Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

need help please, not sure what is wrong


  • Please log in to reply
7 replies to this topic

#1 bigjimo39

bigjimo39

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:36 AM

Posted 26 December 2014 - 07:17 PM

i am running windows 7, when playing a video my computer crashes after awhile with a blue screen, also my malwarebytes keeps popping uo blocking something, and i am being redirected to ads all the time, not sure how to proceed, hope some one can help.



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:12:36 AM

Posted 26 December 2014 - 07:29 PM

You should run a scan using MBAM. Make sure you have the scan settings as mentioned below.


Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.

  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits and PUPS
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • The scan may take some time to finish,so please be patient.
  • If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.

POST THE LOG FOR REVIEW.

 

Hold down Control and click on this link to open ESET OnlineScan in a new window. (Eset can take more than an hour to run so plan accordingly)

  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.


Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download


  • download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

Download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 bigjimo39

bigjimo39
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:36 AM

Posted 27 December 2014 - 01:56 AM

the following are the logs you requested;

mbam log;

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 12/26/2014
Scan Time: 7:37:49 PM
Logfile: mbam log.txt
Administrator: Yes
 
Version: 2.00.4.1028
Malware Database: v2014.12.27.01
Rootkit Database: v2014.12.23.02
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 7
CPU: x86
File System: NTFS
User: jim
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 364707
Time Elapsed: 59 min, 8 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 4
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\cozaghost.exe, 1508, Delete-on-Reboot, [a3a1b1b5ee8e0a2c623237243ec534cc]
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\cozwdhost.exe, 1748, Delete-on-Reboot, [281c92d4acd046f0c3d24417df242dd3]
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\coz32host.exe, 2288, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4]
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\cozahost.exe, 3268, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4]
 
Modules: 12
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyutil32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyutil32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
 
Registry Keys: 3
PUP.Optional.Zoomify.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\cozaghost, Quarantined, [a3a1b1b5ee8e0a2c623237243ec534cc], 
PUP.Optional.Zoomify.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\cozwdhost, Quarantined, [281c92d4acd046f0c3d24417df242dd3], 
PUP.Optional.Zoomify.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\zoomify, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 3
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\content, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
 
Files: 20
PUP.Optional.OpenCandy.A, C:\Users\jim\Downloads\windows.7.codec.pack.v4.1.0.setup.exe, Quarantined, [b78d1650502c5adcbc073a0856aaf40c], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\cozaghost.exe, Delete-on-Reboot, [a3a1b1b5ee8e0a2c623237243ec534cc], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\cozwdhost.exe, Delete-on-Reboot, [281c92d4acd046f0c3d24417df242dd3], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\coz32host.exe, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\coz64host.exe, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\cozahost.exe, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\logo.ico, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\Uninstaller.exe, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\utils.exe, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomify.xpi, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomify32.dll, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomify64.dll, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyL64.dll, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\zoomifyutil32.dll, Delete-on-Reboot, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\content\dgapi.js, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\content\dgmain.js, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\content\dgmain_app_bg.js, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\content\dgmain_app_cs.js, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
PUP.Optional.Zoomify.A, C:\ProgramData\zoomify_29\1.1.0.29\content\jquery4toolbar.js, Quarantined, [1430fe68b4c83ef8bec3b4a7ff043cc4], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
 
eset log;
jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiaidhkogkepalfgakbfhimpnpgloopk\1.0.1_0\background.js Win32/BrowseFox.Q potentially unwanted application
C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiaidhkogkepalfgakbfhimpnpgloopk\1.0.1_0\content.js Win32/BrowseFox.Q potentially unwanted application
C:\Users\jim\AppData\Local\Temp\nss72F2.tmp Win32/Somoto.G potentially unwanted application
 
ADW log;
ner v4.106 - Report created 27/12/2014 at 01:43:30
# Updated 21/12/2014 by Xplode
# Database : 2014-12-21.4 [Live]
# Operating System : Windows 7 Ultimate  (32 bits)
# Username : jim - JIM-PC
# Running from : C:\Users\jim\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Users\jim\AppData\LocalLow\zoomify
File Deleted : C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Deleted : C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
 
***** [ Scheduled Tasks ] *****
 
Task Deleted : ProPCCleaner_Start
Task Deleted : ProPCCleaner_Popup
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKCU\Software\AppDataLow\Software\zoomify
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v8.0.7600.16385
 
 
-\\ Google Chrome v39.0.2171.95
 
 
*************************
JRT log;
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Windows 7 Ultimate x86
Ran by jim on Sat 12/27/2014 at  1:48:55.50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
Failed to delete: [File] "C:\Users\jim\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage"
Successfully deleted: [File] "C:\Users\jim\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage-journal"
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Users\jim\Local Settings\Application Data\pro_pc_cleaner"
Successfully deleted: [Folder] "C:\Users\jim\documents\propccleaner"
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 12/27/2014 at  1:51:20.19
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
Thanks for your time, i hope that you can help
Jim
 


#4 buddy215

buddy215

  • Moderator
  • 13,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:12:36 AM

Posted 27 December 2014 - 07:44 AM

Open CCleaner and click on Tools. Choose Uninstall. At that page you will see a list of programs installed on your

computer and at the bottom right you will see a button when clicked will allow you to copy and paste that list into your

next post. Please do that.

 

Reset Google Chrome

 

Google Chrome gives you the option to reset your browser settings in one easy click. In some cases, programs that you install can change your Chrome settings without your knowledge. You may see additional extensions and toolbars or a different search engine. Resetting your browser settings will reset the unwanted changes caused by installing other programs. However, your saved bookmarks and passwords will not be cleared or changed.

 

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top you will see buttons for

browsers and Tasks. Please post the lists of startups for Windows Startups, Browsers and Tasks. Reset Chrome before posting the lists.

Reset your browser settings
  1. In the top-right corner of the browser window, click the Chrome menu
  2. Select Settings.
  3. At the bottom, click Show advanced settings.
  4. Under the section "Reset settings,” click Reset settings.
  5. In the dialog that appears, click Reset.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 bigjimo39

bigjimo39
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:36 AM

Posted 27 December 2014 - 09:39 AM

Adobe Flash Player 16 ActiveX Adobe Systems Incorporated 12/26/2014 6.00 MB 16.0.0.235
CCleaner Piriform 12/27/2014 5.01
DAEMON Tools Lite Disc Soft Ltd 12/26/2014 4.49.1.0356
ESET Online Scanner v3 12/26/2014
Google Chrome Google Inc. 12/25/2014 39.0.2171.95
ImgBurn LIGHTNING UK! 12/26/2014 2.5.8.0
Java 8 Update 25 Oracle Corporation 12/26/2014 73.3 MB 8.0.250
Malwarebytes Anti-Malware version 2.0.4.1028 Malwarebytes Corporation 12/26/2014 57.1 MB 2.0.4.1028
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 12/27/2014 38.8 MB 4.0.30319
NVIDIA Graphics Driver 307.83 NVIDIA Corporation 12/25/2014 307.83
NVIDIA Update 1.10.8 NVIDIA Corporation 12/25/2014 1.10.8
Windows 7 Codec Pack 4.1.0 Windows 7 Codec Pack 12/26/2014 4.1.0
 
 
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
Yes HKCU:Run DAEMON Tools Lite Disc Soft Ltd "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
Yes HKCU:Run uTorrent BitTorrent Inc. "C:\Users\jim\Desktop\JIM\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
Yes Startup Common CodecPackUpdateChecker.lnk Cole Williams C:\Windows\System32\C2MP\UpdateChecker.exe
 
Yes Helper Java™ Plug-In 2 SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll
Yes Helper Java™ Plug-In SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll
 
 
Yes App Gmail 7 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
Yes App Google Drive 6.3 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
Yes App Google Search 0.0.0.20 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
Yes App YouTube 4.2.6 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
No Extension Adblock Plus 1.8.8 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.8_0
Yes Extension Google Docs 0.7 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
Yes Extension Google Slides 0.8 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
No Extension SourceApp 1.0.1 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiaidhkogkepalfgakbfhimpnpgloopk\1.0.1_0
 
 
Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler


#6 buddy215

buddy215

  • Moderator
  • 13,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:12:36 AM

Posted 27 December 2014 - 10:07 AM

That is a very short list of installed programs. Check to make sure that you copied and pasted all.

 

Resetting Chrome should of removed....

No Extension SourceApp 1.0.1 Default C:\Users\jim\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiaidhkogkepalfgakbfhimpnpgloopk\1.0.1_0
That is adware Yontoo.
 
Be sure to reinstall or enable Adblock Plus in Chrome after resetting Chrome.
 
You can disable all three of the Tasks shown. To disable or reenable any item you click on the item to highlight and then on the right
choose either to enable or disable.
 
You can and should disable all four of the Windows Startup items shown above. These:
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
Yes HKCU:Run DAEMON Tools Lite Disc Soft Ltd "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
Yes HKCU:Run uTorrent BitTorrent Inc. "C:\Users\jim\Desktop\JIM\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
Yes Startup Common CodecPackUpdateChecker.lnk Cole Williams C:\Windows\System32\C2MP\UpdateChecker.exe
 
Using uTorrent to download free stuff is one way to get infected by malware....dangerous malware. Very risky !
 
Those two Java items, IE browser startups, should be disabled. Actually, most don't use Java (not java script) and if you don't
you should uninstall it as Java is a malware magnet.
 
 

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 bigjimo39

bigjimo39
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:36 AM

Posted 27 December 2014 - 11:10 AM

i did what you said, it seems to be running better, i haven't crashed with the blue screen yet , is there anything else i should do? Again i appreciate your help and time, and if there is a place to donate to the site i would be interested as i appreciate it greatly. Thanks again!!



#8 buddy215

buddy215

  • Moderator
  • 13,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:12:36 AM

Posted 27 December 2014 - 11:14 AM

This topic stays open. If in the next few days problem reoccurs just say so.

My help is free.

You're welcome and happy surfin' !


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users