Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

found 3 pups through malwarebytes


  • Please log in to reply
17 replies to this topic

#1 shellfish!

shellfish!

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 04 June 2014 - 09:02 PM

My computer has been running slow and most recently google chrome just crashed, and the computer shut down, with a blue screen saying windows is shutting down to protect the computer.  I ran malwarebytes and 3 unwanted items were found.  I am copying the results here.  I removed the unwanted threats.  Is there anything else that I need to do?  Thank you so much for your help.

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.06.04.12
 
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Shelly :: JUBILEE [administrator]
 
6/4/2014 6:34:43 PM
mbam-log-2014-06-04 (18-34-43).txt
 
Scan type: Full scan (C:\|D:\|E:\|F:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 409583
Time elapsed: 2 hour(s), 56 minute(s), 24 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 3
C:\Users\Shelly\AppData\Local\Temp\jkmAB04.tmp\UPDATER.EXE (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Shelly\Downloads\ArcadeFrontierGames (1).exe (PUP.Optional.ArcadeFrontier.A) -> Quarantined and deleted successfully.
C:\Users\Shelly\Downloads\ArcadeFrontierGames.exe (PUP.Optional.ArcadeFrontier.A) -> Quarantined and deleted successfully.
 
(end)
 

 

 



BC AdBot (Login to Remove)

 


m

#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:16 AM

Posted 05 June 2014 - 05:14 AM

What is ArcadeFrontier ?
This is a web browser extension and Browser Helper Object (BHO) (for Internet Explorer) that delivers contextual based advertising to the web browser. In addition it will modify the user's browser home and search pages as well as 'New Tab' pages to push advertising and search. The software is typically defined as a unwanted application by various malware vendors.

 

 

This method usually solves most of your type of problems, Remove the Add-ons then Reset your home page.

 

1. Go to Add/Remove Programs in Control Panel or Programs and Features if using Vista/Windows 7/8. From within Add/Remove Programs look for anything and select Remove.

2. Open your browser and disable (uncheck) all extensions. Make a list, then one by one, re-enable each extension to see if the pop-ups start appearing again with that particular extension. Once you identify the responsible extension...permanently remove it but let me know which one it was so I can update our list.
* How to Disable Extensions in Google Chrome - How to Uninstall Extensions in Google Chrome
* How To Disable Individual Plug-ins in Google Chrome <- try only if the above does not work
* How to Disable Extensions and Plugins in Firefox - How to Remove Extensions/Uninstall Plugins in Firefox
* How to Disable Extensions in Internet Explorer
* How to Disable Add-ons/Extensions in Internet Explorer, Firefox and Google Chrome
* How to Disable all add-ons in Firefox, Internet Explorer

3. If the above did not resolve the problem, then create a new browser user profile.
* How to Create a new browser user profile in Google Chrome
* How to Create a new browser user profile in Firefox
* How to Create a new browser user profile in Opera, Internet Explorer, Firefox, Chrome



#3 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 06 June 2014 - 10:59 PM

I don't get any pop up ads?  I don't see anything in the add/remove  programs or in the extensions that sound like they are affiliated with any of those "unwanted Programs"



#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:16 AM

Posted 06 June 2014 - 11:25 PM

Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

* Double-click on the Rkill desktop icon to run the tool.
* If using Vista or Windows 7 right-click on it and choose Run As Administrator.
* A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
* If not, delete the file, then download and use the one provided in Link 2.
* Do not reboot until instructed.
* If the tool does not run from any of the links provided, please let me know.

NOTE - If normal mode still doesn't work, run the tool from safe mode.
When the scan is done Notepad will open with rKill log.
Post it in your next reply.
NOTE. RKill.txt log will also be present on your desktop.

 

 

Next -
* Please download AdwCleaner by Xplode and save to your Desktop.
* Note : Close all programs as your computer will be rebooted.
* Double-click on AdwCleaner.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* Click on the Scan button (only once)
* AdwCleaner will begin...be patient as the scan may take some time to complete.
* After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
* If you are happy with what it will remove, then move on.
NOW -
* Click on the Clean button (only once)
* Press OK when asked to close all programs and follow the onscreen prompts.
* Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
* After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
* Copy and paste the contents of that logfile in your next reply.
* A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.



#5 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 06 June 2014 - 11:52 PM

Rkill 2.6.6 by Lawrence Abrams (Grinler)
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 06/07/2014 12:42:18 AM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\Windows\System32\WLTRYSVC.EXE (PID: 1696) [WD-HEUR]
 * C:\Windows\System32\bcmwltry.exe (PID: 1740) [WD-HEUR]
 * C:\Windows\System32\WLTRAY.EXE (PID: 3076) [WD-HEUR]
 
3 proccesses terminated!
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * No issues found.
 
Checking Windows Service Integrity: 
 
 * No issues found.
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
  ::1             localhost
 
Program finished at: 06/07/2014 12:47:03 AM
Execution time: 0 hours(s), 4 minute(s), and 45 seconds(s)


#6 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 07 June 2014 - 01:06 AM

# AdwCleaner v3.212 - Report created 07/06/2014 at 00:53:25
# Updated 05/06/2014 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : Shelly - JUBILEE
# Running from : C:\Users\Shelly\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
File Found : C:\Users\Shelly\AppData\Local\Temp\Uninstall.exe
File Found : C:\Windows\System32\Tasks\update-sys
File Found : C:\Windows\Tasks\update-sys.job
Folder Found : C:\Program Files\Skillbrains
Folder Found : C:\Users\Shelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcgnmdipgajofmpanhpdinhkgmeifmdo
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKCU\Software\Google\Chrome\Extensions\lcgnmdipgajofmpanhpdinhkgmeifmdo
Key Found : HKCU\Software\SkillBrains
Key Found : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\lcgnmdipgajofmpanhpdinhkgmeifmdo
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{66B73741-5D1E-4D0F-99F0-AFE950786C8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66B73741-5D1E-4D0F-99F0-AFE950786C8A}
Key Found : HKLM\Software\SkillBrains
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16545
 
 
-\\ Mozilla Firefox v22.0 (en-US)
 
[ File : C:\Users\Shelly\AppData\Roaming\Mozilla\Firefox\Profiles\qbkbuxxu.default\prefs.js ]
 
 
-\\ Google Chrome v
 
[ File : C:\Users\Shelly\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Found [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Found [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&Suggest=&stype=Homepage&useHistory=0&CUI=UN33060184032636928&UM=2&SelfSearch=1&SearchType=SearchWeb&SearchSource=48&ctid=CT3300196&octid=CT3300196
Found [Startup_urls] : hxxp://search.conduit.com/?ctid=CT3300196&SearchSource=48&CUI=UN33060184032636928&UM=2
Found [Extension] : bopakagnckmlgajfccecajhnimjiiedh
Found [Extension] : lcgnmdipgajofmpanhpdinhkgmeifmdo
 
*************************
 
AdwCleaner[R0].txt - [2427 octets] - [07/06/2014 00:53:25]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2487 octets] ##########


#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:16 AM

Posted 07 June 2014 - 04:20 AM

Still no related problems there ........

 

 

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If any security program requests permission to access the Internet, allow it to do so.

 

 

Next -

Download MiniToolBox, Save it to your desktop to run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• Report FF Proxy Settings
• Reset FF Proxy Settings
• List last 10 Event Viewer log
• List Installed Programs
Click Go and copy / paste the result (Result.txt).

 

Next -

Please post a snapshot with Speccy for more system details -
How to Publish a snapshot with Speccy <<-- Full Directions Here (only post the link)

 

EDIT -

- Now re-scan with Malwarebytes abd also post that new log

 

Tell us any problems you are still having


Edited by noknojon, 07 June 2014 - 04:23 AM.


#8 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 07 June 2014 - 09:21 PM

p Results of screen317's Security Check version 0.99.83  
 Windows Vista Service Pack 2 x86 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 SUPERAntiSpyware     
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 25  
 Java version out of Date! 
 Adobe Flash Player 13.0.0.214  
 Adobe Reader 10.1.10 Adobe Reader out of Date!  
 Mozilla Firefox 22.0 Firefox out of Date!  
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0 % 
````````````````````End of Log`````````````````````` 


#9 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 07 June 2014 - 09:24 PM

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Shelly (administrator) on 07-06-2014 at 22:23:41
Running from "C:\Users\Shelly\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/07/2014 06:12:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 62525
 
Error: (06/07/2014 06:12:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 62525
 
Error: (06/07/2014 06:12:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (06/07/2014 06:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 59764
 
Error: (06/07/2014 06:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 59764
 
Error: (06/07/2014 06:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (06/07/2014 06:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 58734
 
Error: (06/07/2014 06:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 58734
 
Error: (06/07/2014 06:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (06/07/2014 06:12:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 57674
 
 
System errors:
=============
Error: (06/07/2014 09:36:08 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer SUTE-DESKTOP
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{642ECE79-9B00-41CD-98D2-22518.
The master browser is stopping or an election is being forced.
 
Error: (06/07/2014 02:12:17 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
 
Error: (06/07/2014 02:12:17 AM) (Source: Service Control Manager) (User: )
Description: Intel® PRO/1000 NDIS 6 Adapter Driver%%1058
 
Error: (06/07/2014 02:12:17 AM) (Source: Service Control Manager) (User: )
Description: Broadcom 802.11 USB Network Adapter Driver%%1058
 
Error: (06/07/2014 02:10:28 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: 0
 
Error: (06/07/2014 00:42:27 AM) (Source: Service Control Manager) (User: )
Description: Dell Wireless WLAN Tray Service1
 
Error: (06/05/2014 09:32:37 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer SUTE-DESKTOP
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{642ECE79-9B00-41CD-98D2-22518.
The master browser is stopping or an election is being forced.
 
Error: (06/05/2014 06:42:06 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer SUTE-DESKTOP
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{642ECE79-9B00-41CD-98D2-22518.
The master browser is stopping or an election is being forced.
 
Error: (06/04/2014 10:36:29 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
 
Error: (06/04/2014 10:36:29 PM) (Source: Service Control Manager) (User: )
Description: Intel® PRO/1000 NDIS 6 Adapter Driver%%1058
 
 
Microsoft Office Sessions:
=========================
Error: (06/07/2014 06:12:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 62525
 
Error: (06/07/2014 06:12:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 62525
 
Error: (06/07/2014 06:12:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (06/07/2014 06:12:39 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 59764
 
Error: (06/07/2014 06:12:39 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 59764
 
Error: (06/07/2014 06:12:39 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (06/07/2014 06:12:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 58734
 
Error: (06/07/2014 06:12:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 58734
 
Error: (06/07/2014 06:12:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (06/07/2014 06:12:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 57674
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-06-04 21:30:10.183
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:30:09.846
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:30:09.507
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:30:08.981
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:30:08.358
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:30:07.638
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:29:59.420
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6001.18000_none_34daa5e8f21ef8d2\fveapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:29:59.071
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6001.18000_none_34daa5e8f21ef8d2\fveapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:29:58.775
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6001.18000_none_34daa5e8f21ef8d2\fveapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-04 21:29:58.485
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6001.18000_none_34daa5e8f21ef8d2\fveapi.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe AIR (Version: 3.4.0.2540)
Adobe Download Assistant (Version: 1.2.2)
Adobe Flash Player 13 ActiveX (Version: 13.0.0.214)
Adobe Flash Player 13 Plugin (Version: 13.0.0.214)
Adobe Photoshop Elements 8.0 (Version: 8.0)
Adobe Reader X (10.1.10) (Version: 10.1.10)
Adobe Shockwave Player 12.0 (Version: 12.0.9.149)
aioprnt (Version: 5.3.1.0)
aioscnnr (Version: 6.2.3.10)
Any Video Converter 5.0.6
AoA DVD Ripper
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
C4USelfUpdater (Version: 1.00.0000)
Canon Easy-WebPrint EX (Version: 1.4.0.0)
Canon IJ Network Scanner Selector EX
Canon IJ Network Tool (Version: 3.1.0)
Canon IJ Scan Utility
Canon MG3200 series MP Drivers (Version: 1.01)
Canon MP495 series MP Drivers
Canon My Printer (Version: 3.0.0)
Canon Quick Menu (Version: 2.0.0)
Cisco EAP-FAST Module (Version: 2.1.6)
Cisco LEAP Module (Version: 1.0.12)
Cisco PEAP Module (Version: 1.0.13)
Dell Touchpad (Version: 7.1007.115.102)
Dell Wireless WLAN Card Utility (Version: 5.10.38.30)
essentials (Version: 6.0.14.0)
Free AVI MPEG WMV MP4 FLV Video Joiner 5.1.2
Free Video Cutter 1.1
GIMP 2.8.6 (Version: 2.8.6)
GoldWave v5.66
Google Chrome Canary (Version: 37.0.2036.0)
IDT Audio (Version: 1.0.6272.0)
Inkscape 0.48.4 (Version: 0.48.4)
Integrated Webcam Driver (1.00.02.0825)  
iTunes (Version: 11.1.2.31)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Marvell Miniport Driver (Version: 10.63.3.3)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (Version: 1.03.000)
ocr (Version: 6.2.3.50)
OpenOffice.org 3.3 (Version: 3.3.9567)
PreReq (Version: 6.2.4.0)
QuickTime (Version: 7.74.80.86)
Skype™ 6.16 (Version: 6.16.105)
Spotify (Version: 0.9.10.14.g578d350b)
SUPERAntiSpyware (Version: 5.0.1142)
swMSM (Version: 12.0.0.1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
VVCap 1.6 (Version: 1.6.131)
Wacom (Version: 5.3.3-2)
WebTablet FB Plugin 32 bit (Version: 2.1.0.3)
Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) (Version: 02/17/2009 2.04.16)
 
**** End of log ****


#10 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 07 June 2014 - 09:31 PM

http://speccy.piriform.com/results/5ilaf0Ayx53j7UxZrtWlTDO



#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:16 AM

Posted 07 June 2014 - 10:36 PM

According to these logs, you have No Antivirus installed, and Malwarebytes Anti-Malware version 1.75.0.1300 is outdated

Please install any 'Free Antivirus' ASAP and Update Malwarebytes Anti-Malware version 1.75.0.up to version 2.02

 

There is now a new version of Malwarebytes Anti-Malware (V2.0.2) This passes V1.75.0.1300

If you wish to Re-scan you will need to remove the old version first.

Please see

* Download Malwarebytes Anti-Malware Free and save it to your desktop
* Double click the desktop icon, click Run, then OK
* Click Next
* Select I accept the agreement then continue to click Next then finally click Install
** Uncheck Enable free trial of Malwarebytes Anti-Malware Premium if you do not want the free trial of the paid version, then click Finish
* If you are notified the Database is out of date click Update Now
* Click Scan Now >>

----------

** Note: If Malwarebytes will not launch please do the following to launch Malwarebytes Chameleon:
* Click Start (Start, Search, All files and folders for Windows XP) then type mbam
* Double click one of the four following files (if one does not work try the next one, and so on) -

A black command window will open. Follow those instructions until the Malwarebytes program starts the scan

mbam-chameleon.scr
mbam-chameleon
mbam-chameleon.exe
mbam-chameleon.com
----------

** When completed click the down arrow on Export Log and select Text file (*.txt)
* Save the file to your desktop as MBAM
* Click Apply Actions then restart your computer if requested
* Copy and past the contents of MBAM.txt in your reply



#12 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 08 June 2014 - 03:29 PM

what free antivirus do you recommend?  I am afraid to just randomly google it, for what i choose might be a virus in itself.



#13 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:16 AM

Posted 08 June 2014 - 05:42 PM

Microsoft Security Essentials Free Virus Protection with Microsoft Security Essentials is better than nothing


Read and follow the advice given in this topic Remove my old version of iTunes
20 of the 30 errors are iTunes problems, so this may help.

Typical = Error: (06/07/2014 06:12:42 PM) (Source: Bonjour Service)(User: ) << iTunes program
Description: Task Scheduling Error: m->NextScheduledSPRetry 62525
 
Open AdwCleaner and hit Clean - Click OK and OK to agree to reboot your computer and remove any items.
Re-open AdwCleaner after it reboots and hit Uninstall to empty quarantine and remove the program.


#14 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 08 June 2014 - 09:20 PM

Malwarebytes Anti-Malware

www.malwarebytes.org
 
Scan Date: 6/8/2014
Scan Time: 9:40:37 PM
Logfile: mbam.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.06.09.01
Rootkit Database: v2014.06.02.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: Shelly
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 244862
Time Elapsed: 21 min, 46 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 1
PUP.Optional.FCTPlugin, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kincjchfokkeneeofpeefomkikfkiedl, , [065f4a2cdaa104325dc2690c0bf8817f], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 6/8/2014
Scan Time: 9:40:37 PM
Logfile: mbam.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.06.09.01
Rootkit Database: v2014.06.02.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: Shelly
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 244862
Time Elapsed: 21 min, 46 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 1
PUP.Optional.FCTPlugin, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kincjchfokkeneeofpeefomkikfkiedl, , [065f4a2cdaa104325dc2690c0bf8817f], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#15 shellfish!

shellfish!
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 08 June 2014 - 10:02 PM

# AdwCleaner v3.212 - Report created 08/06/2014 at 22:54:43

# Updated 05/06/2014 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : Shelly - JUBILEE
# Running from : C:\Users\Shelly\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16545
 
 
-\\ Mozilla Firefox v22.0 (en-US)
 
[ File : C:\Users\Shelly\AppData\Roaming\Mozilla\Firefox\Profiles\qbkbuxxu.default\prefs.js ]
 
 
-\\ Google Chrome v
 
[ File : C:\Users\Shelly\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [2567 octets] - [07/06/2014 00:53:25]
AdwCleaner[R1].txt - [1016 octets] - [08/06/2014 22:22:37]
AdwCleaner[S0].txt - [2676 octets] - [07/06/2014 02:07:20]
AdwCleaner[S1].txt - [939 octets] - [08/06/2014 22:54:43]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [998 octets] ##########





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users