM) (Source: RasClient)(User: )
Description: {9CE2E444-5DCA-4514-B0EA-7E11B6A18B2E}Moms-Laptop\AllieKat274Broadband2Go 3G797

Error: (12/26/2013 03:02:47 PM) (Source: RasClient)(User: )
Description: {D1F7AF4C-0D65-44DD-A89B-87C58AD723C4}Moms-Laptop\AllieKat274Broadband2Go 3G797


=========================== Installed Programs ============================

AbiWord 2.8.6 (Version: 2.8.6)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
AMD Accelerated Video Transcoding (Version: 12.5.100.20808)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Quick Stream (Version: 3.3.26.0)
AMD VISION Engine Control Center (Version: 2012.0808.1024.16666)
Bejeweled 3 (Version: 2.2.0.97)
Big Fish: Game Manager (Version: 3.2.0.7)
Broadband2Go (Version: 1.0.480)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (Version: 4.0.0)
Canon MG2500 series MP Drivers
Canon MG2500 series User Registration
Canon My Image Garden (Version: 2.0.1)
Canon My Image Garden Design Files (Version: 2.0.0)
Canon My Printer (Version: 3.1.0)
Canon Quick Menu (Version: 2.2.1)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0808.1024.16666)
Catalyst Control Center Localization All (Version: 2012.0808.1024.16666)
CCC Help Chinese Standard (Version: 2012.0808.1023.16666)
CCC Help Chinese Traditional (Version: 2012.0808.1023.16666)
CCC Help Czech (Version: 2012.0808.1023.16666)
CCC Help Danish (Version: 2012.0808.1023.16666)
CCC Help Dutch (Version: 2012.0808.1023.16666)
CCC Help English (Version: 2012.0808.1023.16666)
CCC Help Finnish (Version: 2012.0808.1023.16666)
CCC Help French (Version: 2012.0808.1023.16666)
CCC Help German (Version: 2012.0808.1023.16666)
CCC Help Greek (Version: 2012.0808.1023.16666)
CCC Help Hungarian (Version: 2012.0808.1023.16666)
CCC Help Italian (Version: 2012.0808.1023.16666)
CCC Help Japanese (Version: 2012.0808.1023.16666)
CCC Help Korean (Version: 2012.0808.1023.16666)
CCC Help Norwegian (Version: 2012.0808.1023.16666)
CCC Help Polish (Version: 2012.0808.1023.16666)
CCC Help Portuguese (Version: 2012.0808.1023.16666)
CCC Help Russian (Version: 2012.0808.1023.16666)
CCC Help Spanish (Version: 2012.0808.1023.16666)
CCC Help Swedish (Version: 2012.0808.1023.16666)
CCC Help Thai (Version: 2012.0808.1023.16666)
CCC Help Turkish (Version: 2012.0808.1023.16666)
ccc-utility64 (Version: 2012.0808.1024.16666)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
D3DX10 (Version: 15.4.2368.0902)
Farmscapes (Version: 2.2.0.98)
FATE (Version: 2.2.0.97)
Franklin EVDO USB Modem (Version: 2.4.2.0)
Gutterball 2
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
McAfee Security Scan Plus (Version: 3.8.130.10)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office (Version: 14.0.6120.5004)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MotoHelper 2.0.51 Driver 5.1.0 (Version: 2.0.51)
MotoHelper MergeModules (Version: 1.2.0)
Motorola Mobile Drivers Installation 5.1.0 (Version: 5.1.0)
Movie Maker (Version: 16.4.3503.0728)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1108.0727)
Norton Anti-Theft (Version: 1.10.0.9)
Norton Online Backup (Version: 2.2.3.45)
Norton Online Backup ARA (Version: 4.1.0.11)
Norton PC Checkup (Version: 2.0.18.15)
Norton Security Dashboard (Version: 1.1.1.9)
Origin (Version: 8.6.3.49)
Penguins! (Version: 2.2.0.98)
Photo Common (Version: 16.4.3503.0728)
Photo Gallery (Version: 16.4.3503.0728)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.98)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Polar Bowler (Version: 2.2.0.97)
RealDownloader (Version: 1.3.3)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.3)
Realtek Ethernet Controller Driver (Version: 8.3.730.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6687)
Realtek USB 2.0 Card Reader (Version: 6.1.8400.30136)
Realtek WLAN Driver (Version: 2.00.0020)
RealUpgrade 1.1 (Version: 1.1.0)
Secunia PSI (3.0.0.9016) (Version: 3.0.0.9016)
Spybot - Search & Destroy (Version: 2.2.25)
Synaptics Pointing Device Driver (Version: 16.2.10.3)
Toshiba App Place (Version: 1.0.6.3)
TOSHIBA Application Installer (Version: 9.0.1.4)
TOSHIBA Audio Enhancement (Version: 1.0.2.8)
Toshiba Book Place (Version: 3.1.9534)
TOSHIBA Desktop Assist (Version: 1.00.0007.00002)
TOSHIBA eco Utility (Version: 2.0.0.6414)
TOSHIBA Function Key (Version: 1.00.6425)
Toshiba Password Utility (Version: 2.00.800)
TOSHIBA PC Health Monitor (Version: 1.8.17.640104)
TOSHIBA Quality Application (Version: 1.0.8)
TOSHIBA Recovery Media Creator (Version: 2.2.0.54043005)
TOSHIBA Resolution+ Plug-in for Windows Media Player (Version: 1.2.1.00)
TOSHIBA Service Station (Version: 2.4.4)
TOSHIBA System Driver (Version: 1.00.0012)
TOSHIBA System Settings (Version: 1.00.0001.32002)
TOSHIBA User's Guide (Version: 1.00.02)
TOSHIBA VIDEO PLAYER (Version: 5.3.18.82 )
TOSHIBARegistration (Version: 1.1.6)
Tweaking.com - Windows Repair (All in One) (Version: 2.1.0)
Update Installer for WildTangent Games App
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.97)
WeatherBug (Version: 7.0.0.10)
WildTangent Games (Version: 1.0.3.0)
WildTangent Games App (Toshiba Games) (Version: 4.0.10.25)
Windows Live Communications Platform (Version: 16.4.3503.0728)
Windows Live Essentials (Version: 16.4.3503.0728)
Windows Live Installer (Version: 16.4.3503.0728)
Windows Live Photo Common (Version: 16.4.3503.0728)
Windows Live PIMT Platform (Version: 16.4.3503.0728)
Windows Live SOXE (Version: 16.4.3503.0728)
Windows Live SOXE Definitions (Version: 16.4.3503.0728)
Windows Live UX Platform (Version: 16.4.3503.0728)
Windows Live UX Platform Language Pack (Version: 16.4.3503.0728)
Word Layers (Version: 3)
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 3548.73 MB
Available physical RAM: 1827.2 MB
Total Pagefile: 7132.73 MB
Available Pagefile: 5054.16 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.16 MB

========================= Partitions: =====================================

1 Drive c: (TI10649600G) (Fixed) (Total:455.59 GB) (Free:401.54 GB) NTFS

========================= Users: ========================================

User accounts for \\MOMS-LAPTOP

Administrator            AllieKat274              Guest                    
Kriss                    

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
 



#10 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 27 December 2013 - 03:23 AM

C:\$RECYCLE.BIN\S-1-5-21-1514683738-2747009684-3662327918-1002\$RBXZBM2.exe    Win32/Toolbar.Babylon.T application    cleaned by deleting - quarantined
C:\$RECYCLE.BIN\S-1-5-21-1514683738-2747009684-3662327918-1002\$RFQU8Z5.exe    Win32/Toolbar.Babylon.T application    cleaned by deleting - quarantined
C:\$RECYCLE.BIN\S-1-5-21-1514683738-2747009684-3662327918-1002\$RPEDD51.exe    Win32/Toolbar.Babylon.T application    cleaned by deleting - quarantined
C:\Users\AllieKat274\Desktop\Old Firefox Data\j5570u9i.default\extensions\firefox@linkswift.co.xpi    Win32/BrowseFox.B application    deleted - quarantined
C:\Users\AllieKat274\Downloads\abiword-setup.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
C:\Windows.old\Users\AllieKat274\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ZQFHOZH\Setup[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Windows.old\Users\AllieKat274\AppData\Local\Temp\is1590112554\78551604_stp\whilokii_is.exe    Win32/BrowseFox.C application    cleaned by deleting - quarantined
C:\Windows.old\Users\AllieKat274\AppData\Local\Temp\is1590112554\78551609_stp\Cloud_Backup_Setup_ROW.exe    Win32/MyPCBackup.A application    cleaned by deleting - quarantined
C:\Windows.old\Users\AllieKat274\AppData\Local\Temp\is1590112554\78551685_stp\uninstaller.exe    Win32/InstallCore.AZ application    cleaned by deleting - quarantined
C:\Windows.old\Users\AllieKat274\AppData\Roaming\0D0S1L2Z1P1B\Zip Extractor Packages\uninstaller.exe    Win32/InstallCore.AZ application    cleaned by deleting - quarantined
C:\Windows.old\Users\AllieKat274\AppData\Roaming\Mozilla\Firefox\Profiles\xqzvzkay.default\extensions\firefox@whilokii.net.xpi    Win32/BrowseFox.B application    deleted - quarantined
 



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:55 PM

Posted 27 December 2013 - 10:50 AM

How is it now?

I see many errors with "Broadband2Go"
Reinstalling this may fix them.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 28 December 2013 - 05:36 AM

Sorry been a busy day. Seems to be running much better. Internet still drops often, so I will have to reinstall the broadband2go like you suggested. Thank you :) I still can't get defender to run though. I get the message: This app has been turned off and isn't monitoring your computer.



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:55 PM

Posted 28 December 2013 - 10:52 AM

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 HereToLearnMore

HereToLearnMore
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:55 AM

Posted 28 December 2013 - 01:45 PM

Farbar Service Scanner Version: 05-12-2013
Ran by AllieKat274 (administrator) on 28-12-2013 at 10:42:44
Running from "C:\Users\AllieKat274\Downloads"
Microsoft Windows 8  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
WAN connected
Attempt to access Google IP returned error. Google IP is offline
Attempt to access Google.com returned error: Google.com is offline
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\windows\system32\wuaueng.dll".


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""%ProgramFiles%\Windows Defender\MsMpEng.exe"".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2013-11-12 19:18] - [2013-09-03 19:11] - 0576512 ____A (Microsoft Corporation) 7C0E0EDF18D6CC565D7BFBB451709FA5

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll
[2013-11-12 19:18] - [2013-10-10 01:20] - 0723968 ____A (Microsoft Corporation) 53AA55632B94622F2DC3695E86EF9363

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2013-11-24 21:37] - [2013-10-08 14:27] - 3279872 ____A (Microsoft Corporation) 311E5E1976E0BD9110A88B93158055D5

C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users