Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer runs slow 1-3 second lag spikes typing/gaming/anything


  • Please log in to reply
26 replies to this topic

#1 faydh

faydh

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 20 June 2015 - 11:48 PM

Windows 7 Home:

Just as the title says, my computer used to run extremely fast. Several months ago started lagging quite a bit and when i play games i constantly have a 1-3 second lag spike, and if i open up a browser while playing it gets worse.


Edited by hamluis, 26 June 2015 - 11:24 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Guest_Wizizard_*

Guest_Wizizard_*

  • Guests
  • OFFLINE
  •  

Posted 22 June 2015 - 01:10 PM

Hi there!  :welcome:
 
:step1: MiniToolBox
 
Please download MiniToolBox from here and save it to your desktop then double-click it.
Select the following checkboxes and hit go:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Once you've done that, a report (named Result.txt) will appear in the same directory as the tool was run - please copy and paste the contents of it into your next reply.

 

Wizizard  :thumbup2:



#3 dudeage

dudeage

  • Members
  • 175 posts
  • OFFLINE
  •  

Posted 22 June 2015 - 04:06 PM

Start with something simple.  What browser do you use?  Start by deleting temp files, cookies, and history from your browser.  

 

I would also look at the amount of RAM in your system.  Even the recommended amount of RAM is sometimes too lackluster to run Windows.  

 

Also, how full is your hard drive?  If there's less than 20% free space your hard drive will slow down.  

 

Those are good, simple places to start.  



#4 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:10:51 PM

Posted 23 June 2015 - 07:07 PM

169 Gigs free out of 390 w/ 8 gigs of ram (sure hope that isn't lackluster)

 

Mod Edit:  Pasted MTB data into post, as requested - Hamluis.

MiniToolBox by Farbar  Version: 22-06-2015
Ran by Faydh Laptop (administrator) on 23-06-2015 at 19:55:50
Running from "C:\Users\Faydh Laptop\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: G74Sx Manufacturer: ASUSTeK Computer Inc.
Boot Mode: Normal
***************************************************************************

 

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15476 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 6150 = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Intel® Centrino® WiMAX 6150 = Local Area Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : FaydhLaptop-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Centrino® WiMAX 6150
   Physical Address. . . . . . . . . : 64-D4-DA-6B-C8-4D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 40-25-C2-BE-E6-41
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 40-25-C2-BE-E6-41
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 6150
   Physical Address. . . . . . . . . : 40-25-C2-BE-E6-40
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2601:345:200:bea5:4225:c2ff:febe:e640(Preferred)
   Lease Obtained. . . . . . . . . . : Tuesday, June 23, 2015 5:29:41 PM
   Lease Expires . . . . . . . . . . : Tuesday, June 23, 2015 8:02:18 PM
   IPv6 Address. . . . . . . . . . . : 2601:345:200:bea5:5858:b560:c4b2:7ca4(Preferred)
   Temporary IPv6 Address. . . . . . : 2601:345:200:bea5:d98c:721b:f9c3:217e(Preferred)
   Link-local IPv6 Address . . . . . : fe80::5858:b560:c4b2:7ca4%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.0.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, June 21, 2015 9:14:55 PM
   Lease Expires . . . . . . . . . . : Tuesday, June 30, 2015 12:24:43 PM
   Default Gateway . . . . . . . . . : fe80::ce35:40ff:fe48:c750%12
                                       10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 306193858
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-DC-88-39-C8-60-00-2B-C1-EB
   DNS Servers . . . . . . . . . . . : 2001:558:feed::1
                                       2001:558:feed::2
                                       75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : C8-60-00-2B-C1-EB
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {C865A427-D790-4C9F-8E9F-279EEFC34F4B}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C534594A-0970-4233-AD46-835AA99ABD53}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{10379C46-B66C-4DFE-B430-CB359A8286D4}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{9B3933BA-054F-4D3A-9772-0F9822B683CE}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{0F2D6508-4942-4AD5-90F7-301F4CA3DB68}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {5D199616-1D4B-4008-B1A5-C2DD09EC5946}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns01.comcast.net
Address:  2001:558:feed::1

Name:    google.com
Addresses:  2607:f8b0:4002:c06::66
   74.125.137.101
   74.125.137.100
   74.125.137.139
   74.125.137.138
   74.125.137.113
   74.125.137.102

Pinging google.com [2607:f8b0:4002:c08::66] with 32 bytes of data:
Reply from 2607:f8b0:4002:c08::66: time=25ms
Reply from 2607:f8b0:4002:c08::66: time=32ms

Ping statistics for 2607:f8b0:4002:c08::66:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 25ms, Maximum = 32ms, Average = 28ms
Server:  cdns01.comcast.net
Address:  2001:558:feed::1

Name:    yahoo.com
Addresses:  206.190.36.45
   98.139.183.24
   98.138.253.109

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=73ms TTL=49
Reply from 98.138.253.109: bytes=32 time=60ms TTL=49

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 60ms, Maximum = 73ms, Average = 66ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...64 d4 da 6b c8 4d ......Intel® Centrino® WiMAX 6150
 14...40 25 c2 be e6 41 ......Microsoft Virtual WiFi Miniport Adapter #2
 13...40 25 c2 be e6 41 ......Microsoft Virtual WiFi Miniport Adapter
 12...40 25 c2 be e6 40 ......Intel® Centrino® Wireless-N 6150
 11...c8 60 00 2b c1 eb ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
 25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1         10.0.0.3     25
         10.0.0.0    255.255.255.0         On-link          10.0.0.3    281
         10.0.0.3  255.255.255.255         On-link          10.0.0.3    281
       10.0.0.255  255.255.255.255         On-link          10.0.0.3    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link          10.0.0.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link          10.0.0.3    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12    281 ::/0                     fe80::ce35:40ff:fe48:c750
  1    306 ::1/128                  On-link
 12     33 2601:345:200:bea5::/64   On-link
 12    281 2601:345:200:bea5::/64   fe80::ce35:40ff:fe48:c750
 12    281 2601:345:200:bea5:4225:c2ff:febe:e640/128
                                    On-link
 12    281 2601:345:200:bea5:5858:b560:c4b2:7ca4/128
                                    On-link
 12    281 2601:345:200:bea5:d98c:721b:f9c3:217e/128
                                    On-link
 12    281 fe80::/64                On-link
 12    281 fe80::5858:b560:c4b2:7ca4/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:
==================
Error: (06/23/2015 00:24:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24417978

 

Error: (06/23/2015 00:24:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24417978

 

Error: (06/23/2015 00:24:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (06/23/2015 05:37:42 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2168

 

Error: (06/23/2015 05:37:42 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2168

 

Error: (06/23/2015 05:37:42 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (06/23/2015 05:37:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 998

 

Error: (06/23/2015 05:37:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 998

 

Error: (06/23/2015 05:37:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (06/23/2015 03:38:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9312323

System errors:
=============
Error: (06/23/2015 05:38:02 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer BENNETT
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{001141E1-8C89-4991-829E-9EC4186134DB}.
The master browser is stopping or an election is being forced.

 

Error: (06/23/2015 04:44:34 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:44:03 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:43:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:42:39 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:42:09 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:40:47 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:40:14 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:39:44 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

Error: (06/23/2015 04:39:14 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

Microsoft Office Sessions:
=========================
Error: (06/23/2015 00:24:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24417978

 

Error: (06/23/2015 00:24:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24417978

 

Error: (06/23/2015 00:24:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (06/23/2015 05:37:42 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2168

 

Error: (06/23/2015 05:37:42 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2168

 

Error: (06/23/2015 05:37:42 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (06/23/2015 05:37:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 998

 

Error: (06/23/2015 05:37:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 998

 

Error: (06/23/2015 05:37:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (06/23/2015 03:38:55 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9312323

CodeIntegrity Errors:
===================================
  Date: 2012-12-15 18:45:15.939
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\PlayOnline\SquareEnix\PlayOnlineViewer\polcfg\sysinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2012-12-15 18:45:15.783
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\PlayOnline\SquareEnix\PlayOnlineViewer\polcfg\sysinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2012-12-15 02:53:23.090
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\PlayOnline\SquareEnix\PlayOnlineViewer\polcfg\sysinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2012-12-15 02:53:22.920
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\PlayOnline\SquareEnix\PlayOnlineViewer\polcfg\sysinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

=========================== Installed Programs ============================

7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version:  - )
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Reader X (10.1.14) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.14 - Adobe Systems Incorporated)
Advanced Combat Tracker (remove only) (HKLM-x32\...\Advanced Combat Tracker) (Version:  - )
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2F72F540-1F60-4266-9506-952B21D6640D}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0033 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{AECA3622-E634-4A55-A696-70A511CBE06E}) (Version: 2.0.0 - AsusTek Computer Inc.)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusScr_G74 Series_ENG (HKLM-x32\...\AsusScr_G74 Series_ENG) (Version: 1.0.0001 - ASUS)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.7.142 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0008 - ASUS)
Best Buy Connect (HKLM-x32\...\{B435FD87-CA14-45E3-9D0B-A30F1F9F3866}) (Version: 3.00.68 - Best Buy)
Best Buy pc app (HKCU\...\e55b814e55744b76) (Version: 3.3.628.1 - Best Buy)
Best Buy pc app (HKLM\...\{FBBC4667-2521-4E78-B1BD-8706F774549B}) (Version: 3.3.0.0 - Best Buy) Hidden
Best Buy pc app (HKLM-x32\...\{FBBC4667-2521-4E78-B1BD-8706F774549B}) (Version: 3.3.0.0 - Best Buy) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1126 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.80 - DivX, LLC)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
ExpressGateCloud (HKLM-x32\...\{36B0DC39-3282-40EB-8587-B875CE46C3A7}) (Version: 2.6.27.160 - VideACE Co.) Hidden
ExpressGateCloud (HKLM-x32\...\InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}) (Version: 2.6.27.160 - VideACE Co.)
FINAL FANTASY XI (HKLM-x32\...\{678F6475-D227-432A-94FF-806178A34520}) (Version: 1.04.0 - SQUARE ENIX CO., LTD.) Hidden
FINAL FANTASY XI (HKLM-x32\...\InstallShield_{678F6475-D227-432A-94FF-806178A34520}) (Version: 1.04.0 - SQUARE ENIX CO., LTD.)
FINAL FANTASY XI: Chains of Promathia (HKLM-x32\...\{3C0619B4-4A2C-4244-8077-488E420DF907}) (Version: 1.22.0 - SQUARE ENIX CO., LTD.) Hidden
FINAL FANTASY XI: Chains of Promathia (HKLM-x32\...\InstallShield_{3C0619B4-4A2C-4244-8077-488E420DF907}) (Version: 1.22.0 - SQUARE ENIX CO., LTD.)
FINAL FANTASY XI: Rise of the Zilart (HKLM-x32\...\{6FC76C41-8C1D-4B43-85E7-0BAA2002F1BE}) (Version: 1.13.0 - SQUARE ENIX CO., LTD.) Hidden
FINAL FANTASY XI: Rise of the Zilart (HKLM-x32\...\InstallShield_{6FC76C41-8C1D-4B43-85E7-0BAA2002F1BE}) (Version: 1.13.0 - SQUARE ENIX CO., LTD.)
FINAL FANTASY XI: Treasures of Aht Urhgan (HKLM-x32\...\{A606C6FF-12E7-40BE-B777-D8F360FF00CD}) (Version: 1.30.0 - SQUARE ENIX CO., LTD.) Hidden
FINAL FANTASY XI: Treasures of Aht Urhgan (HKLM-x32\...\InstallShield_{A606C6FF-12E7-40BE-B777-D8F360FF00CD}) (Version: 1.30.0 - SQUARE ENIX CO., LTD.)
FINAL FANTASY XI: Wings of the Goddess (HKLM-x32\...\{5B037ED7-0755-48D4-9554-808E5AF50F17}) (Version: 1.40.1 - SQUARE ENIX CO., LTD.) Hidden
FINAL FANTASY XI: Wings of the Goddess (HKLM-x32\...\InstallShield_{5B037ED7-0755-48D4-9554-808E5AF50F17}) (Version: 1.40.1 - SQUARE ENIX CO., LTD.)
FINAL FANTASY XIV - A Realm Reborn (Beta Version) (HKLM-x32\...\{9C1BB613-F398-49B7-B346-5DEBA8ABBF38}) (Version: 0.9.1000 - SQUARE ENIX CO., LTD.)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Final Fantasy XIV: A Realm Reborn Pre-Order Bonus (HKLM-x32\...\Final Fantasy XIV: A Realm Reborn Pre-Order Bonus) (Version:  - GameStop)
Fresco Logic USB3.0 Host Controller (HKLM\...\{B1E301A1-C2B4-4B0B-AF31-C71F8A53DCDA}) (Version: 3.0.119.1 - Fresco Logic Inc.)
GameFast.exe (HKLM\...\GameFast_is1) (Version: 1.0.0.1 - ASUSTEK Computer Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Drive (HKLM-x32\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{D79A5962-7305-41B9-A39E-A98AB598F372}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710n-z Help (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6500 E710n-z Product Improvement Study (HKLM\...\{4207BD5E-6F51-4C57-BC86-A0EBE9088A30}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Update (HKLM-x32\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden
HPDiagnosticCoreDll (HKLM-x32\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel PROSet Wireless (HKLM-x32\...\ProInst) (Version:  - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
Intel® PROSet/Wireless WiMAX Software (HKLM\...\{5C1DA3D9-F590-4317-A4FB-274F658E504B}) (Version: 6.05.0000 - Intel Corporation)
iTunes (HKLM\...\{76FF0F03-B707-4332-B5D1-A56C8303514E}) (Version: 11.0.4.4 - Apple Inc.)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Marketsplash Print Software (HKLM-x32\...\{61933675-EFC7-4190-90B6-5AD56E1D9294}) (Version: 1.0.1.31 - Hewlett-Packard)
Marketsplash Shortcuts (HKLM-x32\...\{16FCDD97-AE09-476B-88CD-261D852BD34C}) (Version: 1.0.1.7 - Hewlett-Packard)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
MotioninJoy ds3 driver version 0.6.0001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.5.0001 - www.motioninjoy.com)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mumble 1.2.8 (HKLM-x32\...\{A9DBD31A-A09F-4C7E-86D1-3B21C59000D1}) (Version: 1.2.8 - Thorvald Natvig)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
PlayOnline Viewer & Tetra Master (HKLM-x32\...\{47004155-7376-403E-89E9-4C9F44AAF0D0}) (Version: 1.18.00 - SQUARE ENIX CO., LTD.) Hidden
PlayOnline Viewer & Tetra Master (HKLM-x32\...\InstallShield_{47004155-7376-403E-89E9-4C9F44AAF0D0}) (Version: 1.18.00 - SQUARE ENIX CO., LTD.)
Rappelz_US (HKLM-x32\...\{EAD475E8-14E5-4854-8AF5-CE6B4024237C}_is1) (Version: Rappelz_US - GALA-NET)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10001 - Realtek Semiconductor Corp.)
Rotation Desktop for G Series.exe (HKLM\...\Rotation Desktop for G Series_is1) (Version: 1.0.0.9 - ASUSTEK Computer Inc)
Roxio CinePlayer (HKLM-x32\...\{C03F3D5B-0D83-4F81-A324-32F4E7F1BF6A}) (Version: 5.8.58232.1 - Roxio)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 3.1.100 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.9.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
THX TruStudio (HKLM-x32\...\{B11AB9C8-18A6-41DC-98B4-4988CC030136}) (Version: 1.03.01 - Creative Technology Limited)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.8 - Flagship Industries, Inc.)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.1 - ASUS)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WinZip 19.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E5}) (Version: 19.0.11293 - WinZip Computing, S.L. )
Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS)

 

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 8169.16 MB
Available physical RAM: 5136.49 MB
Total Pagefile: 16336.54 MB
Available Pagefile: 12249.36 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.25 MB

 

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:390.7 GB) (Free:169.51 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:515.81 GB) (Free:515.06 GB) NTFS

 

========================= Users: ========================================

User accounts for \\FAYDHLAPTOP-PC

Administrator            Faydh Laptop             Guest                   

**** End of log ****


Edited by hamluis, 23 June 2015 - 07:59 PM.


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:51 AM

Posted 26 June 2015 - 11:03 AM

Appears your help has quit.

zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Hold down Control and click on this link to open ESET Online Scanner in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE: Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:11:51 PM

Posted 26 June 2015 - 04:50 PM

# AdwCleaner v4.207 - Logfile created 26/06/2015 at 17:49:27
# Updated 21/06/2015 by Xplode
# Database : 2015-06-23.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Faydh Laptop - FAYDHLAPTOP-PC
# Running from : C:\Users\Faydh Laptop\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\END
File Found : C:\Users\Faydh Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\f619l7ub.default\user.js
File Found : C:\Windows\Reimage.ini
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\Iminent
Folder Found : C:\Program Files (x86)\SearchProtect
Folder Found : C:\ProgramData\blekko toolbars
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\Users\Faydh Laptop\AppData\Local\blekkotb_031
Folder Found : C:\Users\Faydh Laptop\AppData\Local\PackageAware
Folder Found : C:\Users\Faydh Laptop\AppData\LocalLow\blekkotb_031
Folder Found : C:\Users\Faydh Laptop\AppData\LocalLow\Conduit
Folder Found : C:\Users\Faydh Laptop\AppData\LocalLow\Delta

***** [ Scheduled tasks ] *****

Task Found : Dealply

***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local;<local>
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\browse~1\261095~1.52\{c16c1~1\browse~1.dll
Key Found : HKCU\Software\a0d8d8b235e813
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Toolbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Reimage
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Key Found : [x64] HKCU\Software\Reimage
Key Found : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8769ADCE-DBA5-48E9-AFB5-67B12CDF2E61}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Found : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Key Found : [x64] HKLM\SOFTWARE\Reimage
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v38.0.5 (x86 en-US)

[f619l7ub.default] - Line Found : user_pref("CT3289847.installType", "conduitnsisintegration");
[f619l7ub.default] - Line Found : user_pref("CT3289847.mam_gk_appState_PiclickV2-WebSearch.enc", "b24=");
[f619l7ub.default] - Line Found : user_pref("CT3289847.smartbar.CTID", "CT3289847");
[f619l7ub.default] - Line Found : user_pref("CT3289847.smartbar.Uninstall", "0");
[f619l7ub.default] - Line Found : user_pref("CT3289847.smartbar.homepage", "true");
[f619l7ub.default] - Line Found : user_pref("CT3289847.smartbar.isHidden", true);
[f619l7ub.default] - Line Found : user_pref("CT3289847.smartbar.toolbarName", "WhiteSmoke New ");
[f619l7ub.default] - Line Found : user_pref("CT3298573.installType", "conduitnsisintegration");
[f619l7ub.default] - Line Found : user_pref("CT3298573.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?octid=CT3289847&ctid=CT3289847&SearchSource=2&CUI=UN28809066259373300&UM=2&q=");
[f619l7ub.default] - Line Found : user_pref("CT3298573.smartbar.CTID", "CT3298573");
[f619l7ub.default] - Line Found : user_pref("CT3298573.smartbar.Uninstall", "0");
[f619l7ub.default] - Line Found : user_pref("CT3298573.smartbar.homepage", "true");
[f619l7ub.default] - Line Found : user_pref("CT3298573.smartbar.isHidden", true);
[f619l7ub.default] - Line Found : user_pref("CT3298573.smartbar.toolbarName", "MixiDJ V37 ");
[f619l7ub.default] - Line Found : user_pref("Smartbar.ConduitHomepagesList", "");
[f619l7ub.default] - Line Found : user_pref("Smartbar.ConduitSearchEngineList", "");
[f619l7ub.default] - Line Found : user_pref("Smartbar.ConduitSearchUrlList", "");
[f619l7ub.default] - Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.conduit.com/ResultsExt.aspx?octid=CT3289847&ctid=CT3289847&SearchSource=2&CUI=UN28809066259373300&UM=2&q=");
[f619l7ub.default] - Line Found : user_pref("Smartbar.keywordURLSelectedCTID", "CT3298573");
[f619l7ub.default] - Line Found : user_pref("extentions.y2layers.defaultEnableAppsList", "twittube,buzzdock,YontooNewOffers");
[f619l7ub.default] - Line Found : user_pref("extentions.y2layers.installId", "dfa72c12-b88c-4040-9a8b-8654d9acd865");
[f619l7ub.default] - Line Found : user_pref("smartbar.addressBarOwnerCTID", "CT3298573");
[f619l7ub.default] - Line Found : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3289847&CUI=UN28809066259373300&UM=2&SearchSource=13,hxxp://search.conduit.com/?octid=CT3289847&ctid=CT3289847&CUI=UN288090[...]
[f619l7ub.default] - Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289847&SearchSource=2&CUI=UN28809066259373300&UM=2&q=,hxxp://search.conduit.com/ResultsExt.aspx?oct[...]
[f619l7ub.default] - Line Found : user_pref("smartbar.defaultSearchOwnerCTID", "CT3298573");
[f619l7ub.default] - Line Found : user_pref("smartbar.homePageOwnerCTID", "CT3298573");
[f619l7ub.default] - Line Found : user_pref("smartbar.machineId", "UEW6FJQ39V4AK9V+3+GVSXRPDLBLRL1DDYUWEZS5RU65XVMQL3G7/TGZL4VECESKXAJMZ47EOO4WM3IUDW9ZYA");
[f619l7ub.default] - Line Found : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3298573&CUI=UN42921023112100116&UM=2&SearchSource=13");

-\\ Google Chrome v43.0.2357.130

[C:\Users\Faydh Laptop\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Faydh Laptop\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [8683 bytes] - [26/06/2015 17:46:38]
AdwCleaner[R1].txt - [8548 bytes] - [26/06/2015 17:49:27]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [8607 bytes] ##########
 



#7 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 26 June 2015 - 04:58 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.1.7 (06.26.2015:3)
OS: Windows 7 Home Premium x64
Ran by Faydh Laptop on Fri 06/26/2015 at 17:55:43.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCE665DD-F6DD-4808-968E-EAEC971F70EF}
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{13271F99-674C-419A-8FEC-EEF2F8211CC8}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{1890A33D-ABAD-48C0-810A-F562D7260B90}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{28C4C5F0-1DBD-4178-905F-1C43D9F80A7A}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{2C9259AF-291A-491B-8D48-BEC7BF13096A}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{346864D9-7966-43F8-B2AD-2E58479563BF}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{3D0B2A68-8A99-4B29-A3C9-EE690AD87C78}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{47C24956-611D-4B49-8A57-B7B4723D54EE}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{4E95F718-3FB8-452C-932A-57546753EC31}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{55A4ADA3-4E10-48D2-832B-15310ABD4B52}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{57F8E0E6-96E2-42D3-AB46-BC8A01D87BA0}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{5D3DA3BF-C821-417D-8CBA-58E7A48B4D40}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{71555CCD-5B54-4352-915C-AB832D70431B}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{715EEC82-3D1C-49AC-BAD9-8DC341B253E6}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{8099C00B-B254-4CAD-8E7C-FF7597DF6F10}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{AD6EF371-3480-4C38-B653-CF683342908D}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{AF03C240-5863-48CC-989E-E97C60C04E65}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{B080B87E-8AC6-433B-8641-AD52EBD52FFD}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{B8617622-24D7-43FC-970F-3A48ED83F5C7}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{C1D3C806-E7BD-481F-9783-15C1EFD487D1}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{C6C178FC-E9A9-49F8-BF8B-4C8696ADFD66}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{C93F5F0B-3DBD-4352-B327-C7483F2CAFA9}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{E1A2E561-2BAD-4AD2-B0AE-FCBCDF7CABAF}
Successfully deleted: [Empty Folder] C:\Users\Faydh Laptop\appdata\local\{FE6E195F-4429-47FA-9204-607EC3528BAB}
Successfully deleted: [Folder] C:\Program Files (x86)\conduit
Successfully deleted: [Folder] C:\Program Files (x86)\iminent
Successfully deleted: [Folder] C:\Program Files (x86)\searchprotect
Successfully deleted: [Folder] C:\ProgramData\best buy pc app
Successfully deleted: [Folder] C:\ProgramData\blekko toolbars
Successfully deleted: [Folder] C:\ProgramData\productdata
Successfully deleted: [Folder] C:\ProgramData\tarma installer
Successfully deleted: [Folder] C:\Users\Faydh Laptop\appdata\local\best buy pc app
Successfully deleted: [Folder] C:\Users\Faydh Laptop\appdata\local\cre
Successfully deleted: [Folder] C:\Users\Faydh Laptop\appdata\local\packageaware
Successfully deleted: [Folder] C:\Users\Faydh Laptop\appdata\locallow\conduit
Successfully deleted: [Folder] C:\Users\Faydh Laptop\appdata\locallow\delta
Successfully deleted: [Folder] C:\Users\Faydh Laptop\AppData\Roaming\productdata
Successfully deleted: [Folder] C:\Users\Faydh Laptop\documents\add-in express



~~~ FireFox




~~~ Chrome


[C:\Users\Faydh Laptop\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Faydh Laptop\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\Faydh Laptop\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Faydh Laptop\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 06/26/2015 at 17:58:16.42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:51 AM

Posted 26 June 2015 - 08:00 PM

Remove what Adwcleaner found.....

Double click on AdwCleaner.exe to run the tool again. Vista/Windows 7/8 users right-click and select Run As Administrator
  • The tool will start to update the database, please wait a bit.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:11:51 PM

Posted 26 June 2015 - 09:48 PM

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSS.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSHelper.dll    a variant of Win32/Systweak.N potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSPrivacyProtector.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe    a variant of Win32/Systweak potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegistryOptimizer.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSSystemCleaner.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinDownloadergen18.zip    Win32/Bagle.gen.zip worm
C:\ProgramData\Spybot - Search & Destroy\Recovery\YontooPagerage2.zip    Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\WinDownloadergen18.zip    Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\YontooPagerage2.zip    Win32/Bagle.gen.zip worm
C:\Users\Faydh Laptop\Downloads\advanced-systemcare-setup.exe    a variant of Win32/OpenCandy.C potentially unsafe application
C:\Users\Faydh Laptop\Downloads\cbsidlm-cbsi213-Startup_Inspector_for_Windows-SEO-10291346.exe    a variant of Win32/CNETInstaller.B potentially unwanted application
C:\Users\Faydh Laptop\Downloads\cbsidlm-tr1_13-QIF_Viewer-SEO-10889951.exe    Win32/DownloadAdmin.G potentially unwanted application
C:\Users\Faydh Laptop\Downloads\ccsetup416.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup417.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup502.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup504.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup505.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\driverfusionsetup.exe    Win32/OpenCandy potentially unsafe application
C:\Users\Faydh Laptop\Downloads\DriverSweeper_3.2.0.exe    Win32/OpenCandy potentially unsafe application
C:\Users\Faydh Laptop\Downloads\hdplugin_firefox.exe    Win32/AdWare.1ClickDownload.AT application
C:\Users\Faydh Laptop\Downloads\rcsetup147.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\WinZip170(1).exe    a variant of Win32/OpenInstall potentially unwanted application
C:\Users\Faydh Laptop\Downloads\WinZip170.exe    a variant of Win32/OpenInstall potentially unwanted application
C:\Users\Faydh Laptop\Downloads\WinZip175.exe    a variant of Win32/OpenInstall potentially unwanted application
C:\Users\Faydh Laptop\Downloads\winzip18-home.exe    a variant of Win32/InstallCore.PP potentially unwanted application
C:\Users\Faydh Laptop\Downloads\winzip18-home_da.exe    a variant of Win32/InstallCore.PP potentially unwanted application
 



#10 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 26 June 2015 - 09:54 PM

# AdwCleaner v4.207 - Logfile created 26/06/2015 at 22:51:19
# Updated 21/06/2015 by Xplode
# Database : 2015-06-23.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Faydh Laptop - FAYDHLAPTOP-PC
# Running from : C:\Users\Faydh Laptop\Desktop\AdwCleaner.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Faydh Laptop\AppData\Local\blekkotb_031
Folder Deleted : C:\Users\Faydh Laptop\AppData\LocalLow\blekkotb_031
File Deleted : C:\END
File Deleted : C:\Windows\Reimage.ini

***** [ Scheduled tasks ] *****

Task Deleted : Dealply

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Key Deleted : HKCU\Software\a0d8d8b235e813
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8769ADCE-DBA5-48E9-AFB5-67B12CDF2E61}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Reimage
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\Reimage
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local;<local>

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v38.0.5 (x86 en-US)


-\\ Google Chrome v43.0.2357.130

[C:\Users\Faydh Laptop\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Faydh Laptop\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [8683 bytes] - [26/06/2015 17:46:38]
AdwCleaner[R1].txt - [8742 bytes] - [26/06/2015 17:49:27]
AdwCleaner[R2].txt - [4670 bytes] - [26/06/2015 22:50:11]
AdwCleaner[S0].txt - [4553 bytes] - [26/06/2015 22:51:19]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4612  bytes] ##########
 



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:51 AM

Posted 28 June 2015 - 02:57 PM

OK great!! How is it now?

Update to Adobe Reader XI..

Are you still under a Best Buy Warranty?


Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista or above, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:11:51 PM

Posted 28 June 2015 - 03:47 PM

sill running the same

installed adobe 11

no warranty is no longer valid.

 

Have a question in the scan a couple posts up it said something about unwanted programs and a worm?? What is all of that about?

 

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSS.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSHelper.dll    a variant of Win32/Systweak.N potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSPrivacyProtector.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe    a variant of Win32/Systweak potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegistryOptimizer.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSSystemCleaner.exe    a variant of Win32/Systweak.L potentially unwanted application
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinDownloadergen18.zip    Win32/Bagle.gen.zip worm
C:\ProgramData\Spybot - Search & Destroy\Recovery\YontooPagerage2.zip    Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\WinDownloadergen18.zip    Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\YontooPagerage2.zip    Win32/Bagle.gen.zip worm
C:\Users\Faydh Laptop\Downloads\advanced-systemcare-setup.exe    a variant of Win32/OpenCandy.C potentially unsafe application
C:\Users\Faydh Laptop\Downloads\cbsidlm-cbsi213-Startup_Inspector_for_Windows-SEO-10291346.exe    a variant of Win32/CNETInstaller.B potentially unwanted application
C:\Users\Faydh Laptop\Downloads\cbsidlm-tr1_13-QIF_Viewer-SEO-10889951.exe    Win32/DownloadAdmin.G potentially unwanted application
C:\Users\Faydh Laptop\Downloads\ccsetup416.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup417.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup502.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup504.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\ccsetup505.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\driverfusionsetup.exe    Win32/OpenCandy potentially unsafe application
C:\Users\Faydh Laptop\Downloads\DriverSweeper_3.2.0.exe    Win32/OpenCandy potentially unsafe application
C:\Users\Faydh Laptop\Downloads\hdplugin_firefox.exe    Win32/AdWare.1ClickDownload.AT application
C:\Users\Faydh Laptop\Downloads\rcsetup147.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Faydh Laptop\Downloads\WinZip170(1).exe    a variant of Win32/OpenInstall potentially unwanted application
C:\Users\Faydh Laptop\Downloads\WinZip170.exe    a variant of Win32/OpenInstall potentially unwanted application
C:\Users\Faydh Laptop\Downloads\WinZip175.exe    a variant of Win32/OpenInstall potentially unwanted application
C:\Users\Faydh Laptop\Downloads\winzip18-home.exe    a variant of Win32/InstallCore.PP potentially unwanted application
C:\Users\Faydh Laptop\Downloads\winzip18-home_da.exe    a variant of Win32/InstallCore.PP potentially unwanted application



#13 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 28 June 2015 - 03:53 PM

when i use CC cleaner and scan the registry this is what shows up.

 

Unused File Extension    SoftGrid.Unavailable    HKCR\SoftGrid.Unavailable
ActiveX/COM Issue    BESTBUYPCAPPDETE.BestBuyPcAppDeteCtrl.1 - {A60671D2-CC17-4FDB-8CB7-87EFC561FB2C}    HKCR\BESTBUYPCAPPDETE.BestBuyPcAppDeteCtrl.1
Missing TypeLib Reference    ISearch - {47A7A4B0-2723-41BA-865E-EBBB7081A602}    HKCR\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Unused registry key    ACMON.EXE    HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\ACMON.EXE
Installer Reference Issue    C:\Users\Faydh Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinZip    HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
Obsolete software key    ATK0100    HKLM\Software\ATK0100
Obsolete software key    OldTimer Tools    HKLM\Software\OldTimer Tools
Missing MUI Reference    C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe    HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
 



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:51 AM

Posted 28 June 2015 - 04:11 PM

Hi

TrojanDownloader:Win32/Bagle.gen!A is the generic detection for trojans that download worms from the Win32/Bagle family. They are usually distributed as attachments of spammed e-mail messages. They may also change certain system settings.

Worms are programs that replicate themselves from system to system without the use of a host file. This is in contrast to viruses, which requires the spreading of an infected host file. Although worms generally exist inside of other files, often Word or Excel documents, there is a difference between how worms and viruses use the host file. Usually the worm will release a document that already has the "worm" macro inside the document. The entire document will travel from computer to computer, so the entire document should be considered the worm. PrettyPark.Worm is a particularly prevalent example.

 

PUP detections are Potentially Unwanted Programs. These are programs our researchers have found are sometimes added to a system without the user's knowledge or approval.

 

I asked as Beat Buy has left some Spy/Junkware behind.  I see we already removed some.

 

 

I am not a big fan of Reg cleaners, actually Bleeping isn't as  a hole. But Best buy can go. I asked earlier as I see they have Hidden files. So you would need to show hidden files first. Also create a new Restore Point before you make any Reg changes.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 faydh

faydh
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:11:51 PM

Posted 28 June 2015 - 04:48 PM

anyting else i should do?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users