Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Very slow computer


  • Please log in to reply
11 replies to this topic

#1 tomjoram

tomjoram

  • Members
  • 227 posts
  • OFFLINE
  •  
  • Local time:05:21 PM

Posted 23 September 2014 - 08:31 AM

Hi good day guys

 

Recently I'm having alot of problems in my computer, like long booting up time and slow computer response, cannot close or exit programs using task manager that i have to restart the pc to close the program.

 

I also observed that my internet connection has gone really slow as I observed my download speeds and ping, I'm sure that this is not my ISP problem.

 

And another thing i get problems in printing my documents, sometimes it does not print properly or aligned some  parts are missing even though i checked the alignment.

 

Really need your help! Thanks In Advance.


Edited by hamluis, 23 September 2014 - 01:34 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 56,567 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:03:21 AM

Posted 23 September 2014 - 12:31 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,811 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:01:21 AM

Posted 23 September 2014 - 12:42 PM

Please download AdwCleaner and install it.
 
When AdwCleaner opens you will see an image like the one below.
 
adwcleaner11_zps48314883.png
 
Click on Scan to start the scan.
 
Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.  
 
Click on Clean to remove the selected items.  If you have any questions about any items in the list please copy and paste the list in your topic so we can review it.  
 
You will receive a message telling you that all programs will be closed so that the infections can be removed.  Click on OK.
 
When the cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your topic.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#4 Laith225

Laith225

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Stockholm, Sweden
  • Local time:11:21 AM

Posted 23 September 2014 - 02:20 PM

Download AdwCleaner or Malwarebytes Anti-Malware.

Post the log after done scanning.

 

Cheers,

Laith225



#5 tomjoram

tomjoram
  • Topic Starter

  • Members
  • 227 posts
  • OFFLINE
  •  
  • Local time:05:21 PM

Posted 23 September 2014 - 06:39 PM

@hamluis

here is the mini toolbox log

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by USER (administrator) on 24-09-2014 at 07:32:17
Running from "C:\Users\USER\Downloads\Programs"
Microsoft Windows 7 Ultimate   (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/23/2014 08:52:43 PM) (Source: System Restore) (User: )
Description: The restore point selected was damaged or deleted during the restore (Windows Update).
 
Error: (09/21/2014 09:22:56 AM) (Source: Application Error) (User: )
Description: Faulting application name: x2.exe, version: 0.0.0.0, time stamp: 0x541a581a
Faulting module name: npggNT.des, version: 2014.1.9.1, time stamp: 0x52ce077a
Exception code: 0xc0000417
Fault offset: 0x00017c88
Faulting process id: 0x9b4
Faulting application start time: 0xx2.exe0
Faulting application path: x2.exe1
Faulting module path: x2.exe2
Report Id: x2.exe3
 
Error: (09/18/2014 11:54:07 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16457 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: cb8
 
Start Time: 01cfd358c242596e
 
Termination Time: 13
 
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
 
Report Id:
 
Error: (09/18/2014 08:24:50 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.
 
Error: (09/18/2014 08:24:50 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.
 
Error: (09/18/2014 08:24:13 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.
 
Error: (09/18/2014 05:58:33 AM) (Source: Application Error) (User: )
Description: Faulting application name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Faulting module name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Exception code: 0xc0000005
Fault offset: 0x00001cb9
Faulting process id: 0x17b0
Faulting application start time: 0xvlc.exe0
Faulting application path: vlc.exe1
Faulting module path: vlc.exe2
Report Id: vlc.exe3
 
Error: (09/18/2014 05:58:21 AM) (Source: Application Error) (User: )
Description: Faulting application name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Faulting module name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Exception code: 0xc0000005
Fault offset: 0x00001cb9
Faulting process id: 0x99c
Faulting application start time: 0xvlc.exe0
Faulting application path: vlc.exe1
Faulting module path: vlc.exe2
Report Id: vlc.exe3
 
Error: (09/18/2014 05:57:46 AM) (Source: Application Error) (User: )
Description: Faulting application name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Faulting module name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Exception code: 0xc0000005
Fault offset: 0x00001cb9
Faulting process id: 0xfdc
Faulting application start time: 0xvlc.exe0
Faulting application path: vlc.exe1
Faulting module path: vlc.exe2
Report Id: vlc.exe3
 
Error: (09/18/2014 05:57:36 AM) (Source: Application Error) (User: )
Description: Faulting application name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Faulting module name: vlc.exe, version: 2.0.7.0, time stamp: 0x51b24edb
Exception code: 0xc0000005
Fault offset: 0x00001cb9
Faulting process id: 0x143c
Faulting application start time: 0xvlc.exe0
Faulting application path: vlc.exe1
Faulting module path: vlc.exe2
Report Id: vlc.exe3
 
 
System errors:
=============
Error: (09/24/2014 07:20:49 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
vflt
 
Error: (09/24/2014 00:31:01 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
vflt
 
Error: (09/23/2014 09:05:44 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
vflt
 
Error: (09/23/2014 08:52:37 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
vflt
 
Error: (09/23/2014 08:32:55 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
vflt
 
Error: (09/23/2014 08:19:44 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.
 
Error: (09/23/2014 08:13:06 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
vflt
 
Error: (09/23/2014 08:12:33 PM) (Source: BugCheck) (User: )
Description: 0x0000007e (0xc0000005, 0xa791c620, 0xab99dbec, 0xab99d7d0)C:\Windows\MEMORY.DMP092314-15740-01
 
Error: (09/23/2014 08:12:28 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:11:03 PM on ‎9/‎23/‎2014 was unexpected.
 
Error: (09/23/2014 00:01:58 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
vflt
 
 
Microsoft Office Sessions:
=========================
 
 
=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.34024 - BitTorrent Inc.)
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.5.500.80 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Battle.net (HKLM\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
Combined Community Codec Pack 2014-01-17 (HKLM\...\Combined Community Codec Pack_is1) (Version: 2014.01.17.0 - CCCP Project)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.0.0820 - CyberLink Corp.)
CyberLink YouCam (Version: 4.0.0820 - CyberLink Corp.) Hidden
Garena+ (HKLM\...\im) (Version: 2011 - Garena Online Pte Ltd.)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Hearthstone (HKLM\...\Hearthstone) (Version:  - Blizzard Entertainment)
HP Deskjet Ink Adv 2060 K110 Basic Device Software (HKLM\...\{51BA435B-D119-4A1B-966C-673D382B260A}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Deskjet Ink Adv 2060 K110 Help (HKLM\...\{261A4762-744B-4C71-81D2-57FA5038DC7B}) (Version: 140.0.2.2 - Hewlett Packard)
Intel® Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.14.8.1064 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Internet Download Manager (HKLM\...\Internet Download Manager) (Version:  - Tonec Inc.)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
K-Lite Mega Codec Pack 8.7.0 (HKLM\...\KLiteCodecPack_is1) (Version: 8.7.0 - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Version: 4.5.51209 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6374 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Skype™ 4.2 (HKLM\...\{5C474A83-A45F-470C-9AC8-2BD1C251BF9A}) (Version: 4.2.169 - Skype Technologies S.A.)
Steam (HKLM\...\Steam) (Version:  - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab Detection (HKLM\...\{36138C1B-E717-43B9-943C-8CA07A8CC085}) (Version: 2.0.0.0 - Husdawg, LLC)
The Stanley Parable (HKLM\...\The Stanley Parable_is1) (Version: 1.0 - PLAZA)
USB Disk Security (HKLM\...\USB Disk Security_is1) (Version:  - Zbshareware Lab)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
WinRAR 4.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 57%
Total physical RAM: 2036.3 MB
Available physical RAM: 860.41 MB
Total Pagefile: 5036.3 MB
Available Pagefile: 3573.88 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.16 MB
 
========================= Partitions: =====================================
 
1 Drive c: (SYSTEM) (Fixed) (Total:99.51 GB) (Free:56 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:198.48 GB) (Free:11.72 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\USER-PC
 
Administrator            Guest                    USER                     
 
 
**** End of log ****
 
 
speccy public snapshot 


#6 tomjoram

tomjoram
  • Topic Starter

  • Members
  • 227 posts
  • OFFLINE
  •  
  • Local time:05:21 PM

Posted 23 September 2014 - 06:45 PM

i also have another problem during the startup a notepad always opens desktop.ini containing these

 

"[.ShellClassInfo]

LocalizedResourceName=@%SystemRoot%\system32\shell32.dll,-21787"


#7 tomjoram

tomjoram
  • Topic Starter

  • Members
  • 227 posts
  • OFFLINE
  •  
  • Local time:05:21 PM

Posted 23 September 2014 - 06:54 PM

@

dc3

here's the adwcleaner log

 

# AdwCleaner v3.310 - Report created 24/09/2014 at 07:48:01

# Updated 12/09/2014 by Xplode
# Operating System : Windows 7 Ultimate  (32 bits)
# Username : USER - USER-PC
# Running from : C:\Users\USER\Downloads\Programs\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Windows\system32\hotspot shield
Folder Deleted : C:\USERs\USER\AppData\Local\Conduit
Folder Deleted : C:\USERs\USER\AppData\LocalLow\Conduit
File Deleted : C:\Program Files\Uninstall.exe
 
***** [ Scheduled Tasks ] *****
 
Task Deleted : LaunchSignup
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\startnow_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\startnow_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_elsword_2_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_elsword_2_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_elsword_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_elsword_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_revealer-keylogger_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_revealer-keylogger_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0388404D-6072-4CEB-B521-8F090FEAEE57}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Escolade
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\PIP
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\Babylon
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\PIP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IM
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16457
 
 
-\\ Google Chrome v37.0.2062.120
 
[ File : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [3527 octets] - [24/09/2014 07:42:39]
AdwCleaner[S0].txt - [3682 octets] - [24/09/2014 07:48:01]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3742 octets] ##########


#8 Laith225

Laith225

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Stockholm, Sweden
  • Local time:11:21 AM

Posted 24 September 2014 - 12:22 AM

it seems that AdwCleaner deleted some things...

 

Edit: Do not prefer to delete desktop.ini these are system files.


Edited by Laith225, 24 September 2014 - 12:24 AM.


#9 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,811 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:01:21 AM

Posted 24 September 2014 - 08:41 AM

You need Service Pack 1.  You need to install this ASAP.
 
2GB of RAM is going to make this a slow computer.  But there's not a lot you can do with a 32-bit operating system.
 
You have no antivirus, it is showing as being disabled in the Speccy.  I see that you have Utorrent installed, so I have to assume you are downloading torrents.  This is the fastest way I know of to become infected.  You need an antivirus.  Avast is a good free antivirus.  This is another that needs to be done ASAP.
 
Since you have been running this computer without an antivirus I'm going to request that you run a couple of scans to determine if you have any infections.
 

 

Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.

 

_________________________________________________________________

 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
mbamreplace_zps3ead4824.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.
 
_________________________________________________________________


Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to have the time to allow this to run till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need to download the Eset Smartinstaller.***

  • Click on this link to open ESET OnlineScan in a new window.
  • The ESET Online Scanner page will open, click on Yes, I agree to the trems of use, then click on Start, the scan will now begine.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:21 AM

Posted 24 September 2014 - 06:30 PM

it seems that AdwCleaner deleted some things...
 
Edit: Do not prefer to delete desktop.ini these are system files.


Nothing is removing desktop ini , please do not confuse the topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 tomjoram

tomjoram
  • Topic Starter

  • Members
  • 227 posts
  • OFFLINE
  •  
  • Local time:05:21 PM

Posted 24 September 2014 - 08:27 PM

@

dc3

i have avast installed in this computer and i dont know why windows is not detecting it, ok will try to run the scans and get back at you later. 



#12 tomjoram

tomjoram
  • Topic Starter

  • Members
  • 227 posts
  • OFFLINE
  •  
  • Local time:05:21 PM

Posted 24 September 2014 - 09:29 PM

 
Quarantined Items:
===================
Vendor: PUP.Optional.Babylon.A, Date: 2014/08/26 07:11:34, Type: Registry Key, Location: HKU\S-1-5-21-257631214-795200186-1169471884-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Vendor: PUP.Optional.Conduit.A, Date: 2014/08/26 07:11:34, Type: Registry Key, Location: HKU\S-1-5-21-257631214-795200186-1169471884-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ejpbbhjlbipncjklfjjaedaieimbmdda
Vendor: PUP.Optional.Softonic.A, Date: 2014/08/26 07:11:34, Type: Registry Key, Location: HKU\S-1-5-21-257631214-795200186-1169471884-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader
Vendor: PUP.Optional.Conduit.A, Date: 2014/08/26 07:11:34, Type: File, Location: C:\Users\USER\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx
Vendor: PUP.Optional.DataMangr.A, Date: 2014/08/26 07:11:34, Type: Registry Key, Location: HKLM\SOFTWARE\DataMngr
Vendor: PUP.Optional.Conduit.A, Date: 2014/08/26 07:11:34, Type: Registry Key, Location: HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ejpbbhjlbipncjklfjjaedaieimbmdda
Vendor: PUP.Optional.UTorrentControl.A, Date: 2014/08/26 07:11:34, Type: Registry Value, Location: HKU\S-1-5-21-257631214-795200186-1169471884-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Vendor: PUP.Optional.UTorrentControl.A, Date: 2014/08/26 07:11:34, Type: Registry Value, Location: HKU\S-1-5-21-257631214-795200186-1169471884-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Vendor: PUP.Optional.UTorrentControl.A, Date: 2014/08/26 07:11:34, Type: Registry Value, Location: HKU\S-1-5-21-257631214-795200186-1169471884-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Vendor: PUP.Optional.UTorrentControl.A, Date: 2014/08/26 07:11:34, Type: Registry Value, Location: HKU\S-1-5-21-257631214-795200186-1169471884-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
===============================================================
END OF FILE
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users