Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ridiculously slow pc


  • Please log in to reply
48 replies to this topic

#1 mom23kidz

mom23kidz

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 09 April 2015 - 07:51 PM

I ran virus check and still don't know why my pc is so slow.

Edited by computerxpds, 10 April 2015 - 05:41 AM.
Moved from windows 8 to AII


BC AdBot (Login to Remove)

 


m

#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 09 April 2015 - 10:36 PM

Go ahead and install Ccleaner. Now that you have the program installed go ahead and run the cleaner function.
kwLN4uv.png


Now that you have cleaned out some temp files, lets go ahead and disable all of the items starting up with your machine except your antivirus. To do this you will need to click on tools then start up select each item then disable.

GjWwvEu.png

Now that you have disabled those un-needed start ups lets go into the settings, we will have Ccleaner run when your machine boots, so that you will never have to worry about cleaning temp files again.

To do this:

  • Hit options.
  • Settings.
  • Place a tick to run Ccleaner when the computer starts.

Lxioao1.png

Now go to the advanced tab, and select close program after cleaning, now run the cleaner again this will close Ccleaner.

SnqZ2JW.png

 

 

 

 

 

 

Download install and run Wipe & System ninja

 

https://privacyroot.com/software/www/en/wipe-download.php

 

https://singularlabs.com/software/system-ninja/

 

Then do a defrag with toolwhiz defrag.

http://www.toolwiz.com/en/products/toolwiz-smart-defrag/

 

 Download Autoruns and Autorunsc Unzip it to your desktop and then double click autoruns.exe After the scan is finished then click on File>>>>>>>>>>>Save The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option. in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.

 

Please download MINITOOLBOX and run it.



Checkmark following boxes:


Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.



#3 mom23kidz

mom23kidz
  • Topic Starter

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 10 April 2015 - 12:01 AM

Result

Attached Files



#4 mom23kidz

mom23kidz
  • Topic Starter

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 10 April 2015 - 12:03 AM

Result



#5 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 10 April 2015 - 12:05 AM

You can copy and paste the logs. :)



#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 10 April 2015 - 12:07 AM

Also for me to get an idea if there is malware present on your machine.

 

Uninstall your current version of malwarebytes (it is outdated)

 

 

Download Malwrebytes from the link below.
https://www.malwarebytes.org/
Select update.
jBVKBI0.png
Then Select Scan Now.
js1M2HF.png
Once the scan is completed.
Remove anything found.
Then go to the History tab.
Then go to the application logs.
Then go to scan log.
Export.
Copy to clipboard.
Post it here in your next reply.
 

Download and save ZHP Cleaner to your desktop.

http://www.nicolascoolman.fr/download/zhpcleaner-2/

Right Click and run as administrator.

Click on the Repair button.

At the end of the process you will be asked to reboot your machine.

After you reboot a report will open on your desktop.

Copy and paste the report here in your next reply.



#7 mom23kidz

mom23kidz
  • Topic Starter

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 10 April 2015 - 12:08 AM

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "4/9/2015 9:27 PM" ""
+ "BeatsOSDApp" "HP Beats" "Hewlett-Packard " "c:\program files\idt\wdm\beats64.exe" "8/22/2012 2:39 AM" ""
+ "Classic Start Menu" "Classic Start Menu" "IvoSoft" "c:\program files\classic shell\classicstartmenu.exe" "4/20/2014 1:17 PM" ""
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe" "7/5/2013 3:54 AM" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "3/2/2015 2:23 PM" ""
+ "AvastUI.exe" "avast! Antivirus" "AVAST Software" "c:\program files\avast software\avast\avastui.exe" "3/11/2015 10:25 AM" ""
+ "BtTray" "Bluetooth Application" "IVT Corporation" "c:\program files (x86)\ralink corporation\ralink bluetooth stack\bttray.exe" "1/10/2013 1:23 AM" ""
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe" "10/15/2014 6:56 AM" ""
+ "Total Defense PC Tuneup Reminder" "" "" "File not found: C:\Program Files (x86)\Total Defense\PC Tune-Up\Reminder-PCTuneup.exe.exe" "" ""
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "4/10/2015 12:36 AM" ""
+ " Maintance" "" "" "File not found: C:\Program Files\net1.exe" "" ""
+ "ApplePhotoStreams" "Apple Photostreams Uploader Executable" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\applephotostreams.exe" "4/16/2013 11:13 PM" ""
+ "CCleaner" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner64.exe" "3/11/2015 2:19 PM" ""
+ "CCleaner Monitoring" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner64.exe" "3/11/2015 2:19 PM" ""
+ "CommonLauncher" "VDC utility" "VDC Company" "c:\users\theresa\appdata\local\commonlauncher.exe" "3/12/2014 6:31 AM" ""
+ "Itibiti.exe" "" "" "File not found: C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe.exe" "" ""
+ "Obrona Block Ads" "" "" "File not found: C:\Users\Theresa\AppData\Local\Obrona Block Ads\ObronaBlockAds.exe" "" ""
+ "RoboForm" "RoboForm TaskBar Icon" "Siber Systems" "c:\program files (x86)\siber systems\ai roboform\robotaskbaricon.exe" "1/21/2015 9:44 AM" ""
+ "Wipe Maintance" "Application Installer" "www.privacyroot.com" "c:\program files\wipe\net1.exe" "10/29/2014 3:22 AM" ""
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "3/3/2015 10:41 PM" ""
+ "HPMonitor.exe.lnk" "HP Mouse Suite Monitor" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp mouse suite\hpmonitor.exe" "2/8/2010 7:35 AM" ""
+ "hpwjd.exe.lnk" "hpwmsd MFC Application" "Hewlett-Packard " "c:\programdata\hp mouse suite config\hpwjd.exe" "2/4/2010 4:09 AM" ""
+ "hpwmsd.exe.lnk" "hpwmsd MFC Application" "Hewlett-Packard " "c:\programdata\hp mouse suite config\hpwmsd.exe" "2/4/2010 4:09 AM" ""
"C:\Users\Theresa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "4/10/2015 12:39 AM" ""
+ "easy gadget.lnk" "" "" "File not found: C:\Program Files (x86)\easy gadget\easy gadget.exe.exe" "" ""
+ "Send to OneNote.lnk" "Send to OneNote Tool" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\onenotem.exe" "7/29/2014 10:17 PM" ""
+ "Verizon Wireless Software Utility Application for Android – Samsung.lnk" "Verizon 2.0 UA for Android" "SAMSUNG Electornics Co., Ltd." "c:\users\theresa\appdata\roaming\verizon\ua_ar\ua.exe" "5/12/2014 3:08 AM" ""
+ "Wipe Tray Agent.lnk" "Wipe" "" "c:\program files\wipe\wipe.exe" "3/25/2015 4:17 PM" ""
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "9/29/2014 10:03 AM" ""
+ "Google Chrome" "Google Chrome Installer" "Google Inc." "c:\program files (x86)\google\chrome\application\41.0.2272.118\installer\chrmstp.exe" "3/30/2015 2:02 PM" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe" "10/28/2014 9:52 PM" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "3/2/2015 3:44 PM" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe" "10/28/2014 9:20 PM" ""
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "3/6/2015 12:25 AM" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "11/6/2014 9:10 AM" ""
+ "BthSendToContextMenuExt" "TODO: <文件说明>" "TODO: <公司名>" "c:\windows\system32\bsappshlext.dll" "1/10/2013 1:52 AM" ""
+ "PhotoStreamsExt" "Apple Photostreams UI Shell Extension" "Apple Inc." "c:\program files\common files\apple\internet services\shellstreams64.dll" "11/11/2013 10:12 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll" "12/12/2014 7:58 PM" ""
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "3/6/2015 12:25 AM" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll" "11/6/2014 8:51 AM" ""
+ "BthSendToContextMenuExt" "TODO: <文件说明>" "TODO: <公司名>" "c:\windows\syswow64\bsappshlext.dll" "1/10/2013 1:29 AM" ""
+ "PhotoStreamsExt" "Apple Photostreams UI Shell Extension" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\shellstreams.dll" "11/19/2013 10:22 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll" "12/12/2014 7:52 PM" ""
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" "" "9/17/2014 11:50 PM" ""
+ "TheAdvOSPropPage Class" "igfxOSP Module" "Intel Corporation" "c:\windows\system32\igfxosp.dll" "5/17/2014 12:16 AM" ""
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "8/16/2014 12:11 AM" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "11/6/2014 9:10 AM" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes anti-malware\mbamext.dll" "7/7/2014 5:02 PM" ""
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "8/16/2014 12:11 AM" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll" "11/6/2014 8:51 AM" ""
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "1/15/2015 8:25 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll" "12/12/2014 7:58 PM" ""
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "1/15/2015 8:25 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll" "12/12/2014 7:52 PM" ""
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" "" "4/9/2015 9:27 PM" ""
+ "ClassicCopyExt" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer64.dll" "4/20/2014 1:16 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll" "12/12/2014 7:58 PM" ""
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" "" "4/9/2015 9:27 PM" ""
+ "ClassicCopyExt" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer32.dll" "4/20/2014 1:17 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll" "12/12/2014 7:52 PM" ""
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" "" "2/25/2014 10:09 AM" ""
+ "IVTCopyMonitorForMS" "Bluetooth Application" "IVT Corporation" "c:\windows\system32\bsshellftp.dll" "2/24/2013 11:28 PM" ""
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\CopyHookHandlers" "" "" "" "2/25/2014 10:09 AM" ""
+ "IVTCopyMonitorForMS" "Bluetooth Application" "IVT Corporation" "c:\windows\syswow64\bsshellftp.dll" "2/24/2013 11:25 PM" ""
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "9/17/2014 11:50 PM" ""
+ "igfxcui" "" "" "File not found: C:\WINDOWS\system32\igfxpph.dll" "" ""
+ "igfxDTCM" "igfxDTCM Module" "Intel Corporation" "c:\windows\system32\igfxdtcm.dll" "5/17/2014 12:16 AM" ""
+ "igfxOSP" "igfxOSP Module" "Intel Corporation" "c:\windows\system32\igfxosp.dll" "5/17/2014 12:16 AM" ""
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "3/4/2014 3:35 PM" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll" "5/11/2013 5:34 AM" ""
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "4/9/2015 9:27 PM" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "11/6/2014 9:10 AM" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes anti-malware\mbamext.dll" "7/7/2014 5:02 PM" ""
+ "StartMenuExt" "Start Menu Helper Extension" "IvoSoft" "c:\windows\system32\startmenuhelper64.dll" "4/20/2014 1:16 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll" "12/12/2014 7:58 PM" ""
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "4/9/2015 9:27 PM" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll" "11/6/2014 8:51 AM" ""
+ "StartMenuExt" "Start Menu Helper Extension" "IvoSoft" "c:\windows\syswow64\startmenuhelper32.dll" "4/20/2014 1:17 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll" "12/12/2014 7:52 PM" ""
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "4/9/2015 9:27 PM" ""
+ "ClassicCopyExt" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer64.dll" "4/20/2014 1:16 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll" "12/12/2014 7:58 PM" ""
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "4/9/2015 9:27 PM" ""
+ "ClassicCopyExt" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer32.dll" "4/20/2014 1:17 PM" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll" "12/12/2014 7:52 PM" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "4/9/2015 9:27 PM" ""
+ " SkyDrivePro1 (ErrorConflict)" "Microsoft OneDrive for Business Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll" "2/10/2015 4:54 AM" ""
+ " SkyDrivePro2 (SyncInProgress)" "Microsoft OneDrive for Business Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll" "2/10/2015 4:54 AM" ""
+ " SkyDrivePro3 (InSync)" "Microsoft OneDrive for Business Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll" "2/10/2015 4:54 AM" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll" "11/6/2014 9:10 AM" ""
+ "ShareOverlay" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer64.dll" "4/20/2014 1:16 PM" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "4/9/2015 9:27 PM" ""
+ "ShareOverlay" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer32.dll" "4/20/2014 1:17 PM" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "4/9/2015 9:27 PM" ""
+ "avast! Online Security" "IE Webrep plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie64.dll" "10/31/2014 8:58 AM" ""
+ "ClassicIEBHO Class" "Customizations for the title bar and status bar of IE" "IvoSoft" "c:\program files\classic shell\classiciedll_64.dll" "4/20/2014 1:16 PM" ""
+ "ExplorerBHO Class" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer64.dll" "4/20/2014 1:16 PM" ""
+ "HP Network Check Helper" "HP Network Check IE Plug-in" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\hpnetworkcheckpluginx64.dll" "8/28/2013 4:30 AM" ""
+ "Lync Browser Helper" "Microsoft Lync" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\ochelper.dll" "2/10/2015 4:49 AM" ""
+ "Microsoft SkyDrive Pro Browser Helper" "Microsoft OneDrive for Business Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll" "2/10/2015 4:54 AM" ""
+ "RoboForm Toolbar Helper" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll" "1/21/2015 9:50 AM" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "4/9/2015 9:27 PM" ""
+ "avast! Online Security" "IE Webrep plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll" "10/31/2014 8:57 AM" ""
+ "ClassicIEBHO Class" "Customizations for the title bar and status bar of IE" "IvoSoft" "c:\program files\classic shell\classiciedll_32.dll" "4/20/2014 1:17 PM" ""
+ "ExplorerBHO Class" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer32.dll" "4/20/2014 1:17 PM" ""
+ "HP Network Check Helper" "HP Network Check IE Plug-in" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\hpnetworkcheckplugin.dll" "8/28/2013 4:28 AM" ""
+ "Powermarks IEC" "" "" "File not found: C:\POWERM~1.5\iec.dll" "" ""
+ "RoboForm Toolbar Helper" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll" "1/21/2015 9:43 AM" ""
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" "" "4/9/2015 9:27 PM" ""
+ "&RoboForm Toolbar" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll" "1/21/2015 9:50 AM" ""
+ "Classic Explorer Bar" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer64.dll" "4/20/2014 1:16 PM" ""
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" "" "4/9/2015 9:27 PM" ""
+ "&RoboForm Toolbar" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll" "1/21/2015 9:43 AM" ""
+ "Classic Explorer Bar" "Adds classic Windows Explorer features" "IvoSoft" "c:\program files\classic shell\classicexplorer32.dll" "4/20/2014 1:17 PM" ""
+ "Powermarks" "" "" "File not found: C:\POWERM~1.5\iec.dll.exe" "" ""
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "4/9/2015 9:27 PM" ""
+ "Classic IE Settings" "Classic IE" "IvoSoft" "c:\program files\classic shell\classicie_32.exe" "4/20/2014 1:17 PM" ""
+ "Fill Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll" "1/21/2015 9:50 AM" ""
+ "HP Network Check" "NCLauncherFromIE" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\nclauncherfromie.exe" "7/9/2012 6:46 PM" ""
+ "Lync Click to Call" "Microsoft Lync" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\ochelper.dll" "2/10/2015 4:49 AM" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\onbttnielinkednotes.dll" "2/10/2015 4:52 AM" ""
+ "Save Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll" "1/21/2015 9:50 AM" ""
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\onbttnie.dll" "2/10/2015 4:45 AM" ""
+ "Show RoboForm Toolbar" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll" "1/21/2015 9:50 AM" ""
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" "" "4/9/2015 9:27 PM" ""
+ "Classic IE Settings" "Classic IE" "IvoSoft" "c:\program files\classic shell\classicie_32.exe" "4/20/2014 1:17 PM" ""
+ "Fill Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll" "1/21/2015 9:43 AM" ""
+ "HP Network Check" "NCLauncherFromIE" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\nclauncherfromie.exe" "7/9/2012 6:46 PM" ""
+ "HP Smart Print" "HP Smart Print Setup" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\smart print 2.0\smartprintsetup.exe" "7/27/2012 2:07 AM" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\onbttnielinkednotes.dll" "2/10/2015 3:54 AM" ""
+ "Save Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll" "1/21/2015 9:43 AM" ""
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\onbttnie.dll" "2/10/2015 4:03 AM" ""
+ "Show RoboForm Toolbar" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll" "1/21/2015 9:43 AM" ""
"Task Scheduler" "" "" "" "" ""
+ "\Apple Diagnostics" "iCloud" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\ereporter.exe" "11/19/2013 10:20 PM" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe" "3/11/2015 2:16 PM" ""
+ "\HP AR Program Upload - cda0a0d02b114632a5883bb53be3cd6bfddfb88db3a94f90afdaac5e6a7b4671" "HPRewards" "TODO: <Company name>" "c:\program files\hp\hp photosmart 7520 series\bin\hprewards.exe" "10/17/2012 7:42 AM" ""
+ "\HP AR Program Upload - df096009dccc46fd8374c57664f861740d5be90240824fd99c2847070ca9a73e" "HPRewards" "TODO: <Company name>" "c:\program files\hp\hp photosmart 7520 series\bin\hprewards.exe" "10/17/2012 7:42 AM" ""
+ "\HP AR Program Upload - e07aaa163a444d7a89e2d09d2b04b6983e52c2b338654a49b212784eb750a095" "HPRewards" "TODO: <Company name>" "c:\program files\hp\hp photosmart 7520 series\bin\hprewards.exe" "10/17/2012 7:42 AM" ""
+ "\HP Photo Creations Communicator" "" "" "c:\programdata\hp photo creations\communicator.exe" "9/16/2013 7:53 PM" ""
+ "\HPCeeScheduleForTheresa" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe" "7/15/2011 7:42 AM" ""
+ "\HPCustParticipation HP Photosmart 7520 series" "HP Customer Participation." "Hewlett-Packard Co." "c:\program files\hp\hp photosmart 7520 series\bin\hpcustpartic.exe" "10/17/2012 7:34 AM" ""
+ "\Microsoft Office 15 Sync Maintenance for TERRI-Theresa Terri" "Microsoft Office Document Cache" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\msosync.exe" "2/10/2015 3:52 AM" ""
+ "\Microsoft OneDrive Auto Update Task-S-1-5-21-3210237183-4050658839-1629989863-1001" "Microsoft OneDrive" "Microsoft Corporation" "c:\users\theresa\appdata\local\microsoft\onedrive\onedrive.exe" "2/26/2015 5:23 AM" ""
+ "\Microsoft\Office\Office Automatic Updates" "Microsoft Office Click-to-Run Client" "Microsoft Corporation" "c:\program files\microsoft office 15\clientx64\officec2rclient.exe" "2/10/2015 4:52 AM" ""
+ "\Microsoft\Office\Office ClickToRun Service Monitor" "Microsoft Office Click-to-Run Client" "Microsoft Corporation" "c:\program files\microsoft office 15\clientx64\officec2rclient.exe" "2/10/2015 4:52 AM" ""
+ "\Microsoft\Office\Office Subscription Maintenance" "Office Subscription Licensing Heartbeat" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilescommonx86\microsoft shared\office15\olicenseheartbeat.exe" "2/10/2015 3:53 AM" ""
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll" "4/1/2014 12:28 AM" ""
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs" "7/18/2013 11:53 AM" ""
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe" "10/28/2014 10:28 PM" ""
+ "\Run RoboForm TaskBar Icon" "RoboForm TaskBar Icon" "Siber Systems" "c:\program files (x86)\siber systems\ai roboform\robotaskbaricon.exe" "1/21/2015 9:44 AM" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "4/9/2015 12:10 PM" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe" "11/20/2014 2:03 PM" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe" "3/3/2015 8:00 PM" ""
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe" "10/6/2014 4:51 PM" ""
+ "avast! Antivirus" "Manages and implements Avast antivirus services for this computer. This includes the real-time shields, the virus chest and the scheduler." "AVAST Software" "c:\program files\avast software\avast\avastsvc.exe" "11/6/2014 8:58 AM" ""
+ "BlueSoleilCS" "Manages bluetooth hardware and provides bluetooth functions." "IVT Corporation" "c:\program files (x86)\ralink corporation\ralink bluetooth stack\bluesoleilcs.exe" "3/22/2013 3:10 AM" ""
+ "BsHelpCS" "Bluetooth Application" "IVT Corporation" "c:\program files (x86)\ralink corporation\ralink bluetooth stack\bshelpcs.exe" "1/10/2013 1:35 AM" ""
+ "ClickToRunSvc" "Manages resource coordination, background streaming, and system integration of Microsoft Office products and their related updates. This service is required to run during the use of any Microsoft Office program, during initial streaming installation and all subsequent updates." "Microsoft Corporation" "c:\program files\microsoft office 15\clientx64\officeclicktorun.exe" "2/10/2015 4:34 AM" ""
+ "cphs" "Intel® Content Protection HECI Service - enables communication with the Content Protection FW" "Intel Corporation" "c:\windows\syswow64\intelcphecisvc.exe" "6/13/2013 7:35 PM" ""
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "2/15/2012 10:43 PM" ""
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "2/15/2012 10:43 PM" ""
+ "gusvc" "gusvc" "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe" "12/14/2006 1:55 AM" ""
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe" "11/4/2013 2:31 PM" ""
+ "hpqwmiex" "HP Software Framework WMI Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe" "5/13/2013 9:01 PM" ""
+ "ICCS" "Intel® Integrated Clock Controller Service - Intel® ICCS" "Intel Corporation" "c:\program files (x86)\intel\intel® integrated clock controller service\iccproxy.exe" "4/24/2012 4:46 PM" ""
+ "igfxCUIService1.0.0.0" "Service for Intel® HD Graphics Control Panel" "Intel Corporation" "c:\windows\system32\igfxcuiservice.exe" "5/17/2014 12:14 AM" ""
+ "Intel® Capability Licensing Service Interface" "Version: 1.28.487.1" "Intel® Corporation" "c:\program files\intel\icls client\heciserver.exe" "5/11/2013 11:45 AM" ""
+ "Intel® Capability Licensing Service TCP IP Interface" "Version: 1.28.487.1" "Intel® Corporation" "c:\program files\intel\icls client\socketheciserver.exe" "5/11/2013 11:45 AM" ""
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe" "10/15/2014 6:57 AM" ""
+ "jhi_service" "Intel® Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel ® DAL" "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\dal\jhi_service.exe" "7/16/2013 10:50 PM" ""
+ "LMS" "Intel® Management and Security Application Local Management Service - Provides OS-related Intel® ME functionality." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe" "6/26/2013 6:39 PM" ""
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe" "4/3/2015 12:20 AM" ""
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe" "11/7/2012 6:37 AM" ""
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\program files\idt\wdm\stacsv64.exe" "7/5/2013 3:54 AM" ""
+ "vToolbarUpdater17.3.0" "ToolbarU Application (Official)" "AVG Secure Search" "c:\program files (x86)\common files\avg secure search\vtoolbarupdater\17.3.0\toolbarupdater.exe" "1/7/2014 10:17 AM" ""
+ "WdNisSvc" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\windows defender\nissrv.exe" "1/30/2015 6:20 AM" ""
+ "WinDefend" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\msmpeng.exe" "1/30/2015 6:20 AM" ""
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe" "10/28/2014 9:36 PM" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "4/9/2015 12:10 PM" ""
+ "3ware" "LSI 3ware SCSI Storport Driver" "LSI" "c:\windows\system32\drivers\3ware.sys" "4/11/2013 6:49 PM" ""
+ "ADP80XX" "PMC-Sierra Storport  Driver For SPC8x6G SAS/SATA controller" "PMC-Sierra" "c:\windows\system32\drivers\adp80xx.sys" "7/12/2013 5:47 PM" ""
+ "amdsata" "AHCI 1.3 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys" "7/8/2013 6:54 PM" ""
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys" "12/11/2012 5:21 PM" ""
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys" "7/8/2013 6:45 PM" ""
+ "AmUStor" "Alocr Micro USB Mass Storage Driver" "Alcor Micro, Corp." "c:\windows\system32\drivers\amustor.sys" "3/11/2014 4:10 AM" ""
+ "AppObserver" "" "" "File not found: C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter1\appobserver64.sys" "" ""
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "PMC-Sierra, Inc." "c:\windows\system32\drivers\arcsas.sys" "7/8/2013 8:50 PM" ""
+ "aswHwid" "avast! HardwareID" "" "c:\windows\system32\drivers\aswhwid.sys" "11/6/2014 8:55 AM" ""
+ "aswMonFlt" "avast! mini-filter driver (aswMonFlt)" "AVAST Software" "c:\windows\system32\drivers\aswmonflt.sys" "11/6/2014 8:53 AM" ""
+ "aswRdr" "avast! WFP Redirect driver" "AVAST Software" "c:\windows\system32\drivers\aswrdr2.sys" "11/6/2014 8:54 AM" ""
+ "aswRvrt" "" "" "c:\windows\system32\drivers\aswrvrt.sys" "11/6/2014 8:53 AM" ""
+ "aswSnx" "avast! virtualization driver (aswSnx)" "AVAST Software" "c:\windows\system32\drivers\aswsnx.sys" "11/21/2014 7:17 AM" ""
+ "aswSP" "avast! Self Protection" "AVAST Software" "c:\windows\system32\drivers\aswsp.sys" "11/6/2014 9:09 AM" ""
+ "aswStm" "avast! StreamFilter Callout Driver" "AVAST Software" "c:\windows\system32\drivers\aswstm.sys" "11/6/2014 9:11 AM" ""
+ "aswVmm" "avast! VM Monitor" "" "c:\windows\system32\drivers\aswvmm.sys" "11/6/2014 8:53 AM" ""
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys" "2/4/2013 3:47 PM" ""
+ "bcmfn2" "BCM Function 2  Device Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\bcmfn2.sys" "8/2/2013 7:59 PM" ""
+ "BtAudioBusSrv" "Bluetooth Audio Bus Driver" "IVT Corporation" "c:\windows\system32\drivers\btaudiobus.sys" "6/14/2012 11:17 PM" ""
+ "BthL2caScoIfSrv" "Bluetooth L2CAP_SCO Interface Profile Driver" "Ralink Corporation" "c:\windows\system32\drivers\btl2cascoif.sys" "7/19/2012 5:47 AM" ""
+ "btUrbFilterDrv" "Bluetooth Filter Driver" "Ralink Corporation" "c:\windows\system32\drivers\ivturbbtflt.sys" "3/24/2013 11:00 PM" ""
+ "dg_ssudbus" "SAMSUNG USB Composite Device Driver (MSS Ver.3)" "DEVGURU Co., LTD.(www.devguru.co.kr)" "c:\windows\system32\drivers\ssudbus.sys" "6/9/2014 9:53 PM" ""
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys" "4/8/2013 10:30 AM" ""
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys" "5/3/2012 3:56 PM" ""
+ "HP8207_8307" "Copyright © 2010 HP" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\hp8207_8307.sys" "2/4/2010 4:20 AM" ""
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys" "3/26/2013 5:36 PM" ""
+ "iaLPSSi_GPIO" "Intel® Serial IO GPIO Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\ialpssi_gpio.sys" "6/26/2013 10:22 AM" ""
+ "iaLPSSi_I2C" "Intel® Serial IO I2C Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\ialpssi_i2c.sys" "6/26/2013 10:22 AM" ""
+ "iaStorA" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastora.sys" "8/28/2013 6:13 PM" ""
+ "iaStorAV" "Intel Rapid Storage Technology driver (inbox) - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorav.sys" "7/31/2013 8:00 PM" ""
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys" "4/11/2011 2:48 PM" ""
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys" "5/17/2014 12:17 AM" ""
+ "intaud_WaveExtensible" "Intel® WiDi Solution" "Intel Corporation" "c:\windows\system32\drivers\intelaud.sys" "3/13/2014 5:59 PM" ""
+ "iwdbus" "Intel® WiDi Solution" "Intel Corporation" "c:\windows\system32\drivers\iwdbus.sys" "3/13/2014 5:59 PM" ""
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys" "3/28/2013 1:42 PM" ""
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys" "3/28/2013 1:45 PM" ""
+ "LSI_SAS3" "LSI SAS Gen3 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas3.sys" "3/15/2013 7:38 PM" ""
+ "LSI_SSS" "LSI SSS PCIe/Flash Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sss.sys" "3/15/2013 7:39 PM" ""
+ "megasas" "MEGASAS RAID Controller Driver for Windows" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys" "7/23/2013 5:08 PM" ""
+ "megasr" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys" "6/3/2013 6:02 PM" ""
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\teedriverx64.sys" "7/2/2013 2:38 PM" ""
+ "mvumis" "Marvell Flash Controller Driver" "Marvell Semiconductor, Inc." "c:\windows\system32\drivers\mvumis.sys" "3/20/2013 1:14 PM" ""
+ "netr28x" "Ralink 802.11 Wireless Adapter Driver" "Ralink Technology, Corp." "c:\windows\system32\drivers\netr28x.sys" "11/26/2013 4:32 AM" ""
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys" "9/12/2011 8:01 PM" ""
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys" "9/12/2011 7:53 PM" ""
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7/Win8" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys" "2/28/2013 11:25 PM" ""
+ "rtbth" "Ralink Bluetooth Adapter" "Ralink Technology, Corp." "c:\windows\system32\drivers\rtbth.sys" "11/28/2013 11:13 PM" ""
+ "RTL8168" "Realtek 8101E/8168/8169 NDIS 6.30 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt630x64.sys" "4/22/2014 10:11 PM" ""
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys" "9/13/2006 9:18 AM" ""
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys" "9/24/2008 2:28 PM" ""
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys" "10/1/2008 5:56 PM" ""
+ "ssudmdm" "@oem98.inf,%ssud.Service.Desc%;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.)" "DEVGURU Co., LTD.(www.devguru.co.kr)" "c:\windows\system32\drivers\ssudmdm.sys" "6/9/2014 9:53 PM" ""
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows x64" "Promise Technology, Inc." "c:\windows\system32\drivers\stexstor.sys" "11/26/2012 8:02 PM" ""
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys" "7/5/2013 3:42 AM" ""
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys" "8/22/2013 7:40 AM" ""
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys" "1/23/2013 4:35 PM" ""
+ "VSTXRAID" "VIA StorX RAID Controller Driver" "VIA Corporation" "c:\windows\system32\drivers\vstxraid.sys" "1/21/2013 3:00 PM" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "3/2/2015 12:52 PM" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "10/28/2014 10:42 PM" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "3/2/2015 12:52 PM" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm" "10/28/2014 9:58 PM" ""
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll" "10/28/2014 9:58 PM" ""
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "3/6/2015 12:23 AM" ""
+ "Capture File Writer" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
+ "CyberLink Audio Decoder (PDVD10)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claud.ax" "1/24/2013 2:46 AM" ""
+ "CyberLink Audio Effect (PDVD10)" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claudfx.ax" "12/25/2009 4:54 AM" ""
+ "CyberLink Audio Watermark Detector" "Audio Watermark Detector" "CyberLink" "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\clawmdetector.ax" "5/15/2012 10:01 PM" ""
+ "CyberLink Audio Wizard" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claudwizard.ax" "8/14/2009 9:26 AM" ""
+ "CyberLink AudioCD Filter (PDVD10)" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claudiocd.ax" "6/23/2009 10:00 AM" ""
+ "Cyberlink Demuxer 2.0" "CLDemuxer2" "Cyberlink" "c:\program files (x86)\cyberlink\powerdvd10\navfilter\cldemuxer2.ax" "1/18/2011 8:29 AM" ""
+ "CyberLink Digest Filter (PDVD10)" "DigestFilter Dynamic Link Library" "" "c:\program files (x86)\cyberlink\powerdvd10\digestfilter.dll" "4/28/2010 8:54 AM" ""
+ "CyberLink DVD Navigator (PDVD10)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clnavx.ax" "12/3/2012 10:36 PM" ""
+ "CyberLink FLV Splitter(PDVD10)" "CyberLink FLV Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clflvsplitter.ax" "9/27/2011 3:30 AM" ""
+ "CyberLink HAM Decoder" "CyberLink Video Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clcvd.ax" "10/25/2012 10:55 PM" ""
+ "CyberLink HD/BD Mixer (PDVD10)" "CLHBMixer" " " "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\clhbmixer.ax" "4/11/2012 6:03 AM" ""
+ "CyberLink Line21 Decoder (PDVD10)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clline21.ax" "7/23/2009 10:21 PM" ""
+ "CyberLink Matroska Splitter(PDVD10)" "CyberLink Matroska Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clmkvsplter.ax" "11/27/2012 4:31 AM" ""
+ "CyberLink MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clsplter.ax" "8/30/2012 11:00 PM" ""
+ "CyberLink MPEG-4 Splitter (PDVD10)" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clm4splt.ax" "10/24/2012 10:33 AM" ""
+ "CyberLink RealAudio Decoder(PDVD10)" "CyberLink RealMedia Audio Decoder" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\clrmaud.ax" "12/24/2009 11:44 PM" ""
+ "CyberLink RealMedia Splitter(PDVD10)" "CyberLink RealMedia Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clrmsplitter.ax" "5/6/2010 5:42 AM" ""
+ "CyberLink RealVideo Decoder(PDVD10)" "CyberLink RealMedia Video Decoder" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clrmvd.ax" "12/24/2009 11:42 PM" ""
+ "Cyberlink SubTitle Importor (PDVD10)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clsubtitle.ax" "6/23/2011 3:22 AM" ""
+ "Cyberlink SubTitle Importor 2.0 (PDVD10)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clsubtitle.ax" "6/23/2011 3:22 AM" ""
+ "CyberLink TimeStretch Filter (PDVD10)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\clauts.ax" "10/3/2010 11:39 PM" ""
+ "CyberLink Tzan Filter (PDVD10)" "CyberLink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\cltzan.ax" "9/15/2011 2:04 AM" ""
+ "CyberLink Video Decoder (PDVD10)" "CyberLink Video Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clcvd.ax" "10/25/2012 10:55 PM" ""
+ "CyberLink Video/SP Decoder (PDVD10)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clvsd.ax" "1/5/2011 7:11 AM" ""
+ "Record Queue" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
+ "WM VIH2 Fix" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
+ "WMT DV Extract Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
+ "WMT Sample Info Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
+ "WMT Switch Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
+ "WMT Virtual Renderer" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
+ "WMT Virtual Source" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "4/1/2014 12:27 AM" ""
"HKLM\Software\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" "" "2/25/2014 10:05 AM" ""
+ "{5FDD51E2-A9D0-44CE-8C8D-162BA0C591A0}" "Microsoft Camera Codec Pack" "Microsoft Corporation" "c:\program files\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll" "10/2/2014 1:06 AM" ""
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" "" "2/25/2014 10:05 AM" ""
+ "{5FDD51E2-A9D0-44CE-8C8D-162BA0C591A0}" "Microsoft Camera Codec Pack" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll" "10/2/2014 12:34 AM" ""
"HKLM\SOFTWARE\Classes\Htmlfile\Shell\Open\Command\(Default)" "" "" "" "2/25/2014 10:19 AM" ""
+ "C:\Program Files\Internet Explorer\IEXPLORE.EXE" "Internet Explorer" "Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe" "10/30/2014 11:14 PM" ""
"HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" "" "4/29/2014 3:28 PM" ""
+ "_Wow64" "" "" "File not found: C:\WINDOWS\syswow64\Wow64.dll" "" ""
+ "_Wow64cpu" "" "" "File not found: C:\WINDOWS\syswow64\Wow64cpu.dll" "" ""
+ "_Wow64win" "" "" "File not found: C:\WINDOWS\syswow64\Wow64win.dll" "" ""
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "2/25/2014 10:11 AM" ""
+ "HP BC11 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinkstsbc11lm.dll" "6/13/2012 5:23 AM" ""
+ "HP Discovery Port Monitor (HP Photosmart 7520 series)" "HP Discovery Port Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpdiscopmbc11.dll" "10/17/2012 7:31 AM" ""
+ "HP Universal Port Monitor" "Port Monitor Server DLL" "Hewlett-Packard" "c:\windows\system32\hpbprtmon.dll" "12/1/2012 2:16 AM" ""


#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 10 April 2015 - 12:13 AM

Go ahead with the two scans in my last post,  we  will move from there. Any improvement so far?



#9 mom23kidz

mom23kidz
  • Topic Starter

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 10 April 2015 - 12:39 AM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 4/10/2015
Scan Time: 1:30:12 AM
Logfile: 
Administrator: Yes
 
Version: 2.01.4.1018
Malware Database: v2015.04.10.02
Rootkit Database: v2015.03.31.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Theresa
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 364360
Time Elapsed: 8 min, 50 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#10 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 10 April 2015 - 12:44 AM

Ok, when ready post the ZHP cleaner log, and tell me how the machine is performing.



#11 mom23kidz

mom23kidz
  • Topic Starter

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 10 April 2015 - 12:46 AM

  ~ ZHPCleaner v2015.4.9.163 by Nicolas Coolman (10/04/2015)

~ Run by Theresa (Administrator)  (10/04/2015 01:12:26)
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Theresa\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Theresa\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 81, 64-bit  (Build 9600)
 
 
---\\  Services (1)
 
 
 
---\\  Browser internet (5)
DELETED: [6t5oqan3.default-1428595939916] - user_pref("extensions.xpiState", "{\"winreg-app-user\":{\"SoundFrost@helper.com\":{\"d\":\"C:\\\\Pro[...] (Toolbar.AVGSafeGuard)
MOVED file: C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.3.1.91   (Toolbar.AVGSafeGuard)
MOVED file: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\npsitesafety.dll [AVG Technologies - npsitesafety (Official)] (Toolbar.AVGSearch)
REPLACED Proxy: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 ( 1 )
REPLACED Proxy: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride ( <local> )
 
 
---\\  Hosts file (1)
~ The hosts file is legitimate (22)
 
 
---\\  Scheduled automatic tasks. (0)
~ No malicious items found.
 
 
---\\  Explorer ( File, Folder) (13)
MOVED file: C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [AVG Secure Search - ToolbarU Application (Official)] (Toolbar.AVGSafeGuard)
MOVED file: C:\Program Files (x86)\Common Files\AVG Secure Search\InstalledProducts.ini   (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search\DriverInstaller (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search\NativeBrowserApi (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater (Toolbar.AVGSearch)
MOVED folder: C:\Program Files (x86)\Common Files\AVG Secure Search (Toolbar.AVGSearch)
MOVED folder: C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt (Toolbar.AVGSafeGuard)
MOVED folder: C:\ProgramData\AVG SafeGuard toolbar\Logger (Toolbar.AVGSafeGuard)
MOVED folder: C:\ProgramData\AVG SafeGuard toolbar (Toolbar.AVGSafeGuard)
 
 
---\\  Registry ( Key, Value, Data) (41)
DELETED value: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\avg@toolbar [C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.3.1.91] (Toolbar.AVGSafeGuard)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin [] (Toolbar.AVGSearch)
DELETED key^: [X64] HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.3.0 [C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe (Not File)] (Toolbar.AVGSafeGuard)
DELETED key*: HKEY_USERS\S-1-5-21-3210237183-4050658839-1629989863-1001\Software\AVG SafeGuard toolbar [] (Toolbar.AVGSafeGuard)
DELETED key*: HKEY_USERS\S-1-5-21-3210237183-4050658839-1629989863-1001\Software\Red Sky [] (Adware.DownTango)
DELETED key*: HKEY_USERS\S-1-5-21-3210237183-4050658839-1629989863-1001\Software\USyndication [] (Trojan.USyndication)
DELETED key*: HKEY_USERS\S-1-5-21-3210237183-4050658839-1629989863-1001\Software\usyndication.com [] (Trojan.USyndication)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\S [] (Toolbar.Agent)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi [ScriptHelperApi Class] (Toolbar.Agent)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 [ScriptHelperApi Class] (Toolbar.Agent)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE [ViProtocolOLE Class] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 [ViProtocolOLE Class] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} [IBrowserWndAPI] (Toolbar.AVGSearch )
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} [IPugiObj] (Toolbar.AVGSearch )
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} [IOutlookSecurityManager2] (PUP.WhiteSmoke)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} [IOutlookSecurityManager] (PUP.WhiteSmoke)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL [] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman] (Trojan.Camec)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI [BrowserWndAPI Class] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1 [BrowserWndAPI Class] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj [AVG SafeGuard toolbar] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1 [AVG SafeGuard toolbar] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\PROTOCOLS\handler\viprotocol [viprotocol: protocol OLE] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update SourceApp [] (PUP.SourceApp)
DELETED key*: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} [C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\17.3.0 (Not File)] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\AVG SafeGuard toolbar [] (Toolbar.AVGSafeGuard)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\AVG Security Toolbar [] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} [IBrowserWndAPI] (Toolbar.AVGSearch )
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} [IPugiObj] (Toolbar.AVGSearch )
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} [IOutlookSecurityManager2] (PUP.WhiteSmoke)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} [IOutlookSecurityManager] (PUP.WhiteSmoke)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\HomeworkSimplified_7ebar Uninstall Internet Explorer [Mindspark Interactive Network] (PUP.MindSpark)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateSourceApp_RASAPI32 [] (PUP.SourceApp)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateSourceApp_RASMANCS [] (PUP.SourceApp)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilSourceApp_RASAPI32 [] (PUP.SourceApp)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilSourceApp_RASMANCS [] (PUP.SourceApp)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} [C:\Program Files (x86)\AVG SafeGuard toolbar (Not File)] (Toolbar.AVGSafeGuard)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} [C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\17.3.0 (Not File)] (Toolbar.AVGSearch)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}\InprocServer32 [C:\Program Files (x86)\SourceApp\bin\{610d5cbc-ee01-49d2-95d8-9ea07b8aca33}64.dll (Not File)] (PUP.SourceApp)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} [Manager Class] (PUP.SourceApp)
 
 
---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Opera Software)
~ The system has been restarted.
 
 
---\\ Statistics
~ Items scanned : 80372
~ Items found : 0
~ Items repaired : 60
 
 
End of clean at 01:17:44
===================
ZHPCleaner-[R]-10042015-01_17_44.txt


#12 mom23kidz

mom23kidz
  • Topic Starter

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 10 April 2015 - 12:48 AM

Much better!!  :bounce:



#13 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 10 April 2015 - 12:51 AM

Ok, lets run  a couple more scans. :)

 

 

Step 1: eScanAV.

 

Disable your antivirus prior to this scan.

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

Download the eScanAV Anti-Virus Toolkit (MWAV)
http://www.escanav.com/english/content/products/downloadlink/downloadcounter.asp?pcode=MWAV&src=english_dwn&type=alter
Save the file to your desktop.
Right click run as administrator.
A new icon will appear on your desktop.
Right click run as administrator on new icon.
Click on the update tab.
ZCDJtZN.png
Once you have updated the program, make sure the settings are the same as the picture below.
7DUFn5c.png
Once you have made sure the settings match the picture, hit the Scan & Clean button.
Upon scan completion, click View Log.
ApSVXsQ.png
Copy and paste entire log into your next reply.
Note: Reboot if needed to remove infections.

 

Step 2: Zemana

 

Run a full scan with Zemana antimalware.

http://www.zemana.us/product/zemana-antimalware/default.aspx

Install and select deep scan.

jdmyscF.jpg

Remove any infections found.

Then click on the icon in the pic below.

DOLGyto.jpg

Double click on the scan log, copy and paste here in your reply.

 

 

Step 3: Junkware Removal Tool.
 
Please download Junkware Removal Tool and save it on your desktop.

  • Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log is saved to your desktop and will automatically open.
  • Please post the JRT log.

Step 4: Adware Cleaner.
 
Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.



#14 INOCservices

INOCservices

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:19 AM

Posted 10 April 2015 - 01:06 AM

Glad you're laptop speed's a lot more better! Next time, it'd definitely to be more organized with files and programs so you don't get dumped with too much cache and unnecessary files. :)



#15 mom23kidz

mom23kidz
  • Topic Starter

  • Members
  • 77 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Florida
  • Local time:07:19 PM

Posted 10 April 2015 - 01:38 AM

This is my desktop  :wink:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users