Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Redirect to shuang11miandan.com at random times


  • Please log in to reply
6 replies to this topic

#1 dretland

dretland

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 11 January 2014 - 12:34 AM

Hi, sometimes as I browse normal webpages such as youtube, facebook, etc. I get a new tab opening saying something along the lines of: "Congratulations, you have won. [etc.]" and the URL is shuang11miandan.com

 

I would like to know if there is a way to remove this. Also, I am getting occasional lag in computer games such as LoL and Hearthstone, and I'm not sure whether the two are related, since they started at similar times.



BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:30 PM

Posted 11 January 2014 - 06:20 AM

Hello and Welcome -

You are correct with their "Congratulations, you have won. [etc.]", and this is even one browser hijacker that affects Linux systems, which are generally considered much safer -

 

Please tell me the Browser(s) that you normally use, or do you have this on several browsers now.

 

You have (in most cases) downloaded this from a bad site / Torrent site / bad advertising / or even from an email link sent from a friend.

It is usually simple to remove, but it may be a pest in some cases -

 

The first 2 programs will (I hope) show information while the others are repair/cleaner tools.

 

After you reply from above -

Download Screen317 Security Check and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Please post the contents of that document.
Note:: If a security program requests permission to access the Internet, allow it to do so.

 

 

Next -

Please download MiniToolBox and run it.
Checkmark following boxes:

* List content of Hosts
* Flush DNS
* Report IE Proxy Settings
* Reset IE Proxy Settings
* Report FF Proxy Settings
* Reset FF Proxy Settings
* List last 10 Event Viewer log
* List Installed Programs
* List Devices (do NOT change any settings here)
* List Users, Partitions and Memory size
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
Click Go and Copy / Paste the result. (result.txt)

 

Next -

Please download and run RKill by Grinler. A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully.

At most the tool will run for about 2 minutes

 

Important: Do not reboot your computer until you complete the next step.

 

* Please download AdwCleaner by Xplode and save to your Desktop.
* Double-click on AdwCleaner.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* Click on the Scan button (only once)
* AdwCleaner will begin...be patient as the scan may take some time to complete.
* After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
* NOW - Click on the Clean button (only once)
* Press OK when asked to close all programs and follow the onscreen prompts.
* Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
* After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
* Copy and paste the contents of that logfile in your next reply.
* A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

 

 

Almost finished -

Download Malwarebytes' Anti-Malware Free (aka MBAM): to your desktop.
- Do not accept the Free Trial Version at this time -
* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer if requested.
The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

 

 

Last -

Clear Cache / Temp Files
Download TFC by OldTimer to your desktop
• Please double-click TFC.exe to run it.
• For Vista, Win 7 / 8 right-click on the file and choose Run As Administrator.
• It will close all programs when run, so make sure you have saved all your work before you begin.
• Click the Start button to begin the process.
• Once it's finished it may reboot your machine.
• If it does not, please manually reboot the machine yourself to ensure a complete clean.

 

Thank You -



#3 dretland

dretland
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 11 January 2014 - 09:02 AM

Thank you for the response. I mainly use Google Chrome.

 

Here are the logs
 

 Results of screen317's Security Check version 0.99.78  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10 Out of date! 
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
 Windows Firewall Disabled!  
Norton Internet Security   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 45  
 Visual Studio Extensions for Windows Library for JavaScript 
 Adobe Flash Player 11.9.900.170  
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
 Google Chrome Plugins...  
````````Process Check: objlist.exe by Laurent````````  
 Norton ccSvcHst.exe 
 Symantec Norton Online Backup NOBuAgent.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 2% 
````````````````````End of Log`````````````````````` 
 
 
 
 
 
MiniToolBox by Farbar  Version: 18-12-2013
Ran by Kong (administrator) on 11-01-2014 at 23:16:28
Running from "C:\Users\Kong\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
#12.130.244.193 us.actual.battle.net
 
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (01/11/2014 10:50:05 PM) (Source: Application Error) (User: )
Description: Faulting application name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Faulting module name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Exception code: 0xc0000005
Fault offset: 0x000b8554
Faulting process id: 0x3e8
Faulting application start time: 0xrads_user_kernel.exe0
Faulting application path: rads_user_kernel.exe1
Faulting module path: rads_user_kernel.exe2
Report Id: rads_user_kernel.exe3
 
Error: (01/11/2014 10:49:06 PM) (Source: Application Error) (User: )
Description: Faulting application name: SWMAgent.exe, version: 1.1.16.14, time stamp: 0x4e71639d
Faulting module name: SWMAgent.exe, version: 1.1.16.14, time stamp: 0x4e71639d
Exception code: 0xc0000005
Fault offset: 0x0001fbe8
Faulting process id: 0x93c
Faulting application start time: 0xSWMAgent.exe0
Faulting application path: SWMAgent.exe1
Faulting module path: SWMAgent.exe2
Report Id: SWMAgent.exe3
 
Error: (01/11/2014 10:48:02 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/11/2014 10:47:06 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (01/11/2014 10:47:06 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (01/11/2014 10:47:06 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (01/11/2014 00:59:37 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (01/11/2014 00:13:19 PM) (Source: Application Error) (User: )
Description: Faulting application name: SWMAgent.exe, version: 1.1.16.14, time stamp: 0x4e71639d
Faulting module name: SWMAgent.exe, version: 1.1.16.14, time stamp: 0x4e71639d
Exception code: 0xc0000005
Fault offset: 0x0001fbe8
Faulting process id: 0x1018
Faulting application start time: 0xSWMAgent.exe0
Faulting application path: SWMAgent.exe1
Faulting module path: SWMAgent.exe2
Report Id: SWMAgent.exe3
 
Error: (01/11/2014 11:59:27 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/10/2014 10:28:54 PM) (Source: Application Error) (User: )
Description: Faulting application name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Faulting module name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Exception code: 0xc0000005
Fault offset: 0x000b8554
Faulting process id: 0xdd8
Faulting application start time: 0xrads_user_kernel.exe0
Faulting application path: rads_user_kernel.exe1
Faulting module path: rads_user_kernel.exe2
Report Id: rads_user_kernel.exe3
 
 
System errors:
=============
Error: (01/11/2014 09:42:17 PM) (Source: Tcpip) (User: )
Description: The system detected an address conflict for IP address 10.1.1.2 with the system
having network hardware address 00-88-65-02-35-91. Network operations on this system may
be disrupted as a result.
 
Error: (01/10/2014 10:21:27 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005
 
Error: (01/10/2014 07:23:53 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Management and Security Application User Notification Service service hung on starting.
 
Error: (01/10/2014 07:21:52 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.
 
Error: (01/10/2014 07:19:03 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service.
 
Error: (01/10/2014 07:14:22 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
 
Error: (01/10/2014 00:44:07 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
Error: (01/09/2014 11:35:17 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer TOSHIBA-NB550D
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{3B8223DC-84A3-4DC9-8D2C-877C3F288EEB}.
The master browser is stopping or an election is being forced.
 
Error: (01/09/2014 10:59:25 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer TOSHIBA-NB550D
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{3B8223DC-84A3-4DC9-8D2C-877C3F288EEB}.
The master browser is stopping or an election is being forced.
 
Error: (01/06/2014 09:34:20 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2012-12-19 00:37:32.268
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-12-19 00:37:32.249
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-12-19 00:37:23.593
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-12-19 00:37:23.562
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
 Tools for .Net 3.5 (Version: 3.11.50727)
???? ??? Windows Live (Version: 15.4.3502.0922)
???? Windows Live (Version: 15.4.3502.0922)
?????? ??????? ?? Windows Live (Version: 15.4.3502.0922)
???????? ?????????? Windows Live (Version: 15.4.3502.0922)
?????????? Windows Live (Version: 15.4.3502.0922)
??????????? ?? Windows Live (Version: 15.4.3502.0922)
„Windows Live Essentials“ (Version: 15.4.3502.0922)
„Windows Live Mail“ (Version: 15.4.3502.0922)
„Windows Live Messenger“ (Version: 15.4.3538.0513)
„Windows Live“ fotogalerija (Version: 15.4.3502.0922)
7-Zip 9.20
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.3.2)
Adobe AIR (Version: 3.6.0.6090)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Agatha Christie - Death on the Nile (Version: 2.2.0.82)
Akamai NetSession Interface
Algodoo v2.1.0
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
ASIO4ALL (Version: 2.10)
Atheros Client Installation Program (Version: 9.0)
Autodesk 3ds Max 2013 64-bit (Version: 15.0.0.347)
Autodesk Backburner 2013.0.0 (Version: 2013.0.0)
Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0)
Autodesk Essential Skills Movies for 3ds Max 2013 64-bit (Version: 1.0.0.1)
Autodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bit
Autodesk Inventor Server Engine for 3ds Max 2013 64-bit (Version: 15.0)
Autodesk Material Library 2013 (Version: 3.0.13)
Autodesk Material Library Base Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Material Library Medium Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (Version: 1.0.0.1)
Battle.net
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Blend for Visual Studio 2012 (Version: 5.0.30709.0)
Blend for Visual Studio 2012 ENU resources (Version: 5.0.30709.0)
Bloodline Champions (Version: 2.4.1.0)
BlueStacks App Player (Version: 0.8.3.3026)
BlueStacks Notification Center (Version: 0.8.3.3026)
Bonjour (Version: 3.0.0.10)
Build-a-lot (Version: 2.2.0.82)
Canon MP150
Cheat Engine 6.2
Chuzzle Deluxe (Version: 2.2.0.82)
Composite 2013 64-bit (Version: 8.0.0)
CyberLink Media Suite (Version: 8.0.2227)
CyberLink Media+ Player10 (Version: 10.0.1110.00)
CyberLink MediaShow (Version: 5.0.1130a)
CyberLink Power2Go (Version: 6.1.3802)
CyberLink PowerDirector (Version: 8.0.3306)
CyberLink YouCam (Version: 3.1.4417)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.47.1.0333)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.82)
Dota 2
Dotfuscator and Analytics Community Edition (Version: 5.5.4521.29298)
DragonNest
Easy File Share (Version: 1.1.1699)
Easy Migration (Version: 1.0)
Easy Settings (Version: 1.1)
Easy Software Manager (Version: 1.1.16.14)
Easy Support Center 1.0 (Version: 1.1.36)
Entity Framework Designer for Visual Studio 2012 - enu (Version: 11.1.20702.00)
E-POP (Version: 1.0.1)
ETDWare PS/2-X64 10.0.7.2_WHQL (Version: 10.0.7.2)
Farm Frenzy (Version: 2.2.0.82)
FL Studio 10
Fotogalerija Windows Live (Version: 15.4.3502.0922)
Fraps (remove only)
Free Download Manager 3.9.2
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Galeria fotografii uslugi Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galerie foto Windows Live (Version: 15.4.3502.0922)
Game of Life (Version: 1.5)
GameMaker-Studio 1.2
GeForce Experience NvStream Client Components (Version: 1.6.28)
Google Chrome (Version: 31.0.1650.63)
Hearthstone
IIS 8.0 Express (Version: 8.0.1557)
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
IL Download Manager
Insaniquarium Deluxe (Version: 2.2.0.82)
Intel PROSet Wireless
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2266)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.1.0608)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.1000)
Intel® Rapid Storage Technology (Version: 10.1.5.1001)
iTunes (Version: 11.0.1.12)
Java 7 Update 45 (Version: 7.0.450)
Java 7 Update 9 (64-bit) (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.8)
John Deere Drive Green (Version: 2.2.0.82)
Junk Mail filter update (Version: 15.4.3502.0922)
Left 4 Dead 2
LocalESPC (Version: 8.59.25584)
LocalESPCui for en-us (Version: 8.59.25584)
LogMeIn Hamachi (Version: 2.2.0.109)
LOLReplay (Version: 0.8.5.2)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MapleStory
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (Version: 4.5.50709)
Microsoft .NET Framework 4.5 SDK (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update (Version: 3.0.30710.0)
Microsoft ASP.NET MVC 3 (Version: 3.0.20105.0)
Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools (Version: 4.0.20710.0)
Microsoft ASP.NET MVC 4 Runtime (Version: 4.0.20710.0)
Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools (Version: 1.0.20710.0)
Microsoft ASP.NET Web Pages (Version: 1.0.20105.0)
Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools (Version: 2.0.20710.0)
Microsoft ASP.NET Web Pages 2 Runtime (Version: 2.0.20710.0)
Microsoft DirectX SDK (June 2010) (Version: 9.29.1962.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.2.3.0)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Help Viewer 2.0 (Version: 2.0.50727)
Microsoft Image Composite Editor (Version: 1.4.4)
Microsoft LightSwitch for Visual Studio 2012 Core (Version: 11.0.50727)
Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU (Version: 11.0.50727)
Microsoft NuGet - Visual Studio 2012 (Version: 2.0.30625.9003)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Portable Library Multi-Targeting Pack (Version: 11.0.50709.17929)
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (Version: 11.0.50709.17929)
Microsoft Report Viewer Add-On for Visual Studio 2012 (Version: 11.1.2802.16)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Silverlight 4 SDK (Version: 4.0.60310.0)
Microsoft Silverlight 5 SDK (Version: 5.0.61118.0)
Microsoft Small Basic v1.0 (Version: 1.0.0.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1447.4)
Microsoft SQL Server 2012 Command Line Utilities  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Data-Tier App Framework  (Version: 11.0.2316.0)
Microsoft SQL Server 2012 Express LocalDB  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects  (x64) (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Native Client  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 T-SQL Language Service  (Version: 11.0.2100.60)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (Version: 4.0.8876.1)
Microsoft SQL Server Data Tools - enu (11.1.20627.00) (Version: 11.1.20627.00)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00) (Version: 11.1.20627.00)
Microsoft SQL Server System CLR Types (Version: 10.50.1600.1)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1600.1)
Microsoft System CLR Types for SQL Server 2012 (Version: 11.0.2100.60)
Microsoft System CLR Types for SQL Server 2012 (x64) (Version: 11.0.2100.60)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012  x64 Designtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 Compilers - ENU Resources (Version: 11.0.50727)
Microsoft Visual C++ 2012 Compilers (Version: 11.0.50727)
Microsoft Visual C++ 2012 Core Libraries (Version: 11.0.50727)
Microsoft Visual C++ 2012 Extended Libraries (Version: 11.0.50727)
Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries (Version: 11.0.50727)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50727)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308)
Microsoft Visual Studio 2012 Devenv (Version: 11.0.50727)
Microsoft Visual Studio 2012 Devenv Resources (Version: 11.0.50727)
Microsoft Visual Studio 2012 Performance Collection Tools - ENU (Version: 11.0.50727)
Microsoft Visual Studio 2012 Performance Collection Tools (Version: 11.0.50727)
Microsoft Visual Studio 2012 Preparation (Version: 11.0.50727)
Microsoft Visual Studio 2012 SharePoint Developer Tools (Version: 11.0.50727)
Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack (Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell (Minimum) (Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell (Minimum) Resources (Version: 11.0.50727)
Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU (Version: 4.0.8876.1)
Microsoft Visual Studio Professional 2012 - ENU (Version: 11.0.50727)
Microsoft Visual Studio Professional 2012 (Version: 11.0.50727)
Microsoft Visual Studio Professional 2012 (Version: 11.0.50727.1)
Microsoft Visual Studio Team Foundation Server 2012 Object Model (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU (Version: 11.0.50727)
Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core (Version: 11.0.50727)
Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources (Version: 11.0.50727)
Microsoft Web Deploy 3.0 (Version: 3.1236.1631)
Microsoft Web Deploy dbSqlPackage Provider - enu (Version: 10.3.20225.0)
Microsoft Web Developer Tools - Visual Studio 2012 (Version: 1.0.30710.0)
Microsoft Web Platform Installer 4.0 (Version: 4.0.1622)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (ARP entry) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Redists) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Shared Components) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Visual Studio) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (XnaLiveProxy) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 Documentation (Version: 4.0.20823.0)
Microsoft XNA Game Studio Platform Tools (Version: 1.3.0.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Multimedia POP (Version: 1.0)
Native Instruments Kontakt Factory Selection (Version: 1.2.0.004)
Nexon Game Manager
Norton Internet Security (Version: 20.4.0.40)
Norton Online Backup (Version: 2.1.17869)
NVIDIA Control Panel 331.82 (Version: 331.82)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1)
NVIDIA Graphics Driver 331.82 (Version: 331.82)
NVIDIA Install Application (Version: 2.1002.142.992)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 1.0)
NVIDIA Optimus Update 10.11.15 (Version: 10.11.15)
NVIDIA PhysX (Version: 9.13.0725)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15)
NVIDIA Update 10.11.15 (Version: 10.11.15)
NVIDIA Update Core (Version: 10.11.15)
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19)
Open Broadcaster Software
Paint.NET v3.5.11 (Version: 3.61.0)
PCSX2 - Playstation 2 Emulator
Peggle (Version: 2.2.0.82)
Penguins! (Version: 2.2.0.82)
PlanetSide 2
Plants vs. Zombies (Version: 2.2.0.82)
Poczta uslugi Windows Live (Version: 15.4.3502.0922)
Podstawowe programy Windows Live (Version: 15.4.3502.0922)
Pokémon Trading Card Game Online (Version: 1.0.0)
Polar Golfer (Version: 2.2.0.82)
Pošta Windows Live (Version: 15.4.3502.0922)
PreEmptive Analytics Visual Studio Components (Version: 1.0.2180.1)
Prerequisites for SSDT  (Version: 11.0.2100.60)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
RaidCall (Version: 7.2.6-1.0.8500.17)
Rainmeter (Version: 3.0 beta r1871)
Razer Synapse 2.0 (Version: 1.16.6)
Realtek Ethernet Controller Driver (Version: 7.44.421.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6413)
Resource Hacker Version 3.6.0
S?????? f?t???af??? t?? Windows Live (Version: 15.4.3502.0922)
Samsung Recovery Solution 5 (Version: 5.0.1.5)
Secure Download Manager (Version: 3.1.0)
SHIELD Streaming (Version: 1.6.85)
Skype™ 6.11 (Version: 6.11.102)
Software Launcher (Version: 1.0.2)
Starbound
StarCraft II
Steam (Version: 1.0.0.0)
Stencyl (Version: 1.1.1)
StepMania v5.0 beta 2 (remove only) (Version: )
System Requirements Lab for Intel (Version: 4.5.15.0)
Team Fortress 2
TeamViewer 8 (Version: 8.0.22298)
TmNationsForever
Unity (Version: )
Unity Web Player (Version: )
Unreal Development Kit: 2013-02
Update for  (KB2504637) (Version: 1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft Visual Studio 2012 (KB2781514) (Version: 11.0.51219)
User Guide (Version: 1.3)
Ventrilo Client (Version: 3.0.8)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
Visual Studio 2012 Prerequisites - ENU Language Pack (Version: 11.0.50727)
Visual Studio 2012 Prerequisites (Version: 11.0.50727)
Visual Studio Extensions for Windows Library for JavaScript (Version: 1.0.8514.0)
VLC media player 2.1.2 (Version: 2.1.2)
WCF Data Services 5.0 (for OData v3) Primary Components (Version: 5.0.50628.0)
WCF Data Services Tools for Microsoft Visual Studio 2012 (Version: 5.0.50710.0)
WCF RIA Services V1.0 SP2 (Version: 4.1.61829.0)
WildTangent Games (Version: 1.0.1.5)
WildTangent ORB Game Console
Windows App Certification Kit Native Components (Version: 8.59.25584)
Windows App Certification Kit x64 (Version: 8.59.25584)
Windows Live ?? (Version: 15.4.3502.0922)
Windows Live ?? ??? (Version: 15.4.3502.0922)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ??? (Version: 15.4.3538.0513)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live fotoattelu galerija (Version: 15.4.3502.0922)
Windows Live Fotogaléria (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live Foto-galerija (Version: 15.4.3502.0922)
Windows Live Fotogalleri (Version: 15.4.3502.0922)
Windows Live Fotograf Galerisi (Version: 15.4.3502.0922)
Windows Live Fotótár (Version: 15.4.3502.0922)
Windows Live Galeria de Fotos (Version: 15.4.3502.0922)
Windows Live Galerija fotografija (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Pošta (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Temel Parçalar (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Liven asennustyökalu (Version: 15.4.3502.0922)
Windows Liven sähköposti (Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)
Windows Movie Maker 2.6 (Version: 2.6.4037.0)
Windows Runtime Intellisense Content - en-us (Version: 8.59.25584)
Windows Software Development Kit (Version: 8.59.25584)
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.25584)
Windows Software Development Kit DirectX x86 Remote (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (Version: 8.59.25584)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
Xirrus Wi-Fi Inspector (Version: 1.2.1.4)
XSplit (Version: 1.2.1303.0101)
Zuma Deluxe (Version: 2.2.0.95)
 
========================= Devices: ================================
 
Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 63%
Total physical RAM: 4009.55 MB
Available physical RAM: 1446.08 MB
Total Pagefile: 8017.28 MB
Available Pagefile: 4953.11 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.05 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:365 GB) (Free:89.27 GB) NTFS
2 Drive d: () (Fixed) (Total:545.82 GB) (Free:489.92 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\KONG-PC
 
Administrator            Guest                    Kong                     
ktest                    
 
 
**** End of log ****
 
Rkill 2.6.5 by Lawrence Abrams (Grinler)
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 01/11/2014 11:18:24 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
 * Windows Firewall Disabled
 
   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 01/11/2014 11:20:18 PM
Execution time: 0 hours(s), 1 minute(s), and 54 seconds(s)
 
 
 
 
# AdwCleaner v3.016 - Report created 11/01/2014 at 23:29:56
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Kong - KONG-PC
# Running from : C:\Users\Kong\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16750
 
 
-\\ Google Chrome v
 
[ File : C:\Users\Kong\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [904 octets] - [11/01/2014 23:24:27]
AdwCleaner[R1].txt - [963 octets] - [11/01/2014 23:29:00]
AdwCleaner[S0].txt - [889 octets] - [11/01/2014 23:29:56]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [948 octets] ##########
 
 
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.01.11.03
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
Kong :: KONG-PC [administrator]
 
11/01/2014 11:45:35 PM
mbam-log-2014-01-11 (23-45-35).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 304591
Time elapsed: 15 minute(s), 46 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 5
C:\Windows\System32\msvfd32.exe (Trojan.Clicker.CT) -> Quarantined and deleted successfully.
C:\Users\Kong\AppData\Local\Temp\nsu103A.tmp (PUP.Optional.Somoto.A) -> Quarantined and deleted successfully.
C:\Users\Kong\AppData\Local\Temp\IXP001.TMP\flaudit.exe (Trojan.Clicker.CT) -> Quarantined and deleted successfully.
C:\Users\Kong\AppData\Local\Temp\mrt7E2A.tmp\stdrt.exe (Trojan.Clicker.CT) -> Quarantined and deleted successfully.
C:\Users\Kong\Downloads\DTLite4471-0333.exe (PUP.Optional.OpenCandy) -> Quarantined and deleted successfully.
 
(end)
 
 

 



#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:30 PM

Posted 11 January 2014 - 03:22 PM

Hi -

No Microsoft Office Sessions: - Good

CodeIntegrity Errors: are all from last year  - Good

 

Is the computer set to use any other Asian languages (Japanese etc) ??

 

#12.130.244.193 us.actual.battle.net <= This program seems blocked by your Hosts file ?? Yet the program Battle.net is listed as Installed ??
A bit odd, unless you want to prevent it from running, or it was loaded from a Torrent site.

 

I can help reset your Hosts file back to standard if you wish -

 

Java 7 Update 45 is current. Uninstall all earlier versions.

 

C:\Windows\System32\msvfd32.exe (Trojan.Clicker.CT) is the only severe infection found by MBAM scan as it had managed to install, the other version, C:\Users\Kong\AppData\Local\Temp\mrt7E2A.tmp\stdrt.exe (Trojan.Clicker.CT) should have only been in Temp Files.
It was also good to remove those 2 PUPs

 

Uninstall extensions in Chrome -

We are looking for "oddly named" or any that look like they are not standard.

Please ask if you are not sure -

Uninstall an extension to remove it completely from the browser:
1.Click the 3 bar Chrome menu on the browser toolbar.
2.Click Tools.
3.Select Extensions.
4.Click the trash can icon Remove an extension from Chrome by the extension you'd like to completely remove.
5.A confirmation dialog appears, click Remove.

 

You may also need to do this on any other browsers that you use.

 

Please tell me if there has been any changes at all to the computer

 

 

Thank You -

 

(Personally only) I have found that Chrome is less secure (even with your Norton Antivirus), and not as quick as the other browsers (even Internet Explorer that I use all the time)



#5 dretland

dretland
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 11 January 2014 - 06:17 PM

Is the computer set to use any other Asian languages (Japanese etc) ??

 

#12.130.244.193 us.actual.battle.net <= This program seems blocked by your Hosts file ?? Yet the program Battle.net is listed as Installed ??
A bit odd, unless you want to prevent it from running, or it was loaded from a Torrent site.

 

I can help reset your Hosts file back to standard if you wish -

 

Java 7 Update 45 is current. Uninstall all earlier versions.

 

C:\Windows\System32\msvfd32.exe (Trojan.Clicker.CT) is the only severe infection found by MBAM scan as it had managed to install, the other version, C:\Users\Kong\AppData\Local\Temp\mrt7E2A.tmp\stdrt.exe (Trojan.Clicker.CT) should have only been in Temp Files.
It was also good to remove those 2 PUPs

 

Uninstall extensions in Chrome -

We are looking for "oddly named" or any that look like they are not standard.

Please ask if you are not sure -

Uninstall an extension to remove it completely from the browser:
1.Click the 3 bar Chrome menu on the browser toolbar.
2.Click Tools.
3.Select Extensions.
4.Click the trash can icon Remove an extension from Chrome by the extension you'd like to completely remove.
5.A confirmation dialog appears, click Remove.

 

You may also need to do this on any other browsers that you use.

 

Please tell me if there has been any changes at all to the computer

 

 

Thank You -

 

(Personally only) I have found that Chrome is less secure (even with your Norton Antivirus), and not as quick as the other browsers (even Internet Explorer that I use all the time)

Is the computer set to use any other Asian languages (Japanese etc) ??

No, it is set to English
 

#12.130.244.193 us.actual.battle.net <= This program seems blocked by your Hosts file ?? Yet the program Battle.net is listed as Installed ??
A bit odd, unless you want to prevent it from running, or it was loaded from a Torrent site.

I did this intentionally to fix errors I was getting online for Starcraft. Then the fix caused another error, so I hashtagged it (i.e. it was disregarded by the computer)
 

Java 7 Update 45 is current. Uninstall all earlier versions.

How do I do this?
 

Uninstall extensions in Chrome -

I have confirmed there are no suspicious extensions.
 

Please tell me if there has been any changes at all to the computer

I will keep in touch whether I get these popups still. I am still getting "Ghost Lag" in my games though :(
 
 


#6 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:30 PM

Posted 12 January 2014 - 05:43 PM

Your "game lag" may be caused by having battle.net existing in Programs, and still having it listed in Hosts. I would First reset Hosts from the link below, then go to Control Panel > Programs and Features, and Uninstall the game.

This is where you also look for any older installed versions of Java to remove.

 

http://go.microsoft.com/?linkid=9668866 <= To reset the Hosts file back to the default automatically, click the Fix it button or link, click Run in the File Download dialog box, and then follow the steps in the Fix it wizard.

 

No, it is set to English <= The constant ???????? in your programs often means a fault or another operating language. It may also be if you have live internet online one on one gamer links

Another place that you may have downloaded shuang11miandan (while gaming).

 

Thanks -



#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:30 PM

Posted 21 January 2014 - 02:30 AM

Hi -

I have not heard from you for over a week now.

Please update me with your problems if you wish further help.

 

Thank You -






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users