Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Zemana Antimalware problem


  • Please log in to reply
6 replies to this topic

#1 blastycruiseyz

blastycruiseyz

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:44 AM

Posted 28 March 2016 - 06:53 PM

Whenever I try to run a Zemana Antimalware Scan, I always get this:

66Q9nXa.png

Even though I change my DNS to Google's Public DNS, it will change back to this afterwards:

mv9aw0C.png



BC AdBot (Login to Remove)

 


#2 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,233 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:02:44 AM

Posted 28 March 2016 - 07:05 PM

Hi,

 

Let's try and remove the problem from your system then.

 

:step1: Please download MiniToolBox, save it to your desktop and run it.

 

Checkmark the following checkboxes:

 

aak3k9.jpg

 

Click Go and note the saved Result.txt on your desktop, to copy into your reply

 

:step2: Please download AdwCleaner and save to your Desktop.

  • Right click and "Run as Administrator"
  • Click on the Scan button.
  • After the scan has finished, click on the Report button...a logfile will open in Notepad for review.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool, or you can save it to the desktop to be easily found for your reply.

Please let me know if this application removes something you want to keep on your system

 

:step3: Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Right click and "Run as Administrator".
  • The tool will open and start scanning your system.
  • On completion a log will open, note the saved JRT.txt on your desktop to copy into your reply

:step4: Please download and install MalwareBytes Anti-Malware.

  • You may want to uncheck the free trial for the premium version during installation.
  • Let the database version update on first run, before proceeding
  • Click "Scan now"
  • Click "remove threats" to remove all and follow the reboot instructions.
  • To export the log click on History > then click your scan log > Export > text file
  • Save on your desktop

:step5: ESET Online scanner

 

Follow this link or right click and "copy link location", then paste the link into the address bar on your newly opened browser instance

Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.

  • Firstly, Accept the Terms and click Start
  • Click Enable detection of potentially unwanted applications and click Start again.

 

ESET will then download updates, install and begin scanning your computer. Please be patient as this can take some time.

 

  • When the scan completes, click List of found threats. Note: If no malware was found you will not get a list.

 

1446ya9.jpg

  • Click Export to text file and save the log on your desktop. Then click the Back button.

hry77t.jpg

  • Check Uninstall application on close and Delete quarantined files, then click the Finish button.

 

106x9g7.jpg

 

When you click finish the browser will not close but will offer you ESET products. Be aware the scan has actually finished and you need to close the browser window and reboot your computer to complete the process.

  • Please save the log to your desktop for your reply.

Please copy and paste the logs into your next reply.

 

Regards

 

TsVk!



#3 blastycruiseyz

blastycruiseyz
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:44 AM

Posted 28 March 2016 - 08:05 PM

Thanks TsVk. I'll be performing these tests right now.



#4 blastycruiseyz

blastycruiseyz
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:44 AM

Posted 28 March 2016 - 11:02 PM

I'm having problems updating MBAM and getting this error:

HIQ9nb7.png

 

Here are the other stuff.

 

MTB:

MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by Jhinblade X (administrator) on 29-03-2016 at 10:09:48
Running from "C:\Users\Jhinblade X\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Model: All Series Manufacturer: ASUS
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ============================== 

"network.proxy.socks", "212.129.55.219"
"network.proxy.socks_port", 56575
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Intel(R) Ethernet Connection (2) I218-V = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled taskoffload=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Jhinblade
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel(R) Ethernet Connection (2) I218-V
   Physical Address. . . . . . . . . : 1C-B7-2C-B0-0F-E1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a0d5:2632:9047:7433%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.33(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, March 29, 2016 10:08:04 AM
   Lease Expires . . . . . . . . . . : Wednesday, March 30, 2016 10:09:40 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 236762924
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1E-58-43-5F-1C-B7-2C-B0-0F-E1
   DNS Servers . . . . . . . . . . . : 127.0.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{A6F8EC8B-EB71-4960-88A2-AA419DF6C0CA}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
in-addr.arpa
	primary name server = b.in-addr-servers.arpa
	responsible mail addr = nstld.iana.org
	serial  = 2015073232
	refresh = 1800 (30 mins)
	retry   = 900 (15 mins)
	expire  = 604800 (7 days)
	default TTL = 3600 (1 hour)
Server:  UnKnown
Address:  127.0.0.1

Name:    google.com
Addresses:  2404:6800:4008:c01::8a
	  173.194.72.139
	  173.194.72.102
	  173.194.72.100
	  173.194.72.113
	  173.194.72.138
	  173.194.72.101


Pinging google.com [173.194.72.139] with 32 bytes of data:
Reply from 173.194.72.139: bytes=32 time=118ms TTL=47
Reply from 173.194.72.139: bytes=32 time=102ms TTL=47

Ping statistics for 173.194.72.139:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 102ms, Maximum = 118ms, Average = 110ms
in-addr.arpa
	primary name server = b.in-addr-servers.arpa
	responsible mail addr = nstld.iana.org
	serial  = 2015073232
	refresh = 1800 (30 mins)
	retry   = 900 (15 mins)
	expire  = 604800 (7 days)
	default TTL = 3600 (1 hour)
Server:  UnKnown
Address:  127.0.0.1

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
	  2001:4998:44:204::a7
	  2001:4998:c:a06::2:4008
	  98.138.253.109
	  98.139.183.24
	  206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=225ms TTL=50
Reply from 98.138.253.109: bytes=32 time=232ms TTL=50

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 225ms, Maximum = 232ms, Average = 228ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=16ms TTL=64
Reply from 127.0.0.1: bytes=32 time=8ms TTL=64

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 8ms, Maximum = 16ms, Average = 12ms
===========================================================================
Interface List
 11...1c b7 2c b0 0f e1 ......Intel(R) Ethernet Connection (2) I218-V
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.33     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.33    276
     192.168.1.33  255.255.255.255         On-link      192.168.1.33    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.33    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.33    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.33    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 11    276 fe80::/64                On-link
 11    276 fe80::a0d5:2632:9047:7433/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/29/2016 09:10:22 AM) (Source: Application Error) (User: )
Description: Faulting application name: PROCEXP64.exe, version: 16.12.0.0, time stamp: 0x56b3cb63
Faulting module name: PROCEXP64.exe, version: 16.12.0.0, time stamp: 0x56b3cb63
Exception code: 0xc0000005
Fault offset: 0x0000000000035b59
Faulting process id: 0x3ac
Faulting application start time: 0xPROCEXP64.exe0
Faulting application path: PROCEXP64.exe1
Faulting module path: PROCEXP64.exe2
Report Id: PROCEXP64.exe3

Error: (03/29/2016 09:10:17 AM) (Source: Application Error) (User: )
Description: Faulting application name: PROCEXP64.exe, version: 16.12.0.0, time stamp: 0x56b3cb63
Faulting module name: PROCEXP64.exe, version: 16.12.0.0, time stamp: 0x56b3cb63
Exception code: 0xc0000005
Fault offset: 0x0000000000035b59
Faulting process id: 0xa3c
Faulting application start time: 0xPROCEXP64.exe0
Faulting application path: PROCEXP64.exe1
Faulting module path: PROCEXP64.exe2
Report Id: PROCEXP64.exe3

Error: (03/29/2016 09:10:13 AM) (Source: Application Error) (User: )
Description: Faulting application name: PROCEXP64.exe, version: 16.12.0.0, time stamp: 0x56b3cb63
Faulting module name: PROCEXP64.exe, version: 16.12.0.0, time stamp: 0x56b3cb63
Exception code: 0xc0000005
Fault offset: 0x0000000000035b59
Faulting process id: 0x1538
Faulting application start time: 0xPROCEXP64.exe0
Faulting application path: PROCEXP64.exe1
Faulting module path: PROCEXP64.exe2
Report Id: PROCEXP64.exe3

Error: (03/29/2016 08:59:16 AM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7600.16404, time stamp: 0x4a765771
Faulting module name: SHELL32.dll, version: 6.1.7601.18952, time stamp: 0x55c3a0ed
Exception code: 0xc0000005
Fault offset: 0x000000000015d18f
Faulting process id: 0x1cc4
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.


Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4400}. The service will attempt to automatically correct this problem by rebuilding the index.


Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
	Element not found.  (HRESULT : 0x80070490) (0x80070490)


System errors:
=============
Error: (03/29/2016 10:08:04 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:06:41 AM on ‎3/‎29/‎2016 was unexpected.

Error: (03/29/2016 10:05:56 AM) (Source: Service Control Manager) (User: )
Description: The MBAMService service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/29/2016 10:05:56 AM) (Source: Service Control Manager) (User: )
Description: The MBAMScheduler service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/29/2016 10:05:56 AM) (Source: Service Control Manager) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (03/29/2016 10:05:56 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (03/29/2016 10:05:56 AM) (Source: Service Control Manager) (User: )
Description: The Heimdal SecureDNS service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/29/2016 10:05:54 AM) (Source: Service Control Manager) (User: )
Description: The Samsung RAPID Mode Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/29/2016 10:05:54 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Streamer Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/29/2016 10:05:54 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Network Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/29/2016 10:05:54 AM) (Source: Service Control Manager) (User: )
Description: The Intel(R) PROSet Monitoring Service service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (03/29/2016 09:10:22 AM) (Source: Application Error)(User: )
Description: PROCEXP64.exe16.12.0.056b3cb63PROCEXP64.exe16.12.0.056b3cb63c00000050000000000035b593ac01d18957c44d2ca8C:\Users\JHINBL~1\AppData\Local\Temp\PROCEXP64.exeC:\Users\JHINBL~1\AppData\Local\Temp\PROCEXP64.exe0210aae7-f54b-11e5-83e2-1cb72cb00fe1

Error: (03/29/2016 09:10:17 AM) (Source: Application Error)(User: )
Description: PROCEXP64.exe16.12.0.056b3cb63PROCEXP64.exe16.12.0.056b3cb63c00000050000000000035b59a3c01d18957c18094aaC:\Users\JHINBL~1\AppData\Local\Temp\PROCEXP64.exeC:\Users\JHINBL~1\AppData\Local\Temp\PROCEXP64.exeff426533-f54a-11e5-83e2-1cb72cb00fe1

Error: (03/29/2016 09:10:13 AM) (Source: Application Error)(User: )
Description: PROCEXP64.exe16.12.0.056b3cb63PROCEXP64.exe16.12.0.056b3cb63c00000050000000000035b59153801d18957bf0f1652C:\Users\JHINBL~1\AppData\Local\Temp\PROCEXP64.exeC:\Users\JHINBL~1\AppData\Local\Temp\PROCEXP64.exefcd52caa-f54a-11e5-83e2-1cb72cb00fe1

Error: (03/29/2016 08:59:16 AM) (Source: Application Error)(User: )
Description: explorer.exe6.1.7600.164044a765771SHELL32.dll6.1.7601.1895255c3a0edc0000005000000000015d18f1cc401d18955f50eb656C:\Windows\explorer.exeC:\Windows\system32\SHELL32.dll75843db7-f549-11e5-83e2-1cb72cb00fe1

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
4400

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
	The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/29/2016 08:56:15 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
	Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer


CodeIntegrity Errors:
===================================
  Date: 2016-03-29 10:08:12.434
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 09:46:47.497
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 08:56:50.439
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 04:43:55.047
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 03:37:59.325
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 03:31:24.672
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 03:02:49.402
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 02:56:07.034
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-29 02:46:07.574
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-28 22:14:27.115
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.176 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\{BE35B211-E66A-480F-ABE7-86CF5316F830}) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Apple Application Support (32-bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AutoMagic (HKLM\...\{9E6EB1EC-AB87-4F40-872A-A52EE499E8D0}) (Version: 2.0.2 - Auto FX Software)
Bandizip (HKLM\...\Bandizip) (Version: 5.12 - Bandisoft.com)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
Clover 3.0 (HKLM-x32\...\Clover) (Version: 3.0 - EJIE Technology)
CopyTrans Control Center Uninstall Only (HKCU\...\CopyTrans Suite) (Version: 4.006 - WindSolutions)
CSS Hat (HKLM-x32\...\{312D4212-4DB0-4419-ACC0-CBD7C102B639}) (Version:  - Piffle)
CuteFTP 9 (HKLM-x32\...\{89B9E358-75C6-4C6B-BD38-803FF156CC4B}) (Version: 9.0.5 - Globalscape)
DreamSuite Ultimate (HKLM\...\{327FC18B-2209-45BE-8066-2F4781DEE0B7}) (Version: 3.1.0 - Auto FX Software)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.16.1 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.35.1 - Dropbox, Inc.) Hidden
Effects Suite 64-bit (HKLM\...\{B7765C3D-27EE-4AA8-BB54-D88285D128A0}) (Version: 10.0.2 - Red Giant Software) Hidden
ESET Smart Security (HKLM\...\{0C26C0D5-9A65-45B6-83CE-AF5105212A06}) (Version: 9.0.375.0 - ESET, spol. s r.o.)
Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version:  - )
Garena - League of Legends (HKLM-x32\...\LoLPH) (Version:  - Garena Online Pte Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.110 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Heimdal Agent (HKLM-x32\...\{14FA2821-9111-4C87-A9B7-24C711B677EA}) (Version: 2.1.4 - Heimdal Security)
iMazing 1.5.5.0 (HKLM\...\iMazing_is1) (Version: 1.5.5.0 - DigiDNA)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
IrfanView (uninstall) (HKLM\...\IrfanView) (Version:  - )
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Kerish Doctor 2016 (HKLM-x32\...\{EF70A54F-E09E-4570-8F21-C7674CDDB5B6}_is1) (Version: 4.60 - Kerish Products)
Knoll Light Factory Photo 64 bit (HKLM\...\{69F849EF-4918-4333-81C1-8D8FC07E62B1}) (Version: 3.2 - Red Giant Software) Hidden
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.6.1 Hotfix Rollup (KB3120241) (HKLM\...\{46556DC7-EFC0-361E-832E-E0A9B0D2EFAB}) (Version: 4.6.01067 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 45.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 en-US)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0a2 - Mozilla)
Mystical (HKLM\...\{DDADF9FD-A283-4838-88AC-A75F7B37F320}) (Version: 4.3.0 - Auto FX Software)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.49 - NVIDIA Corporation)
NVIDIA Graphics Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OSC Third Party Libraries (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_OSCLib) (Version: 1.1 - NVIDIA Corporation) Hidden
Postbox (4.0.8) (HKLM-x32\...\Postbox (4.0.8)) (Version: 4.0.8 (en-US) - Postbox, Inc.)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 8.9.7.6 - Bitsum)
RAPID Mode (HKLM\...\{18DF567E-AA9B-434D-BE77-BFE2292712F6}) (Version: 1.0.1.96 - Samsung Electronics Co., Ltd.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7767 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.5 - VS Revo Group, Ltd.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.9.5 - Samsung Electronics)
Sandboxie 5.10 (64-bit) (HKLM\...\Sandboxie) (Version: 5.10 - Sandboxie Holdings, LLC)
Shadow Defender (HKLM\...\{93A07A0D-454E-43d1-86A9-5DE9C5F4411A}) (Version: 1.4.0.612 - ShadowDefender.com)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 10.9.1 - ShareX Team)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.2.49 - NVIDIA Corporation) Hidden
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.104 - Skype Technologies S.A.)
SpecctrProPs_2.3.01 version 2.3.01 (HKLM-x32\...\{DADA1576-AD24-4BAE-8E4F-D8DA8DA78009}_is1) (Version: 2.3.01 - On Pixel Inc.)
SpywareBlaster 5.4 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.4.0 - BrightFort LLC)
Stylizer 6 (HKLM-x32\...\Skybound Stylizer 6) (Version: 6 - Skybound Research Inc.)
Subtle Patterns (HKLM-x32\...\{210A068D-8B19-4852-B022-4CB139E5865A}) (Version:  - Piffle)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1216 - SUPERAntiSpyware.com)
Todoist (HKCU\...\{B1B3C79A-FFD9-4B28-A456-62B6E55E2A5C}_is1) (Version: 2.7.6.0 - Doist Ltd.)
Topaz Adjust 5 (HKLM-x32\...\Topaz Adjust 5) (Version: 5.1.0 - Topaz Labs, LLC)
Topaz B&W Effects (HKLM-x32\...\Topaz BW Effects 2) (Version: 2.1.0 - Topaz Labs, LLC)
Topaz Clarity (HKLM-x32\...\Topaz Clarity) (Version: 1.0.0 - Topaz Labs, LLC)
Topaz Clean 3 (HKLM-x32\...\Topaz Clean 3) (Version: 3.1.0 - Topaz Labs, LLC)
Topaz DeJpeg 4 (HKLM-x32\...\Topaz DeJpeg 4) (Version: 4.0.2 - Topaz Labs, LLC)
Topaz DeNoise 5 (HKLM-x32\...\Topaz DeNoise 5) (Version: 5.1.0 - Topaz Labs, LLC)
Topaz Detail 3 (HKLM-x32\...\Topaz Detail 3) (Version: 3.2.0 - Topaz Labs, LLC)
Topaz Fusion Express 2 (HKLM-x32\...\Topaz Fusion Express 2) (Version: 2.1.3 - Topaz Labs, LLC)
Topaz InFocus (HKLM-x32\...\Topaz InFocus) (Version: 1.0.0 - Topaz Labs, LLC)
Topaz Lens Effects (HKLM-x32\...\Topaz Lens Effects) (Version: 1.2.0 - Topaz Labs, LLC)
Topaz ReMask 5 (HKLM-x32\...\Topaz ReMask 5) (Version: 5.0.1 - Topaz Labs, LLC)
Topaz ReStyle (HKLM-x32\...\Topaz ReStyle) (Version: 1.0.0 - Topaz Labs, LLC)
Topaz Simplify 4 (HKLM-x32\...\Topaz Simplify 4) (Version: 4.1.1 - Topaz Labs, LLC)
Topaz Star Effects (HKLM-x32\...\Topaz Star Effects) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Texture Effects (HKLM\...\Topaz Texture Effects) (Version: 1.1.1 - Topaz Labs, LLC)
UxStyle Core Beta (HKLM\...\{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}) (Version: 0.2.1.1 - The Within Network, LLC)
Viber (HKCU\...\{b44f5a1f-ca34-4def-9c69-9aabd288bcb6}) (Version: 5.9.1.1 - Viber Media Inc.)
Viber (HKLM-x32\...\{B0EA596A-BA3B-4708-9F8A-29063B572292}) (Version: 5.9.1.1 - Viber Media Inc.) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.20.100 - Zemana Ltd.)
ZXPInstaller (HKLM-x32\...\ZXPInstaller) (Version:  - )

**** End of log ****

JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.4 (03.14.2016)
Operating System: Windows 7 Ultimate x64 
Ran by Jhinblade X (Limited) on Tue 03/29/2016 at 11:52:18.79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 11 

Successfully deleted: C:\Users\Jhinblade X\AppData\Roaming\Mozilla\Firefox\Profiles\81jklqnf.default\extensions\foxmarks@kei.com\chrome\content\newuser.js (File) 
Successfully deleted: C:\Users\Jhinblade X\AppData\Roaming\Mozilla\Firefox\Profiles\81jklqnf.default\user.js (File) 
Successfully deleted: C:\Users\Jhinblade X\AppData\Roaming\Mozilla\Firefox\Profiles\b7j4o4ok.default-1459216067556\extensions\foxmarks@kei.com\chrome\content\newuser.js (File) 
Successfully deleted: C:\Users\Jhinblade X\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\00XBOSNH (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Jhinblade X\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L7GTBG8A (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Jhinblade X\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RU2VYVVS (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Jhinblade X\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WKBA6MRO (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\00XBOSNH (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L7GTBG8A (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RU2VYVVS (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WKBA6MRO (Temporary Internet Files Folder) 



Registry: 1 

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\StartMenuReviverService (Registry Key) 




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 03/29/2016 at 11:52:50.37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

ADWCLEANER

# AdwCleaner v5.107 - Logfile created 29/03/2016 at 11:43:04
# Updated 28/03/2016 by Xplode
# Database : 2016-03-28.2 [Local]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : Jhinblade X - JHINBLADE
# Running from : C:\Users\Jhinblade X\Desktop\AdwCleaner.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[-] [C:\Users\Jhinblade X\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com
[-] [C:\Users\Jhinblade X\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com

*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [994 bytes] - [27/03/2016 21:31:11]
C:\AdwCleaner\AdwCleaner[C2].txt - [593 bytes] - [29/03/2016 10:05:56]
C:\AdwCleaner\AdwCleaner[C3].txt - [593 bytes] - [29/03/2016 10:10:03]
C:\AdwCleaner\AdwCleaner[C4].txt - [593 bytes] - [29/03/2016 11:36:07]
C:\AdwCleaner\AdwCleaner[C5].txt - [593 bytes] - [29/03/2016 11:40:59]
C:\AdwCleaner\AdwCleaner[C6].txt - [1308 bytes] - [29/03/2016 11:43:04]
C:\AdwCleaner\AdwCleaner[S1].txt - [827 bytes] - [27/03/2016 21:28:40]
C:\AdwCleaner\AdwCleaner[S2].txt - [1143 bytes] - [29/03/2016 09:48:35]
C:\AdwCleaner\AdwCleaner[S3].txt - [1289 bytes] - [29/03/2016 10:08:51]
C:\AdwCleaner\AdwCleaner[S4].txt - [1434 bytes] - [29/03/2016 11:35:11]
C:\AdwCleaner\AdwCleaner[S5].txt - [1579 bytes] - [29/03/2016 11:40:26]
C:\AdwCleaner\AdwCleaner[S6].txt - [1723 bytes] - [29/03/2016 11:42:39]

########## EOF - C:\AdwCleaner\AdwCleaner[C6].txt - [1818 bytes] ##########



#5 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,233 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:02:44 AM

Posted 29 March 2016 - 01:30 AM

Please download and run RogueKiller

  • Click Scan and then Scan again to start the application
  • Please be patient the scan can take quite some time
  • When it completes close the browser pop up.
  • Check all of the check boxes and Remove Items
  • When completed click Open Report then Open TXT
  • Copy and paste the output into your next reply

TsVk!



#6 blastycruiseyz

blastycruiseyz
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:44 AM

Posted 29 March 2016 - 02:15 AM

TsVk, I'm sorry if I may have wasted your time. I decided today to uninstall Heimdal because I saw that it had HeimdalSecureDNS in my Process Explorer. Upon uninstalling it, the problem from Zemana went away.



#7 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,233 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:02:44 AM

Posted 29 March 2016 - 04:35 AM

I saw that... hadn't positively identified it as the issue yet. 

 

I'm glad everything appears resolved.

 

:busy:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users