Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Very Slow Response Time: Infection or Backup Software?


  • Please log in to reply
24 replies to this topic

#1 Hal06

Hal06

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 07 June 2015 - 07:10 AM

Hello. Over the past few days the various software programs on my HP laptop have been slow to respond. For example, I click on a bookmark in Firefox and nothing happens for a few seconds when in the past it always reacted instantly.

 

Could this be some sort of malware? I do have Idrive backup running but I've had that for a long time and it's never caused such slowness.

 

Many thanks for any assistance.



BC AdBot (Login to Remove)

 


#2 severac

severac

  • Members
  • 872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Serbia
  • Local time:03:24 PM

Posted 07 June 2015 - 07:29 AM

Do you have some antivirus program? Scan and you may have find the answer. :wink:


I would like to help you to remove malware. Let's look inside.   :busy:

But I don't know to solve all PC problems.  :smash: 

 


#3 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 07 June 2015 - 07:32 AM

I ran Malwarebytes and deleted what it suggested.



#4 severac

severac

  • Members
  • 872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Serbia
  • Local time:03:24 PM

Posted 07 June 2015 - 07:38 AM

Maybe you should use CCleaner or other software that will help you to clean your computer and remove junk and unnecessary files, programs, services, etc.


I would like to help you to remove malware. Let's look inside.   :busy:

But I don't know to solve all PC problems.  :smash: 

 


#5 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 07 June 2015 - 01:24 PM

CCleaner says it will permanently delete some files. It looks like all the files it wants to delete are temporary files and clipboards. Is there anything I should make sure to check or uncheck?



#6 severac

severac

  • Members
  • 872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Serbia
  • Local time:03:24 PM

Posted 07 June 2015 - 01:34 PM

Well, I always click Clean/Delete and there are no problems, but if it is possible, check what do you want to delete. Also uninstal rarely used applications and uncheck programs that don't need to run when your system starts. 


I would like to help you to remove malware. Let's look inside.   :busy:

But I don't know to solve all PC problems.  :smash: 

 


#7 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:24 AM

Posted 07 June 2015 - 03:54 PM

Download and run wipe  and system ninja,

 

https://privacyroot.com/software/www/en/wipe.php

https://singularlabs.com/software/system-ninja/

 

Then.....

 

Go ahead and install ccleaner Now that you have the program installed go ahead and run the cleaner function.

https://www.piriform.com/ccleaner/download
kwLN4uv.png


Now that you have cleaned out some temp files, lets go ahead and disable all of the items starting up with your machine except your antivirus. To do this you will need to click on tools then start up select each item then disable.

GjWwvEu.png

Now that you have disabled those un-needed start ups lets go into the settings, we will have Ccleaner run when your machine boots, so that you will never have to worry about cleaning temp files again.

To do this:

  • Hit options.
  • Settings.
  • Place a tick to run Ccleaner when the computer starts.


Lxioao1.png

Now go to the advanced tab, and select close program after cleaning, now run the cleaner again this will close Ccleaner.

SnqZ2JW.png

 

Reboot your machine and then follow the  instructions below.

 

Step 1: eScanAV.

 

Disable your antivirus prior to this scan.

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

Download the eScanAV Anti-Virus Toolkit (MWAV)
http://www.escanav.com/english/content/products/downloadlink/downloadcounter.asp?pcode=MWAV&src=english_dwn&type=alter

 

Source

http://www.escanav.com/english/content/products/downloadlink/downloadproduct.asp?pcode=MWAV
Save the file to your desktop.
Right click run as administrator.
A new icon will appear on your desktop.
Right click run as administrator on new icon.
Click on the update tab.
ZCDJtZN.png
Once you have updated the program, make sure the settings are the same as the picture below.
7DUFn5c.png
Once you have made sure the settings match the picture, hit the Scan & Clean button.
Upon scan completion, click View Log.
ApSVXsQ.png
Copy and paste entire log into your next reply.
Note: Reboot if needed to remove infections.

 

Step 2: Zemana

 

Run a full scan with Zemana antimalware.

http://www.zemana.us/product/zemana-antimalware/default.aspx

Install and select deep scan.

jdmyscF.jpg

Remove any infections found.

Then click on the icon in the pic below.

DOLGyto.jpg

Double click on the scan log, copy and paste here in your reply.

 

 

Step 3: Junkware Removal Tool.
 
Please download Junkware Removal Tool and save it on your desktop.

Source

http://thisisudax.org/

  • Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log is saved to your desktop and will automatically open.
  • Please post the JRT log.

Step 4: Adware Cleaner.
 
Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


#8 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 08 June 2015 - 06:16 AM

07 Jun 2015 19:26:40 [1248] - **********************************************************
07 Jun 2015 19:26:40 [1248] - MWAV - eScanAV AntiVirus Toolkit.
07 Jun 2015 19:26:40 [1248] - Copyright © MicroWorld Technologies
07 Jun 2015 19:26:40 [1248] - **********************************************************
07 Jun 2015 19:26:40 [1248] - Source: C:\Users\Harold\Downloads\mwav.exe
07 Jun 2015 19:26:40 [1248] - Version 14.0.185 (C:\USERS\HAROLD\APPDATA\LOCAL\TEMP\MEXETMP.EX~)
07 Jun 2015 19:26:40 [1248] - Log File: C:\Users\Harold\AppData\Local\Temp\LOG\MWAV.LOG
07 Jun 2015 19:26:40 [1248] - MWAV Registered: TRUE
07 Jun 2015 19:26:40 [1248] - User Account: Harold (Administrator Mode)
07 Jun 2015 19:26:40 [1248] - OS Type: Windows Workstation [InstallType: Client]
07 Jun 2015 19:26:40 [1248] - OS: Windows 7 64-Bit [OS Install Date: 14 Jun 2014 16:35:12]
07 Jun 2015 19:26:40 [1248] - Ver: Personal Service Pack 1 (Build 7601)
07 Jun 2015 19:26:40 [1248] - System Up Time: 34 Minutes, 59 Seconds


07 Jun 2015 19:26:40 [1248] - Parent Process Name : C:\Users\Harold\AppData\Local\Temp\mexe.com
07 Jun 2015 19:26:40 [1248] - Windows Root  Folder: C:\Windows
07 Jun 2015 19:26:40 [1248] - Windows Sys32 Folder: C:\Windows\system32
07 Jun 2015 19:26:40 [1248] - DHCP NameServer: 10.0.1.1
07 Jun 2015 19:26:40 [1248] - Interface0 DHCPNameServer: 10.0.1.1
07 Jun 2015 19:26:40 [1248] - Interface1 DHCPNameServer: 40.22.1.201 40.22.1.203
07 Jun 2015 19:26:40 [1248] - Local Fixed Drives: c:\,d:\,f:\
07 Jun 2015 19:26:40 [1248] - MWAV Mode(A): Scan and Clean files (for viruses, adware and spyware)
07 Jun 2015 19:26:40 [1248] - [CREATED ZIP FILE: C:\Users\Harold\AppData\Local\Temp\pinfect.zip]
07 Jun 2015 19:26:40 [1248] - Command Line Options Given: /xsign
07 Jun 2015 19:26:42 [1248] - Latest Date of files inside MWAV: Mon Jun  8 01:21:38 2015.
07 Jun 2015 19:26:43 [1248] - Loading/Creating FileScan Cache Database C:\ProgramData\MicroWorld\MWAV\ESCANDBY.MDB [Log: C:\Users\Harold\AppData\Local\Temp\LOG\ESCANDB.LOG]
07 Jun 2015 19:26:43 [1248] - Loaded/Created FileScan Cache Database...
07 Jun 2015 19:26:43 [1248] - Loading AV Library [DB]...
07 Jun 2015 19:26:50 [1248] - ArchiveScan: DISABLED
07 Jun 2015 19:26:50 [1248] - AV Library Loaded - MultiThreaded - 8 : [DB-DIRECT].
07 Jun 2015 19:26:50 [1248] - MWAV doing self scanning...
07 Jun 2015 19:26:50 [1248] - MWAV files are clean.
07 Jun 2015 19:26:59 [1248] - ArchiveScan: DISABLED
07 Jun 2015 19:26:59 [1248] - Virus Database Date: 07 Jun 2015
07 Jun 2015 19:26:59 [1248] - Virus Database Count: 5705290
07 Jun 2015 19:26:59 [1248] - Sign Version: 7.60952 [519704]
 
07 Jun 2015 19:27:18 [1248] - **********************************************************
07 Jun 2015 19:27:18 [1248] - MWAV - eScanAV AntiVirus Toolkit.
07 Jun 2015 19:27:18 [1248] - Copyright © MicroWorld Technologies
07 Jun 2015 19:27:18 [1248] -
07 Jun 2015 19:27:18 [1248] - Support: support@escanav.com
07 Jun 2015 19:27:18 [1248] - Web: http://www.escanav.com
07 Jun 2015 19:27:18 [1248] - **********************************************************
07 Jun 2015 19:27:18 [1248] - Version 14.0.185[DB] (C:\USERS\HAROLD\APPDATA\LOCAL\TEMP\MEXETMP.EX~)
07 Jun 2015 19:27:18 [1248] - Log File: C:\Users\Harold\AppData\Local\Temp\LOG\MWAV.LOG
07 Jun 2015 19:27:18 [1248] - User Account: Harold (Administrator Mode)
07 Jun 2015 19:27:18 [1248] - Parent Process Name : C:\Users\Harold\AppData\Local\Temp\mexe.com
07 Jun 2015 19:27:18 [1248] - Windows Root  Folder: C:\Windows
07 Jun 2015 19:27:18 [1248] - Windows Sys32 Folder: C:\Windows\system32
07 Jun 2015 19:27:18 [1248] - OS: Windows 7 64-Bit [OS Install Date: 14 Jun 2014 16:35:12]
07 Jun 2015 19:27:18 [1248] - Ver: Personal Service Pack 1 (Build 7601)
07 Jun 2015 19:27:18 [1248] - Latest Date of files inside MWAV: Mon Jun  8 01:21:38 2015.
07 Jun 2015 19:27:18 [1248] - Priority: NORMAL
 
07 Jun 2015 19:27:18 [1af4] - Options Selected by User:
07 Jun 2015 19:27:18 [1af4] - Memory Check: Enabled
07 Jun 2015 19:27:18 [1af4] - Registry Check: Enabled
07 Jun 2015 19:27:18 [1af4] - StartUp Folder Check: Enabled
07 Jun 2015 19:27:18 [1af4] - System Folder Check: Enabled
07 Jun 2015 19:27:18 [1af4] - Services Check: Enabled
07 Jun 2015 19:27:18 [1af4] - Scan Spyware: Enabled
07 Jun 2015 19:27:18 [1af4] - Scan Archives: Disabled
07 Jun 2015 19:27:18 [1af4] - Drive Check: Enabled
07 Jun 2015 19:27:18 [1af4] - All Drive Check :Disabled
07 Jun 2015 19:27:18 [1af4] - Drive Selected = C:\
07 Jun 2015 19:27:18 [1af4] - Folder Check: Disabled
07 Jun 2015 19:27:18 [1af4] - SCAN: All_Files [ANSI]
07 Jun 2015 19:27:18 [1af4] - MWAV Mode(B): Scan and Clean files (for viruses, adware and spyware)
 
07 Jun 2015 19:27:18 [1af4] - Scanning DNS Records...
07 Jun 2015 19:27:18 [1af4] - Scanning Master Boot Record (User)...
07 Jun 2015 19:27:19 [1af4] - Scanning Logical Boot Records...
07 Jun 2015 19:27:20 [1af4] - ***** Scanning For Hidden Rootkit Processes *****
07 Jun 2015 19:27:20 [1af4] - ***** Scanning For Hidden Rootkit Services *****
 
07 Jun 2015 19:27:30 [1af4] - ***** Scanning Memory Files *****
 
07 Jun 2015 19:27:45 [1af4] - ***** Scanning Registry Files *****
07 Jun 2015 19:27:49 [1af4] - ERROR(3)!!! Invalid Entry Itibiti.exe = C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe (in key HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run). Action Taken: Removing it.
07 Jun 2015 19:27:49 [1af4] - ERROR(3)!!! Invalid Entry  Maintance = "C:\Program Files\\net1.exe" windowsStartup (in key HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run). Action Taken: Removing it.
 
07 Jun 2015 19:27:49 [1af4] - ***** Scanning StartUp Folders *****
07 Jun 2015 19:29:49 [1664] - ScanFile (C:\ProgramData\Apple Computer\Installer Cache\QuickTime 7.76.80.95\QuickTime.msi) took 5975 ms
 
07 Jun 2015 19:30:40 [1af4] - ***** Scanning Service Files *****
07 Jun 2015 19:31:10 [1af4] - Giving rights(a) to [HKLM64\SYSTEM\CurrentControlSet\Services\TrkWks].
 
07 Jun 2015 19:31:14 [1af4] - ***** Scanning Registry and File system for Adware/Spyware *****
07 Jun 2015 19:31:14 [1af4] - Loading Spyware Signatures from new External Database [Name: C:\Users\Harold\AppData\Local\Temp\spydb.avs, Size: 464724]...
07 Jun 2015 19:31:14 [1af4] - Indexed Spyware Databases Successfully Created...
 
 
07 Jun 2015 19:31:18 [1af4] - ***** Scanning Registry Files *****
 
07 Jun 2015 19:31:18 [1af4] - ***** Scanning System32 Folders *****
07 Jun 2015 19:31:35 [0a40] - ScanFile (C:\Windows\SysWOW64\d3dx9_36.dll) took 5242 ms
07 Jun 2015 19:31:37 [1b94] - ScanFile (C:\Windows\SysWOW64\dbgeng.dll) took 5366 ms
 
 
07 Jun 2015 19:32:34 [1af4] - ***** Scanning Drive C:\ *****
07 Jun 2015 19:32:41 [1904] - Scanning File C:\AdwCleaner\Quarantine\C\Users\Harold\AppData\Local\Binkiland\Application\binkiland.exe.vir
07 Jun 2015 19:32:41 [1904] - File C:\AdwCleaner\Quarantine\C\Users\Harold\AppData\Local\Binkiland\Application\binkiland.exe.vir infected by "Adware.Adinstaller.C (DB)" Virus! Action Taken: File Renamed.

07 Jun 2015 19:32:41 [17f0] - ScanFile (C:\AdwCleaner\Quarantine\C\Users\Harold\AppData\Local\Binkiland\Application\31.0.1650.23\chrome_child.dll.vir) took 5523 ms
07 Jun 2015 19:35:06 [1664] - ScanFile (C:\Program Files\Microsoft Office 15\root\Integration\QFE31928.msp) took 6989 ms
07 Jun 2015 19:35:06 [17f0] - ScanFile (C:\Program Files\Microsoft Office 15\root\Integration\QFE31927.msp) took 7020 ms
07 Jun 2015 19:35:40 [18d8] - ScanFile (C:\Program Files\Microsoft Office 15\root\office15\ADDINS\Power Map Excel Add-in\microsoft.data.recommendation.client.core.dll) took 5491 ms
07 Jun 2015 19:35:50 [1904] - ScanFile (C:\Program Files\Microsoft Office 15\root\office15\EXCEL.EXE.bak) took 5273 ms
07 Jun 2015 19:35:50 [17f0] - ScanFile (C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe) took 5179 ms
07 Jun 2015 19:35:50 [18d8] - ScanFile (C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe.bak) took 5756 ms
07 Jun 2015 19:35:52 [18fc] - ScanFile (C:\Program Files\Microsoft Office 15\root\office15\excel.exe) took 7286 ms
07 Jun 2015 19:36:25 [1904] - ScanFile (C:\Program Files\Microsoft Office 15\root\office15\PDFREFLOW.EXE.bak) took 7519 ms
07 Jun 2015 19:36:26 [0a40] - ScanFile (C:\Program Files\Microsoft Office 15\root\office15\PROOF\1036\MSGR3FR.DLL) took 7395 ms
07 Jun 2015 19:38:55 [18d8] - ScanFile (C:\Program Files (x86)\Common Files\Intuit\ShippingManager\ZRush_ShipRush9_QB.ocx) took 7410 ms
07 Jun 2015 19:39:28 [18fc] - ScanFile (C:\Program Files (x86)\CyberLink\Power2Go8\Language\Chs\SecureBrowser.exe) took 5023 ms
07 Jun 2015 19:39:43 [1904] - ScanFile (C:\Program Files (x86)\CyberLink\Power2Go8\Language\Esp\SecureBrowser.exe) took 7301 ms
07 Jun 2015 19:39:50 [18fc] - ScanFile (C:\Program Files (x86)\CyberLink\Power2Go8\Language\Hun\SecureBrowser.exe) took 5725 ms
07 Jun 2015 19:40:05 [0a40] - ScanFile (C:\Program Files (x86)\CyberLink\Power2Go8\Language\Ptb\SecureBrowser.exe) took 6459 ms
07 Jun 2015 19:40:12 [1b94] - ScanFile (C:\Program Files (x86)\CyberLink\Power2Go8\Language\Slv\SecureBrowser.exe) took 6661 ms
07 Jun 2015 19:42:54 [17f0] - ScanFile (C:\Program Files (x86)\Google\Update\Install\{9249D0CD-8F9D-4457-9D32-3E0676AAFD4C}\40.0.2214.115_40.0.2214.111_chrome_updater.exe) took 7925 ms
07 Jun 2015 19:43:49 [17f0] - ScanFile (C:\Program Files (x86)\HP Games\Bejeweled 3\bejeweled3-WT.exe) took 6318 ms
07 Jun 2015 19:44:06 [1904] - ScanFile (C:\Program Files (x86)\HP Games\Luxor HD\LUXOR HD-WT.exe) took 5740 ms
07 Jun 2015 19:44:08 [18d8] - ScanFile (C:\Program Files (x86)\HP Games\Penguins!\Penguins-WT.exe) took 5335 ms
07 Jun 2015 19:45:18 [1b94] - ScanFile (C:\Program Files (x86)\Intuit\QuickBooks 2014\Components\Support\RemoteAssist.exe) took 6552 ms
07 Jun 2015 19:45:26 [18fc] - ScanFile (C:\Program Files (x86)\Intuit\QuickBooks 2014\convertible_noAE.exe) took 10686 ms
07 Jun 2015 19:46:21 [1904] - ScanFile (C:\Program Files (x86)\Online Services\Skype\SkypeSetup.exe) took 22745 ms
07 Jun 2015 19:46:21 [1904] - Scanning of C:\Program Files (x86)\Online Services\Skype\SkypeSetup.exe Timed out!!!
07 Jun 2015 19:46:58 [1b94] - ScanFile (C:\Program Files (x86)\TurboTax\Premier 2014\32bit\awesomium.dll) took 5133 ms
07 Jun 2015 19:47:07 [18fc] - ScanFile (C:\Program Files (x86)\Skype\Phone\Skype.exe) took 15990 ms
07 Jun 2015 19:47:24 [1904] - ScanFile (C:\Program Files (x86)\TurboTax\Premier 2014\Forms\1040_14\dhtmlhelp\hyper.xml) took 8127 ms
07 Jun 2015 19:47:32 [0a40] - ScanFile (C:\Program Files (x86)\TurboTax\Premier 2014\Forms\1040_14\ial\offline-content.js) took 6303 ms
07 Jun 2015 19:47:34 [18d8] - ScanFile (C:\Program Files (x86)\TurboTax\Premier 2014\Forms\1040_14\interview\bundle.js) took 8221 ms
07 Jun 2015 19:48:41 [1904] - ScanFile (C:\SWSetup\Drivers\Audio\WDM\RTHDCPL.exe) took 5163 ms
07 Jun 2015 19:49:12 [17f0] - ScanFile (C:\SWSetup\Drivers\SynTP\WinWDF\x86\SynTPRes.dll) took 7815 ms
07 Jun 2015 19:49:43 [18d8] - Scanning File C:\System Volume Information\{fb1b0fda-0646-11e5-8bd8-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [1664] - Scanning File C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [1904] - Scanning File C:\System Volume Information\{c3f3deac-0d67-11e5-a263-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [0c14] - Scanning File C:\System Volume Information\{fb1b0f80-0646-11e5-8bd8-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [17f0] - Scanning File C:\System Volume Information\{3fbf3eb3-0d0a-11e5-979a-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [1b94] - Scanning File C:\System Volume Information\{004bbbd7-016a-11e5-8c80-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [18fc] - Scanning File C:\System Volume Information\{fb1b124a-0646-11e5-8bd8-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [1664] - Scanning File C:\System Volume Information\{fb1b14b2-0646-11e5-8bd8-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:49:43 [18d8] - Scanning File C:\System Volume Information\{fb1b1006-0646-11e5-8bd8-6cc2175ed54a}{3808876b-c176-4e48-b7ae-04046e6cc752}
07 Jun 2015 19:50:34 [17f0] - ScanFile (C:\Users\Harold\Documents\01Chi Psi\01Plunkett Memorial Trust\Bank Statements\SunTrust\SunTrust Securities 1998.pdf) took 5397 ms
07 Jun 2015 19:50:34 [1664] - ScanFile (C:\Users\Harold\Documents\01Chi Psi\01Plunkett Memorial Trust\Bank Statements\Wachovia\Wachovia Checking 2006.pdf) took 5538 ms
07 Jun 2015 19:51:06 [1904] - ScanFile (C:\Users\Harold\Documents\02Master Legal Documents\Articles\Current Status of LPs.pdf) took 6833 ms
07 Jun 2015 19:51:21 [0a40] - ScanFile (C:\Users\Harold\Documents\03Clients\ADL 2\Plunkett\Plunkett Articles of Incorp.pdf) took 5179 ms
07 Jun 2015 19:51:27 [1904] - ScanFile (C:\Users\Harold\Documents\03Clients\Atlanta Flatbread\Atlanta Flatbread\Atlanta Flatbread - City Center\Lease Issues\Lindbergh Lease.pdf) took 5944 ms
07 Jun 2015 19:51:32 [1664] - ScanFile (C:\Users\Harold\Documents\03Clients\Atlanta Flatbread\Atlanta Flatbread\Atlanta Flatbread - Webb Gin\Webb Gin Lease\Webb Gin Lease.pdf) took 6412 ms
07 Jun 2015 19:51:32 [18fc] - ScanFile (C:\Users\Harold\Documents\03Clients\Atlanta Flatbread\Atlanta Flatbread\Atlanta Flatbread - Webb Gin\Webb Gin Lease\The Avenue Webb Gin Handbook 8.30.05.pdf) took 8565 ms
07 Jun 2015 19:52:05 [0c14] - ScanFile (C:\Users\Harold\Documents\Career\Kess 2014\02-New York Estate Tax-Residency Update.pdf) took 5476 ms
07 Jun 2015 19:52:08 [18fc] - ScanFile (C:\Users\Harold\Documents\Career\Kess 2014\17-Long-Term Care.pdf) took 5366 ms
07 Jun 2015 19:57:04 [0a40] - ScanFile (C:\Users\Harold\Downloads\mbam-setup-2.1.6.1022.exe) took 8096 ms
07 Jun 2015 19:57:08 [0c14] - ScanFile (C:\Users\Harold\Downloads\mwav.exe) took 10889 ms
07 Jun 2015 19:57:09 [1b94] - ScanFile (C:\Users\Harold\Downloads\Silverlight_x64.exe) took 9314 ms
07 Jun 2015 19:57:25 [18d8] - ScanFile (C:\Users\Harold\Downloads\w_turbotax_1040_prm_2014.120.0100.exe) took 6879 ms
07 Jun 2015 19:58:07 [1b94] - ScanFile (C:\Users\Harold\Music\iTunes\iTunes Music\Mobile Applications\QR Reader 1.6.ipa) took 9953 ms
07 Jun 2015 19:58:15 [0a40] - ScanFile (C:\Users\Harold\Music\iTunes\iTunes Music\Mobile Applications\Mi TransMi 4.0.2.ipa) took 18330 ms
07 Jun 2015 19:58:24 [1af4] - INVALID ATTRIBUTES FOR FOLDER [C:\Users\Harold\Music\iTunes\iTunes Music\Music\Compilations\Dvorák_ Symphony #9_ Prokofiev_ Symphony]: LastErr: 2. IGNORING.
07 Jun 2015 19:58:41 [1af4] - INVALID ATTRIBUTES FOR FOLDER [C:\Users\Harold\Music\iTunes\iTunes Music\Music\Gerd Guglhör, Harald Feller, Orpheus Cho\Dvorák_ Mass in D Major Op. 86 - Janácek]: LastErr: 2. IGNORING.
07 Jun 2015 20:03:19 [0a40] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\1AA3822FC9687944F881903EC6760A41\14.0.426\_lld.muimosewa_tib23_rgnerepw_) took 5382 ms
07 Jun 2015 20:04:00 [1664] - ScanFile (C:\Windows\Installer\203e5755.msi) took 6896 ms
07 Jun 2015 20:04:00 [1904] - ScanFile (C:\Windows\Installer\273a526e.msi) took 5695 ms
07 Jun 2015 20:04:02 [18fc] - ScanFile (C:\Windows\Installer\26423e.msp) took 6848 ms
07 Jun 2015 20:04:13 [17f0] - ScanFile (C:\Windows\Installer\d51b4b.msi) took 6942 ms
07 Jun 2015 20:06:52 [17f0] - ScanFile (C:\Windows\System32\Adobe\Shockwave 12\Xtras\Flash Asset.x32) took 5024 ms
07 Jun 2015 20:07:24 [17f0] - ScanFile (C:\Windows\System32\d3dx9_36.dll) took 6521 ms
07 Jun 2015 20:07:26 [1664] - ScanFile (C:\Windows\System32\dbgeng.dll) took 6770 ms
07 Jun 2015 20:09:33 [1904] - ScanFile (C:\Windows\System32\Macromed\Flash\Flash32_17_0_0_169.ocx) took 7160 ms
07 Jun 2015 20:14:59 [0a40] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.18044_none_ca35d705cadb185a\ntoskrnl.exe) took 6131 ms
07 Jun 2015 20:26:57 [0a40] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.17514_none_96780994e42bbfd5\mshtml.dll) took 6084 ms
07 Jun 2015 20:27:05 [18fc] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-ieframe_31bf3856ad364e35_10.2.9200.16521_none_ecd0b08652f36907\ieframe.dll) took 5663 ms
07 Jun 2015 20:27:12 [1b94] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-ieframe_31bf3856ad364e35_10.2.9200.20831_none_d5e39a706cb235e6\ieframe.dll) took 5320 ms
07 Jun 2015 20:27:12 [1664] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-ieframe_31bf3856ad364e35_10.2.9200.16921_none_eca570d65313d8cb\ieframe.dll) took 9750 ms
07 Jun 2015 20:27:12 [17f0] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-ieframe_31bf3856ad364e35_10.2.9200.20848_none_d5e3fb426cb202a4\ieframe.dll) took 5881 ms
07 Jun 2015 20:27:14 [18d8] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-ieframe_31bf3856ad364e35_10.2.9200.21044_none_d63ad7a86c70b9bf\ieframe.dll) took 6287 ms
07 Jun 2015 20:30:21 [17f0] - ScanFile (C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17803_none_6e41a0e0125deda0\ntoskrnl.exe) took 5710 ms
07 Jun 2015 20:30:21 [1664] - ScanFile (C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.18044_none_6e173b82127da724\ntoskrnl.exe) took 5148 ms
07 Jun 2015 20:30:23 [18d8] - ScanFile (C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17944_none_6e176360127d73e2\ntoskrnl.exe) took 6910 ms
 
07 Jun 2015 20:31:44 [1af4] - ***** Checking for specific ITW Viruses *****
 
07 Jun 2015 20:31:44 [1af4] - ***** Scanning complete. *****
 
07 Jun 2015 20:31:44 [1af4] - Total Objects Scanned: 273077
07 Jun 2015 20:31:44 [1af4] - Total Critical Objects: 1
07 Jun 2015 20:31:44 [1af4] - Total Disinfected Objects: 0
07 Jun 2015 20:31:44 [1af4] - Total Objects Renamed: 1
07 Jun 2015 20:31:44 [1af4] - Total Deleted Objects: 0
07 Jun 2015 20:31:44 [1af4] - Total Errors: 2
07 Jun 2015 20:31:44 [1af4] - Time Elapsed: 01:03:32
07 Jun 2015 20:31:44 [1af4] - Virus Database Date: 07 Jun 2015
07 Jun 2015 20:31:44 [1af4] - Virus Database Count: 5705290
07 Jun 2015 20:31:44 [1af4] - Sign Version: 7.60952 [519704]
 
07 Jun 2015 20:31:44 [1af4] - Scan Completed.
 



#9 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 08 June 2015 - 07:13 AM

Zemana AntiMalware 2.15.2.229 (Installed)

-------------------------------------------------------
Scan Result            : Completed
Scan Date              : 2015/6/8
Operating System       : Windows 7 64-bit
Processor              : 4X Intel® Core™ i5-4200U CPU @ 1.60GHz
BIOS Mode              : Legacy
CUID                   : 000D15236EA95B41C81253
Scan Type              : Deep Scan
Duration               : 45m 12s
Scanned Objects        : 207814
Detected Objects       : 1
Excluded Objects       : 0
Read Level             : SCSI
Auto Upload            : Yes
Include All Extensions : No
Scan Documents         : Yes
Domain Info            : WORKGROUP,1,2
Detected Objects
-------------------------------------------------------

ninja-setup-3.0.6.exe
Status             : Scanned
Object             : %userprofile%\downloads\ninja-setup-3.0.6.exe
MD5                : 24FE0BB7A85A866B487D15C0EB6E3A74
Publisher          : -
Size               : 2507200
Version            : 0.0.0.0
Detection          : Adware:Win32/OpenCandy
Cleaning Action    : Quarantine
Traces             :
                File - %userprofile%\downloads\ninja-setup-3.0.6.exe

Cleaning Result
-------------------------------------------------------
Cleaned               : 1
Reported as safe      : 0
Failed                : 0
 



#10 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 08 June 2015 - 07:27 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.9.0 (06.07.2015:1)
OS: Windows 7 Home Premium x64
Ran by Harold on Mon 06/08/2015 at  8:16:22.32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] C:\Users\Harold\AppData\Roaming\compete



~~~ Chrome


[C:\Users\Harold\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Harold\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\Harold\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Harold\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 06/08/2015 at  8:19:11.96
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#11 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 08 June 2015 - 09:23 AM

# AdwCleaner v4.206 - Logfile created 08/06/2015 at 10:18:20
# Updated 01/06/2015 by Xplode
# Database : 2015-06-05.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Harold - HAROLD-HP
# Running from : C:\Users\Harold\Downloads\adwcleaner_4.206.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D6A5312-AB4D-41AA-8BED-0E019B87CA11}
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules [TCP Query User{8B62BB29-727A-4C40-BF37-B38A33EC6A0D}C:\program files (x86)\itibiti soft phone\itibiti.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules [UDP Query User{2D003C10-9B2D-4759-80C1-99BDCEE61644}C:\program files (x86)\itibiti soft phone\itibiti.exe]

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17801


-\\ Mozilla Firefox v38.0.5 (x86 en-US)


-\\ Google Chrome v43.0.2357.81

[C:\Users\Harold\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Harold\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [2006 bytes] - [04/10/2014 10:51:22]
AdwCleaner[R1].txt - [8479 bytes] - [13/03/2015 19:43:18]
AdwCleaner[R2].txt - [1872 bytes] - [20/03/2015 18:54:18]
AdwCleaner[R3].txt - [1931 bytes] - [21/03/2015 09:37:22]
AdwCleaner[R4].txt - [3223 bytes] - [25/04/2015 16:06:58]
AdwCleaner[R5].txt - [3282 bytes] - [26/04/2015 08:18:43]
AdwCleaner[R6].txt - [2195 bytes] - [08/06/2015 10:16:08]
AdwCleaner[S0].txt - [2051 bytes] - [04/10/2014 10:58:21]
AdwCleaner[S1].txt - [7656 bytes] - [13/03/2015 19:46:14]
AdwCleaner[S2].txt - [2007 bytes] - [21/03/2015 09:39:02]
AdwCleaner[S3].txt - [3278 bytes] - [26/04/2015 08:19:16]
AdwCleaner[S4].txt - [2130 bytes] - [08/06/2015 10:18:20]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [2189  bytes] ##########
 


I think that's everything.



#12 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:24 AM

Posted 08 June 2015 - 02:31 PM

Adware Removal Tool.
 
Download Adware removal tool to your desktop, right click the icon and select Run as Administrator.

Source: http://www.techsupportall.com/adware-removal-tool/

LOr0Gd7.png

Hit Ok.

sYFsqHx.png

Hit next make sure to leave all items checked, for removal.

8NcZjGc.png


The Program will close all open programs to complete the removal, so save any work and hit OK. Then hit OK after the removal process is complete,  then OK again to finish up. Post log generated by tool.

 

Step 2: ZHP Cleaner.

 

Download and save ZHP Cleaner to your desktop.

http://www.nicolascoolman.fr/download/zhpcleaner-2/

Right Click and run as administrator.

Click on the Repair button.

At the end of the process you will be asked to reboot your machine.

After you reboot a report will open on your desktop.

Copy and paste the report here in your next reply.

 

Step 3: Security Check.

 

Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document

 

 

 

Step 4: Minitoolbox.

 

Please download [b]MINITOOLBOX and run it.



Checkmark following boxes:


Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

Eset Scan

http://www.eset.com/us/online-scanner/
 

Disable your antivirus prior to this scan.

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

 
 
 esetonlinebtn.png
 

  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.


#13 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 08 June 2015 - 04:17 PM

* * * * * * * * * * * * * * * * * * * * * * * * * * * * * *

Adware Removal Tool v3.9
Time: 2015_06_08_17_12_33
OS: Windows 7 - 64 Bit
Account Name: Harold
U0L0S14

\\\\\\\\\\\\\\\\\\\\\\\ Repair Logs \\\\\\\\\\\\\\\\\\\\\\

Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:masterclsid
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}:dllname
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36232C93-580-43B5-BEAE-C6E3226246BE}:appname
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43183A49-701A-4A1F-A545-8875291BC15}:appname
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{45946082-E459-4C42-AC1E-60A90FA1DFD}:appname
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2EECD738-5844-4A99-B4B6-146BF802613B}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{472734EA-242A-422B-ADF8-83D1E48CC825}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{98889811-442D-49DD-99D7-DC866BE87DBC}

\\ Finished
 



#14 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 08 June 2015 - 04:31 PM

ZHP did not ask me to reboot.

 

~ ZHPCleaner v2015.6.8.272 by Nicolas Coolman (2015\06\8)
~ Run by Harold (Administrator)  (08/06/2015 17:24:57)
~ Site : http://nicolascoolman.com/fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Harold\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Harold\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)


---\\  Services (0)
~ No malicious items found.


---\\  Browser internet (0)
~ No malicious items found.


---\\  Hosts file (0)
~ No malicious items found.


---\\  Scheduled automatic tasks. (0)
~ No malicious items found.


---\\  Explorer ( File, Folder) (2)
MOVED file: C:\Users\Harold\Downloads\adoniswedlineup56anewstarisbornmaxfrombrooklyn.zip   (PUP.weDownloadManager)
MOVED folder*: C:\Users\Harold\Downloads\Driver Support (PUP.DriverSupport)


---\\  Registry ( Key, Value, Data) (10)
DELETED key*: HKEY_USERS\S-1-5-21-3909690924-3761086334-1024949271-1000\Software\Classes\.bubbledock [bubbledock] (PUP.BubbleDock)
DELETED key*: HKEY_USERS\S-1-5-21-3909690924-3761086334-1024949271-1000\Software\Classes\bubbledock [Bubble Dock add-in] (PUP.BubbleDock)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\BinkilandHTML.MTZQGMEBSB7OFFO6IMDDLXPDO [Binkiland HTML Document] (PUP.Binkiland)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Intuit.SBD.ERDownloader.ExchangeRateDownloaderException [Intuit.SBD.ERDownloader.ExchangeRateDownloaderException] (PUP.SoftwareEngine)
DELETED key*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Driver Support [] (PUP.DriverSupport)
DELETED value: HKLM64\Software\Classes\.htm\OpenWithProgIDs\\BinkilandHTML.MTZQGMEBSB7OFFO6IMDDLXPDO [] (PUP.Binkiland)
DELETED value: HKLM64\Software\Classes\.html\OpenWithProgIDs\\BinkilandHTML.MTZQGMEBSB7OFFO6IMDDLXPDO [] (PUP.Binkiland)
DELETED value: HKLM64\Software\Classes\.shtml\OpenWithProgIDs\\BinkilandHTML.MTZQGMEBSB7OFFO6IMDDLXPDO [] (PUP.Binkiland)
DELETED value: HKLM64\Software\Classes\.webp\OpenWithProgIDs\\BinkilandHTML.MTZQGMEBSB7OFFO6IMDDLXPDO [] (PUP.Binkiland)
DELETED value: HKLM64\Software\Classes\.xht\OpenWithProgIDs\\BinkilandHTML.MTZQGMEBSB7OFFO6IMDDLXPDO [] (PUP.Binkiland)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Opera Software)


---\\ Statistics
~ Items scanned : 798
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 12


End of clean at 17:25:16
===================
ZHPCleaner-[R]-08062015-17_25_16.txt
ZHPCleaner-[S]-08062015-17_23_26.txt
 



#15 Hal06

Hal06
  • Topic Starter

  • Members
  • 927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York, New York, USA
  • Local time:08:24 AM

Posted 08 June 2015 - 04:39 PM

 Results of screen317's Security Check version 1.003  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Microsoft Security Essentials   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 Zemana AntiMalware    
 Adobe Flash Player 17.0.0.188  
 Adobe Reader 10.1.14 Adobe Reader out of Date!  
 Mozilla Firefox (38.0.5)
 Google Chrome (43.0.2357.81)
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
 Zemana AntiMalware ZAM.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users