Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I downloaded something from the internet and I may be infected.


  • Please log in to reply
7 replies to this topic

#1 idontknowwhattochose

idontknowwhattochose

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:31 AM

Posted 29 December 2014 - 04:30 AM

I am running windows 8.1 and I downloaded a file off the internet. Right after clicking on it it opened up an installer box. It looked like a virus one, so I exited the thing, and CMD opened up and flashed a few times, then firefox quit. I turned off my internet so that nothing else can ahppen, and I went to task manager and killed the process and deleted the file. I uninstalled one piece of software, and cant uninstall the other one (cuponarific) because of the "Please wait until the current program is finished uninstalling" thing. I think I may be infected.


Edited by idontknowwhattochose, 29 December 2014 - 04:31 AM.


BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:31 AM

Posted 29 December 2014 - 07:30 AM

If you are having issues while trying to uninstall the Couponarific program, you can use Revo Uninstaller to completely remove this unwanted program from your machine.

 

You should follow up with scans using the programs below as so often other adware and malware is on the computer.

 

Download Malwarebytes' Anti-Malware from Here

Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).

  • Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • The scan may take some time to finish,so please be patient.
  • If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.

POST THE MBAM LOG FOR REVIEW.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download


  • download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

Download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Hold down Control and click on this link to open ESET OnlineScan in a new window. (Eset can take more than an hour to run so plan accordingly)

  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 idontknowwhattochose

idontknowwhattochose
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:31 AM

Posted 29 December 2014 - 06:18 PM

Some things tried to install themselves before the adwcleaner scan. How many viruses do I have?

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 12/29/2014
Scan Time: 11:16:12 AM
Logfile: mlog.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.12.29.06
Rootkit Database: v2014.12.23.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Dylan

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 354826
Time Elapsed: 1 hr, 4 min, 11 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 1
PUP.Optional.AdPeak.A, C:\Program Files\010\ackaxfnrcw32.exe, 6540, Delete-on-Reboot, [4b4fadbb1e5e2412a6c6459c937107f9]

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.AdPeak.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ackaxfnrcw32, Quarantined, [4b4fadbb1e5e2412a6c6459c937107f9],

Registry Values: 2
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{5081D2D4-1637-404c-B74F-50526718257D}, C:\Program Files\shopperz\Firefox, Quarantined, [23774e1ae9938ea8d4b8f06e3dc601ff]
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{5081D2D4-1637-404c-B74F-50526718257D}, C:\Program Files\shopperz\Firefox, Quarantined, [96042345611bb2843b51fa64857ec937]

Registry Data: 0
(No malicious items detected)

Folders: 4
PUP.Optional.AdPeak.A, C:\Program Files\010, Delete-on-Reboot, [4b4fadbb1e5e2412a6c6459c937107f9],
PUP.Optional.CouponArific, C:\Program Files\Couponarific, Quarantined, [069484e4adcf0531238384d1bd4654ac],
PUP.Optional.CouponArific, C:\Program Files\Couponarific\SSL, Quarantined, [069484e4adcf0531238384d1bd4654ac],
PUP.Optional.Shopperz.A, C:\Program Files\shopperz, Quarantined, [6d2dcd9bd7a596a0443428350cf713ed],

Files: 4
PUP.Optional.Conduit.A, C:\Program Files (x86)\Free Audio Editor\ConduitInstaller.exe, Quarantined, [f3a736324f2dcf679738c580817f38c8],
PUP.Optional.BPlug, C:\Users\dylan\AppData\Local\Temp\V0JigkYPOC.exe, Quarantined, [a2f8095f47352214db0337921de40df3],
PUP.Optional.AdPeak.A, C:\Program Files\010\ackaxfnrcw32.exe, Delete-on-Reboot, [4b4fadbb1e5e2412a6c6459c937107f9],
PUP.Optional.Shopperz.A, C:\Program Files\shopperz\installLog.txt, Quarantined, [6d2dcd9bd7a596a0443428350cf713ed],

Physical Sectors: 0
(No malicious items detected)


(end)

 

# AdwCleaner v4.106 - Report created 29/12/2014 at 12:52:34
# Updated 21/12/2014 by Xplode
# Database : 2014-12-28.1 [Live]
# Operating System : Windows 8.1  (64 bits)
# Username : Dylan - DYLAN-PC
# Running from : C:\Users\dylan\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : netfilter64
[#] Service Deleted : CouponArificService64
Service Deleted : ackaxfnrcw32

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\010
Folder Deleted : C:\Users\dylan\AppData\Local\Bundled software uninstaller
Folder Deleted : C:\Users\dylan\AppData\Roaming\NCH Software
File Deleted : C:\END
File Deleted : C:\WINDOWS\System32\drivers\netfilter64.sys
File Deleted : C:\Users\dylan\AppData\Roaming\Mozilla\Firefox\Profiles\440cm13x.default\invalidprefs.js
File Deleted : C:\Users\dylan\AppData\Roaming\Mozilla\Firefox\Profiles\440cm13x.default\user.js

***** [ Scheduled Tasks ] *****

Task Deleted : update-S-1-5-21-2126715490-1615471384-1160635915-1001

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKCU\Software\usyndication.com
Key Deleted : HKLM\SOFTWARE\SimpleFiles
Key Deleted : HKLM\SOFTWARE\couponarific
Key Deleted : [x64] HKLM\SOFTWARE\couponarific

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v28.0 (en-US)

[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.UHg9PLaieT52.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if (window.self.location.protocol.indexOf('hxxp') > -1 && window.self == wi[...]
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.admin", false);
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.aflt", "babsst");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.autoRvrt", "false");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.dfltLng", "en");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.excTlbr", false);
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.ffxUnstlRst", true);
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.id", "de402b860000000000002089849a0cb9");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.instlDay", "15966");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.instlRef", "sst");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.newTab", false);
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.prdct", "delta");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.prtnrId", "delta");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.rvrt", "false");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.smplGrp", "none");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.tlbrId", "base");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.tlbrSrchUrl", "");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.vrsn", "1.8.24.6");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.vrsnTs", "1.8.24.618:40:55");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta.vrsni", "1.8.24.6");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta_i.babExt", "");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta_i.babTrack", "affID=124540&tt=160913_nocpn&tsp=5009");
[440cm13x.default\prefs.js] - Line Deleted : user_pref("extensions.delta_i.srcExt", "ss");

-\\ Google Chrome v39.0.2171.95

[C:\Users\dylan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=DE402089849A0CB9&affID=124540&tt=160913_nocpn&tsp=5009
[C:\Users\dylan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\dylan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[S1].txt - [5880 octets] - [29/12/2014 12:52:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [5940 octets] ##########
 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 8.1 x64
Ran by Dylan on Mon 12/29/2014 at 12:59:19.13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\WINDOWS\syswow64\ai_recyclebin"



~~~ FireFox

Emptied folder: C:\Users\dylan\AppData\Roaming\mozilla\firefox\profiles\440cm13x.default\minidumps [48 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 12/29/2014 at 13:01:57.97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Prism\prism.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Prism\prismsetup_v2.01.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Switch\switch.exe.vir    a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Switch\switchsetup_v4.47.exe.vir    a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\Program Files (x86)\37EE3489-84C3-4573-BC84-F6F7DCC25F25\xtloowpkjv64.exe    a variant of Win64/Adware.Adpeak.F application
C:\Program Files (x86)\Cheat Engine 6.1\cheatengine-i386.exe    a variant of Win32/HackTool.CheatEngine.AB potentially unsafe application
C:\Program Files (x86)\Cheat Engine 6.3\cheatengine-i386.exe    a variant of Win32/HackTool.CheatEngine.AB potentially unsafe application
C:\Program Files (x86)\Cheat Engine 6.3\standalonephase1.dat    a variant of Win32/HackTool.CheatEngine.AF potentially unsafe application
C:\Program Files (x86)\Free Sound Recorder\goup.exe    a variant of Win32/Tsingsoft.A potentially unwanted application
C:\Users\dylan\AppData\Local\Temp\PKxNXSDJej.exe    a variant of Win32/Adware.Adpeak.Q application
C:\Users\dylan\AppData\Local\Temp\sprz.exe    a variant of Win32/Toolbar.BitCocktail.C potentially unwanted application
C:\Users\dylan\AppData\Local\Temp\SxvDwlhTkd.exe    a variant of Win32/ExpressDownloader.K potentially unwanted application
C:\Users\dylan\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_63.exe    a variant of Win32/Adware.MultiPlug.EE application
C:\Users\dylan\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\Extracted\adv_65.exe    Win32/Adware.RK.AQ application
C:\Users\dylan\AppData\Roaming\install\uTorrent.exe    a variant of MSIL/Packed.NetShrink.F trojan
C:\Users\dylan\Downloads\cbsidlm-cbsi213-NASCAR_Thunder_2003_demo-SEO-10243295.exe    a variant of Win32/CNETInstaller.B potentially unwanted application
C:\Users\dylan\Downloads\FreeSoundRecorder_CNET.exe    a variant of Win32/Tsingsoft.A potentially unwanted application
C:\Users\dylan\Local Settings\Temp\PKxNXSDJej.exe    a variant of Win32/Adware.Adpeak.Q application
C:\Users\dylan\Local Settings\Temp\sprz.exe    a variant of Win32/Toolbar.BitCocktail.C potentially unwanted application
C:\Users\dylan\Local Settings\Temp\SxvDwlhTkd.exe    a variant of Win32/ExpressDownloader.K potentially unwanted application
C:\Users\dylan\Local Settings\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_63.exe    a variant of Win32/Adware.MultiPlug.EE application
C:\Users\dylan\Local Settings\Temp\f9626892-7a78-3199-abd2-97bbce96297b\Extracted\adv_65.exe    Win32/Adware.RK.AQ application
C:\Windows\Temp\37EE3489-84C3-4573-BC84-F6F7DCC25F25n.exe    multiple threats
D:\Win32.exe    multiple threats
 



#4 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:31 AM

Posted 29 December 2014 - 07:07 PM

Is Couponarific still listed in your list of installed programs?

 

Open CCleaner and Click on Tools. Choose Uninstall. You will see a list of programs installed on your

computer. At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste that list

into your next post. Please do that.

 

Open CCleaner and click on Startups. There you will see a list of Windows Startups and buttons at the top for Browsers and Tasks.

Please Copy and Paste each of those lists into your next post using the button at the bottom of the page.

 

As you can see, you had a ton of adware and some malware. Do another scan using MBAM and AdwCleaner.

Post the results of those scans, please.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 idontknowwhattochose

idontknowwhattochose
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:31 AM

Posted 30 December 2014 - 02:32 AM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 12/29/2014
Scan Time: 5:10:25 PM
Logfile: mlog.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.12.29.06
Rootkit Database: v2014.12.23.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Dylan

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 357858
Time Elapsed: 29 min, 24 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.CouponArific.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\couponarific, Quarantined, [50f4570f95e79c9a7de672f56c973cc4],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 

# AdwCleaner v4.106 - Report created 29/12/2014 at 23:24:49
# Updated 21/12/2014 by Xplode
# Database : 2014-12-28.1 [Live]
# Operating System : Windows 8.1  (64 bits)
# Username : Dylan - DYLAN-PC
# Running from : C:\Users\dylan\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v28.0 (en-US)


-\\ Google Chrome v39.0.2171.95


*************************

AdwCleaner[R2].txt - [622 octets] - [29/12/2014 23:24:49]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [681 octets] ##########
 

7-Zip 9.20 (x64 edition)    Igor Pavlov    9/6/2013    3.20 MB    9.20.00.0
Adobe AIR    Adobe Systems Incorporated    1/2/2014        3.9.0.1380
Adobe Flash Player 15 Plugin    Adobe Systems Incorporated    12/9/2014    6.00 MB    15.0.0.246
Adobe Photoshop Elements 2.0    Adobe Systems, Inc.    10/18/2013        2.0
Adobe Reader XI (11.0.10)    Adobe Systems Incorporated    12/15/2014    184 MB    11.0.10
Adobe Shockwave Player 12.0    Adobe Systems, Inc.    10/18/2013        12.0.3.133
AMD Catalyst Install Manager    Advanced Micro Devices, Inc.    10/6/2013    26.3 MB    8.0.911.0
Apple Application Support    Apple Inc.    7/5/2014    64.0 MB    2.3.6
Apple Software Update    Apple Inc.    7/5/2014    2.38 MB    2.1.3.127
Autodesk 3ds Max 8    Autodesk    9/19/2013    231 MB    8.0
Autodesk DWF Viewer    Autodesk, Inc.    10/18/2013        5.1
Backburner    Discreet    9/19/2013    9.32 MB    3.0
Bejeweled 3    AllSmartGames    10/18/2013        1.0
Bejeweled 3    PopCap Games    10/18/2013       
BlueStacks App Player    BlueStack Systems, Inc.    4/8/2014        0.8.7.3069
BlueStacks Notification Center    BlueStack Systems, Inc.    4/8/2014    26.0 MB    0.8.7.3069
Canon MX880 series MP Drivers        10/18/2013        
Cars    Default Manufacturer    9/21/2013    488 MB    1.0
CCleaner    Piriform    8/21/2013        4.05
Cheat Engine 6.1    Dark Byte    10/13/2013    23.5 MB    
Cheat Engine 6.3    Cheat Engine    9/16/2013    27.6 MB    
Conexant HD Audio    Conexant    10/18/2013        8.64.49.0
Curse Client    Curse    6/18/2014        5.1.1.810
DarkComet RAT Remover version 1.0    Phrozen ® Software 2012.    3/6/2014    2.34 MB    1.0
Defraggler    Piriform    10/18/2013        2.15
Dolby Advanced Audio v2    Dolby Laboratories Inc    5/19/2013    12.8 MB    7.2.8000.17
Energy Management    Lenovo    5/19/2013    49.8 MB    8.0.2.4
ESET Online Scanner v3        12/29/2014        
Facebook Video Calling 2.0.0.447    Skype Limited    1/13/2014    12.0 MB    2.0.447
FileZilla Client 3.9.0.6    Tim Kosse    12/29/2014    22.5 MB    3.9.0.6
Fraps (remove only)        10/18/2013        
Free Audio Editor    FAE Inc.    10/18/2013        
Free Mouse Auto Clicker 3.1    Advanced Mouse Auto Clicker ltd.    9/11/2013    1.09 MB    
Free MP3 WMA OGG Converter 9.5.4    CyberPower Tech, Inc.    3/10/2014    19.6 MB    
Free Sound Recorder v10.0.3    Copyright© 2005-2014 FreeSoundRecorder Technologies, Inc.    10/3/2014    27.4 MB    
FreeRide Games    Exent Technologies    5/19/2013        07.05.80.00
GCG    SorenIX    1/27/2014        0.9.9.0
Google Chrome    Google Inc.    9/25/2013        39.0.2171.95
Google Earth Plug-in    Google    5/30/2014    83.8 MB    7.1.2.2041
HP Customer Participation Program 14.0    HP    10/18/2013        14.0
HP Imaging Device Functions 14.0    HP    10/18/2013        14.0
HP Solution Center 14.0    HP    10/18/2013        14.0
HP Update    Hewlett-Packard    9/6/2013    2.97 MB    5.002.006.003
HyperCam 2    Hyperionics Technology LLC    10/18/2013        2.28.01
IconViewer    Bot Productions    10/18/2013        3.2.147
Intel AppUp(SM) center    Intel    10/18/2013        3.6.1.33057.10
Intel® Management Engine Components    Intel Corporation            8.1.0.1281
Intel® Processor Graphics    Intel Corporation            10.18.10.3621
Intel® Rapid Storage Technology    Intel Corporation    5/19/2013        12.0.0.1083
Intel® SDK for OpenCL - CPU Only Runtime Package    Intel Corporation            2.0.0.37149
Java 7 Update 65    Oracle    8/3/2014    120 MB    7.0.650
Java 7 Update 65 (64-bit)    Oracle    7/27/2014    118 MB    7.0.650
Java 8 Update 20 (64-bit)    Oracle Corporation    9/4/2014    88.8 MB    8.0.200
Java 8 Update 40 (64-bit)    Oracle Corporation    9/12/2014    90.1 MB    8.0.400
Java SE Development Kit 7 Update 45 (64-bit)    Oracle    11/5/2013    199 MB    1.7.0.450
Java SE Development Kit 8 Update 40 (64-bit)    Oracle Corporation    9/12/2014    269 MB    8.0.400.5
Lenovo EasyCamera    Vimicro    10/18/2013        3.13.301.1
Lenovo OneKey Recovery    CyberLink Corp.    10/18/2013        8.0.0.1219
Lenovo Photos    CEWE COLOR AG u Co. OHG    10/18/2013    227 MB    4.8.5
Lenovo pointing device    ELAN Microelectronic Corp.    8/2/2014        11.4.25.1
Lenovo PowerDVD10    CyberLink Corp.    5/19/2013    214 MB    10.0.4331.52
Lenovo Solution Center    Lenovo Group Limited    5/19/2013    25.7 MB    2.0.018.00
Lenovo YouCam    CyberLink Corp.    5/19/2013    211 MB    4.1.3423
Malwarebytes Anti-Malware version 2.0.4.1028    Malwarebytes Corporation    12/29/2014    57.3 MB    2.0.4.1028
Microsoft .NET Framework 4.5 SDK    Microsoft Corporation    3/24/2014    18.5 MB    4.5.50710
Microsoft .NET Framework 4.5.1 SDK    Microsoft Corporation    3/24/2014    19.4 MB    4.5.51641
Microsoft GIF Animator        10/18/2013        
Microsoft Office    Microsoft Corporation    5/19/2013    296 MB    15.0.4454.1510
Microsoft Office Professional Edition 2003    Microsoft Corporation    11/13/2013    758 MB    11.0.8173.0
Microsoft SQL Server 2005 Compact Edition [ENU]    Microsoft Corporation    9/26/2013    1.92 MB    3.1.0000
Microsoft SQL Server 2012 Command Line Utilities     Microsoft Corporation    3/24/2014    876 KB    11.1.3000.0
Microsoft SQL Server 2012 Native Client     Microsoft Corporation    3/24/2014    7.19 MB    11.1.3000.0
Microsoft SQL Server 2012 T-SQL Language Service     Microsoft Corporation    3/24/2014    6.14 MB    11.1.3000.0
Microsoft SQL Server 2012 Transact-SQL ScriptDom     Microsoft Corporation    3/24/2014    4.53 MB    11.1.3000.0
Microsoft SQL Server Compact 4.0 SP1 x64 ENU    Microsoft Corporation    3/24/2014    18.1 MB    4.0.8876.1
Microsoft Visual C++ 2005 Redistributable    Microsoft Corporation    9/26/2013    4.84 MB    8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148    Microsoft Corporation    9/7/2013    13.1 MB    9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161    Microsoft Corporation    9/26/2013    13.2 MB    9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729    Microsoft Corporation    5/19/2013    10.2 MB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17    Microsoft Corporation    10/17/2013    230 KB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148    Microsoft Corporation    9/7/2013    9.54 MB    9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161    Microsoft Corporation    5/19/2013    10.1 MB    9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219    Microsoft Corporation    5/19/2013    13.8 MB    10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219    Microsoft Corporation    5/19/2013    11.1 MB    10.0.40219
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005    Microsoft Corporation    12/29/2014    20.5 MB    12.0.21005.1
Microsoft Visual Studio Express 2013 for Windows Desktop - ENU    Microsoft Corporation    3/24/2014    3.25 GB    12.0.21005.13
Microsoft Works    Microsoft Corporation    9/26/2013    271 MB    08.05.0818      
Mixxx 1.10.0    Verti Techology Group, Inc    1/1/2014        1.10.0
Mousotron 9.1    Blacksun Software    8/5/2014    2.81 MB    9.1
Mozilla Firefox 28.0 (x86 en-US)    Mozilla    5/10/2014    53.6 MB    28.0
Mozilla Maintenance Service    Mozilla    5/10/2014    338 KB    28.0    
Nitro Pro 8    Nitro    5/19/2013    274 MB    8.0.10.7
No-IP DUC    Vitalwerks Internet Solutions LLC    8/2/2014    182 KB    4.0.1
OCR Software by I.R.I.S. 14.0    HP    10/18/2013        14.0
OneKey Recovery    CyberLink Corp.            8.0.0.1219
Origin    Electronic Arts, Inc.    12/26/2014        9.5.3.636
PCSX2 - Playstation 2 Emulator        12/18/2014        
Power2Go    CyberLink Corp.    10/18/2013        5.6.0.9109
Qualcomm Atheros Client Installation Program    Qualcomm Atheros    5/19/2013        10.0
Qualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver    Qualcomm Atheros Communications Inc.    5/19/2013        2.1.0.12
QuickTime 7    Apple Inc.    7/5/2014    70.2 MB    7.75.80.95
Razer Game Booster    Razer Inc.    8/8/2014    62.1 MB    4.2.45.0
Realtek USB Card Reader    Realtek Semiconductor Corp.    5/19/2013        6.2.9200.39041
Recuva    Piriform    10/18/2013        1.48
Revo Uninstaller Pro 3.1.2    VS Revo Group, Ltd.    12/29/2014    35.5 MB    3.1.2
Shared C Run-time for x64    McAfee    5/19/2013    1.38 MB    10.0.0
Shop for HP Supplies    HP    10/18/2013        14.0
SimCity 2000 Special Edition    Electronic Arts    12/26/2014    137 MB    2.0.0.1
SugarSync Manager    SugarSync, Inc.    10/18/2013        1.9.61.90905
Synaptics Pointing Device Driver    Synaptics Incorporated    10/18/2013    46.4 MB    16.3.13.3
TeamSpeak 3 Client    TeamSpeak Systems GmbH    8/18/2014        3.0.16        
Unity Web Player    Unity Technologies ApS    12/5/2014    12.0 MB    4.6.0f3
Unlocker 1.9.2    Cedrick Collomb    3/6/2014        1.9.2
UserGuide    Lenovo    5/19/2013    51.0 MB    1.0.0.9
VMware Player    VMware, Inc    11/29/2014    390 MB    6.0.4
VUDU To Go    Vudu    1/2/2014        2.0.7
Webcam to GIF converter    Rusty Bolt    10/18/2013        v1
Windows Driver Package - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1)    Lenovo    10/18/2013        06/15/2012 8.1.0.1
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733)    Lenovo    10/18/2013        06/19/2012 10.13.29.733
Windows Live Essentials    Microsoft Corporation    9/26/2013        16.4.3508.0205
WinINSTALL LE    Default Manufacturer    9/21/2013    14.1 MB    1.0
WinPcap 4.1.3    Riverbed Technology, Inc.    5/19/2014        4.1.0.2980
Wireshark 1.10.7 (64-bit)    The Wireshark developer community,
XSplit Broadcaster    SplitMediaLabs    12/27/2013    94.7 MB    1.3.1311.1201
XSplit Gamecaster    SplitMediaLabs    4/22/2014    90.8 MB    1.6.1404.0218
 

 

Yes    HKCU:Run    LightShot    OOO Kango    C:\Users\dylan\AppData\Local\Skillbrains\lightshot\Lightshot.exe Flags: uninsdeletevalue
Yes    HKCU:Run    Mousotron    Blacksun Software    C:\Program Files (x86)\Mousotron\Mousotron.exe
No    HKLM:Run    331BigDog    Vimicro    C:\Program Files (x86)\USB Camera\VM331STI.EXE
Yes    HKLM:Run    Adobe ARM    Adobe Systems Incorporated    "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes    HKLM:Run    APSDaemon    Apple Inc.    "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes    HKLM:Run    BlueStacks Agent    BlueStack Systems, Inc.    C:\Program Files (x86)\BlueStacks\HD-Agent.exe
No    HKLM:Run    cAudioFilterAgent    Conexant Systems, Inc.    C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
No    HKLM:Run    Energy Management    Lenovo (Beijing) Limited    C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
No    HKLM:Run    EnergyUtility    Lenovo(beijing) Limited    C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
Yes    HKLM:Run    ETDCtrl    ELAN Microelectronics Corp.    %ProgramFiles%\Elantech\ETDCtrl.exe
Yes    HKLM:Run    HP Software Update    Hewlett-Packard    C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
Yes    HKLM:Run    IAStorIcon    Intel Corporation    "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
No    HKLM:Run    Intel AppUp(SM) center    Intel Corporation    "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
Yes    HKLM:Run    QuickTime Task    Apple Inc.    "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
Yes    HKLM:Run    RazerGameBooster    Razer Inc.    C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
No    HKLM:Run    RemoteControl10    CyberLink Corp.    "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
Yes    HKLM:Run    SmartAudio    Conexant Systems, Inc.    C:\Program Files\CONEXANT\SAII\SACpl.exe /t
Yes    HKLM:Run    SunJavaUpdateSched    Oracle Corporation    "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes    HKLM:Run    SynLenovoGestureMgr    Synaptics    %ProgramFiles%\Synaptics\SynTP\SynLenovoGestureMgr.exe
Yes    HKLM:Run    UpdateP2GShortCut    CyberLink Corp.    "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
No    HKLM:Run    Wondershare Helper Compact.exe    Wondershare    C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
No    HKLM:Run    YouCam Tray    CyberLink Corp.    "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
No    Startup Common    Adobe Gamma Loader.lnk    Adobe Systems, Inc.    C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
No    Startup Common    HP Digital Imaging Monitor.lnk    Hewlett-Packard Co.    C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
Yes    Startup User    Mousotron.exe.lnk    Blacksun Software    C:\Program Files (x86)\Mousotron\Mousotron.exe
 

Yes    Extension    Adblock Plus    2.4    Wladimir Palant    default    Firefox 28.0    C:\Users\dylan\AppData\Roaming\Mozilla\Firefox\Profiles\440cm13x.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Yes    Extension    leethax.net extension    2013.10.12    leethax.net    default    Firefox 28.0    C:\Users\dylan\AppData\Roaming\Mozilla\Firefox\Profiles\440cm13x.default\extensions\leethax@leethax.net.xpi
Yes    Plugin    Adobe Acrobat    11.0.10.32    Adobe Systems Inc.    default    Firefox 28.0    C:\Program Files (x86)\Adobe\Reader 11.0\Reader\browser\nppdf32.dll
No    Plugin    Exent® AOD Gecko Plugin    7.1.0.1    Exent Technologies Ltd.    default    Firefox 28.0    C:\Program Files (x86)\FreeRide Games\npExentControl.dll
Yes    Plugin    Google Earth Plugin    7.1.2.2041    Google    default    Firefox 28.0    C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
Yes    Plugin    Google Update    1.3.25.11    Google Inc.    default    Firefox 28.0    C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
Yes    Plugin    Intel® Identity Protection Technology    2.1.42.0    Intel Corporation    default    Firefox 28.0    C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
Yes    Plugin    Intel® Identity Protection Technology    2.1.42.0    Intel Corporation    default    Firefox 28.0    C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Yes    Plugin    Java Deployment Toolkit 7.0.650.20    10.65.2.20    Oracle Corporation    default    Firefox 28.0    C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
Yes    Plugin    Java™ Platform SE 7 U65    10.65.2.20    Oracle Corporation    default    Firefox 28.0    C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
No    Plugin    Nitro PDF plugin for Firefox and Chrome    8.0.10.7    Nitro PDF    default    Firefox 28.0    C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll
No    Plugin    Photo Gallery    16.4.3508.205    Microsoft Corporation    default    Firefox 28.0    C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Yes    Plugin    QuickTime Plug-in 7.7.5    7.7.5.0    Apple Inc.    default    Firefox 28.0    C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
Yes    Plugin    Shockwave Flash    11.9.900.170    Adobe Systems Incorporated    default    Firefox 28.0    C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
Yes    Plugin    Shockwave Flash    14.0.0.145    Adobe Systems Incorporated    default    Firefox 28.0    C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
Yes    Plugin    Shockwave Flash    15.0.0.246    Adobe Systems Incorporated    default    Firefox 28.0    C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll
Yes    Plugin    Shockwave for Director    12.0.3.133    Adobe Systems, Inc.    default    Firefox 28.0    C:\windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll
Yes    Plugin    Unity Player    4.6.0.47091    Unity Technologies ApS    default    Firefox 28.0    C:\Users\dylan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
 

Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes    Task    Dolby Selector    Dolby Laboratories Inc.    C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe -autostart
Yes    Task    FacebookUpdateTaskUserS-1-5-21-2126715490-1615471384-1160635915-1001Core        C:\Users\dylan\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
Yes    Task    FacebookUpdateTaskUserS-1-5-21-2126715490-1615471384-1160635915-1001UA        C:\Users\dylan\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
Yes    Task    GoogleUpdateTaskMachineCore    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskMachineUA    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
No    Task    Optimize Start Menu Cache Files-S-1-5-21-2126715490-1615471384-1160635915-1001        
Yes    Task    Synaptics TouchPad Enhancements    Synaptics Incorporated    \Program Files\Synaptics\SynTP\SynTPEnh.exe

 



#6 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:31 AM

Posted 30 December 2014 - 07:08 AM

Uninstall these:

Java 7 Update 65    Oracle    8/3/2014    120 MB    7.0.650 (old Java programs are malware magnets)
Java 7 Update 65 (64-bit)    Oracle    7/27/2014    118 MB    7.0.650
Java 8 Update 20 (64-bit)    Oracle Corporation    9/4/2014    88.8 MB    8.0.200
Java 8 Update 40 (64-bit)    Oracle Corporation    9/12/2014    90.1 MB    8.0.400
Java SE Development Kit 7 Update 45 (64-bit)    Oracle    11/5/2013    199 MB    1.7.0.450
Java SE Development Kit 8 Update 40 (64-bit)    Oracle Corporation    9/12/2014    269 MB    8.0.400.5

 

Disable Windows Startups:

Yes    HKLM:Run    QuickTime Task    Apple Inc.    "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

Yes    HKLM:Run    SunJavaUpdateSched    Oracle Corporation    "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

 

Disable Firefox Startups:

Yes    Plugin    Adobe Acrobat    11.0.10.32    Adobe Systems Inc.    default    Firefox 28.0    C:\Program Files (x86)\Adobe\Reader 11.0\Reader\browser\nppdf32.dll

Yes    Plugin    Google Earth Plugin    7.1.2.2041    Google    default    Firefox 28.0    C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
Yes    Plugin    Google Update    1.3.25.11    Google Inc.    default    Firefox 28.0    C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

Yes    Plugin    Java Deployment Toolkit 7.0.650.20    10.65.2.20    Oracle Corporation    default    Firefox 28.0    C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
Yes    Plugin    Java™ Platform SE 7 U65    10.65.2.20    Oracle Corporation    default    Firefox 28.0    C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

Yes    Plugin    QuickTime Plug-in 7.7.5    7.7.5.0    Apple Inc.    default    Firefox 28.0    C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
Yes    Plugin    Shockwave Flash    11.9.900.170    Adobe Systems Incorporated    default    Firefox 28.0    C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
Yes    Plugin    Shockwave Flash    14.0.0.145    Adobe Systems Incorporated    default    Firefox 28.0    C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll

 

Disable Tasks:

Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)

Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)

 

Downloading free stuff from the web is more likely than not to contain unwanted bundled software....adware and malware.

 

Reset Google Chrome

 

Google Chrome gives you the option to reset your browser settings in one easy click. In some cases, programs that you install can change your Chrome settings without your knowledge. You may see additional extensions and toolbars or a different search engine. Resetting your browser settings will reset the unwanted changes caused by installing other programs. However, your saved bookmarks and passwords will not be cleared or changed.

Reset your browser settings
  1. In the top-right corner of the browser window, click the Chrome menu
  2. Select Settings.
  3. At the bottom, click Show advanced settings.
  4. Under the section "Reset settings,” click Reset settings.
  5. In the dialog that appears, click Reset.

Edited by buddy215, 30 December 2014 - 07:11 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 idontknowwhattochose

idontknowwhattochose
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:31 AM

Posted 30 December 2014 - 12:32 PM

Done that. Next?



#8 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:31 AM

Posted 30 December 2014 - 12:42 PM

If the computer is running up to par...then we are finished. Happy surfin' !


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users