Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Acer aspire one D260 Intel atom N475, 2gb DDR3


  • Please log in to reply
12 replies to this topic

#1 lumoskid

lumoskid

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 12 October 2015 - 11:37 PM

Hello, my netbook is 5 yrs old already but I want too keep using it. Lately, I noticed it runs really, really slow. It runs on a windows 7 starter. I have a few questions:

 

1) is reformatting advisable?

2) can I still upgrade my RAM?

3) is this a sign that my netbook has a virus?

 

Thanks for the help!


Edited by Queen-Evie, 13 October 2015 - 11:13 AM.
moved from Windows 7 to Am I Infected to explore the possibility of malware


BC AdBot (Login to Remove)

 


#2 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:42 AM

Posted 13 October 2015 - 03:23 AM

Let's try checking by running the scans below.

Try downloading Speccy and then install the program.  To post and publish a snapshot of your PC.
. In the Menu bar, click File -> Publish Snapshot
. Click Yes > then Copy to Clipboard
. On your next reply, right-click on a empty space and click Paste on reply box then click Post.

 

Download MiniToolBox and open/run the program.
When open, checkmark or select all options then click Go.
A notepad will open then copy-paste the report on your next reply.


Tekken
 


#3 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 13 October 2015 - 08:02 AM

Thanks! here it is

 

http://speccy.piriform.com/results/S107BP5OzX0NCat0AaJQ8BT



#4 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 13 October 2015 - 08:06 AM

MiniToolBox by Farbar  Version: 25-07-2015 01
Ran by Karen June Dumlao (administrator) on 13-10-2015 at 21:02:03
Running from "C:\Users\Karen June Dumlao\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D2P8ARBA"
Microsoft Windows 7 Starter  Service Pack 1 (X86)
Model: AOD260 Manufacturer: Acer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: proxy.upm.edu.ph:3128

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.http", "192.168.81.4"
"network.proxy.http_port", 3128
"network.proxy.type", 4

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Disconnected)
Atheros AR5B95 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.1 publish=Yes
add address name="ethernet_10" address=192.168.56.1 mask=255.255.255.0
add address name="Local Area Connection" address=192.168.1.33 mask=255.255.255.0

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : KarenJuneDumlao
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Mixed
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : domain.name

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : domain.name
   Description . . . . . . . . . . . : Atheros AR5B95 Wireless Network Adapter
   Physical Address. . . . . . . . . : 78-E4-00-02-64-A1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a156:692a:2793:d0b9%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, October 13, 2015 7:08:19 PM
   Lease Expires . . . . . . . . . . : Wednesday, October 14, 2015 7:31:35 PM
   Default Gateway . . . . . . . . . : fe80::213:33ff:fed8:e25d%11
                                       192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 427353088
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-B5-A4-4B-88-AE-1D-0F-8F-19
   DNS Servers . . . . . . . . . . . : fe80::1%11
                                       192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 88-AE-1D-0F-8F-19
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 108:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {47A08E0F-F8FC-4F59-93B9-A8E5601C530E}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : domain.name
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.domain.name:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #9
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6F38ED13-54C6-4ABA-B632-2D5930FAA320}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  fe80::1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.

Pinging google.com [173.194.120.97] with 32 bytes of data:
Reply from 173.194.120.97: bytes=32 time=249ms TTL=52
Reply from 173.194.120.97: bytes=32 time=401ms TTL=52

Ping statistics for 173.194.120.97:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 249ms, Maximum = 401ms, Average = 325ms
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  fe80::1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=1588ms TTL=47
Reply from 98.138.253.109: bytes=32 time=310ms TTL=47

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 310ms, Maximum = 1588ms, Average = 949ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...78 e4 00 02 64 a1 ......Atheros AR5B95 Wireless Network Adapter
 10...88 ae 1d 0f 8f 19 ......Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20)
  1...........................Software Loopback Interface 1
117...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
119...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
107...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #9
130...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.3    281
      192.168.1.3  255.255.255.255         On-link       192.168.1.3    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.3    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.1.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 11    281 ::/0                     fe80::213:33ff:fed8:e25d
  1    306 ::1/128                  On-link
 11    281 fe80::/64                On-link
 11    281 fe80::a156:692a:2793:d0b9/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/13/2015 02:00:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 20078

Error: (10/13/2015 02:00:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 20078

Error: (10/13/2015 02:00:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/13/2015 02:00:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18596

Error: (10/13/2015 02:00:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 18596

Error: (10/13/2015 02:00:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/13/2015 02:00:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 16911

Error: (10/13/2015 02:00:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 16911

Error: (10/13/2015 02:00:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/13/2015 01:59:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15398

System errors:
=============
Error: (10/13/2015 07:07:13 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (10/13/2015 07:06:49 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (10/13/2015 10:42:51 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WTService service.

Error: (10/13/2015 10:42:42 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (10/13/2015 10:42:11 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (10/13/2015 07:12:35 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 21

Error: (10/12/2015 10:51:57 AM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{EAAE3EDB-3815-4A3C-9A65-9BFD315FC65E} because another computer on the network has the same name.  The server could not start.

Error: (10/12/2015 10:51:53 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (10/12/2015 10:49:42 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WTService service.

Error: (10/12/2015 10:49:33 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Microsoft Office Sessions:
=========================
Error: (12/20/2013 01:09:15 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 143934 seconds with 1800 seconds of active time.  This session ended with a crash.

Error: (02/22/2013 12:57:41 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 176 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (02/22/2013 12:54:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2150 seconds with 1440 seconds of active time.  This session ended with a crash.

CodeIntegrity Errors:
===================================
  Date: 2015-05-15 18:30:47.791
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-11 10:18:58.814
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-02 16:59:22.757
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-12-15 01:48:51.827
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-12-03 14:47:21.125
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-11-28 08:24:42.799
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-11-26 12:31:21.927
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-11-24 07:13:11.580
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-11-19 16:47:18.209
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-28 04:35:28.490
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.31139 - BitTorrent Inc.)
Acer Crystal Eye webcam Ver:1.1.143.1229 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.143.1229 - Chicony Electronics Co.,Ltd.)
Acer ePower Management (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3002 - Acer Incorporated)
Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3011 - Acer Incorporated)
Acer GameZone Console (HKLM\...\{ABEE079E-648E-488B-8301-0C3DB48C1BCE}_is1) (Version: 6.1.0.2 - Oberon Media, Inc.)
Acer Registration (HKLM\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM\...\Acer Screensaver) (Version: 1.1.0416.2010 - Acer Incorporated)
Acer Updater (HKLM\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acer VCM (HKLM\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3002 - Acer Incorporated)
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\{FE23D063-934D-4829-A0D8-00634CE79B4A}) (Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Anchor Service CS3 (HKLM\...\{90176341-0A8B-4CCC-A78D-F862228A6B95}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (HKLM\...\{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}) (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (HKLM\...\{9C9824D9-9000-4373-A6A5-D0E5D4831394}) (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (HKLM\...\{08B32819-6EEF-4057-AEDA-5AB681A36A23}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (HKLM\...\{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}) (Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (HKLM\...\{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific (HKLM\...\{A2D81E70-2A98-4A08-A628-94388B063C5E}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color Common Settings (HKLM\...\{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Extra Settings (HKLM\...\{51846830-E7B2-4218-8968-B77F0FF475B8}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings (HKLM\...\{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Recommended Settings (HKLM\...\{95655ED4-7CA5-46DF-907F-7144877A32E5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS3 (HKLM\...\{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (HKLM\...\{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (HKLM\...\{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Fonts All (HKLM\...\{6ABE0BEE-D572-4FE8-B434-9E72A289431B}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (HKLM\...\{04AF207D-9A77-465A-8B76-991F6AB66245}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS3 (HKLM\...\{F08E8D2E-F132-4742-9C87-D5FF223A016A}) (Version: 13.0 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS3 (HKLM\...\Adobe_a04a925a57548091300ada368235fc6) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Linguistics CS3 (HKLM\...\{54793AA1-5001-42F4-ABB6-C364617C6078}) (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (HKLM\...\{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}) (Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (HKLM\...\{0046FA01-C5B9-4985-BACB-398DC480FC05}) (Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (HKLM\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Setup (HKLM\...\{4F3E17F8-F1C8-4A4B-9EB8-1EE2D190CDA9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Setup (HKLM\...\{D1BB4446-AE9C-4256-9A7F-4D46604D2462}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Stock Photos CS3 (HKLM\...\{29E5EA97-5F74-4A57-B8B2-D4F169117183}) (Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Type Support (HKLM\...\{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (HKLM\...\{E69AE897-9E0B-485C-8552-7841F48D42D8}) (Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (HKLM\...\{D0DFF92A-492E-4C40-B862-A74A173C25C5}) (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (HKLM\...\{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (HKLM\...\{802771A9-A856-4A41-ACF7-1450E523C923}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Apple Application Support (HKLM\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{235EBB33-3DA1-46DF-AADE-9955123409CB}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros BT update 32 (HKLM\...\{4AD62673-EBC3-4DAC-961C-73EB35F03A72}_is1) (Version:  - Atheros)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.29 - Atheros Communications Inc.)
Atheros_7.0.2.13_patch2_32 (HKLM\...\{2D13FC7D-42A8-4BF1-AF0C-B3DC68C59448}_is1) (Version:  - Atheros)
Avast Free Antivirus (HKLM\...\avast) (Version: 10.3.2225 - AVAST Software)
BlueStacks App Player (HKLM\...\BlueStacks App Player) (Version: 0.9.30.9239 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM\...\{3792811C-832F-4392-B44A-24092901EDDC}) (Version: 0.9.30.9239 - BlueStack Systems, Inc.)
Bluetooth Win7 Suite (HKLM\...\{101A497C-7EF6-4001-834D-E5FA1C70FEFA}) (Version: 7.00.002.0013 - Atheros Communications)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Canon ScanGear Starter (HKLM\...\{18A5DFF2-8A95-49F3-873F-743CB5549F3D}) (Version:  - )
CanoScan Toolbox Ver4.9 (HKLM\...\{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}) (Version:  - )
Carbonite Online Backup Setup (HKLM\...\Carbonite Setup Lite) (Version: 3.8.0 - Carbonite Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Documents To Go Desktop for iPhone (HKLM\...\DTGDesktop) (Version: 2.0000.006 - DataViz, Inc.)
Download Accelerator Plus (DAP) (HKLM\...\Download Accelerator Plus (DAP)) (Version: 10035 (Build 2446) - Speedbit Ltd.)
eBIRForms version 5.1 (HKLM\...\eBIRForms_is1) (Version: 5.1 - )
ENE USB Card Reader Driver (HKLM\...\F3C7F6463C419D1D216961B5B81E2FE534986562) (Version: 5.89.0.66 - ENE)
Free Notes & Office Ink (HKLM\...\{556F2137-B772-43BB-9A45-E0275234DD16}) (Version:   -  )
Galapago (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version:  - Oberon Media)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
High-Definition Video Playback (HKLM\...\{237CCB62-8454-43E3-B158-3ACD0134852E}) (Version: 7.1.12500.33.0 - Nero AG) Hidden
HP 900 Inkjet Printer (HKLM\...\HP 900 Inkjet Printer) (Version:  - )
HP Deskjet Ink Adv 2010 K010 Basic Device Software (HKLM\...\{E331DD6A-E719-41AA-A575-1F018F379936}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Deskjet Ink Adv 2010 K010 Help (HKLM\...\{F2F5542B-53A1-4F93-918D-3697503903FF}) (Version: 140.0.2.2 - Hewlett Packard)
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version:  - )
HP Memories Disc (HKLM\...\{B376402D-58EA-45EA-BD50-DD924EB67A70}) (Version: 1.0.4.805 - Hewlett-Packard Company)
HP Photo and Imaging 2.1 - Scanjet 2400 Series (HKLM\...\{6F7ECD56-E224-4263-9B7E-158E5CECC43B}) (Version: 2.1.0000 - {&Tahoma8}Hewlett-Packard)
hppLaserJetService (HKLM\...\{D371F551-0DB9-4CEC-844B-4C90CE91EA0B}) (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppP1100P1560P1600SeriesLaserJetService (HKLM\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppusgP1100P1560P1600Series (HKLM\...\{853F464A-B2B8-404E-BA3E-B98FF6862C41}) (Version: 1.0.0.1 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
iCloud (HKLM\...\{AC6EE263-E4DD-4150-9014-689B1D4A3315}) (Version: 4.0.5.20 - Apple Inc.)
Identity Card (HKLM\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
ImageDrive (ahead software) (HKLM\...\ImageDrive!UninstallKey) (Version:  - )
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2230 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{5D928931-D1D2-4A93-A82D-BF60D0E7CFA5}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (HKLM\...\{4A03706F-666A-4037-7777-5F2748764D10}) (Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Java™ 6 Update 35 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216033FF}) (Version: 6.0.350 - Oracle)
Junk Mail filter update (HKLM\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Launch Manager (HKLM\...\LManager) (Version: 4.0.8 - Acer Inc.)
MarketResearch (HKLM\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Click-to-Run 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
MSVC80_x86_v2 (HKLM\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MultiViewer (HKLM\...\MultiViewer Ver 2.0_is1) (Version:  - )
MyHeritage Family Tree Builder (HKLM\...\Family Tree Builder) (Version: 5.1.0.5309 - MyHeritage.com)
MyWinLocker (HKLM\...\{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}) (Version: 3.1.210.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM\...\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.210.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.210.0 - Egis Technology Inc.)
Nero 10 Menu TemplatePack Basic (HKLM\...\{63AA3EAB-23BB-48B2-9AD0-44F878075604}) (Version: 10.2.10000.0.0 - Nero AG) Hidden
Nero 10 Movie ThemePack Basic (HKLM\...\{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}) (Version: 10.2.10000.0.0 - Nero AG) Hidden
Nero Burning ROM 10 (HKLM\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.2.10500.7.100 - Nero AG)
Nero Control Center 10 (HKLM\...\{6DFB899F-17A2-48F0-A533-ED8D6866CF38}) (Version: 10.2.0.0.0 - Nero AG) Hidden
Nero Core Components 10 (HKLM\...\{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}) (Version: 2.0.17200.8.0 - Nero AG) Hidden
Nero Dolby Files 10 (HKLM\...\{C3580AC4-C827-4332-B935-9A282ED5BB97}) (Version: 2.0.12001.0.10 - Nero AG) Hidden
Nero Express 10 (HKLM\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.2.10500.7.100 - Nero AG)
Nero Multimedia Suite 10 Platinum HD (HKLM\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.5.10000 - Nero AG)
Nero Recode 10 (HKLM\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.8.10400.3.100 - Nero AG)
Nero RescueAgent 10 (HKLM\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.2.10300.3.100 - Nero AG)
Nero Vision 10 (HKLM\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.2.14000.4.100 - Nero AG)
Nero WaveEditor 10 (HKLM\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.8.10200.1.100 - Nero AG)
Nokia Connectivity Cable Driver (HKLM\...\{4AA68A73-DB9C-439D-9481-981C82BD008B}) (Version: 7.1.69.0 - Nokia)
Nokia PC Internet Access (HKLM\...\{653A52D8-127C-476D-BAD9-27117A3A4959}) (Version: 2.0.1.3 - Nokia) Hidden
Nokia PC Internet Access (HKLM\...\Nokia PC Internet Access) (Version: 2.0.1.3 - Nokia)
Nokia Suite (HKLM\...\{92D1CEBC-7C72-4ECF-BFC6-C131EF3FE6A7}) (Version: 3.3.86.0 - Nokia) Hidden
Nokia Suite (HKLM\...\Nokia Suite) (Version: 3.3.86.0 - Nokia)
Orbit Downloader (HKLM\...\Orbit_is1) (Version:  - www.orbitdownloader.com)
PC Connectivity Solution (HKLM\...\{A2AA4204-C05A-4013-888A-AD153139297F}) (Version: 11.5.29.0 - Nokia)
PDF Settings (HKLM\...\{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Power Presenter RE II (HKLM\...\{8537166B-40F4-4FAE-BAC5-454A4DD773B7}) (Version: 2.53.00 - Software)
PPTools (Uninstall ALL) (HKLM\...\PPTools IMAGE_EXPORT) (Version: 2.0 - Rindsberg Photography, Inc. dba PPTools)
Prezi (HKLM\...\{63B8F931-2BF3-4D5D-9C28-E2EF88D83DFD}) (Version: 5.2.0 - Prezi.com)
PrimoPDF -- by Nitro PDF Software (HKLM\...\PrimoPDF) (Version: 5.0.0.19 - Nitro PDF Software)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6066 - Realtek Semiconductor Corp.)
Seagate Manager Installer (HKLM\...\{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}) (Version: 2.01.0700 - Seagate) Hidden
Seagate Manager Installer (HKLM\...\InstallShield_{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}) (Version: 2.01.0700 - Seagate)
ShareIns (HKLM\...\{590D4F8F-98FE-47FA-AC2B-3F22FDCF7C09}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Shredder (HKLM\...\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}) (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.7.0 - Synaptics Incorporated)
syngo fastView (HKLM\...\{4CF46E90-60EC-4177-9BE7-5F4BE89BC2E7}) (Version: VX57L38 - Siemens MedSW)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
USB Tablet Manager (HKLM\...\Rmtablet) (Version:  - )
USB2.0 Capture Device (HKLM\...\{E337B156-DF81-48D8-8977-B1574EE87BCF}) (Version: 1.0.3.0 - )
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Vocal Parts 2_5 (HKLM\...\Vocal Parts 2_5) (Version: 2.5 - Blue Tree Publishing, Inc.)
Vocal Pathology II (HKLM\...\Vocal Pathology II) (Version: 1.0 - Blue Tree Publishing, Inc.)
Vocal Pathology_1 (HKLM\...\Vocal Pathology_1) (Version: 1.0 - Blue Tree Publishing, Inc)
VoiceOver Kit (HKLM\...\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}) (Version: 1.42.128.0 - Apple Inc.)
Welcome Center (HKLM\...\Acer Welcome Center) (Version: 1.01.3002 - Acer Incorporated)
Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Mobile Device Center (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows Mobile Device Center Driver Update (HKLM\...\{E7044E25-3038-4A76-9064-344AC038043E}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR) (Version:  - )
Yahoo! BrowserPlus 2.9.8 (HKCU\...\Yahoo! BrowserPlus) (Version:  - Yahoo! Inc.)
Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version:  - )

========================= Devices: ================================

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Device ID: {5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\VWIFIMP\5&CF2491D&0&01
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

Name: NERO IMAGEDRIVE SCSI Controller
Description: NERO IMAGEDRIVE SCSI Controller
Class Guid: {4d36e97b-e325-11ce-bfc1-08002be10318}
Manufacturer: Ahead GmbH
Service: Imagedrv
Device ID: ROOT\SCSIADAPTER\0000
Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48)
Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers.

Name: MpKsl8f659775
Description: MpKsl8f659775
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKsl8f659775
Device ID: ROOT\LEGACY_MPKSL8F659775\0000
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: MpKsldd34a900
Description: MpKsldd34a900
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKsldd34a900
Device ID: ROOT\LEGACY_MPKSLDD34A900\0000
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: MpKsled3b508b
Description: MpKsled3b508b
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKsled3b508b
Device ID: ROOT\LEGACY_MPKSLED3B508B\0000
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

========================= Memory info: ===================================

Percentage of memory in use: 97%
Total physical RAM: 2037.1 MB
Available physical RAM: 53.07 MB
Total Virtual: 4074.2 MB
Available Virtual: 1035.71 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:284.98 GB) (Free:87.59 GB) NTFS

========================= Users: ========================================

User accounts for \\KARENJUNEDUMLAO

Administrator            Guest                    GuestUser               
Karen June Dumlao       

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

27-08-2015 03:27:33 Scheduled Checkpoint
18-09-2015 06:47:19 Scheduled Checkpoint

**** End of log ****



#5 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,604 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:09:42 AM

Posted 13 October 2015 - 08:38 AM

You have the maximum amount of RAM installed, so you can't add any more.
 
This computer has a System Recovery Partition which can be used to revert the operating system back to the condition it was in when it came out of the box.  If you decide to do this you need to be aware that this will literally take the operating system back to the state it was in when it was originally installed.  This means that anything added after first starting the computer will be removed.  This includes documents, pictures, music, all programs which were installed either by download or by disc, etc.  But let's see if we can get this going a little fast without doing that.
 
First, let's make sure that there isn't any infection/s affecting the performance.  The scans I'm going to request that you run can not be done in the Windows forums.  I will request that this topic be moved to the Am I Infected forum where these tools can be used.
 
Please run Malwarebytes AntiMalware
 
Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
malwarerun_zps9abd4ef1.png
 
4)  When the scan is complete the results will be displayed.  Click on Delete All.
 
malwarenew_zps34b58fdc.png
 
5)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  Copy and paste the log in your topic.
 
================
 
 Please run AdwCleaner
 
Please download AdwCleaner and install it.
 
When AdwCleaner opens you will see an image like the one below.
 
adwcleaner11_zps48314883.png
 
Click on Scan to start the scan.
 
Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.  
 
Click on Clean to remove the selected items.  If you have any questions about any items in the list please copy and paste the list in your topic so we can review it.  
 
You will receive a message telling you that all programs will be closed so that the infections can be removed.  Click on OK.  The computer will be restarted to complete the cleaning process.
 
When the cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your topic.
 
================
 
Please download Junkware Removal Tool to your desktop.

  •  
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

================

Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to allow this to run till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need to download the Eset Smartinstaller.***

ESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

Edited by dc3, 13 October 2015 - 08:40 AM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#6 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 14 October 2015 - 04:12 PM

mbam-check result log version:     2.1.1.1001
========================================

User Account type:                 Administrator
OS:                                Windows 7 Service Pack 1 Service Pack 1 32 bit Operating System
Current Version and Build:         6.1.7601.0
Malwarebytes Anti-Malware:         2.2.0.1024
Installed On:                      2015/10/14
Malware Database:                  0000.00.00.00
Rootkit Database:                  0000.00.00.00
Remediation Database:              0000.00.00.00
IP Database:                       0000.00.00.00
Domain Database:                   0000.00.00.00
License:                           Free
Malware Protection:                1 (The service is not running.)
Malicious Website Protection:      1 (The service is not running.)
Chameleon:                         0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
Log Created:                       2015/10/15 05:11:40
Compatibility Flag Settings:
=================================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
 SIGN.MEDIA=138CACF Globe Broadband\Setup.exeREG_SZ  VISTARTM
 SIGN.MEDIA=952B0 autorunu.exe REG_SZ  VISTARTM
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
 "C:\Program Files\DAP\DAPUpd.exe"REG_SZ  ELEVATECREATEPROCESS

Malwarebytes Anti-Malware Shell Extension Block Check:
======================================================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:

MBAM Startup Entries:
=====================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Malwarebytes Anti-Malware Service and Driver Status:
=======================================================

--------------Driver File Info:--------------
C:\Windows\system32\drivers\mbam.sys
File Size: 23256     BYTES FileVersion: 0.1.16.0 MD5: [40c7f4b63337414f967ac53e0520b06b]
C:\Windows\system32\drivers\mwac.sys
File Size: 51928     BYTES FileVersion: 1.0.6.0 MD5: [63254775fe0f974f5316b4ec3f163038]
C:\Windows\system32\drivers\mbamswissarmy.sys
File Size: 170200    BYTES FileVersion: 0.3.0.4 MD5: [5023f594d5448e16f920157174c61358]
C:\Windows\system32\drivers\mbamchameleon.sys
File Size: 94936     BYTES FileVersion: 1.1.21.0 MD5: [3e2734aa7760b06e91f2f30cfd67db0b]

--------------MBAMProtector:--------------
Type:                   2
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

--------------MBAMService:--------------
Type:                   16
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

--------------MBAMScheduler:--------------
Type:                   N/A
State:                  0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMScheduler
WIN32_EXIT_CODE:        N/A
SERVICE_EXIT_CODE:      N/A
CHECKPOINT:             N/A
WAIT_HINT:              N/A

--------------MBAMChameleon:--------------
Type:                   N/A
State:                  0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
WIN32_EXIT_CODE:        N/A
SERVICE_EXIT_CODE:      N/A
CHECKPOINT:             N/A
WAIT_HINT:              N/A

--------------MBAMWebAccessControl:--------------
Type:                   2
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

Required Dependencies:
======================

--------------BFE:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
 DisplayName                   REG_SZ  @%SystemRoot%\system32\bfe.dll,-1001
 Group                         REG_SZ  NetworkProvider
 ImagePath                     REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
 Description                   REG_SZ  @%SystemRoot%\system32\bfe.dll,-1002
 ObjectName                    REG_SZ  NT AUTHORITY\LocalService
 ErrorControl                  REG_DWORD  1
 Start                         REG_DWORD  2
 Type                          REG_DWORD  32
 DependOnService               REG_MULTI_SZ RpcSs

 ServiceSidType                REG_DWORD  3
 RequiredPrivileges            REG_MULTI_SZ SeAuditPrivilege

 FailureActions                REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
 ServiceDll                    REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
 ServiceDllUnloadOnStop        REG_DWORD  1
 ServiceMain                   REG_SZ  BfeServiceMain
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
 {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data

 {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data

 {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data

 {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data

 {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data

 {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data

 {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data

 {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data

 {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data

 {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data

 {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data

 {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data

 {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data

 {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
 {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data

 {f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data

 {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data

 {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data

 {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data

 {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data

 {4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data

 {be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data

 {716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data

 {1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data

 {07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data

 {5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data

 {b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data

 {0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data

 {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data

 {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data

 {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data

 {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data

 {91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data

 {64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data

 {13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data

 {cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data

 {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data

 {375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data

 {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data

 {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data

 {b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data

 {3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data

 {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data

 {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data

 {b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data

 {d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data

 {8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data

 {4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data

 {3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data

 {17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data

 {567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data

 {4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data

 {3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
 {decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data

 {4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data

 {1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data

 {8dfb7ab4-65f2-4889-a54b-e4a929173158}REG_BINARY Binary Data

 {aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY Binary Data

 {42ff0794-3627-44c1-9886-765010075254}REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
 {b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data

 {b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data

 {b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data

 {9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data

 {4224eab7-7d61-4fe0-9264-6d6568d2ddff}REG_BINARY Binary Data

--------------fltmgr:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
 AttachWhenLoaded              REG_DWORD  1
 DisplayName                   REG_SZ  @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
 Group                         REG_SZ  FSFilter Infrastructure
 ImagePath                     REG_EXPAND_SZ system32\drivers\fltmgr.sys
 Description                   REG_SZ  @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
 ErrorControl                  REG_DWORD  3
 Start                         REG_DWORD  0
 Tag                           REG_DWORD  1
 Type                          REG_DWORD  2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
 0                             REG_SZ  Root\LEGACY_FLTMGR\0000
 Count                         REG_DWORD  1
 NextInstance                  REG_DWORD  1

C:\Windows\system32\drivers\fltmgr.sys
File Size: 198208    BYTES FileVersion: 6.1.7600.16385 MD5: [7520ec808e0c35e0ee6f841294316653]
C:\Windows\system32\comctl32.ocx
File Size: 608448    BYTES FileVersion: 6.0.81.5 MD5: [eb5f811c1f78005b3c147599a0cccf51]
C:\Windows\system32\mscomctl.ocx
File Size: 1070232   BYTES FileVersion: 6.1.98.39 MD5: [766f501b61c22723536af696a74133d4]
C:\Windows\system32\olepro32.dll
File Size: 90112     BYTES FileVersion: 6.1.7601.17514 MD5: [703ffd301ab900b047337c5d40fd6f96]

MBAM Registry Settings and License Info:
========================================
--------------Settings:--------------
Advanced:
    AutomaticQuarantine:                                       true
    AutostartProtection:                                       true
    LimitedMode:                                               false
    StartSilentMode:                                           false
    StartupDelay:                                              -15
ApplicationState:
    First-Run-After-Installation:                              false
General:
    DaysUntilNotifyExpiration:                                 5
    Language:                                                  en
    RightClickAccess:                                          false
    SilentErrors:                                              false
Logging:
    ExportLog:                                                 true
Marketing:
    LastPostScanMarketingIndex:                                1
Notification:
ProtectionTray:
    DisplayMilliseconds:                                       3000
ScanHistory:
    Duration_Complete:                                         1227116
    Duration_Driver:                                           0
    Duration_Filesystem:                                       9668
    Duration_Heuristics:                                       3980173
    Duration_Loading:                                          0
    Duration_MasterBootRecord:                                 0
    Duration_Memory:                                           40000
    Duration_PreScan:                                          260517
    Duration_Registry:                                         59060
    Duration_Sector:                                           0
    Duration_Startup:                                          205795
    ItemCount_Complete:                                        280497
    ItemCount_Driver:                                          0
    ItemCount_Filesystem:                                      47081
    ItemCount_Heuristics:                                      47368
    ItemCount_Loading:                                         0
    ItemCount_MasterBootRecord:                                0
    ItemCount_Memory:                                          2797
    ItemCount_PreScan:                                         260500
    ItemCount_Registry:                                        637
    ItemCount_Sector:                                          0
    ItemCount_Startup:                                         5488
    LastRemovalRequiredDOR:                                    false
    LastScanDateEpoch:                                         1444837259910
    LastScanType:                                              1 (Threat Scan)
    QuarantineCompletedCount:                                  6
Update:
    LastUpdate:                                                2015-10-14T15:38:52
    NotifyInstallReady:                                        true
    NotifyOutdatedDatabase:                                    7
    ProxyPassword:                                             
    ProxyPort:                                                 0
    ProxyServer:                                               
    ProxyUsername:                                             
    UseProxy:                                                  false
    UseProxyAuthentication:                                    false
--------------Account:--------------
  Account Status:                                              Free
  Expiration Time:                                             
  Activation Time:                                             
  Trial Used:                                                  false
--------------Access Policies:--------------

Scheduler Queue:
================

Pending File Rename Operations:
================================
If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
Pending File Rename Operations:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\
 PendingFileRenameOperations REG_MULTI_SZ \??\C:\Program Files\Malwarebytes Anti-Malware\mbamext.dll.old

 

MBAMProtector Registry Values:
==============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
 Type                          REG_DWORD  2
 Start                         REG_DWORD  3
 ErrorControl                  REG_DWORD  1
 ImagePath                     REG_EXPAND_SZ \??\C:\Windows\system32\drivers\mbam.sys
 Group                         REG_SZ  FSFilter Anti-Virus
 DependOnService               REG_MULTI_SZ FltMgr

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
 DefaultInstance               REG_SZ  MBAMProtector Instance
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
 Altitude                      REG_SZ  328800
 Flags                         REG_DWORD  0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
 PassThruFile                  REG_SZ  mbampt.exe
 ProductPath                   REG_SZ  C:\Program Files\Malwarebytes Anti-Malware

MBAMService Registry Values:
============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
 Type                          REG_DWORD  16
 Start                         REG_DWORD  2
 ErrorControl                  REG_DWORD  1
 ImagePath                     REG_EXPAND_SZ "C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe"
 DependOnService               REG_MULTI_SZ MBAMProtector

 ObjectName                    REG_SZ  LocalSystem
 Description                   REG_SZ  Malwarebytes Anti-Malware service
 DelayedAutostart              REG_DWORD  0

MBAMScheduler Registry Values:
==============================

 

Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
===============================================================================

--------------TERMService:--------------
Type:                   32
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

TermService Start is set to: 3 (Manual Startup)

Proxy Status: No proxy is Set

Proxy Override:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\
 ProxyOverride REG_SZ  *.local;127.0.0.1;localhost;<local>

LAN Settings:
=============

only 'Automatically detect settings' is selected

SystemPartition:
================

HKEY_LOCAL_MACHINE\SYSTEM\Setup\
 SystemPartition REG_SZ  \Device\HarddiskVolume2

Balloon Tips Status:
====================

Enabled

Time Format Settings:
=====================

Should be:
  h:mm:ss tt
  AM
  PM
  :

Currently:
REG_SZ  h:mm:ss tt
REG_SZ  AM
REG_SZ  PM
REG_SZ  :

Language and Regional Settings:
===============================

ACP:  Language is English (United States)
MACCP:  Language is English (United States)
OEMCP:  Language is English (United States)

Startup Folders for Error_Expanding_Variables Check:
====================================================

All Users Startup Folder Exists.
Current User's Startup Folder Exists.

Context Menu Entries:
=====================

 

 

 

 

 

 

 

List of MBAM Related Directories:
=================================

C:\Program Files\Malwarebytes Anti-Malware\
7z.dll                                   File Size: 920888    BYTES FileVersion:  9.20.0.0       MD5: [0bce989cf27fdce498305a041d1eba95]
changes.txt                              File Size: 1301      BYTES FileVersion:  N/A            MD5: [b535a0821de0464a9927c996f7e957d8]
cloud-enumeration.dll                    File Size: 286008    BYTES FileVersion:  1.0.1.0        MD5: [9fdabf510e37b06c24aaac53d402633e]
cloud.dll                                File Size: 351544    BYTES FileVersion:  1.0.1.0        MD5: [020f7775a0f0bedfbbc2d87cac34e452]
license.rtf                              File Size: 270257    BYTES FileVersion:  N/A            MD5: [4bac855abf62066aa03591d904a26558]
master.conf                              File Size: 1258      BYTES FileVersion:  N/A            MD5: [9702ca5e82d3756c6d8af34a2ababaea]
mbam.dll                                 File Size: 608568    BYTES FileVersion:  1.0.40.0       MD5: [9f597ef193ba422303888cdd34e33456]
mbam.exe                                 File Size: 9832760   BYTES FileVersion:  2.3.125.0      MD5: [babbbdef9dbb5e012ee5210fcb47c33b]
mbamcore.dll                             File Size: 2126648   BYTES FileVersion:  1.3.24.0       MD5: [9507addeb1f70f4abf50a9835cd2f8cb]
mbamdor.exe                              File Size: 54072     BYTES FileVersion:  1.0.2.0        MD5: [9cee13ddcf207923a1849a8371e714e9]
mbamext.dll                              File Size: 261432    BYTES FileVersion:  3.0.7.0        MD5: [6d7743ceb0b4c755158f8c6f4f646986]
mbampt.exe                               File Size: 39736     BYTES FileVersion:  1.0.57.0       MD5: [edd398e736e3efd188dfa86ca4f28527]
mbamresearch.exe                         File Size: 1947960   BYTES FileVersion:  1.1.1.0        MD5: [f4fe7e8cbf51aa07cfb947dbef07e1af]
mbamscheduler.exe                        File Size: 1513784   BYTES FileVersion:  3.1.6.0        MD5: [ab176b9e59c0435499d83047d84edd59]
mbamservice.exe                          File Size: 1135416   BYTES FileVersion:  3.2.19.0       MD5: [40c126cb15fab7d6c66490dca9c1aed2]
mbamsrv.dll                              File Size: 3861816   BYTES FileVersion:  2.1.9.0        MD5: [8853bc829caee0b5c4952e97156c9fc5]
msvcp100.dll                             File Size: 421688    BYTES FileVersion:  10.0.40219.325 MD5: [955743f613f744c184383e09c1d2b16d]
msvcr100.dll                             File Size: 774456    BYTES FileVersion:  10.0.40219.325 MD5: [f7659c545773f2d21f0335f58a7f20cd]
Qt5Core.dll                              File Size: 4645688   BYTES FileVersion:  5.4.1.0        MD5: [0187e57536d48f33acb8d9789c7ff3fc]
Qt5Gui.dll                               File Size: 4639032   BYTES FileVersion:  5.4.1.0        MD5: [8eb68983624868507f33b8da78507f7c]
Qt5Network.dll                           File Size: 672056    BYTES FileVersion:  5.4.1.0        MD5: [21f2b555c0a904232f00c480219a35a8]
Qt5Widgets.dll                           File Size: 4473656   BYTES FileVersion:  5.4.1.0        MD5: [c14017b307fb9a222ce12f7ba6c7a9c8]
unins000.dat                             File Size: 33148     BYTES FileVersion:  N/A            MD5: [10d023ef88c1f4c411d3b23b6013bf9f]
unins000.exe                             File Size: 720085    BYTES FileVersion:  51.52.0.0      MD5: [f1505d347325c77e3eeef418495e1f57]

C:\Program Files\Malwarebytes Anti-Malware\\Chameleon

C:\Program Files\Malwarebytes Anti-Malware\\Chameleon\Windows
chameleon.chm                            File Size: 235882    BYTES FileVersion:  N/A            MD5: [c4190b71f037714aa77aba294434ba5b]
firefox.com                              File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
firefox.exe                              File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
firefox.pif                              File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
firefox.scr                              File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
iexplore.exe                             File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
mbam-chameleon.com                       File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
mbam-chameleon.exe                       File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
mbam-chameleon.pif                       File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
mbam-chameleon.scr                       File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
mbam-killer.exe                          File Size: 1503544   BYTES FileVersion:  3.0.15.0       MD5: [f604a8e64d02412be1d4b94c6f294b14]
rundll32.exe                             File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
svchost.exe                              File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
windows.exe                              File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]
winlogon.exe                             File Size: 893752    BYTES FileVersion:  3.1.27.0       MD5: [e9a75e4b409a01e52055ce7cca7ff925]

C:\Program Files\Malwarebytes Anti-Malware\\imageformats
qgif.dll                                 File Size: 28472     BYTES FileVersion:  5.4.1.0        MD5: [98abe94698324f6326781e492e774bd3]

C:\Program Files\Malwarebytes Anti-Malware\\Languages
lang_ar.qm                               File Size: 87404     BYTES FileVersion:  N/A            MD5: [269d3107ca72a75fe154ce4ff718af50]
lang_bg.qm                               File Size: 133911    BYTES FileVersion:  N/A            MD5: [376ad1e4ad206bc32da09b12b564ecc4]
lang_ca.qm                               File Size: 92634     BYTES FileVersion:  N/A            MD5: [2d35f58b0c2db44ad2717f4a4526a085]
lang_cs.qm                               File Size: 105193    BYTES FileVersion:  N/A            MD5: [2c191de828d5e05fd7afa27ee1245023]
lang_da.qm                               File Size: 88039     BYTES FileVersion:  N/A            MD5: [f8a4941d5d388160d252832a77ab584f]
lang_de.qm                               File Size: 139276    BYTES FileVersion:  N/A            MD5: [b55f37281f0fcadfae67aecf0bf4cca5]
lang_el.qm                               File Size: 126897    BYTES FileVersion:  N/A            MD5: [bd671253e071bac626beea63393abcda]
lang_en.qm                               File Size: 3081      BYTES FileVersion:  N/A            MD5: [e2790b3cd9fdd9d3e266e9623fe477af]
lang_es.qm                               File Size: 138468    BYTES FileVersion:  N/A            MD5: [cc4f3aab63d933d5964e2bba62df4277]
lang_et.qm                               File Size: 107794    BYTES FileVersion:  N/A            MD5: [aa4845cd64b20377cea0ebc66eed4a42]
lang_fi.qm                               File Size: 130793    BYTES FileVersion:  N/A            MD5: [00653d1fb2f790817aef991025c176aa]
lang_fr.qm                               File Size: 141996    BYTES FileVersion:  N/A            MD5: [e06db8ef6b826b75ec5859913651ed44]
lang_he.qm                               File Size: 98928     BYTES FileVersion:  N/A            MD5: [2954e902664f2e129f8a8d8238e90552]
lang_hu.qm                               File Size: 132359    BYTES FileVersion:  N/A            MD5: [6bf3b8c78fd393ef2811a19742518b9a]
lang_id.qm                               File Size: 129135    BYTES FileVersion:  N/A            MD5: [6be058072a90897595c6f097a3caa797]
lang_it.qm                               File Size: 134154    BYTES FileVersion:  N/A            MD5: [183990148beec433023688db65a7bf2e]
lang_ja.qm                               File Size: 73762     BYTES FileVersion:  N/A            MD5: [f6bfd643cb92fa760ae6ec64344ee7e1]
lang_ko.qm                               File Size: 85731     BYTES FileVersion:  N/A            MD5: [53b5a94eb309d69993a5bc3cd43a85e4]
lang_lt.qm                               File Size: 90799     BYTES FileVersion:  N/A            MD5: [eecd8edca1fb068ad3bd88aa711bdae2]
lang_lv.qm                               File Size: 90659     BYTES FileVersion:  N/A            MD5: [683950904e725821740217824df440ff]
lang_nl.qm                               File Size: 133514    BYTES FileVersion:  N/A            MD5: [442a6cf7e07e6f676d8b5ae41637549c]
lang_no.qm                               File Size: 129833    BYTES FileVersion:  N/A            MD5: [8949e21e367e5a32ca9f36d8d22c9771]
lang_pl.qm                               File Size: 133827    BYTES FileVersion:  N/A            MD5: [48379f4ac164adfc8d448bf53c8e2df8]
lang_pt_BR.qm                            File Size: 136918    BYTES FileVersion:  N/A            MD5: [b1ea2002cf5362b24ca0a026f448e3f1]
lang_pt_PT.qm                            File Size: 136982    BYTES FileVersion:  N/A            MD5: [5e23b66cb6d8d9894b991cc8f33658af]
lang_ro.qm                               File Size: 90458     BYTES FileVersion:  N/A            MD5: [bcf524020255c4f7a6fdbae8df2bfe81]
lang_ru.qm                               File Size: 137874    BYTES FileVersion:  N/A            MD5: [5e28394fbd12f21301e2b7e1a9dbac94]
lang_sk.qm                               File Size: 131080    BYTES FileVersion:  N/A            MD5: [68e0e95e7131d101188a57e3a413dee5]
lang_sl.qm                               File Size: 107631    BYTES FileVersion:  N/A            MD5: [83755001a3f1bd527d0b4b7a77d0b37d]
lang_sv.qm                               File Size: 129135    BYTES FileVersion:  N/A            MD5: [b3c38242beb63f895fabcc14bbc6807a]
lang_tr.qm                               File Size: 88838     BYTES FileVersion:  N/A            MD5: [1e4a3c0dcd7074ad4a3971ce67762cda]
lang_vi.qm                               File Size: 133386    BYTES FileVersion:  N/A            MD5: [586de19c023986bf884ad56fc29c8f5e]
lang_zh_TW.qm                            File Size: 87797     BYTES FileVersion:  N/A            MD5: [e120a014cf077bdcbcdcbf98c3438188]

C:\Program Files\Malwarebytes Anti-Malware\\platforms
qwindows.dll                             File Size: 928568    BYTES FileVersion:  5.4.1.0        MD5: [1dadf33fdeaabb550384beaef851313b]

C:\Program Files\Malwarebytes Anti-Malware\\Plugins
fixdamage.exe                            File Size: 822584    BYTES FileVersion:  1.4.0.1001     MD5: [16fd048f3362bf6fd2050ef22b85dba8]

C:\Users\Karen June Dumlao\AppData\Roaming\Malwarebytes\Malwarebytes Anti-Malware

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware
actions.ref                              File Size: 2118      BYTES FileVersion:  N/A            MD5: [6e5a368d6e7ef50f52902409ec6d6a77]
akadomains.ref                           File Size: 92        BYTES FileVersion:  N/A            MD5: [73d5774cbd8df165274a0691ae264808]
akaips.ref                               File Size: 92        BYTES FileVersion:  N/A            MD5: [2a6869d1f91f0a0b87b1d27bd30ccc5c]
domains.ref                              File Size: 286280    BYTES FileVersion:  N/A            MD5: [768dbd26674ee135b425fae3de7d0e58]
exclusions.dat                           File Size: 0         BYTES FileVersion:  N/A            MD5: [d41d8cd98f00b204e9800998ecf8427e]
ips.ref                                  File Size: 27694     BYTES FileVersion:  N/A            MD5: [43d820564b3bb1598cdeabb70461aef4]
rules.ref                                File Size: 8222538   BYTES FileVersion:  N/A            MD5: [b201b51d305bc3cfe99ecf7870c74d55]
swissarmy.ref                            File Size: 26108     BYTES FileVersion:  N/A            MD5: [991d83474ed5cdcf17a9206d854748e6]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration
build.conf                               File Size: 4601      BYTES FileVersion:  N/A            MD5: [3d20b669775d7cd61575e542756c609f]
database.conf                            File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                          File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 1318      BYTES FileVersion:  N/A            MD5: [5045f9438f091b6d9eabee5701a2d059]
manifest.conf                            File Size: 3386      BYTES FileVersion:  N/A            MD5: [139da8bf5023eb3e49c107006c1f5eea]
marketing.conf                           File Size: 6944      BYTES FileVersion:  N/A            MD5: [c2133abde83f47a94e64d581e20b29cd]
net.conf                                 File Size: 7206      BYTES FileVersion:  N/A            MD5: [b6b5dd89f9c3a10a9c23884b606df06f]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
settings.conf                            File Size: 2132      BYTES FileVersion:  N/A            MD5: [6c1a668e63419069d67546167ea5b42c]
statistics.conf                          File Size: 513       BYTES FileVersion:  N/A            MD5: [05f56cbba48219c1fe1d8d84c9a5ab8d]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore
build.conf                               File Size: 4178      BYTES FileVersion:  N/A            MD5: [6759bfb0d20758e828f322cb432d8acb]
database.conf                            File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                          File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 23        BYTES FileVersion:  N/A            MD5: [0ec01df616b565180556881d8042255b]
manifest.conf                            File Size: 3184      BYTES FileVersion:  N/A            MD5: [f9da45921ee39ca76afc39467ebc8e0a]
marketing.conf                           File Size: 6944      BYTES FileVersion:  N/A            MD5: [c2133abde83f47a94e64d581e20b29cd]
net.conf                                 File Size: 6402      BYTES FileVersion:  N/A            MD5: [859eb83405ed41b02f5a960bfb4ab573]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
settings.conf                            File Size: 1725      BYTES FileVersion:  N/A            MD5: [5454026126dac24f6e96eeb0c64123d3]
statistics.conf                          File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs
mbam-log-2015-10-14 (23-33-00).xml       File Size: 5090      BYTES FileVersion:  N/A            MD5: [7f035df865a322c8cf970315b3324365]
protection-log-2015-10-14.xml            File Size: 1619      BYTES FileVersion:  N/A            MD5: [545730cee5e755b6a99193b6de2cfdea]
protection-log-2015-10-15.xml            File Size: 436       BYTES FileVersion:  N/A            MD5: [b91e1fe9e760f50ee4720e4993553be5]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine
3957954402.data                          File Size: 738       BYTES FileVersion:  N/A            MD5: [77a99b37228dbd73303820f99611344c]
3957954402.quar                          File Size: 344       BYTES FileVersion:  N/A            MD5: [14f8bd91246b81d9fe1a0cc96d2cf771]
7161525932.data                          File Size: 727       BYTES FileVersion:  N/A            MD5: [a527b1ec46c294f3704baed731555994]
7161525932.quar                          File Size: 292       BYTES FileVersion:  N/A            MD5: [b6da45b1d2510b5b40e39d905eebd269]
8224509551.data                          File Size: 778       BYTES FileVersion:  N/A            MD5: [cd76dc3d813d111536d5279c95dd7d1e]
8543140511.data                          File Size: 719       BYTES FileVersion:  N/A            MD5: [f0734308c8444e3699e02bbd62bc8a55]
8543140511.quar                          File Size: 558       BYTES FileVersion:  N/A            MD5: [f149ab501ce2eca7d7bc136ef8cd13f5]
9415491373.data                          File Size: 704       BYTES FileVersion:  N/A            MD5: [3050b61a3efed600412741bf5b967d7a]
9415491373.quar                          File Size: 418       BYTES FileVersion:  N/A            MD5: [878f10279e2572da22055467bbaab345]
9800663479.data                          File Size: 717       BYTES FileVersion:  N/A            MD5: [697cd01b912bfbbf4984a1039d6d437d]
9800663479.quar                          File Size: 550       BYTES FileVersion:  N/A            MD5: [ef798e75b0b0d5df049a757fabfc5fdf]

Malware Exclusions:
===================
Unable to access exclusion information: Error code 20001Web Exclusions:
================
Unable to access exclusion information: Error code 20001Quarantined Items:
===================
Unable to access quarantine information: Error code 20001===============================================================
END OF FILE



#7 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 14 October 2015 - 04:37 PM

AdwCleaner:

 

# AdwCleaner v5.013 - Logfile created 15/10/2015 at 05:24:10
# Updated 09/10/2015 by Xplode
# Database : 2015-10-13.2 [Server]
# Operating system : Windows 7 Starter Service Pack 1 (x86)
# Username : Karen June Dumlao - KARENJUNEDUMLAO
# Running from : C:\Users\Karen June Dumlao\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1T98N97L\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : YahooAUService

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\orbitdownloader
[-] Folder Deleted : C:\Program Files\Yahoo!\Companion
[-] Folder Deleted : C:\Program Files\DAP
[-] Folder Deleted : C:\Program Files\Common Files\Speedbit
[-] Folder Deleted : C:\ProgramData\Partner
[-] Folder Deleted : C:\ProgramData\Speedbit
[-] Folder Deleted : C:\Users\Karen June Dumlao\AppData\LocalLow\Toolbar4
[-] Folder Deleted : C:\Users\Karen June Dumlao\AppData\LocalLow\Yahoo!\Companion
[-] Folder Deleted : C:\Users\Karen June Dumlao\AppData\LocalLow\Speedbit
[-] Folder Deleted : C:\Users\Karen June Dumlao\AppData\Roaming\GrabPro
[-] Folder Deleted : C:\Users\Karen June Dumlao\AppData\Roaming\ProgSense
[-] Folder Deleted : C:\Users\Public\Documents\Speedbit

***** [ Files ] *****

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Download by Orbit
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Grab video by Orbit
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Do&wnload selected by Orbit
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Down&load all by Orbit
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
[-] Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
[-] Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\SBConvert.SBConvert
[-] Key Deleted : HKLM\SOFTWARE\Classes\SBConvert.SBConvert.3
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
[-] Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [daplinkchecker@speedbit.com]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{000123B4-9B42-4900-B3F7-F4B073EFC214}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3F1D494B-0CEF-4468-96C9-386E2E4DEC90}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7854F00C-DC77-477E-A10E-603F48442D3B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61AB12E1-A5FF-11D1-B2E9-444553540000}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3BCF582D-CA87-4C6F-AF3D-B3548A976AB3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0880527-DC28-4EBB-BA27-D22102F22A9F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BCDDE143-FAE3-4C57-B22B-C4E8678CFDC0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000123B4-9B42-4900-B3F7-F4B073EFC214}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{000123B4-9B42-4900-B3F7-F4B073EFC214}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{603C4CC9-5DC6-4C44-873F-8281509DF953}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}]
[-] Key Deleted : HKCU\Software\Orbit
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : HKCU\Software\ProgSense
[-] Key Deleted : HKCU\Software\SpeedBit
[-] Key Deleted : HKCU\Software\Yahoo\Companion
[-] Key Deleted : HKCU\Software\Yahoo\YFriendsBar
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Yahoo\Companion
[-] Key Deleted : HKLM\SOFTWARE\Orbit
[-] Key Deleted : HKLM\SOFTWARE\SpeedBit
[-] Key Deleted : HKLM\SOFTWARE\Yahoo\Companion
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Orbit_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A2D81E70-2A98-4A08-A628-94388B063C5E}
[!] Key Not Deleted : HKU\S-1-5-21-397636493-797748587-3805357063-1000\Software\AppDataLow\Software\Conduit
[!] Key Not Deleted : HKU\S-1-5-21-397636493-797748587-3805357063-1000\Software\AppDataLow\Software\Yahoo\Companion
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2DC52991-B814-4fe3-A5E2-C45F52D4AFFB}
[!] Key Not Deleted : HKU\S-1-5-21-397636493-797748587-3805357063-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2DC52991-B814-4fe3-A5E2-C45F52D4AFFB}

***** [ Web browsers ] *****

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [11827 bytes] ##########



#8 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 14 October 2015 - 05:17 PM

JUNKREMOVAL:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 7 Starter x86
Ran by Karen June Dumlao on Thu 10/15/2015 at  5:42:05.86
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Tasks

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{0C37B053-FD68-456a-82E1-D788EE342E6F}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{D5974A72-C81C-4DC3-BE77-A8A7BBC8864E}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{FF6C3CF0-4B15-11D1-ABED-709549C10000}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5974A72-C81C-4DC3-BE77-A8A7BBC8864E}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{0427069E-C65E-4041-87CF-1A4DB0BE517C}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{0A5678F9-C27F-4D6E-B7F9-59EAD2AD88E4}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{0CC2C7A5-70A5-441C-A529-C5301F4933E4}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{0DFD4C0D-4782-448F-B141-EEC33CD3FB2E}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{0F24CEDD-845C-4458-9638-5E19341B784C}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{0FCDB2D9-A588-4460-90B0-ACA0E5913208}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{106513B4-17BD-4E49-A8F9-7DD4F7C462AC}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{1A0D75DD-F7AD-4AB6-936E-31ACC8AB71EB}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{20AC9F35-4567-4449-B38D-C49B1BD7041D}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{25155846-F4F8-4E60-BCFD-FDD1DFB63ABA}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{28FE5F2D-4BF5-4437-98AB-ECD3006B800D}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{2FDD22B3-9A35-4488-9182-6881F3889E7B}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{3521E575-6DC7-469D-A22A-D85C227CA2AB}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{36E3F58C-CEB6-4D96-A5A4-0363226313A1}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{39FE19D1-7147-480F-96D1-DC9D787C0B29}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{3EC28422-43EC-404B-B08A-6FA5CEBA4F10}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{43B934F5-FF75-4F0B-9A0F-6014072CB90F}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{46B7D02B-17D1-4907-94AF-A644468178EC}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{48B2A2B3-5595-4995-9A26-B8C17FA3DDA5}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{4BE23777-45FA-46B8-943A-16DC438C0E83}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{53BA3B65-6A2C-4B1E-957E-75DDBB96B355}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{5693A4DC-6328-4566-8FA7-0475CEE3D55C}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{5814EB46-A13D-4DC7-AC82-2900B7059FAA}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{5D1C9328-00D6-41A2-98D8-72986D1BA29F}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{600D70DA-BB6E-4423-925C-8AB2F2084B23}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{636A1916-6F0F-44AD-B6BE-961016F31D3B}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{64D90C77-6E59-4F44-8229-81EF2218C648}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{68B1A49B-F874-4B39-8406-0B1BC652E1A4}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{69656700-45BB-415A-BCF9-7E47D9B3FEE2}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{6BDFD0E7-EF0A-4151-97F8-7B972ABFBFF5}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{6FDFA415-BC54-4C2A-B4BF-A8F6AED51F59}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{7CFF4C7D-FF4E-447D-B8ED-AD08A9D43AB9}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{7ECC38D9-67EC-4CF1-BAD9-9E16034E24F8}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{856061CB-EDEA-4A54-B130-D6A1D048395F}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{861A2833-70EB-421D-97D2-A62D5ECBA536}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{882DA69D-2B20-4BA3-9F5C-DEEE965E66F8}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{8EAF564D-D8C9-4CCF-929B-2BA64BDA52BF}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{8EDF8D3C-442E-4CF4-8DED-B072527D50C8}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{8FB5E01F-111A-42F2-912A-B87E7FA13485}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{9016BC90-4FBD-44D8-9140-A7ED4916D044}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{9625C54A-A743-4C98-A708-A773865DD628}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{998C5012-34F2-45C8-8A13-EDC6F283A20F}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{9B6841A6-1081-4FDE-9CAA-812A52AA80C0}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{9D4D98C5-72EC-40B1-A3BA-B68DA03ACB7C}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{9EC35B16-99AD-4A3A-921C-3621E9B9F867}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{A27E82B2-B378-4245-866D-496C7753E679}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{A475CAB6-1794-4797-AEAD-7B826EDF9DD3}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{A819C31E-B54C-4099-89D9-CB45504DF3AB}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{A849F87E-5809-4F3A-B1D0-8791720F7AF5}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{AF2F613D-D9ED-4CF8-B1B1-C05BB72AE0B3}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{B1FC4DEF-9D94-48D7-B37F-6C9A81772690}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{B38DFDF9-064B-48B7-8BA6-5763021ED83C}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{B8EC1495-7A4B-4B33-ABB4-8ECCD08EB7B2}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{B9992B0E-09EC-4D6E-97E7-B688DA2C9923}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{BA44A230-EB56-4FB1-AC52-0EE695441654}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{BCD34860-1C38-43CD-9DCE-1FEC52D31B14}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{BE972ECF-F13F-4FB4-898E-5EB55041F81F}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{C92D10A2-410C-46F1-81C4-D0B5CB4E14C5}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{CA2DF4D9-6E0F-43F8-A47E-2145C4B48940}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{D1978734-0B27-408C-9CE2-CA3A2DAC6BF0}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{D328D738-57BE-4529-AEE9-F34194846457}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{D8244DBC-F8EC-4F62-88DB-1A4FD3A8E722}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{D8C2BCA3-7BE2-43F7-B1CE-773BAD315E1D}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{DA84F701-62DF-4573-A240-21420375C880}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{E0E800D4-F064-43CC-ABEA-4608CB599C2B}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{E389A6B3-D189-4EF2-AED7-F78B90BABDBA}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{EA669B5C-18A1-4D0E-BE7C-79E39B490E25}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{F45CB58B-B9CD-4A97-BD1E-5B0CC6AFC886}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{F5E24247-6B17-439B-96DD-E587C82E5D5C}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{FA47971F-8AF8-44E4-B23B-F51D125673FF}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{FBAF5E34-A83C-420F-8938-EF83013B86C9}
Successfully deleted: [Empty Folder] C:\Users\Karen June Dumlao\Appdata\Local\{FEC79A67-3762-4BD8-9FB1-027133665524}

 

~~~ Chrome

[C:\Users\Karen June Dumlao\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Karen June Dumlao\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\Karen June Dumlao\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Karen June Dumlao\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 10/15/2015 at  6:12:21.85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#9 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 15 October 2015 - 02:23 AM

ESET:

 

C:\downloads\ccsetup505.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\downloads\ViberSetup.exe a variant of Win32/Toolbar.SearchSuite.W.gen potentially unwanted application cleaned by deleting - quarantined
C:\Users\Karen June Dumlao\Documents\Supracricoid Laryngectomy\download1.php HTML/ScrInject.B.Gen virus deleted - quarantined
 



#10 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 15 October 2015 - 02:28 AM

There are a few other things I failed to mention:

1) when I turn on the netbook, sometimes the wifi connection doesn't connect and the icon shows an Xmark on the wifi signal but when I check the adapter settings, it says there that it is enabled. for me to able to connect, I have to disable and enable (in the adapter settings) a couple of times before it connects. I have tried checking the power settings and other stuff but I haven't found the reason why this happens.

 

2) Even when I turn on the Bluetooth from the Fn+F3 button, the Bluetooth icon never shows up and is not detected by other devices.

 

Thanks so much for your help



#11 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,604 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:09:42 AM

Posted 15 October 2015 - 09:15 AM

Go to the Device Manager and open the Network Adapters.

 

Uninstall the driver, restart the computer.  The installation wizard will install a new driver.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#12 lumoskid

lumoskid
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:12:42 AM

Posted 15 October 2015 - 05:47 PM

Thanks!

After the malware bytes, adwcleaner, junk removal tool, and eset, what do I do next?

#13 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,604 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:09:42 AM

Posted 16 October 2015 - 10:47 AM

How is the computer running now?


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users