Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

need help please i think im infected with multible viruses


  • Please log in to reply
40 replies to this topic

#1 animefan01

animefan01

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:07:52 AM

Posted 02 December 2014 - 04:08 PM

i saw the thread from before and googled some of the stuff trying to acess my computer along with multiple sites stoped by my anti virus avast i think a few may have seeped through the cracks but since i have a app called no script that blocks internet sites basically unless i tell it not to i was able to limit the damage they do i think but not 100% sure the list of viruses possibly on my comp are

 

kaytri.com

 

static.datafastguru.info

 

and a few others that i forget they along with datafastguru arent showing up on the list of attacks sites i blocked anymore so not sure if there gone or what but i was hoping you could help me make sure there all gone and that there are no viruses/keyloggers etc.... on my computer if you can id really appreciate it



BC AdBot (Login to Remove)

 


#2 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 02 December 2014 - 04:11 PM

Hello there     :welcome:

 

I'm LighthouseParty and I'll be assisting you with your concern today. Let's run a couple of scans to see what could be causing this.
 

:step1: Download MiniToolBox

  1. Click here to download MiniToolBox to your desktop.
  2. Double click MiniToolBox.
  3. Select the following and then press go.
  4. Post the log in your next reply.

Flush DNS

Reset IE Proxy Settings

Reset FF Proxy Settings

List Installed Programs

List Restore Points

 

:step2: Install and run a scan with Malwarebytes Anti-Malware
  1. Click here to download Malwarebytes to your desktop.
  2. Double click mbam-setup-x.x.x.xxxx and follow the on-screen instructions.
  3. On the dashboard, click update now.
  4. After that, click scan now - the scan will now begin.
  5. When the scan's completed, select apply actions - make sure the action is quarantine.
  6. Restart your computer.

How to get the log.

  1. On the dashboard, select the history tab and click application logs.
  2. Select the log which has the time and date of when you did the scan.
  3. Click copy to clipboard and paste it into your reply.

:step3: Download Security Check

  1. Click here to download Security Check to your desktop.
  2. Double click SecurityCheck and follow the on-screen instructions.
  3. A log should open, called checkup.txt.
  4. Please post the contents of it in your next reply.

Thanks and good luck!



#3 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  

Posted 02 December 2014 - 05:22 PM

hi and thanks for the help heres the first part

 

MiniToolBox by Farbar  Version: 30-11-2014
Ran by (administrator) on 02-12-2014 at 17:21:03
Running from "C:\Users\jacob\Downloads"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================



=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
Additional Offer (HKLM-x32\...\{4FFDD113-2C3C-453E-845C-D5DD6DB90CEF}_is1) (Version:  - )
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.239 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (HKLM-x32\...\Adobe Photoshop Elements 11) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Premiere Elements 11 (HKLM\...\PremElem110) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 11 (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.09)  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Advanced SystemCare Ultimate 7 (HKLM-x32\...\Advanced SystemCare Ultimate_is1) (Version: 7.1.0 - IObit)
Anime Studio 5.5 (HKLM-x32\...\Anime Studio_is1) (Version:  - e frontier)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Beware Planet Earth! (x32 Version: 3.0.2.48 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BuyNsave (HKLM-x32\...\{842C4394-47F7-60DE-480B-C09116B63559}) (Version:  - BuyNsave)
Chicken Invaders 4: Ultimate Omelette (x32 Version: 2.2.0.97 - WildTangent) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.2.0 - Conexant)
Defense Grid: Gold (x32 Version: 2.2.0.95 - WildTangent) Hidden
Delicious: Emily's Honeymoon Cruise Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Driver Booster 2 (HKLM-x32\...\Driver Booster_is1) (Version: 2.0 - IObit)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
DTS Studio Sound (HKLM-x32\...\{2DFA9084-CEB3-4A48-B9F7-9038FEF1B8F4}) (Version: 1.01.2700 - DTS, Inc.)
eDoc PDF Converter (HKLM-x32\...\{E0ED669D-30CD-411E-B79F-5D2A64291D9E}) (Version: 4.5.1 - eDoc LLC)
Elements 11 Organizer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ESO Survey Live version 1.4.5 (HKLM-x32\...\17CBAF83-B4D1-41CC-B7DC-BFF1D4B9DDAC-live_is1) (Version: 1.4.5 - Immersyve, Inc.)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Goblin Defenders: Steel 'n' Wood (x32 Version: 3.0.2.51 - WildTangent) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Guns And Robots (HKLM-x32\...\Guns And Robots) (Version: 1.0 - Mastheadstudios Ltd.)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.212 - SurfRight B.V.)
honestech VHS to DVD 4.0 Deluxe (HKLM-x32\...\{BA84775E-C53D-41F4-A0C9-B9000D1BF95B}) (Version: 4.0 - honestech)
honestech VHS to DVD 4.0 Deluxe (x32 Version: 4.0 - Honest Technology) Hidden
iCloud (HKLM\...\{2AAF09D5-4B3F-4975-B6A9-ECE2631FC942}) (Version: 4.0.5.20 - Apple Inc.)
iLivid (HKCU\...\iLivid) (Version: 5.0.0.4286 - Bandoo Media Inc)
iLivid (HKLM-x32\...\iLivid) (Version: 5.0.0.3958 - Bandoo Media Inc)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.2.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Internet Download Manager² 1.0 (HKLM-x32\...\IDMSQ) (Version: 1.0 - OR Interactive Ltd)
IObit Malware Fighter (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 2.3 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.3.8.2663 - IObit)
iSkysoft Video Converter(Build 5.0.0.0) (HKLM-x32\...\iSkysoft Video Converter_is1) (Version: 5.0.0.0 - iSkysoft Software)
iSkysoft Video Editor(Build 3.6.1) (HKLM-x32\...\iSkysoft Video Editor_is1) (Version:  - iSkysoft Software)
Island Tribe 5 (x32 Version: 3.0.2.59 - WildTangent) Hidden
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Kingdom's Heyday (x32 Version: 3.0.2.59 - WildTangent) Hidden
Magic 2014  (HKLM-x32\...\Steam App 213850) (Version:  - Stainless Games)
Magic The Gathering Online  (HKCU\...\35c9d60442fbb010) (Version: 3.4.82.415 - Wizards of the Coast)
MaxiGet Download Manager (HKLM-x32\...\MaxiGet Download Manager_is1) (Version: 1.2.8 - Maxiget Ltd.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.)
Medieval Defenders (x32 Version: 3.0.2.51 - WildTangent) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{2749c485-3a8b-4533-92ff-7cf6e8221cff}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Preview Redistributable (x64) - 12.0.20617 (HKLM-x32\...\{448652c1-f5f3-4230-98c6-68c10c88b1fb}) (Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x86) - 12.0.20617 (HKLM-x32\...\{1f407217-9aec-4146-8504-e64ac959c534}) (Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.20617 (Version: 12.0.20617 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.20617 (Version: 12.0.20617 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.20617 (x32 Version: 12.0.20617 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.20617 (x32 Version: 12.0.20617 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobogenie (HKLM-x32\...\Mobogenie) (Version:  - Mobogenie.com)
Movies Toolbar for Firefox (Dist. by Bandoo Media, Inc.) (HKLM-x32\...\ilividmoviestoolbarhaFF) (Version: 1.6.2.0 - APN LLC)
Mozilla Firefox 33.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 en-US)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MPC-HC 1.7.5 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.5 - MPC-HC Team)
Mumble 1.2.8 (HKLM-x32\...\{A9DBD31A-A09F-4C7E-86D1-3B21C59000D1}) (Version: 1.2.8 - Thorvald Natvig)
MyWordTool (HKCU\...\MyWordTool) (Version: 1 - http://www.mywordtool.com)
Norton Anti-Theft (HKLM-x32\...\NAT) (Version: 1.10.0.9 - Symantec Corporation)
NVIDIA Control Panel 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 16.13.65 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.162.1274 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 2.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 16.13.65 (Version: 16.13.65 - NVIDIA Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA ShadowPlay 16.13.65 (Version: 16.13.65 - NVIDIA Corporation) Hidden
NVIDIA Update 16.13.65 (Version: 16.13.65 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 16.13.65 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.26 (Version: 1.2.26 - NVIDIA Corporation) Hidden
OpenVPN 2.3.2-I003  (HKLM-x32\...\OpenVPN) (Version: 2.3.2-I003 - )
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version:  - PC Utilities Software Limited)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.81.34.0 - Overwolf Ltd.)
PixelJunk™ Monsters Ultimate (x32 Version: 3.0.2.51 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PRE11 STI 64Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Protected Folder (HKLM-x32\...\Protected Folder_is1) (Version:  - IObit)
PSE11 STI Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.300 - Qualcomm Atheros)
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
RealDownloader (x32 Version: 17.0.13 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.13 - RealNetworks)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.29068 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.0.1 - Reimage)
RelevantKnowledge (HKLM-x32\...\{d08d9f98-1c78-4704-87e6-368b0023d831}) (Version: 1.3.337.341 - TMRG,  Inc.)
SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3 Pro_is1) (Version: 3.2 - IObit)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 1.5.0.0 - IObit)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.21 - Synaptics Incorporated)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
thriXXX-Launcher (HKLM-x32\...\thriXXX-Launcher) (Version:  - thriXXX Software GmbH)
TidyNetwork (HKCU\...\TidyNetwork) (Version:  - TidyNetwork)
Tiny Troopers (x32 Version: 3.0.2.48 - WildTangent) Hidden
TiVo Desktop 2.8.3 (HKLM-x32\...\{4E839090-3B68-436A-B3CF-A2A08C38DD26}) (Version: 2.8.412.370 - TiVo Inc.)
Toshiba App Place (HKLM-x32\...\{ED3CBA78-488F-4E8C-B33F-8E3BF4DDB4D2}) (Version: 1.0.6.3 - Toshiba)
TOSHIBA Application Installer (HKLM\...\{21A63CA3-75C0-4E56-B602-B7CD2EF6B621}) (Version: 9.0.2.4 - Toshiba Corporation)
TOSHIBA Audio Enhancement (HKLM\...\{1515F5E3-29EA-4CD1-A981-032D88880F09}) (Version: 2.0.17.0 - Toshiba Corporation)
Toshiba Book Place (HKLM-x32\...\{11244D6B-9842-440F-8579-6A4D771A0D9B}) (Version: 3.3.9661 - K-NFB Reading Technology, Inc.)
TOSHIBA Display Utility (HKLM\...\{F64E9295-E1B3-4EEA-86D3-AF44A0087B06}) (Version: 1.1.16.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.2.0.6404 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.1.0002.6401 - Toshiba Corporation)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.5.0003.64001 - Toshiba Corporation)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{26BB68BB-CF93-4A12-BC6D-A3B6F53AC8D9}) (Version: 5.0.1.0 - Toshiba Corporation)
TOSHIBA Password Utility (Version: 5.0.1.0 - Toshiba Corporation) Hidden
TOSHIBA Quality Application (HKLM-x32\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.0.9.3 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.1.02.55065006 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{FBFCEEA5-96EA-4C8E-9262-43CBBEBAE413}) (Version: 2.6.8 - Toshiba Corporation)
TOSHIBA Start (HKLM-x32\...\{A74C9CC1-2211-4A75-A688-6F7CFE2C2B12}) (Version: 1.00.02 - TOSHIBA America Information Systems, Inc)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0032 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.1.2.32001 - Toshiba Corporation)
TOSHIBA User's Guide (HKLM-x32\...\{3384E1D9-3F18-4A98-8655-180FEF0DFC02}) (Version: 1.00.02 - TOSHIBA)
TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.3.27.102 - Toshiba Corporation)
TOSHIBARegistration (HKLM-x32\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.1.6 - TOSHIBA)
Ultimate Media Player (HKLM-x32\...\Ultimate Media Player) (Version: 2011.6.0.0 - Ultimate Software, LLC)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
VIDBOX Driver (HKLM-x32\...\{2758691A-2CDE-4942-A4AC-0E8F61FE2067}) (Version: 4.0.1 - honestech)
Viking Saga (x32 Version: 3.0.2.48 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.3.0.0 - Azureus Software, Inc.)
VyprVPN (HKLM-x32\...\VyprVPN) (Version: 2.3.1.2250 - Golden Frog, Inc.)
VyprVPN (x32 Version: 2.3.1.2250 - Golden Frog, Inc.) Hidden
WebSearchy (HKLM-x32\...\Websearchy) (Version:  - Websearchy)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.11.2 - WildTangent) Hidden
WildTangent Games App (x32 Version: 4.0.11.2 - WildTangent) Hidden
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
YoutubeAdBlocke (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version:  - )
========================= Restore Points ==================================

30-11-2014 03:24:58 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
30-11-2014 03:26:01 Installed DirectX
01-12-2014 07:34:15 IObit Uninstaller restore point
02-12-2014 09:44:48 IObit Uninstaller restore point

**** End of log ****



#4 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:07:52 AM

Posted 02 December 2014 - 06:19 PM

heres second part

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 12/2/2014
Scan Time: 5:26:03 PM
Logfile: my antivirus logs i need to save.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.12.02.10
Rootkit Database: v2014.12.02.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: jacob

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 342353
Time Elapsed: 42 min, 11 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 59
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\CLSID\{09f5f844-76ee-464a-a2f9-70707ddccecd}, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{09F5F844-76EE-464A-A2F9-70707DDCCECD}, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\., Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\..9, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\., Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\..9, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{09F5F844-76EE-464A-A2F9-70707DDCCECD}, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{09F5F844-76EE-464A-A2F9-70707DDCCECD}, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{09F5F844-76EE-464A-A2F9-70707DDCCECD}, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{09F5F844-76EE-464A-A2F9-70707DDCCECD}, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\CLSID\{09F5F844-76EE-464A-A2F9-70707DDCCECD}\INPROCSERVER32, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\CLSID\{1ef9c6f9-fd65-44a7-96d8-7ef2ecef63e6}, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{1EF9C6F9-FD65-44A7-96D8-7EF2ECEF63E6}, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\BuyNsave.BuyNsave, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\BuyNsave.BuyNsave.9, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BuyNsave.BuyNsave, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BuyNsave.BuyNsave.9, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1EF9C6F9-FD65-44A7-96D8-7EF2ECEF63E6}, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{1EF9C6F9-FD65-44A7-96D8-7EF2ECEF63E6}, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{1EF9C6F9-FD65-44A7-96D8-7EF2ECEF63E6}, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{1EF9C6F9-FD65-44A7-96D8-7EF2ECEF63E6}, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\CLSID\{1EF9C6F9-FD65-44A7-96D8-7EF2ECEF63E6}\INPROCSERVER32, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, Quarantined, [5eb407573b41320436ad24da3ec4f30d],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, Quarantined, [5eb407573b41320436ad24da3ec4f30d],
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [759db1ad5d1fa49245294e7c3ac89769],
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [759db1ad5d1fa49245294e7c3ac89769],
PUP.Optional.MyWordTool.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{45470599-8237-486D-87B5-E89CD6AED154}, Quarantined, [e131a2bc2755eb4b800ba12abc4642be],
PUP.Optional.MyWordTool.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{45470599-8237-486D-87B5-E89CD6AED154}, Quarantined, [e131a2bc2755eb4b800ba12abc4642be],
PUP.Optional.MyWordTool.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{45470599-8237-486D-87B5-E89CD6AED154}, Quarantined, [e131a2bc2755eb4b800ba12abc4642be],
PUP.Optional.MyWordTool.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{45470599-8237-486D-87B5-E89CD6AED154}, Quarantined, [e131a2bc2755eb4b800ba12abc4642be],
PUP.Optional.MoviesToolBar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3d86a75b-cb6b-4764-885d-ca6336f04ba2}, Quarantined, [69a94717bbc18da9d2d9facc4cb6bc44],
PUP.Optional.Cantataweb.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{647c058f-8406-45f4-8251-b45f538701ef}, Quarantined, [779b70eee6967eb8f6a6b50dd42e8977],
PUP.Optional.Cantataweb.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{7F8FD81F-CA80-456F-B009-1E2C2E919995}, Quarantined, [ac6629352f4dbb7b2f4c14a135cc7a86],
PUP.Optional.Cantataweb.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{13FEAF0E-24C1-4AEA-875B-254994A4411E}, Quarantined, [ac6629352f4dbb7b2f4c14a135cc7a86],
PUP.Optional.Cantataweb.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{13FEAF0E-24C1-4AEA-875B-254994A4411E}, Quarantined, [ac6629352f4dbb7b2f4c14a135cc7a86],
PUP.Optional.Cantataweb.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7F8FD81F-CA80-456F-B009-1E2C2E919995}, Quarantined, [ac6629352f4dbb7b2f4c14a135cc7a86],
PUP.Optional.TidyNetwork.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\TidyNetwork, Quarantined, [57bbaeb08bf1251134c1a5fc60a1e020],
PUP.Optional.Ilivid, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\iLivid, Quarantined, [9979530b0d6fa78fbe63865f1ee305fb],
PUP.Optional.Ilivid, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\iLivid, Quarantined, [9979530b0d6fa78fbe63865f1ee305fb],
PUP.Optional.Cantataweb.A, HKLM\SOFTWARE\WOW6432NODE\Cantataweb, Quarantined, [dc360a5499e3ab8b9a74a8b00201a957],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\WOW6432NODE\Datamngr, Quarantined, [48cae8761666ac8af1d301657b8839c7],
PUP.Optional.MyWordTool.A, HKLM\SOFTWARE\WOW6432NODE\MyWordTool, Quarantined, [d43e540afe7efc3a2601f6b1679dff01],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4820778D-AB0D-6D18-C316-52A6A0E1D507}, Quarantined, [19f978e6017b76c08a79bd95dc278c74],
PUP.Optional.RelevantKnowledge, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{d08d9f98-1c78-4704-87e6-368b0023d831}, Quarantined, [e32f0559314b270f09b41bf6e02438c8],
PUP.Optional.Cantataweb.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Cantataweb, Quarantined, [977b302e7a022214be51a0b80ff44db3],
PUP.Optional.MoviesToolBar.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\ilividmoviestoolbarha, Quarantined, [4ac87ae4bbc144f20404e3a180830cf4],
PUP.Optional.MyWordTool.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MyWordTool, Quarantined, [0909d8862458a98dad7bb2f511f38f71],
PUP.Optional.TidyNetwork.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\TidyNetwork, Quarantined, [52c0baa435472115a498bbbce61df60a],
PUP.Optional.MultiIE.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\DynConIE, Quarantined, [42d0f16d88f46ec8a6128f2760a49070],
PUP.Optional.TidyNetwork.A, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\TidyNetwork, Quarantined, [7a98ec723d3f24122974afcc917215eb],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{7041156A-0D2B-4DCD-A8EE-D0608BFCB2D0}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9B41579A-1996-42F9-8F84-7B7786818CEF}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{7041156A-0D2B-4DCD-A8EE-D0608BFCB2D0}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9B41579A-1996-42F9-8F84-7B7786818CEF}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.BuyNSave.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{842C4394-47F7-60DE-480B-C09116B63559}, Quarantined, [0c0617479edeab8b4d80c77a699ae020],

Registry Values: 0
(No malicious items detected)

Registry Data: 2
PUP.Optional.Datamngr.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll ,C:\Windows\system32\nvinitx.dll, Good: (), Bad: (C:\PROGRA~3\Wincert\WIN64C~1.DLL),Replaced,[71a1bca229530d2928bf811b7193c838]
PUM.Hijack.HomePageControl, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\POLICIES\MICROSOFT\INTERNET EXPLORER\CONTROL PANEL|HomePage, 1, Good: (0), Bad: (1),Replaced,[a86a70ee5b213afcd8857ade55b060a0]

Folders: 50
PUP.Optional.Cantataweb.A, C:\Program Files (x86)\CANTATAWEB, Quarantined, [e82aff5f7408e1557c919abe3dc6fb05],
PUP.Optional.SoftwareUpdater.A, C:\Users\jacob\AppData\Local\SwvUpdater, Quarantined, [42d0035b6814f34335a719422bd8d729],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr, Quarantined, [70a27be3b9c3bb7bb6c00797f212f10f],
PUP.Optional.TidyNetwork.A, C:\Users\jacob\AppData\Local\TidyNetwork, Quarantined, [050d1e4076062c0a1ef8614638cc817f],
PUP.Optional.MyWordTool.A, C:\Users\jacob\AppData\Roaming\MyWordTool, Quarantined, [8c8666f898e4b87e54d28b1c38ccc23e],
PUP.Optional.MarketScore, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RELEVANTKNOWLEDGE, Quarantined, [ed251945c3b9c175394e749715eeb050],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\defaults, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\defaults\preferences, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\locale, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\resources, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\addon-sdk, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\data, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\addon, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\console, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\content, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\core, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\deprecated, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\events, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\traits, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\dom, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\event, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\io, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\l10n, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\lang, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\loader, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\net, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\page-mod, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\platform, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\preferences, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\private-browsing, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\PRIVATE-BROWSING\window, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\system, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\tabs, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\util, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\window, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\sdk\windows, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\ADDON-SDK\lib\toolkit, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\mywordtool, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\MYWORDTOOL\lib, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\MOZILLA FIREFOX\browser\EXTENSIONS\EMILY@WILFORD.BIZ\RESOURCES\MYWORDTOOL\tests, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.NextLive.A, C:\Users\jacob\AppData\Roaming\newnext.me, Quarantined, [9d757ae4720acf67ec2f6da7cd369967],
PUP.Optional.NextLive.A, C:\Users\jacob\AppData\Roaming\newnext.me\cache, Quarantined, [9d757ae4720acf67ec2f6da7cd369967],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit, Quarantined, [ea280d51126acd69ff78898fcb38d729],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit-soft, Quarantined, [26ec540a285468ceb4c396825ea54cb4],
PUP.Optional.Datamngr.A, C:\Users\jacob\AppData\LocalLow\DataMngr, Quarantined, [e82a540aceae191d06bad93f2cd7a759],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\YOUTUBEADBLOCKE, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.BuyNSave.A, C:\Program Files (x86)\BuyNsave, Quarantined, [0c0617479edeab8b4d80c77a699ae020],

Files: 139
PUP.Optional.MultiPlug, C:\Program Files (x86)\YoutubeAdBlocke\RPMP9KNBUEXTD0.X64.DLL, Quarantined, [4fc3560898e4a690335ccdf40bf6bc44],
PUP.Optional.MultiPlug, C:\Program Files (x86)\BuyNsave\XBUL08YTWAH7DN.X64.DLL, Quarantined, [759d28362d4fc472e9a6aa1727daef11],
PUP.Optional.MyWordTool.A, C:\Users\jacob\AppData\Roaming\MyWordTool\temp.dat, Quarantined, [e131a2bc2755eb4b800ba12abc4642be],
PUP.Optional.Cantataweb.A, C:\Program Files (x86)\Cantataweb\CantatawebBHO.dll, Quarantined, [ac6629352f4dbb7b2f4c14a135cc7a86],
PUP.Optional.TidyNetwork.A, C:\Program Files (x86)\TidyNetwork\petn.dll, Quarantined, [e032fb63ef8d77bfa4e4804342c27c84],
PUP.Optional.RelevantKnowledge, C:\Windows\System32\rlls64.dll, Quarantined, [c54d421c82fa1a1cacb3ee8431d4a957],
PUP.Optional.Unizeto, C:\Users\jacob\AppData\Local\Temp\Af736dc27.exe, Quarantined, [ef23a5b9116ba88e142c707cf50c7d83],
PUP.Optional.Unizeto, C:\Users\jacob\AppData\Local\Temp\8C72.exe, Quarantined, [1df5d08e0a72c27461dfcb21f80917e9],
PUP.Optional.Unizeto, C:\Users\jacob\AppData\Local\Temp\254cC.exe, Quarantined, [20f2afaff28a3ff7f14f43a97b862ed2],
PUP.Optional.ZombieNews.A, C:\Users\jacob\AppData\Local\Temp\U13E4.tmp\UNT13E5.tmp.exe, Quarantined, [d83ada84e993072f6df698c320e08d73],
PUP.Optional.Unizeto, C:\Users\jacob\AppData\Local\Temp\7a15d\temp\SPF.rar.exe, Quarantined, [39d9f36bd1ab2214a69a717b59a815eb],
PUP.Optional.OutBrowse, C:\Users\jacob\Downloads\Unconfirmed 320193.crdownload, Quarantined, [779b35291765e74faccab33da55cff01],
PUP.Optional.OutBrowse, C:\Users\jacob\Downloads\Unconfirmed 325638.crdownload, Quarantined, [2be7a8b6dba1a195f540f4fbca37ea16],
Trojan.Agent, C:\Users\jacob\Downloads\5BADV H-Game5D Masyoku S...Tentacle Girl Mana29.exe, Quarantined, [8191b4aaf28a8da925ad5b94d42d0bf5],
PUP.Optional.TidyNetwork.A, C:\Users\jacob\AppData\Local\TidyNetwork\TidyNetwork.exe, Quarantined, [57bbaeb08bf1251134c1a5fc60a1e020],
PUP.Optional.Ilivid, C:\Users\jacob\AppData\Local\iLivid\Uninstall.exe, Quarantined, [9979530b0d6fa78fbe63865f1ee305fb],
PUP.Optional.Cantataweb.A, C:\Program Files (x86)\Cantataweb\CANTATAWEB.ICO, Quarantined, [e82aff5f7408e1557c919abe3dc6fb05],
PUP.Optional.SoftwareUpdater.A, C:\Users\jacob\AppData\Local\SwvUpdater\Updater.xml, Quarantined, [42d0035b6814f34335a719422bd8d729],
PUP.Optional.SoftwareUpdater.A, C:\Users\jacob\AppData\Local\SwvUpdater\status.cfg, Quarantined, [42d0035b6814f34335a719422bd8d729],
PUP.Optional.TidyNetwork.A, C:\Program Files (x86)\TidyNetwork\petn64.dll, Quarantined, [33df8fcfd9a34de9b75187fca3602dd3],
PUP.Optional.Datamngr.A, C:\ProgramData\Wincert\win32cert.dll, Quarantined, [878b69f585f7181ea5421f7d37cd57a9],
PUP.Optional.Datamngr.A, C:\ProgramData\Wincert\win64cert.dll, Quarantined, [71a1bca229530d2928bf811b7193c838],
PUP.Optional.Datamngr.A, C:\ProgramData\Wincert\win64prop.dll, Quarantined, [ba582b33f884c5718860d8c46d9708f8],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\coordinator.cfg, Quarantined, [70a27be3b9c3bb7bb6c00797f212f10f],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\general.cfg, Quarantined, [70a27be3b9c3bb7bb6c00797f212f10f],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\S-1-5-21-3164748792-2684465884-2407293122-1002.cfg, Quarantined, [70a27be3b9c3bb7bb6c00797f212f10f],
PUP.Optional.TidyNetwork.A, C:\Users\jacob\AppData\Local\TidyNetwork\sidAmonetize3.tidy, Quarantined, [050d1e4076062c0a1ef8614638cc817f],
PUP.Optional.TidyNetwork.A, C:\Users\jacob\AppData\Local\TidyNetwork\log.log, Quarantined, [050d1e4076062c0a1ef8614638cc817f],
PUP.Optional.MyWordTool.A, C:\Users\jacob\AppData\Roaming\MyWordTool\.build, Quarantined, [8c8666f898e4b87e54d28b1c38ccc23e],
PUP.Optional.MyWordTool.A, C:\Users\jacob\AppData\Roaming\MyWordTool\.user, Quarantined, [8c8666f898e4b87e54d28b1c38ccc23e],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\bootstrap.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\harness-options.json, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\install.rdf, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\locales.json, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\defaults\preferences\prefs.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\base64.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\page-mod.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\private-browsing.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\self.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\system.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\timers.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\url.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\addon\runner.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\console\plain-text.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\console\traceback.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\content\content-proxy.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\content\content-worker.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\content\loader.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\content\thumbnail.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\content\worker.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\core\heritage.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\core\namespace.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\core\promise.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\api-utils.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\cortex.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\errors.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\events.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\light-traits.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\list.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\memory.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\observer-service.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\traits.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\window-utils.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\events\assembler.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\deprecated\traits\core.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\dom\events.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\event\core.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\event\target.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\io\byte-streams.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\io\data.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\io\file.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\io\text-streams.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\l10n\core.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\l10n\html.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\l10n\loader.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\l10n\locale.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\l10n\prefs.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\lang\functional.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\loader\cuddlefish.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\loader\sandbox.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\net\url.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\page-mod\match-pattern.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\platform\xpcom.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\preferences\service.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\private-browsing\utils.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\private-browsing\window\utils.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\system\environment.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\system\events.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\system\globals.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\system\runtime.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\system\unload.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\system\xul-app.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\common.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\events.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\helpers.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\namespace.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\observer.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\tab-fennec.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\tab-firefox.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\tab.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\tabs-firefox.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\tabs.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\utils.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\tabs\worker.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\util\array.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\util\deprecate.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\util\list.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\util\object.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\util\registry.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\util\uuid.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\window\browser.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\window\namespace.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\window\utils.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows\dom.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows\fennec.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows\firefox.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows\loader.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows\observer.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows\tabs-fennec.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\sdk\windows\tabs-firefox.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\addon-sdk\lib\toolkit\loader.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.MyWordTool.A, C:\Program Files (x86)\Mozilla Firefox\browser\extensions\emily@wilford.biz\resources\mywordtool\lib\main.js, Quarantined, [49c9b8a62b5150e6f9d2789b2ed538c8],
PUP.Optional.NextLive.A, C:\Users\jacob\AppData\Roaming\newnext.me\nengine.cookie, Quarantined, [9d757ae4720acf67ec2f6da7cd369967],
PUP.Optional.NextLive.A, C:\Users\jacob\AppData\Roaming\newnext.me\cache\spark.bin, Quarantined, [9d757ae4720acf67ec2f6da7cd369967],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit-soft\161.crx, Quarantined, [26ec540a285468ceb4c396825ea54cb4],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit-soft\161.xpi, Quarantined, [26ec540a285468ceb4c396825ea54cb4],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit-soft\a.db, Quarantined, [26ec540a285468ceb4c396825ea54cb4],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit-soft\b.db, Quarantined, [26ec540a285468ceb4c396825ea54cb4],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit-soft\Re-markitmf161.bin, Quarantined, [26ec540a285468ceb4c396825ea54cb4],
PUP.Optional.ReMarkIt.A, C:\Program Files (x86)\Re-markit-soft\Sqlite3.dll, Quarantined, [26ec540a285468ceb4c396825ea54cb4],
PUP.Optional.Datamngr.A, C:\Users\jacob\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}64, Quarantined, [e82a540aceae191d06bad93f2cd7a759],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\YoutubeAdBlocke\rPmp9KnbUEXTd0.dat, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\YoutubeAdBlocke\rPmp9KnbUEXTd0.exe, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\YoutubeAdBlocke\rPmp9KnbUEXTd0.tlb, Quarantined, [65ad144a1a62a690ad7c9299719255ab],
PUP.Optional.BuyNSave.A, C:\Program Files (x86)\BuyNsave\xBUl08ytwah7dN.dat, Quarantined, [0c0617479edeab8b4d80c77a699ae020],
PUP.Optional.BuyNSave.A, C:\Program Files (x86)\BuyNsave\xBUl08ytwah7dN.exe, Quarantined, [0c0617479edeab8b4d80c77a699ae020],
PUP.Optional.BuyNSave.A, C:\Program Files (x86)\BuyNsave\xBUl08ytwah7dN.tlb, Quarantined, [0c0617479edeab8b4d80c77a699ae020],

Physical Sectors: 0
(No malicious items detected)


(end)



#5 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:07:52 AM

Posted 02 December 2014 - 06:27 PM

 Results of screen317's Security Check version 0.99.91  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
 Windows Firewall Disabled!  
Windows Defender               
avast! Antivirus               
Advanced SystemCare Ultimate   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Flash Player     15.0.0.239  
 Adobe Reader XI  
 Mozilla Firefox (33.1)
 Google Chrome (39.0.2171.65)
 Google Chrome (39.0.2171.71)
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 IObit IObit Malware Fighter IMFsrv.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
 IObit IObit Malware Fighter IMF.exe  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast afwServ.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 



#6 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:07:52 AM

Posted 02 December 2014 - 07:01 PM

ran a second virus scan just incase

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 12/2/2014
Scan Time: 6:19:50 PM
Logfile:
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.12.02.10
Rootkit Database: v2014.12.02.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS


Scan Type: Threat Scan
Result: Completed
Objects Scanned: 343297
Time Elapsed: 39 min, 43 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 1
PUM.Hijack.HomePageControl, HKU\S-1-5-21-3164748792-2684465884-2407293122-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\POLICIES\MICROSOFT\INTERNET EXPLORER\CONTROL PANEL|HomePage, 1, Good: (0), Bad: (1),Replaced,[28ea8cd2403cd5619bc2283034d1d62a]

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)



#7 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 03 December 2014 - 10:24 AM

Hello there,

 

:step1: Uninstall some programs

 

There's currently some programs on your PC that we need to remove, for the time-being at least. Click the start menu, type in Programs and Features and click Programs and Features. Navigate to each of the following below one-by-one and click uninstall:

  • µTorrent
  • Additional Offer
  • Advanced SystemCare Ultimate 7
  • BuyNsave
  • Driver Booster 2
  • McAfee Security Scan Plus
  • Mobogenie
  • Movies Toolbar for Firefox
  • WebSearchy

:step2: I've noticed you're using Windows Defender and Avast Internet Security. It's not reccomended to have more than one antivirus, so please either disable Windows Defender or remove Avast.

 

:step3: Download and run AdwCleaner

  1. Click here to download AdwCleaner to your desktop.
  2. Double click adwcleaner_x.xxx.exe. If prompted, click I agree.
  3. Click scan. When it's finished, select clean.
  4. Allow AdwCleaner to restart your computer.
  5. Once you've restarted, a log should appear. Please post this in your next reply.

:step4: Download Junkware Removal Tool

  1. Click here to download Junkware Removal Tool to your desktop.
  2. Double click JRT.exe. (Win 7 and Vista users, right-click and select run as admin)
  3. Press any key and the scan will begin.
  4. At the end, a log will open. Please post this in your next reply.


#8 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:07:52 AM

Posted 05 December 2014 - 02:43 PM

heres the adware logs also didnt know you would post so quick so thanks for the timely reply and sorry for not replying on time

 

Service Deleted : ReimageRealTimeProtector

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
[#] Folder Deleted : C:\ProgramData\BitGuard
[#] Folder Deleted : C:\ProgramData\Browser Manager
[#] Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\ProgramData\wincert
Folder Deleted : C:\ProgramData\Reimage Protector
Folder Deleted : C:\ProgramData\2744556321040016450
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Dr
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxiGet Download Manager
Folder Deleted : C:\Program Files (x86)\IDMSQ
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\TidyNetwork
Folder Deleted : C:\Program Files (x86)\Maxiget
Folder Deleted : C:\Program Files\Reimage
Folder Deleted : C:\Users\jacob\AppData\Local\genienext
Folder Deleted : C:\Users\jacob\AppData\Local\iLivid
Folder Deleted : C:\Users\jacob\AppData\Local\Mobogenie
Folder Deleted : C:\Users\jacob\AppData\Local\PackageAware
Folder Deleted : C:\Users\jacob\AppData\Local\RegistryDr
Folder Deleted : C:\Users\jacob\AppData\Local\MaxiGet Download Manager
Folder Deleted : C:\Users\jacob\AppData\Local\Maxiget
Folder Deleted : C:\Users\jacob\AppData\Roaming\IDMSQ
Folder Deleted : C:\Users\jacob\AppData\Roaming\Optimizer Pro
Folder Deleted : C:\Users\jacob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IDMSQ
Folder Deleted : C:\Users\jacob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\jacob\Documents\Mobogenie
Folder Deleted : C:\Users\jacob\Documents\Optimizer Pro
Folder Deleted : C:\Users\jacob\Documents\RegistryDr
Folder Deleted : C:\Users\jacob\AppData\Roaming\Mozilla\Firefox\Profiles\0kcullq5.default\Extensions\ascsurfingprotection@iobit.com
Folder Deleted : C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Folder Deleted : C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohenffmfbnoidogjgebadealdkecjdal
Folder Deleted : C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd
File Deleted : C:\Windows\Reimage.ini
File Deleted : C:\Users\jacob\daemonprocess.txt
File Deleted : C:\Users\jacob\Desktop\iLivid.lnk
File Deleted : C:\Users\jacob\AppData\Roaming\Mozilla\Firefox\Profiles\0kcullq5.default\invalidprefs.js
File Deleted : C:\Users\jacob\AppData\Roaming\Mozilla\Firefox\Profiles\0kcullq5.default\searchplugins\Ask.xml

***** [ Scheduled Tasks ] *****

Task Deleted : Driver Booster Scan
Task Deleted : Driver Booster Update
Task Deleted : ReimageUpdater
Task Deleted : Reimage Reminder

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ohenffmfbnoidogjgebadealdkecjdal
Key Deleted : HKCU\Software\Classes\iLivid.torrent
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid]
Value Deleted : HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel [Homepage]
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\iLivid.torrent
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [IDMSQ]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9EAE3AE5-FD09-4F7D-8EA0-1597D7FA2281}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\powerpack
Key Deleted : HKCU\Software\Reimage
Key Deleted : HKCU\Software\MaxiGet
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\LookSafe
Key Deleted : HKLM\SOFTWARE\MaxiGet
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MaxiGet Download Manager_is1
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : [x64] HKLM\SOFTWARE\Reimage
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll,
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages]

-\\ Mozilla Firefox v33.1 (x86 en-US)

[0kcullq5.default\prefs.js] - Line Deleted : user_pref("extensions.4z2PYaNECCRwQczb.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]
[0kcullq5.default\prefs.js] - Line Deleted : user_pref("extensions.IixKNvBQBJU1TLpX.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]

-\\ Google Chrome v39.0.2171.71

[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : nfengeggddojhakldhlpjdlddgkkjkdd
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ohenffmfbnoidogjgebadealdkecjdal
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bbmegnmpleoagolcnjnejdacakedpcgd
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://us.yhs4.search.yahoo.com/yhs/web?preview=1&hspart=adk&hsimp=yhs-adk_sychp&param1=20140218&param2=45267835-ce02-4d24-8a39-06fb762c9a5d&param3=websearchy&param4=

*************************

AdwCleaner[R0].txt - [15377 octets] - [05/12/2014 01:34:51]
AdwCleaner[R1].txt - [15438 octets] - [05/12/2014 07:47:54]
AdwCleaner[S0].txt - [12720 octets] - [05/12/2014 14:21:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12781 octets] ##########
 



#9 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  

Posted 05 December 2014 - 03:18 PM

heres junk were file im surprised it didnt delete more

also why do i have to get rid of Advanced SystemCare Ultimate 7 Driver Booster 2 just confused also been trying to get rid of the other additional stuff you mentioned but it wont go away

 

also how do i disable windows defender

and i like to have 2 anti virus programs incase the other one misses something

 

Service Deleted : ReimageRealTimeProtector

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
[#] Folder Deleted : C:\ProgramData\BitGuard
[#] Folder Deleted : C:\ProgramData\Browser Manager
[#] Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\ProgramData\wincert
Folder Deleted : C:\ProgramData\Reimage Protector
Folder Deleted : C:\ProgramData\2744556321040016450
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Dr
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxiGet Download Manager
Folder Deleted : C:\Program Files (x86)\IDMSQ
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\TidyNetwork
Folder Deleted : C:\Program Files (x86)\Maxiget
Folder Deleted : C:\Program Files\Reimage
Folder Deleted : C:\Users\jacob\AppData\Local\genienext
Folder Deleted : C:\Users\jacob\AppData\Local\iLivid
Folder Deleted : C:\Users\jacob\AppData\Local\Mobogenie
Folder Deleted : C:\Users\jacob\AppData\Local\PackageAware
Folder Deleted : C:\Users\jacob\AppData\Local\RegistryDr
Folder Deleted : C:\Users\jacob\AppData\Local\MaxiGet Download Manager
Folder Deleted : C:\Users\jacob\AppData\Local\Maxiget
Folder Deleted : C:\Users\jacob\AppData\Roaming\IDMSQ
Folder Deleted : C:\Users\jacob\AppData\Roaming\Optimizer Pro
Folder Deleted : C:\Users\jacob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IDMSQ
Folder Deleted : C:\Users\jacob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\jacob\Documents\Mobogenie
Folder Deleted : C:\Users\jacob\Documents\Optimizer Pro
Folder Deleted : C:\Users\jacob\Documents\RegistryDr
Folder Deleted : C:\Users\jacob\AppData\Roaming\Mozilla\Firefox\Profiles\0kcullq5.default\Extensions\ascsurfingprotection@iobit.com
Folder Deleted : C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Folder Deleted : C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohenffmfbnoidogjgebadealdkecjdal
Folder Deleted : C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd
File Deleted : C:\Windows\Reimage.ini
File Deleted : C:\Users\jacob\daemonprocess.txt
File Deleted : C:\Users\jacob\Desktop\iLivid.lnk
File Deleted : C:\Users\jacob\AppData\Roaming\Mozilla\Firefox\Profiles\0kcullq5.default\invalidprefs.js
File Deleted : C:\Users\jacob\AppData\Roaming\Mozilla\Firefox\Profiles\0kcullq5.default\searchplugins\Ask.xml

***** [ Scheduled Tasks ] *****

Task Deleted : Driver Booster Scan
Task Deleted : Driver Booster Update
Task Deleted : ReimageUpdater
Task Deleted : Reimage Reminder

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ohenffmfbnoidogjgebadealdkecjdal
Key Deleted : HKCU\Software\Classes\iLivid.torrent
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid]
Value Deleted : HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel [Homepage]
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\iLivid.torrent
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [IDMSQ]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3AA4FC9D-FB51-44A2-B09F-0457857CA7C2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9EAE3AE5-FD09-4F7D-8EA0-1597D7FA2281}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\powerpack
Key Deleted : HKCU\Software\Reimage
Key Deleted : HKCU\Software\MaxiGet
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\LookSafe
Key Deleted : HKLM\SOFTWARE\MaxiGet
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MaxiGet Download Manager_is1
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : [x64] HKLM\SOFTWARE\Reimage
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll,
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages]

-\\ Mozilla Firefox v33.1 (x86 en-US)

[0kcullq5.default\prefs.js] - Line Deleted : user_pref("extensions.4z2PYaNECCRwQczb.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]
[0kcullq5.default\prefs.js] - Line Deleted : user_pref("extensions.IixKNvBQBJU1TLpX.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]

-\\ Google Chrome v39.0.2171.71

[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : nfengeggddojhakldhlpjdlddgkkjkdd
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ohenffmfbnoidogjgebadealdkecjdal
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bbmegnmpleoagolcnjnejdacakedpcgd
[C:\Users\jacob\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://us.yhs4.search.yahoo.com/yhs/web?preview=1&hspart=adk&hsimp=yhs-adk_sychp&param1=20140218&param2=45267835-ce02-4d24-8a39-06fb762c9a5d&param3=websearchy&param4=

*************************

AdwCleaner[R0].txt - [15377 octets] - [05/12/2014 01:34:51]
AdwCleaner[R1].txt - [15438 octets] - [05/12/2014 07:47:54]
AdwCleaner[S0].txt - [12720 octets] - [05/12/2014 14:21:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12781 octets] ##########
 



#10 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 05 December 2014 - 04:24 PM

Hello there,

 

Advanced SystemCare Ultimate 7 and Driver Booster are "PC optimizing" programs, which are meant to optimize your PC to it's best performance. I (and a lot of security experts) don't recommend them, because often they can do more damage to your computer than fixing it. What happens when you try and uninstall the other programs?

 

Most people are think the same as you, it's good security to have more than one antivirus program. However, this is NOT the case. They'll most likely conflict with each other and may end up detecting nothing, but the other anti-virus.

 

Look here to find out how to disable Windows Defender: http://windows.microsoft.com/en-gb/windows/turn-windows-defender-on-off



#11 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:07:52 AM

Posted 05 December 2014 - 05:32 PM

Hello there,

 

Advanced SystemCare Ultimate 7 and Driver Booster are "PC optimizing" programs, which are meant to optimize your PC to it's best performance. I (and a lot of security experts) don't recommend them, because often they can do more damage to your computer than fixing it. What happens when you try and uninstall the other programs?

 

Most people are think the same as you, it's good security to have more than one antivirus program. However, this is NOT the case. They'll most likely conflict with each other and may end up detecting nothing, but the other anti-virus.

 

Look here to find out how to disable Windows Defender: http://windows.microsoft.com/en-gb/windows/turn-windows-defender-on-off

 

 

ok i just looked it up it said it was already turned off >.< 

 

also as for advanced system care then how do i do everything advanced system care does and i need driver booster to keep my drivers updated

 

as for the junk files half of them when i uninstall them i says there still in use the other half get uninstalled but are like viruses and just reappear or leave fragments behind i can try to uninstall again if i can find it but there ussally hidden in system files

 

as for the two anti virus programs does that seriously happen >.<  :o then what do i do !!!!!!!!!!! i have a big problem then because i need features from both programs  and there are certain viruses that avast cant pick up but others can and theres certain viruses only avast find as well as features i need that only avast has



#12 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 05 December 2014 - 05:39 PM

Your drivers do not need to be updated, unless there is a serious issue. It's most likely that driver updating programs will install incorrect drivers onto your PC.

I'd recommend CCleaner instead of Advanced System Care (which hopefully you've removed by now), because it's safer and recommended by security experts.

 

Which out of the programs below are you having trouble uninstalling?

  • µTorrent
  • Additional Offer
  • Advanced SystemCare Ultimate 7
  • BuyNsave
  • Driver Booster 2
  • McAfee Security Scan Plus
  • Mobogenie
  • Movies Toolbar for Firefox
  • WebSearchy

You should pick an anti-virus which suits your needs and has everything you require.



#13 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:07:52 AM

Posted 07 December 2014 - 12:46 AM

dangit never knew it was bad for my computer is there any program like it thats good for my computer that has same features because advanced system care has some really useful features

 

as for the anti virus thing thats the problem i cant find one like that which is the main reason i use 2 so i can get the features from both of them no idea what to do

 

as for programs i cant uninstall they are

 

movies toolbar for firefox

WebSearchy

Mobogenie

BuyNsave

Additional Offer

 

all of those listed ive had problems with though McAfee Security Scan Plus is a maybe i thought i removed that so not sure why its still there

all the programs i listed in this post shouldve been removed by the programs ive been running to get rid of them



#14 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 07 December 2014 - 05:08 AM

As I previously said, I recommend CCleaner. Here's some antivirus programs you can choose from:

 

Free Antivirus programs: (choose and install only one).
avast! Free Antivirus <- includes Google Chrom pre-checked by default during installation but gives you the option to uncheck
Microsoft Security Essentials <- includes the option to join the customer experience improvement program
Bitdefender Antivirus Free Edition
Avira Free Antivirus <- includes option to install Avira Browser Safety Add-on to your browser
AVG Anti-Virus Free Edition <- includes AVG Security Toolbar - AVG Secure Search pre-checked by default during installation but gives you the option to uncheck

 

Your last paragraph is quite confusing. Are you uninstalling them the proper way? http://windows.microsoft.com/en-gb/windows-8/uninstall-change-program



#15 animefan01

animefan01
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  

Posted 08 December 2014 - 01:18 PM

problem is no idea if cccleaner has all these features .like malware removal privacy swep internet boost security defense vulnerbility defense registry fix junk files clean system optimization disk scan

 

as well as tooks like disk cleaner process manager iobit unlocker home page protection smart ram internet booster startup manager game booster program deactivator protected folder disk doctor disk explorer and a special option i use alot that basically give you a windows 7 start up menu in windows 8 called start menu 8

 

and already have avast tried bitdefener didnt work that good same with avg

 

and yes i am they still stay there

 

also sorry for late replys been really busy lately and i really appreciate you taking the time to help fix my computer

 

also i use avast in combination with Malwarebytes Anti-Malware to make up for the parts each of them cant block

 

so far i havent been able to find a program that can do everything in one >.<

 

then again maybe all the scans ive been told to run on this site has removed them for all i know is there any way to check to see if all that junk is still there






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users