Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Index of C:\Users\my name\Desktop\backup\


  • Please log in to reply
15 replies to this topic

#1 Nik2209

Nik2209

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 21 September 2016 - 09:40 AM

I wonder if anybody can help please.

 

I was using my browser this morning just looking at the news sites then went away from my pc for 10 minutes came back and there was a new tab open with the following page showing.

 

 In the web address bar it said 

Index of C:\Users\my name\Desktop\backup\ 

 

I have no idea what it is as iv'e never seen anything like it before. I have no software backup programs running on my pc.

 

Any ideas what it could be. 

 

Thanks

Nik



BC AdBot (Login to Remove)

 


#2 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:13 PM

Posted 26 September 2016 - 11:06 AM

Hello! My name is The Codesee, nice to meet you  :)
 
Please follow the steps below:
 
:step1: Please download MiniToolBox to your desktop

  • Double click MiniToolBox
  • Select the items below and press go
  • Post the log in your next reply
    • List Installed Programs
    • List Restore Points
    • List last 10 Event Viewer log
    • Flush DNS

:step2: Please download Security Check to your desktop


  • Double click SecurityCheck and follow the on-screen instructions.
  • A log should open called checkup.txt.
  • Post the log in your next reply

:step3: Please download TFC (Temp File Cleaner) to your desktop


  • Close all open applications
  • Double click TFC
  • Click the start button and the program will run
  • When done, press OK to restart your computer

Logs I expect in your next reply:

  • MiniToolBox Log
  • Security Check Log


#3 Nik2209

Nik2209
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 27 September 2016 - 10:40 AM

Many thanks for your reply. please see the 2 logs that have been created

 

 

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Nik (administrator) on 27-09-2016 at 16:19:06
Running from "C:\Users\Nik\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: All Series Manufacturer: ASUS
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/17/2016 01:09:03 PM) (Source: Application Error) (User: )
Description: Faulting application name: mbamservice.exe, version: 1.70.0.0, time stamp: 0x50cb9148
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x74706cc4
Faulting process id: 0xa98
Faulting application start time: 0xmbamservice.exe0
Faulting application path: mbamservice.exe1
Faulting module path: mbamservice.exe2
Report Id: mbamservice.exe3
 
Error: (09/17/2016 01:09:02 PM) (Source: Application Error) (User: )
Description: Faulting application name: mbamscheduler.exe, version: 1.70.0.0, time stamp: 0x50cb9154
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x74706cc4
Faulting process id: 0xa28
Faulting application start time: 0xmbamscheduler.exe0
Faulting application path: mbamscheduler.exe1
Faulting module path: mbamscheduler.exe2
Report Id: mbamscheduler.exe3
 
Error: (09/17/2016 01:09:02 PM) (Source: Application Error) (User: )
Description: Faulting application name: AsusFanControlService.exe, version: 1.0.1.4, time stamp: 0x5200b2df
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x74706cc4
Faulting process id: 0x828
Faulting application start time: 0xAsusFanControlService.exe0
Faulting application path: AsusFanControlService.exe1
Faulting module path: AsusFanControlService.exe2
Report Id: AsusFanControlService.exe3
 
Error: (09/17/2016 01:09:01 PM) (Source: Application Error) (User: )
Description: Faulting application name: aaHMSvc.exe, version: 0.1.0.19, time stamp: 0x00000000
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x74706cc4
Faulting process id: 0x6c8
Faulting application start time: 0xaaHMSvc.exe0
Faulting application path: aaHMSvc.exe1
Faulting module path: aaHMSvc.exe2
Report Id: aaHMSvc.exe3
 
Error: (09/17/2016 01:09:00 PM) (Source: Application Error) (User: )
Description: Faulting application name: atkexComSvc.exe, version: 0.0.0.0, time stamp: 0x00000000
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x74706cc4
Faulting process id: 0x758
Faulting application start time: 0xatkexComSvc.exe0
Faulting application path: atkexComSvc.exe1
Faulting module path: atkexComSvc.exe2
Report Id: atkexComSvc.exe3
 
Error: (09/17/2016 01:08:59 PM) (Source: Application Error) (User: )
Description: Faulting application name: armsvc.exe, version: 1.824.20.219, time stamp: 0x57d10bf6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x74706cc4
Faulting process id: 0x740
Faulting application start time: 0xarmsvc.exe0
Faulting application path: armsvc.exe1
Faulting module path: armsvc.exe2
Report Id: armsvc.exe3
 
Error: (09/17/2016 01:08:21 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{F55E4282-CE4F-4785-B5C8-29D60709F8AF}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}SENS Logon Subscription
 
Error: (09/16/2016 03:56:57 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{F55E4282-CE4F-4785-B5C8-29D60709F8AF}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}SENS Logon Subscription
 
Error: (09/16/2016 09:17:11 AM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{F55E4282-CE4F-4785-B5C8-29D60709F8AF}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}SENS Logon Subscription
 
Error: (09/15/2016 10:09:02 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{F55E4282-CE4F-4785-B5C8-29D60709F8AF}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}SENS Logon Subscription
 
 
System errors:
=============
Error: (09/27/2016 11:06:38 AM) (Source: Microsoft-Windows-WHEA-Logger) (User: NT AUTHORITY)
Description: A fatal hardware error has occurred.
 
Reported by component: Processor Core
Error Source: 3
Error Type: 9
Processor ID: 4
 
The details view of this entry contains further information.
 
Error: (09/27/2016 11:06:38 AM) (Source: BugCheck) (User: )
Description: 0x00000124 (0x0000000000000000, 0xfffffa800dfb2028, 0x00000000bf800000, 0x0000000000000124)C:\Windows\MEMORY.DMP092716-5319-01
 
Error: (09/27/2016 11:06:36 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:05:34 on ‎27/‎09/‎2016 was unexpected.
 
Error: (09/22/2016 10:24:36 PM) (Source: Microsoft-Windows-WHEA-Logger) (User: NT AUTHORITY)
Description: A fatal hardware error has occurred.
 
Reported by component: Processor Core
Error Source: 3
Error Type: 9
Processor ID: 4
 
The details view of this entry contains further information.
 
Error: (09/22/2016 10:24:35 PM) (Source: BugCheck) (User: )
Description: 0x00000124 (0x0000000000000000, 0xfffffa800db6f8f8, 0x0000000000000000, 0x0000000000000000)C:\Windows\Minidump\092216-5257-01.dmp092216-5257-01
 
Error: (09/22/2016 10:24:34 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 22:24:08 on ‎22/‎09/‎2016 was unexpected.
 
Error: (09/22/2016 10:16:13 PM) (Source: Microsoft-Windows-WHEA-Logger) (User: NT AUTHORITY)
Description: A fatal hardware error has occurred.
 
Reported by component: Processor Core
Error Source: 3
Error Type: 9
Processor ID: 2
 
The details view of this entry contains further information.
 
Error: (09/22/2016 10:16:12 PM) (Source: BugCheck) (User: )
Description: 0x00000124 (0x0000000000000000, 0xfffffa800deb7038, 0x0000000000000000, 0x0000000000000000)C:\Windows\Minidump\092216-4617-01.dmp092216-4617-01
 
Error: (09/22/2016 10:16:11 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 22:15:39 on ‎22/‎09/‎2016 was unexpected.
 
Error: (09/22/2016 09:54:44 PM) (Source: Microsoft-Windows-WHEA-Logger) (User: NT AUTHORITY)
Description: A fatal hardware error has occurred.
 
Reported by component: Processor Core
Error Source: 3
Error Type: 9
Processor ID: 4
 
The details view of this entry contains further information.
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2016-09-27 15:55:52.828
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-27 15:47:09.459
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-27 14:55:21.050
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-27 11:17:51.553
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-27 11:06:40.799
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-27 10:54:40.176
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-27 09:56:13.927
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-26 17:20:33.950
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-26 16:57:01.073
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-09-26 16:36:51.105
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.170 - Atheros)
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
CPUID HWMonitor 1.29 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
Geeks3D FurMark 1.18.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.31.5 - Google Inc.) Hidden
HP ENVY 4500 series Basic Device Software (HKLM\...\{6915424E-704F-4F5D-9057-9C7B406B36DB}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{E8EB0A84-C19C-4520-8671-56D4D4123D37}) (Version: 3.0.0.25 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
ISO Recorder (HKLM\...\{2D7ED2A0-9553-412B-939F-D6E0AEB2ABE1}) (Version: 3.1.0 - Alex Feinman)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Malwarebytes Anti-Malware version 1.70.0.1100 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.70.0.1100 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (HKLM-x32\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 2.5.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.9 - VS Revo Group, Ltd.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.9.7 - Samsung Electronics)
SeaTools for Windows 1.4.0.4 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.4 - Seagate Technology)
SiSoftware Sandra Business 2013.SP3 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 19.40.2013.5 - SiSoftware)
Snagit 12 (HKLM-x32\...\{4FC332FE-CBE3-4AE0-B531-35048FD81912}) (Version: 12.4.1 - TechSmith Corporation) Hidden
Snagit 12 (HKLM-x32\...\{ec29af82-9c9e-420e-ab18-53821c36ac3c}) (Version: 12.4.1.3036 - TechSmith Corporation)
Sonos Controller (HKLM-x32\...\{7BBA9BF8-05DF-47D8-8880-82A9B99505B9}) (Version: 33.15.32221 - Sonos, Inc.)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
Stream What You Hear (SWYH) version 1.4 (HKLM-x32\...\{5FBEA9D3-668E-4B88-BF6C-E1BCF441ECFD}_is1) (Version: 1.4 - Sebastien.warin.fr)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
========================= Restore Points ==================================
 
17-09-2016 12:07:03 Windows 7 Service Pack 1
17-09-2016 12:47:51 Windows Update
18-09-2016 19:01:26 Removed Ai Charger+
18-09-2016 19:01:32 Removed DIP4
18-09-2016 19:01:41 Removed EZ Update
18-09-2016 19:29:09 Revo Uninstaller Pro's restore point - AI Suite 3
18-09-2016 20:17:41 Revo Uninstaller Pro's restore point - 
18-09-2016 20:36:21 Revo Uninstaller Pro's restore point - AI Suite 3
20-09-2016 19:47:51 Removed Motorola Mobile Drivers Installation 6.4.0
 
**** End of log ****
 
 

 Results of screen317's Security Check version 1.014 --- 12/23/15  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
Kaspersky Internet Security   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.70.0.1100  
 MBAM out of Date!  
 Java 8 Update 101  
 Java version 32-bit out of Date! 
 Google Chrome (52.0.2743.116) 
 Google Chrome (53.0.2785.116) 
 Google Chrome (SetupMetrics...) 
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 Kaspersky Lab Kaspersky Internet Security 17.0.0 avp.exe  
 Kaspersky Lab Kaspersky Internet Security 17.0.0 avpui.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 3% 
````````````````````End of Log`````````````````````` 
 


#4 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:13 PM

Posted 27 September 2016 - 12:40 PM

Thank you for the logs.

 

:step1: Please update Java:

 

https://java.com/en/download/

 

:step2: Please open Malwarebytes Anti-Malware

  • On the dashboard, click update now.
  • After that, click scan now - the scan will now begin.
  • When the scan's completed, select apply actions - make sure the action is quarantine.
  • Restart your computer.

How to get the log:

  • On the Malwarebytes Anti-Malware dashboard, select the history tab and click application logs.
  • Select the log which has the time and date of when you did the scan.
  • Click copy to clipboard and paste it into your reply.

:step3: Please download AdwCleaner to your desktop

  • Double click adwcleaner_x.xxx.exe.
  • If prompted, click I agree.
  • Click scan. When it's finished, select clean.
  • Allow AdwCleaner to restart your computer.
  • Once your computer's restarted, a log should appear.
  • Please post this in your next reply.

:step4: Please download Junkware Removal Tool to your desktop

  • Double click JRT.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • Press any key and the scan will begin.
  • At the end, a log will open. Please post this in your next reply.

Logs I expect in your next reply:

  • Malwarebytes Log
  • AdwCleaner Log
  • Junkware Removal Tool (JRT) Log

Please also update me on the status of the computer


Edited by The_Codesee, 27 September 2016 - 12:40 PM.


#5 Nik2209

Nik2209
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 28 September 2016 - 01:32 PM

I didn't update Java as I already have the latest version

 

I have also had to problem mentioned in my first post 2 times since I made this thread

 

Please see below logs

 

Malwarebytes Anti-Malware (PRO) 1.70.0.1100
www.malwarebytes.org
 
Database version: v2016.09.27.10
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Nik :: HOME [administrator]
 
Protection: Enabled
 
28/09/2016 19:10:46
mbam-log-2016-09-28 (19-10-46).txt
 
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 397288
Time elapsed: 12 minute(s), 39 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 
 
 
 
# AdwCleaner v6.020 - Logfile created 27/09/2016 at 22:07:54
# Updated on 14/09/2016 by ToolsLib
# Database : 2016-09-27.2 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Nik - HOME
# Running from : C:\Users\Nik\Downloads\adwcleaner_6.020.exe
# Mode: Scan
 
 
 
***** [ Services ] *****
 
No malicious services found.
 
 
***** [ Folders ] *****
 
No malicious folders found.
 
 
***** [ Files ] *****
 
No malicious files found.
 
 
***** [ DLL ] *****
 
No malicious DLLs found.
 
 
***** [ WMI ] *****
 
No malicious keys found.
 
 
***** [ Shortcuts ] *****
 
No infected shortcut found.
 
 
***** [ Scheduled Tasks ] *****
 
No malicious task found.
 
 
***** [ Registry ] *****
 
No malicious registry entries found.
 
 
***** [ Web browsers ] *****
 
No malicious Firefox based browser items found.
No malicious Chromium based browser items found.
 
*************************
 
C:\AdwCleaner\AdwCleaner[S0].txt - [991 Bytes] - [27/09/2016 22:07:54]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1063 Bytes] ##########
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.8 (09.20.2016)
Operating System: Windows 7 Home Premium x64 
Ran by Nik (Administrator) on 27/09/2016 at 22:10:26.92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 16 
 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1TE18QVQ (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\27VQIGRB (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3IU1TQ91 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\798EUC4U (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0GHOCHT (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LTEPYZN6 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UFF3NUL6 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Nik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WH1PQN7U (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1TE18QVQ (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\27VQIGRB (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3IU1TQ91 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\798EUC4U (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0GHOCHT (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LTEPYZN6 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UFF3NUL6 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WH1PQN7U (Temporary Internet Files Folder) 
 
 
 
Registry: 4 
 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{093F479D-712E-46CD-9E06-62E734A05F68} (Registry Value) 
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{093F479D-712E-46CD-9E06-62E734A05F68} (Registry Value) 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/09/2016 at 22:12:06.16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 


#6 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:13 PM

Posted 28 September 2016 - 01:36 PM

What's inside the 'Backup' folder on your desktop?



#7 Nik2209

Nik2209
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 28 September 2016 - 01:50 PM

Where does it say I have a backup folder??



#8 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:13 PM

Posted 28 September 2016 - 01:55 PM

In your original post, you said the following Windows directory is being opened in the web address bar: C:\Users\my name\Desktop\backup\ 

 

Is there a backup folder on the desktop?

 

If not, try showing hidden files and folders to see if it is there



#9 Nik2209

Nik2209
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 28 September 2016 - 02:03 PM

Ah yes there is a backup folder. I cant remember what is was for. there is a word document in there but if i try to open it I get the file conversion window pop up so i can't tell whats on the document



#10 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:13 PM

Posted 28 September 2016 - 02:05 PM

Did you make the backup folder or did it just appear? Have you tried deleting it?



#11 Nik2209

Nik2209
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 28 September 2016 - 02:09 PM

I must have made it but cant remember what it is. I can delete it yes



#12 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:13 PM

Posted 28 September 2016 - 02:17 PM

Let me know what happens after you delete it e.g if the issue still happens



#13 Nik2209

Nik2209
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 28 September 2016 - 02:19 PM

Will delete and wait to see if it happens again. 

 

Thank you will be in touch



#14 Nik2209

Nik2209
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:13 PM

Posted 02 October 2016 - 05:31 AM

Will delete and wait to see if it happens again. 

Thank you will be in touch

 

It happened again so I decided to do a clean install of windows. Looks to be ok now

Thanks for your help

 

Regards

Nik



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:13 AM

Posted 03 October 2016 - 11:46 AM

Good luck!! and be safe!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users