Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help required


  • This topic is locked This topic is locked
38 replies to this topic

#1 womble7

womble7

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 23 April 2014 - 02:29 PM

Hello

i have a pop up that has the above heading and says

"This application has failed to start because Proxy.dll was not found. Re-installing the application many fix the problem"

Can any one help with getting rid of this.

Thanks in advance.

Edit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs to the more appropriate forum, due to the absence of any malware logs included with the topic.~ Animal

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:10 AM

Posted 23 April 2014 - 06:32 PM

Welcome aboard p22002758.gif

 

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size

Click Go and post the result.

p22002970.gif Please download Malwarebytes Anti-Malware to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:

    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.



If you already have MBAM 2.0 installed:

  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.


How to get logs:
(Export log to save as txt)


  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • Attach that saved log to your next reply.



(Copy to clipboard for pasting into forum replies or tickets)

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.


p22002970.gifDownload Malwarebytes Anti-Rootkit from HERE to your Desktop.
  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt


p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.
Do NOT use spoilers.
Do NOT edit your reply to post additional logs. Create new reply. I'll not get any email notifications about edits so I won't know you posted something new.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 02:06 PM

 Results of screen317's Security Check version 0.99.82 
 Windows Vista Service Pack 2 x86 (UAC is enabled) 
 Internet Explorer 9 
 Internet Explorer 8 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled! 
PC Tools Spyware Doctor with AntiVirus  
Norton 360 Premier Edition              
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 PC Tools Spyware Doctor 9.1
 River Past Video Cleaner Pro
 Java™ 6 Update 35 
 Java 7 Update 25 
 Java™ SE Runtime Environment 6 Update 1
 Java version out of Date!
 Adobe Flash Player 10 Flash Player out of Date!
 Adobe Reader 8 Adobe Reader out of Date!
 Adobe Reader 9 Adobe Reader out of Date!
 Google Chrome 33.0.1750.154 
 Google Chrome 34.0.1847.116 
````````Process Check: objlist.exe by Laurent```````` 
 Norton ccSvcHst.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 7 % Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````

 



#4 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 02:08 PM

Farbar Service Scanner Version: 25-02-2014
Ran by Karl (administrator) on 24-04-2014 at 20:08:10
Running from "C:\Users\Karl\Desktop"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0

System Restore:
============

System Restore Disabled Policy:
========================

Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit

**** End of log ****



#5 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 02:11 PM

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Karl (administrator) on 24-04-2014 at 20:10:03
Running from "C:\Users\Karl\Desktop"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Karl-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection
   Physical Address. . . . . . . . . : 00-1D-60-92-4A-51
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::30c9:becf:e26a:ced2%8(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.9(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 22 April 2014 18:52:38
   Lease Expires . . . . . . . . . . : 25 April 2014 18:52:40
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 201333756
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0E-88-20-AE-00-1D-60-92-4A-51
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{0471B105-212B-46A4-A0ED-F4E8972963E8}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.0.1

Name:    google.com
Addresses:  2a00:1450:4009:807::1002
   173.194.41.162
   173.194.41.169
   173.194.41.165
   173.194.41.167
   173.194.41.168
   173.194.41.166
   173.194.41.164
   173.194.41.163
   173.194.41.174
   173.194.41.161
   173.194.41.160

 

Pinging google.com [173.194.41.65] with 32 bytes of data:

Reply from 173.194.41.65: bytes=32 time=21ms TTL=55

Reply from 173.194.41.65: bytes=32 time=19ms TTL=55

 

Ping statistics for 173.194.41.65:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 19ms, Maximum = 21ms, Average = 20ms

DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.0.1

DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  206.190.36.45
   98.139.183.24
   98.138.253.109

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=176ms TTL=49

Reply from 206.190.36.45: bytes=32 time=198ms TTL=49

 

Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 176ms, Maximum = 198ms, Average = 187ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
  8 ...00 1d 60 92 4a 51 ...... Intel® PRO/100 VE Network Connection
  1 ........................... Software Loopback Interface 1
 17 ...00 00 00 00 00 00 00 e0  isatap.{0471B105-212B-46A4-A0ED-F4E8972963E8}
  9 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.9     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.9    276
      192.168.0.9  255.255.255.255         On-link       192.168.0.9    276
    192.168.0.255  255.255.255.255         On-link       192.168.0.9    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.9    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.9    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  8    276 fe80::/64                On-link
  8    276 fe80::30c9:becf:e26a:ced2/128
                                    On-link
  1    306 ff00::/8                 On-link
  8    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/23/2014 07:05:42 PM) (Source: Application Hang) (User: )
Description: The program EXCEL.EXE version 12.0.6683.5002 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 3ce8
Start Time: 01cf5f1e91fd7d3b
Termination Time: 8

Error: (04/23/2014 08:01:02 AM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (04/23/2014 08:01:00 AM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (04/22/2014 06:34:15 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
 The content index metadata cannot be read.   (0xc0041801)

Error: (04/22/2014 06:34:15 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index metadata cannot be read.   (0xc0041801)

Error: (04/22/2014 06:34:15 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 Element not found.   (0x80070490)

Error: (04/22/2014 06:34:15 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index metadata cannot be read.   (0xc0041801)

Error: (04/22/2014 06:34:15 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog

Details:
 0x%08x (0xc0041800 - The content index cannot be read.  )

Error: (04/22/2014 06:34:15 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
 The content index metadata cannot be read.   (0xc0041801)

Error: (04/22/2014 06:34:15 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
 The content index cannot be read.   (0xc0041800)

System errors:
=============
Error: (04/22/2014 06:54:55 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (04/22/2014 06:54:01 PM) (Source: Service Control Manager) (User: )
Description: regfil%%2

Error: (04/22/2014 06:54:01 PM) (Source: Service Control Manager) (User: )
Description: procdrv%%2

Error: (04/22/2014 06:54:01 PM) (Source: Service Control Manager) (User: )
Description: LogMeIn Kernel Information Provider%%3

Error: (04/22/2014 06:54:01 PM) (Source: Service Control Manager) (User: )
Description: filesvc%%2

Error: (04/22/2014 06:54:01 PM) (Source: Service Control Manager) (User: )
Description: AOL Connectivity Service%%1053

Error: (04/22/2014 06:54:01 PM) (Source: Service Control Manager) (User: )
Description: 30000AOL Connectivity Service

Error: (04/22/2014 06:54:01 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (04/22/2014 06:42:49 PM) (Source: Service Control Manager) (User: )
Description: 30000ShellHWDetection

Error: (04/22/2014 06:42:49 PM) (Source: Service Control Manager) (User: )
Description: 30000ShellHWDetection

Microsoft Office Sessions:
=========================
Error: (01/10/2012 09:44:55 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 42 seconds with 0 seconds of active time.  This session ended with a crash.

CodeIntegrity Errors:
===================================
  Date: 2014-04-22 16:40:49.135
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-22 16:40:48.703
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-22 16:40:48.275
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-22 16:40:47.856
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-16 21:49:59.180
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-16 21:49:58.816
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-16 21:49:58.470
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-16 21:49:58.126
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-16 21:49:57.782
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-16 21:49:57.394
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 7.1.8)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 3.0.0.4080)
Adobe Community Help (Version: 3.5.23)
Adobe Download Assistant (Version: 1.0.4)
Adobe Dreamweaver CS5.5 (Version: 11.5)
Adobe Flash Player 10 Plugin (Version: 10.0.45.2)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Photoshop Elements 10 (Version: 10.0)
Adobe Photoshop Elements 12 (Version: 12.0)
Adobe Reader 9.5.4 (Version: 9.5.4)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
Advanced Video FX Engine
AdwareFilter (Version: 3.1.1.1159)
AIO_Scan (Version: 90.0.189.000)
Akamai NetSession Interface
AOL Broadband Toolbar
AOL Mail and AIM Gadget (Version: 1.0.0)
AOL Toolbar 5.0
AOL Uninstaller (Choose which Products to Remove)
Apple Application Support (Version: 3.0.1)
Apple Mobile Device Support (Version: 7.1.1.3)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.15.0)
Ask Toolbar Updater (Version: 1.2.4.35882)
ATI Catalyst Install Manager (Version: 3.0.664.0)
Avanquest update (Version: 1.19)
Avex DVD to iPod Converter (remove only)
AVS DVDMenu Editor 1.2.1.19
AVS Update Manager 1.0
AVS Video Converter 6
AVS Video Tools 5.6
AVS4YOU Software Navigator 1.3
BabylonObjectInstaller (Version: 2.0.0.3)
BBC iPlayer Desktop (Version: 3.2.13)
Bejeweled 2 Deluxe 1.1.3.2523 (Version: 1.1.3.2523)
Bejeweled Blitz
Blaze Media Pro
Blaze Media Pro (Version: 6.0)
Bluetooth OBEX File Transfer (Version: 1.2.1.1)
Bonjour (Version: 3.0.0.10)
Box Sync (Version: 4.0.4443.0)
Box Sync (Version: 4.0.4758.0)
Browser Guard 4.0 (Version: 4.0.0.1884)
BufferChm (Version: 90.0.146.000)
C7200 (Version: 90.0.189.000)
C7200_doccd (Version: 90.0.189.000)
c7200_Help (Version: 90.0.189.000)
CANON iMAGE GATEWAY MyCamera Download Plugin (Version: 3.1.0.1)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (Version: 1.8.0.1)
Canon Internet Library for ZoomBrowser EX (Version: 1.7.0.1)
Canon MOV Decoder (Version: 1.7.0.6)
Canon MOV Encoder (Version: 1.5.0.3)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.6.0.5)
Canon Utilities Digital Photo Professional 3.9 (Version: 3.9.1.0)
Canon Utilities EOS Utility (Version: 2.9.0.0)
Canon Utilities Original Data Security Tools (Version: 1.9.0.1)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities Picture Style Editor (Version: 1.8.0.0)
Canon Utilities WFT Utility (Version: 3.5.1.1)
Canon Utilities ZoomBrowser EX (Version: 6.6.0.23)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.4.0.4)
Cards_Calendar_OrderGift_DoMorePlugout (Version: 2.03.0000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Full Existing (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Full New (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Light (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Previews Common (Version: 2007.0709.2353.40813)
Catalyst Control Center Graphics Previews Common (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Previews Vista (Version: 2007.0709.2353.40813)
Catalyst Control Center Graphics Previews Vista (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Chinese Standard (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Chinese Traditional (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Czech (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Danish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Dutch (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Dutch (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Finnish (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Finnish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization French (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization French (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization German (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization German (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Greek (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Greek (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Hungarian (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Hungarian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Italian (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Italian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Japanese (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Japanese (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Korean (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Korean (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Norwegian (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Norwegian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Polish (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Polish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Portuguese (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Portuguese (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Russian (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Russian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Spanish (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Spanish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Swedish (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Swedish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Thai (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Thai (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Turkish (Version: 2007.0709.2353.40813)
Catalyst Control Center Localization Turkish (Version: 2008.0225.2153.39091)
CCC Help Chinese Standard (Version: 2007.0709.2352.40813)
CCC Help Chinese Standard (Version: 2008.0225.2152.39091)
CCC Help Chinese Traditional (Version: 2007.0709.2352.40813)
CCC Help Chinese Traditional (Version: 2008.0225.2152.39091)
CCC Help Czech (Version: 2007.0709.2352.40813)
CCC Help Czech (Version: 2008.0225.2152.39091)
CCC Help Danish (Version: 2007.0709.2352.40813)
CCC Help Danish (Version: 2008.0225.2152.39091)
CCC Help Dutch (Version: 2007.0709.2352.40813)
CCC Help Dutch (Version: 2008.0225.2152.39091)
CCC Help English (Version: 2007.0709.2352.40813)
CCC Help English (Version: 2008.0225.2152.39091)
CCC Help Finnish (Version: 2007.0709.2352.40813)
CCC Help Finnish (Version: 2008.0225.2152.39091)
CCC Help French (Version: 2007.0709.2352.40813)
CCC Help French (Version: 2008.0225.2152.39091)
CCC Help German (Version: 2007.0709.2352.40813)
CCC Help German (Version: 2008.0225.2152.39091)
CCC Help Greek (Version: 2007.0709.2352.40813)
CCC Help Greek (Version: 2008.0225.2152.39091)
CCC Help Hungarian (Version: 2007.0709.2352.40813)
CCC Help Hungarian (Version: 2008.0225.2152.39091)
CCC Help Italian (Version: 2007.0709.2352.40813)
CCC Help Italian (Version: 2008.0225.2152.39091)
CCC Help Japanese (Version: 2007.0709.2352.40813)
CCC Help Japanese (Version: 2008.0225.2152.39091)
CCC Help Korean (Version: 2007.0709.2352.40813)
CCC Help Korean (Version: 2008.0225.2152.39091)
CCC Help Norwegian (Version: 2007.0709.2352.40813)
CCC Help Norwegian (Version: 2008.0225.2152.39091)
CCC Help Polish (Version: 2007.0709.2352.40813)
CCC Help Polish (Version: 2008.0225.2152.39091)
CCC Help Portuguese (Version: 2007.0709.2352.40813)
CCC Help Portuguese (Version: 2008.0225.2152.39091)
CCC Help Russian (Version: 2007.0709.2352.40813)
CCC Help Russian (Version: 2008.0225.2152.39091)
CCC Help Spanish (Version: 2007.0709.2352.40813)
CCC Help Spanish (Version: 2008.0225.2152.39091)
CCC Help Swedish (Version: 2007.0709.2352.40813)
CCC Help Swedish (Version: 2008.0225.2152.39091)
CCC Help Thai (Version: 2007.0709.2352.40813)
CCC Help Thai (Version: 2008.0225.2152.39091)
CCC Help Turkish (Version: 2007.0709.2352.40813)
CCC Help Turkish (Version: 2008.0225.2152.39091)
ccc-Branding (Version: 1.00.0000)
ccc-core-static (Version: 2008.0225.2153.39091)
ccc-utility (Version: 2008.0225.2153.39091)
Celtx (2.9.1) (Version: 2.9.1 (en-US))
ChangeExt 1.2 (Version: 1.2)
Copy (Version: 90.0.146.000)
Corel Paint Shop Pro Photo X2 (Version: 12.001.0000)
Creative Live! Cam Optia User's Guide (English)
Creative Software AutoUpdate
CustomerResearchQFolder (Version: 1.00.0000)
CyberView X - SF v1.18c (Version: 1.18.000)
D3DX10 (Version: 15.4.2368.0902)
DebugMode Wax 2.0
Destination Component (Version: 090.000.091.086)
DeviceDiscovery (Version: 110.0.180.000)
DeviceManagementQFolder (Version: 1.00.0000)
Digital DJ Pro 1.7.0 (Version: 1.7.0)
Disketch Disc Label Software
DocProc (Version: 9.0.0.0)
DocProcQFolder (Version: 1.00.0000)
Documents To Go Desktop for iOS (Version: 4.0001.010)
Download Updater (AOL LLC)
Driver Mender (Version: 8.0.1)
Dropbox (Version: 2.4.11)
DVD Decrypter (Remove Only)
EASEUS Deleted File Recovery 2.1.1 (Version: 2.1.1)
Easy Schedule Maker 2
Elements 10 Organizer (Version: 10.0)
Elements 12 Organizer (Version: 12.0)
eSupportQFolder (Version: 1.00.0000)
Express Burn
Eye-Fi Center 3.4 (Version: 3.4.26)
Family Tree Maker 2012 (Version: 21.0.388)
Fax (Version: 120.0.194.000)
File Extension Changer 3.3
FLIR Device Drivers (Version: 1.6.0.0)
FLIR QuickReport 1.2 SP2 (Version: 3.03.1535)
Free FLV to iPhone Converter
Free YouTube to iPod Converter version 2.9
FrostWire 5.1.5 (Version: 5.1.5.0)
FTMVistaUpdater (Version: 1.0.0)
GearDrvs (Version: 5.0.0.2)
Google Chrome (Version: 34.0.1847.116)
Google Earth (Version: 7.1.2.2041)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.23.9)
Google Updater (Version: 2.4.2432.1652)
HanDBase Professional for iPhone v4.0 (Version: 4.7.6 Build R1)
Hardware Diagnostic Tools (Version: 5.00.4558.05)
Highlight Viewer (Windows Live Toolbar) (Version: 03.01.0146)
HP Active Support Library (Version: 3.1.6.1)
HP Active Support Library 32 bit components (Version: 2.1.0)
HP Advisor (Version: 3.1.9152.3107)
HP Customer Experience Enhancements (Version: 5.2.0.2296)
HP Customer Feedback (Version: 1.0.0)
HP Customer Participation Program 9.0 (Version: 9.0)
HP Easy Setup - Frontend (Version: 5.2.0.2304)
HP Imaging Device Functions 9.0 (Version: 9.0)
HP OCR Software 9.0 (Version: 9.0)
HP On-Screen Cap/Num/Scroll Lock Indicator
HP Photosmart All-In-One Software 9.0 (Version: 9.0)
HP Photosmart Essential 2.5 (Version: 1.03.0000)
HP Photosmart Essential 3.0 (Version: 3.0)
HP Product Assistant (Version: 100.000.001.000)
HP Product Detection (Version: 4.00.0004)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 9.0 (Version: 9.0)
HP Update (Version: 5.005.000.002)
HP_Network_UserGuide (Version: 1.00.0000)
HPAsset component for HP Active Support Library (Version: 3.0.2.2)
HPPhotoSmartPhotobookWebPack1 (Version: 2.03.0000)
HPProductAssistant (Version: 90.0.146.000)
HPSSupply (Version: 2.2.0.0000)
iCloud (Version: 2.1.3.25)
Intel® Integrated Performance Primitives Run-Time Installer 5.1 for Windows* on IA-32 Intel® Architecture (Version: 5.1.1.3)
Intel® Matrix Storage Manager
Intel® Viiv™ Software (Version: 1.6.361.6)
iPhone Configuration Utility (Version: 2.1.0.163)
Ipswitch WS_FTP LE (Version: 6.00)
iTunes (Version: 11.1.5.5)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 35 (Version: 6.0.350)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)
Jessops Photo
Juniper Networks Host Checker (Version: 6.5.0.15255)
Juniper Networks Setup Client (Version: 2.1.2.5973)
Junk Mail filter update (Version: 15.4.3502.0922)
JustCloud  (Version: )
LatestGoogleCalendarChanges
LightScribe  1.8.13.1 (Version: 1.8.13.1)
Logitech Desktop Messenger (Version: 2.52.18)
Logitech Harmony Remote Software 7 (Version: 7.3.2.5)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech Touch Mouse Server 1.0 (Version: 1.0)
Macromedia Dreamweaver 8 (Version: 8.0.2)
Macromedia Extension Manager (Version: 1.7.240)
Malwarebytes' Anti-Malware
Map Button (Windows Live Toolbar) (Version: 03.01.0146)
MarketResearch (Version: 90.0.146.000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2000 Disc 2 (Version: 9.00.2720)
Microsoft Office 2000 Premium (Version: 9.00.2720)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 60 day trial
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 08.05.0818)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
MioNet (Version: 4.1.0.0.171)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
msxml4 (Version: 1.0.0)
Multi PDF Converter (Version: 4.64)
muvee autoProducer 4.1 (Version: 4.10.050)
muvee autoProducer 6.0 (Version: 6.00.050)
My Memories Suite 3.0 (Version: 3.0.0.126)
MyPoi Manager (Version: 1.6.0.90)
Network (Version: 110.0.180.000)
News Scroller Wizard 2.3 (Version: 2.3)
Norton 360 (Version: 1.0.0.184)
Norton 360 Premier Edition (Version: 20.4.0.40)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Opera 11.52 (Version: 11.52.1100)
PanoStandAlone (Version: 90.0.146.000)
PC Tools Spyware Doctor 9.1 (Version: 9.1)
Peggle Deluxe 1.01
PhotoPad Image Editor
Picasa 3 (Version: 3.9)
Pixillion Image Converter
PMB (Version: 5.2.00.03250)
PS_AIO_02_ProductContext (Version: 90.0.189.000)
PS_AIO_02_Software (Version: 90.0.189.000)
PS_AIO_02_Software_min (Version: 90.0.189.000)
PSE10 STI Installer (Version: 10.0)
PSE12 STI Installer (Version: 12.0)
PSSWCORE (Version: 2.03.0000)
Python 2.5 (Version: 2.5.150)
QuickTime 7 (Version: 7.75.80.95)
Realtek High Definition Audio Driver (Version: 6.0.1.5789)
Recover My Files (Version: 3.9.8.6081)
RegCure (Version: 3.0.2.0)
RegCure Pro (Version: 3.1.2.0)
Remote Control USB Driver (Version: 2.3.2.317)
Rename File Extensions
River Past Video Cleaner Pro (Version: 7.6.4)
Rosters (Version: 10.0515)
Roxio Activation Module (Version: 1.0)
Roxio Creator Audio (Version: 3.4.0)
Roxio Creator Basic v9 (Version: 3.4.0)
Roxio Creator Copy (Version: 3.4.0)
Roxio Creator Data (Version: 3.4.0)
Roxio Creator EasyArchive (Version: 3.4.0)
Roxio Creator Tools (Version: 3.4.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio MyDVD Basic v9 (Version: 9.0.572)
RTC Client API v1.2 (Version: 1.2.0000)
Safari (Version: 5.34.57.2)
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung PC Studio 3 (Version: 3.0.0.70706)
Samsung PC Studio 3 (Version: 3.2.3.90502)
Samsung PC Studio 3 USB Driver Installer (Version: 3.2.0.70701)
Scan (Version: 9.0.0.0)
Segoe UI (Version: 15.4.2271.0615)
SigScribe4 1.2.5 (Version: 1.2.5b20)
Simfatic Forms 4.0.11.403 (Version: 4.0.11.403)
Simplify Media (Version: 2.5.1810)
SimSig Southampton V2.201
SimSig V2.103
SimSig Waterloo V2.202
SipdxDLL (Version: 2.11.0000)
Skins (Version: 2008.0225.2153.39091)
Skype™ 6.11 (Version: 6.11.102)
Smart Menus (Windows Live Toolbar) (Version: 03.01.0146)
SmartDraw 2012
SmartFTP Client (Version: 4.0.1248.0)
SmartFTP Client 4.0 Setup Files (remove only) (Version: 4.0)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 90.0.146.000)
Sony Ericsson PC Suite 4.010.00 (Version: 4.010.00)
Spelling Dictionaries Support For Adobe Reader 8 (Version: 8.0.0)
Spotify (Version: 0.3.12)
SpreadsheetConverter 7.3.5769 (Version: 7.3.5769)
Status (Version: 110.0.180.000)
SweetIM for Messenger 3.6 (Version: 3.6.0008)
SweetPacks Toolbar for Internet Explorer 4.6 (Version: 4.6.0002)
TeamViewer 9 (Version: 9.0.27339)
TestDrive Client (Version: 1.00.2000)
TomTom HOME (Version: 2.9.5)
TomTom HOME Visual Studio Merge Modules (Version: 1.0.2)
Toolbox (Version: 90.0.146.000)
TrayApp (Version: 110.0.180.000)
Uniblue RegistryBooster
Uniblue System Tweaker
Uninstall 1.0.0.0
UnloadSupport (Version: 9.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Manager for SweetPacks 1.0 (Version: 1.0.0005)
Veetle TV 0.9.18 (Version: 0.9.18)
VideoToolkit01 (Version: 110.0.171.000)
Viewpoint Media Player
WD SmartWare Drive Manager (Version: 1.5.0)
Web Album Generator 1.8.2
WebReg (Version: 90.0.146.000)
WePrint
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live Favorites for Windows Live Toolbar (Version: 03.01.0146)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Toolbar Extension (Windows Live Toolbar) (Version: 03.01.0146)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.3374)
Windows SideShow Managed Runtime 1.0 (Version: 1.0.1.0)
WinRAR archiver
WinUndelete
WinX Free FLV to MP4 Converter 4.1.9
WinZip (Version:  8.1 SR-1  (5266))
YourFileDownloader (Version: 1.0.1)

========================= Devices: ================================

Name: HP Photosmart C7200
Description: HP Photosmart C7200
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart C7200 series
Description: Photosmart C7200 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

========================= Memory info: ===================================

Percentage of memory in use: 62%
Total physical RAM: 3069.76 MB
Available physical RAM: 1162.88 MB
Total Pagefile: 6341.69 MB
Available Pagefile: 3901.43 MB
Total Virtual: 2047.88 MB
Available Virtual: 1948.73 MB

========================= Partitions: =====================================

1 Drive c: (COMPAQ) (Fixed) (Total:290.57 GB) (Free:1.82 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:7.51 GB) (Free:1 GB) NTFS
3 Drive e: (Homeland ) (CDROM) (Total:2.58 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\KARL-PC

Administrator            Guest                    IUSR_NMPR               
Karl                     Mads                     Main Account            

**** End of log ****



#6 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 02:57 PM

Hello

 

How do i attach the MBAM txt file to the post?

 

Thanks



#7 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 03:00 PM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 24/04/2014
Scan Time: 20:39:01
Logfile: Scan log 1.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.24.08
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: Karl

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 363910
Time Elapsed: 15 min, 44 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 44
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\APPID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}, Quarantined, [b2763bf3b4c7f54128b674db37cb1ae6],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{35C1605E-438B-4D64-AAB1-8885F097A9B1}, Quarantined, [b2763bf3b4c7f54128b674db37cb1ae6],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B}, Quarantined, [fb2da787f5861c1a5f7e91be03ffdc24],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\esrv.BabylonESrvc.1, Quarantined, [fb2da787f5861c1a5f7e91be03ffdc24],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\esrv.BabylonESrvc, Quarantined, [fb2da787f5861c1a5f7e91be03ffdc24],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}, Quarantined, [87a1f7378deebf77c61bea65936fad53],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\b, Quarantined, [87a1f7378deebf77c61bea65936fad53],
PUP.Optional.SweetPacks, HKLM\SOFTWARE\CLASSES\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKLM\SOFTWARE\CLASSES\TYPELIB\{EEE6C35E-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKLM\SOFTWARE\CLASSES\INTERFACE\{EEE6C358-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKLM\SOFTWARE\CLASSES\INTERFACE\{EEE6C359-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKLM\SOFTWARE\CLASSES\Toolbar3.SWEETIE.1, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKLM\SOFTWARE\CLASSES\Toolbar3.SWEETIE, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{EEE6C35C-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKU\S-1-5-21-1601510619-448517056-714433218-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EEE6C35C-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKU\S-1-5-21-1601510619-448517056-714433218-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EEE6C35C-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.SweetPacks, HKU\S-1-5-21-1601510619-448517056-714433218-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EEE6C35C-6118-11DC-9C72-001320C79847}, Quarantined, [81a7210d0f6c7db90a5373a95ba79070],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{6E8BF012-2C85-4834-B10A-1B31AF173D70}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{706D4A4B-184A-4434-B331-296B07493D2D}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{8BE10F21-185F-4CA0-B789-9921674C3993}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{94C0B25D-3359-4B10-B227-F96A77DB773F}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B173667F-8395-4317-8DD6-45AD1FE00047}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B32672B3-F656-46E0-B584-FE61C0BB6037}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{BFE569F7-646C-4512-969B-9BE3E580D393}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C2996524-2187-441F-A398-CD6CB6B3D020}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E047E227-5342-4D94-80F7-CFB154BF55BD}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}, Quarantined, [ae7a64caf88357df8c539bb4798940c0],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}, Quarantined, [f7315bd3aad13204469a8ac557ab6e92],
PUP.Optional.YourfileDownloader.A, HKU\S-1-5-21-1601510619-448517056-714433218-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\YourFileDownloader, Quarantined, [9494db53a0db0c2a7d20b0e7758e659b],
PUP.Optional.Babylon.A, HKLM\SOFTWARE\BabylonToolbar, Quarantined, [a88026086b10360040752a71748f29d7],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\CLASSES\SweetIM_URLSearchHook.ToolbarURLSearchHook, Quarantined, [85a3052997e490a6d8d9cbd422e11de3],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\CLASSES\SweetIM_URLSearchHook.ToolbarURLSearchHook.1, Quarantined, [44e4ca643744033304ad049b53b08779],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\SWEETIM, Quarantined, [23055bd35e1ddb5be9264358f50ea060],
PUP.Optional.BabylonToolBar.A, HKU\S-1-5-21-1601510619-448517056-714433218-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BabylonToolbar, Quarantined, [9c8cde50344764d235a0e8b55aa9b14f],
PUP.Optional.Babylon.A, HKU\S-1-5-21-1601510619-448517056-714433218-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BABSOLUTION\Updater, Quarantined, [58d05bd31863f343996a74279b68b34d],
PUP.Optional.SweetIM.A, HKU\S-1-5-21-1601510619-448517056-714433218-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM, Quarantined, [9e8a0c22a1dac5711bf3e7b407fcce32],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\CLASSES\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{EEE6C35F-6118-11DC-9C72-001320C79847}, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EEE6C35A-6118-11DC-9C72-001320C79847}, Quarantined, [74b49d913348a393c79c3a2811f1d729],

Registry Values: 4
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\SWEETIM|simapp_id, {34458140-0D8D-11E2-9648-001D60924A51}, Quarantined, [23055bd35e1ddb5be9264358f50ea060]
PUP.Optional.SweetIM.A, HKU\S-1-5-21-1601510619-448517056-714433218-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM|simapp_id, {34458140-0D8D-11E2-9648-001D60924A51}, Quarantined, [9e8a0c22a1dac5711bf3e7b407fcce32]
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES\SWEETIM\TOOLBARS\INTERNET EXPLORER\MGHELPERAPP.EXE, 1, Quarantined, [74b49d913348a393c79c3a2811f1d729]
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES\SWEETIM\TOOLBARS\INTERNET EXPLORER\MGTOOLBARPROXY.DLL, 1, Quarantined, [74b49d913348a393c79c3a2811f1d729]

Registry Data: 0
(No malicious items detected)

Folders: 9
PUP.Optional.YourfileDownloader.A, C:\Program Files\YourFileDownloader, Quarantined, [9494db53a0db0c2a7d20b0e7758e659b],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\conf, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange, Quarantined, [74b49d913348a393c79c3a2811f1d729],

Files: 97
PUP.Optional.SweetIM, C:\Windows\Installer\19c52a85.msi, Quarantined, [8f998ca291ea92a4ed0b3021e81cfe02],
PUP.Optional.SweetIM, C:\Windows\Installer\19c52a8b.msi, Quarantined, [37f1042a9cdf1c1a3dbb6de4c24229d7],
PUP.Optional.SweetIM, C:\Windows\Installer\19c52a91.msi, Quarantined, [9d8b3ef02457082e2bcd55fce321d22e],
PUP.Optional.YourfileDownloader.A, C:\Program Files\YourFileDownloader\htmlayout.dll, Quarantined, [9494db53a0db0c2a7d20b0e7758e659b],
PUP.Optional.YourfileDownloader.A, C:\Program Files\YourFileDownloader\Downloader.exe, Quarantined, [9494db53a0db0c2a7d20b0e7758e659b],
PUP.Optional.YourfileDownloader.A, C:\Program Files\YourFileDownloader\uninstall.exe, Quarantined, [9494db53a0db0c2a7d20b0e7758e659b],
PUP.Optional.YourfileDownloader.A, C:\Program Files\YourFileDownloader\YourFile.exe, Quarantined, [9494db53a0db0c2a7d20b0e7758e659b],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\default.xml, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mghooking.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mglogger.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcm90.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcp90.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcr90.dll, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\about.html, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\bing.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dating.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\find.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\games.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\google.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\help.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\music.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\news.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\options.html, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\photos.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\video.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\web-toolbar.js, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_bing.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_current.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_dictionary.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_google.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_hover.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_left.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_photo.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_video.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_web.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_yahoo.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_bing.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_current.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_dictionary.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_google.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_hover.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_left.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_photo.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_video.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_web.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_yahoo.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_bing.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_current.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_dictionary.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_google.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_hover.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_left.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_photo.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_video.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_web.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],
PUP.Optional.SweetIM.A, C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_yahoo.png, Quarantined, [74b49d913348a393c79c3a2811f1d729],

Physical Sectors: 0
(No malicious items detected)

(end)



#8 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 04:30 PM

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.07.0.1009

© Malwarebytes Corporation 2011-2012

OS version: 6.0.6002 Windows Vista Service Pack 2 x86

Account is Administrative

Internet Explorer version: 9.0.8112.16421

Java version: 1.6.0_35

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.200000 GHz
Memory total: 3218878464, free: 1440743424

Downloaded database version: v2014.04.24.08
Downloaded database version: v2014.03.27.01
=======================================
Initializing...
Done!
Unhooking enabled.
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
File user open failed: C:\WINDOWS\SYSTEM32\drivers\sptd.sys (0x00000020)
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 1549F232

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 63  Numsec = 609377517
    Partition file system is NTFS
    Partition is bootable

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 609377580  Numsec = 15759765

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 320072933376 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-625122448-625142448)...
Done!
Scan finished



#9 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 04:31 PM

Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org

Database version: v2014.04.24.08

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Karl :: KARL-PC [administrator]

24/04/2014 21:04:17
mbar-log-2014-04-24 (21-04-17).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 361766
Time elapsed: 36 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)



#10 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 24 April 2014 - 04:41 PM

Rkill 2.6.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 04/24/2014 10:36:14 PM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

 * Windows Firewall Disabled

   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Automatic

Searching for Missing Digital Signatures:

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Automatic

Searching for Missing Digital Signatures:

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Automatic

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

 * HOSTS file entries found:

Checking HOSTS File:
  127.0.0.1       localhost

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 04/24/2014 10:38:03 PM
Execution time: 0 hours(s), 1 minute(s), and 48 seconds(s)

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

Program finished at: 04/24/2014 10:38:03 PM
Execution time: 0 hours(s), 2 minute(s), and 8 seconds(s)
  127.0.0.1       localhost

Program finished at: 04/24/2014 10:38:03 PM
Execution time: 0 hours(s), 2 minute(s), and 48 seconds(s)



#11 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:10 AM

Posted 25 April 2014 - 04:18 PM

p22002970.gif Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

p22002970.gif Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


p22002970.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


p22002970.gif Please run a free online scan with the ESET Online Scanner

  • Disable your antivirus program
  • Click on "Run ESET Online Scanner" button.
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • Accept any security warnings from your browser.
  • Check Scan archives
  • Click Start
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click on List of found threats
  • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    NOTE. If Eset doesn't find any threats it'll NOT produce any log.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#12 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 27 April 2014 - 12:10 PM

# AdwCleaner v3.204 - Report created 27/04/2014 at 17:04:39
# Updated 26/04/2014 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : Karl - KARL-PC
# Running from : C:\Users\Karl\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[x] Not Deleted : BackupStack

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\Ask.com
Folder Deleted : C:\Program Files\ParetoLogic
Folder Deleted : C:\Program Files\SweetIM
Folder Deleted : C:\Program Files\Uniblue
Folder Deleted : C:\Program Files\Viewpoint
Folder Deleted : C:\Program Files\Common Files\ParetoLogic
Folder Deleted : C:\Program Files\Common Files\Software Update Utility
Folder Deleted : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Folder Deleted : C:\Users\Karl\.android
Folder Deleted : C:\Users\Karl\AppData\Local\apn
Folder Deleted : C:\Users\Karl\AppData\Local\PackageAware
Folder Deleted : C:\Users\Karl\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Karl\AppData\LocalLow\FunWebProducts
Folder Deleted : C:\Users\Karl\AppData\LocalLow\MyWebSearch
Folder Deleted : C:\Users\Karl\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\Karl\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Karl\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Karl\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Karl\AppData\Roaming\Uniblue
Folder Deleted : C:\Users\Karl\AppData\Roaming\yourfiledownloader
Folder Deleted : C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
Folder Deleted : C:\Users\Main Account\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Main Account\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Main Account\AppData\LocalLow\SweetIM
Folder Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
File Deleted : C:\Users\Karl\AppData\Roaming\BabMaint.exe
File Deleted : C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\JustCloud.lnk
File Deleted : C:\Users\Karl\Desktop\JustCloud.lnk
File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.babylon.com_0.localstorage
File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.babylon.com_0.localstorage-journal
File Deleted : C:\Windows\System32\Tasks\LaunchApp
File Deleted : C:\Windows\Tasks\paretologic registration3.job
File Deleted : C:\Windows\System32\Tasks\paretologic registration3
File Deleted : C:\Windows\Tasks\paretologic update version3.job
File Deleted : C:\Windows\System32\Tasks\paretologic update version3
File Deleted : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
File Deleted : C:\Windows\System32\Tasks\Your File Updater

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1B52DFE-BDFF-46E8-8DC3-B43D07B92EA5}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1B52DFE-BDFF-46E8-8DC3-B43D07B92EA5}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F6405FB2-770F-4D5D-9E2E-73585BFDCF64}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6405FB2-770F-4D5D-9E2E-73585BFDCF64}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F0AAA92-DC5F-4B9A-90FC-BBDEFC1523C2}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F0AAA92-DC5F-4B9A-90FC-BBDEFC1523C2}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AA19E4B-24B8-481F-9BF3-FE5CDABA857F}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7E6007A9-519F-4A3D-9FE3-DBD8A86E7256}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E6007A9-519F-4A3D-9FE3-DBD8A86E7256}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8818F4E3-7C0F-4549-9E56-B2BC31B40F81}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9E47C416-36D1-49C7-89F5-3AE9A1D50FAE}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E47C416-36D1-49C7-89F5-3AE9A1D50FAE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\BHO.PSHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\sim-packages
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{13086CD4-88B6-45E3-9182-3BC2664199F7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1FCD7139-C2A3-49AD-8B9E-E82E48AE5DF6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{28C02550-6572-401a-A2AE-5BC703C9BBA6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{319FCB76-1568-4EFA-863B-B03A2B16EB5C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4796719D-2B92-47BC-920B-77BCDBDBCB6A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64A66B25-A70F-4373-95EF-3A1DB6040B3A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64FCFFAE-99F5-4E4F-A927-1FE39B079FCB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6FC5F7E0-D65A-465C-B8EE-A5F8E008D6DF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{731D436C-464C-4F29-BFB2-DE9C458535AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7C89C8A6-991C-4626-9E26-B12EB4D89C04}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEF00686-CAB8-4885-9CCB-78FF483041AA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FDA55C78-736E-4E8A-996C-4A80FC0396FB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7854F00C-DC77-477E-A10E-603F48442D3B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\AskToolbar
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Babylon
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\Uniblue
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Fun Web Products
Key Deleted : HKCU\Software\AppDataLow\Software\FunWebProducts
Key Deleted : HKCU\Software\AppDataLow\Software\MyWebSearch
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\Software\ParetoLogic
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\Software\Viewpoint
Key Deleted : HKLM\Software\YourFileDownloader
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4183178B-4D4E-48A7-9257-454BA90A760E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{83AA2913-C123-4146-85BD-AD8F93971D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FB697452-8CA4-46B4-98B1-165C922A2EF3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4183178B-4D4E-48A7-9257-454BA90A760E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{83AA2913-C123-4146-85BD-AD8F93971D39}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{FB697452-8CA4-46B4-98B1-165C922A2EF3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdUtility
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\YourFileDownloader
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B2468513CA2D6943A1A233CD3F88CE7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\254796BF4AC84B64891B61C529A2E23F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\758F5690DAAD39F40845E0E23C8C5C0B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B8713814E4D47A84297554B49AA067E0
Key Deleted : HKLM\Software\Classes\Installer\Features\254796BF4AC84B64891B61C529A2E23F
Key Deleted : HKLM\Software\Classes\Installer\Features\3192AA38321C641458DBDAF83979D193
Key Deleted : HKLM\Software\Classes\Installer\Features\758F5690DAAD39F40845E0E23C8C5C0B
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Features\B8713814E4D47A84297554B49AA067E0
Key Deleted : HKLM\Software\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F
Key Deleted : HKLM\Software\Classes\Installer\Products\3192AA38321C641458DBDAF83979D193
Key Deleted : HKLM\Software\Classes\Installer\Products\758F5690DAAD39F40845E0E23C8C5C0B
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\B8713814E4D47A84297554B49AA067E0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16545

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v34.0.1847.131

[ File : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&babsrc=NT_ss&s=web&rlz=0&as=2&ac=0%2C141
Deleted [Search Provider] : hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10007&barid={34458140-0D8D-11E2-9648-001D60924A51}
Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}&amp;o=15527&amp;l=dis&amp;prt=360&amp;chn=retail&amp;geo=GB&amp;ver=6&gct=sb&qsrc=2869
Deleted [Homepage] : hxxp://home.sweetim.com/?crg=3.1010000.10007&barid={34458140-0D8D-11E2-9648-001D60924A51}
Deleted [Extension] : jcdgjdiieiljkfkdcloehkohchhpekkn

*************************

AdwCleaner[R0].txt - [33582 octets] - [27/04/2014 17:02:32]
AdwCleaner[S0].txt - [34151 octets] - [27/04/2014 17:04:39]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [34212 octets] ##########


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows Vista ™ Home Premium x86
Ran by Karl on 27/04/2014 at 18:00:21.42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

Failed to stop: [Service] backupstack

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1601510619-448517056-714433218-1001\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{324930F7-2221-4879-8572-F37090A5260B}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{9EF2EF29-6EB1-46FA-ACDB-412F6D761F45}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D5CD43AE-EA47-4CF2-BC0E-37CC49053F42}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{09BF01E0-CFE9-4104-B0BB-B5724D999A05}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{BB7854E1-56FE-4B1A-B856-75E279F5974C}
Successfully deleted: [Registry Key] "hkey_current_user\software\microsoft\internet explorer\low rights\elevationpolicy\{a5aa24ea-11b8-4113-95ae-9ed71deaf12a}"

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\ProgramData\sweetim"
Successfully deleted: [Folder] "C:\ProgramData\viewpoint"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniblue"
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{00A42C56-B48E-49CA-B6EB-1E5884C9CA34}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{0A5EA354-3F7B-4187-B7DC-6FF5889779C6}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{0FEE3448-F70B-4228-B44C-E55DDDA3A58D}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{14103B75-3B6A-44A4-98A9-EB7CAD094506}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{16F44D9C-E898-4483-AB80-0C9CAB710C9F}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{280412B8-1399-407D-A359-D1E49F829F55}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{3BF07FA7-24CE-466A-AE97-672A4CE3D21E}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{3C26F9F3-4266-4423-BC68-016558F95C84}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{3D003CDC-414E-4D87-9C4B-EDB35E1EF8F2}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{3E84CC6F-8826-4AB4-B7EA-082A2D6B8C4E}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{3F2136A9-AC28-487B-BC77-5307CCB644B4}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{4462C712-7C53-41BC-AA4E-E03EB526C2D2}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{4614E18D-2CE6-4E44-AD49-7A51FEB3DC35}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{521E70A0-A9B2-4608-AC36-966287A2A43C}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{52BFB62E-F34B-4658-B7D1-262451806B3B}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{5A465A96-1B56-4BEF-9184-344F8904D25C}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{74DCC796-96F6-41C9-9F50-85AC4C718657}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{75D2E193-71B0-4B9C-B4AE-BBE77FA96AE8}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{763F1BE7-7324-4511-94C9-ED0004A1A634}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{8042DFE3-CDF4-4458-90B0-86B28D05BE32}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{869886AC-602F-4C5E-BC01-7F56A51C214E}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{87E1A04D-2EF4-4E46-8628-E2AF8B76ACF2}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{8A5AA56A-E36C-471D-AC70-4EECCEB9F557}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{8D4AAB7E-22C5-4EA7-AA91-02392A95906F}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{8EE684FA-6888-44C9-9D9F-83347CE867FF}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{8FBEBF67-7C84-4976-A259-FD8DB7DFC6BE}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{96525D36-E965-4709-856E-F5C7CB7A012A}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{984BE692-139D-4A66-BA80-C10E9BC96AC7}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{9B3319A5-9560-439C-A3E6-7DF2D713B1D1}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{9EF395A3-AC0D-4BA0-88BA-1993C51E1A45}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{A5A753A3-860E-4483-9CF1-37A27E27A543}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{AA66799B-CB8D-49CA-B9B5-A5F8F6953E16}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{B13EB6CF-4582-43D5-A2E7-36BBC6F661AC}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{B326C681-5323-4FFD-AA9E-006E1A36211D}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{B4CDC773-CAC0-4413-B3A9-CE8B6C9C7E9B}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{B706A6BD-D785-4560-A2D5-1878F4E527BF}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{C3EFA29D-1410-40AA-9209-3871881FF10D}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{C8351ACE-8B40-4F22-B37B-D9120E1FEB51}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{D2FC64B8-7496-4890-93FF-8EEBA920B2D3}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{D3119EB8-22AC-40AC-8A11-53AB6549AE38}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{D32F7A04-835B-4D45-ACF3-75A2210CEBF4}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{D4AB3A5A-3084-45BF-A906-E1F5D3D1306F}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{E09AB5A1-37DC-40C1-A30C-ADAB1142347A}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{E5028A90-2C33-4653-A101-F5AE6799598D}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{E8383954-4949-4F36-BEC0-9726F23F6661}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{E84505FA-B923-41DF-A650-6502A4D5CFC8}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{F578ED6E-9898-4902-AF16-457CEB732AD2}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{F8CA93B8-948B-411F-9453-1040F5F248DC}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{FE687822-DBDE-4380-B2FE-50FBAA253D5D}
Successfully deleted: [Empty Folder] C:\Users\Karl\appdata\local\{FFA75FCD-A2A9-4518-B193-2685A82922D1}

 

~~~ Chrome

Successfully deleted: [Folder] C:\Users\Karl\appdata\local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/04/2014 at 18:07:05.40
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#13 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 28 April 2014 - 01:14 PM

C:\Users\Karl\Documents\Web Sites\back up sms\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\back up sms\attachments\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\back up sms\avatars\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\back up sms\Packages\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\back up sms\Smileys\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\back up sms\Sources\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\back up sms\Themes\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\back up sms\tp-images\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\smf 2\SMF\attachments\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\smf 2\SMF\avatars\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\smf 2\SMF\Packages\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\smf 2\SMF\Smileys\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\smf 2\SMF\Sources\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\smf 2\SMF\Themes\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
C:\Users\Karl\Documents\Web Sites\smf 2\SMF\tp-images\index.php JS/Kryptik.BQ trojan cleaned by deleting - quarantined
 



#14 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:10 AM

Posted 29 April 2014 - 06:55 PM

How is computer doing?

 

p22002970.gif Update Adobe Flash Player: http://get.adobe.com/flashplayer/
Make sure you UN-check Yes, install McAfee Security Scan Plus

NOTE 1: Beginning with Adobe Flash Version 11.3, the universal installer includes the 32-bit and 64-bit versions of the Flash Player.
NOTE 2: While installing make sure you UN-check any extra garbage which wants to install alongside.

 

p22002970.gif Update Adobe Reader

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions (if present).
Note. If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

 

p22002970.gif 1. Update your Java version here: http://www.java.com/en/download/manual.jsp
Alternate download: http://www.filehippo.com/search?q=java

Note 1: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Note 2: If you're running 64-bit system make sure you install BOTH, 32-bit and 64-bit Java.

Note 3: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. If you don't want to run another extra service, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and restart your computer.

2. Now, we need to remove old Java version and its remnants...

Download JavaRa to your desktop and unzip it.

  • Run JavaRa.exe (Vista and 7 users! Right click on JavaRa.exe, click Run As Administrator), pick the language of your choice and click Select. Then click Remove Older Versions.
  • Accept any prompts.
  • Do NOT post JavaRa log.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#15 womble7

womble7
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:10 PM

Posted 30 April 2014 - 02:26 PM

still the same, i have installed the Flash player and reader and java. But when I try and unzip JsavaRa it doesnt open any idea why?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users