Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PC with Windows 7 Just Running Too Slow


  • Please log in to reply
22 replies to this topic

#1 hotingrady

hotingrady

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA
  • Local time:11:47 AM

Posted 19 December 2014 - 11:12 AM

My computer has been running slow for the last few days.  Actually, since I installed a new NETGEAR N750 (model: WNDR4300) wireless router.  I had a Linksys router previously and it crapped out.  Everything was just fine, but I'm not sure if the router is the problem.  I've tried resetting the NETGEAR, etc. but that didn't do anything to my PC's performance.

 

YouTube videos come through with choppy audio - just everything is slow and my backups are taking forever.  I'm using Windows Backup and I'm backing up to a network external 3Tbyte drive, but my PC is connected directly via an ethernet cable.  My backups (actually everything) were way faster before I installed the new router.  However, I'm not sure if the router is the problem.

 

Here are my system specs:

 

OS:  Windows 7 Ultimate, Service Pack 1

Processor:  AMD FX-8120 Eight-Core Processor - 3.10 GHz

Installed memory (RAM):  8.00 GB

System type:  64-bit OS

Pen & Touch:  Pen Input Available (Wacom - works just fine)

 

I am using AVG free.

 

Warren


Edited by hamluis, 19 December 2014 - 03:37 PM.
Moved from Win 7 to AII - Hamluis.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,880 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:10:47 AM

Posted 19 December 2014 - 12:52 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 hotingrady

hotingrady
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA
  • Local time:11:47 AM

Posted 19 December 2014 - 01:57 PM

 
Speccy Snapshot Link is at the bottom of the log.
_______________________________________________________________________________
 
MiniToolBox by Farbar  Version: 30-11-2014
Ran by Warren (administrator) on 19-12-2014 at 13:40:21
Running from "C:\Users\Warren\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/19/2014 00:54:57 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   17 2.1.168.192.in-addr.arpa. PTR Warren-PC.local.
 
Error: (12/19/2014 00:54:57 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.2:5353   19 2.1.168.192.in-addr.arpa. PTR Warren-PC-2.local.
 
Error: (12/19/2014 09:39:47 AM) (Source: Application Error) (User: )
Description: Faulting application name: Photoshop.exe, version: 13.1.2.0, time stamp: 0x50e86765
Faulting module name: Wacom_Tablet.dll_unloaded, version: 0.0.0.0, time stamp: 0x51afeec6
Exception code: 0xc0000005
Fault offset: 0x000007fef5a3e384
Faulting process id: 0x2ba8
Faulting application start time: 0xPhotoshop.exe0
Faulting application path: Photoshop.exe1
Faulting module path: Photoshop.exe2
Report Id: Photoshop.exe3
 
Error: (12/19/2014 08:39:00 AM) (Source: Chrome) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=39.0.2171.95;lang=;guid=60FC89055F264FD188DCB9FF16D229DD;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\106a826d-448d-43c6-8a59-36c05d355271.dmp
 
Error: (12/17/2014 09:04:33 PM) (Source: Windows Backup) (User: )
Description: The backup was not successful. The error is: Windows Backup encountered an error when accessing the remote shared folder. (0x8078015B).
 
Error: (12/17/2014 09:03:10 PM) (Source: Microsoft-Windows-Backup) (User: NT AUTHORITY)
Description: The backup operation that started at '2014-12-16T21:07:19.065102300Z' has failed with following error code '2155348315' (%%2155348315). Please review the event details for a solution, and then rerun the backup operation once the issue is resolved.
 
Error: (12/16/2014 05:42:17 PM) (Source: Application Error) (User: )
Description: Faulting application name: NETGEARGenieDaemon64.exe, version: 1.0.0.2, time stamp: 0x5408001e
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000000000000
Faulting process id: 0xacc
Faulting application start time: 0xNETGEARGenieDaemon64.exe0
Faulting application path: NETGEARGenieDaemon64.exe1
Faulting module path: NETGEARGenieDaemon64.exe2
Report Id: NETGEARGenieDaemon64.exe3
 
Error: (12/15/2014 03:38:11 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   17 2.1.168.192.in-addr.arpa. PTR Warren-PC.local.
 
Error: (12/15/2014 03:38:11 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.2:5353   19 2.1.168.192.in-addr.arpa. PTR Warren-PC-2.local.
 
Error: (12/15/2014 01:20:32 PM) (Source: Application Error) (User: )
Description: Faulting application name: Photoshop.exe, version: 13.1.2.0, time stamp: 0x50e86765
Faulting module name: Wacom_Tablet.dll_unloaded, version: 0.0.0.0, time stamp: 0x51afeec6
Exception code: 0xc0000005
Fault offset: 0x000007fef29ce384
Faulting process id: 0x38ac
Faulting application start time: 0xPhotoshop.exe0
Faulting application path: Photoshop.exe1
Faulting module path: Photoshop.exe2
Report Id: Photoshop.exe3
 
 
System errors:
=============
Error: (12/19/2014 00:55:44 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (12/19/2014 00:54:40 PM) (Source: atikmdag) (User: )
Description: Display is not active
 
Error: (12/19/2014 00:54:40 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter
 
Error: (12/16/2014 05:42:19 PM) (Source: Service Control Manager) (User: )
Description: The NETGEARGenieDaemon service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (12/15/2014 03:38:58 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (12/15/2014 03:37:54 PM) (Source: atikmdag) (User: )
Description: Display is not active
 
Error: (12/15/2014 03:37:54 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter
 
Error: (12/14/2014 04:40:50 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
 
Error: (12/12/2014 03:19:04 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (12/12/2014 03:17:59 AM) (Source: atikmdag) (User: )
Description: Display is not active
 
 
Microsoft Office Sessions:
=========================
 
 
=========================== Installed Programs ============================
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.4 64-bit (HKLM\...\{558B5965-CC1B-4AF1-BA07-5D6832404050}) (Version: 5.4.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (HKLM\...\PremElem120) (Version: 12.1.0.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (Version: 12.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe® Photoshop® Album Starter Edition 3.2 (HKLM-x32\...\Adobe® Photoshop® Album Starter Edition 3.2) (Version: 3.2.0 - http://www.adobe.com)
Adobe® Photoshop® Album Starter Edition 3.2 (x32 Version: 3.2.0 - Adobe Systems, Inc.) Hidden
AirDroid 3.0.1 (HKLM-x32\...\AirDroid) (Version: 3.0.1 - Sand Studio)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.0.0 - Asmedia Technology)
ATI Catalyst Install Manager (HKLM\...\{AB7F4312-8037-4EBF-9D0F-5513CDFD534C}) (Version: 3.0.812.0 - ATI Technologies, Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AVG 2014 (Version: 14.0.4335 - AVG Technologies) Hidden
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5577 - AVG Technologies)
AVG 2015 (Version: 15.0.4253 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5577 - AVG Technologies) Hidden
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.1.9.799 - AVG Technologies)
AVS Video Editor 6.5 (HKLM-x32\...\AVS Video Editor_is1) (Version: 6.5.1.246 - Online Media Technologies Ltd.)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.36804 - BitTorrent Inc.)
Blender (HKLM\...\Blender) (Version: 2.70a - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-490CW (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
Bulk Rename Utility 2.7.1.2 (HKLM\...\Bulk Rename Utility_is1) (Version:  - TGRMN Software)
BurnAware Free 7.0 (HKLM-x32\...\BurnAware Free_is1) (Version:  - Burnaware)
CD Recovery Toolbox Free 2.1 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version:  - Recovery Toolbox, Inc.)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 2.56 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Disketch Disc Label Software (HKLM-x32\...\Disketch) (Version: 3.18 - NCH Software)
Dropbox (HKCU\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
DVD Flick 1.3.0.7 (HKLM-x32\...\DVD Flick_is1) (Version: 1.3.0.7 - Dennis Meuwissen)
Elements 12 Organizer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Exif Data Viewer (HKLM-x32\...\{1B71C750-BCDD-4AD5-B7F0-08DA5EC9F8BE}_is1) (Version:  - exifdataviewer.com)
Express Burn (HKLM-x32\...\ExpressBurn) (Version: 4.68 - NCH Software)
Express Rip (HKLM-x32\...\ExpressRip) (Version: 1.92 - NCH Software)
Express Zip (HKLM-x32\...\ExpressZip) (Version: 2.28 - NCH Software)
FairStars CD Ripper 1.80 (HKLM-x32\...\FairStars CD Ripper_is1) (Version:  - FairStars Soft)
File Type Assistant (HKLM-x32\...\Trusted Software Assistant_is1) (Version: 2014.3.4.0 - )
Free All-In-One Media Player (HKLM-x32\...\Free Media Player_is1) (Version:  - Free Software Group)
Freemake Video Converter version 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{0C5C1177-94C5-3EFB-A8BE-3F6AF1AF887F}) (Version: 5.38.6.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
IsoBuster 3.4 (HKLM-x32\...\IsoBuster_is1) (Version: 3.4 - Smart Projects)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Jing (HKLM-x32\...\{22800204-9E53-45C7-B6F3-5BB0F1C1A147}) (Version: 2.8.13007.1 - TechSmith Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.62.0 - JMicron Technology Corp.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (HKLM\...\{A6A4A258-0A48-4F76-B8F1-61F0514594DD}) (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B0-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Movavi Screen Capture Studio 5 (HKLM-x32\...\Movavi Screen Capture Studio 5) (Version: 5.2.0 - MOVAVI)
Movavi Video Suite 12 (HKLM-x32\...\Movavi Video Suite 12) (Version: 12.0.0 - Movavi)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.3.1.46 - NETGEAR Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Photomatix Pro version 5.0.1 (HKLM\...\PhotomatixPro5x64_is1) (Version: 5.0.1 - HDRsoft Ltd)
PhotoME (HKLM-x32\...\PhotoME_is1) (Version: 0.79R17 - Jens Duttke)
PhotoStage Slideshow Producer (HKLM-x32\...\PhotoStage) (Version: 2.41 - NCH Software)
Pixillion Image Converter (HKLM-x32\...\Pixillion) (Version: 2.73 - NCH Software)
PRE12 STI 64Installer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Prism Video File Converter (HKLM-x32\...\Prism) (Version: 2.13 - NCH Software)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.43.321.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6251 - Realtek Semiconductor Corp.)
SketchUp 2015 (HKLM\...\{C630FC42-E196-4B6D-B12B-4CB8D5F399D7}) (Version: 15.1.106 - Trimble Navigation Limited)
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: 4.60 - NCH Software)
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 6.5.30.0 - 2BrightSparks)
Topaz ReMask 4 (HKLM-x32\...\Topaz ReMask 4) (Version: 4.0.0 - Topaz Labs, LLC)
Torch (HKCU\...\Torch) (Version: 36.0.0.8226 - Torch Media, Inc)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2920789) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{9913305E-D4AC-4D26-B30F-799D529FB282}) (Version:  - Microsoft)
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7B9D2746-D03B-442B-A691-90B748E316B4}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 3.36 - NCH Software)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.6-3 - Wacom Technology Corp.)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 5.80 - NCH Software)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Wondershare Video Converter Ultimate(Build 6.6.0.5) (HKLM-x32\...\Wondershare Video Converter Ultimate_is1) (Version: 6.6.0.5 - Wondershare Software)
YTD Video Downloader 4.8.5 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.5 - GreenTree Applications SRL)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 41%
Total physical RAM: 8137.35 MB
Available physical RAM: 4758.63 MB
Total Pagefile: 16272.88 MB
Available Pagefile: 12285.32 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.25 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:232.79 GB) (Free:39.8 GB) NTFS
3 Drive e: (DVD Video Recording) (CDROM) (Total:2.16 GB) (Free:0 GB) UDF
4 Drive f: (MainStash) (Fixed) (Total:1863.01 GB) (Free:883.28 GB) NTFS
5 Drive g: (DataDisk) (Fixed) (Total:189.92 GB) (Free:165.2 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\WARREN-PC
 
Administrator            Guest                    Warren                   
 
 
**** End of log ****
 
--------------------------------------------------------------------------------------------------
Speccy Snapshot Link:
 


#4 hamluis

hamluis

    Moderator


  • Moderator
  • 55,880 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:10:47 AM

Posted 19 December 2014 - 03:36 PM

Some of the download sites for some of the programs you have installed...IMO, carry a high risk of malware, particularly those sites offering video converters.  Moved to Am I Infected forum for a closer look by the more knowledgeable.

 

Louis



#5 hotingrady

hotingrady
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA
  • Local time:11:47 AM

Posted 19 December 2014 - 04:04 PM

Thanks!

 

Should I move everything we've done so far to the "Am I Infected" forum?  If so, how?

 

Warren



#6 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 19 December 2014 - 04:56 PM

Hello there     :welcome:
 
Welcome to Bleeping Computer, I'm LighthouseParty. Let's run a couple of scans to see what could be causing this. Hamluis has already moved this to the Am I Infected forum for you.
 
:step1: Please download MiniToolBox to your desktop

  • Double click MiniToolBox.
  • Select the following and then press go.
  • Post the log in your next reply.

Flush DNS
Reset IE Proxy Settings
Reset FF Proxy Settings
List Installed Programs
List Restore Points
 
:step2: Please download Malwarebytes Anti-Malware to your desktop

  • Double click mbam-setup-x.x.x.xxxx and follow the on-screen instructions.
  • On the dashboard, click update now.
  • After that, click scan now - the scan will now begin.
  • When the scan's completed, select apply actions - make sure the action is quarantine.
  • Restart your computer.

How to get the log.

  • On the dashboard, select the history tab and click application logs.
  • Select the log which has the time and date of when you did the scan.
  • Click copy to clipboard and paste it into your reply.

:step3: Please download Security Check to your desktop

  • Double click SecurityCheck and follow the on-screen instructions.
  • A log should open, called checkup.txt.
  • Please post the contents of it in your next reply.

:step4: Non-malware removal steps
 
Run System File Checker - http://support.microsoft.com/KB/929833
Run Disk Check - http://support.microsoft.com/kb/2641432
Run Disk Cleanup - http://windows.microsoft.com/en-gb/windows/delete-files-using-disk-cleanup

Thanks and good luck!



#7 hotingrady

hotingrady
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA

Posted 20 December 2014 - 10:30 AM

Sorry for the delay getting back to you.  I had some stuff I HAD to do.

 

I may have screwed this process up because  I'm not sure where the log file for the scan I did yesterday is.  The following Scanning History Log is from after I ran  Malwarebytes Anti-Malware a few minutes ago (about an hour).  The MiniToolBox scan log IS from yesterday when I started this process.

 

One more thing.  When my PC starts up after a Restart I get a window that says:

 

"SwitchBoard.exe - Application Error

The application was unable to start correctly (0x000007b).

Click OK to close the appication."

 

-----------------------------------------------------------------------------------------------------------------------------------

 

 

MiniToolBox by Farbar  Version: 30-11-2014
Ran by Warren (administrator) on 19-12-2014 at 21:04:27
Running from "C:\Users\Warren\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
 
 
=========================== Installed Programs ============================
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.4 64-bit (HKLM\...\{558B5965-CC1B-4AF1-BA07-5D6832404050}) (Version: 5.4.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (HKLM\...\PremElem120) (Version: 12.1.0.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (Version: 12.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe® Photoshop® Album Starter Edition 3.2 (HKLM-x32\...\Adobe® Photoshop® Album Starter Edition 3.2) (Version: 3.2.0 - http://www.adobe.com)
Adobe® Photoshop® Album Starter Edition 3.2 (x32 Version: 3.2.0 - Adobe Systems, Inc.) Hidden
AirDroid 3.0.1 (HKLM-x32\...\AirDroid) (Version: 3.0.1 - Sand Studio)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.0.0 - Asmedia Technology)
ATI Catalyst Install Manager (HKLM\...\{AB7F4312-8037-4EBF-9D0F-5513CDFD534C}) (Version: 3.0.812.0 - ATI Technologies, Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AVG 2014 (Version: 14.0.4335 - AVG Technologies) Hidden
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5577 - AVG Technologies)
AVG 2015 (Version: 15.0.4253 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5577 - AVG Technologies) Hidden
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.1.9.799 - AVG Technologies)
AVS Video Editor 6.5 (HKLM-x32\...\AVS Video Editor_is1) (Version: 6.5.1.246 - Online Media Technologies Ltd.)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.36804 - BitTorrent Inc.)
Blender (HKLM\...\Blender) (Version: 2.70a - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-490CW (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
Bulk Rename Utility 2.7.1.2 (HKLM\...\Bulk Rename Utility_is1) (Version:  - TGRMN Software)
BurnAware Free 7.0 (HKLM-x32\...\BurnAware Free_is1) (Version:  - Burnaware)
CD Recovery Toolbox Free 2.1 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version:  - Recovery Toolbox, Inc.)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 2.56 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Disketch Disc Label Software (HKLM-x32\...\Disketch) (Version: 3.18 - NCH Software)
Dropbox (HKCU\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
DVD Flick 1.3.0.7 (HKLM-x32\...\DVD Flick_is1) (Version: 1.3.0.7 - Dennis Meuwissen)
Elements 12 Organizer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Exif Data Viewer (HKLM-x32\...\{1B71C750-BCDD-4AD5-B7F0-08DA5EC9F8BE}_is1) (Version:  - exifdataviewer.com)
Express Burn (HKLM-x32\...\ExpressBurn) (Version: 4.68 - NCH Software)
Express Rip (HKLM-x32\...\ExpressRip) (Version: 1.92 - NCH Software)
Express Zip (HKLM-x32\...\ExpressZip) (Version: 2.28 - NCH Software)
FairStars CD Ripper 1.80 (HKLM-x32\...\FairStars CD Ripper_is1) (Version:  - FairStars Soft)
File Type Assistant (HKLM-x32\...\Trusted Software Assistant_is1) (Version: 2014.3.4.0 - )
Free All-In-One Media Player (HKLM-x32\...\Free Media Player_is1) (Version:  - Free Software Group)
Freemake Video Converter version 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{0C5C1177-94C5-3EFB-A8BE-3F6AF1AF887F}) (Version: 5.38.6.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
IsoBuster 3.4 (HKLM-x32\...\IsoBuster_is1) (Version: 3.4 - Smart Projects)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Jing (HKLM-x32\...\{22800204-9E53-45C7-B6F3-5BB0F1C1A147}) (Version: 2.8.13007.1 - TechSmith Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.62.0 - JMicron Technology Corp.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (HKLM\...\{A6A4A258-0A48-4F76-B8F1-61F0514594DD}) (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B0-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Movavi Screen Capture Studio 5 (HKLM-x32\...\Movavi Screen Capture Studio 5) (Version: 5.2.0 - MOVAVI)
Movavi Video Suite 12 (HKLM-x32\...\Movavi Video Suite 12) (Version: 12.0.0 - Movavi)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.3.1.46 - NETGEAR Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Photomatix Pro version 5.0.1 (HKLM\...\PhotomatixPro5x64_is1) (Version: 5.0.1 - HDRsoft Ltd)
PhotoME (HKLM-x32\...\PhotoME_is1) (Version: 0.79R17 - Jens Duttke)
PhotoStage Slideshow Producer (HKLM-x32\...\PhotoStage) (Version: 2.41 - NCH Software)
Pixillion Image Converter (HKLM-x32\...\Pixillion) (Version: 2.73 - NCH Software)
PRE12 STI 64Installer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Prism Video File Converter (HKLM-x32\...\Prism) (Version: 2.13 - NCH Software)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.43.321.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6251 - Realtek Semiconductor Corp.)
SketchUp 2015 (HKLM\...\{C630FC42-E196-4B6D-B12B-4CB8D5F399D7}) (Version: 15.1.106 - Trimble Navigation Limited)
Speccy (HKLM\...\Speccy) (Version: 1.27 - Piriform)
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: 4.60 - NCH Software)
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 6.5.30.0 - 2BrightSparks)
Topaz ReMask 4 (HKLM-x32\...\Topaz ReMask 4) (Version: 4.0.0 - Topaz Labs, LLC)
Torch (HKCU\...\Torch) (Version: 36.0.0.8226 - Torch Media, Inc)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2920789) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{9913305E-D4AC-4D26-B30F-799D529FB282}) (Version:  - Microsoft)
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7B9D2746-D03B-442B-A691-90B748E316B4}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 3.36 - NCH Software)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.6-3 - Wacom Technology Corp.)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 5.80 - NCH Software)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Wondershare Video Converter Ultimate(Build 6.6.0.5) (HKLM-x32\...\Wondershare Video Converter Ultimate_is1) (Version: 6.6.0.5 - Wondershare Software)
YTD Video Downloader 4.8.5 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.5 - GreenTree Applications SRL)
========================= Restore Points ==================================
 
10-12-2014 05:00:02 Scheduled Checkpoint
10-12-2014 08:00:20 Windows Update
12-12-2014 08:00:11 Windows Update
13-12-2014 22:35:21 Windows Backup
16-12-2014 21:07:19 Windows Backup
18-12-2014 08:00:11 Windows Update
18-12-2014 08:00:33 Windows Backup
19-12-2014 08:00:37 Windows Backup
 
**** End of log ****
 
___________________________________________________________________________________________________
I may have screwed this up.  I'm not sure where the log file for the scan I did yesterday is.  The following Scanning History Log is from after I ran  Malwarebytes Anti-Malware.  A few minutes ago (about an hour).
-----------------------------------------------------------------------------------------------------------------------------------------------------------------
 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 12/20/2014
Scan Time: 8:17:22 AM
Logfile: 
Administrator: Yes
 
Version: 2.00.4.1028
Malware Database: v2014.12.20.01
Rootkit Database: v2014.12.14.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Warren
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 346270
Time Elapsed: 10 min, 19 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 7
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-401867295-2733360311-519196129-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, Quarantined, [6ca5fb6a99e3b581d4089d364ab84ab6], 
PUP.Optional.SearchProtect.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, Quarantined, [6ca5fb6a99e3b581d4089d364ab84ab6], 
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-401867295-2733360311-519196129-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, Quarantined, [46cb3c29dd9f2511f489674853b1ba46], 
PUP.Optional.PassShow.A, HKU\S-1-5-21-401867295-2733360311-519196129-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\PassShow, Quarantined, [dd34b1b4720a73c38d6c9dc2847f8080], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-401867295-2733360311-519196129-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [6da4283d720a1e18977b0c8cdc2721df], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-401867295-2733360311-519196129-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Quarantined, [b160bfa62953ad8927085757739102fe], 
PUP.Optional.FileTypeAssistant, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Trusted Software Assistant_is1, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
 
Registry Values: 3
PUP.Optional.MyRadioPlayer.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|myradioplayer Tray, "C:\Program Files (x86)\myradioplayer\myradioplayerTray.exe", Quarantined, [00116bfa4c30fd39cf1d3c98d430ec14]
PUP.Optional.FreeMakeConverter.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|fmconverter@gmail.com, C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\, Quarantined, [2ae7491cb3c97eb812dedd7f50b328d8]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-401867295-2733360311-519196129-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0R2Y1I1P1N0J1U1C, Quarantined, [b160bfa62953ad8927085757739102fe]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 7
PUP.Optional.OpenCandy, C:\Users\Warren\AppData\Roaming\OpenCandy, Quarantined, [50c12b3a314b59ddb84456cacb386799], 
PUP.Optional.OpenCandy, C:\Users\Warren\AppData\Roaming\OpenCandy\0BEC147D4B6745BD9AAECA1B3BB4AE03, Quarantined, [50c12b3a314b59ddb84456cacb386799], 
PUP.Optional.OpenCandy, C:\Users\Warren\AppData\Roaming\OpenCandy\4721325475E44CBF8763B2AC050CABFA, Quarantined, [50c12b3a314b59ddb84456cacb386799], 
PUP.Optional.Extutil.A, C:\Users\Warren\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B, Quarantined, [dd3481e481fb9d99f1c61d1bde25659b], 
PUP.Optional.Managera.A, C:\Users\Warren\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42, Quarantined, [38d9d68f2854fb3bb80049ef31d23fc1], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\temp, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
 
Files: 62
PUP.Optional.Conduit.A, C:\Users\Warren\AppData\Roaming\OpenCandy\4721325475E44CBF8763B2AC050CABFA\sp-downloader.exe, Quarantined, [3dd4b0b5acd02d09e4b23307a65b4cb4], 
PUP.Optional.SearchProtect.A, C:\Users\Warren\AppData\Local\Temp\nsbFF59.exe, Quarantined, [47cada8ba0dcd85e551246012ed355ab], 
PUP.Optional.SearchProtect.A, C:\Users\Warren\AppData\Local\Temp\nsx3F35.exe, Quarantined, [a26f2f36de9e67cf0e5915328180c33d], 
PUP.Optional.OpenCandy, C:\Users\Warren\AppData\Local\Temp\FreemakeVideoConverter_4.1.4.14.exe, Quarantined, [d0411c493a4272c46356f63558a9f40c], 
PUP.Optional.SearchProtect.A, C:\Users\Warren\AppData\Local\Temp\nsg28A2.exe, Quarantined, [18f9f372116b89ad184f5dea14ed32ce], 
PUP.Optional.SearchProtect.A, C:\Users\Warren\AppData\Local\Temp\nsl208.exe, Quarantined, [6da47bea097343f3115623241be66f91], 
PUP.Optional.SearchProtect.A, C:\Users\Warren\AppData\Local\Temp\nsw2334.exe, Quarantined, [9978164f5a2278be2047b98e07fae818], 
PUP.Optional.SearchProtect.A, C:\Users\Warren\AppData\Local\Temp\nsw25F3.exe, Quarantined, [e62b382dd1ab3204baadec5be51c1ee2], 
PUP.Optional.SearchProtect.A, C:\Users\Warren\AppData\Local\Temp\nsw4B8.exe, Quarantined, [bb561253d5a7221435323413cc35728e], 
PUP.Optional.Conduit.A, C:\Users\Warren\AppData\Local\Temp\ef5e2076-a798-469a-a468-b5439ed0b0d5\spidentifierimpl.exe, Quarantined, [32dfff661567be7864b5831f4eb3f808], 
PUP.Optional.Conduit.A, C:\Users\Warren\AppData\Local\Temp\ef5e2076-a798-469a-a468-b5439ed0b0d5\software\sp-downloader.exe, Quarantined, [a968a7bef587ea4ca6f0003a35cceb15], 
PUP.Optional.Conduit.A, C:\Users\Warren\AppData\Local\Temp\nsg4E23\SpSetup.exe, Quarantined, [d839471eec90f44296c4cc703fc21de3], 
PUP.Optional.TorchMedia, C:\Windows\Temp\134637ea\TorchSetupstub.exe, Quarantined, [d43dee7708742e086480a93319e832ce], 
PUP.Optional.TorchMedia, C:\Windows\Temp\16496c9a\TorchSetupstub.exe, Quarantined, [e72af86d48343ef816ce9f3db74a7a86], 
PUP.Optional.TorchMedia, C:\Windows\Temp\1c4c4b47\TorchSetupstub.exe, Quarantined, [9e73c89de19b59dd0cd835a7c63b40c0], 
PUP.Optional.TorchMedia, C:\Windows\Temp\2535096\TorchSetupstub.exe, Quarantined, [ec25aeb7116ba4926282e4f8e12051af], 
PUP.Optional.TorchMedia, C:\Windows\Temp\25572922\TorchSetupstub.exe, Quarantined, [947d580d1468d4621ec6f2ea8f72b34d], 
PUP.Optional.TorchMedia, C:\Windows\Temp\425a2db5\TorchSetupstub.exe, Quarantined, [c44d0065c0bc2b0b6480a9335ca54db3], 
PUP.Optional.TorchMedia, C:\Windows\Temp\4425b49\TorchSetupstub.exe, Quarantined, [848da7bea1db1f176282934991708a76], 
PUP.Optional.TorchMedia, C:\Windows\Temp\445d6265\TorchSetupstub.exe, Quarantined, [bd54e67f90ecfd395a8a3ba1b44dc739], 
PUP.Optional.TorchMedia, C:\Windows\Temp\5160150a\TorchSetupstub.exe, Quarantined, [45cc8dd89ce084b21fc5bd1fbd4442be], 
PUP.Optional.TorchMedia, C:\Windows\Temp\534f1fbd\TorchSetupstub.exe, Quarantined, [0d043c293646f93da83cb329a45d817f], 
PUP.Optional.TorchMedia, C:\Windows\Temp\593e546c\TorchSetupstub.exe, Quarantined, [bb561550205c3ff716ce9b4121e0ca36], 
PUP.Optional.TorchMedia, C:\Windows\Temp\59527e69\TorchSetupstub.exe, Quarantined, [5eb3e67facd0e84e33b101db926fdb25], 
PUP.Optional.TorchMedia, C:\Windows\Temp\753c1748\TorchSetupstub.exe, Quarantined, [fd1411549ddfa492d3112dafa75a3cc4], 
PUP.Optional.TorchMedia, C:\Windows\Temp\7c412cf8\TorchSetupstub.exe, Quarantined, [08099dc8dba168ce60845f7d679a2ed2], 
PUP.Optional.TorchMedia, C:\Windows\Temp\813836da\TorchSetupstub.exe, Quarantined, [be535d084735ce685391e8f4df22837d], 
PUP.Optional.TorchMedia, C:\Windows\Temp\82f2e75\TorchSetupstub.exe, Quarantined, [20f196cfdba10d293fa59943ed14af51], 
PUP.Optional.TorchMedia, C:\Windows\Temp\87364b07\TorchSetupstub.exe, Quarantined, [9c75095c81fb999dfaeaf6e6758cb34d], 
PUP.Optional.TorchMedia, C:\Windows\Temp\89557ee7\TorchSetupstub.exe, Quarantined, [f41d14517903a2943da728b4b64baa56], 
PUP.Optional.TorchMedia, C:\Windows\Temp\b1342d0c\TorchSetupstub.exe, Quarantined, [cc45d4919ae2ef478a5a914b16eb8e72], 
PUP.Optional.TorchMedia, C:\Windows\Temp\b3582b6c\TorchSetupstub.exe, Quarantined, [17fa0362a2da4cea499b726a5ba6aa56], 
PUP.Optional.TorchMedia, C:\Windows\Temp\c0323f2f\TorchSetupstub.exe, Quarantined, [33def273b6c690a6be264a9244bd58a8], 
PUP.Optional.TorchMedia, C:\Windows\Temp\c35b080d\TorchSetupstub.exe, Quarantined, [828fef76e3995cda7d67469629d86a96], 
PUP.Optional.TorchMedia, C:\Windows\Temp\cc5e10b6\TorchSetupstub.exe, Quarantined, [a26f9acbf389f2447f65b4283bc6748c], 
PUP.Optional.TorchMedia, C:\Windows\Temp\cd3a3c53\TorchSetupstub.exe, Quarantined, [ab660b5a9ce04de9d11345979a67c23e], 
PUP.Optional.TorchMedia, C:\Windows\Temp\d24d4565\TorchSetupstub.exe, Quarantined, [7a976302502ca096c51f924a71902ed2], 
PUP.Optional.TorchMedia, C:\Windows\Temp\d8502411\TorchSetupstub.exe, Quarantined, [9081bbaa90ec80b6de0605d709f88a76], 
PUP.Optional.TorchMedia, C:\Windows\Temp\dd3f58c0\TorchSetupstub.exe, Quarantined, [2de452138eee50e61ec6e9f3966bf40c], 
PUP.Optional.TorchMedia, C:\Windows\Temp\8c44099a\TorchSetupstub.exe, Quarantined, [9180a9bc3349e650bd27b02c24ddb24e], 
PUP.Optional.TorchMedia, C:\Windows\Temp\e6694e31\TorchSetupstub.exe, Quarantined, [9a77e77e37452115459fd10bc14055ab], 
PUP.Optional.TorchMedia, C:\Windows\Temp\95471242\TorchSetupstub.exe, Quarantined, [5eb3293c7a023501c51fcc1030d11be5], 
PUP.Optional.TorchMedia, C:\Windows\Temp\9b4a70ef\TorchSetupstub.exe, Quarantined, [0a07a6bfe19bff37e8fcd705ea17837d], 
PUP.Optional.TorchMedia, C:\Windows\Temp\a93c2e46\TorchSetupstub.exe, Quarantined, [050cc1a4a0dce452e301e7f5d52cfa06], 
PUP.Optional.AZLyrics.A, C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage, Quarantined, [3bd699ccee8e5adc4ad8ea6e867ddb25], 
PUP.Optional.AZLyrics.A, C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage-journal, Quarantined, [65acc1a4700ca29458ca4e0a1ae951af], 
PUP.Optional.Conduit.A, C:\Users\Warren\AppData\Roaming\Mozilla\Firefox\Profiles\jitd2r5g.default\searchplugins\conduit-search.xml, Quarantined, [e62b4f16c0bc1422b0b5541010f3e41c], 
PUP.Optional.FileTypeAssistant, C:\Windows\System32\Tasks\ProgramUpdateCheck, Quarantined, [e22f83e2354785b138a1f0e149bb1de3], 
PUP.Optional.FileTypeAssistant, C:\Windows\System32\Tasks\ProgramRefresh-ATFST, Quarantined, [27eab0b5304c4aec2caeb819e1232ad6], 
PUP.Optional.Extutil.A, C:\Users\Warren\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, Quarantined, [dd3481e481fb9d99f1c61d1bde25659b], 
PUP.Optional.Extutil.A, C:\Users\Warren\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, Quarantined, [dd3481e481fb9d99f1c61d1bde25659b], 
PUP.Optional.Extutil.A, C:\Users\Warren\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, Quarantined, [dd3481e481fb9d99f1c61d1bde25659b], 
PUP.Optional.Managera.A, C:\Users\Warren\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, Quarantined, [38d9d68f2854fb3bb80049ef31d23fc1], 
PUP.Optional.Managera.A, C:\Users\Warren\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, Quarantined, [38d9d68f2854fb3bb80049ef31d23fc1], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\ftacfg.exe, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\itdownload.dll, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\tsassist.id, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\tsassist.pci, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\unins000.dat, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\unins000.exe, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\unins000.msg, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
PUP.Optional.FileTypeAssistant, C:\Program Files (x86)\File Type Assistant\unins000.ref, Quarantined, [f21fe382a5d71521f8f003418a792ed2], 
 
Physical Sectors: 0
(No malicious items detected)
 
(end)
 
----------------------------------------------------------------------------------------------------------------------------------------
 

 Results of screen317's Security Check version 0.99.93  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
AVG AntiVirus Free Edition 2015   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Java 7 Update 67  
 Java version 32-bit out of Date! 
 Adobe Flash Player 16.0.0.235  
 Adobe Reader XI  
 Mozilla Firefox 30.0 Firefox out of Date!  
 Google Chrome (39.0.2171.71) 
 Google Chrome (39.0.2171.95) 
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 AVG avgwdsvc.exe 
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 18% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log`````````````````````` 
 
 
 
 
 


#8 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 20 December 2014 - 11:02 AM

Hello there,
 
Please download CCleaner from here. Once installed, open it and head over to the tools tab and select start-up. In the bottom right hand corner, select save to text file and select a name for it. Open the saved document and post the contents of it into your next reply.
 

I also extremely recommend you enable user account control (UAC). Instructions are here. As-well as that, you should run Disk Defragmenter.

 

:step1: Please uninstall some programs
 
There's currently some programs on your PC that we need to remove, for the time-being at least. Press the Windows + R key on your keyboard and type in appwiz.cpl and press enter. Navigate to each of the following below one-by-one and click uninstall:

  • AVG SafeGuard toolbar
  • BitTorrent
  • Java 7 Update 67

If any programs listed above aren't in Programs and Features, you can just skip them. Please download JavaRa from here and once opened it, select 'remove JRE' (If that's not there, select remove Java Runtime). Make sure you skip the re-install Java option!

:step2: Please download rKill to your desktop

  • Double click it (Win 7, 8 and Vista users, right-click and select run as admin)
  • The tool will run and then a log file should open.
  • Please post the contents of it in your next reply.

Please don't restart your computer before running the next step.

:step3: Please download AdwCleaner to your desktop

  • Double click adwcleaner_x.xxx.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • If prompted, click I agree.
  • Click scan. When it's finished, select clean.
  • Allow AdwCleaner to restart your computer.
  • Once your computer's restarted, a log should appear.
  • Please post this in your next reply.

:step4: Please download Junkware Removal Tool to your desktop

  • Double click JRT.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • Press any key and the scan will begin.
  • At the end, a log will open. Please post this in your next reply.

:step5: Please visit the ESET Online Scanner webpage
:exclame: Internet Explorer MUST be used for this step.  :exclame:

  • Click the checkbox next to 'Yes, I accept the Terms of Use' and click start.
  • Select the checkboxes which are displayed in the picture below.

jqnp8z.png

  • Press start and the scan will now begin - this scan will take a long time.
  • When the scand finished, select list threats and then export.
  • Choose a name for the log (e.g ESET) and click save (to your desktop)
  • Press the back button and then click finish. Please include the contents of the log in your reply.

Edited by LighthouseParty, 20 December 2014 - 11:02 AM.


#9 hotingrady

hotingrady
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA
  • Local time:11:47 AM

Posted 21 December 2014 - 08:25 AM

Hi LighthouseParty,

 

Here's everything you asked for except the last thing, ESET.  When I got up this morning the PC had rebooted and ESET was gone.  There was no "list threads" to select from and no export.  So, there was nothing to save, at least I couldn't find it.  Thus, there's not log contents at the bottom of the logs below in this reply.  I did use IE.   Everything else should be okay.

 

I have to go off for most of the day.  I probably won't be back until about 4:00 pm EST.

 

Thanks for everything you've done so far!

 

Warren

 

 
7-Zip 9.20 (x64 edition) Igor Pavlov 4/30/2014 4.53 MB 9.20.00.0
Adobe AIR Adobe Systems Incorporated 8/13/2014 3.1.0.4880
Adobe Flash Player 12 ActiveX Adobe Systems Incorporated 2/19/2014 6.00 MB 12.0.0.44
Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 12/12/2014 6.00 MB 16.0.0.235
Adobe Help Manager Adobe Systems Incorporated 8/13/2014 4.0.244
Adobe Illustrator CS6 Adobe Systems Incorporated 8/13/2014 1.63 GB 16.0
Adobe Photoshop CS6 Adobe Systems Incorporated 2/21/2014 1.75 GB 13.0
Adobe Photoshop Lightroom 5.4 64-bit Adobe Systems Incorporated 5/28/2014 1.01 GB 5.4.0
Adobe Premiere Elements 12 Adobe Systems Incorporated 5/14/2014 1.23 GB 12.1.0.0
Adobe Premiere Elements 12 5/5/2014 2.00 KB
Adobe Reader XI (11.0.07) Adobe Systems Incorporated 5/14/2014 183 MB 11.0.07
Adobe® Photoshop® Album Starter Edition 3.2 http://www.adobe.com 2/21/2014 3.2.0
AirDroid 3.0.1 Sand Studio 12/12/2014 3.0.1
Apple Application Support Apple Inc. 8/10/2014 93.4 MB 3.0.6
Apple Mobile Device Support Apple Inc. 8/10/2014 21.3 MB 7.1.2.6
Apple Software Update Apple Inc. 8/10/2014 2.38 MB 2.1.3.127
Asmedia ASM104x USB 3.0 Host Controller Driver Asmedia Technology 2/19/2014 2.22 MB 1.10.0.0
ATI Catalyst Install Manager ATI Technologies, Inc. 2/19/2014 22.4 MB 3.0.812.0
Audacity 2.0.5 Audacity Team 8/22/2014 45.5 MB 2.0.5
AVG 2015 AVG Technologies 11/28/2014 2015.0.5577
AVG SafeGuard toolbar AVG Technologies 8/26/2014 18.1.9.799
AVS Video Editor 6.5 Online Media Technologies Ltd. 4/30/2014 6.5.1.246
BitTorrent BitTorrent Inc. 12/11/2014 7.9.2.36804
Blender Blender Foundation 6/11/2014 2.70a
Bonjour Apple Inc. 8/10/2014 2.00 MB 3.0.0.10
Brother MFL-Pro Suite MFC-490CW Brother Industries, Ltd. 4/16/2014 1.0.1.0
Bulk Rename Utility 2.7.1.2 TGRMN Software 4/17/2014
BurnAware Free 7.0 Burnaware 5/20/2014 34.4 MB
CCleaner Piriform 12/20/2014 5.01
CD Recovery Toolbox Free 2.1 Recovery Toolbox, Inc. 12/1/2014 8.27 MB
Creative Audio Control Panel Creative Technology Limited 2/19/2014 2.56
Creative Software AutoUpdate Creative Technology Limited 2/19/2014 1.40
Creative Sound Blaster Properties x64 Edition 2/19/2014
Disketch Disc Label Software NCH Software 5/20/2014 3.18
Dropbox Dropbox, Inc. 12/18/2014 3.0.3
DVD Flick 1.3.0.7 Dennis Meuwissen 9/24/2014 1.3.0.7
Exif Data Viewer exifdataviewer.com 9/12/2014 2.55 MB
Express Burn NCH Software 5/20/2014 4.68
Express Rip NCH Software 5/20/2014 1.92
Express Zip NCH Software 6/6/2014 2.28
FairStars CD Ripper 1.80 FairStars Soft 11/29/2014 5.84 MB
Free All-In-One Media Player Free Software Group 2/23/2014 10.8 MB
Freemake Video Converter version 4.1.5 Ellora Assets Corporation 10/17/2014 78.4 MB 4.1.5
Google Chrome Google Inc. 2/21/2014 39.0.2171.95
Google Drive Google, Inc. 11/6/2014 34.6 MB 1.18.7821.2489
Google Talk Plugin Google 11/11/2014 14.3 MB 5.38.6.0
iCloud Apple Inc. 8/10/2014 156 MB 3.1.0.40
Image Resizer for Windows Brice Lambson 2/21/2014 2.53 MB 3.0.4802.35565
IsoBuster 3.4 Smart Projects 11/30/2014 11.1 MB 3.4
iTunes Apple Inc. 8/10/2014 220 MB 11.3.1.2
Java 7 Update 67 Oracle 9/1/2014 118 MB 7.0.670
Java 7 Update 67 (64-bit) Oracle 9/1/2014 118 MB 7.0.670
Jing TechSmith Corporation 5/3/2014 10.8 MB 2.8.13007.1
JMicron JMB36X Driver JMicron Technology Corp. 2/19/2014 1.17.62.0
Malwarebytes Anti-Malware version 2.0.4.1028 Malwarebytes Corporation 12/20/2014 57.2 MB 2.0.4.1028
Microsoft .NET Framework 4.5.1 Microsoft Corporation 4/17/2014 38.8 MB 4.5.50938
Microsoft Camera Codec Pack Microsoft Corporation 2/21/2014 38.8 MB 16.4.1970.0624
Microsoft Office Enterprise 2007 Microsoft Corporation 3/3/2014 12.0.6612.1000
Microsoft Office File Validation Add-In Microsoft Corporation 7/17/2014 10.9 MB 14.0.5130.5003
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs Microsoft Corporation 2/26/2014 80.0 KB 12.0.4518.1014
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2/28/2014 1.69 MB 3.1.0000
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2/21/2014 300 KB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2/21/2014 572 KB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 2/21/2014 788 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 3/4/2014 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2/21/2014 596 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 3/4/2014 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 Microsoft Corporation 3/1/2014 13.8 MB 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 Microsoft Corporation 3/1/2014 15.0 MB 10.0.40219
Movavi Screen Capture Studio 5 MOVAVI 8/28/2014 5.2.0
Movavi Video Suite 12 Movavi 8/29/2014 12.0.0
Mozilla Firefox 30.0 (x86 en-US) Mozilla 7/18/2014 113 MB 30.0
Mozilla Maintenance Service Mozilla 7/18/2014 341 KB 30.0
NETGEAR Genie NETGEAR Inc. 11/27/2014 2.3.1.46
Photomatix Pro version 5.0.1 HDRsoft Ltd 2/23/2014 24.1 MB 5.0.1
PhotoME Jens Duttke 9/12/2014 0.79R17
PhotoStage Slideshow Producer NCH Software 5/20/2014 2.41
Pixillion Image Converter NCH Software 6/7/2014 2.73
Prism Video File Converter NCH Software 6/7/2014 2.13
QuickTime 7 Apple Inc. 8/10/2014 70.2 MB 7.75.80.95
Realtek Ethernet Controller Driver Realtek 2/19/2014 7.43.321.2011
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2/19/2014 6.0.1.6251
SketchUp 2015 Trimble Navigation Limited 12/2/2014 307 MB 15.1.106
Speccy Piriform 12/19/2014 1.27
Switch Sound File Converter NCH Software 6/7/2014 4.60
SyncBackFree 2BrightSparks 2/24/2014 32.0 MB 6.5.30.0
Topaz ReMask 4 Topaz Labs, LLC 7/13/2014 4.0.0
Torch Torch Media, Inc 7/18/2014 36.0.0.8226
VideoPad Video Editor NCH Software 5/12/2014 3.36
Visual Studio 2012 x64 Redistributables AVG Technologies 2/19/2014 12.9 MB 14.0.0.1
Visual Studio 2012 x86 Redistributables AVG Technologies CZ, s.r.o. 2/19/2014 10.5 MB 14.0.0.1
VLC media player VideoLAN 8/7/2014 2.1.5
Wacom Tablet Wacom Technology Corp. 2/21/2014 6.3.6-3
WavePad Sound Editor NCH Software 5/20/2014 5.80
WebTablet FB Plugin 32 bit Wacom Technology Corp. 2/21/2014 2.1.0.3
WebTablet FB Plugin 64 bit Wacom Technology Corp. 2/21/2014 2.1.0.3
Windows Live Essentials Microsoft Corporation 2/28/2014 16.4.3522.0110
Wondershare Video Converter Ultimate(Build 6.6.0.5) Wondershare Software 12/1/2014 124 MB 6.6.0.5
YTD Video Downloader 4.8.5 GreenTree Applications SRL 9/24/2014 4.8.5
 
----------------------------------------------------------------------------------------------------------------------------------
 
Rkill 2.6.9 by Lawrence Abrams (Grinler)
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 12/20/2014 08:50:27 PM in x64 mode.
Windows Version: Windows 7 Ultimate Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (PID: 2588) [AU-HEUR]
 
1 proccess terminated!
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1                   activate.adobe.com
  127.0.0.1                   practivate.adobe.com
  127.0.0.1                   lmlicenses.wip4.adobe.com
  127.0.0.1                   lm.licenses.adobe.com
  127.0.0.1                   na1r.services.adobe.com
  127.0.0.1                   hlrcv.stage.adobe.com
 
Program finished at: 12/20/2014 08:50:45 PM
Execution time: 0 hours(s), 0 minute(s), and 18 seconds(s)
 
----------------------------------------------------------------------------------------------------------------------------
 
# AdwCleaner v4.105 - Report created 20/12/2014 at 20:58:35
# Updated 08/12/2014 by Xplode
# Database : 2014-12-16.1 [Live]
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Warren - WARREN-PC
# Running from : C:\Users\Warren\Desktop\adwcleaner_4.105.exe
# Option : Clean
 
***** [ Services ] *****
 
Service Deleted : torchcrashhandler
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\ProgramData\torchcrashhandler
Folder Deleted : C:\ProgramData\ytd video downloader
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\AVG Security Toolbar
Folder Deleted : C:\Program Files (x86)\GreenTree Applications
Folder Deleted : C:\Program Files (x86)\NCH Software
Folder Deleted : C:\Users\Warren\AppData\Local\FileTypeAssistant
Folder Deleted : C:\Users\Warren\AppData\Local\PackageAware
Folder Deleted : C:\Users\Warren\AppData\Local\torch
Folder Deleted : C:\Users\Warren\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\Warren\AppData\Roaming\RHEng
Folder Deleted : C:\Users\Warren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\torch
Folder Deleted : C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
File Deleted : C:\END
File Deleted : C:\Users\Warren\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Warren\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Torch.lnk
File Deleted : C:\Users\Warren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
File Deleted : C:\Users\Warren\Desktop\Facebook.lnk
File Deleted : C:\Users\Warren\Desktop\Torch.lnk
File Deleted : C:\Users\Warren\Desktop\Youtube.lnk
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml
File Deleted : C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.ask.com_0.localstorage
File Deleted : C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.ask.com_0.localstorage-journal
File Deleted : C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_services.hearstmags.com_0.localstorage-journal
File Deleted : C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_services.hearstmags.com_0.localstorage
File Deleted : C:\Users\Warren\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal
 
***** [ Scheduled Tasks ] *****
 
Task Deleted : ProgramRefresh-ATFST
Task Deleted : ProgramUpdateCheck
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Jing]
Key Deleted : HKLM\SOFTWARE\Classes\Applications\Torch.exe
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\torch.exe
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\TorchVLC
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9B7B034B-944A-4261-B487-862F642F7615}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{22511E2E-7970-414E-BC7C-28D16C4AF54D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{23C5311E-016D-4999-BCB1-499898429D6C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2C4B6DB8-6413-403B-A038-16A352CFE8B9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{46803190-228D-470E-90FE-F5E0CEA9C4F2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5180FE16-2E09-497B-9C8B-5A6F029ECECB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A4F6E1B3-469E-46EF-A936-FBA9D5EFD2B9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C97AF157-6A27-4F57-9D47-E2D3E4761B77}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED0D2C81-7DB5-4599-B7C0-1033418B5672}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\AVG Security Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\torch
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\torch
Key Deleted : HKLM\SOFTWARE\Uniblue
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\torch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{90120000-00B0-0409-0000-0000000FF1CE}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17496
 
 
-\\ Mozilla Firefox v30.0 (en-US)
 
 
-\\ Google Chrome v39.0.2171.95
 
 
*************************
 
AdwCleaner[R0].txt - [7524 octets] - [20/12/2014 20:55:30]
AdwCleaner[S0].txt - [7383 octets] - [20/12/2014 20:58:35]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7443 octets] ##########
 
-----------------------------------------------------------------------------------------------------------------------------------
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Windows 7 Ultimate x64
Ran by Warren on Sat 12/20/2014 at 21:13:55.94
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\browserpluginhelper
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-401867295-2733360311-519196129-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{65DEE40A-3E93-4CAE-9F98-B8E06DCEE2BF}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Users\Warren\appdata\local\tempdir"
 
 
 
~~~ Event Viewer Logs were cleared
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 12/20/2014 at 21:20:46.10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#10 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 21 December 2014 - 08:33 AM

May I ask why you posted the Mini Tool Box log?

 

When the ran ESET, do you remember seeing if it detected anything?



#11 hotingrady

hotingrady
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA

Posted 21 December 2014 - 08:41 AM

Oh no!  I didn't mean to post something I had posted previously.  Damn.  I was saving the logs to a Notepad file to then copy into my reply.  I didn't realize the Mini Tool Box log was there.  I've been posting into a different Notepad file for each reply. Sorry.  I hope that didn't mess things up.

 

ESET was 45% of the way through when I last looked at it around midnight last night.  I had found about 75 things at that time, but I'm not sure if it deleted anything.  I wanted to see if finish before my backup ran at 3:00am, at least it tried to run.  It was not successful, however.  I bet I should have turned the schedule off now that I think of it!

 

That's all I can tell you for now unless you have more questions.

 

Warren



#12 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 21 December 2014 - 08:44 AM

Before you ran ESET, under advanced options, did you select remove threats? And did the scan fully finish?

 

How is your PC running now?



#13 hotingrady

hotingrady
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA
  • Local time:11:47 AM

Posted 21 December 2014 - 06:15 PM

I can't remember if I selected remove threats, but I did everything exactly as you said.  I don't know if the scan finished.  When I went to bed it had finished only 45% of the scan.

 

I'm still checking my computer out but so far it seems okay.  It still takes a while for it to display, say, the My Pictures folder after I click on "Pictures" in the left pane of Windows Explorer.

 

There's this thing (window) that pops up intermittently in the lower right corner from Malwarebytes (I think).

 

Photoshop CS6 seems to be working okay.  This is an important program to me.

 

Streaming from YouTube works now without being all choppy.

 

I also use the Freemake program a lot.  I hope it's an okay program to use.

 

Thanks,

 

Warren



#14 hotingrady

hotingrady
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cairo, Georgia, USA

Posted 21 December 2014 - 06:26 PM

Oh!  I take that back.  Video streaming is still choppy and/or pauses too much.

 

I'd like to see if my backup runs quicker.

 

Warren



#15 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 21 December 2014 - 06:29 PM

Hello there,
 
Can you remember what the pop-ups say? To be on the safe side, I would run ESET again.

:step1: Please download Temporary File Cleaner to your desktop

  • Double click it (Win 7, 8 and Vista users, right-click and select run as admin)]
  • Click start and wait for it to finish.

:step2: Please download Malwarebytes Anti-Rootkit to your desktop

  • Double click it and click ok (Make sure to extract it to your desktop)
  • When it opens, click next and then update.
  • After it's updated, click next and then scan.
  • If malware is detected, select clean, then restart your computer.
  • Open 'MBAR' on your desktop and paste the contens in your reply of the following logs:
  • mbar-log-xx.xx.xx.txt and system-log.txt.

Please also run Disk Defragmenter - http://windows.microsoft.com/en-us/windows/improve-performance-defragmenting-hard-disk

 

Thanks,

Lighthouse Party






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users