Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware ads/pop ups


  • Please log in to reply
9 replies to this topic

#1 botay93

botay93

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 12 March 2014 - 08:54 PM

Hi,

 

I am having issues with my browsers. Random ads show up in any website I visit and it opens new windows for more ads even when I do not click on them. I already scanned my computer with Malwarebytes Anti Malware 3 times and nothing was found. I ran Avira anti virus and nothing showed up either.

 

Please help.



BC AdBot (Login to Remove)

 


m

#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:23 AM

Posted 12 March 2014 - 09:16 PM

Hello -

 

Download Screen317 Security Check and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Please post the contents of that document.
Note:: If a security program requests permission to access the Internet, allow it to do so.

 

Next -

Please download and run RKill by Grinler. A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully.

At worst the tool will run for about 2 minutes

Please Copy and Paste the log back here

 

 

Next -

* Please download AdwCleaner by Xplode and save to your Desktop.
* Double-click on AdwCleaner.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* Click on the Scan button (only once)
* AdwCleaner will begin...be patient as the scan may take some time to complete.
* After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.

* Untick any options you wish to keep, or post that log back here first -

* Click on the Clean button (only once)

* Press OK when asked to close all programs and follow the onscreen prompts.
* Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
* After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
* Copy and paste the contents of that logfile in your next reply.
* A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

 

 

 

Next -

Please download Junkware Removal Tool by thisisu and save it to your Desktop.
* Close all open programs and  Temporarily Disable Your Anti-virusnow to avoid potential conflicts.
* Double-click on JRT.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* The tool will open and start scanning your system.
* Please be patient as this can take a while to complete depending on your system's specifications.
* On completion, a log file named JRT.txt will automatically open and be saved to your Desktop.
* Copy and paste the contents of JRT.txt in your next reply.
These tools will search for and remove many potentially unwanted programs (PUPs), adware, toolbars, browser hijackers, extensions, add-ons, browser helper objects (BHOs) and other junkware to include many related registry entires (values, keys)



#3 botay93

botay93
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 12 March 2014 - 09:58 PM

Security Check:

 

 Results of screen317's Security Check version 0.99.80  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
Avira Desktop   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 45  
 Java version out of Date! 
 Adobe Flash Player 12.0.0.77  
 Adobe Reader XI  
 Mozilla Firefox (27.0.1) 
 Google Chrome 33.0.1750.117  
 Google Chrome 33.0.1750.146  
````````Process Check: objlist.exe by Laurent````````  
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
 virus 2 SecurityCheck.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0% 
````````````````````End of Log`````````````````````` 
 
 
Rkill:

Rkill 2.6.5 by Lawrence Abrams (Grinler)
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 03/12/2014 10:24:47 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * Cannot edit the HOSTS file.
 * Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
 
Program finished at: 03/12/2014 10:26:07 PM
Execution time: 0 hours(s), 1 minute(s), and 20 seconds(s)
 
 
Adwcleaner

# AdwCleaner v3.021 - Report created 12/03/2014 at 22:30:15
# Updated 10/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Tam Huynh - MININT-06MIVNP
# Running from : G:\Everything\virus 2\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Program Files (x86)\hdtotal1.1
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\TAMHUY~1\AppData\Local\Temp\TempDir
Folder Deleted : C:\Users\Tam Huynh\AppData\Roaming\Mozilla\Firefox\Profiles\kv882vyp.default\Extensions\9ee595b4-f5ec-4afb-bea5-3c873daf5e4a@9725de39-97db-467b-bf84-04c276190009.com
Folder Deleted : C:\Users\Tam Huynh\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbeihidkikgdcoogkeoeconphggdhop
File Deleted : C:\Windows\Tasks\hdtotal1.1-chromeinstaller.job
File Deleted : C:\Windows\System32\Tasks\hdtotal1.1-chromeinstaller
File Deleted : C:\Windows\Tasks\hdtotal1.1-codedownloader.job
File Deleted : C:\Windows\System32\Tasks\hdtotal1.1-codedownloader
File Deleted : C:\Windows\Tasks\hdtotal1.1-enabler.job
File Deleted : C:\Windows\System32\Tasks\hdtotal1.1-enabler
File Deleted : C:\Windows\Tasks\hdtotal1.1-firefoxinstaller.job
File Deleted : C:\Windows\System32\Tasks\hdtotal1.1-firefoxinstaller
File Deleted : C:\Windows\Tasks\hdtotal1.1-updater.job
File Deleted : C:\Windows\System32\Tasks\hdtotal1.1-updater
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522332260}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566336660}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c273cf50-4fdf-4187-89fd-412f48f2ae27}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d8335762-b6df-43ef-806d-371b3d237820}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522332260}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566336660}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c273cf50-4fdf-4187-89fd-412f48f2ae27}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d8335762-b6df-43ef-806d-371b3d237820}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\hdtotal1.1
Key Deleted : HKLM\Software\installedbrowserextensions
Key Deleted : HKLM\Software\hdtotal1.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\hdtotal1.1
Key Deleted : [x64] HKLM\SOFTWARE\installedbrowserextensions
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16540
 
 
-\\ Mozilla Firefox v27.0.1 (en-US)
 
[ File : C:\Users\Tam Huynh\AppData\Roaming\Mozilla\Firefox\Profiles\kv882vyp.default\prefs.js ]
 
Line Deleted : user_pref("CT3225826.BT_Stats.enc", "eyJsYXN0X2xvZyI6MTM4NjI5Njc4MSwidXVpZCI6NDU0OTQ1MzI2NTQ3NTk1LCJzZXFfaWQiOjEsInNzYiI6MTM4NjI5Njc4MX0=");
Line Deleted : user_pref("CT3225826.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3225826.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3225826.FirstTime", "true");
Line Deleted : user_pref("CT3225826.FirstTimeFF3", "true");
Line Deleted : user_pref("CT3225826.PG_ENABLE", "dHJ1ZQ==");
Line Deleted : user_pref("CT3225826.SF_JUST_INSTALLED", "%CC%C7%D2%D9%CB");
Line Deleted : user_pref("CT3225826.SF_JUST_INSTALLED.enc", "RkFMU0U=");
Line Deleted : user_pref("CT3225826.SF_STATUS", "%CB%D4%C7%C8%D2%CB%CA");
Line Deleted : user_pref("CT3225826.SF_STATUS.enc", "RU5BQkxFRA==");
Line Deleted : user_pref("CT3225826.SF_USER_ID", "%E9%EF%EA%E5%BB%B7%B8%B8%B6%B7%B9%B8%B7%B8%BC%B9%BB%BE%BE%B9%B8%BA%B7%B8");
Line Deleted : user_pref("CT3225826.SF_USER_ID.enc", "Y2lkXzUxMjIwMTMyMTI2MzU4ODMyNDEy");
Line Deleted : user_pref("CT3225826.UserID", "UN22026760921989463");
Line Deleted : user_pref("CT3225826._key_edilia__uID", "%BA%B7%BD%BE%BB%E9%EC%B8%B3%EA%EA%BE%E7%B3%BA%BC%B6%BB%B3%E7%BB%B6%B9%B3%B8%EA%BE%EB%B8%E7%B7%BA%E8%B6%E7%EC");
Line Deleted : user_pref("CT3225826._key_edilia__uID.enc", "NDE3ODVjZjItZGQ4YS00NjA1LWE1MDMtMmQ4ZTJhMTRiMGFm");
Line Deleted : user_pref("CT3225826.addressBarTakeOverEnabledInHidden", "true");
Line Deleted : user_pref("CT3225826.browser.search.defaultthis.engineName", true);
Line Deleted : user_pref("CT3225826.cbfirsttime", "%DA%EE%FB%A6%CA%EB%E9%A6%B6%BB%A6%B8%B6%B7%B9%A6%B8%B7%C0%B8%BC%C0%B9%BB%A6%CD%D3%DA%B3%B6%BB%B6%B6%A6%AE%DB%D9%A6%CB%E7%F9%FA%EB%F8%F4%A6%D9%FA%E7%F4%EA%E7%F8%EA%A[...]
Line Deleted : user_pref("CT3225826.cbfirsttime.enc", "VGh1IERlYyAwNSAyMDEzIDIxOjI2OjM1IEdNVC0wNTAwIChVUyBFYXN0ZXJuIFN0YW5kYXJkIFRpbWUp");
Line Deleted : user_pref("CT3225826.countryCode", "US");
Line Deleted : user_pref("CT3225826.discover-experiments-photopop", "ā%A8%F4%E7%F3%EB%A8%C0%A8%F6%EE%F5%FA%F5%F6%F5%F6%E5%F4%E7%A8%B2%A8%FC%EB%F8%F9%EF%F5%F4%A8%C0%B7%B6ă");
Line Deleted : user_pref("CT3225826.discover-experiments-photopop.enc", "eyJuYW1lIjoicGhvdG9wb3BfbmEiLCJ2ZXJzaW9uIjoxMH0=");
Line Deleted : user_pref("CT3225826.discover-periodic-reports", "ā%A8%F6%EF%F4%ED%E5%B6%A8%C0%E1%B7%B9%BE%BC%B8%BF%BC%BD%BF%BC%B7%B8%BE%B2%B7%BA%BA%B6%B6%B6%B6%B6%E3ă");
Line Deleted : user_pref("CT3225826.discover-periodic-reports.enc", "eyJwaW5nXzAiOlsxMzg2Mjk2Nzk2MTI4LDE0NDAwMDAwXX0=");
Line Deleted : user_pref("CT3225826.discover-user-id", "%A8%BD%BE%BE%BF%B8%BD%E8%B9%B3%E8%BE%BF%E8%B3%BA%EC%BE%EC%B3%E8%E8%BB%E8%B3%BC%BE%E8%E9%E9%B8%B7%BD%E9%BE%B9%EC%A8");
Line Deleted : user_pref("CT3225826.discover-user-id.enc", "Ijc4ODkyN2IzLWI4OWItNGY4Zi1iYjViLTY4YmNjMjE3YzgzZiI=");
Line Deleted : user_pref("CT3225826.embeddedsData", "[{\"appId\":\"129830626805552092\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Deleted : user_pref("CT3225826.firstTimeDialogOpened", "true");
Line Deleted : user_pref("CT3225826.fixPageNotFoundErrorByUser", "TRUE");
Line Deleted : user_pref("CT3225826.fixPageNotFoundErrorInHidden", "true");
Line Deleted : user_pref("CT3225826.fullUserID", "UN22026760921989463.XP.202505212617");
Line Deleted : user_pref("CT3225826.ground-country-code", "%A8%DB%D9%A8");
Line Deleted : user_pref("CT3225826.ground-country-code.enc", "IlVTIg==");
Line Deleted : user_pref("CT3225826.impression_session_counter", "%B6");
Line Deleted : user_pref("CT3225826.impression_session_counter.enc", "MA==");
Line Deleted : user_pref("CT3225826.impression_session_id", "%A8%EC%BF%E8%E9%BA%EC%BF%EC%B3%EA%BA%B6%B9%B3%BA%E9%E9%BB%B3%BE%B8%B7%E7%B3%EA%B9%BE%B9%BC%BB%E7%E9%B6%E9%BA%E9%A8");
Line Deleted : user_pref("CT3225826.impression_session_id.enc", "ImY5YmM0ZjlmLWQ0MDMtNGNjNS04MjFhLWQzODM2NWFjMGM0YyI=");
Line Deleted : user_pref("CT3225826.impression_session_last_active", "%B7%B9%BE%BC%B8%BF%BC%BE%B6%B8%BB%B9%BC");
Line Deleted : user_pref("CT3225826.impression_session_last_active.enc", "MTM4NjI5NjgwMjUzNg==");
Line Deleted : user_pref("CT3225826.installType", "DirectDownload");
Line Deleted : user_pref("CT3225826.isCheckedStartAsHidden", true);
Line Deleted : user_pref("CT3225826.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3225826.isFirstTimeToolbarLoading", "false");
Line Deleted : user_pref("CT3225826.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3225826.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3225826.keyword", true);
Line Deleted : user_pref("CT3225826.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT3225826&octid=CT3225826&SearchSource=15&CUI=UN22026760921989463&SSPV=&Lay=1&UM=2\"}");
Line Deleted : user_pref("CT3225826.lastVersion", "10.22.3.518");
Line Deleted : user_pref("CT3225826.mam_gk_appStateReportTime", "%B7%B9%BE%BC%B8%BF%BC%BD%BF%BA%B9%BA%B6");
Line Deleted : user_pref("CT3225826.mam_gk_appStateReportTime.enc", "MTM4NjI5Njc5NDM0MA==");
Line Deleted : user_pref("CT3225826.mam_gk_appState_CouponBuddy", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_CouponBuddy.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Discover", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Discover.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Discover_Apps", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Discover_Apps.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Easytobook", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Easytobook.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Easytobook_targeted", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Easytobook_targeted.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Find-a-Pro", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_Find-a-Pro.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_PriceGong", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_PriceGong.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_WindowShopper", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_WindowShopper.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_YieldKit", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_YieldKit.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appState_app13", "%F5%F4");
Line Deleted : user_pref("CT3225826.mam_gk_appState_app13.enc", "b24=");
Line Deleted : user_pref("CT3225826.mam_gk_appsDefaultEnabled", "%FA%F8%FB%EB");
Line Deleted : user_pref("CT3225826.mam_gk_appsDefaultEnabled.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT3225826.mam_gk_currentVersion", "%B7%B4%B7%B7%B4%BB%B4%B7");
Line Deleted : user_pref("CT3225826.mam_gk_currentVersion.enc", "MS4xMS41LjE=");
Line Deleted : user_pref("CT3225826.mam_gk_existingUsersRecoveryDone", "%B7");
Line Deleted : user_pref("CT3225826.mam_gk_existingUsersRecoveryDone.enc", "MQ==");
Line Deleted : user_pref("CT3225826.mam_gk_first_time", "%B7");
Line Deleted : user_pref("CT3225826.mam_gk_first_time.enc", "MQ==");
Line Deleted : user_pref("CT3225826.mam_gk_globalKeysMigratedToLocalStorage", "%B7");
Line Deleted : user_pref("CT3225826.mam_gk_globalKeysMigratedToLocalStorage.enc", "MQ==");
Line Deleted : user_pref("CT3225826.mam_gk_installer_preapproved.enc", "VFJVRQ==");
Line Deleted : user_pref("CT3225826.mam_gk_lastLoginTime", "%B7%B9%BE%BC%B8%BF%BC%BD%BF%BA%BC%BB%BF");
Line Deleted : user_pref("CT3225826.mam_gk_lastLoginTime.enc", "MTM4NjI5Njc5NDY1OQ==");
Line Deleted : user_pref("CT3225826.mam_gk_localization.enc", "eyJkaWFsb2dPSyI6eyJUZXh0IjoiT0sifSwiZG1ib3gxIjp7IlRleHQiOiJEZWFsXHJcbm9mIHRoZSBkYXkifSwiZG1ib3gyIjp7IlRleHQiOiJGcmVlXHJcblNoaXBtZW50In0sImRtYnVsbGV0MSI6[...]
Line Deleted : user_pref("CT3225826.mam_gk_new_welcome_experience", "%B7");
Line Deleted : user_pref("CT3225826.mam_gk_new_welcome_experience.enc", "MQ==");
Line Deleted : user_pref("CT3225826.mam_gk_pgUnloadedOnce", "%FA%F8%FB%EB");
Line Deleted : user_pref("CT3225826.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT3225826.mam_gk_settings1.11.5.1", "ā%A8%D9%FA%E7%FA%FB%F9%A8%C0%A8%F9%FB%E9%E9%EB%EB%EA%EB%EA%A8%B2%A8%CA%E7%FA%E7%A8%C0ā%A8%E9%FB%F8%F8%EB%F4%FA%CA%E7%FA%EB%A8%C0%A8%B8%B6%B7%B[...]
Line Deleted : user_pref("CT3225826.mam_gk_settings1.11.5.1.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImN1cnJlbnREYXRlIjoiMjAxMzEyMDYiLCJpbnRlcnZhbCI6MjQwLCJzdGFtcCI6Ijg2XzAiLCJpc1Rlc3QiOnRydWUsIlVzZXJDb3VudHJ5[...]
Line Deleted : user_pref("CT3225826.mam_gk_showWelcomeGadget", "%EC%E7%F2%F9%EB");
Line Deleted : user_pref("CT3225826.mam_gk_showWelcomeGadget.enc", "ZmFsc2U=");
Line Deleted : user_pref("CT3225826.mam_gk_stamp", "%BE%BC%E5%B6");
Line Deleted : user_pref("CT3225826.mam_gk_stamp.enc", "ODZfMA==");
Line Deleted : user_pref("CT3225826.mam_gk_userId", "%BA%B7%EA%BE%EB%BF%EB%EC%B3%BA%EC%BE%EC%B3%BA%B7%E9%EA%B3%E8%BF%BE%BD%B3%B9%E9%B9%EA%BB%B7%BD%E7%BD%B7%B8%E9");
Line Deleted : user_pref("CT3225826.mam_gk_userId.enc", "NDFkOGU5ZWYtNGY4Zi00MWNkLWI5ODctM2MzZDUxN2E3MTJj");
Line Deleted : user_pref("CT3225826.mam_gk_user_approval_interacted", "%B7");
Line Deleted : user_pref("CT3225826.mam_gk_user_approval_interacted.enc", "MQ==");
Line Deleted : user_pref("CT3225826.mam_gk_welcomeDialogMode", "%B7");
Line Deleted : user_pref("CT3225826.mam_gk_welcomeDialogMode.enc", "MQ==");
Line Deleted : user_pref("CT3225826.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"\",\"EB_MAIN_FRAME_TITLE\":\"\",\"EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://BitTorrentControlv12.OurToolbar.com/\"[...]
Line Deleted : user_pref("CT3225826.originalHomepage", "www.google.com.vn");
Line Deleted : user_pref("CT3225826.originalSearchAddressUrl", "hxxp://www.google.com/search?&q=");
Line Deleted : user_pref("CT3225826.originalSearchEngine", "Google");
Line Deleted : user_pref("CT3225826.originalSearchEngineName", "Google");
Line Deleted : user_pref("CT3225826.price-gong.isManagedApp", "true");
Line Deleted : user_pref("CT3225826.rematchagent-periodic-reports", "ā%A8%F6%EF%F4%ED%E5%B6%A8%C0%E1%B7%B9%BE%BC%B8%BF%BC%BD%BF%BA%BE%BC%BB%B2%B7%BA%BA%B6%B6%B6%B6%B6%E3ă");
Line Deleted : user_pref("CT3225826.rematchagent-periodic-reports.enc", "eyJwaW5nXzAiOlsxMzg2Mjk2Nzk0ODY1LDE0NDAwMDAwXX0=");
Line Deleted : user_pref("CT3225826.rematchagent-user-id", "%A8%BF%EB%BB%BF%EB%EB%E9%BF%B3%E9%BB%BF%BF%B3%BA%B6%B8%B7%B3%E8%EA%BE%B7%B3%EB%E8%B9%BF%B9%E8%BC%B7%B7%EB%EC%E9%A8");
Line Deleted : user_pref("CT3225826.rematchagent-user-id.enc", "IjllNTllZWM5LWM1OTktNDAyMS1iZDgxLWViMzkzYjYxMWVmYyI=");
Line Deleted : user_pref("CT3225826.searchFromAddressBarEnabledByUser", "true");
Line Deleted : user_pref("CT3225826.searchInNewTabEnabledByUser", "true");
Line Deleted : user_pref("CT3225826.searchInNewTabEnabledInHidden", "true");
Line Deleted : user_pref("CT3225826.searchSuggestEnabledByUser", "TRUE");
Line Deleted : user_pref("CT3225826.searchUninstallUserMode", "2");
Line Deleted : user_pref("CT3225826.searchUserMode", "2");
Line Deleted : user_pref("CT3225826.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3225826.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3225826.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"3\"}");
Line Deleted : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT3225826\"}");
Line Deleted : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://BitTorrentControlv12.OurToolbar.com//xpi\"}");
Line Deleted : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"BitTorrentControl_v12 \"}");
Line Deleted : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3225826.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Line Deleted : user_pref("CT3225826.serviceLayer_services_Configuration_lastUpdate", "1386296778698");
Line Deleted : user_pref("CT3225826.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1386296779719");
Line Deleted : user_pref("CT3225826.serviceLayer_services_appsMetadata_lastUpdate", "1386296779457");
Line Deleted : user_pref("CT3225826.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1386296779463");
Line Deleted : user_pref("CT3225826.serviceLayer_services_login_10.22.3.518_lastUpdate", "1386296779885");
Line Deleted : user_pref("CT3225826.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1386296779493");
Line Deleted : user_pref("CT3225826.serviceLayer_services_searchAPI_lastUpdate", "1386296779052");
Line Deleted : user_pref("CT3225826.serviceLayer_services_serviceMap_lastUpdate", "1386296778400");
Line Deleted : user_pref("CT3225826.serviceLayer_services_setupAPI_lastUpdate", "1386296778703");
Line Deleted : user_pref("CT3225826.serviceLayer_services_toolbarContextMenu_lastUpdate", "1386296779744");
Line Deleted : user_pref("CT3225826.serviceLayer_services_toolbarSettings_lastUpdate", "1386296778820");
Line Deleted : user_pref("CT3225826.serviceLayer_services_translation_lastUpdate", "1386296779764");
Line Deleted : user_pref("CT3225826.settingsINI", true);
Line Deleted : user_pref("CT3225826.showToolbarPermission", "false");
Line Deleted : user_pref("CT3225826.toolbarBornServerTime", "6-12-2013");
Line Deleted : user_pref("CT3225826.toolbarCurrentServerTime", "6-12-2013");
Line Deleted : user_pref("CT3225826.toolbarInstallDate", "05-12-2013 21:26:18");
Line Deleted : user_pref("CT3225826.toolbarLoginClientTime", "Thu Dec 05 2013 21:26:19 GMT-0500 (US Eastern Standard Time)");
Line Deleted : user_pref("CT3225826.userIdGenerationCounter", "1");
Line Deleted : user_pref("CT3225826_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1386297173610,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.InstallationThankYouPage", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.InstallationTime", 1394626675);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360_dbWasSet", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360_dbWasSet_FF25_FIX", true[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.active", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.addressbar", "NA");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.addressbarenhanced", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.asyncdb.was_copied", "true");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.asyncdb_dbWasSet", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.asyncdb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.asyncinternaldb.was_copied", "true");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.asyncinternaldb_dbWasSet", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.asyncinternaldb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.backgroundver", 1);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.certdomaininstaller", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.changeprevious", false);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight Time)[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.cookie.InstallationTime.value", "%221394626675%22");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight Time)"[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.cookie.InstallerParams.value", "%7B%22source_id%22%3A%22001281%22%2C%22sub_id%22%3A%220%22%2C%22uz[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.cookie.jw_token.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight Time)");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.cookie.jw_token.value", "%22ea751064-aa73-25bf-e9d2-18a318d89a10%22");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.description", "HD-Total is an add-on for your Internet browser that enhances your online experienc[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.domain", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.enablesearch", false);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.homepage", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.iframe", false);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerIdentifiers.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylig[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerIdentifiers.value", "%7B%22installer_bic%22%3A%22A83FF7BC6940440A825995960C1D5[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight Ti[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerParams.value", "%7B%22source_id%22%3A%22001281%22%2C%22sub_id%22%3A%220%22%2C%[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerParamsCache.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylig[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerParamsCache.value", "%7B%22source_id%22%3A%22001281%22%2C%22sub_id%22%3A%220%2[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerUserIdentifiersCache.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Easte[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.InstallerUserIdentifiersCache.value", "%7B%22installer_bic%22%3A%22A83FF7BC6940440A8259[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_appVer.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight T[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_appVer.value", "28");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_lastVersion.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Dayli[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_lastVersion.value", "1");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_meta.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight Tim[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_meta.value", "%7B%7D");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_nextCheck.expiration", "Thu Mar 13 2014 03:38:26 GMT-0400 (US Eastern Standar[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_nextCheck.value", "true");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_queue.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight Ti[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_queue.value", "%7B%7D");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_remote_resources.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern [...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.Resources_remote_resources.value", "%7B%22remoteId%22%3A0%7D");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.__defualt_browser__.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Dayligh[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.__defualt_browser__.value", "%22ff%22");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.installer.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eastern Daylight Time)");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.installer.value", "%7B%22InstallerIdentifiers%22%3A%7B%22installer_bic%22%3A%22A83FF7BC[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.monetization_plugin_bundledUrls.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US Eas[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.monetization_plugin_bundledWithHash.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US[...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.monetization_plugin_bundledWithHash.value", "null");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.monetization_plugin_notBundledArr_.expiration", "Fri Feb 01 2030 00:00:00 GMT-0500 (US [...]
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.internaldb.monetization_plugin_notBundledArr_.value", "%5B%5D");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.lastDailyReport", "1394674704266");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.lastUpdate", "1394674706319");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.manifesturl", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.name", "HD-Total-1.1");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.newtab", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.opensearch", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.pluginsurl", "hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/apps/53360/plugins/094/ff/plugins.json");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.pluginsversion", 23);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.publisher", "HQ-Video");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.searchstatus", 0);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.setnewtab", false);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.thankyou", "");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.updateinterval", 360);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.ver", 28);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.FilesValidatorDueTime", "1394675112340");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.apps", "53360");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.bic", "144b75f24dc05522f602c49c18ca4355");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.cid", 53360);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.firstrun", false);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.hadappinstalled", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.installationdate", 1394645870);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.modetype", "production");
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.reportInstall", true);
Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.statsDailyCounter", 2);
Line Deleted : user_pref("extensions.crossrider.bic", "144b75f24dc05522f602c49c18ca4355");
 
-\\ Google Chrome v33.0.1750.146
 
[ File : C:\Users\Tam Huynh\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R1].txt - [33489 octets] - [12/03/2014 22:27:09]
AdwCleaner[S1].txt - [32830 octets] - [12/03/2014 22:30:15]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [32891 octets] ##########
 
 
 
Junkware Removal:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Home Premium x64
Ran by Tam Huynh on Wed 03/12/2014 at 22:35:06.68
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ FireFox
 
Successfully deleted: [Folder] C:\Users\Tam Huynh\AppData\Roaming\mozilla\firefox\profiles\kv882vyp.default\extensions\savingsslider@mybrowserbar.com
Emptied folder: C:\Users\Tam Huynh\AppData\Roaming\mozilla\firefox\profiles\kv882vyp.default\minidumps [184 files]
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 03/12/2014 at 22:39:46.28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:23 AM

Posted 13 March 2014 - 12:36 AM

Hi -

The problems that I am looking for are not all listed there.

 

Please download MiniToolBox to desktop to run it.
Checkmark following boxes:
* Flush DNS
* Report IE Proxy Settings
* Reset IE Proxy Settings
* Report FF Proxy Settings
* Reset FF Proxy Settings
* List last 10 Event Viewer log
* List Installed Programs
* List Devices (do NOT change any settings here)
* List Users, Partitions and Memory size
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the result. (result.txt)

 

 

Also -

Download Malwarebytes' Anti-Malware Free (aka MBAM): to your desktop.
- Do not accept the Free Pro Trial Version at this time -
* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* NOTE : Check the log and it should not contain any "good programs"

* NOW : Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer if requested.
The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

 

 

Next -

If you wish to use Java. Delete any old versions of Java from Programs and Features as yours is outdated.

See this link for Version7 Update51 Click the big red button.

Do not accept any offered add ons or extras as they are only advertising and not Java related



#5 botay93

botay93
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 13 March 2014 - 09:45 AM

Hi,

 

Here are the logs:

 

Mini Tool box:

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Tam Huynh (administrator) on 13-03-2014 at 10:33:05
Running from "G:\Everything\virus 2"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (03/13/2014 10:18:25 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (03/13/2014 10:32:28 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:32:28 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:32:28 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:32:12 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:32:12 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:31:50 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:31:50 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:31:50 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:31:50 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
Error: (03/13/2014 10:31:50 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service failed to start due to the following error: 
%%1297
 
 
Microsoft Office Sessions:
=========================
Error: (03/13/2014 10:18:25 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-12-05 22:54:50.965
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-12-05 22:54:50.942
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-08 04:10:43.149
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\p2pover\p2pfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-08 04:10:43.128
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\p2pover\p2pfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-08 04:09:40.605
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\p2pover\p2pfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-08 04:09:40.587
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\p2pover\p2pfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-08 03:54:30.276
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\p2pover\p2pfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-08 03:54:30.198
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\p2pover\p2pfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
Adobe AIR (Version: 3.1.0.4880)
Adobe Creative Suite 6 Production Premium (Version: 6)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Flash Player 12 Plugin (Version: 12.0.0.77)
Adobe Help Manager (Version: 4.0.244)
Adobe Reader XI (11.0.06) (Version: 11.0.06)
Advanced Audio FX Engine (Version: 1.12.05)
AlienAutopsy (Version: 3.1.5907.16)
AlienRespawn - Support Software (Version: 9.4.67)
AlienRespawn (Version: 9.4.67)
Alienware Command Center (Version: 2.7.28.0)
Alienware On-Screen Display (Version: 0.32.0.2C)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.937.2)
AMD Catalyst Install Manager (Version: 8.0.877.0)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ASIO4ALL (Version: 2.10)
Audacity 2.0.2 (Version: 2.0.2)
Autodesk 3ds Max Design 2013 64-bit (Version: 15.0.0.347)
Autodesk Backburner 2013.0.0 (Version: 2013.0.0)
Autodesk Civil View for 3ds Max Design 2013 (Version: 1.0.0.2)
Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0)
Autodesk Essential Skills Movies for 3ds Max Design 2013 64-bit (Version: 1.0.0.1)
Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit
Autodesk FBX Plug-in 2013.1 - Maya 2013 64-bit
Autodesk Inventor Server Engine for 3ds Max Design 2013 64-bit (Version: 15.0)
Autodesk MatchMover 2013 64-bit (Version: 14.00.0000)
Autodesk Material Library 2013 (Version: 3.0.13)
Autodesk Material Library Base Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Material Library Low Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Material Library Medium Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Maya 2013 64-bit (Version: 15.0.0.0)
Autodesk Revit 2013 (Version: 12.02.21203)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (Version: 1.0.0.1)
Autodesk SketchBook Designer 2013 (Version: 3.00.0000)
Autodesk SketchBook Designer for AutoCAD 2013 (Version: 3.00.0000)
Avira Free Antivirus (Version: 13.0.0.2735)
Battle.net
bl (Version: 1.0.0)
CambridgeSoft ChemBioDraw Ultra 13.0 (Version: 13.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.0605.1337.22439)
Catalyst Control Center InstallProxy (Version: 2012.0605.1337.22439)
Catalyst Control Center Localization All (Version: 2012.0605.1337.22439)
CCC Help Chinese Standard (Version: 2012.0605.1336.22439)
CCC Help Chinese Traditional (Version: 2012.0605.1336.22439)
CCC Help Danish (Version: 2012.0605.1336.22439)
CCC Help Dutch (Version: 2012.0605.1336.22439)
CCC Help English (Version: 2012.0605.1336.22439)
CCC Help Finnish (Version: 2012.0605.1336.22439)
CCC Help French (Version: 2012.0605.1336.22439)
CCC Help German (Version: 2012.0605.1336.22439)
CCC Help Italian (Version: 2012.0605.1336.22439)
CCC Help Japanese (Version: 2012.0605.1336.22439)
CCC Help Korean (Version: 2012.0605.1336.22439)
CCC Help Norwegian (Version: 2012.0605.1336.22439)
CCC Help Portuguese (Version: 2012.0605.1336.22439)
CCC Help Russian (Version: 2012.0605.1336.22439)
CCC Help Spanish (Version: 2012.0605.1336.22439)
CCC Help Swedish (Version: 2012.0605.1336.22439)
ccc-utility64 (Version: 2012.0605.1337.22439)
CCleaner (Version: 3.24)
Composite 2013 64-bit (Version: 8.0.0)
CyberLink PowerDVD 9.6 (Version: 9.6.1.4418)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Webcam Central (Version: 1.40.05)
Diablo III
DirectX 9 Runtime (Version: 1.00.0000)
Dota 2
EaseUS Partition Master 9.1.1 Home Edition
EMSC (Version: 0.0.0.22C)
File Splitter and Joiner (FFSJ v3.3)
FL Studio 10
Get Connected Fall 2012 (Version: 12.3.28.1282)
Google Chrome (Version: 33.0.1750.146)
Google Update Helper (Version: 1.3.22.5)
Guitar Pro 6
HP Photosmart Plus B210 series Basic Device Software (Version: 28.0.1315.0)
HTC Driver Installer (Version: 2.0.7.018)
IL Download Manager
ILLUSION ??????? (Version: 1.00.0000)
ILLUSION ???????? (Version: 1.00.0000)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Display Audio Driver (Version: 6.14.00.3090)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.1.0.0096)
Intel® Rapid Storage Technology (Version: 11.0.0.1032)
Intel® PROSet/Wireless WiFi Software (Version: 15.01.0000.0830)
Internet Download Manager (Version: IDM 6.18 Build 7)
iTunes (Version: 11.0.2.26)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Juniper Networks Network Connect 7.3.1 (Version: 7.3.1.21949)
Juniper Networks, Inc. Setup Client (Version: 7.3.1.26369)
Juniper Networks, Inc. Setup Client 64-bit Activex Control (Version: 2.1.1.1)
Juniper Networks, Inc. Setup Client Activex Control (Version: 2.1.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
K-Lite Codec Pack 9.1.0 (Full) (Version: 9.1.0)
LAME v3.99.3 (for Windows)
League of Legends (Version: 1.3)
LOLReplay (Version: 0.8.1.4)
Macrium Reflect Free Edition (Version: 5.0.4870)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox 27.0.1 (x86 en-US) (Version: 27.0.1)
Mozilla Maintenance Service (Version: 27.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
PDF Settings CS6 (Version: 11.0)
ph (Version: 1.0.0)
PhotoShowExpress (Version: 2.0.063)
PowerXpressHybrid (Version: 1.00.0000)
PX Profile Update (Version: 1.00.1.)
Rainmeter (Version: 3.0 beta r1906)
RBVirtualFolder64Inst (Version: 1.00.0000)
Revit 2013 Language Pack - English (Version: 12.02.21203)
Revo Uninstaller 1.95 (Version: 1.95)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Sandboxie 4.08 (64-bit) (Version: 4.08)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Skype™ 6.11 (Version: 6.11.102)
Smart Defrag 3 (Version: 3.0)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Sound Blaster Recon3Di (Version: 1.00.08)
Sound Blaster Recon3Di Extras (Version: 1.0)
Spotify (Version: 0.9.7.16.g4b197456)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 16.0.4.0)
TeamViewer 8 (Version: 8.0.16642)
TouchCopy 12 (Version: 12.07)
Ubisoft Game Launcher (Version: 1.0.0.0)
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition
Update for Microsoft Visio 2010 (KB2878227) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition
Vegas Pro 12.0 (64-bit) (Version: 12.0.770)
VirtualDJ Home FREE (Version: 7.0.5)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (Version: 9.0.30729.177)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (Version: 9.0.30729.177)
Warcraft III: All Products
Warkeys 1.17.1.0b (Version: 1.17.1.0b)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.00 (64-bit) (Version: 4.00.0)
Wondershare Video Converter Ultimate(Build 6.0.0.18) (Version: 6.0.0.18)
ZD Soft Screen Recorder 4.1.3.0 (Version: 4.1.3.0)
 
========================= Devices: ================================
 
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 15%
Total physical RAM: 16354.31 MB
Available physical RAM: 13824.96 MB
Total Pagefile: 32706.81 MB
Available Pagefile: 29809.99 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.54 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OSDisk) (Fixed) (Total:80.83 GB) (Free:15.4 GB) NTFS
3 Drive g: (Data) (Fixed) (Total:371.25 GB) (Free:68.95 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\MININT-06MIVNP
 
Administrator            NotGuest                 Tam Huynh                
 
 
**** End of log ****
 
 
Malwarebytes:
 
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.03.12.10
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Tam Huynh :: MININT-06MIVNP [administrator]
 
3/13/2014 10:34:10 AM
mbam-log-2014-03-13 (10-34-10).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 243067
Time elapsed: 4 minute(s), 
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 
 
Thank you


#6 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:23 AM

Posted 13 March 2014 - 05:12 PM

Apart from you having quite a few programs installed, I am still trying to go over any hints.

 

There is almost no direct pointer to a reason why this problem exists.

Keep me updated with your problem -

 

Please run a Full Scan of Malwarebytes Anti-Malware so it looks deeper.



#7 tsaela

tsaela

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:23 PM

Posted 14 March 2014 - 10:19 AM

If this is still an issue, you might wanna try to remove the programm called hdtotal1.1.

I had the same problems with my browser and I reinstalled my browser completely and upon checking my addons on my 100% fresh set-up browser I found hdtotal1.1 already there.

I deinstalled it and removed it from addons and all my problems are gone.

Quoted from you posts earlier: "Line Deleted : user_pref("extensions.a9ee595b4f5ec4afbbea53c873daf5e4a9725de3997db467bbf8404c276190009com53360.53360.description", "HD-Total is an add-on for your Internet browser that enhances your online experienc[...]"

 

Herdprotect scan

Enhance your experience. Yeah.

 

Tsaela



#8 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:23 AM

Posted 14 March 2014 - 04:41 PM

The best way is to remove all un needed extensions / add ons ............

 

Check all the Extensions from Google Chrome, and remove any that you do not know or need.



#9 botay93

botay93
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 16 March 2014 - 04:32 PM

Hi,

 

The issue seems to disappear for now. I also ran a full scan of Malware bytes and no threat is found. I will check extensions in google chrome and firefox to remove unnecessary extensions.

 

Thanks a lot for the help.



#10 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:23 AM

Posted 16 March 2014 - 05:06 PM

ILLUSION ???????? (Version: 1.00.0000)

 

Installed program that is a bit odd, unless you know it.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users