Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

possible virus or unwanted running program


  • This topic is locked This topic is locked
23 replies to this topic

#1 bebopbo

bebopbo

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 06:38 PM

Hello, and thank you in advance for taking the time to help me with my computer.

 

I share internet with my neighbor (he's in control of it) who is a computer whiz and he says he thinks my computer is running something that is causing problems.  I would attempt to fix it myself but I don't want to possibly make things worse.

 

I have 3 things in quarantine in my avast virus vault.

 

The only other thing I have noticed is when I open the chrome browser, after about 30 seconds, even if I am reading something scrolled down to the middle of the page, it will refresh (I think?) the page and bring me back to the top of the page.  Pretty irritating.

 

Help?!



BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:24 PM

Posted 12 January 2014 - 07:05 PM

Hello bebopbo and welcome -
Either empty or list the items in avast! Vault.

 

Time to "Bite the Bullet" with Chrome browser ........
I have noticed is when I open the chrome browser <= Uninstall Google Chrome - Chrome Help This must be your first step.

Now use Internet Explorer -

 

Download Screen317 Security Check and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Please post the contents of that document.
Note:: If any security program requests permission to access the Internet, allow it to do so.

 

Next -
Please download MiniToolBox to Desktop to run it.
Checkmark following boxes:
* Flush DNS
* Report IE Proxy Settings
* Reset IE Proxy Settings
* Report FF Proxy Settings
* Reset FF Proxy Settings
* List Winsock Entries
* List last 10 Event Viewer log
* List Installed Programs
* List Devices (do NOT change any settings here)
* List Users, Partitions and Memory size
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the result. (result.txt)

 

Next -
Please download and run RKill by Grinler.
 A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully.
At most the tool will run for about 2 minutes.

 

Important: Do not reboot your computer until you complete the next step.

 

* Please download AdwCleaner by Xplode and save to your Desktop.
* Double-click on AdwCleaner.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* Click on the Scan button (only once)
* AdwCleaner will begin...be patient as the scan may take some time to complete.
* After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
* NOW - Click on the Clean button (only once)
* Press OK when asked to close all programs and follow the onscreen prompts.
* Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
* After Auto rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
* Copy and paste the contents of that logfile in your next reply.
* A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

 

Thank You -

(Edited for Minor program updates)


Edited by noknojon, 12 January 2014 - 07:07 PM.


#3 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 07:40 PM

Uh....so first thing I deleted chrome and now I have no browser....I am on my phone.
I tried to make internet explorer work but it won't.

#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:24 PM

Posted 12 January 2014 - 08:54 PM

Sorry bout that, as most people have a second browser enabled -

enable internet explorer 64 bit
enable internet explorer windows 7
enable internet explorer windows 8


Edited by noknojon, 12 January 2014 - 08:55 PM.


#5 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 09:01 PM

 Results of screen317's Security Check version 0.99.78  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10 Out of date!
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 45  
 Mozilla Firefox (26.0)
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
 

 

 

MiniToolBox by Farbar  Version: 18-12-2013
Ran by ilikemustacherides (administrator) on 12-01-2014 at 19:58:16
Running from "C:\Users\ilikemustacherides\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: localhost:8080

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/10/2014 05:54:45 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (01/07/2014 04:58:36 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary aswTdi.

System Error:
The system cannot find the file specified.
.

Error: (01/07/2014 04:58:36 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary aswFsBlk.

System Error:
The system cannot find the file specified.
.

Error: (12/21/2013 11:59:06 AM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: SHELL32.dll, version: 6.1.7601.18222, time stamp: 0x51f1ddfa
Exception code: 0xc0000005
Fault offset: 0x00000000003f099b
Faulting process id: 0x1430
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (12/01/2013 06:41:25 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (12/01/2013 06:41:00 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1058

Start Time: 01ceeef6d91dc112

Termination Time: 0

Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

Report Id: 5d9b3c1b-5aea-11e3-ac11-24be0506fdef

Error: (11/24/2013 03:59:38 PM) (Source: Application Error) (User: )
Description: Faulting application name: ContentTransfer.exe, version: 1.3.0.23190, time stamp: 0x4b0504db
Faulting module name: MSVCR80.dll, version: 8.0.50727.6195, time stamp: 0x4dcddbf3
Exception code: 0xc0000005
Fault offset: 0x000149d1
Faulting process id: 0x20f8
Faulting application start time: 0xContentTransfer.exe0
Faulting application path: ContentTransfer.exe1
Faulting module path: ContentTransfer.exe2
Report Id: ContentTransfer.exe3

Error: (11/23/2013 07:30:25 PM) (Source: Windows Search Service) (User: )
Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-1854248803-141509122-1127602258-1000}/">.

Error: (11/23/2013 03:47:07 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (11/23/2013 03:33:07 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.


System errors:
=============
Error: (01/12/2014 05:11:43 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/10/2014 05:44:43 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/09/2014 09:11:27 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/09/2014 02:56:02 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/09/2014 09:31:09 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer SAM-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{4741FFD9-7C27-4FAF-BFDF-03299EC1ED80}.
The master browser is stopping or an election is being forced.

Error: (01/08/2014 07:13:32 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/08/2014 00:29:55 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{4741FFD9-7C27-4FAF-BFDF-03299EC1ED80} because another computer on the network has the same name.  The server could not start.

Error: (01/07/2014 04:15:26 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/03/2014 04:20:11 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/02/2014 06:31:49 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{4741FFD9-7C27-4FAF-BFDF-03299EC1ED80} because another computer on the network has the same name.  The server could not start.


Microsoft Office Sessions:
=========================
Error: (01/10/2014 05:54:45 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (01/07/2014 04:58:36 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary aswTdi.

System Error:
The system cannot find the file specified.

Error: (01/07/2014 04:58:36 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary aswFsBlk.

System Error:
The system cannot find the file specified.

Error: (12/21/2013 11:59:06 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4SHELL32.dll6.1.7601.1822251f1ddfac000000500000000003f099b143001cefda8e9c1e917C:\windows\Explorer.EXEC:\windows\system32\SHELL32.dll95266a4a-6a69-11e3-8894-24be0506fdef

Error: (12/01/2013 06:41:25 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (12/01/2013 06:41:00 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.75.0.1105801ceeef6d91dc1120C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe5d9b3c1b-5aea-11e3-ac11-24be0506fdef

Error: (11/24/2013 03:59:38 PM) (Source: Application Error)(User: )
Description: ContentTransfer.exe1.3.0.231904b0504dbMSVCR80.dll8.0.50727.61954dcddbf3c0000005000149d120f801cee96064927bacC:\Program Files (x86)\Sony\Content Transfer\ContentTransfer.exeC:\windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dllb5c9a965-5553-11e3-845e-24be0506fdef

Error: (11/23/2013 07:30:25 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1854248803-141509122-1127602258-1000}/

Error: (11/23/2013 03:47:07 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (11/23/2013 03:33:07 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.


=========================== Installed Programs ============================

15354 Webcam Live (Version: 1.2.0.0)
Adobe AIR (Version: 3.9.0.1380)
avast! Free Antivirus (Version: 9.0.2011)
Bing Desktop (Version: 1.3.347.0)
Bluetooth by hp (Version: 6.3.0.8200)
CCleaner (Version: 4.04)
Content Transfer (Version: 1.3.0.23190)
D3DX10 (Version: 15.4.2368.0902)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Google Drive (Version: 1.13.5782.599)
Google Talk Plugin (Version: 4.9.1.16010)
Google Update Helper (Version: 1.3.22.3)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP Application Assistant (Version: 1.0.393.3870)
HP Auto (Version: 1.0.12935.3667)
HP Calendar (Version: 5.1.4245.23508)
HP Client Services (Version: 1.1.12938.3539)
HP Clock (Version: 5.1.4244.16367)
HP Customer Experience Enhancements (Version: 6.0.1.8)
HP Deskjet 1050 J410 series Basic Device Software (Version: 28.0.1313.0)
HP Deskjet 1050 J410 series Help (Version: 140.0.66.66)
HP Deskjet 1050 J410 series Product Improvement Study (Version: 28.0.1313.0)
HP IDF Software (Version: 11.15.1000)
HP LinkUp (Version: 2.01.029)
HP Magic Canvas (Version: 5.1.15.0)
HP Magic Canvas Tutorials (Version: 5.0.0.3)
HP MovieStore (Version: 2.1.091)
HP MovieStore (Version: 2.1.21091.0)
HP Notes (Version: 5.1.4274.30382)
HP Odometer (Version: 2.10.0000)
HP Photo Creations (Version: 1.0.0.7702)
HP RSS (Version: 5.1.4301.21494)
HP Setup (Version: 9.0.15130.3904)
HP Setup Manager (Version: 1.2.15145.3905)
HP Support Assistant (Version: 7.0.39.15)
HP Support Information (Version: 11.00.0001)
HP Update (Version: 5.003.003.001)
HP Vision Hardware Diagnostics (Version: 2.12.1.0)
HP Weather (Version: 5.1.4295.16450)
Intel® Management Engine Components (Version: 8.0.0.1351)
Intel® OpenCL CPU Runtime
Intel® Processor Graphics (Version: 9.17.10.2932)
Intel® Trusted Connect Service Client (Version: 1.23.216.0)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Junk Mail filter update (Version: 15.4.3502.0922)
LastPass (uninstall only)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Mathematics (Version: 4.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5139.5005)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
opensource (Version: 1.0.14960.3876)
PDF Complete Special Edition (Version: 4.0.65)
PhotoScape
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Recovery Manager (Version: 5.5.0.4424)
Remote Graphics Receiver (Version: 5.4.5)
SoulseekQt
Spotify (Version: 0.9.6.81.gd359a796)
TI USB 3.0 Host Controller Driver (Version: 1.12.18.0)
TI USB3 Host Driver (Version: 1.12.18.0)
TSHostedAppLauncher (Version: 5.1.15.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Devices: ================================

Name: HP Bluetooth module
Description: HP Bluetooth module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 6030.01 MB
Available physical RAM: 4014.39 MB
Total Pagefile: 12058.2 MB
Available Pagefile: 10094.86 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.36 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:914.44 GB) (Free:830.19 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:16.85 GB) (Free:2.07 GB) NTFS

========================= Users: ========================================

User accounts for \\MUSTACHERIDER

Administrator            Guest                    ilikemustacherides       
nate                     


**** End of log ****
 



#6 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 09:15 PM

# AdwCleaner v3.017 - Report created 12/01/2014 at 20:07:51
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : ilikemustacherides - MUSTACHERIDER
# Running from : C:\Users\ilikemustacherides\Downloads\AdwCleaner(1).exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\ilikemustacherides\AppData\Roaming\Mozilla\Firefox\Profiles\fo0aclbr.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\ilikemustacherides\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\nate\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2864 octets] - [29/09/2013 16:41:06]
AdwCleaner[R1].txt - [1100 octets] - [18/10/2013 16:12:19]
AdwCleaner[R2].txt - [1427 octets] - [12/01/2014 20:05:46]
AdwCleaner[S0].txt - [2624 octets] - [29/09/2013 16:42:46]
AdwCleaner[S1].txt - [1166 octets] - [18/10/2013 16:17:49]
AdwCleaner[S2].txt - [1352 octets] - [12/01/2014 20:07:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1412 octets] ##########
 



#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:24 PM

Posted 12 January 2014 - 09:58 PM

Sorry, I needed to swap computers as one is failing -

 

Great, I see you are back on line -

I have 3 things in quarantine in my avast virus vault. <= Did they just go, or are they still there ??

 

Next -

Do a quick manual update of Malwarebytes Anti-Malware, run a scn and post the results back here.

 

 

Next -

Please scan your computer with ESET Online Scanner
Disable active Antivirus and Antimalware programs How To Temporarily Disable Your Anti-virus
This scan is best performed with Internet Explorer, as it uses ActiveX
If you will not use Internet Explorer, then please read item 3 in this post
1 - Open Internet Explorer and hold down Control (Ctrl) key and click on This Link to open ESET OnlineScan in a new window.
2 - Click the ESET Online Scanner button.
3 - For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
3 a - Click on eset.exe to download the ESET Smart Installer. Save it to your desktop.
3 b - Double click on the  icon on your desktop.
4 - Check "YES, I accept the Terms of Use."
5 - Click the Start button.
6 - Accept any security warnings from your browser.
7 - Under scan settings, check "Scan Archives" and "Remove found threats"
8 - Click Advanced settings and select the following:
* Scan potentially unwanted applications
* Scan for potentially unsafe applications
* Enable Anti-Stealth technology
9 - ESET will then download updates for itself, install itself, and begin scanning your computer.
10 - Please be patient as this will take some time (first time scans are always longer). I can not estimate the time, as this dependf greatly on your system (Approx 2 to ??houes).
11 - When the scan completes, click List Threats
12 - Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
13 - Click the Back button and then Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.
If you lose the log it can be found at C:\Program Files\ESET\EsetOnlineScanner\log.txt
If no infections are found then please tell me -
You can ignore any ESET detection of AdwCleaner...it is a false positive detection.

 

Thank You -



#8 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 10:07 PM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.13.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
ilikemustacherides :: MUSTACHERIDER [administrator]

1/12/2014 9:02:52 PM
mbam-log-2014-01-12 (21-02-52).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 257949
Time elapsed: 3 minute(s), 15 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 



#9 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:24 PM

Posted 12 January 2014 - 10:14 PM

You can start the ESET Scan now, or wait till morning.

 

Some prople set their computer to run all night (active) while others prefer to be there while this runs.

A time frame is totally unknown, but 2 hours is minimum -

 

Thanks -



#10 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 10:19 PM

sorry I was trying to download IE, but I downloaded it, the computer restarted, I tried to open IE and it said it couldn't finish the setup....



#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:24 PM

Posted 12 January 2014 - 10:24 PM

What are you using as a browser now ??



#12 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 10:28 PM

mozilla firefox



#13 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:24 PM

Posted 12 January 2014 - 10:41 PM

You do have a version of Internet Explorer 10 installed.

One reason I run Security Check first.

 

I hope that you do monthly Windows Updates, as this is as important as Antivirus etc.

 

EDIT - How to repair or reinstall Internet Explorer in Windows


And stay away from ComboFix - I noticed you looking :hysterical:

 

Just joking ......................


Edited by noknojon, 12 January 2014 - 10:48 PM.


#14 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 10:54 PM

I have windows updates set automatically.  It is up to date, I checked twice.

 

I finally opened IE but when I come to this website, it will not let me log in for some reason.

I logged off when on the firefox, open the ie, make certain to type my username and pw correctly, and it does not log me in.

 

I will try the link you just posted about repairing IE.



#15 bebopbo

bebopbo
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:24 PM

Posted 12 January 2014 - 11:02 PM

and yes, thank you - the repair link seemed to fix that problem.

 

...I'm not lookin' at your combofix! ;)

 

If that next program you told me to run takes 2+ hours, I do believe I will wait 'till morning.

 

Thank you again for your help so far.






1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users